Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '<Имя файла>' = '<Полный путь к файлу> /start'
- '<SYSTEM32>\netsh.exe' interface ip set dns name=2 source=static addr=108.61.178.207 register=primary
- '<SYSTEM32>\ipconfig.exe' /flushdns
- '<SYSTEM32>\netsh.exe' interface ip add dns name=2 addr=104.238.158.90 index=2
- '<SYSTEM32>\cmd.exe' /c netsh interface ip set dns name=2 source=static addr=108.61.178.207 register=primary
- '<SYSTEM32>\cmd.exe' /c netsh interface ip add dns name=2 addr=104.238.158.90 index=2
- '<SYSTEM32>\cmd.exe' /c ipconfig/flushdns
- %TEMP%\1.tmp
- 'ap#.##idu2018.top':80
- http://ap#.##idu2018.top/qq/1.txt
- DNS ASK www.91###110.com
- DNS ASK ap#.##idu2018.top
- ClassName: 'Syspager' WindowName: ''
- ClassName: 'ToolbarWindow32' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'TrayNotifyWnd' WindowName: ''