Техническая информация
- '<SYSTEM32>\taskkill.exe' /IM explorer.exe /F
- '<SYSTEM32>\taskkill.exe' /IM taskmgr.exe /F
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1\1.bat" <Полный путь к файлу>"
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE' youareanidiot.org
- %WINDIR%\Explorer.EXE
- %TEMP%\1\1.bat
- 'localhost':1040
- 'localhost':1042
- 'localhost':1037
- 'yo####anidiot.org':80
- http://yo####anidiot.org/
- DNS ASK yo####anidiot.org
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''