Техническая информация
- '<SYSTEM32>\cmd.exe' /C ping 1.1.1.1 -n 1 -w 1 > Nul & Del "<Полный путь к файлу>"
- '<SYSTEM32>\ping.exe' 1.1.1.1 -n 1 -w 1
- '%WINDIR%\explorer.exe'
- '<SYSTEM32>\rundll32.exe' fldrclnr.dll,Wizard_RunDLL
- %WINDIR%\Explorer.EXE
- %WINDIR%\Prefetch\RUNDLL32.EXE-2F26E69F.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-31EBBE5F.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-2AF77CC9.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-2C7B5C4A.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-4176E9B5.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-49F747DB.pf
- %WINDIR%\Prefetch\DLLHOST.EXE-5353C76C.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-4499C56E.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-470F11BD.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-147710F4.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-169CA248.pf
- %WINDIR%\Prefetch\EXPLORER.EXE-082F38A9.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-12E27DD0.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-1831A4F3.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-286A7F8C.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-29373198.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-1BC69D2D.pf
- %WINDIR%\Prefetch\RUNDLL32.EXE-2576181F.pf
- 'vp#####16.vps.ovh.ca':80
- 'wp#d':80
- http://vp#####16.vps.ovh.ca/check?hw###################################
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK vp#####16.vps.ovh.ca
- DNS ASK wp#d
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: 'CSCHiddenWindow' WindowName: ''
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- ClassName: 'Proxy Desktop' WindowName: ''
- ClassName: 'BaseBar' WindowName: 'ChanApp'