Техническая информация
- '<SYSTEM32>\taskkill.exe' /F /IM MicrosoftEdge.exe
- '<SYSTEM32>\taskkill.exe' /F /IM chrome.exe
- '<SYSTEM32>\taskkill.exe' /F /IM iexplore.exe
- '<SYSTEM32>\taskkill.exe' /F /IM firefox.exe
- '<SYSTEM32>\taskkill.exe' /F /IM browser.exe
- '<SYSTEM32>\taskkill.exe' /F /IM opera.exe
- chrome.exe
- firefox.exe
- opera.exe
- iexplore.exe
- 'wp#d':80
- 'oy##evi.gq':80
- 'ch####p.dyndns.org':80
- 'localhost':1043
- 'fa###ook.com':443
- http://11#.#11.111.1/wpad.dat via wp#d
- http://oy##evi.gq/onays.txt
- http://ch####p.dyndns.org/
- http://oy##evi.gq/hwid.txt
- DNS ASK wp#d
- DNS ASK oy##evi.gq
- DNS ASK ch####p.dyndns.org
- DNS ASK www.fa###ook.com
- ClassName: '' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE' -nohome