Техническая информация
- '<SYSTEM32>\attrib.exe' +h "%TEMP%\RarSFX0\Presision DDoS tool v1.1.bat"
- '<SYSTEM32>\ipconfig.exe' /release
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\RarSFX0\Presision DDoS tool v1.1.bat" "
- '<SYSTEM32>\msg.exe' * Presision is outdated.
- '<SYSTEM32>\reg.exe' add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_SZ /d 1 /f
- %TEMP%\RarSFX0\Presision DDoS tool v1.1.bat
- %TEMP%\RarSFX0\Presision DDoS tool v1.1.bat
- 'www.xv##eos.com':80
- 'localhost':1039
- www.xv##eos.com/
- DNS ASK www.xv##eos.com
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''