Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'SmartIndex' = '<Полный путь к вирусу>'
- <DRIVERS>\npf.sys
- <SYSTEM32>\wpcap.dll
- <SYSTEM32>\Packet.dll
- '22#.#20.58.121':80
- 'localhost':1049
- '12#.#40.177.11':80
- 'localhost':1052
- '17#.#4.10.70':80
- 'localhost':1055
- '11#.#61.147.206':80
- 'localhost':1040
- '17#.#40.202.50':80
- 'localhost':1037
- '12#.#48.147.23':80
- 'localhost':1046
- '12#.#7.203.52':80
- 'localhost':1043