Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\btddos_service_bt99] 'Start' = '00000002'
- <SYSTEM32>\dad.exe
- <SYSTEM32>\ipconfig.exe /all
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\indrv.bat
- <SYSTEM32>\_wpcap_.inf
- <DRIVERS>\npf.sys
- <SYSTEM32>\dad.exe
- <SYSTEM32>\indrv.bat
- <SYSTEM32>\pthreadVC.dll
- <SYSTEM32>\packet.dll
- <SYSTEM32>\wpcap.dll
- <SYSTEM32>\wanpacket.dll
- <SYSTEM32>\dad.exe
- 'bt##.btddos.com':7788
- DNS ASK bt##.btddos.com