ведь непривилегированный пользователь вряд ли сможет залинковать dll в проводник
In particular, when a bot contacted our server, we always replied with an okn message and never sent it a new config- uration file. By responding with okn, the bots remained in contact only with our servers. If we had not replied with a valid Torpig response, the bots would have switched over to the .biz domains, which had already been registered by the criminals. Although we could have sent a blank configuration file to potentially remove the web sites currently targeted by Torpig, we did not do so to avoid unforeseen consequences (e.g., changing the behavior of the mal- ware on critical computer systems, such as a server in a hospital).
Только зарегистрированные пользователи могут оставлять комментарии. Войдите, пожалуйста.