Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{78AF3E29-AF90-F01E-B9E3-93AE09658EC1}] 'StubPath' = '"<SYSTEM32>\roottest.exe" NetSpoolPtr'
- <SYSTEM32>\ping.exe 2.2.1.255 -w 2000 -n 6
- <SYSTEM32>\ctfmon.exe
- <SYSTEM32>\dtsettoor.dll
- <SYSTEM32>\reg.dat
- <SYSTEM32>\up1114123814.tmp
- <SYSTEM32>\btsettoor.bin
- <SYSTEM32>\roottest.exe
- <SYSTEM32>\up1114123748R.tmp
- <SYSTEM32>\up1114123814.tmp
- <SYSTEM32>\up1114123748R.tmp
- <SYSTEM32>\btsettoor.bin
- 'localhost':80
- localhost/root/yahoo/banner2.php?jp###############