Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\xcpip] 'Start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\xpsec] 'Start' = '00000001'
- <SYSTEM32>\regsvr32.exe /s %TEMP%\1.tmp
- <DRIVERS>\xpsec.sys
- <DRIVERS>\xcpip.sys
- %TEMP%\1.tmp
- %TEMP%\2.tmp
- %TEMP%\1.tmp
- %TEMP%\2.tmp
- '19#.#.14.129':1030
- '19#.#.14.129':1029
- 'localhost':1037
- 'localhost':1039
- 'localhost':1038
- '12#.8.10.90':1026
- '12#.8.10.90':1025
- '23#.#55.255.250':1900
- '19#.#8.128.30':1028
- '19#.#8.128.30':1027