Техническая информация
- <SYSTEM32>\ctfm0n.exe
- <SYSTEM32>\ntsd.exe -c q -pn rfwsrv.exe
- <SYSTEM32>\ntsd.exe -c q -pn rfwmain.exe
- <SYSTEM32>\ping.exe 127.0.0.1
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\getpublicip[1].shtml
- C:\ip.txt
- C:\b00t.ini
- <SYSTEM32>\ctfm0n.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\down[1].jpg
- C:\b00t.ini
- '22#.#31.140.134':1433
- '22#.#31.140.134':445
- '22#.#31.140.134':139
- 'localhost':1035
- 'my.#31jx.cn':80
- 'vb###.mvps.org':80
- vb###.mvps.org/resources/tools/getpublicip.shtml
- my.#31jx.cn/down.jpg
- DNS ASK vb###.mvps.org
- DNS ASK my.#31jx.cn