Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\xcpip] 'Start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\xpsec] 'Start' = '00000001'
- '<SYSTEM32>\regsvr32.exe' /s %TEMP%\1.tmp
- <DRIVERS>\xpsec.sys
- <DRIVERS>\xcpip.sys
- %TEMP%\1.tmp
- <DRIVERS>\5nijug.sys
- %TEMP%\1.tmp
- <DRIVERS>\5nijug.sys
- '19#.41.0.4':1025
- '19#.41.0.4':1026
- '19#.33.4.12':1027
- 'localhost':1040
- '23#.#55.255.250':1900
- 'localhost':1038
- 'localhost':1039