Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Windows Internet Name Service] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\tor] 'Start' = '00000002'
- '<SYSTEM32>\config\systemprofile\Local Settings\Application Data\Windows Internet Name Service\wins.exe'
- '%PROGRAM_FILES%\Tor\tor.exe' --nt-service "-ControlPort" "9051"
- '%TEMP%\install-201594370.exe' /I
- '%PROGRAM_FILES%\Tor\tor.exe' --install --options -ControlPort 9051
- <SYSTEM32>\config\systemprofile\Local Settings\Application Data\Windows Internet Name Service\wins.exe
- <SYSTEM32>\config\systemprofile\Local Settings\Application Data\Windows Internet Name Service\cache.00
- C:\Documents and Settings\LocalService\Application Data\tor\state.tmp
- %PROGRAM_FILES%\Tor\tor.exe
- %TEMP%\install-201594370.exe
- <SYSTEM32>\config\systemprofile\Local Settings\Application Data\Windows Internet Name Service\049e7fb749be2cdf169e28bb0a27254f\181084e525a65ef540c63d60ce07f836.ph
- <SYSTEM32>\config\systemprofile\Local Settings\Application Data\Windows Internet Name Service\049e7fb749be2cdf169e28bb0a27254f\181084e525a65ef540c63d60ce07f836.ct
- C:\Documents and Settings\LocalService\Application Data\tor\state.tmp в C:\Documents and Settings\LocalService\Application Data\tor\state
- '21#.#24.124.114':9090
- '19#.#09.206.212':443
- '21#.#15.239.118':80
- '18.#.0.1':9
- '94.##2.214.145':80
- 'localhost':1040
- '19#.#3.244.244':443
- 94.##2.214.145/submit.php?he#################################################
- '23#.#55.255.250':1900