IMHO.WS - Показать сообщение отдельно - Перезагрузка системы после нескольких минут работы в Internet

SemKam · 21.01.2004, 17:54

Инфа из symantec.com:

When W32.Blaster.Worm is executed, it does the following:
Там идёт много фигни разной, далее

Some fixed characteristics of the TCP and IP headers are:
IP identification = 256
...
Source IP address = a.b.x.y, where a.b are from the host ip and x.y are random. In some cases, a.b are random.
Destination IP address = dns resolution of "windowsupdate.com"
TCP Source port is between 1000 and 1999
TCP Destination port = 80
TCP Sequence number always has the two low bytes set to 0; the 2 high bytes are random.

Интересно всё-таки, чё ж это он мелкософту постукивает...

21.01.2004, 17:54	# 2
SemKam Junior Member Регистрация: 14.11.2002 Адрес: LTU Сообщения: 50	Инфа из symantec.com: When W32.Blaster.Worm is executed, it does the following: Там идёт много фигни разной, далее Some fixed characteristics of the TCP and IP headers are: IP identification = 256 ... Source IP address = a.b.x.y, where a.b are from the host ip and x.y are random. In some cases, a.b are random. Destination IP address = dns resolution of "windowsupdate.com" TCP Source port is between 1000 and 1999 TCP Destination port = 80 TCP Sequence number always has the two low bytes set to 0; the 2 high bytes are random. Интересно всё-таки, чё ж это он мелкософту постукивает...