Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'JavaErrorHandler' = '"%TEMP%\h6fschl7lnujc5dlfvu4jo2gprdzssrl.exe"'
- %HOMEPATH%\Start Menu\Programs\Startup\JavaErrorHandler.lnk
- '<SYSTEM32>\cmd.exe' /C "%TEMP%\__config2262.bat"
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 2
- '%TEMP%\h6fschl7lnujc5dlfvu4jo2gprdzssrl.exe'
- '%TEMP%\h6fschl7lnujc5dlfvu4jo2gprdzssrl.exe' 2908
- %TEMP%\__config2262.bat
- %TEMP%\qainpaubwcy6g3fdgmlxuxyrmspvatds.dump
- %TEMP%\akkwe3jfvm642c5o4jv6czk6ff6osmob.dump
- %TEMP%\h6fschl7lnujc5dlfvu4jo2gprdzssrl.exe
- %TEMP%\h6fschl7lnujc5dlfvu4jo2gprdzssrl.exe
- 'ap#.#pify.org':80
- 'ip##fo.io':80
- '86.#9.21.38':80
- 'localhost':4137
- '17#.#5.193.9':443
- http://ip##fo.io/geo
- http://12#.0.0.1/status/mfcxnfschj7mls62cvk3scvei4eg6pxp via localhost
- http://ap#.#pify.org/
- http://12#.0.0.1/ok via localhost
- http://86.#9.21.38/tor/status-vote/current/consensus-microdesc.z
- DNS ASK ip##fo.io
- DNS ASK ap#.#pify.org