Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\87298a50bc487dfb1c363f504341cdb2.exe
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\Tjava.exe' = '%TEMP%\Tjava.exe:*:Enabled:Tjava.exe'
- '%TEMP%\Tjava.exe'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%TEMP%\Tjava.exe" "Tjava.exe" ENABLE
- %TEMP%\Tjava.exe
- 'mr####1.no-ip.biz':1177
- DNS ASK mr####1.no-ip.biz