Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '<SYSTEM32>\ftp.exe' = '<SYSTEM32>\ftp.exe:*:Enabled:'FTP''
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- <SYSTEM32>\ftp.exe -n -i -s:<DRIVERS>\java.sys
- <SYSTEM32>\netsh.exe firewall add allowedprogram <SYSTEM32>\ftp.exe 'FTP' ENABLE
- <SYSTEM32>\cmd.exe /c ""<SYSTEM32>\core.bat" "
- <SYSTEM32>\cmd.exe /c ""%WINDIR%\fwl.bat" "
- <SYSTEM32>\cmd.exe /c ""<SYSTEM32>\java.bat" "
- <SYSTEM32>\netsh.exe firewall set notifications mode=DISABLE
- <DRIVERS>\java.sys
- <SYSTEM32>\core.bat
- <SYSTEM32>\java.bat
- %WINDIR%\fwl.bat
- %WINDIR%\Nocturne.exe
- %WINDIR%\CRNJEUFU-WinKey.html
- %WINDIR%\TimeNocturne.log
- <DRIVERS>\java.sys
- %WINDIR%\TimeNocturne.log
- 'ft#.####ologs.freezoka.net':21
- 'localhost':1036
- DNS ASK ft#.####ologs.freezoka.net
- '<IP-адрес в локальной сети>':1037