Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\cd02c76989773356a4ec148af4cde96d.exe
- %HOMEPATH%\Start Menu\Programs\Startupx\system.pif
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\WindowsLogonUI.exe' = '%TEMP%\WindowsLogonUI.exe:*:Enabled:Wind...
- '%TEMP%\WindowsLogonUI.exe'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%TEMP%\WindowsLogonUI.exe" "WindowsLogonUI.exe" ENABLE
- '%TEMP%\WindowsLogonUI.exe'
- %TEMP%\WindowsLogonUI.exe
- 'to#####i18.myftp.org':5552
- DNS ASK to#####i18.myftp.org