Техническая информация
- [<HKLM>\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\policies\Explorer\Run] 'WindowsNetworkService' = ''
- Средство контроля пользовательских учетных записей (UAC)
- %APPDATA%\microsoft\svchost.exe
- %APPDATA%\data.pdf
- %APPDATA%\computer.{20d04fe0-3aea-1069-a2d8-08002b30309d}\logs\nl_jun032020_125229.jpg
- %APPDATA%\computer.{20d04fe0-3aea-1069-a2d8-08002b30309d}\logs\nl_jun032020_125247.jpg
- %APPDATA%\computer.{20d04fe0-3aea-1069-a2d8-08002b30309d}\logs\nl_jun032020_125308.jpg
- %APPDATA%\computer.{20d04fe0-3aea-1069-a2d8-08002b30309d}\logs\nl_jun032020_125327.jpg
- %APPDATA%\computer.{20d04fe0-3aea-1069-a2d8-08002b30309d}\logs\nl_jun032020_125229.jpg
- %APPDATA%\computer.{20d04fe0-3aea-1069-a2d8-08002b30309d}\logs\nl_jun032020_125247.jpg
- %APPDATA%\computer.{20d04fe0-3aea-1069-a2d8-08002b30309d}\logs\nl_jun032020_125308.jpg
- 'sm##.gmail.com':587
- 'ft#.#rivehq.com':21
- DNS ASK sm##.gmail.com
- DNS ASK ft#.#rivehq.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- ClassName: '' WindowName: 'Windows Task Manager'
- ClassName: 'NDDEAgnt' WindowName: 'NetDDE Agent'
- ClassName: 'AdobeAcrobat' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- '%ProgramFiles(x86)%\adobe\acrobat reader dc\reader\acrord32.exe' "%APPDATA%\Data.pdf"