Техническая информация
- [<HKCU>\Software\Martin Prikryl\WinSCP 2\Sessions]
- [<HKCU>\Software\FTPWare\CoreFTP\Sites]
- %ProgramFiles(x86)%\steam\config\config.vdf
- %ProgramFiles(x86)%\steam\config\dialogconfig.vdf
- %LOCALAPPDATA%\google\chrome\user data\default\login data
- %LOCALAPPDATA%\google\chrome\user data\default\cookies
- %LOCALAPPDATA%\google\chrome\user data\default\web data
- %APPDATA%\opera software\opera stable\login data
- %ALLUSERSPROFILE%\microsoft\vault\ac658cb4-9126-49bd-b877-31eedab3f204\policy.vpol
- %ALLUSERSPROFILE%\microsoft\vault\ac658cb4-9126-49bd-b877-31eedab3f204\3ccd5499-87a8-4b10-a215-608888dd3b55.vsch
- %ALLUSERSPROFILE%\microsoft\vault\ac658cb4-9126-49bd-b877-31eedab3f204\2f1a6504-0641-44cf-8bb5-3612d865f2e5.vsch
- %LOCALAPPDATA%\microsoft\vault\4bf4c442-9b8a-41a0-b380-dd4a704ddb28\policy.vpol
- %TEMP%\tmp8748.tmp
- %TEMP%\tmp8e6a.tmp
- %TEMP%\tmp8eaa.tmp
- %TEMP%\tmp9031.tmp
- %TEMP%\tmp8748.tmp
- %TEMP%\tmp8e6a.tmp
- %TEMP%\tmp8eaa.tmp
- %TEMP%\tmp9031.tmp
- 'ip##pi.com':80
- '45.#.148.200':8118
- http://ip##pi.com/json
- http://rl###############cjo577eqgjsjvcjfsw4i23fqvf2y27ylylhmhad.onion/stl/7f70ead0cd834a688cb85440f37ab368?pw####################################################################################...
- DNS ASK ip##pi.com
- '<SYSTEM32>\cmd.exe' /C chcp 65001 && netsh wlan show profile | findstr All
- '<SYSTEM32>\chcp.com' 65001
- '<SYSTEM32>\netsh.exe' wlan show profile
- '<SYSTEM32>\findstr.exe' All