Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'CoreSystemDataClient' = '%PROGRAM_FILES%\DistributedData\DataClient.exe'
- '%PROGRAM_FILES%\DistributedData\DataClient.exe'
- '<SYSTEM32>\msiexec.exe' -Embedding C7B61253BAD0DCCEFEF93B4DA0F318DF
- '<SYSTEM32>\msiexec.exe' /V
- '<SYSTEM32>\msiexec.exe' /MIN /i %TEMP%\distributeddata.msi -quiet
- %PROGRAM_FILES%\DistributedData\msvcr110.dll
- %PROGRAM_FILES%\DistributedData\msvcp110.dll
- %PROGRAM_FILES%\DistributedData\DataClient.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\Distributed Data\Uninstall Data Client.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\Distributed Data\Distributed Data.lnk
- %PROGRAM_FILES%\DistributedData\vccorlib110.dll
- %WINDIR%\Installer\MSI2.tmp
- %WINDIR%\Installer\301e5.msi
- %TEMP%\distributeddata.msi
- %PROGRAM_FILES%\DistributedData\cpprest110_xp_2_0.dll
- C:\Config.Msi\301e8.rbs
- %WINDIR%\Installer\MSI3.tmp
- C:\Config.Msi\301e8.rbs
- %WINDIR%\Installer\301e5.msi
- %WINDIR%\Installer\MSI3.tmp
- %WINDIR%\Installer\MSI2.tmp
- 'localhost':1039
- 'localhost':1037
- 'mn#######g.azurewebsites.net':80
- mn#######g.azurewebsites.net/api/Segment/2
- mn#######g.azurewebsites.net/api/installping/OutBrowse
- mn#######g.azurewebsites.net/api/FirstRun/
- DNS ASK mn#######g.azurewebsites.net
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'