Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Updater' = ''
- %APPDATA%\Datalog.exe
- ClassName: '' WindowName: 'Registry Monitor - Sysinternals: www.siliconrealms.com'
- ClassName: '' WindowName: 'Process Monitor - Sysinternals: www.sysinternals.com'
- %TEMP%\%USERNAME%7
- %TEMP%\%USERNAME%8
- %APPDATA%\%USERNAME%log.dat
- %APPDATA%\Datalog.exe
- %TEMP%\%USERNAME%2.txt
- %APPDATA%\%USERNAME%log.dat
- %TEMP%\%USERNAME%7
- %TEMP%\%USERNAME%8
- %TEMP%\%USERNAME%2.txt
- 'localhost':10003
- 'mi#####fts.myvnc.com':10003
- DNS ASK mi#####fts.myvnc.com
- '<IP-адрес в локальной сети>':1033
- ClassName: '' WindowName: 'SwitchSniffer v1.3.2.0 Registered'
- ClassName: '' WindowName: 'SwitchSniffer v1.3.2.0 UnRegistered'
- ClassName: '' WindowName: 'Project 1 - Packet Analyzer - Colasoft Capsa'
- ClassName: '' WindowName: 'The Wireshark Network Analyzer'
- ClassName: '' WindowName: 'Ether Detect'