Technical Information
- D:\windows\system32\config\system.log1
- D:\windows\system32\config\system
- D:\windows\system32\config\software.log1
- D:\windows\system32\config\software
- D:\users\user\ntuser.dat.log1
- D:\users\user\ntuser.dat
- D:\users\user\appdata\local\microsoft\windows\usrclass.dat.log1
- D:\users\user\appdata\local\microsoft\windows\usrclass.dat
- D:\windows\system32\winevt\logs\system.evtx
- D:\windows\system32\winevt\logs\security.evtx
- D:\system volume information\syscache.hve.log1
- D:\system volume information\syscache.hve
- D:\windows\system32\winevt\logs\microsoft-windows-networkprofile%4operational.evtx
- D:\windows\system32\winevt\logs\application.evtx
- D:\windows\serviceprofiles\localservice\appdata\local\lastalive1.dat
- D:\users\user\appdata\roaming\mozilla\firefox\profiles\0j9e9tku.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-wal
- 'ns##ick.com':80
- '00##86.com':80
- http://www.ns##ick.com/images/home.css
- http://www.ns##ick.com/images/webdetector.css
- 'localhost':49158
- '35.##1.9.150':443
- DNS ASK ns##ick.com
- DNS ASK co####.51yes.com
- DNS ASK 00##86.com
- ClassName: 'SystemTray_Main' WindowName: ''