Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Intel(R)' = '%TEMP%\Intel(R)\Intel.exe'
- '<SYSTEM32>\svchost.exe'
- <SYSTEM32>\svchost.exe
- %APPDATA%\Microsoft\Windows\u0dwigm.dat
- %TEMP%\Intel(R)\Intel.exe
- %APPDATA%\Microsoft\Windows\u0dwigm.cfg
- %APPDATA%\Microsoft\Windows\u0dwigm.dat
- %TEMP%\Intel(R)\Intel.exe
- %APPDATA%\Microsoft\Windows\u0dwigm.cfg
- 'mb####.no-ip.info':5555
- 'localhost':1037
- DNS ASK mb####.no-ip.info
- ClassName: 'Shell_TrayWnd' WindowName: ''