Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Intel(R) Common Networking System' = '%APPDATA%\Intel Corporation\Intel(R) Common User Interface\1.0.0.0\taskhost.exe'
- '%APPDATA%\Intel Corporation\Intel(R) Common User Interface\1.0.0.0\taskhost.exe'
- '<Текущая директория>\~Multi_Shit_Tool_v_0_3.exe'
- %APPDATA%\Intel Corporation\Intel(R) Common User Interface\1.0.0.0\taskhost.exe
- %APPDATA%\Intel Corporation\Intel(R) Common User Interface\6.1.7601.22172\svchost.zip
- <Текущая директория>\~Multi_Shit_Tool_v_0_3.exe
- %APPDATA%\Intel Corporation\Intel(R) Common User Interface\1.0.0.0\server.zip
- %APPDATA%\Intel Corporation\Intel(R) Common User Interface\1.0.0.0\taskhost.exe
- <Текущая директория>\~Multi_Shit_Tool_v_0_3.exe
- %APPDATA%\Intel Corporation\Intel(R) Common User Interface\1.0.0.0\server.zip
- 'wi#######ices.000webhostapp.com':80
- 'wp#d':80
- http://wi#######ices.000webhostapp.com/svchost.zip
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK wi#######ices.000webhostapp.com
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: ''