Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Intel GraphicLiveUpdate' = '"%TEMP%\eventMessage\VMwareCplLauncher.exe"'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Intel GraphicLiveUpdate' = '"%TEMP%\eventMessage\VMwareCplLauncher.exe"'
- '%TEMP%\eventMessage\VMwareCplLauncher.exe'
- %WINDIR%\Explorer.EXE
- %TEMP%\eventMessage\vmtools.dll
- %TEMP%\eventMessage\VMwareCplLauncher.exe
- 'wt##.#cmetoy.com':80
- 'wt##.#cmetoy.com':443
- DNS ASK wt##.#cmetoy.com
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'