Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Roblox Helper' = '%APPDATA%\Roblox\robloxhelper.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Roblox Helper' = '\Roblox\robloxhelper.exe'
- '<SYSTEM32>\taskmgr.exe'
- '%WINDIR%\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe'
- %WINDIR%\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
- %APPDATA%\Roblox\robloxhelper.exe
- %APPDATA%\Imminent\Logs\05-08-2017
- %APPDATA%\Imminent\Path.dat
- %TEMP%\aut1.tmp
- %TEMP%\QshEP.wcf
- C:\Roblox\robloxhelper.exe
- %TEMP%\aut1.tmp
- 'lo######sass.duckdns.org':6969
- DNS ASK lo######sass.duckdns.org
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'Windows Task Manager'