Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'HotKeysCmds' = '%WINDIR%\uCtrl.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'UCtrl' = ''
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'zCtrl' = ''
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'InprocServer32' = ''
- %WINDIR%\u_events.log
- %WINDIR%\events_25042018.log
- %WINDIR%\u_events.log
- %WINDIR%\u_events.log
- DNS ASK wp#d
- DNS ASK crl.microsoft.com
- ClassName: '' WindowName: 'diantr.exe'
- ClassName: '' WindowName: 'Administrador de tareas de Windows'
- '<SYSTEM32>\msiexec.exe' /V