Technical Information
- [<HKLM>\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] 'wminit' = '%CommonProgramFiles(x86)%\System\wminit.exe'
- %CommonProgramFiles(x86)%\system\wminit.dat
- %CommonProgramFiles(x86)%\system\wminit.exe
- '64.#6.64.13':53105
- '64.#6.64.13':53101
- DNS ASK t1###18190.org
- '%CommonProgramFiles(x86)%\system\wminit.exe' "<Full path to file>"