Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'winupdate' = ''
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'winupdate.ini' = ''
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{D01OB6YP-EL23-A07G-U071-75683027TTV1}] 'StubPath' = '<SYSTEM32>\winupdate.ini\winupdate.exe Restart'
- <SYSTEM32>\winupdate.ini\logs.dat
- <SYSTEM32>\winupdate.ini\winupdate.exe
- <SYSTEM32>\winupdate.ini\logs.dat
- '??.##caldomain':288
- 'an##.hopto.org':288
- DNS ASK њ.###ldomain
- DNS ASK an##.hopto.org
- ClassName: 'Indicator' WindowName: ''