Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'updater' = '%CommonProgramFiles%\Updater\wupdater.exe'
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\updater.lnk
- %CommonProgramFiles%\updater\wupdater.exe
- %CommonProgramFiles%\updater\sui.exe update
- %CommonProgramFiles%\updater\delupdat.exe wupdater.exe
- %CommonProgramFiles%\updater\sui.exe
- %CommonProgramFiles%\updater\data2.dat
- %CommonProgramFiles%\updater\delupdat.exe
- %CommonProgramFiles%\updater\wupdater.exe
- 'im####2.laih.com':80
- im####2.laih.com/kv/ping.html
- DNS ASK im####2.laih.com
- ClassName: 'Shell_TrayWnd' WindowName: ''