Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Windows Update' = '%TEMP%\Windows Updates\Windows Update.exe'
- '<SYSTEM32>\rundll32.exe' dfdts.dll,DfdGetDefaultPolicyAndSMART
- %TEMP%\TarE0A1.tmp
- %TEMP%\Windows Updates\Windows Update.exe
- %APPDATA%\Roaming\Imminent\Logs\15-07-2014
- %TEMP%\CabDFE2.tmp
- %TEMP%\TarDFE3.tmp
- %TEMP%\CabE0A0.tmp
- %TEMP%\CabE0A0.tmp
- %TEMP%\TarE0A1.tmp
- %TEMP%\CabDFE2.tmp
- %TEMP%\TarDFE3.tmp
- 'mi######t-stuff.ddns.net':9003
- 'www.download.windowsupdate.com':80
- www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
- DNS ASK dn#.##ftncsi.com
- DNS ASK mi######t-stuff.ddns.net
- DNS ASK www.download.windowsupdate.com
- ClassName: 'Indicator' WindowName: '(null)'