Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Update' = '%HOMEPATH%\Start Menu\Programs\Startup\WindowsUpdate\update.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Update' = '%HOMEPATH%\Start Menu\Programs\Startup\WindowsUpdate\update.exe'
- %HOMEPATH%\Start Menu\Programs\Startup\WindowsUpdate\update.exe:ZONE.identifier
- %HOMEPATH%\Start Menu\Programs\Startup\WindowsUpdate\update.exe
- <Full path to file>:ZONE.identifier
- %HOMEPATH%\Start Menu\Programs\Startup\WindowsUpdate\update.exe
- 'localhost':9003
- 'de####m1.no-ip.biz':9003
- DNS ASK de####m1.no-ip.biz
- '%HOMEPATH%\Start Menu\Programs\Startup\WindowsUpdate\update.exe'
- '<SYSTEM32>\cmd.exe' /c echo [zoneTransfer]ZoneID = 2 > "%HOMEPATH%\Start Menu\Programs\Startup\WindowsUpdate\update.exe":ZONE.identifier & exit
- '<SYSTEM32>\cmd.exe' /c echo [zoneTransfer]ZoneID = 2 > "<Full path to file>":ZONE.identifier & exit