Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Windows Update' = 'C:\config\update.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Update' = 'C:\config\update.exe'
- C:\config\update.exe
- 'as###ldog.info':80
- 'ap#.#ostip.info':80
- 'wp#d':80
- ap#.#ostip.info/country.php
- wp#d/wpad.dat
- as###ldog.info/httpcontrol/bot/getInterval.php
- as###ldog.info/httpcontrol/bot/update.php
- DNS ASK as###ldog.info
- DNS ASK ap#.#ostip.info
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''