Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'umoxdnen' = '"%WINDIR%\ogidusov.exe"'
- '%WINDIR%\explorer.exe'
- %WINDIR%\explorer.exe
- %ALLUSERSPROFILE%\Application Data\eqyxysudupyjodut\02000000
- %ALLUSERSPROFILE%\Application Data\eqyxysudupyjodut\00000000
- %ALLUSERSPROFILE%\Application Data\eqyxysudupyjodut\01000000
- %WINDIR%\ogidusov.exe
- 'ar######e.piyt1kgfgg.org':443
- 'bj####.piyt1kgfgg.org':443
- 'uc##.#iyt1kgfgg.org':443
- 'ed###.#iyt1kgfgg.org':443
- 'im######ogi.piyt1kgfgg.org':443
- 'dm######ame.piyt1kgfgg.org':443
- 'if##.#iyt1kgfgg.org':443
- 'ix######z.piyt1kgfgg.org':443
- DNS ASK ar######e.piyt1kgfgg.org
- DNS ASK bj####.piyt1kgfgg.org
- DNS ASK uc##.#iyt1kgfgg.org
- DNS ASK ed###.#iyt1kgfgg.org
- DNS ASK im######ogi.piyt1kgfgg.org
- DNS ASK dm######ame.piyt1kgfgg.org
- DNS ASK if##.#iyt1kgfgg.org
- DNS ASK ix######z.piyt1kgfgg.org
- ClassName: 'Shell_TrayWnd' WindowName: ''