Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunOnce] 'KeApplet' = '"%TEMP%\ke64vdtwkh.exe"'
- %WINDIR%\Explorer.EXE
- opera.exe
- %TEMP%\2.m.log
- %TEMP%\1.m.log
- %APPDATA%\Help\ceptr.tll
- %TEMP%\ke64vdtwkh.exe
- %APPDATA%\Help\comm.tll
- '46.#.189.248':80
- '17#.#12.203.58':80
- 46.#.189.248/sec/g.php
- 17#.#12.203.58/sec/g.php