Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\lZkN1YRM] 'Start' = '00000002'
- <SYSTEM32>\svchost.exe -k lZkN1YRM
- %PROGRAM_FILES%\MSN\Setup.dll
- %WINDIR%\windows.dat
- <SYSTEM32>\cXOMXe.pic
- %WINDIR%\vbcfg.ini
- %WINDIR%\vbcfg.ini
- %WINDIR%\windows.dat
- 'a3####5049.3322.org':8000
- DNS ASK a3####5049.3322.org