Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'OKDK' = '%PROGRAM_FILES%\NaverSearchA\OKDK.exe'
- '%PROGRAM_FILES%\NaverSearchA\OKDK.exe'
- <Полный путь к вирусу>
- %PROGRAM_FILES%\NaverSearchA\OKDK.exe
- %PROGRAM_FILES%\NaverSearchA\OKDK.exe
- <SYSTEM32>\MSWINSCK.ocx
- %TEMP%\~DFF0DF.tmp
- 'localhost':81
- 'cf#####8.uf.daum.net':80
- cf#####8.uf.daum.net/attach/262C0E4A510C795E1C5C43
- DNS ASK cf#####8.uf.daum.net
- ClassName: 'Shell_TrayWnd' WindowName: ''