Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunOnce] 'KeApplet' = '"%TEMP%\ke64pjde.exe"'
- %WINDIR%\Explorer.EXE
- opera.exe
- %TEMP%\2.m.log
- %TEMP%\1.m.log
- %APPDATA%\Help\ceptr.tll
- %TEMP%\ke64pjde.exe
- %APPDATA%\Help\comm.tll
- 'www.ko#####ose-rente.com':80
- 'www.el###riauto.com':80
- 'ca####in-sesi.com':80
- www.ko#####ose-rente.com/com/g.php
- www.el###riauto.com/imagenes/g.php
- ca####in-sesi.com/cgi-bin/g.php
- DNS ASK www.el###riauto.com
- DNS ASK www.ko#####ose-rente.com
- DNS ASK ca####in-sesi.com
- '<IP-адрес в локальной сети>':1033