Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Microsoft MSDN' = '<SYSTEM32>:MSDN.exe'
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{5B4D1803-6903-C7E3-EA1E-75CDCD066627}] 'StubPath' = '<SYSTEM32>:MSDN.exe'
- %TEMP%\File.exe
- %WINDIR%\Explorer.EXE
- iexplore.exe
- <SYSTEM32>:MSDN.exe
- %TEMP%\File.exe
- 'kl###.sytes.net':3460
- DNS ASK kl###.sytes.net