Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'kav' = '<SYSTEM32>\kav.exe'
- %TEMP%\ope2.tmp
- %TEMP%\ope1.tmp
- 'be###jeidw.info':80
- '22#.5.53.75':80
- be###jeidw.info/xx1.txt
- 22#.5.53.75/1/count.asp?ma###############################################
- DNS ASK be###jeidw.info