Техническая информация
- %PROGRAMDATA%\0
- %PROGRAMDATA%\0cdfe991b7\kntd.exe
- '255.255.255.255':80
- DNS ASK re####muchwas.com
- DNS ASK fo####restons.ru
- DNS ASK he####ntfortho.ru
- '%PROGRAMDATA%\0cdfe991b7\kntd.exe'
- '<SYSTEM32>\reg.exe' ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" /f /v Startup /t REG_SZ /d %PROGRAMDATA%\0cdfe991b7