Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SRAT_Service] 'Start' = '00000002'
- 'C:\2.exe'
- '<SYSTEM32>\svchost.exe' -k netsvcs
- <DRIVERS>\etc\FVgXpYIw.dll
- <DRIVERS>\etc\GVgtw78yP8.del
- C:\2.exe
- <DRIVERS>\etc\GVgtw78yP8.ini
- <DRIVERS>\etc\GVgtw78yP8.del
- C:\2.exe
- 'ga#####meng.3322.org':8800
- DNS ASK ga#####meng.3322.org