Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'SouGou' = '\ctfmon.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\bK78e5S] 'Start' = '00000002'
- <SYSTEM32>\svchost.exe -k bK78e5S
- %PROGRAM_FILES%\MSN\Setup.dll
- %WINDIR%\cvbtr32fg.dat
- <SYSTEM32>\Bgf0qq.pic
- %WINDIR%\vbcfg.ini
- %WINDIR%\vbcfg.ini
- %WINDIR%\cvbtr32fg.dat
- 'a5####7213.3322.org':5304
- DNS ASK a5####7213.3322.org