Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Gpdfbi Gnkbttyb Mgg] 'Start' = '00000002'
- '<SYSTEM32>\svchost.exe' -k sougou
- '<SYSTEM32>\svchost.exe' -k netsvcs
- C:\Net-Temp.ini
- %PROGRAM_FILES%\Ilst\Fttrkgqde.dll
- %WINDIR%\xinstall2748700.dll
- C:\Win_lj.ini
- %PROGRAM_FILES%\Ilst\Fttrkgqde.dll
- %WINDIR%\xinstall2748700.dll
- C:\Win_lj.ini
- C:\Net-Temp.ini
- 'oi####2.f3322.org':918
- DNS ASK oi####2.f3322.org