Техническая информация
- %WINDIR%f\mf.exe
- %WINDIR%f\BROWN.exe
- %WINDIR%f\wxs.exe
- %WINDIR%f\BROWN.exe (загружен из сети Интернет)
- %WINDIR%f\wxs.exe (загружен из сети Интернет)
- %WINDIR%f\mf.exe (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\mf[1].exe
- %WINDIR%f\wxs.exe
- %WINDIR%f\mf.exe
- %WINDIR%f\BROWN.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\BROWN[1].exe
- %WINDIR%f\wsys.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\wsys[1].dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\wsob[1].exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\wxs[1].exe
- %WINDIR%f\wsob.exe
- 's3.###zonaws.com':80
- 'localhost':1035
- s3.###zonaws.com/vaguga/mf.exe
- s3.###zonaws.com/vaguga/BROWN.exe
- s3.###zonaws.com/vaguga/wxs.exe
- s3.###zonaws.com/vaguga/wsys.dll
- s3.###zonaws.com/vaguga/wsob.exe
- DNS ASK s3.###zonaws.com
- ClassName: 'Shell_TrayWnd' WindowName: ''