Техническая информация
- '%TEMP%\Security.exe'
- '%PROGRAM_FILES%\FBShare2\FBShare2.exe'
- '%HOMEPATH%\Local Settings\Tempnajaf.exe'
- '%TEMP%\Security.exe' (загружен из сети Интернет)
- %HOMEPATH%\Desktop\FBShare2.lnk
- %TEMP%\Security.exe
- %PROGRAM_FILES%\FBShare2\FBShare2.exe
- %HOMEPATH%\Local Settings\Tempnajaf.exe
- %PROGRAM_FILES%\FBShare2\Facebook.dll
- 'dc##.gulfup.com':80
- 'wp#d':80
- dc##.gulfup.com/F7ym1.exe?gu#############################################################################################
- wp#d/wpad.dat
- DNS ASK dc##.gulfup.com
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'