Техническая информация
- <SYSTEM32>\tsoyd2wis.exe (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\jkjleaetg[1].exe
- <SYSTEM32>\tsoyd2wis.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\testfile[1].ini
- <SYSTEM32>\yfdmff1.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\jkjleaetg[1].exe
- <SYSTEM32>\tsoyd2wis.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\testfile[1].ini
- <SYSTEM32>\yfdmff1.ini
- 'ed###ey2.com':80
- 'iz##py.net':80
- 'localhost':1036
- 'th.##onkey2.com':80
- th.##onkey2.com/inCheck/files/testfile.php
- iz##py.net/protest/mytest/chkdown.php?ch#######################################
- th.##onkey2.com/inCheck/files/testfile.ini
- ed###ey2.com/pyxia/jkjleaetg.exe
- DNS ASK ed###ey2.com
- DNS ASK iz##py.net
- DNS ASK th.##onkey2.com
- '<IP-адрес в локальной сети>':1037