Техническая информация
- '%TEMP%\Security.exe'
- '%PROGRAM_FILES%\FBShare2\FBShare2.exe'
- '%HOMEPATH%\Local Settings\TempFBShare.exe'
- '%TEMP%\Security.exe' (загружен из сети Интернет)
- %HOMEPATH%\Desktop\FBShare2.lnk
- %TEMP%\Security.exe
- %PROGRAM_FILES%\FBShare2\FBShare2.exe
- %HOMEPATH%\Local Settings\TempFBShare.exe
- %PROGRAM_FILES%\FBShare2\Facebook.dll
- 'ww##.0zz0.com':80
- 'wp#d':80
- ww##.0zz0.com/2013/08/06/18/358093829.jpg
- wp#d/wpad.dat
- DNS ASK ww##.0zz0.com
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'