Техническая информация
- <SYSTEM32>\ntvdm.exe -f -i4
- <SYSTEM32>\ntvdm.exe -f -i5
- <SYSTEM32>\ntvdm.exe -f -i6
- <SYSTEM32>\ntvdm.exe -f -i1
- <SYSTEM32>\ntvdm.exe -f -i2
- <SYSTEM32>\ntvdm.exe -f -i3
- %WINDIR%\Temp\scs8.tmp
- %WINDIR%\Temp\scs7.tmp
- %WINDIR%\Temp\scs6.tmp
- %WINDIR%\Temp\scs9.tmp
- %WINDIR%\Temp\scsC.tmp
- %WINDIR%\Temp\scsB.tmp
- %WINDIR%\Temp\scsA.tmp
- %WINDIR%\Temp\scs5.tmp
- %APPDATA%\ceLsrsvGhWZt.exe
- %APPDATA%\mbamservice.exe
- %APPDATA%\IMG3432.exe
- %WINDIR%\Temp\scs1.tmp
- %WINDIR%\Temp\scs4.tmp
- %WINDIR%\Temp\scs3.tmp
- %WINDIR%\Temp\scs2.tmp
- <Полный путь к вирусу>
- %APPDATA%\mbamservice.exe
- %WINDIR%\Temp\scs9.tmp
- %WINDIR%\Temp\scs8.tmp
- %WINDIR%\Temp\scs5.tmp
- %WINDIR%\Temp\scsC.tmp
- %WINDIR%\Temp\scsB.tmp
- %WINDIR%\Temp\scsA.tmp
- %WINDIR%\Temp\scs1.tmp
- %WINDIR%\Temp\scs3.tmp
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs7.tmp
- %WINDIR%\Temp\scs6.tmp
- %WINDIR%\Temp\scs4.tmp
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b9c.ba4.3b0002'
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-bc0.bc4.3c0001'
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-bd4.bd8.3d0001'
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b98.ba0.3a0001'
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b64.b6c.380001'
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b68.b70.390002'