Техническая информация
- %TEMP%\File1.exe
- <SYSTEM32>\ntvdm.exe -f -i1
- %WINDIR%\Temp\scs1.tmp
- %WINDIR%\Temp\scs2.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\ip[1].asp
- %TEMP%\File1.exe
- %TEMP%\File2.exe
- <SYSTEM32>\MSWINSCK.OCX
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs1.tmp
- 'zo####aq.no-ip.biz':222
- 'zo####aq.no-ip.biz':5555
- 'zo####aq.no-ip.biz':5100
- 'localhost':1036
- 'www.mi###osoft.com':80
- www.mi###osoft.com/ip.asp
- DNS ASK zo####aq.no-ip.biz
- DNS ASK www.mi###osoft.com
- '<IP-адрес в локальной сети>':1037
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b48.b4c.370001'