Техническая информация
- '%TEMP%\denis.exe'
- '<SYSTEM32>\ntvdm.exe' -f -i1
- %WINDIR%\Temp\scs1.tmp
- %WINDIR%\Temp\scs2.tmp
- %TEMP%\sengo.exe
- %TEMP%\denis.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\1305UKdw[1].zip
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs1.tmp
- 'lu####diseno.com':80
- lu####diseno.com/images/powerslide/Concha/1305UKdw.zip
- DNS ASK lu####diseno.com
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b3c.b40.380001'