Техническая информация
- %TEMP%\nsz2.tmp\InstallManager.exe (загружен из сети Интернет)
- <SYSTEM32>\ntvdm.exe -f -i1
- %TEMP%\nsz2.tmp\Samsung_PC_Studio_7.2.24.9.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\Samsung_PC_Studio_7.2.24.9[1].htm
- %WINDIR%\Temp\scs4.tmp
- %WINDIR%\Temp\scs3.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\download[1].php
- %TEMP%\nsz2.tmp\inetc.dll
- %TEMP%\nsz2.tmp\InetLoad.dll
- %TEMP%\nsz2.tmp\InstallManager.exe
- %WINDIR%\Temp\scs4.tmp
- %WINDIR%\Temp\scs3.tmp
- 'www.fi###actory.com':80
- 'www.nt###one.com':80
- www.nt###one.com/download.php?k3######
- www.fi###actory.com/file/ce6ba0e/n/Samsung_PC_Studio_7.2.24.9.exe
- DNS ASK www.fi###actory.com
- DNS ASK www.nt###one.com
- '<IP-адрес в локальной сети>':1035
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b78.b7c.370001'
- ClassName: '#32770' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''