Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",pqepxdahmevzh install
- %TEMP%\ins1.tmp
- 'hm###ett.co.be':80
- hm###ett.co.be/IGuSYmnqW5e0PaHfiBUSlvvYIUe0LW9ybToLTF5pjq5s2YleXA4YBj2zgewYdQrMmrnmuCUY6nW9Os7ucHct4g+JPeGiTEKKD5o9ktfh8/4=
- hm###ett.co.be/hkJOjeShCyPOzF618/s93M2z1qMw0bUXD7o7SZocylZMW3GyCjHdjJowERM17XldEXvGZb0M5go41ycSYSJCNQSQnNSFyCkpyOlp0lkqGJUaRyG2Pw1Eu3KyMRocJcQcvNLkhPFAPyH5c2dJ5C7Z36MUjecNqLejZ+wIK9IZ/CkPhneO4c6W9LxN8ftUEyd0yXKLuJ17
- DNS ASK hm###ett.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''