Техническая информация
- '%TEMP%\tmp2.tmp.exe'
- '%TEMP%\tmp2.tmp.exe' (загружен из сети Интернет)
- %TEMP%\tmp2.tmp.exe
- %TEMP%\tmp1.tmp
- 'dr##ehq.com':80
- 'ft#.#hpnet.us':21
- 'wp#d':80
- dr##ehq.com/file/DFPublishFile.aspx/FileID1468206982/Key34a6h5cjlmnw/JavaUpdate.exe
- wp#d/wpad.dat
- DNS ASK dr##ehq.com
- DNS ASK ft#.#hpnet.us
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'