Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",zhslfddbh install
- %TEMP%\ins1.tmp
- 'de###gez.cz.cc':80
- de###gez.cz.cc/nzaTCpQu+oa0z3ODVCZMiv5ByLmPCGQiwSG8wT1nP+TqtXdGVv/BTjTXuWdhCapWknE4zHbdWcFJEnULvJND/oqb+gQxDztectJyH6fvW+5iJg==
- de###gez.cz.cc/fshokwqNxKUT8Fn2d6CY0OlkCGQNOT46/pCyP5haxQCL89ecAOS9jtO6P3c62/+Jb6TOaj5lRyz6kQg2LwHNNLc3RJowagEgwcaYUzskFCV2LUxB4AEJuG5cM9ar1YfuQby7RqITbNoNGkbwXiLvMuwsnPb8g2iOFF+x294OV77cp+PuBRyoliyrGfTPnvtU/d70Uabuk4k=
- DNS ASK de###gez.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''