Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",vupyfqkw install
- %TEMP%\ins1.tmp
- 'lo###egh.mo.cx':80
- lo###egh.mo.cx/ETQeYPXPucu9IbsIP78yJAd4x/RXCYpCunmQmbel7SgYy+BxijQEogj49gttOPRaPkN+5vd+wJ29VW6ofjygVnRCYnDvYm74QK8R3uMQq7A=
- lo###egh.mo.cx/HPhOXtYLn6LlJ+pjTzjTDqU9S1/Kpg85TJtJjm8v0M/XNuQx3nvJKREbC6hPUEjorh79UDnZBsh8bAp4o9Z7gyxFnXCROOBJ3lQTeaWg/cFpIHPWhMNJVhsMUDnCBGKBvI1ORuiASC58tCtmcmPsflsiAC6UUO+r+Gpb2yWz1lsTBv9+WjzpybgWbQf8MKhWqWQD99Fr
- DNS ASK lo###egh.mo.cx
- ClassName: 'Shell_TrayWnd' WindowName: ''