Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",zhslfddbh install
- %TEMP%\ins1.tmp
- 'th###od.cz.cc':80
- th###od.cz.cc/CCKlrKoNQMc3GBnufy/ZOjybdDEJcZ9x0uP/4HqLgt7oW0fgyLFuK2SmT4ZlFmasf6wpHpqoi3xB27Are6hBoTRSeadwrNs9+Uou0JPhAHw=
- th###od.cz.cc/MkeTHTstojKPRSl3i9j03nMfW+/6JGy9zAdWqHUjlhWjI6jMg3p4Nn8nQyr1MIakuP6vmagRp03qX5xxj/MauUnVrohgveUKktAWh8SEoX2Vp5R3OW4hyuQ1xlmps3XR6bChEFmXpXsz1FVzVr00XgJ0LawdIUllIiED8pFWlvAR98FVJH0so6GjXgdW6Mu5X/8/Z7jh
- DNS ASK th###od.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''