Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",jwegqyayuzcrb install
- %TEMP%\ins1.tmp
- 'do###r.cz.cc':80
- do###r.cz.cc/mzQmQkSCDs5SzSyLc7oIsXM19/hYWBGrDzz4+gZzHSMvaTJ/fdaTKcYFFDz/mEEJcEDZF9+OX65CRrfA+5wV47V2rjKDmbQngYlf/pfW819LIg==
- do###r.cz.cc/XlrMVSNGZw5aQ1C+QTczgi4nZ0RXLs4WquoVUC4Vt748qJGCUXk15pWBAI00P1949SmTVeePgNtCNeSNa5vGgTMHfzSrQV4xOyHEwYTDNPI53pzDeQ9eJ9aaOcTvvrs9+b99O58A2ZtYTdLU3mKqZQnXLWol9wn0/xf9Hao14vLZ70Bf2r8NV2exL3+UQEos8HPNmQcjuNU=
- DNS ASK do###r.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''