Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",ildxlkbyl install
- %TEMP%\ins1.tmp
- 'es###l.cz.cc':80
- es###l.cz.cc/KRYRVXZBKo5eOaXRYUb+xkuDc0sR9xEC5SlzMMWWeXiAdzf5z6Y4IRXQWMvpCzsh/L6LYfi8rlw8yvNcLjnHLNTbrtsixL925WkXDMZSEuEibA==
- es###l.cz.cc/ZSAIecKPx4SusVaiVzCijrZoLvKdB0Ai0lc0BkK9wkL07bh7f30If5gIUuqq1Pm/iJndPvM8YdC/aAzvuewfnVGknCFLbYvLehK0K2kA9GxnCin/wEEZr51r/GLbK5IB4gE6tBRgXaY+6vQc9puherS/Rwxurwk8IyMwHf9xaT9jbfmi+4/k1yGNho2MNagfaF4feOevP5c=
- DNS ASK es###l.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''