Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",pyhkaqgoudave install
- %TEMP%\ins1.tmp
- 'ho###so.cz.cc':80
- ho###so.cz.cc/OyJoAIxp50VjTow3jICjsHgxHTunHGjLkhVdQUF7oq0algdRaQTpPZlLj/BP1jRONussh7m76XmGZspw1xrv87nAdFaesNHzS5j0nj108sFw0w==
- ho###so.cz.cc/puqXkTzzQbrdiiY0NZpZwpp49hZT23ak09ywU1HtPNFUgBXtwr2l+OUZwQQo9JYtawkM2b11OYKiJLYi1N9P9YWFUdKZySay7/Fjd6hHCgMK604igls2fKGwjf1RoUbzUg2QNnBKaI8Zb37OfqxIJ0UdZSvhI8DujB+yfj0MKIpTFW+tRjQvM/ZoPZySinpCWlPalEqzyEQ=
- DNS ASK ho###so.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''