Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",pyhkaqgoudave install
- %TEMP%\ins1.tmp
- 'ro###son.cz.cc':80
- ro###son.cz.cc/usqhydSsxeFzESXwj10xSjlQqBNti3ePrIBw30wQ6WIxNl7zd33Hkqm9MdEtg0m3bYM2FWt0kGuNYCIMn9n/lezPFsvIJfKRsMSIMGxO6Mht1w==
- ro###son.cz.cc/cLTccnkKKfSbUvNmo5aj24+7kQlZTkG7h2KRZh3XE9V47UYpP3Z/qMedfMf1qCB63Np3G976zwKTLKtmRRw882YGSxsHnvw8AE6QP4eqhYJ+A8HhZJhTydqtpWXCSJeWcMIrbg5XaLSsUjCwKGyZ9vkR4LzQsEaT55X98XMP39f1MAPG4MJlI4yENcTXtBTrl1Ph5EtVvYg=
- DNS ASK ro###son.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''