Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",qisgbajoyne install
- %TEMP%\ins1.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\24A==[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\psrOD8lW4SRUo4gPdf5DnMlzsEfedMCIZ0evq27DkLc7qV8nUCEpjc7c5gQ=[1]
- 'ne###rt.cz.cc':80
- 'localhost':1036
- ne###rt.cz.cc/LTxSRrcAPk+5E7hsTIhCJQIbtu8BPbcw/XFpLhAtN5ZKvuz+vO82PyGi/TOLYBIxAu9GABk8ofex2a/9rGHDoGerRQkgsAmt21ZWELCvXs/24A==
- ne###rt.cz.cc/wJNdJhtemaqsN3MIsBlPalA4JzYWlMFU6wk8L928Wbsi9wN3xCbCYiD9iEcFnczh8mxzjmkVvIj87JximfXp91wHXSplnzcgzsKEq6pqFjG9sNFVlwms3lCL2JvLVy/7hdL46zMMI87xmOh/psrOD8lW4SRUo4gPdf5DnMlzsEfedMCIZ0evq27DkLc7qV8nUCEpjc7c5gQ=
- DNS ASK ne###rt.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''