Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",pyhkaqgoudave install
- %TEMP%\ins1.tmp
- 'wo###on.cz.cc':80
- wo###on.cz.cc/HXOzNrAI8EDxzsHSYWLgnU4rTDm2c2AlzA7d32ZCeMS4Du5AxcaJauEefy0ul/GHhBdSLNcup+xyY2gIwuLFbMk9WZ+2Zuu6OWVhMc+o/K51Bw==
- wo###on.cz.cc/LbDOrrHEf8w0/t2l0VHbUfr1TCjsnagFbNjC7CRG7LNUIk2gyITI1VwrpIZhrO38O4yfM2gbsE+hZcsEoQx2VbTD/UI+d5VBgC0ls0lX7Twvy7bcAXgkMlujQHmtGdUaHQk+cSDNb3O6ujX+VNg7u+qbutKGqChV0QRdYYhGDHwgUXYKbqWVHldpL09cJIX6GFGWjGnPCes=
- DNS ASK wo###on.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''