Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",neywywnrbstt install
- %TEMP%\ins1.tmp
- 'po###en.cz.cc':80
- po###en.cz.cc/VWzJRygbfNBOrNvo9BQ9a3Dxma7S0bLY1hCowrXtEi4z8oVff0BSo+KE/Fcm3HQYOmoHRJPH5Y3oLSH2Axnhm5bLKfX9LXlGJwi4njmYrfIIhw==
- po###en.cz.cc/EwnPtUVLtfpGmfWSV/CN9r15lsvrUHPDjl84ZHPbqfZxQ2ll0DJpqWlgQsTn2wa73vGIc25w1jq2s/qPeNZOvy9y5/jueiu3pwRkRGcSBcdKURAgw7p0ngeNZOjcN2LCD0T2lY2rwuGhLUy6Vj4YbIHtMrX5CULJPpfTUrNHfkBm7MpxGr9fxSoxLNF0uVjvAfNZkULgcA8=
- DNS ASK po###en.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''