Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",xvqfmnwcusy install
- %TEMP%\ins1.tmp
- 'sg###elh.cz.cc':80
- sg###elh.cz.cc/lTcYCEvpdf0k6D1eOKQrOCMVYByg780IhRPw/zUvJ7tzLswzEXlH/QiiZxa5WMYQHG4t/RZTSz+6yUdsYaiMsLKm4qNfU5Tli3WEYnTMU38=
- sg###elh.cz.cc/NWhdZqSKTfnPg15NpM82ywPvzS2GHC74KGG25D7Q64RU8IOJckhzf+/WbM8rbxPRB56v7caf+2LHj9q4HwgVGhy+iF37L2AJnPbmJraZzRPNdyqJBPjFwnHctgIIacbcQuXgyGmveAml64MkJrrF/0eMIbzAcoosdnIJilyY8rfbhIGTD+iPkpp75COi+JctFwcw+cmJ
- DNS ASK sg###elh.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'