Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hxoueddk install
- %TEMP%\ins1.tmp
- 'so###n.cz.cc':80
- so###n.cz.cc/ueoCoWgNgaJaoxYXqV3+9JNcZg1pTnCvFFYxyPj0DPj1jzFhnZbPcmcbto2x/ZpByf3/3Ao9z49ZlNlsApvn8tHHVgL8r7OmKMgIoxcXEcmMKA==
- so###n.cz.cc/AINgtyNfWnLWTmj4EpCiH5XVGbt9ay4qCgiTtChWC6gJByYFrLa2vzuF/xBra+mPk83gJ1yzCy8pHCExesOhTFFXGNsPUUMwG2rDEth2bP0gQA4RhX1PmORHUa70wi6LDdywW4LSBaLzZNuErnWDOXMXTNBeE8Bl6uA2P4zt4wy+2goRTAiGnb1rgAn+hhpMGqJ4qRIT0Ug=
- DNS ASK so###n.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''