Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",knzlvyxp install
- %TEMP%\ins1.tmp
- 'ge###re.cz.cc':80
- ge###re.cz.cc/oumljJfVVAZCDP6Xr15C1WBFdrf4H65MnP59QNeH3VsaVLsxzME8A2Ln6IHXlLURDyR5QhGz+a1bDvHfONxZ/h073xnFEuE/5oEeLI8vO52Khg==
- ge###re.cz.cc/iqRyFsXEBGgY0kyjjuKchUzAH28s5kqfbF0MreNQnkXQfjRowiFTwUVPZsOhGoTbd8/Bq1/a3GMXugoNzhQk4IlrZZmCm/E5EZgAuBaZUwm8gFliUPyF6u0b7i9KlcYuN4m1o5FaVGC5jV2FgGWay/h5n1q+PJl+FvBFViBmyh/YiRGQ41f5zu02VCiLImbCoyUGPL+S0X4=
- DNS ASK ge###re.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''