The code below shows a fraction of the URLs it filters for redirection: Redirection takes place on both http and https. For https redirection to work, the rootkit installs a custom root certificate. This way the browser won't warn of the unknown identity of the proxy server. 5 Bitdefender...
qdAUaAlQdTKi9CbBxQXhSN2BSbXShfrQSz2q/NlRzi0FFQY5FbCTdmUsL2KrIIaoVX03vUG TYXNFCQV7RVSYiWmlWHTYEkV+YrcVEIrDvV2rCSbEpZXkFWSrhUCii90Zihu+qbAUgpiFbBrQiS5 0r8SDYbkr+WAJzITO9RNIlm+Q828oV+zCskjzNd5VEn6oSikZEQOTQdQ5D11o4QII1uIrTr2lLrr 1sCBxcZy8AikBCA2h9hlJKKkgfUbUEwnUUvzIMl5/3JFEfeBe...
MCAiMjDUQQcODEQEQwMCiAiC4KDBBhIPIEzwYAANAkw4UGSQIeHAQQSKCAsMCx4QFQ8RFA5gaECA 8fCwAAYVDzw26AADg2IChkZRPCwgJCI0eHCwsHjAkKAwgAYEFw+MDAwiLDAwHBYeEBUUEhMaeKBB gA4sHCgqIjAeIgzwgKhggGMBEWBIUIigwZCgYPHAkIg4AAIeYMGQzdvwZb+AnrtXK8/nSmP1iPD+ tr2a3tZCl80+ZKdsQtTX7Ydjc1p6u33+eT10Svs+23f505y9...