Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",mxjtizdo install
- %TEMP%\ins1.tmp
- 'ne###s.ce.ms':80
- ne###s.ce.ms/YEMgDafP4jGwPPq2A2xVsMa5nj6kORRwMfUVCgT8FPIIaYrCRmDjB+0+j3iF45+LP+GQuWq63e/eEZxVypfMfy3cWg4MQJeGTtM56w1/6n+XtA==
- ne###s.ce.ms/gjQVxuBndD49Y5oveZ/FHSa6HrBFSy9tbhwf1zdQcnTQGSbNi1FxwnoSXv+Mq4nKr1Iweap4/YYvfcuTjGromDP21m/DZCbWz/r7zGJFQvBldRxa+gluzoV0lEfbE5zomd0yXE1wVhhO7NCGIjauP8rAarej2yNI0EByITxM1Tyd/kvuIgDLhThE1qIomF9ZY8LBJo852CI=
- DNS ASK ne###s.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''