Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",lqdvkecwrak install worker
- %TEMP%\ins1.tmp
- 'ge###les.ce.ms':80
- ge###les.ce.ms/OnvyvLMZhZrCdzminvdZe5Xs6Df1hxRQ3BI0H6V3ncmd7JG6QVohPi85hh1iK6do/9VDeq9OT3O2JCAPqAHMxZPddWJ7aXvxwZOeWGFkCME=
- ge###les.ce.ms/ftAxMgfseRGxUhM57z+czDpp3SNBNiTtNhta8ppSfkKjK01sKj+czqEpbRsEFsfLJg9MbcQ7XWrJk3LnqqEPi0oPOIe3HbRkCdq3Yli+1X8+VHbF8uHDS8GjV7W0x61VXVPnc5980ylQeFjM1ueBpj9kFZlFkB3aF3YHIYug4K1HPjFz3iqN3bX8fCT1kt37fqx96vT6
- DNS ASK ge###les.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''