Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqkpxvobo install
- %TEMP%\ins1.tmp
- 'fr###fono.ce.ms':80
- fr###fono.ce.ms/iCMdHVoJ9yMqxo8PrQkHwDKYPqsXxrX1x3my0hwPqcbk0dIhQu0ngTMzzBSqYwAx3tHl87DzC3VtHANGdP2t4V0XPGxd4DbDsk3ig2Cp3FjzoA==
- fr###fono.ce.ms/diGCpZKJIcqbObkX4lQ/HZUY83zGQms7EyfYhG8EIfPg2v4HYzYwurhDOsUs4XrOQeI5Y5vfsYCIgymgipGOsykiJR/+kfBk6HuvbToFVXZCY/f4VKQ6kwWwS0/i1BuXl6pD/98qQLjQKoQiKzN8lWdRKsrJdnpVlH6E4XnH2JHSuM4vQJrtjse6O6p4nOE74C5enPFHmlz35nSaQg8=
- DNS ASK fr###fono.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''