Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",xvrbnmlyoh install worker
- %TEMP%\ins1.tmp
- 'eo###on.ce.ms':80
- eo###on.ce.ms/EeMnCpReDln2Rn7nqlX6FXZbP9/tT8h0HkiMq+taf9s1ud82nZmj8kQvWU7d2xo6rtEFqtZBawUm9BpEf0gywbLch8ce1D9AUIrb0K+guq0=
- eo###on.ce.ms/yYnLtNYwxFfdEIM4oMGG/Z0pLR4x69CH26GqnoKTdBYRJFUBR+4SpkZF5QzcNzdehajUEsrD7kL+6spf5UyLajCTaqYicbcGQnclvLiT9EhZco8KQ9nMGCWxYdMzBjCcwcU9PjWtAzdAo4Y6fWv5TCYkAx7JYpWL0Zr9scHS2ASpJiTJbNYceZ+gkJR+iByqLOHfbU61
- DNS ASK eo###on.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''