Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",ixmhcrfw install
- %TEMP%\ins1.tmp
- 'ge###mod.ce.ms':80
- ge###mod.ce.ms/VkEvDBdow0QVT9VxJZFrtvdFlf7+3WXZvIGNlQ2mCGvc/fvs4Ai1Mr35XPvT6Hqci2++l6CT2jWGvN5COFrlIUrn/GAS8vKXaD+hs+fYjhEuAA==
- ge###mod.ce.ms/jYJHUBpgcWHlBRytlFkXeL4TeciHh6as+X64RqUaxyAf9VXPlPKya5w40dZAWAk9Ikx7OC7vuha3Tv2h4XPsKKjKPUBWcU/062EiKmc/8mdZzCSam8wj9ulNREx4AKgilh9F67VLbxMdd0bc5Z63B6K1iR5l3340LHq8vBSHVt1lgbKPoJRlm4sVARxPysN+iFJ9WhSp4mk=
- DNS ASK ge###mod.ce.ms
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''