Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",hwivwnxkd install
- %TEMP%\ins1.tmp
- 'kr###neer.ce.ms':80
- kr###neer.ce.ms/DQoeJhvmW+e8k7LAynSh2N8mJskPJ7SDIjfcYtlOVit26Gtl0MK9taTffe+XkvZBF9+btOMKgiLyBX48ET1eX4Tfk7+7tOIpxe19QwUEyWI=
- kr###neer.ce.ms/NMncIcIC6DV+c69x+OhTPdfuNPIA8WSFWtsLiC76648yLG7xpQAVkm495VtVnw2LZ6pGjwbQrgBrahjEmjH7FKsuUpEFa+A/eSL0GVHVKT9V3WS9nunKB/FVkrWvBMG0sI1TzwRViq/kVwnjh5wP1SH4sLzp6VmHulcquNO4fCblPBTNqLGgt2yHx4LOAeVGXUfwOsmU
- DNS ASK kr###neer.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'