Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gugsaxfq install
- %TEMP%\ins1.tmp
- 'wm###on.ce.ms':80
- wm###on.ce.ms/rzWmSvpeFDWBQX1UaQiFStx7NldPbfX0E9UpohQzo3uRX/61MvDuXgENaUtyrF9PGsLWbmNw8C3wk6aPhBXxQpADEM5NGepvkTVx7l3hdt51iA==
- wm###on.ce.ms/iaTwSFRQFEf+wr5aNvBUmq2qYY8ILe+g/gnU5OddKW/p6u0S6KLx5/mCo6JjfBc1S9OPqo6ySCLiiEWXvw51sxZq5++C2EpGJkMb9uRs8NLvs8fHTf9owlAP19G4HMptatcFaqMWzRi2slXfv55F2dBNW64cWZAzk9BnplvvLZE/00DSuq04Y1jLaqpAZuQoWP1KEFLHwu8=
- DNS ASK wm###on.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''