Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gugsaxfq install
- %TEMP%\ins1.tmp
- 'wm###on.ce.ms':80
- wm###on.ce.ms/gEyWeFDzlUnGXQHihf8ufNV+ZOwOr+kjXsoUKcEZI9My+HGVnibQoDJTj8Suaup38WPGWHmoV8TuZjFODzjKXT0mpXD0w3bA/4zD3EHw4DaSGQ==
- wm###on.ce.ms/BgeEyZlRTAJC22a+8WVgHPpvZgrNS0BNDSxa9rC2TZweIQMnLYZWToeqhJnpZgFgK7/LgLNSLc9FpKscTzgJ+7zFVvfQEkIJaoNHxhvRRXRv/DMOzIAWV3y3jElZohaLXYrac3uT1Lb6MPI0khtw9Kc9Bpp5DCka2HQc8ljlLbP2w9CsjLrld7XK2809K/MnqNL4XwMoGho=
- DNS ASK wm###on.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''