Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gugsaxfq install
- %TEMP%\ins1.tmp
- 'wm###on.ce.ms':80
- wm###on.ce.ms/XZobHSzCfo/bwqnbp0NMpZlSfd0RFeBo+G6jOIHkC+FdeaIkHJoNdcyE5k6bPZu6btOvJcYmU09Hdiv1YC4bMi6cpXQcCuMx+aztpP6Npv8Y8Q==
- wm###on.ce.ms/TvysZaRhusV6IBaZ/xAaF9J9LT1resi/bwr5gEi/vFoOY6+Lqzr40VJntXOwHwk4RWYpwFHCenonraSJQAkBcZes0YT3AjBW15O+QFf56Tuwz0W9n6ahVC3oA4IfXW2bSH0Wz2Rjpsg+AnMcG8ktnvoNTl1FygRKCsEziftm05C4uw7W8ApPdcXxfpMMORJe0oA7HKoa0KU=
- DNS ASK wm###on.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''