Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",jzzcmhvu install
- %TEMP%\ins1.tmp
- 'go###r.ce.ms':80
- go###r.ce.ms/eelcqZnj4SmjyrEOAHK2bVtzuvo/498lszmuYG6sLUjjB4x5aB/WAv6iAZQoO+dTX+g/4hRmtIynuvl9mBsFv2yr4pjQyd/hSMkrne9tNKSN4A==
- go###r.ce.ms/URoyGplhSwbfYkOidyrKsHL2FFZGf6AN/v02FWzwjkpJx+MLF8zjOYH87GWeXS6W1Q8AmXR69CYybLg+MDXm63ptmhIuK5EQ0vst+2F3CHDCkC0Or+kgl0mMjGoXXM5hM43Kx4dn5N8hz7Er4N+5tiKLc8bS6AC8lbHs/gOu0jcQJxwkVm5bOZYjrZ/ZdrpqzlLItRrV5GE=
- DNS ASK go###r.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''