Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",yibrimressdwfwb install worker
- %TEMP%\ins1.tmp
- 'pl###nce.ce.ms':80
- pl###nce.ce.ms/QUtTNJmbVnvBllnjB64G3/4PdjIzL9/7Qw4gBgExoytwo3IiYX+fHoaW5fYCNp+X2/7AIQHjxcAoEcQ2D0/83BVron486aHQwglmRYLFJNY=
- pl###nce.ce.ms/JJvSLcOnxZOkPW6Lbt9ycQ0390E1SATXq6v+6UuFRz6PpiRkc0HLJTLpq06zAMwvqbVaobQ+bd72hle6qVPZyu0H64MPumgdURUfgrxJK66rTipcqdoElqY7O0YRwpvaXKdCveQoy/78arHJmbWKhDqF0xwH8sUnfS+3ksMF/bE9FctxC+4+VDPNLQyAtZNI3ceDp9QV
- DNS ASK pl###nce.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''