Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",rokpoodgrwc install
- %TEMP%\ins1.tmp
- 'ee##s.ce.ms':80
- ee##s.ce.ms/PJoPpquYdRr/6+i1ct4QYWyHyrvNz2yXS2GzFpdkGB4ha7DDfLQtxiBGiL6s18NJZhFFPrHIGa76gZU1QJCEcD3Ko3dWCiWzEPky1UIlq5gIrQ==
- ee##s.ce.ms/twtZJJIZ6AKatMh+9QzWvNh7I3NdCk+RO0Aubu11YwxT/g2B89Df1KM07zNkllmm1YZPuX8G7ZdadeqluYnzB4D9Q8383P4I289C2E1RQt1yWspPwSUQd1hupGgBpA4N++JsVK/9J7KjGf1SrTX4D13jPvHb5ckgHz0dEt/bNe3GsLUh/z0zBImxPMtvo2eBsK4HLxZkP8A=
- DNS ASK ee##s.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''