Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hwivwnxkd install
- %TEMP%\ins1.tmp
- 'kr###neer.ce.ms':80
- kr###neer.ce.ms/vzbrKpywHqMl7S4bgsU9nSD2tk+mP7bBFUxt6h75A2jZlULPrF+mzieEIHDirID3CwZMcehalQ/yIN1WdekX3l1qyKJg6cI+jRr1pYGhLGvl/A==
- kr###neer.ce.ms/kZmsLwiKiy27cb3hjPc/WwQLrU/VEusK5miByvJMECdfpF/IVKee/JTlcIiXTL07kvcvWEcURPahV5IySrbgznVEDempJ8pNunBA/3ZfQs99D8/g1ZPNwrWGIVaHqnPttWU550hpivN7hgX3Ax5OLlbFCJEcgN3TX6swoE6G/tzoJXpW7ghs1qzlIquFEm6ILuoul+ojy+Y=
- DNS ASK kr###neer.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''