Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",ftkideibhqxkbv install
- %TEMP%\ins1.tmp
- 'er##h.ce.ms':80
- er##h.ce.ms/olMPquMx1cTjunf4UXeb8iD+PkUQCraWnTgJHOEJ1ibaZONW5FlT6JzH+QnQik6xKisZKLukYu1OiQlpOC/VdX/zTxJB4EGcw1L6sRtYVD9sJg==
- er##h.ce.ms/WuHjMggDJGdOn4AIDX9tMXLXHH87bmVw/269Tovaq4DQThz7w5nMX+giZiCXjKrDueUxg7CZcpkVtXhrCP30MDtLaCjMI9yTQPq192/VeQ4a0idDQcdGjVYvdrIPFFTDtj/GjOemof3RjsKMgufWaFdTHsglr1qohnoqBlIbw6PTsXUlJjXHFZufGfkmUfBHLuyribw9T5w=
- DNS ASK er##h.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'