Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",ixxtrtjhcebitxy install
- %TEMP%\ins1.tmp
- 'me##h.ce.ms':80
- me##h.ce.ms/qWadsdiomHLLwFEiOGNRTdSiivtONdrl/tSrqkde7p70jHvz5S0O9LIM5sh/IGgWTz9poaq0jQyOny3Q24Co6FLhKu5NxIMOFS5dtjQNlQJ2AA==
- me##h.ce.ms/lNJaaOmfr/9Ew9qiAyhe6U8ApcHdrFclXz20hsZHt8TkWfk7vtaecrVoT2ryY/hsv4sqTPpU6OmsWTOZsvg8Ugl0uuYUFuf+1aRoXHo8rhCXHCwuBpbYYEjsSRN0rXtyLTxUyrtGPBZHLzvAK0sfEiX+w8Qm6kH2hvaQeePQEznQmykiHOhLbDIAct6umqfZWhZnxypoUiY=
- DNS ASK me##h.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''