Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",yfxiqykvdjzqa install worker
- %TEMP%\ins1.tmp
- 'ne##h.cz.cc':80
- ne##h.cz.cc/RHppKUsJPSLK5p6v0UBFcqtqbGnpHxQZ7OgsWWkDj+8wJujL/GadMZHyZzLLcnf60UWVdXZmLCwJVneKGOfMmYeH0Dm3fWAI++FhX+/ETCo=
- ne##h.cz.cc/LAksrMiqZgs+HFwX4GmU+rgVc9Un2w7XDQXa1TDXe/3Bq6GODSj9334ElK+LSbK9YP5CpvRKgNCXTQwPSBRe2WGOjiDODPK3DD2FXv7E+3+vud+s4dK4L7AoN4ECD6KfPHTdPrFYelAptAY/RfF3WMttO7ygtvcGEUxHNfNrb/lT0TKFitqzwXw64Qts9bufSkiiURgC
- DNS ASK ne##h.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''