Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",prnqpxps install worker
- %TEMP%\ins1.tmp
- 'ne###rt.cz.cc':80
- ne###rt.cz.cc/wRjvYByQp13A5vPmiiJcUg1bAeitrZ1MlOrPL3TpCmNliMGl2ImIXJ9XaTG/u/ApRJzJALj+ZQG9LqSvvzz4CIifX2zGferth556+XYcE7Q=
- ne###rt.cz.cc/wQoDPOZKDikP9KNW+Dzgiv7OODNO5XjBQ/rGlNMI6PHLreH+ibUYpnfRHWRFCz8H37xQ9RWGTl1YVIJx+oR9DYIuCRnJyWBGPB9+OFdYOy9MKlLvVVd8i23ijHgNGvMYqflUgXAI+BGA6i1708y2H9ccW7jPB+MN1YkQTVh92bzSxXkF+GzXwgEqwrYF6m051gE/Hu4y
- DNS ASK ne###rt.cz.cc
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''