Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",fotixjvcrxzdzyo install
- %TEMP%\ins1.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\Wbi29sQJq2h+hWqOAMQH3O6A==[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\usnj98OtGJLRACy55dEojFiJmqEofdNU2pAyYc2Shr8T1dC1zjkwiBYLixQieWDqo37fIWpqvGvfpXb29Pknta+VflWBjJSiXfpwKHEvkw=[1]
- 'sa###do.co.be':80
- 'localhost':1037
- sa###do.co.be/wEEUPrDTLCmn73/G/fiFx0FrBgjvRA0zrBs06S/avEI56I2a7GR2WFD4sjBMR11m+RvdCQeeheKi4XsE3UWK8/Wbi29sQJq2h+hWqOAMQH3O6A==
- sa###do.co.be/sETsAtQsVVFKQvBg5I5TzX0+rTQFpKcfWJFybXuyvK3yPieQ4Pajw93KA7u2spxKhhRZp99pFMDIUxy5wPsxfXTHE7e2I7OB/usnj98OtGJLRACy55dEojFiJmqEofdNU2pAyYc2Shr8T1dC1zjkwiBYLixQieWDqo37fIWpqvGvfpXb29Pknta+VflWBjJSiXfpwKHEvkw=
- DNS ASK sa###do.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''