Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",heqogibio install
- %TEMP%\ins1.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\eoeQNGcopjsQ==[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\iEQpEk=[1]
- 'fo##n.cz.cc':80
- 'localhost':1035
- fo##n.cz.cc/hrcePmquHTiaDL/MO/FY/AaKSXYwFbqwCKm0zDxgE+dQU167oagcQF52QnPyde2NaFqfD1fwZCnlVMKmVDuB3XlVu0Kvq8IvY/eoeQNGcopjsQ==
- fo##n.cz.cc/rVBiXcVSivtLAQ+0pFZ/EpLh9hX1f7v0RxQ5p3xlfsPi+JzwinlZ2bbfX3YjFauAioDwWNSuArAGsBroGjMBLcNmfaEpF/loKkWMINcRr2bROurqAMgndbR8fWdzuI62PfQtO5uLpzaVS/y5wHUxitTcPMLUrQO8K17TK+55ygjWP4m3NY0vCXYluPEwWGV4wnvq/iEQpEk=
- DNS ASK fo##n.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''