Technical Information
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",mkpknlao install
- %TEMP%\ins1.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\SIVrWA==[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\3WLRGF37a7zdxcIAb2EwRIH6+Hl0kANzgv6OmfgESXxHbZdZpBucRVNFfZv91oVxODyb30ePsbtJKdFCWEP6Rn+UtdWjrw=[1]
- 'ko###r.cz.cc':80
- 'localhost':1034
- ko###r.cz.cc/KZdBsHXDcW8xpTyKJkqTglv56Yt8RoaiqZO+ZO6vhCTMSpBcwdhQ1vwlPZPhM7p12/dYDryFkiAesbbFf+SDZBdCHixKWkMppZP2128/SIVrWA==
- ko###r.cz.cc/BMkACJnuzW8/dx1XErGrmLm/XHA1OtmEVuBy57UKqHV/1Ms2XWfNwn/kBDWR46fPAnOrtNpnz0N89IoY18T4B+A3IZG8xkJ/PgNFhjWQv+zz/3WLRGF37a7zdxcIAb2EwRIH6+Hl0kANzgv6OmfgESXxHbZdZpBucRVNFfZv91oVxODyb30ePsbtJKdFCWEP6Rn+UtdWjrw=
- DNS ASK ko###r.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''