Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\hidetoolz] 'ImagePath' = '<DRIVERS>\hidetoolz.sys'
- %WINDIR%\ff.exe
- <DRIVERS>\hidetoolz.sys
- <LS_APPDATA>\Microsoft\Internet Explorer\MSIMGSIZ.DAT
- 'localhost':1039
- DNS ASK www.hi###oolz.com
- '18#.#6.76.76':1037
- '18#.#6.76.76':1038
- '18#.#6.76.76':1040
- '11#.#14.114.114':1041
- ClassName: '#32770' WindowName: 'HideToolz3.0'
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- '%WINDIR%\ff.exe'