Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunOnce] 'DATALOGIS' = '%HOMEPATH%\Butter7\Pneodynam3.vbs'
- pneodynam3.exe
- %HOMEPATH%\butter7\pneodynam3.exe
- %HOMEPATH%\butter7\pneodynam3.vbs
- 'go####ss.hopto.org':6896
- 'on####ve.live.com':443
- 'tq####.#n.files.1drv.com':443
- DNS ASK on####ve.live.com
- DNS ASK tq####.#n.files.1drv.com
- DNS ASK go####ss.hopto.org
- '%HOMEPATH%\butter7\pneodynam3.exe'