Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Download Manager' = '%HOMEPATH%\Downloads\explorer.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Document Explorer' = '%HOMEPATH%\Documents\explorer.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Profile Manager' = '%HOMEPATH%\explorer.exe'
- %HOMEPATH%\explorer.exe
- %TEMP%\aut2.tmp
- %TEMP%\ohnonys
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\h4r3.hopto[1]
- %TEMP%\aut1.tmp
- %TEMP%\tosgooy
- %HOMEPATH%\explorer.exe
- %HOMEPATH%\explorer.exe
- %TEMP%\ohnonys
- %HOMEPATH%\explorer.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\h4r3.hopto[1]
- %TEMP%\aut1.tmp
- %TEMP%\tosgooy
- %TEMP%\aut2.tmp
- 'h4##.hopto.org':80
- h4##.hopto.org/
- DNS ASK h4##.hopto.org
- ClassName: 'Indicator' WindowName: ''