Technical Information
- %LOCALAPPDATA%\google\chrome\user data\default\web data
- %APPDATA%\opera software\opera stable\login data
- %HOMEPATH%\desktop\508softwareandos.doc
- %HOMEPATH%\desktop\applicantform_en.doc
- %HOMEPATH%\desktop\cveuropeo.doc
- %HOMEPATH%\desktop\february_catalogue__2015.doc
- %HOMEPATH%\desktop\nwfieldnotes1966.docx
- %HOMEPATH%\desktop\thlps_keeper_mayer_1965.docx
- %HOMEPATH%\desktop\weeklysheet1215.doc
- ClassName: 'OLLYDBG', WindowName: ''
- ClassName: 'GBDYLLO', WindowName: ''
- ClassName: 'pediy06', WindowName: ''
- ClassName: 'FilemonClass', WindowName: ''
- ClassName: '', WindowName: 'File Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'PROCMON_WINDOW_CLASS', WindowName: ''
- ClassName: '', WindowName: 'Process Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'RegmonClass', WindowName: ''
- ClassName: '', WindowName: 'Registry Monitor - Sysinternals: www.sysinternals.com'
- %TEMP%\ffshaiwof.exe
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\actions.txt
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\information.txt
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\screenshot.jpeg
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\steam\dialogconfig.vdf
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\steam\config.vdf
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\weeklysheet1215.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\thlps_keeper_mayer_1965.docx
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\nwfieldnotes1966.docx
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\february_catalogue__2015.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\cveuropeo.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\applicantform_en.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\508softwareandos.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\history\opera.txt
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\cookies\opera_2.log
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\cookies\mozilla_1.log
- %APPDATA%\lite3\pubg_lite_v3.exe
- %APPDATA%\lite3\asff.vbs
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\cookies\chrome_0.log
- %TEMP%\vlmi{lolz}yg.col
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\telegram\map0
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\telegram\d877f783d5d3ef8c1
- %PROGRAMDATA%\tempfileses\plhack3.exe
- %TEMP%\pubg_lite_v3.exe
- %APPDATA%\zpar1t3p3x7u3t1t3p3x7u3t.zip
- %LOCALAPPDATA%\microsoft\windows\history\history.ie5\mshist012019110820191109\index.dat
- %PROGRAMDATA%\tempfileses\plhack3.exe
- %APPDATA%\lite3\asff.vbs
- %APPDATA%\lite3\pubg_lite_v3.exe
- %TEMP%\vlmi{lolz}yg.col
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\telegram\d877f783d5d3ef8c1
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\steam\dialogconfig.vdf
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\steam\config.vdf
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\screenshot.jpeg
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\information.txt
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\history\opera.txt
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\weeklysheet1215.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\thlps_keeper_mayer_1965.docx
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\nwfieldnotes1966.docx
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\february_catalogue__2015.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\cveuropeo.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\applicantform_en.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\files\508softwareandos.doc
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\cookies\opera_2.log
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\cookies\mozilla_1.log
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\cookies\chrome_0.log
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\actions.txt
- %APPDATA%\ptst1t3p3x7u3t1t3p3x7u3t\telegram\map0
- %APPDATA%\zpar1t3p3x7u3t1t3p3x7u3t.zip
- %TEMP%\vlmi{lolz}yg.col
- http://sh######ring-98.myjino.ru/api/info.get
- http://he###-hack.com/templates/HellsFix/images/header/logo1.png
- http://he###-hack.com/templates/HellsFix/images/global-border/t.png
- http://he###-hack.com/templates/HellsFix/images/global-border/t-r.png
- http://he###-hack.com/templates/HellsFix/images/global-border/t-l.png
- http://he###-hack.com/uploads/fotos/foto_32109.jpg
- http://he###-hack.com/templates/HellsFix/Menu/bottom1.png
- http://he###-hack.com/templates/HellsFix/Menu/Zetes.png
- http://he###-hack.com/templates/HellsFix/Menu/Menu.png
- http://he###-hack.com/templates/HellsFix/images/news/border/r.png
- http://he###-hack.com/templates/HellsFix/images/news/border/t-r.png
- http://he###-hack.com/templates/HellsFix/images/news/border/l.png
- http://he###-hack.com/uploads/posts/2019-10/medium/1572226637_fno8fku.png
- http://he###-hack.com/uploads/posts/2019-10/medium/1571536678_1333777.jpg
- http://he###-hack.com/uploads/posts/2019-10/medium/1572403164_121212121.jpg
- http://he###-hack.com/uploads/posts/2017-11/medium/1510029802_1338.jpg
- http://he###-hack.com/uploads/posts/2019-10/1572506646_3.png
- http://he###-hack.com/uploads/posts/2019-04/medium/1555143553_133777.jpg
- http://he###-hack.com/uploads/posts/2015-06/1435293524_dollar.png
- http://he###-hack.com/templates/HellsFix/images/content/search-bg.png
- http://he###-hack.com/templates/HellsFix/images/news/border/t.png
- http://he###-hack.com/templates/HellsFix/images/global-border/b.png
- http://he###-hack.com/templates/HellsFix/images/global-border/b-r.png
- http://he###-hack.com/templates/HellsFix/images/global-border/b-l.png
- http://he###-hack.com/templates/HellsFix/images/bottom/center.png
- http://he###-hack.com/templates/HellsFix/images/bottom/right.png
- http://he###-hack.com/templates/HellsFix/images/bottom/left.png
- http://he###-hack.com/templates/HellsFix/images/paginator_rarr.png
- http://he###-hack.com/templates/HellsFix/images/paginator_bg.png
- http://he###-hack.com/uploads/posts/2019-11/medium/1572632300_22222222.jpg
- http://he###-hack.com/templates/HellsFix/images/news/border/t-l.png
- http://he###-hack.com/templates/HellsFix/images/news/article/right.png
- http://he###-hack.com/templates/HellsFix/images/news/article/left.png
- http://he###-hack.com/templates/HellsFix/images/news/article/readmore-btn.png
- http://he###-hack.com/templates/HellsFix/images/news/title/center.png
- http://he###-hack.com/templates/HellsFix/images/news/title/right.png
- http://he###-hack.com/templates/HellsFix/images/news/title/left.png
- http://he###-hack.com/templates/HellsFix/images/news/border/b.png
- http://he###-hack.com/templates/HellsFix/images/news/border/b-r.png
- http://he###-hack.com/templates/HellsFix/images/news/article/center.png
- http://he###-hack.com/templates/HellsFix/images/news/border/b-l.png
- http://he###-hack.com/uploads/posts/2019-10/medium/1570090318_1111.png
- http://he###-hack.com/uploads/posts/2019-11/1572750481_133777.jpg
- http://he###-hack.com/uploads/posts/2019-11/medium/1572837357_gamesoldier.jpg
- http://he###-hack.com/templates/HellsFix/style/style.css
- http://he###-hack.com/uploads/posts/2019-07/medium/1564248335_apps_53186_66061984908082265_00884c53-4850-4a2a-8e92-43e3b03bb0dc.jpg
- http://he###-hack.com/uploads/posts/2019-07/medium/1564248544_diesel_product_alan-wake_home_alan_wake_primarypromo_2580x1450-2580x1450-550042713eeb4197f97cb7e1442543dee3ba2883.jpg
- http://he###-hack.com/uploads/posts/2019-09/medium/1569311238_fort.jpg
- http://he###-hack.com/uploads/posts/2019-09/1569311381_googlepass.jpg
- http://he###-hack.com/templates/HellsFix/dleimages/noavatar.png
- http://he###-hack.com/uploads/posts/2019-09/medium/1569311705_ps5.png
- http://sh######ring-98.myjino.ru/api/download.get
- http://he###-hack.com/templates/HellsFix/images/favicons.ico
- http://www.ra##ruty.ru/counter/hells-hack.com.gif
- http://he###-hack.com/engine/classes/js/dle_js.js?v=##
- http://he###-hack.com/engine/editor/css/default.css?v=##
- http://he###-hack.com/templates/HellsFix/js/libs.js
- http://he###-hack.com/templates/HellsFix/icomm/style.css
- http://he###-hack.com/engine/classes/js/jquery.js?v=##
- http://pa#####.#ooglesyndication.com/pagead/js/adsbygoogle.js
- http://he###-hack.com/engine/classes/highslide/highslide.js?v=##
- http://he###-hack.com/
- http://he###-hack.com/engine/classes/js/jqueryui.js?v=##
- http://he###-hack.com/templates/HellsFix/images/paginator_larr.png
- http://he###-hack.com/templates/HellsFix/images/header/fca.jpg
- http://co####r.yadro.ru/hit?q;##################################################################
- http://co####r.yadro.ru/hit?t1################################################################
- http://he###-hack.com/uploads/posts/2019-06/medium/1560825662_133888.jpg
- http://he###-hack.com/uploads/posts/2019-10/medium/1571630396_133888.jpg
- http://he###-hack.com/uploads/posts/2019-11/medium/1573017294_4wzlzwy.jpg
- http://he###-hack.com/uploads/posts/2019-03/1552465775_screenshot_1.png
- http://he###-hack.com/uploads/posts/2019-11/medium/1573128723_123213.jpg
- http://he###-hack.com/templates/HellsFix/images/header/rss-button.png
- http://he###-hack.com/templates/HellsFix/images/header/search-btn.png
- http://he###-hack.com/templates/HellsFix/images/global-border/l.png
- http://he###-hack.com/templates/HellsFix/images/content/bg.png
- http://nu##link.ru/link/list/9992403.js
- http://he###-hack.com/templates/HellsFix/images/inform/bg.png
- http://he###-hack.com/templates/HellsFix/images/logintitle2.png
- http://he###-hack.com/templates/HellsFix/images/header/bgs.png
- http://he###-hack.com/templates/HellsFix/images/horisontal-nav/center.png
- http://he###-hack.com/templates/HellsFix/images/horisontal-nav/right.png
- http://he###-hack.com/templates/HellsFix/images/horisontal-nav/left.png
- http://he###-hack.com/templates/HellsFix/images/global-border/r.png
- http://he###-hack.com/templates/HellsFix/images/content/find-btn.png
- http://he###-hack.com/engine/opensearch.php
- DNS ASK sh######ring-98.myjino.ru
- DNS ASK he###-hack.com
- DNS ASK pa#####.#ooglesyndication.com
- DNS ASK nu##link.ru
- DNS ASK ra##ruty.ru
- DNS ASK co####r.yadro.ru
- ClassName: '18467-41' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'DDEMLMom' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%TEMP%\ffshaiwof.exe'
- '%TEMP%\pubg_lite_v3.exe'
- '%PROGRAMDATA%\tempfileses\plhack3.exe'
- '%APPDATA%\lite3\pubg_lite_v3.exe'
- '%WINDIR%\syswow64\wscript.exe' "%APPDATA%\Lite3\asff.vbs"