Technical Information
- %WINDIR%\syswow64\rundll32.exe
- %LOCALAPPDATA%\microsoft\windows\history\low\desktop.ini
- %LOCALAPPDATA%\microsoft\windows\history\low\history.ie5\desktop.ini
- %APPDATA%\microsoft\windows\cookies\low\index.dat
- %LOCALAPPDATA%\microsoft\windows\history\low\history.ie5\index.dat
- %APPDATA%\microsoft\windows\ietldcache\low\index.dat
- %LOCALAPPDATA%\microsoft\windows\history\low\history.ie5\desktop.ini
- 'la#####r.nullcore.net':952
- 'la#####r.nullcore.net':952
- DNS ASK la#####r.nullcore.net
- '%WINDIR%\syswow64\rundll32.exe'
- '%ProgramFiles(x86)%\opera\launcher.exe' -noautoupdate -- "https://nullcore.net/hwid_reset"
- '%ProgramFiles(x86)%\opera\29.0.1795.47\opera.exe' -noautoupdate --ran-launcher -- https://nullcore.net/hwid_reset
- '%ProgramFiles(x86)%\opera\29.0.1795.47\opera_crashreporter.exe' -noautoupdate --ran-launcher -- https://nullcore.net/hwid_reset /crash-reporter-parent-id=656