JavaScript support is required for our site to be fully operational in your browser.
Win32.HLLW.Autoruner1.18985
Added to the Dr.Web virus database:
2012-07-08
Virus description added:
2012-07-29
Technical Information
Malicious functions:
To complicate detection of its presence in the operating system,
forces the system hide from view:
hidden files
file extensions
Modifies file system :
Moves itself:
from <Full path to virus> to <LS_APPDATA>\logo0702.db
Network activity:
Connects to:
TCP:
HTTP GET requests:
ma##.#humetheme.org/trandocs/mm/crnjeufu:00-00-00-00-00-01/Cmwhite
ma##.#humetheme.org/trandocs/netstate
HTTP POST requests:
ma##.#humetheme.org/cgm-bin/dieosn83.cgi
UDP:
DNS ASK ma##.#humetheme.org
Download Dr.Web for Android
Free three-month trial
All protection features available
Renew your trial license in AppGallery/on Google Pay
By continuing to use this website, you are consenting to Doctor Web’s use of cookies and other technologies related to the collection of visitor statistics. Learn more
OK