Техническая информация
- '%WINDIR%\QQ.EXE'
- '%WINDIR%\regedit.exe' /e c:\regg.reg "HKEY_CURRENT_USER\Software\Microsoft\Internet Account Manager\Accounts"
- '<SYSTEM32>\cmd.exe' /c c:\regg.bat
- '<SYSTEM32>\ntvdm.exe' -f -i1
- [<HKCU>\Software\Microsoft\MessengerService]
- %WINDIR%\bb.bmp
- %WINDIR%\MSWINSCK.OCX
- %WINDIR%\Temp\scs1.tmp
- C:\regg.reg
- C:\regg.bat
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\jswj.exe
- %WINDIR%\ARJ.EXE
- %WINDIR%\WINIO.VXD
- %WINDIR%\pop.21cn.com.iaf
- %WINDIR%\QQ.EXE
- %WINDIR%\jl2.txt
- %WINDIR%\WinIo.sys
- %WINDIR%\WinIo.dll
- C:\regg.bat
- C:\regg.reg
- %WINDIR%\Temp\scs1.tmp
- %WINDIR%\Temp\scs2.tmp
- '0.#.0.123':110
- ClassName: '' WindowName: 'Outlook Express'
- ClassName: 'Outlook Express Browser Class' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b6c.b70.380001'
- ClassName: '' WindowName: 'QQ????'
- ClassName: 'OutlookExpressHiddenWindow' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: '??????'
- ClassName: '' WindowName: '?? Internet ??'
- ClassName: '' WindowName: 'Internet ??'
- ClassName: '' WindowName: 'For3'
- ClassName: '' WindowName: 'For4'
- ClassName: '' WindowName: 'For2'
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'For5'
- ClassName: '' WindowName: 'For9'
- ClassName: '' WindowName: 'Internet'
- ClassName: '' WindowName: 'For8'
- ClassName: '' WindowName: 'For6'
- ClassName: '' WindowName: 'For7'