Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DoNotAllowExceptions' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] '"%TEMP%\QQNewVer\QQUpdate.DAT"' = '"%TEMP%\QQNewVer\QQUpdate.DAT:*:Enabled:QQUpdate.DAT"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '"%TEMP%\QQNewVer\QQUpdate.DAT"' = '"%TEMP%\QQNewVer\QQUpdate.DAT:*:Enabled:QQUpdate.DAT"'
- %TEMP%\nsu5.tmp\System.dll
- %TEMP%\nsu5.tmp\NSISdl.dll
- %TEMP%\setuprun.exe
- %TEMP%\nsi2.tmp
- %TEMP%\QQNewVer\QQUpdate.DAT
- %TEMP%\nse4.tmp
- %TEMP%\setuprun.exe
- 'fi##.#qhelper.com':80
- 'fi###.qqhelper.com':80
- fi##.#qhelper.com/hzfsetup/hzfsetup.exe
- fi###.qqhelper.com/hzfsetup/hzfsetup.exe
- DNS ASK fi##.#qhelper.com
- DNS ASK fi###.qqhelper.com