Техническая информация
- %TEMP%\RarSFX0\CrossFire_OBV038_T_Full_dl.exe
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\comm\QQDL.exe -Embedding
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\QQCF_v039_T\MiniQQDL.exe
- %TEMP%\RarSFX0\CrossFire_OBV039_T_Full_dl.exe
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\comm\QQDL.exe /RegServer
- %PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://www.gb##.com/index2.html
- <SYSTEM32>\wbem\wmiadap.exe /R /T
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\QQCF_v039_T\banner.bmp
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\QQCF_v039_T\config.ini
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\QQCF_v039_T\QQDLProxy.dll
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\QQCF_v039_T\uninstaller.exe
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\QQCF_v039_T\MiniQQDL.exe
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\comm\tnproxy.dll
- %TEMP%\RarSFX0\CrossFire_OBV038_T_Full_dl.exe
- <SYSTEM32>\wbem\Performance\WmiApRpl_new.ini
- %TEMP%\RarSFX0\CrossFire_OBV039_T_Full_dl.exe
- %PROGRAM_FILES%\Tencent\QQMiniDownloader\comm\QQDL.exe
- %TEMP%\nsn2.tmp\processwork.dll
- %TEMP%\nsn2.tmp\processwork.dll
- <SYSTEM32>\wbem\Performance\WmiApRpl_new.ini в <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\wbem\Performance\WmiApRpl_new.h в <SYSTEM32>\wbem\Performance\WmiApRpl.h
- DNS ASK cf####me_tdl.qq.com
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''