Техническая информация
- [<HKLM>\SOFTWARE\Wow6432Node\Microsoft\windows\CurrentVersion\Run] 'Tencentdl' = '"%CommonProgramFiles%\Microsoft Shared\MSINFO\Tencentdl.exe"'
- ClassName: 'Regmonclass', WindowName: ''
- ClassName: 'Filemonclass', WindowName: ''
- %WINDIR%\syswow64\tencentdl.exe
- %CommonProgramFiles%\microsoft shared\msinfo\tencentdl.exe
- %WINDIR%\syswow64\tencentdl.exe
- %CommonProgramFiles%\microsoft shared\msinfo\tencentdl.exe
- 'hi.##idu.com':80
- 'in####ow.baidu.com':443
- 'microsoft.com':80
- 'localhost':12756
- 'hi.##idu.com':443
- DNS ASK hi.##idu.com
- DNS ASK in####ow.baidu.com
- DNS ASK microsoft.com
- DNS ASK 26####.dowei8.com
- ClassName: '4823-00000029' WindowName: ''
- ClassName: '18467-41' WindowName: ''
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: '' WindowName: ''
- '%WINDIR%\syswow64\tencentdl.exe'
- '%CommonProgramFiles%\microsoft shared\msinfo\tencentdl.exe'
- '%CommonProgramFiles%\microsoft shared\msinfo\tencentdl.exe' ' (со скрытым окном)