Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'ОТµДЖф¶ЇПо' = '<Текущая директория>\ґт»чРЎС§Йъ.exe'
- '<SYSTEM32>\net1.exe' user+245094176554088/add
- '<SYSTEM32>\net1.exe' localgroup %USERNAME%s+2450941765/add
- '<SYSTEM32>\net1.exe' user %USERNAME%54088
- <SYSTEM32>\ctfmon.exe
- ClassName: '' WindowName: 'qq.exe'
- ClassName: '' WindowName: 'kxescor.exe'
- ClassName: '' WindowName: 'kislive.exe'
- ClassName: '' WindowName: 'kxetray.exe'
- ClassName: '' WindowName: 'QQpcupdateavlib.exe'
- ClassName: '' WindowName: 'QQPCTRAY.EXE'
- ClassName: '' WindowName: 'KISLnchr.exe'
- ClassName: '' WindowName: 'ctfmon.exe'
- ClassName: '' WindowName: 'KASMain.exe '
- ClassName: '' WindowName: 'KPFWSvc.exe '
- ClassName: '' WindowName: 'KAV32.EXE'
- ClassName: '' WindowName: 'QQPCRTP.exe'
- ClassName: '' WindowName: 'QQPCDownload.exe'
- ClassName: '' WindowName: 'QQMASTERInstall.exe'
- ClassName: '' WindowName: 'ZhuDongFanYu.exe'
- ClassName: '' WindowName: 'QQExrernal.exe'
- ClassName: '' WindowName: 'QQPCMGR_SETUP.EXE'
- ClassName: '' WindowName: 'QQpcmgr.exe'
- ClassName: '' WindowName: 'QQpcmgr_tz_setup.exe'
- ClassName: '' WindowName: 'QQpcleakscan.exe'
- ClassName: '' WindowName: 'QQPCWebshield.exe'