Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\qk3aXP] 'Start' = '00000002'
- C:\QQGameDl.exe
- <SYSTEM32>\svchost.exe -k netsvcs
- %WINDIR%\MySomeInfo.ini
- %WINDIR%\HowArMe.txt
- %WINDIR%\HowArMe.reg
- C:\QQGameDl.exe
- C:\Factory.dll
- %CommonProgramFiles%\Microsoft Shared\Ydne5X.dll
- C:\QQGameDl.exe
- C:\Factory.dll
- %WINDIR%\MySomeInfo.ini
- %WINDIR%\HowArMe.txt
- %WINDIR%\HowArMe.reg
- 'cc####3.gicp.net':8088
- DNS ASK cc####3.gicp.net