Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'qq' = '%PROGRAM_FILES%\TXQQ.exe'
- %PROGRAM_FILES%\TXQQ.exe
- <SYSTEM32>\wscript.exe "<Текущая директория>\del.vbs"
- <Текущая директория>\del.vbs
- %PROGRAM_FILES%\se1.ini
- %PROGRAM_FILES%\TXQQ.exe
- <Текущая директория>\del.vbs
- %PROGRAM_FILES%\se1.ini
- %PROGRAM_FILES%\TXQQ.exe
- <Текущая директория>\del.vbs
- '11#.#44.141.23':8061
- 'localhost':1036
- ClassName: 'SE_SogouExplorerFrame' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'TheWorld_Frame' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: '360se6_Frame' WindowName: ''
- ClassName: 'Chrome_WidgetWin_1' WindowName: ''