Technical Information
- %WINDIR%\Temp\NvCpl.exe
- <SYSTEM32>\cmd.exe /c C:\CMDL.bat
- C:\2.hiv
- %WINDIR%\Temp\tstd.dll
- C:\CMDL.bat
- C:\1.hiv
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\ts2[1].js
- %WINDIR%\Temp\game.ini
- %WINDIR%\Temp\NvCpl2.exe
- %WINDIR%\Temp\tstd.dll
- C:\2.hiv
- C:\1.hiv
- 'localhost':1039
- 'ws####.231.xuelon.cn':80
- 'localhost':1037
- ws####.231.xuelon.cn/ts3/ts2.js
- DNS ASK ws####.231.xuelon.cn
- ClassName: '' WindowName: 'Ts2Online'
- ClassName: 'MS_WINHELP' WindowName: ''