Technical Information
- %TEMP%\myslanqq.exe
- %WINDIR%\explorer.exe itProcess
- ClassName: 'Tencent_QQBar' WindowName: ''
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\newver[1].html
- %TEMP%\nsk2.tmp\configuration.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\check[1].php
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\ad[1].html
- %TEMP%\nsk2.tmp\System.dll
- %TEMP%\myslanqq.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\9[1].php
- %TEMP%\nsk2.tmp\inetc.dll
- %TEMP%\nsk2.tmp\inetc.dll
- %TEMP%\nsk2.tmp\System.dll
- %TEMP%\nsk2.tmp\configuration.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\ad[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\check[1].php
- 'my##an.com':80
- 'www.pp##.com':80
- my##an.com/qq/ad.html
- my##an.com/qq/check.php?qq#
- www.pp##.com/9.php?sa###
- my##an.com/software/newver.html
- DNS ASK my##an.com
- DNS ASK www.pp##.net
- DNS ASK www.pp##.com
- ClassName: 'Shell_TrayWnd' WindowName: ''