Technical Information
- C:\fb360.exe
- C:\fb360.exe (downloaded from the Internet)
- C:\fb360.exe
- <SYSTEM32>\wbem\Performance\WmiApRpl_new.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\fb360[1].exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\QQ[1].cer
- C:\QQ.cer
- '<Private IP address>':80
- 'localhost':1036
- <Private IP address>/fb360.exe
- <Private IP address>/QQ.cer
- ClassName: '' WindowName: '??(&Y)'
- ClassName: '' WindowName: '????????'
- ClassName: '' WindowName: 'Security Warning'