Technical Information
- <Current directory>\aaa完美仿官tbc[盾].exe
- <Current directory>\aaa完美仿官tbc.exe
- %HOMEPATH%\desktop\aaa完美仿官tbc[盾].lnk
- '45.##8.10.72':41872
- '47.##0.89.114':41872
- '45.##1.10.196':41872
- '18#.#88.40.27':41872
- '10#.#48.152.51':41872
- '10#.#48.152.67':41872
- '45.##8.10.72':41864
- '47.##0.89.114':41864
- '45.##1.10.196':41864
- '18#.#88.40.27':41864
- '10#.#48.152.51':41864
- '10#.#48.152.67':41864
- 'gx.##80wow.com':80
- '12#.0.0.12':10087
- '43.##9.176.212':44067
- '43.##4.64.227':43235
- http://gx.##80wow.com/tbc/222.txt
- '47.##0.89.114':41872
- '45.##8.10.72':41872
- '47.##0.89.114':41864
- '45.##8.10.72':41864
- '43.##9.176.212':44067
- '43.##4.64.227':43235
- 'localhost':49199
- '12#.0.0.12':10087
- DNS ASK gx.##80wow.com
- ClassName: '' WindowName: '|||YQCRKK|||AAA完美仿官TBC|||NRVRNWRERUZQMYVTAIUJMUCQGCCWGNY|||'
- '<Current directory>\aaa完美仿官tbc[盾].exe'
- '<Current directory>\aaa完美仿官tbc.exe'
- '%WINDIR%\syswow64\wbem\wmic.exe' diskdrive where index=0 get serialnumber
- '%WINDIR%\syswow64\wbem\wmic.exe' baseboard get serialnumber
- '%WINDIR%\syswow64\wbem\wmic.exe' cpu get processorid