|
|
触发进程为微信安装文件夹中 WeChatApp.exe,命令行显示为:"C:\Program Files (x86)\Tencent\WeChat\WeChatApp.exe" --applet_init_config="{\"appId\":\"preload_1583721016264_0\",\"appVersion\":0,\"brandName\":\"\",\"clientVersion\":1644691577,\"debugType\":0,\"deviceType\":\"Windows+10\",\"iconUrl\":\"\",\"isNativeView\":false,\"isPreload\":true,\"isTest\":false,\"moduleListInfo\":\"\",\"orientation\":\"\",\"originalFlag\":0,\"originalRedirectUrl\":\"\",\"productId\":1000,\"referrer\":{\"agentId\":\"\",\"appId\":\"\",\"launchScene\":10086,\"sourceType\":0},\"remote_debug_endpoint\":\"\",\"shareKey\":\"\",\"shareName\":\"\",\"uin\":\"1700568105\",\"username\":\"\",\"versionState\":0,\"wxIconUrl\":\"\"}" --applet_init_config_ex="{\"clientJsExtInfo\":\"\",\"commonJsInfo\":\"\",\"dataPath\":\"D:\\微信记录\\WeChat Files\\ct350770884\\Applet\\\\\",\"enterPath\":\"\",\"extraData\":\"\",\"logPath\":\"C:\\Users\\m1513\\AppData\\Roaming\\Tencent\\WeChat\\log\\\\\",\"messageExtraData\":\"\",\"nickName\":\"\",\"openapiInvokeData\":\"\",\"operationInfo\":\"\",\"pkgDirPath\":\"\",\"priva
操作目标:【写入】 HKEY_USERS\S-1-5-21-2538171134-4214556222-1538118883-1001\Software\SogouInput.user\CheckFastpassport
近三日有近万条,是在是烦得很
|
|
收藏