Техническая информация
- '%TEMP%\QQ密码验证V1.71.exe'
- '%TEMP%\a6.exe' 123456789 %TEMP%\lfdommu.exe
- '%TEMP%\a6.exe'
- '<SYSTEM32>\net.exe' stop sharedaccess
- '<SYSTEM32>\net1.exe' stop sharedaccess
- '<SYSTEM32>\net.exe' stop alg /y
- '<SYSTEM32>\net1.exe' stop alg /y
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\checkver[1].php
- %TEMP%\QQ密码验证V1.71.exe
- %TEMP%\a6.exe
- 'co####.vip336.dnsnn.com':80
- '23.##8.193.13':909
- 'localhost':1035
- co####.vip336.dnsnn.com/iluoyesoft/checkver.php?si###
- DNS ASK co####.vip336.dnsnn.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'