Техническая информация
- '%WINDIR%\Temp\1033.exe'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\qq20808950.ys168[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\cgi_get_portrait[1].fcg
- %WINDIR%\Temp\1033.exe
- %ALLUSERSPROFILE%\Start Menu\Server.url
- %WINDIR%\Temp\1033.exe
- 'ba##.#zone.qq.com':80
- 'qq#####950.ys168.com':80
- ba##.#zone.qq.com/fcg-bin/cgi_get_portrait.fcg?ui######################
- qq#####950.ys168.com/
- DNS ASK ba##.#zone.qq.com
- DNS ASK qq#####950.ys168.com