Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'QQ°ІИ«·А»¤ДЈїй' = '%CommonProgramFiles%\Tencent\svchost.exe'
- '%CommonProgramFiles%\Tencent\svchost.exe' Ts:1
- '<SYSTEM32>\taskkill.exe' /f /im QQ.exe
- ClassName: 'TXGuiFoundation' WindowName: 'QQ2011'
- ClassName: 'TXGuiFoundation' WindowName: 'QQ2010'
- ClassName: 'TXGuiFoundation' WindowName: 'QQ2013'
- ClassName: 'TXGuiFoundation' WindowName: 'QQ2012'
- %CommonProgramFiles%\Tencent\svchost.exe
- %CommonProgramFiles%\Tencent\svchost.exe
- 'le##zz.com':80
- le##zz.com/Vip/td/mail.asp?ad#####################################################
- DNS ASK le##zz.com
- ClassName: '(null)' WindowName: '(null)'