Technical Information
- [<HKLM>\SYSTEM\ControlSet001\Services\PicViewerSvc] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\PicViewerSvc] 'ImagePath' = '"%HOMEPATH%\Local\PicViewer\PicViewerSvc.exe" -r'
- %TEMP%\picviewer_bin_28514.zip
- %HOMEPATH%\Local\PicViewer\PicViewerSvc.exe
- %HOMEPATH%\Local\PicViewer\origin.dll
- %HOMEPATH%\Local\PicViewer\UserConfig.ini
- %TEMP%\picviewer_bin_28514.zip
- 'localhost':1036
- 'ca####ar.cjishu.com':80
- 'localhost':1039
- 'localhost':1041
- http://ca####ar.cjishu.com/index.php?m=##########################################################################################
- http://ca####ar.cjishu.com/config/picviewerdb.php
- DNS ASK ca####ar.cjishu.com
- ClassName: 'LogView_qqpcmgr' WindowName: ''
- '%HOMEPATH%\Local\PicViewer\PicViewerSvc.exe' -i
- '%HOMEPATH%\Local\PicViewer\PicViewerSvc.exe' -r