Техническая информация
- <SYSTEM32>\MainPro.exe
- %WINDIR%\regedit.exe /s "<Текущая директория>\reg.reg"
- <SYSTEM32>\MainPro.exe
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Жф¶Ї Internet Explorer дЇААЖч.lnk
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\GameList[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\toji.baiduso[1]
- %TEMP%\E_4\shell.fne
- %TEMP%\E_4\krnln.fnr
- %TEMP%\E_4\EThread.fne
- %TEMP%\E_4\HtmlView.fne
- <SYSTEM32>\MainPro.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\GameList[1].html
- 'up####.cnk.com.cn':80
- 'co###.cnk.com.cn':80
- 'localhost':1037
- 'to##.#aiduso.com':80
- up####.cnk.com.cn/GameList.html
- to##.#aiduso.com/
- DNS ASK co###.cnk.com.cn
- DNS ASK ur#.#nk.com.cn
- DNS ASK up####.cnk.com.cn
- DNS ASK to##.#aiduso.com
- '<IP-адрес в локальной сети>':26010
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'AnnexPro'
- ClassName: 'Progman' WindowName: 'Program Manager'
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''