Техническая информация
- '%TEMP%\bdins\Baidusd.Setup.3.0.0.4606.youqian_1000151683.exe'
- '%TEMP%\bdins\bdBrowserSetup-5954-ftn_1000151683.exe'
- '%TEMP%\bdins\BaiduAn.Setup.1117.3.0.0.3972_1000151683.exe'
- '%TEMP%\down.exe'
- '%TEMP%\_ir_sf7_temp_0\irsetup.exe' "__IRAFN:%TEMP%\down.exe"
- '%TEMP%\bdins\bdBrowserSetup-5954-ftn_1000151683.exe' (загружен из сети Интернет)
- '%TEMP%\bdins\BaiduAn.Setup.1117.3.0.0.3972_1000151683.exe' (загружен из сети Интернет)
- '%TEMP%\bdins\Baidusd.Setup.3.0.0.4606.youqian_1000151683.exe' (загружен из сети Интернет)
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- C:\wssd\BaiduAn.Setup.1117.3.0.0.3971_1000151683.exe
- C:\wssd\Baidusd.Setup.2.1.0.3086.youqian_1000151683.exe
- %TEMP%\bdins\wssd.dll
- %TEMP%\bdins\bdBrowserSetup-5954-ftn_1000151683.exe
- %TEMP%\bdins\Baidusd.Setup.3.0.0.4606.youqian_1000151683.exe
- %TEMP%\bdins\BaiduAn.Setup.1117.3.0.0.3972_1000151683.exe
- %TEMP%\_ir_sf7_temp_0\irsetup.dat
- %TEMP%\_ir_sf7_temp_0\irsetup.exe
- %TEMP%\down.exe
- %TEMP%\bdins\bdBrowserSetup-5954-ftn_1000151683.txt
- %TEMP%\bdins\BaiduAn.Setup.1117.3.0.0.3972_1000151683.txt
- %TEMP%\bdins\Baidusd.Setup.3.0.0.4606.youqian_1000151683.txt
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\_ir_sf7_temp_0\irsetup.dat
- 'ba####pa.duapp.com':80
- 'bc#.#uapp.com':80
- bc#.#uapp.com/baiducpa/brw.txt
- bc#.#uapp.com/baiducpa/an.txt
- bc#.#uapp.com/baiducpa/sd.txt
- ba####pa.duapp.com/soft.php
- DNS ASK ba####pa.duapp.com
- DNS ASK bc#.#uapp.com
- ClassName: 'Shell_TrayWnd' WindowName: ''