Техническая информация
- %PROGRAM_FILES%\Win32Games\wingames.exe "http://re#.2xi.com/ystbf"
- <SYSTEM32>\rundll32.exe "%PROGRAM_FILES%\Win32Games\URL.dll" helpme
- <SYSTEM32>\cmd.exe /c ""%PROGRAM_FILES%\Win32Games\doset.bat" "
- <SYSTEM32>\cmd.exe /c ""%PROGRAM_FILES%\Win32Games\aaa.bat" "
- %PROGRAM_FILES%\Win32Games\Thumbs.db
- %PROGRAM_FILES%\Win32Games\URL.dll
- %PROGRAM_FILES%\Win32Games\url.txt
- %PROGRAM_FILES%\Win32Games\syspowerues.dll
- %PROGRAM_FILES%\Win32Games\taobao.ico
- %PROGRAM_FILES%\Win32Games\taobao.vbs
- %PROGRAM_FILES%\Win32Games\wingames.exe
- %PROGRAM_FILES%\Win32Games\doset.bat
- <SYSTEM32>\sysurl.dll
- <SYSTEM32>\helpme.vbs
- %PROGRAM_FILES%\Win32Games\Xianjian.ico
- %PROGRAM_FILES%\Win32Games\zhuoyue.ico
- %PROGRAM_FILES%\Win32Games\aaa.bat
- %PROGRAM_FILES%\Win32Games\baidu.ico
- %PROGRAM_FILES%\Win32Games\bingfeng.ico
- %PROGRAM_FILES%\Win32Games\bookmarks.dat
- %PROGRAM_FILES%\Win32Games\bb.tmp
- %PROGRAM_FILES%\Win32Games\2xi.ico
- %PROGRAM_FILES%\Win32Games\2xi.vbs
- %PROGRAM_FILES%\Win32Games\Config.ini
- %PROGRAM_FILES%\Win32Games\minigame.ico
- %PROGRAM_FILES%\Win32Games\minigame.vbs
- %PROGRAM_FILES%\Win32Games\QvodSetupPlus3.exe
- %PROGRAM_FILES%\Win32Games\dangdangwang.ico
- %PROGRAM_FILES%\Win32Games\Internet.vbs
- %PROGRAM_FILES%\Win32Games\jiuzhou.ico
- %PROGRAM_FILES%\Win32Games\url.txt
- %PROGRAM_FILES%\Win32Games\bb.tmp
- 'localhost':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''