Техническая информация
- %WINDIR%\QvodSetup_124886.exe (загружен из сети Интернет)
- %WINDIR%\pplivesetup_forqd99.exe (загружен из сети Интернет)
- %WINDIR%\ctfmon.exe (загружен из сети Интернет)
- %WINDIR%\iesuper.exe (загружен из сети Интернет)
- %WINDIR%\QvodSetup_124886.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\dl[1].htm
- %WINDIR%\pplivesetup_forqd99.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\pplivesetup_forqd99[1].exe
- %WINDIR%\iesuper.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\dl_205452[1].dll
- <SYSTEM32>\shuaurl.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\iesuper[1].dll
- %WINDIR%\ctfmon.exe
- 'www.xi##he.com':80
- 'dl.##ima8.com':80
- 'do####ad.pplive.com':80
- 'localhost':1038
- dl.##ima8.com/pv/dl.htm?ad#######################
- do####ad.pplive.com/pplivesetup_forqd99.exe
- www.xi##he.com/dl_205452.dll
- www.xi##he.com/iesuper.dll
- DNS ASK dl.##ima8.com
- DNS ASK www.xi##he.com
- DNS ASK do####ad.pplive.com
- ClassName: 'Button' WindowName: '???(&I)'
- ClassName: 'Button' WindowName: '??'
- ClassName: 'Button' WindowName: '???(&N) >'
- ClassName: '#32770' WindowName: 'PPTV???? V2.4.3.0012 ??'
- ClassName: '#32770' WindowName: 'PPTV???? V2.4.3.0012 ?? '