Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'pps' = '%WINDIR%\Web\ziqidong.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '拼音输入法' = '%WINDIR%\Web\sougou.exe'
- <SYSTEM32>\ping.exe 127.0.0.1 -n 3
- %HOMEPATH%\Favorites\百度一下-你就知道.url
- %HOMEPATH%\Favorites\单击游戏下载站.url
- %HOMEPATH%\Favorites\hao123上网导航.url
- %HOMEPATH%\Favorites\淘 宝 网 热 卖.url
- %HOMEPATH%\Favorites\最新XP下载站.url
- %HOMEPATH%\Favorites\淘 宝 网.url
- %HOMEPATH%\Favorites\美女图片网.url
- %HOMEPATH%\Favorites\7K7K小游戏.url
- %TEMP%\aut3.tmp
- %WINDIR%\Web\sougou.exe
- %TEMP%\aut1.tmp
- %TEMP%\aut2.tmp
- %TEMP%\aut5.tmp
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\启动 Internet Explorer 浏览器.lnk
- %TEMP%\aut4.tmp
- %WINDIR%\Web\ziqidong.exe
- %TEMP%\aut4.tmp
- %TEMP%\aut5.tmp
- %TEMP%\aut3.tmp
- %TEMP%\aut1.tmp
- %TEMP%\aut2.tmp
- ClassName: 'Shell_TrayWnd' WindowName: ''