Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'IDOsysypvn' = '%ProgramFiles%\Intel\Program\Sogouypvn.exe'
- '%ProgramFiles%\Intel\SogouPinyinUp.exe'
- '%ProgramFiles%\Intel\Program\Sogouypvn.exe'
- '%ProgramFiles%\Intel\QQupdataypvn.exe'
- '%WINDIR%\explorer.exe' /select,%ALLUSERSPROFILE%\Start Menu\Programs\XXX\calcx.lnk
- %ProgramFiles%\Intel\QQupdataypvn.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\XXX\calcx.lnk
- %ProgramFiles%\Intel\Program\Sogouypvn.exe
- %ProgramFiles%\Intel\common\Utility.txt
- %ProgramFiles%\Intel\SogouPinyinUp.exe
- %ProgramFiles%\Intel\common\Utility.dll
- 'wa####anda.oicp.net':1100
- DNS ASK wa####anda.oicp.net
- ClassName: '' WindowName: '%ALLUSERSPROFILE%\Start Menu\Programs\XXX'
- ClassName: 'SHELLDLL_DefView' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''