Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'IDOsysnypy' = '%PROGRAM_FILES%\Intel\Program\Sogoubasenypy.exe'
- %PROGRAM_FILES%\Intel\SogouPinyinUp.exe
- %PROGRAM_FILES%\Intel\QQupbasenypy.exe
- %WINDIR%\explorer.exe /select,%ALLUSERSPROFILE%\Start Menu\Programs\XXX\calcx.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\XXX\calcx.lnk
- %PROGRAM_FILES%\Intel\Program\Sogoubasenypy.exe
- %PROGRAM_FILES%\Intel\QQupbasenypy.exe
- %PROGRAM_FILES%\Intel\common\Utility.txt
- %PROGRAM_FILES%\Intel\SogouPinyinUp.exe
- %PROGRAM_FILES%\Intel\common\Utility.dll
- 'yk.#lkl.cc':6162
- DNS ASK yk.#lkl.cc
- ClassName: 'SHELLDLL_DefView' WindowName: ''
- ClassName: '' WindowName: '%ALLUSERSPROFILE%\Start Menu\Programs\XXX'
- ClassName: '' WindowName: ''