Техническая информация
- %TEMP%\2447_1.exe
- %TEMP%\TheWorld_OEM_5.exe
- %TEMP%\AISetup.exe
- <SYSTEM32>\cmd.exe /c ""%TEMP%\DelTemp.bat" "
- <SYSTEM32>\regsvr32.exe /s %PROGRAM_FILES%\QVOD5\QvodEx.dll
- %PROGRAM_FILES%\QVOD5\QvodEx.dll
- %TEMP%\nsx5.tmp\ioSpecial.ini
- %HOMEPATH%\Start Menu\Жф¶Ї Internet Explorer дЇААЖч.url
- %TEMP%\nsx4.tmp
- %TEMP%\DelTemp.bat
- %TEMP%\version.ini
- %TEMP%\nsx5.tmp\modern-wizard.bmp
- %TEMP%\TheWorld_OEM_5.exe
- %WINDIR%\ime\SPTIPIMERS.ini
- %TEMP%\nsz2.tmp\System.dll
- %TEMP%\AISetup.exe
- %HOMEPATH%\Desktop\Internet Explorer.url
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Жф¶Ї Internet Explorer дЇААЖч.url
- %TEMP%\2447_1.exe
- %HOMEPATH%\Favorites\ѕ«Ж·НшЦ·µјєЅ.url
- %TEMP%\AISetup.exe
- %TEMP%\nsz2.tmp\System.dll
- 'co####.ie.sogou.com':80
- co####.ie.sogou.com/version.php?h=################################################
- DNS ASK co####.ie.sogou.com
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '#32770' WindowName: ''