Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'bgoomain.exe' = '%PROGRAM_FILES%\baigoo\bgoomain.exe'
- '%PROGRAM_FILES%\baigoo\bgoomain.exe'
- '%TEMP%\RarSFX0\bg_codek.exe'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\baigoo1[1].ini
- %PROGRAM_FILES%\baigoo\baigoo1.ini
- %PROGRAM_FILES%\baigoo\uninst.exe
- %PROGRAM_FILES%\baigoo\bgoocfg.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\baigoo3[1].ini
- %PROGRAM_FILES%\baigoo\baigoo3.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\baigoo2[1].ini
- %PROGRAM_FILES%\baigoo\baigoo2.ini
- %PROGRAM_FILES%\baigoo\BGooBHO.dll
- %PROGRAM_FILES%\baigoo\plugin\bgoobar\bgoobar.dll
- %PROGRAM_FILES%\baigoo\plugin\bgoobar\plugin.ini
- %TEMP%\RarSFX0\bg_codek.exe
- %TEMP%\nsm2.tmp
- %PROGRAM_FILES%\baigoo\bgook.dll
- %PROGRAM_FILES%\baigoo\bgooex.dll
- %PROGRAM_FILES%\baigoo\BGooHK.dll
- %PROGRAM_FILES%\baigoo\bgoomain.exe
- %TEMP%\RarSFX0\bg_codek.exe
- 'do####ad.baigoo.com':80
- 'localhost':1036
- do####ad.baigoo.com/baigoo/baigoo3.ini?mi###########################################
- do####ad.baigoo.com/baigoo/baigoo2.ini?mi###########################################
- do####ad.baigoo.com/baigoo/baigoo1.ini?mi###########################################
- DNS ASK us##.baigoo.com
- DNS ASK do####ad.baigoo.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'