Техническая информация
- '%PROGRAM_FILES%\BIZHI\XOE.exe'
- '<SYSTEM32>\cmd.exe' /c ""%PROGRAM_FILES%\BIZHI\run.bat" "
- %PROGRAM_FILES%\BIZHI\wpappCHS.MUI
- %PROGRAM_FILES%\BIZHI\wpappCHS.dll
- %PROGRAM_FILES%\BIZHI\XOE.exe
- %ALLUSERSPROFILE%\Desktop\360壁纸.lnk
- %PROGRAM_FILES%\BIZHI\run.bat
- %PROGRAM_FILES%\BIZHI\bizhi\360app.exe
- %TEMP%\YLY1.tmp
- %PROGRAM_FILES%\BIZHI\steam.dll
- %PROGRAM_FILES%\BIZHI\wpapp.exe
- %PROGRAM_FILES%\BIZHI\steam.MUI
- %TEMP%\YLY1.tmp
- %PROGRAM_FILES%\BIZHI\wpappCHS.dll
- %PROGRAM_FILES%\BIZHI\wpapp.exe.manifest
- %PROGRAM_FILES%\BIZHI\XOE.exe
- %PROGRAM_FILES%\BIZHI\wpappCHS.MUI
- %PROGRAM_FILES%\BIZHI\steam.dll
- %TEMP%\YLY1.tmp
- %PROGRAM_FILES%\BIZHI\wpapp.exe
- %PROGRAM_FILES%\BIZHI\steam.MUI
- 'tp.##ft80.com':80
- tp.##ft80.com/tj.asp?ID########################
- tp.##ft80.com/tj.asp?ID##############
- DNS ASK tp.##ft80.com
- ClassName: 'CabinetWClass' WindowName: '??'
- ClassName: 'CabinetWClass' WindowName: 'Desktop'
- ClassName: '' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'