Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'pcket_x64' = '%PROGRAM_FILES%\BaiduEx\uninit.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'pcket_x86' = '%PROGRAM_FILES% (x86)\BaiduEx\uninit.exe'
- '%PROGRAM_FILES%\BaiduEx\BaiduAn.txt'
- '%PROGRAM_FILES%\BaiduEx\BaiduSd.txt'
- '%PROGRAM_FILES%\BaiduEx\uninit.exe'
- '%PROGRAM_FILES%\BaiduEx\BaiduAn.txt' (загружен из сети Интернет)
- '%PROGRAM_FILES%\BaiduEx\BaiduSd.txt' (загружен из сети Интернет)
- '%WINDIR%\regedit.exe' /s uninit.dat
- %PROGRAM_FILES%\BaiduEx\BaiduAn.txt
- %PROGRAM_FILES%\BaiduEx\sd.bat
- %PROGRAM_FILES%\BaiduEx\an.bat
- %PROGRAM_FILES%\BaiduEx\BaiduSd.txt
- %PROGRAM_FILES%\BaiduEx\uninit.exe
- %PROGRAM_FILES%\BaiduEx\uninit.dat
- %PROGRAM_FILES%\BaiduEx\BaiduLog.txt
- %PROGRAM_FILES%\BaiduEx\BaiduLog.txt
- 'yi###einidi.pw':80
- '12#.#25.114.144':80
- 'localhost':1037
- yi###einidi.pw/BaiduAn.txt
- yi###einidi.pw/BaiduSd.txt
- 12#.#25.114.144/search/error.html
- DNS ASK yi###einidi.pw
- DNS ASK www.ba##u.com
- ClassName: 'BDMTips' WindowName: 'BDMTrayTipWnd'
- ClassName: 'BDMSusTipsFrame' WindowName: 'SusTipsWnd'
- ClassName: 'BDKVTips' WindowName: '°Щ¶ИЙ±¶ѕМбКѕ'
- ClassName: 'BDKVTips' WindowName: '????????????'
- ClassName: 'BDMSusFrame' WindowName: 'SusWnd'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''