Техническая информация
- '%WINDIR%\regedit.exe' /s %WINDIR%\reg.reg
- '%WINDIR%\regedit.exe' /s %WINDIR%\mreg.reg
- '%ProgramFiles%\mconfig.exe'
- '%ProgramFiles%\bar.exe'
- %ProgramFiles%\Baidu\Toolbar\IMG\37.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\32.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\39.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\38.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\31.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\27.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\24.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\3.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\29.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\at.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\9.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\def.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\baidu.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\8.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\5.ico
- %WINDIR%\reg.reg
- %ProgramFiles%\Baidu\Toolbar\IMG\7.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\6.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\23.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX.dll
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\Р¶ФШ°Щ¶И№¤ѕЯАё.lnk
- %ProgramFiles%\Baidu\Toolbar\IMG\1.ico
- %ProgramFiles%\Baidu\Toolbar\config\face.xml
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\ЧФ¶ЁТе°ґЕҐ.url
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\РЮёґ№¦ДЬ.url
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\ПµНіјУЛЩ.url
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\ёцРФ»ЇКЧТі.url
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\ТюЛЅ±Ј»¤.url
- %ProgramFiles%\Baidu\Toolbar\IMG\19.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\18.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\20.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\2.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\17.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\12.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\11.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\14.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\13.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\soucang.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\shezhi.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\webim_on.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\webim_off.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\resize.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\MediaSave2.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\MediaSave1.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\PageFind.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\music.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\youyi.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\yingpan.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\zuoyi.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\zhidao.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\xuanxiang.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\xiezai.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\xiezai.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\xiongzhang.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\xinwen.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\medal.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\fengyun.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\fankui.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\film.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\fengyun_high.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\fangdajing.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\denglu.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\dengchu.ico
- %ProgramFiles%\Baidu\Toolbar\IMG\down.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\ditu.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\lianmeng.bmp
- %WINDIR%\mreg.reg
- %ProgramFiles%\Baidu\Toolbar\IMG\logobtn.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\logo.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\Kongjian.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\gechi.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\flashbar.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\image.bmp
- %ProgramFiles%\Baidu\Toolbar\IMG\HighLight.bmp
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\А¬»шЗеАн.url
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\zuoyi.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\zhidao.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\Kongjian.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\HighLight.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\youyi.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\xiongzhang.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\xinwen.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\yingpan.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\xuanxiang.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\2.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\1.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\5.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\3.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\PageFind.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\MediaSave1.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\soucang.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\flashbar.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\MediaSave2.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\xiezai.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\dengchu.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\config\face.xml
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\ditu.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\denglu.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\BaiduBarX.dll
- %ProgramFiles%\bar.exe
- %ProgramFiles%\mconfig.exe
- %APPDATA%\Baidu\Toolbar\Custom Buttons\custom.xml
- %TEMP%\nsl2.tmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\medal.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\logobtn.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\shezhi.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\music.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\image.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\fangdajing.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\down.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\gechi.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\film.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\fengyun.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\xiezai.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\at.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\fengyun_high.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\def.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\39.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\38.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\webim_on.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\webim_off.ico
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\°йВВµјєЅ.url
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\ЖБ±ОБР±н.url
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\№гёжА№ЅШ.url
- %ALLUSERSPROFILE%\Start Menu\Programs\°Щ¶И№¤ѕЯАё\°пЦъЦёДП.url
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\fankui.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\logo.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\lianmeng.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\baidu.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\resize.bmp
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\37.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\13.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\12.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\17.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\14.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\11.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\7.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\6.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\9.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\8.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\29.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\27.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\32.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\31.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\24.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\19.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\18.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\23.ico
- %ProgramFiles%\Baidu\Toolbar\BaiduBarX_Tmp\IMG\20.ico
- %ProgramFiles%\bar.exe
- %ProgramFiles%\mconfig.exe
- 'www.so##60.com':80
- '12#.#25.114.144':80
- http://www.so##60.com/15633835/1219.txt
- http://www.so##60.com/union/kj.txt
- http://www.so##60.com/15633835/tongji4/tongji.asp?pu##################################
- http://www.ba##u.com/ via 12#.#25.114.144
- http://www.so##60.com/15633835/go22.txt
- DNS ASK www.so##60.com
- DNS ASK www.ba##u.com
- ClassName: 'RegEdit_RegEdit' WindowName: ''