Техническая информация
- "%TEMP%\BaiduGameLobby.exe" (загружен из сети Интернет)
- <SYSTEM32>\cmd.exe /c """%TEMP%\DelTemp.bat"" "
- <SYSTEM32>\regsvr32.exe /s "%PROGRAM_FILES%\QVOD27\QvodEx.dll"
- %TEMP%\DelTemp.bat
- %PROGRAM_FILES%\QVOD27\QvodEx.dll
- %WINDIR%\newicon.ico
- %PROGRAM_FILES%\Baidu\BaiduGame\lobbyconfig.xml
- %TEMP%\BaiduGameLobby.exe.dt!
- %WINDIR%\ime\SPTIPIMERS.ini
- %TEMP%\BJSetup.exe
- %TEMP%\nsw2.tmp\System.dll
- %TEMP%\setup_000026.exe
- %TEMP%\nsw2.tmp\ShellLink.dll
- %HOMEPATH%\Favorites\====НшЦ·Ц®јТ====.URL
- %TEMP%\BJSetup.exe
- %TEMP%\BaiduGameLobby.exe
- %TEMP%\nsw2.tmp\ShellLink.dll
- %TEMP%\nsw2.tmp\System.dll
- 'ga##.#amesbaidu.com':80
- ga##.#amesbaidu.com/down.asp?id##############
- DNS ASK ga##.#amesbaidu.com
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''