Technical Information
- <Current directory>\machinarium.exe
- %TEMP%\nsc3.tmp\ns5.tmp <SYSTEM32>\regini.exe <SYSTEM32>\regini.ini
- %TEMP%\nsc3.tmp\ns4.tmp <SYSTEM32>\regini.exe <SYSTEM32>\oldyuan.ini
- <SYSTEM32>\regini.exe <SYSTEM32>\regini.ini
- <SYSTEM32>\regini.exe <SYSTEM32>\oldyuan.ini
- <Current directory>\machinarium.exe
- %HOMEPATH%\Start Menu\ЙПНшµјєЅ.lnk
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Жф¶Ї Internet Explorer дЇААЖч.lnk
- %TEMP%\nsc3.tmp\nsExec.dll
- %APPDATA%\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sxx
- %TEMP%\nsc3.tmp\ns5.tmp
- %TEMP%\nsc3.tmp\ns4.tmp
- <SYSTEM32>\oldyuan.ini
- %CommonProgramFiles%\baidu\Baidu.html
- %HOMEPATH%\Favorites\µҐ»ъУОП·ПВФШ.url
- %TEMP%\nsm2.tmp
- %WINDIR%\НшЦ·µјєЅ.url
- <SYSTEM32>\regini.ini
- %WINDIR%\dll.exe
- %TEMP%\nsc3.tmp\NSISdl.dll
- <Current directory>\machinarium.exe
- <SYSTEM32>\regini.ini
- %APPDATA%\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol
- <SYSTEM32>\oldyuan.ini
- %TEMP%\nsc3.tmp\ns4.tmp
- %TEMP%\nsc3.tmp\ns5.tmp
- 'so##.pk9991.com':80
- so##.pk9991.com/dll.exe
- DNS ASK so##.pk9991.com
- ClassName: 'Shell_TrayWnd' WindowName: ''