Техническая информация
- %TEMP%\is-GKOGD.tmp\Green.tmp /SL5="$10134,744479,52224,%PROGRAM_FILES%\soft01\Green.exe" /sp- /VERYSILENT /norestart
- %TEMP%\is-TN3MS.tmp\Green.tmp /SL5="$300DA,744479,52224,%PROGRAM_FILES%\soft01\Green.exe"
- %PROGRAM_FILES%\soft01\Green.exe /sp- /VERYSILENT /norestart
- %PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://jy.#144.net/
- %PROGRAM_FILES%\speedb\is-SK7SP.tmp
- %PROGRAM_FILES%\speedb\is-6QT9H.tmp
- %TEMP%\is-QTI52.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-QTI52.tmp\_isetup\_isdecmp.dll
- %PROGRAM_FILES%\speedb\is-BOTG0.tmp
- %PROGRAM_FILES%\speedb\is-HST2C.tmp
- %TEMP%\wl0617171.EXE
- %PROGRAM_FILES%\speedb\is-54ROI.tmp
- %TEMP%\is-QTI52.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-TN3MS.tmp\Green.tmp
- %TEMP%\is-UDO0L.tmp\_isetup\_RegDLL.tmp
- %PROGRAM_FILES%\soft01\a
- %PROGRAM_FILES%\soft01\Green.exe
- %TEMP%\nsb2.tmp\NSISdl.dll
- %TEMP%\is-GKOGD.tmp\Green.tmp
- %TEMP%\is-UDO0L.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-UDO0L.tmp\_isetup\_isdecmp.dll
- %TEMP%\is-UDO0L.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-TN3MS.tmp\Green.tmp
- %TEMP%\is-UDO0L.tmp\_isetup\_isdecmp.dll
- %TEMP%\is-UDO0L.tmp\_isetup\_RegDLL.tmp
- 'localhost':1038
- 'do##.emoney.cn':80
- do##.emoney.cn/wl0617171.EXE
- DNS ASK jy.#144.net
- DNS ASK do##.emoney.cn
- '<IP-адрес в локальной сети>':1036
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''