Техническая информация
- %TEMP%\is-86IFL.tmp\FilmTV_Setup.tmp /SL5="$200F4,215330,70656,%WINDIR%\FilmTV_Setup.exe"
- %PROGRAM_FILES%\ecplor
- %WINDIR%\786.exe
- %WINDIR%\FilmTV_Setup.exe
- %WINDIR%\fast35.exe
- <SYSTEM32>\net.exe stop sharedaccess
- <SYSTEM32>\net1.exe stop sharedaccess
- %WINDIR%\explorer.exe
- <SYSTEM32>\cmd.exe /c ""%WINDIR%\kill.bat""
- %WINDIR%\explorer.exe http://www.70###.cn:168/goto.htm
- <SYSTEM32>\taskkill.exe /f /pid 3164
- %TEMP%\is-T9VE6.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-T9VE6.tmp\_isetup\_RegDLL.tmp
- <SYSTEM32>\wbem\Performance\WmiApRpl_new.ini
- %PROGRAM_FILES%\ecplor
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\cpa[1].txt
- %WINDIR%\786.exe
- %WINDIR%\FilmTV_Setup.exe
- %WINDIR%\fast35.exe
- %WINDIR%\kill.bat
- %TEMP%\is-86IFL.tmp\FilmTV_Setup.tmp
- %WINDIR%\786.exe
- 'localhost':1041
- 'www.fa##35.net':80
- 'www.70##s.cn':168
- 'localhost':1036
- 'localhost':1037
- www.fa##35.net/cpa/cpa.txt
- www.fa##35.net/cpa/count.asp?ma###########################
- DNS ASK www.fa##35.net
- DNS ASK www.70##s.cn
- ClassName: 'BaseBar' WindowName: 'ChanApp'
- ClassName: 'Proxy Desktop' WindowName: ''
- ClassName: 'SysListView32' WindowName: ''
- ClassName: 'CSCHiddenWindow' WindowName: ''
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''