Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'iemgr' = '%PROGRAM_FILES%\CoolEnuri\IEMGR.EXE'
- '%PROGRAM_FILES%\CoolEnuri\INSTALLER.exe' install
- '%PROGRAM_FILES%\CoolEnuri\IEMGR.exe'
- '%PROGRAM_FILES%\CoolEnuri\INSTALLER.exe' makeuserfile
- '%PROGRAM_FILES%\CoolEnuri\INSTALLER.exe' unregagent
- %PROGRAM_FILES%\CoolEnuri\user.dat
- %PROGRAM_FILES%\CoolEnuri\MSIEEXT.MOD
- %PROGRAM_FILES%\CoolEnuri\version.dat
- %PROGRAM_FILES%\CoolEnuri\IEMGR.exe
- %PROGRAM_FILES%\CoolEnuri\MSIEEXT.DLL
- %PROGRAM_FILES%\CoolEnuri\uninst.exe
- %PROGRAM_FILES%\CoolEnuri\CEInstFlag.ocx
- %PROGRAM_FILES%\CoolEnuri\INSTALLER.exe
- %PROGRAM_FILES%\CoolEnuri\reword.dat
- %TEMP%\nsq2.tmp\System.dll
- %TEMP%\NSISHLP\WFDLL.dll
- %PROGRAM_FILES%\CoolEnuri\ignore.dat
- %PROGRAM_FILES%\CoolEnuri\configver.dat
- %PROGRAM_FILES%\CoolEnuri\config.dat
- %PROGRAM_FILES%\CoolEnuri\except.dat
- %PROGRAM_FILES%\CoolEnuri\MSIEEXT.MOD
- %TEMP%\nsq2.tmp\System.dll
- 'pa####edia.co.kr':80
- 'kk##unt.com':80
- pa####edia.co.kr/coolenuri_updatever.txt
- kk##unt.com/i_loading.php?mc#############
- kk##unt.com/i_install.php?mc#############
- DNS ASK pa####edia.co.kr
- DNS ASK kk##unt.com