Техническая информация
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\eBayТЧИ¤--И«ЗтЙМЖ·Т»НшґтѕЎ.lnk
- '%PROGRAM_FILES%\EbayShop\EbayShopSetup.exe'
- '<SYSTEM32>\cmd.exe' /c ""c:\RemoveES.bat" "
- C:\eBayТЧИ¤--И«ЗтЙМЖ·Т»НшґтѕЎ.lnk
- %HOMEPATH%\Start Menu\Programs\eBayТЧИ¤--И«ЗтЙМЖ·Т»НшґтѕЎ.lnk
- %HOMEPATH%\Start Menu\eBayТЧИ¤--И«ЗтЙМЖ·Т»НшґтѕЎ.lnk
- C:\RemoveES.bat
- C:\temp.html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\kugoo4[1].php
- %PROGRAM_FILES%\EbayShop\EbayShopSetup.exe
- %PROGRAM_FILES%\EbayShop\EbayShop.exe
- %PROGRAM_FILES%\EbayShop\ebay.ico
- %HOMEPATH%\Desktop\eBayТЧИ¤--И«ЗтЙМЖ·Т»НшґтѕЎ.lnk
- %PROGRAM_FILES%\EbayShop\setup.ini
- %PROGRAM_FILES%\EbayShop\EbayShopUnwise.exe
- %PROGRAM_FILES%\EbayShop\EbayShopSetup.exe
- C:\temp.html
- %PROGRAM_FILES%\EbayShop\setup.ini
- 'eb##.#isswin.com':80
- 'localhost':1036
- eb##.#isswin.com/kugoo4.php
- DNS ASK eb##.#isswin.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'