Technical Information
- '' (downloaded from the Internet)
- %TEMP%\is-75BPQ.tmp\<File name>.tmp
- %TEMP%\is-3IB17.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-3IB17.tmp\itdownload.dll
- %TEMP%\is-3IB17.tmp\netstream.exe
- %TEMP%\is-3IB17.tmp\SetupZippy.exe
- %TEMP%\is-M4M38.tmp\SetupZippy.tmp
- %TEMP%\is-0K8EG.tmp\_isetup\_shfoldr.dll
- %ProgramFiles%\Zippy\is-K1UL0.tmp
- %ProgramFiles%\Zippy\is-2LJFM.tmp
- %ALLUSERSPROFILE%\Start Menu\Programs\Zippy.lnk
- %ProgramFiles%\Zippy\unins000.dat
- %TEMP%\is-3IB17.tmp\itdownload.dll
- %TEMP%\is-3IB17.tmp\netstream.exe
- %TEMP%\is-3IB17.tmp\SetupZippy.exe
- %TEMP%\is-3IB17.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-0K8EG.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-75BPQ.tmp\<File name>.tmp
- %TEMP%\is-M4M38.tmp\SetupZippy.tmp
- from %ProgramFiles%\Zippy\is-K1UL0.tmp to %ProgramFiles%\Zippy\unins000.exe
- from %ProgramFiles%\Zippy\is-2LJFM.tmp to %ProgramFiles%\Zippy\Zippyy.exe
- 'al####oudmedia.com':80
- http://al####oudmedia.com/tunnel/netstream.exe
- DNS ASK al####oudmedia.com
- '%TEMP%\is-75BPQ.tmp\<File name>.tmp' /SL5="$30092,738509,342016,<Full path to file>"
- '%TEMP%\is-3IB17.tmp\netstream.exe' /pubid=9 /subid=9
- '%TEMP%\is-3IB17.tmp\SetupZippy.exe' /VerySilent
- '%TEMP%\is-M4M38.tmp\SetupZippy.tmp' /SL5="$300E2,94127,56832,%TEMP%\is-3IB17.tmp\SetupZippy.exe" /VerySilent