Technical Information
- %TEMP%\is-m5q5h.tmp\<File name>.tmp
- %TEMP%\is-0dao4.tmp\_isetup\_setup64.tmp
- %TEMP%\is-0dao4.tmp\_isetup\_shfoldr.dll
- %WINDIR%\is-oolt3.tmp
- %LOCALAPPDATA%\is-qu2g4.tmp
- %WINDIR%\unins000.dat
- %TEMP%\msi7451a.log
- %TEMP%\msi4786\eeh.dll
- %TEMP%\msied22.tmp
- %TEMP%\msief06.tmp
- %TEMP%\msif2fd.tmp
- %TEMP%\msif57e.tmp
- %TEMP%\inxf5a5.tmp
- %TEMP%\msied22.tmp
- %TEMP%\msief06.tmp
- %TEMP%\msif2fd.tmp
- %TEMP%\msif57e.tmp
- from %WINDIR%\is-oolt3.tmp to %WINDIR%\unins000.exe
- from %LOCALAPPDATA%\is-qu2g4.tmp to %LOCALAPPDATA%\123.msi
- 'microsoft.com':80
- 'go.#set.eu':80
- 'go.#set.com':443
- DNS ASK microsoft.com
- DNS ASK go.#set.eu
- DNS ASK go.#set.com
- '%TEMP%\is-m5q5h.tmp\<File name>.tmp' /SL5="$110232,80211015,56832,<Full path to file>"
- '%WINDIR%\syswow64\msiexec.exe' /i "%LOCALAPPDATA%\123.msi"