Technical Information
- '<SYSTEM32>\DllHost.exe' /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
- %TEMP%\ish427349\css\main.css
- %TEMP%\ish427349\css\sdk-ui\browse.css
- %TEMP%\ish427349\css\ie6_main.css
- %TEMP%\ish421811\bootstrap_27642.html
- %TEMP%\00068545.log
- %TEMP%\ish427349\css\sdk-ui\button.css
- %TEMP%\ish427349\css\sdk-ui\images\progress-bg.png
- %TEMP%\ish427349\css\sdk-ui\images\progress-bg2.png
- %TEMP%\ish427349\css\sdk-ui\images\progress-bg-corner.png
- %TEMP%\ish427349\css\sdk-ui\checkbox.css
- %TEMP%\ish427349\css\sdk-ui\images\button-bg.png
- %TEMP%\ish421811\images\Icon_Generic.png
- %TEMP%\ish421811\images\Loader.gif
- %TEMP%\ish421811\images\Grey_Button_Hover.png
- %TEMP%\ish421811\images\Color_Button_Hover.png
- %TEMP%\ish421811\images\Grey_Button.png
- %TEMP%\ish421811\images\Pause_Button.png
- %TEMP%\ish421811\images\Resume_Button.png
- %TEMP%\ish421811\locale\EN.locale
- %TEMP%\ish421811\images\Quick_Specs.png
- %TEMP%\ish421811\images\Progress.png
- %TEMP%\ish421811\images\ProgressBar.png
- %TEMP%\ish427349\css\sdk-ui\progress-bar.css
- %TEMP%\ish427349\images\Quick_Specs.png
- %TEMP%\ish427349\images\Resume_Button.png
- %TEMP%\ish427349\images\ProgressBar.png
- %TEMP%\ish427349\images\Pause_Button.png
- %TEMP%\ish427349\images\Progress.png
- %TEMP%\ish427349\locale\EN.locale
- %TEMP%\0006959A.log
- %HOMEPATH%\Desktop\Continue Adobe Reader Free Download Installation.lnk
- %TEMP%\0006929D.log
- %TEMP%\ICReinstall_<Virus name>.exe
- %TEMP%\ish427349\images\Close.png
- %TEMP%\ish427349\images\Close_Hover.png
- %TEMP%\ish427349\images\BG.png
- %TEMP%\ish427349\csshover3.htc
- %TEMP%\ish427349\form.bmp.Mask
- %TEMP%\ish427349\images\Color_Button.png
- %TEMP%\ish427349\images\Icon_Generic.png
- %TEMP%\ish427349\images\Loader.gif
- %TEMP%\ish427349\images\Grey_Button_Hover.png
- %TEMP%\ish427349\images\Color_Button_Hover.png
- %TEMP%\ish427349\images\Grey_Button.png
- %TEMP%\ish421811\images\Color_Button.png
- %TEMP%\ish420157\images\Close.png
- %TEMP%\ish420157\images\Close_Hover.png
- %TEMP%\ish420157\images\BG.png
- %TEMP%\ish420157\csshover3.htc
- %TEMP%\ish420157\form.bmp.Mask
- %TEMP%\ish420157\images\Color_Button.png
- %TEMP%\ish420157\images\Icon_Generic.png
- %TEMP%\ish420157\images\Loader.gif
- %TEMP%\ish420157\images\Grey_Button_Hover.png
- %TEMP%\ish420157\images\Color_Button_Hover.png
- %TEMP%\ish420157\images\Grey_Button.png
- %TEMP%\ish420157\css\sdk-ui\browse.css
- %TEMP%\ish420157\css\sdk-ui\button.css
- %TEMP%\ish420157\css\main.css
- %TEMP%\0006693D.log
- %TEMP%\ish420157\css\ie6_main.css
- %TEMP%\ish420157\css\sdk-ui\checkbox.css
- %TEMP%\ish420157\css\sdk-ui\images\progress-bg2.png
- %TEMP%\ish420157\css\sdk-ui\progress-bar.css
- %TEMP%\ish420157\css\sdk-ui\images\progress-bg.png
- %TEMP%\ish420157\css\sdk-ui\images\button-bg.png
- %TEMP%\ish420157\css\sdk-ui\images\progress-bg-corner.png
- %TEMP%\ish420157\images\Pause_Button.png
- %TEMP%\ish421811\css\sdk-ui\images\progress-bg.png
- %TEMP%\ish421811\css\sdk-ui\images\progress-bg2.png
- %TEMP%\ish421811\css\sdk-ui\images\progress-bg-corner.png
- %TEMP%\ish421811\css\sdk-ui\checkbox.css
- %TEMP%\ish421811\css\sdk-ui\images\button-bg.png
- %TEMP%\ish421811\css\sdk-ui\progress-bar.css
- %TEMP%\ish421811\images\Close.png
- %TEMP%\ish421811\images\Close_Hover.png
- %TEMP%\ish421811\images\BG.png
- %TEMP%\ish421811\csshover3.htc
- %TEMP%\ish421811\form.bmp.Mask
- %TEMP%\ish420157\images\Resume_Button.png
- %TEMP%\ish420157\locale\EN.locale
- %TEMP%\ish420157\images\Quick_Specs.png
- %TEMP%\ish420157\images\Progress.png
- %TEMP%\ish420157\images\ProgressBar.png
- %TEMP%\00066EF7.log
- %TEMP%\ish421811\css\sdk-ui\browse.css
- %TEMP%\ish421811\css\sdk-ui\button.css
- %TEMP%\ish421811\css\main.css
- %TEMP%\00066FA3.log
- %TEMP%\ish421811\css\ie6_main.css
- %TEMP%\ish420157\images\Loader.gif
- %TEMP%\ish420157\images\Icon_Generic.png
- %TEMP%\ish420157\images\Progress.png
- %TEMP%\ish420157\images\Pause_Button.png
- %TEMP%\ish420157\images\Grey_Button.png
- %TEMP%\ish420157\images\Color_Button_Hover.png
- %TEMP%\00066FA3.log
- %TEMP%\ish420157\images\Grey_Button_Hover.png
- %TEMP%\ish420157\images\ProgressBar.png
- %TEMP%\0006929D.log
- %TEMP%\ish421811\bootstrap_27642.html
- <SYSTEM32>\Tasks\Microsoft\Windows Defender\MP Scheduled Scan
- %TEMP%\0006959A.log
- %TEMP%\ish420157\images\Resume_Button.png
- %TEMP%\ish420157\images\Quick_Specs.png
- %TEMP%\00068545.log
- %TEMP%\ish420157\locale\EN.locale
- %TEMP%\ish420157\images\Color_Button.png
- %TEMP%\ish420157\css\sdk-ui\button.css
- %TEMP%\ish420157\css\sdk-ui\browse.css
- %TEMP%\ish420157\css\sdk-ui\images\button-bg.png
- %TEMP%\ish420157\css\sdk-ui\checkbox.css
- %TEMP%\00066EF7.log
- %TEMP%\0006693D.log
- %TEMP%\ish420157\css\main.css
- %TEMP%\ish420157\css\ie6_main.css
- %TEMP%\ish420157\css\sdk-ui\images\progress-bg-corner.png
- %TEMP%\ish420157\images\BG.png
- %TEMP%\ish420157\form.bmp.Mask
- %TEMP%\ish420157\images\Close_Hover.png
- %TEMP%\ish420157\images\Close.png
- %TEMP%\ish420157\css\sdk-ui\images\progress-bg2.png
- %TEMP%\ish420157\css\sdk-ui\images\progress-bg.png
- %TEMP%\ish420157\csshover3.htc
- %TEMP%\ish420157\css\sdk-ui\progress-bar.css
- 'os#.##leorgcdn.com':80
- 'os.###eorgcdn.com':80
- 'fi##3.org':80
- fi##3.org/inst/4f03b0b3a22864ad13160dcf768a45ea-install_reader11_en_mssd_aih.exe
- os#.##leorgcdn.com/file.org/?v=################
- os.###eorgcdn.com/file.org/?v=################
- DNS ASK os#.##leorgcdn.com
- DNS ASK os.###eorgcdn.com
- DNS ASK fi##3.org
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'OleMainThreadWndClass' WindowName: ''