Техническая информация
- %WINDIR%\syswow64\notepad.exe
- %TEMP%\ckkrnavufl.exe
- %HOMEPATH%\desktop\continue winzip installation.lnk
- %TEMP%\ff852\welcome.html
- %TEMP%\ff852\load.html
- %TEMP%\ff852\js\stubparams.js
- %TEMP%\ff852\js\jquery-ui.min.js
- %TEMP%\ff852\js\jquery-1.11.2.min.js
- %TEMP%\ff852\js\installparams.js
- %TEMP%\ff852\js\external.js
- %TEMP%\ff852\js\external-dev.js
- %TEMP%\ff852\js\contents.js
- %TEMP%\ff852\installing.html
- %TEMP%\ff852\images\header_logo.png
- %TEMP%\ff852\images\headerimg.png
- %TEMP%\werbnpnzuk.exe
- %TEMP%\ff852\images\footerimg.png
- %TEMP%\ff852\images\close-hover.png
- %TEMP%\ff852\images\centerimg.png
- %TEMP%\ff852\images\button-normal.png
- %TEMP%\ff852\images\button-hover.png
- %TEMP%\ff852\images\arrow.png
- %TEMP%\ff852\eula.html
- %TEMP%\ff852\css\style.css
- %TEMP%\ff852\css\jquery-ui.css
- %TEMP%\ff852\complete.html
- %TEMP%\ff852\agreement.html
- %PROGRAMDATA%\uniqueid\data
- %TEMP%\ff1e8\installer_log_20200425195200.txt
- %TEMP%\feca9\ckkrnavufl.exe
- %TEMP%\ff852\images\close-normal.png
- %TEMP%\apple.bmp
- 'i.####allportal.com':80
- http://dl.####allportal.com/license/WNZP/en/Eula.html
- http://i.####allportal.com/v1/logAnalytics
- DNS ASK dl.####allportal.com
- DNS ASK i.####allportal.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%TEMP%\ckkrnavufl.exe'
- '%TEMP%\feca9\ckkrnavufl.exe' run=1 shortcut="%TEMP%\ckkrnavufl.exe"
- '%TEMP%\werbnpnzuk.exe'
- '%WINDIR%\syswow64\notepad.exe'