Техническая информация
- "%TEMP%\is-UE00Q.tmp\coopen_setup_100209.exe" (загружен из сети Интернет)
- "%TEMP%\is-UE00Q.tmp\YoudaoDict_kuodou.exe" (загружен из сети Интернет)
- %TEMP%\is-UE00Q.tmp\itdownload.dll
- %TEMP%\is-UE00Q.tmp\YoudaoDict_kuodou.exe
- %TEMP%\is-UE00Q.tmp\coopen_setup_100209.exe
- %TEMP%\is-J0HTO.tmp\<Имя вируса>.tmp
- %TEMP%\is-UE00Q.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-UE00Q.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-UE00Q.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-UE00Q.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-J0HTO.tmp\<Имя вируса>.tmp
- %TEMP%\is-UE00Q.tmp\coopen_setup_100209.exe
- %TEMP%\is-UE00Q.tmp\itdownload.dll
- %TEMP%\is-UE00Q.tmp\YoudaoDict_kuodou.exe
- 'do####ad.coopen.cn':80
- 'co####.youdao.com':80
- do####ad.coopen.cn/setup/v5/coopen_setup_100209.exe
- co####.youdao.com/cidian/YoudaoDict_kuodou.exe
- DNS ASK do####ad.coopen.cn
- DNS ASK co####.youdao.com
- ClassName: '' WindowName: '????'
- ClassName: 'Shell_TrayWnd' WindowName: ''