Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'flkd' = '<SYSTEM32>\flfd.exe'
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{C7A3770B-47F3-F954-65B8-848701F214C9}] 'StubPath' = '<SYSTEM32>\flfd.exe'
- %PROGRAM_FILES%\dec.exe
- %PROGRAM_FILES%\jl6.exe
- %WINDIR%\Explorer.EXE
- %TEMP%\php6.tmp
- %TEMP%\php5.tmp
- %TEMP%\php4.tmp
- C:\108d46544c6df0439c2ae6c9fca4e08847058e7f.bmp
- C:\108d46544c6df0439c2ae6c9fca4e08847058e7f.ico
- %TEMP%\php7.tmp
- %TEMP%\php3.tmp
- %PROGRAM_FILES%\dec.exe
- %PROGRAM_FILES%\jl6.exe
- %TEMP%\sfx.ini
- %TEMP%\php2.tmp
- %TEMP%\php1.tmp
- <SYSTEM32>\flfd.exe
- C:\108d46544c6df0439c2ae6c9fca4e08847058e7f.bmp
- C:\108d46544c6df0439c2ae6c9fca4e08847058e7f.ico
- %TEMP%\sfx.ini
- 'jl#.#o-ip.biz':3460
- DNS ASK jl#.#o-ip.biz
- ClassName: 'SysTabControl32' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''