Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'slfcenv1' = 'C:\slpcenv\slfcenv1.exe'
- C:\slpcenv\slfcimsi\slfcundl_38_slfcver.txt
- %WINDIR%\sldnload.dll
- C:\slpcenv\slfcimsi\MZђ.exe
- %TEMP%\nsd2.tmp\NSISdl.dll
- %TEMP%\nsd2.tmp\System.dll
- C:\slpcenv\slfcver\slfcundl_err.txt
- C:\slpcenv\slfclog\sl-2012-10-11.log
- '10#.#54.81.100':80
- 10#.#54.81.100/MZ?.e##
- 10#.#54.81.100/slfcver/slfcundl_run.txt