Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'winCommonOffice' = 'rundll32.exe "<LS_APPDATA>\DirectWebLite\winCommonOffice.dll",isaPad64 MSNMapUI'
- <SYSTEM32>\rundll32.exe "<LS_APPDATA>\DirectWebLite\winCommonOffice.dll",isaPad64 MSNMapUI
- <SYSTEM32>\rundll32.exe "%TEMP%\UtilCommonspl.dll", isaPad64 advMapPlay
- <LS_APPDATA>\DirectWebLite\winCommonOffice.dll
- %TEMP%\UtilCommonspl.dll
- %TEMP%\UtilCommonspl.dll
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'iemapapi' WindowName: ''