Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'AppUserIde' = 'rundll32.exe "<LS_APPDATA>\isaobjClock\AppUserIde.dll",HandlerPadserv appWIMusic'
- <SYSTEM32>\rundll32.exe "<LS_APPDATA>\isaobjClock\AppUserIde.dll",HandlerPadserv appWIMusic
- <SYSTEM32>\rundll32.exe "%TEMP%\Dfrgcrtdrv.dll", HandlerPadserv HandlerNetdrm
- <LS_APPDATA>\isaobjClock\AppUserIde.dll
- %TEMP%\Dfrgcrtdrv.dll
- %TEMP%\Dfrgcrtdrv.dll
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'wmiUservga' WindowName: ''