Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'mfcAuthenticationapi' = 'rundll32.exe "<LS_APPDATA>\Clipmapusb\mfcAuthenticationapi.dll",DfrgWebCmds DfrgNetVdm'
- <SYSTEM32>\rundll32.exe "<LS_APPDATA>\Clipmapusb\mfcAuthenticationapi.dll",DfrgWebCmds DfrgNetVdm
- <SYSTEM32>\rundll32.exe "%TEMP%\smiMaindrv.dll", DfrgWebCmds UtilWIman
- <LS_APPDATA>\Clipmapusb\mfcAuthenticationapi.dll
- %TEMP%\smiMaindrv.dll
- %TEMP%\smiMaindrv.dll
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'DfrgMainRpl' WindowName: ''