Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'produpd' = '"%APPDATA%\VDI\Shared\Product Updater\produpd.exe" '
- %HOMEPATH%\Start Menu\Programs\Startup\monhost.lnk
- %APPDATA%\VDI\Shared\Product Updater\c65e412bd952ced626909c7f2467ed8e.exe
- %APPDATA%\VDI\Shared\Product Updater\bdce5bd41342e7e201e46d9ea2a7cb6f.exe
- %TEMP%\nsy2.tmp
- %APPDATA%\VDI\Shared\Product Updater\c65e412bd952ced626909c7f2467ed8e.exe в %APPDATA%\VDI\Shared\Product Updater\monhost.exe
- %APPDATA%\VDI\Shared\Product Updater\bdce5bd41342e7e201e46d9ea2a7cb6f.exe в %APPDATA%\VDI\Shared\Product Updater\produpd.exe