Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'produpd' = '"%APPDATA%\VDI\Shared\Product Updater\produpd.exe" '
- %HOMEPATH%\Start Menu\Programs\Startup\monhost.lnk
- %APPDATA%\VDI\Shared\Product Updater\0a2c0d88cc7a0ee25f51389d6e2ee347.exe
- %APPDATA%\VDI\Shared\Product Updater\6f696fba78d5e949d75947dec89c49fb.exe
- %TEMP%\nsa2.tmp
- %APPDATA%\VDI\Shared\Product Updater\0a2c0d88cc7a0ee25f51389d6e2ee347.exe в %APPDATA%\VDI\Shared\Product Updater\monhost.exe
- %APPDATA%\VDI\Shared\Product Updater\6f696fba78d5e949d75947dec89c49fb.exe в %APPDATA%\VDI\Shared\Product Updater\produpd.exe