Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'produpd' = '"%APPDATA%\VDI\Shared\Product Updater\produpd.exe" '
- %HOMEPATH%\Start Menu\Programs\Startup\monhost.lnk
- %APPDATA%\VDI\Shared\Product Updater\6c49134d7c5e1d0e816231aed65b64c4.exe
- %APPDATA%\VDI\Shared\Product Updater\ca5b5f8d7a48f11bd0478006edd5921c.exe
- %TEMP%\nsr2.tmp
- %APPDATA%\VDI\Shared\Product Updater\6c49134d7c5e1d0e816231aed65b64c4.exe в %APPDATA%\VDI\Shared\Product Updater\monhost.exe
- %APPDATA%\VDI\Shared\Product Updater\ca5b5f8d7a48f11bd0478006edd5921c.exe в %APPDATA%\VDI\Shared\Product Updater\produpd.exe