Technical Information
- [<HKLM>\System\CurrentControlSet\Services\MSVidCtl] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\MSVidCtl] 'ImagePath' = '"%WINDIR%\SysWOW64\MSVidCtl\MSVidCtl.exe"'
- from <Full path to file> to %WINDIR%\syswow64\msvidctl\msvidctl.exe
- '21#.#2.13.25':80
- '91.##6.4.234':443
- http://91.###.4.234:443/WKQvM8IIyw/wNs5CaAs7cW/k6iRZFm/ via 91.##6.4.234