Техническая информация
- [<HKLM>\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] 'WindowsUpdate' = '%ProgramFiles(x86)%\Nvidia-Driver\server.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] 'WindowsUpdate' = '%ProgramFiles(x86)%\Nvidia-Driver\server.exe'
- [<HKLM>\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] 'hdaudio' = '%ProgramFiles(x86)%\Nvidia-Driver\server.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Nvidia/ATI-Diver' = '%ProgramFiles(x86)%\Nvidia-Driver\server.exe'
- [<HKLM>\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{258O6Q7B-Q38C-4WBY-IRRA-7K2PER67X4E8}] 'StubPath' = '%ProgramFiles(x86)%\Nvidia-Driver\server.exe Restart'
- [<HKLM>\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{258O6Q7B-Q38C-4WBY-IRRA-7K2PER67X4E8}] 'StubPath' = '%ProgramFiles(x86)%\Nvidia-Driver\server.exe'
- %WINDIR%\syswow64\explorer.exe
- server.exe
- %ProgramFiles(x86)%\nvidia-driver\server.exe
- %TEMP%\user2.txt
- %APPDATA%\userlog.dat
- %TEMP%\user7
- %TEMP%\user8
- %ProgramFiles(x86)%\nvidia-driver\server.exe
- %APPDATA%\userlog.dat
- %TEMP%\user2.txt
- %TEMP%\user8
- %TEMP%\user7
- %TEMP%\user8
- %TEMP%\user7
- DNS ASK xx#####r.xx.ohost.de
- DNS ASK 28#####11429.no-ip.org
- '%ProgramFiles(x86)%\nvidia-driver\server.exe'
- '%WINDIR%\syswow64\explorer.exe'