Техническая информация
- [<HKLM>\SOFTWARE\Classes\Cad.Document\shell\open\command] '' = '<LS_APPDATA>\NVIDIA Corporation\Update\nvupd32.exe "%1"'
- [<HKLM>\SYSTEM\ControlSet001\Services\NvUpdSrv] 'Start' = '00000002'
- '<LS_APPDATA>\NVIDIA Corporation\Update\nvupd32.exe'
- '<LS_APPDATA>\NVIDIA Corporation\Update\nvupd32.exe' /svc
- <LS_APPDATA>\NVIDIA Corporation\Update\nvupd32.exe
- %TEMP%\nsf3.tmp\System.dll
- %TEMP%\nsp2.tmp
- %TEMP%\nsf3.tmp\System.dll
- 'vy##.axvf.biz':8000
- 'aa##.axvf.biz':8000
- 'mt##.fvgd.biz':8000
- '91.##9.232.53':8000
- DNS ASK aa##.axvf.biz
- DNS ASK vy##.axvf.biz
- DNS ASK mt##.fvgd.biz