Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\nvsvc_x64_86] 'Start' = '00000002'
- '%CommonProgramFiles%\NVIDIA\nvvsvc.exe'
- '%TEMP%\<Имя вируса>.exe'
- %CommonProgramFiles%\NVIDIA\nvvsvc.exe
- %CommonProgramFiles%\NVIDIA\PhysXCore.dll
- %TEMP%\tempx.bmp
- %WINDIR%\kawai2004.hst
- %CommonProgramFiles%\NVIDIA\PhysXDevice.dll
- %TEMP%\<Имя вируса>.exe
- %CommonProgramFiles%\NVIDIA\PhysXCooking.dll
- %TEMP%\tempx.bmp
- ClassName: 'SysListView32' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'