Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'clearx' = '<SYSTEM32>\avguiclearx.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\AX38BD63] 'Start' = '00000000'
- <SYSTEM32>\REBOOT.DC
- <SYSTEM32>\avguiclearx.exe
- <DRIVERS>\AX38BD63.sys
- <DRIVERS>\AX38BD63.sys