Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'clear' = '<SYSTEM32>\avguiclear.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\A714653] 'Start' = '00000000'
- <SYSTEM32>\REBOOT.DC
- <SYSTEM32>\avguiclear.exe
- <DRIVERS>\A714653.sys
- <DRIVERS>\A714653.sys