Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'AdVantage' = '%APPDATA%\advantage\AdVantage.exe'
- <SYSTEM32>\systeminfo.exe
- %APPDATA%\advantage\AdVantage.exe
- %APPDATA%\Microsoft\Sze\hqhmp
- ClassName: ' ' WindowName: '34'
- ClassName: '642' WindowName: ' 367 '
- ClassName: ' 39' WindowName: '570 72655'
- ClassName: '51 4' WindowName: '51 4'
- ClassName: ' 3' WindowName: '30'
- ClassName: '89 ' WindowName: '642'
- ClassName: '06 03' WindowName: '06 03'
- ClassName: 'Indicator' WindowName: ''
- ClassName: '90 0 ' WindowName: '51 4'
- ClassName: ' 94' WindowName: '89 '
- ClassName: '89 ' WindowName: ' 94'
- ClassName: '06 03' WindowName: '51 4'
- ClassName: ' 94' WindowName: '98 6 2 5'
- ClassName: '06 03' WindowName: ' 5436'
- ClassName: '825943' WindowName: ' 37 2'
- ClassName: '965 12165' WindowName: '64'
- ClassName: ' 94' WindowName: '825943'
- ClassName: ' 5436' WindowName: '06 03'
- ClassName: '27 3' WindowName: '7'
- ClassName: '06 03' WindowName: '7'
- ClassName: '4 24 3' WindowName: '4 24 3'
- ClassName: '4 655' WindowName: '54'
- ClassName: '0169' WindowName: '51 4'