Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'AdVantage' = '%APPDATA%\advantage\AdVantage.exe'
- '<SYSTEM32>\systeminfo.exe'
- %APPDATA%\advantage\AdVantage.exe
- %APPDATA%\Microsoft\Sze\hqhmp
- ClassName: '650' WindowName: '650'
- ClassName: '212 ' WindowName: ' 71'
- ClassName: '212 ' WindowName: '212 '
- ClassName: '919 653 ' WindowName: ' '
- ClassName: '1 7 265' WindowName: ' 3079403 '
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: '0' WindowName: ' 4'
- ClassName: ' 3079403 ' WindowName: '423830 '
- ClassName: '64 7' WindowName: '212 '
- ClassName: ' 1 ' WindowName: ' 71'
- ClassName: '14 7043 ' WindowName: '423830 '
- ClassName: ' 0636 32' WindowName: ' 2253'
- ClassName: '51' WindowName: ' 28304 '
- ClassName: '46 ' WindowName: ' '
- ClassName: '7' WindowName: '314 23'
- ClassName: '0523 37 ' WindowName: '0523 37 '