Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'AdVantage' = '%APPDATA%\advantage\AdVantage.exe'
- '<SYSTEM32>\systeminfo.exe'
- %APPDATA%\advantage\AdVantage.exe
- %APPDATA%\Microsoft\Sze\hqhmp
- ClassName: '151' WindowName: '6860 1 '
- ClassName: '7 4' WindowName: ' 6 4'
- ClassName: '018' WindowName: '48'
- ClassName: '65' WindowName: '68923042 '
- ClassName: '5' WindowName: '18638 84'
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: ' 2' WindowName: ' 2'
- ClassName: ' 09 ' WindowName: '926 408'
- ClassName: '47 6 1' WindowName: ' 7'
- ClassName: '7340 97' WindowName: '3'
- ClassName: '0 129839' WindowName: '21'
- ClassName: '6 817' WindowName: '6 817'
- ClassName: '17 84569' WindowName: '17 84569'
- ClassName: '21' WindowName: '4 0 '
- ClassName: ' 586355' WindowName: '9 992 '
- ClassName: ' 5 8 31' WindowName: '7396 63 '
- ClassName: '9 992 ' WindowName: '3'