Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'AdVantage' = '%APPDATA%\advantage\AdVantage.exe'
- '<SYSTEM32>\systeminfo.exe'
- %APPDATA%\advantage\AdVantage.exe
- %APPDATA%\Microsoft\Sze\hqhmp
- ClassName: '7 163807' WindowName: '7 163807'
- ClassName: '79 4' WindowName: '79 4'
- ClassName: '99' WindowName: ' 4'
- ClassName: '483659326' WindowName: '692'
- ClassName: ' 4' WindowName: ' 90 27 '
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: '483659326' WindowName: '169 93'
- ClassName: '327' WindowName: '327'
- ClassName: '87' WindowName: '862 5 '
- ClassName: '862 5 ' WindowName: ' 55302469'
- ClassName: '862 5 ' WindowName: ' 9 04 6'
- ClassName: '880 9 4' WindowName: '318686723'
- ClassName: ' ' WindowName: '7437 6'
- ClassName: '57 708' WindowName: '57 708'
- ClassName: '57 708' WindowName: '8'
- ClassName: ' 55302469' WindowName: '9 '
- ClassName: ' 7 5 ' WindowName: '862 5 '