Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'wstart' = 'C:\temp\winstart_0000000605.exe'
- 'C:\temp\software_000000.exe'
- 'C:\rwindows\rwindows.exe'
- C:\rwindows\libssh2.dll
- C:\rwindows\ssleay32.dll
- C:\rwindows\librtmp.dll
- C:\rwindows\libeay32.dll
- C:\rwindows\libidn-11.dll
- C:\rwindows\zlib1.dll
- %TEMP%\is1.tmp
- %TEMP%\{CD106662-F4D3-41E7-A880-56B36E26D18B}.dll
- C:\rwindows\MCast.class
- C:\rwindows\scrypt130511.cl
- C:\rwindows\API.class
- C:\rwindows\libcurl-4.dll
- C:\temp\pthreadVC2.dll
- C:\temp\libcurl-4.dll
- C:\temp\cudart32_50_35.dll
- C:\rwindows\rwindows.exe
- C:\temp\cudaminer.exe
- C:\temp\minerd.exe
- C:\temp\software_000000.exe
- C:\rwindows\cgminer.exe
- C:\temp\winstart_0000000605.exe
- C:\temp\pthreadGC2.dll
- C:\temp\zlib1.dll
- ClassName: 'TZipSniffer' WindowName: 'ZipMaster Sniffer'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_WINHELP' WindowName: '(null)'