Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'HDRenderer' = '"%APPDATA%\HDRenderer\HDRenderer.exe" '
- %APPDATA%\HDRenderer\HDRenderer32.exe -a 5 -o http://pr#####-bit.net:8332 -u mixuo.14 -p 7893
- %APPDATA%\HDRenderer\HDRenderer.exe
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- %APPDATA%\HDRenderer\hdra.bc
- %TEMP%\nsn3.tmp\Patc.dll
- %ALLUSERSPROFILE%\Application Data\TEMP:44504F07
- %TEMP%\nsn3.tmp\System.dll
- %TEMP%\nsn3.tmp\hdra.bc.kc
- %TEMP%\nsn3.tmp\Processes.dll
- %TEMP%\nsi2.tmp
- %APPDATA%\HDRenderer\hdra
- %APPDATA%\HDRenderer\HDRenderer32.exe
- %TEMP%\nsn3.tmp\Processes.dll
- %TEMP%\nsn3.tmp\System.dll
- %TEMP%\nsn3.tmp\Patc.dll
- %APPDATA%\HDRenderer\hdra
- %TEMP%\nsn3.tmp\hdra.bc.kc
- 'pr###te-bit.net':8332
- DNS ASK pr###te-bit.net
- ClassName: 'Indicator' WindowName: ''