Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Service4.exe' = '%CommonProgramFiles%\sys\Service4.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Service4] 'ImagePath' = '"%CommonProgramFiles%\sys\Service4.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\Service4] 'Start' = '00000002'
- %CommonProgramFiles%\sys\1513752801_log.txt
- %CommonProgramFiles%\sys\SystemRunDll3.exe
- %CommonProgramFiles%\sys\Service4.exe
- %CommonProgramFiles%\sys\Service4.exe в %CommonProgramFiles%\sys\Service4.exe
- 'po##.#inexmr.com':4444
- DNS ASK po##.#inexmr.com
- '%CommonProgramFiles%\sys\SystemRunDll3.exe' -o stratum+tcp://pool.minexmr.com:4444,5555 -u 46P25kMYo1uQS6Xgx96xhuB13MGbt2btM76mkMVa1QVF2GeP5gsEUDebue5b6avAdzPF1D1LCYUG9YPkEBhsuJ5tLsVp1T4.497C412D0A_7 -p x
- '%CommonProgramFiles%\sys\Service4.exe'
- '<SYSTEM32>\cmd.exe' /c "%CommonProgramFiles%\sys\SystemRunDll3.exe" -o stratum+tcp://pool.minexmr.com:4444,5555 -u 46P25kMYo1uQS6Xgx96xhuB13MGbt2btM76mkMVa1QVF2GeP5gsEUDebue5b6avAdzPF1D1LCYUG9YPkEBhsuJ5tLsVp1T4.49...
- '<SYSTEM32>\sc.exe' start "Service4"
- '<SYSTEM32>\cmd.exe' /c sc start "Service4"