Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\DriverHost.lnk
- C:\programdata\system86\DriverHost.exe
- %TEMP%\$inst\temp_0.tmp
- C:\programdata\system86\Kilagram.vbs
- C:\programdata\system86\SystemKernell.exe
- C:\programdata\system86\logga.exe
- C:\programdata\1.exe
- C:\programdata\1.bat
- C:\programdata\1.vbs
- %TEMP%\$inst\2.tmp
- C:\programdata\SETUP.exe
- C:\programdata\system86\logga.exe
- C:\programdata\system86\SystemKernell.exe
- C:\programdata\system86\DriverHost.exe
- C:\programdata\system86\Kilagram.vbs
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- 'xm#.###l.minergate.com':45560
- DNS ASK xm#.###l.minergate.com
- ClassName: 'EDIT' WindowName: ''
- 'C:\programdata\system86\DriverHost.exe'
- '<SYSTEM32>\wscript.exe' "C:\ProgramData\system86\Kilagram.vbs"
- 'C:\programdata\system86\SystemKernell.exe' -o stratum+tcp://xmr.pool.minergate.com:45560 -O vasbabi@mail.ru:x --max-cpu-usage=50 -k -r1 -R1 --donate-level=1 --print-time=10
- '<SYSTEM32>\wscript.exe' "c:\programdata\1.vbs"
- 'C:\programdata\1.exe' -p123 -dC:\programdata\
- 'C:\programdata\SETUP.exe'
- '<SYSTEM32>\cmd.exe' /c ""C:\programdata\1.bat" "