Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'NTMinerDaemon' = '<LS_APPDATA>\NTMiner\Daemon\NTMinerDaemon.exe'
- [<HKLM>\System\CurrentControlSet\Services\IKEEXT] 'Start' = '00000002'
- [<HKLM>\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] 'EnableFirewall' = '00000000'
- [<HKLM>\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'EnableFirewall' = '00000000'
- <LS_APPDATA>\ntminer\logs\root2.5.0.0.log
- <LS_APPDATA>\ntminer\temp\ntmineroverclock.exe
- <LS_APPDATA>\ntminer\local.litedb
- <LS_APPDATA>\ntminer\daemon\ntminerdaemon.exe
- DNS ASK mi#######.#ss-cn-beijing.aliyuncs.com
- DNS ASK se####.ntminer.com
- '<LS_APPDATA>\ntminer\daemon\ntminerdaemon.exe'
- '<SYSTEM32>\wisptis.exe' /ManualLaunch;' (со скрытым окном)
- '<SYSTEM32>\wisptis.exe' /ManualLaunch;
- '<SYSTEM32>\cmd.exe' /C "<LS_APPDATA>\NTMiner\Daemon\NTMinerDaemon.exe"
- '<SYSTEM32>\cmd.exe' /C netsh advfirewall set allprofiles state off
- '<SYSTEM32>\netsh.exe' advfirewall set allprofiles state off
- '<SYSTEM32>\cmd.exe' /C powercfg -h off
- '<SYSTEM32>\powercfg.exe' -h off
- '<SYSTEM32>\cmd.exe' /C bcdedit /set {current} bootstatuspolicy ignoreallfailures
- '<SYSTEM32>\bcdedit.exe' /set {current} bootstatuspolicy ignoreallfailures