Техническая информация
- [HKLM\System\CurrentControlSet\Services\MiningeService] 'Start' = '00000002'
- [HKLM\System\CurrentControlSet\Services\MiningeService] 'ImagePath' = '%WINDIR%\Client.exe'
- 'MiningeService' %WINDIR%\Client.exe
- '%WINDIR%\syswow64\net.exe' stop MiningeService
- %TEMP%\nsx4ebc.tmp\nsprocess.dll
- %TEMP%\nsx4ebc.tmp\nsexec.dll
- %WINDIR%\parameters.ini
- %WINDIR%\proceslist.txt
- %WINDIR%\client.exe
- '62.##.74.245':17890
- '%WINDIR%\client.exe'
- '%WINDIR%\syswow64\cmd.exe' /C net stop MiningeService (со скрытым окном)
- '%WINDIR%\syswow64\net1.exe' stop MiningeService
- '%WINDIR%\syswow64\cmd.exe' /C Sc delete MiningeService (со скрытым окном)
- '%WINDIR%\syswow64\sc.exe' delete MiningeService
- '%WINDIR%\syswow64\cmd.exe' /C Sc create MiningeService binpath= %WINDIR%\Client.exe start= auto DisplayName= MiningeService (со скрытым окном)
- '%WINDIR%\syswow64\sc.exe' create MiningeService binpath= %WINDIR%\Client.exe start= auto DisplayName= MiningeService
- '%WINDIR%\syswow64\cmd.exe' /C sc description MiningeService ServiceManagerForMiner (со скрытым окном)
- '%WINDIR%\syswow64\sc.exe' description MiningeService ServiceManagerForMiner
- '%WINDIR%\syswow64\cmd.exe' /C net start MiningeService (со скрытым окном)
- '%WINDIR%\syswow64\net.exe' start MiningeService
- '%WINDIR%\syswow64\net1.exe' start MiningeService