Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Adapter] 'Start' = '00000002'
- '%WINDIR%\system\svchost.exe' runsrv /name:"Adapter" /prinum:"32" /cmdline:"%WINDIR%\system\lsass.exe -conf=%WINDIR%\system\data\primecoin.conf"
- '%WINDIR%\system\svchost.exe' add /cmdline:"%WINDIR%\system\lsass.exe -conf=%WINDIR%\system\data\primecoin.conf" /name:"Adapter"
- '<SYSTEM32>\attrib.exe' +s +h %WINDIR%\system\lsass.exe
- '<SYSTEM32>\attrib.exe' +s +h %WINDIR%\system\svchost.exe
- '<SYSTEM32>\sc.exe' start Adapter
- '<SYSTEM32>\cmd.exe' /c ""%WINDIR%\system\1.bat" "
- '%WINDIR%\regedit.exe' /s server.reg
- %WINDIR%\system\msvcp71.dll
- %WINDIR%\system\lsass.exe
- %WINDIR%\system\msvcr71.dll
- %WINDIR%\system\svchost.exe
- %WINDIR%\system\server.reg
- %WINDIR%\system\data\wallet.dat
- %WINDIR%\system\data\primecoin.conf
- %WINDIR%\system\1.bat
- %WINDIR%\system\libgmp-10.dll
- %WINDIR%\system\COPYING
- %WINDIR%\system\svchost.exe
- %WINDIR%\system\lsass.exe
- %WINDIR%\system\server.reg
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'