Техническая информация
- %WINDIR%\Tasks\CPU Grid Computing.job
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '<SYSTEM32>\dfrg\runner.exe' = '<SYSTEM32>\dfrg\runner.exe:*:Enabled:<SYSTEM32>\dfrg\runner.exe (in)'
- '<SYSTEM32>\dfrg\runner.exe' --url=stratum+tcp://afancy.su:8080 -u CPU.86269cd67cdfb81ef4753e242e928a5d -p 123
- '<SYSTEM32>\dfrg\runner.exe' --url=stratum+tcp://advantag.su:8080 -u CPU.86269cd67cdfb81ef4753e242e928a5d -p 123
- '<SYSTEM32>\dfrg\runner.exe' --url=stratum+tcp://avangar.su:8080 -u CPU.86269cd67cdfb81ef4753e242e928a5d -p 123
- '<SYSTEM32>\dfrg\task_registrar.exe' --app=cpu.exe
- '<SYSTEM32>\dfrg\runner.exe'
- <SYSTEM32>\dfrg\zlib1.dll
- <SYSTEM32>\dfrg\pthreadVC2.dll
- <SYSTEM32>\dfrg\task_registrar.exe
- <SYSTEM32>\dfrg\runner.exe
- <SYSTEM32>\dfrg\pthreadGC2.dll
- <SYSTEM32>\dfrg\libcrypto.dll
- %TEMP%\nsh2.tmp\Processes.dll
- <SYSTEM32>\dfrg\libssl.dll
- <SYSTEM32>\dfrg\libcurl-4.dll
- %TEMP%\nsh2.tmp\Processes.dll
- 'ad##ntag.su':8080
- 'af##cy.su':8080
- 'av##gar.su':8080
- DNS ASK ad##ntag.su
- DNS ASK af##cy.su
- DNS ASK av##gar.su