Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Default' = '%APPDATA%\XMJDV\ltc.exe'
- '%APPDATA%\XMJDV\minerd.exe' --url http://eu#####.#ive-me-ltc.com:8080 --user Logan7020.1 --pass x
- '%APPDATA%\XMJDV\minerd.exe' (загружен из сети Интернет)
- %APPDATA%\XMJDV\pthreadGC2.dll
- %APPDATA%\XMJDV\libcurl-4.dll
- %APPDATA%\XMJDV\minerd.exe
- '18#.#2.207.36':80
- 'wp#d':80
- 18#.#2.207.36/libcurl-4.dll
- 18#.#2.207.36/pthreadGC2.dll
- wp#d/wpad.dat
- 18#.#2.207.36/minerd.exe
- DNS ASK wp#d