Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'svhost.exe' = 'C:\Users\Public\Windows Updates\svhost.exe'
- C:\Users\Public\Windows Updates\MSASCuiL.exe
- C:\Users\Public\Windows Updates\svhost.exe
- C:\Users\Public\Windows Updates\svhost.exe
- C:\Users\Public\Windows Updates\MSASCuiL.exe
- 'xm#.###l.minergate.com':45560
- 'go#.gl':443
- 'wp#d':80
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK xm#.###l.minergate.com
- DNS ASK go#.gl
- DNS ASK wp#d
- 'C:\Users\Public\Windows Updates\MSASCuiL.exe' --max-cpu-usage=70 --donate-level=1 -o stratum+tcp://xmr.pool.minergate.com:45560 -u cool.sirion@gmail.com