Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Generic Host Process' = '<SYSTEM32>\scvhost.exe'
- <SYSTEM32>\Server.exe
- %PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://
- <SYSTEM32>\wsock32.sys
- <SYSTEM32>\scvhost.exe
- <SYSTEM32>\ckl009.dat
- <SYSTEM32>\CoXAKoQf4o.ini
- %TEMP%\ginstall.dll
- <SYSTEM32>\Server.exe
- %WINDIR%\system\lanzamientofaltas.swf
- <SYSTEM32>\scvhost.exe
- <SYSTEM32>\CoXAKoQf4o.ini
- %TEMP%\ginstall.dll
- 'mc###.no-ip.info':314
- 'localhost':1035
- DNS ASK mc###.no-ip.info
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '#32770' WindowName: 'Windows Task Manager'
- ClassName: 'ThunderRT6FormDC' WindowName: 'nkoppl223a'
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''