Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Port Drive Routing Health Machine' = 'C:\htdcadtrz\mxdmrwxqhv.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Key Health Quality IP] 'ImagePath' = 'C:\htdcadtrz\mxdmrwxqhv.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Key Health Quality IP] 'Start' = '00000002'
- 'C:\htdcadtrz\owmlbgbrset.exe' "c:\htdcadtrz\mxdmrwxqhv.exe"
- 'C:\htdcadtrz\mxdmrwxqhv.exe'
- 'C:\htdcadtrz\ihtx3eilklihqicu.exe'
- C:\htdcadtrz\mxdmrwxqhv.exe
- C:\htdcadtrz\owmlbgbrset.exe
- C:\htdcadtrz\agvpz6c
- %WINDIR%\htdcadtrz\belruqfenm
- C:\htdcadtrz\belruqfenm
- C:\htdcadtrz\ihtx3eilklihqicu.exe
- C:\htdcadtrz\owmlbgbrset.exe
- C:\htdcadtrz\mxdmrwxqhv.exe
- C:\htdcadtrz\ihtx3eilklihqicu.exe
- %WINDIR%\htdcadtrz\belruqfenm
- %WINDIR%\htdcadtrz\belruqfenm
- '61.##6.2.217':25840
- '12#.#60.112.138':27440
- '11#.#18.187.28':42065
- '2.##.19.50':35833
- '41.##2.44.224':45860
- '11#.#6.137.96':49919
- '95.##.58.101':23245
- '79.##7.196.121':45688
- '17#.37.2.43':44303
- '62.##1.108.194':20068
- '77.##7.13.68':30018
- '77.##8.205.139':22969
- ClassName: 'Shell_TrayWnd' WindowName: ''