Technical Information
- [<HKLM>\System\CurrentControlSet\Services\mgrmount] 'ImagePath' = '<DRIVERS>\mgrmount.sys'
- 'mgrmount' <DRIVERS>\mgrmount.sys
- <DRIVERS>\mgrmount.sys
- %WINDIR%\temp\uddb357.tmp
- %WINDIR%\temp\uddb357.tmp
- 'ne##.#ggdomain.net':53
- 'ne##.#ggdomain.net':80
- DNS ASK up####.nortonantivir.us
- DNS ASK dn#.##msupports.com
- DNS ASK ne##.#ggdomain.net
- '<SYSTEM32>\svchost.exe' -k djmvkyei