Technical Information
- <SYSTEM32>\regsvr32.exe /s %WINDIR%\fkdl9665.dll
- <SYSTEM32>\regsvr32.exe /s <SYSTEM32>\fkdl2142.ocx
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\pimen[1].jpg
- %WINDIR%\fkdl9665.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\newaires[1].htm
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\gsi[1].jpg
- <SYSTEM32>\fkdl2142.ocx
- %TEMP%\~DF9C5C.tmp
- 'mi####e.cwsurf.de':80
- 'da####2.hdfree.in':80
- 'localhost':1037
- da####2.hdfree.in/kdau/pimen.jpg
- da####2.hdfree.in/kdau/gsi.jpg
- mi####e.cwsurf.de/newaires.php
- DNS ASK mi####e.cwsurf.de
- DNS ASK da####2.hdfree.in
- '<Private IP address>':1038