Technical Information
- %WINDIR%\<Virus name>.exe ===<Full path to virus>
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\dldr[1].txt
- C:\RegTemp.txt
- %WINDIR%\<Virus name>.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\dldr[1].txt
- C:\RegTemp.txt
- 'ji#####an.us7.hap02.com':80
- 'localhost':1037
- ji#####an.us7.hap02.com/dldr.txt
- DNS ASK ji#####an.us7.hap02.com
- '<Private IP address>':1038