Technical Information
- <SYSTEM32>\regsvr32.exe actskn43.ocx /s
- <LS_APPDATA>\Microsoft\Windows Media\9.0\WMSDKNSD.XML
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\bjwelcome[1].wma
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\bjwelcome[1].wma
- <SYSTEM32>\actskn43.ocx
- <SYSTEM32>\mswinsck.ocx
- <SYSTEM32>\MSINET.OCX
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\bjwelcome[1].wma
- <LS_APPDATA>\Microsoft\Windows Media\9.0\WMSDKNSD.XML
- <LS_APPDATA>\Microsoft\Windows Media\9.0\WMSDKNS.XML.bak
- 'localhost':1038
- 'www.ma##z.com':80
- 'wp#d':80
- www.ma##z.com/Upload/bjwelcome.wma
- wp#d/wpad.dat
- wp#d/wpad.dat?Ty######
- DNS ASK www.ma##z.com
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: ''