Technical Information
- <Full path to virus>
- <Full path to virus> (downloaded from the Internet)
- <Full path to virus>
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\Canlu_Downloader[1].exe
- from <Full path to virus> to <Current directory>\<Virus name>_old.exe
- 'ca#####ft.dyndns.org':80
- ca#####ft.dyndns.org/Canlu_Downloader.exe
- DNS ASK ca#####ft.dyndns.org
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''