Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Live' = '%TEMP%\wini.exe'
- winhost.exe
- %TEMP%\wini.exe
- %TEMP%\winhost.exe
- http://up.###-la-toile.com/iWH4]1.exe
- DNS ASK up.###-la-toile.com
- DNS ASK lu###games.com
- '%TEMP%\wini.exe'
- '%TEMP%\winhost.exe'