Technical Information
- [<HKLM>\System\CurrentControlSet\Services\D3DX9_37] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\D3DX9_37] 'ImagePath' = '"%WINDIR%\SysWOW64\D3DX9_37\D3DX9_37.exe"'
- from <Full path to file> to %WINDIR%\syswow64\d3dx9_37\d3dx9_37.exe
- '19#.#.119.137':80
- http://19#.#.119.137/bJnrmwclAFQKGgN/lMHqAwln4cu9xy/