see: https://www.virustotal.com/nl/url/aeb71d2db39e8b9e3b507983cb6729afb9e1a1700d296242126309260fc35735/analysis/1407339086/ and https://www.virustotal.com/nl/file/6e4fe8cdfdcddf28057502510bbd67ac941d82465ac7a36fa955602d48e5d4f3/analysis/1407332676/ 2 IDS alerts on executable: http://urlquery.net/report.php?id=1407339220295 100/100% malicious → http://zulu.zscaler.com/submission/show/14e6d43ca0a2d48a321e6166f224b217-1407339158
read on this Multi-dropper Induc Virus is Back: http://www.welivesecurity.com/2011/09/14/the-induc-virus-is-back/ by ROBERT LIPOVSKY, this was in 2011, so it means malcode is still with us from China via PHP bugs on site.
pol