by ?
Compressed with UPX
Backdoor.Apdoor.c: dropped files: c:\WINNT\system32\zguxswi.dll size: 69.632 bytes c:\WINNT\system32\zguxswi.exe size: 28.160 bytes startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "zguxswi" data: "C:\WINNT\system32\zguxswi.exe" tested on Windows 2000MegaSecurity