by Machine_GW
Written in Delphi, compressed with ASPack
Made in China
Released in April 2004
Server: dropped files: c:\WINNT\system32\dxinput.dll size: 22.016 bytes c:\WINNT\system32\scanregw.exe size: 39.025 bytes startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "SCANREGW" data: C:\WINNT\system32\scanregw.exe tested on win2000MegaSecurity