Mex (g)
(Backdoor.Win32.Max.g)


by ?


dropped file:
c:\WINDOWS\Syste1m.exe
size: 29,487 bytes 

port: 4830 TCP

startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Windows"
data: c:\windows\syste1m.exe 




tested on Windows XP
March 13, 2006
MegaSecurity