by Near Mohists
Written in Visual Basic
Released in April 2003
Made in China
Server: dropped file: c:\WINDOWS\SYSTEM\SYSRTAY.EXE size: 43.520 bytes port: 54008 TCP startup: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "Systemty" HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices "Systemty" added: c:\WINDOWS\APPLOG\SYSRTAY.LGC platform: 9x/me/2000MegaSecurity