by Neishei131
Written in Delphi
Released in October 2008
Made in China/font>
Server: Dropped Files: c:\WINDOWS\system32\U8D0GRWuXV.ini Size: 3 bytes c:\WINDOWS\system32\drivers\etc\CSe5KIR6.dll Size: 136,510 bytes Added to Registry: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SRAT_Service "ImagePath" Data: %SystemRoot%\System32\svchost.exe -k netsvcs HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SRAT_Service\Parameters "ServiceDLL" Data: %SystemRoot%\system32\drivers\etc\CSe5KIR6.dll HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SRAT_Service "ImagePath" Data: %SystemRoot%\System32\svchost.exe -k netsvcs HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SRAT_Service\Parameters "ServiceDLL" Data: %SystemRoot%\system32\drivers\etc\CSe5KIR6.dll Tested on Windows XP February 28, 2009MegaSecurity