by ?
Original name unknown
Written in Delphi
Released in April 2002
size: 428.544 bytes port: 6711, 20000 TCP startup: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "SystemUpdate" Data: C:\WINDOWS\system\sysup.exe registry added: HKEY_CURRENT_USER\RemoteAccess\addresses HKEY_LOCAL_MACHINE\Software\Microsoft\Delme HKEY_LOCAL_MACHINE\Software\Microsoft\SysInfo files added: c:\Bootlog.sys c:\system.ini c:\winupt.dat c:\WINDOWS\Kodakl.sys remark: does not restart, while "C:\WINDOWS\system\sysup.exe" is not createdMegaSecurity