by FeNnA
Written in Delphi
Released in July 2002
Client: size: 195 KB added & run: c:\WINDOWS\TEMP\file1.exe c:\WINDOWS\TEMP\file2.exe Server: C:\WINDOWS\SYSTEM\Systemdll.exe c:\WINDOWS\Start Menu\Programs\StartUp\update.exe size: 206 KB port: 666, 1552 TCP startup: HKCU\Software\Microsoft\Windows\CurrentVersion\Run "Systemdll" HKCU\Software\Mirabilis\ICQ\Agent\Apps\ "Path" HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Systemdll" HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices "Systemdll" c:\WINDOWS\Start Menu\Programs\StartUp Added: c:\WINDOWS\TEMP\file1.exe c:\WINDOWS\TEMP\file2.exeMegaSecurity