by sNiper109
Written in Visual Basic
Released in September 2006
Server: dropped files: c:\WINDOWS\mswinsck.ocx Size: 108,336 bytes c:\WINDOWS\scvhost.exe Size: 360,239 bytes changed file: c:\WINDOWS\system32\drivers\etc\hosts startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Windows Update" data: C:\WINDOWS\scvhost.exe HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RUNSERVICES "Windows Update" data: C:\WINDOWS\scvhost.exe tested on Windows XP September 15, 2006MegaSecurity