Trojan horse program that spreads via network shares.
1. Copies itself as %System%\samx.exe.
2. Adds to registry Run keys.
3. Creates a service named "FireWire Driver," which points to:
Programs allows attcker to execute any commands on the target computer.
Use antivirus (also check How To Remove section)Start Control to stop theservice and change it to disabled state.
Remove the file.
Remove from startup.