.: Spook 5.4 :.
Released 16 years, 4 months ago. Jun 2005By sforever
- From: China
- Coded by: sforever
- Version: Spook 5.4
- Released date: Jun 2005, 16 years, 4 months ago.
- Coded in: Delphi
- Family: Spook
- Category: Remote Access
Server: dropped files: c:\WINNT\Help\BHY1978.CHI Size: 252,560 bytes c:\WINNT\system32\winexe.exe Size: 252,560 bytes added to registry: HKEY_CURRENT_USER\Software\Microsoft\Multimedia\DrawDib HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\MediaResources\msvideo HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SocketService HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\MediaResources\msvideo HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SocketService\Security tested on Windows 2000 June 30, 2005
URL's and mails were automatically redacted (filtered) for reader's safety. However the filter is not perfect and can't find all harmful elements. If you find something dangerous including file link, website, mail address, profanity... contact me immediately at email@example.com, thank you in advance.