Bandook 1.35

Bandook 1.35
(Backdoor.Win32.Nuclear.cj for Client)
(Backdoor.Win32.Bandok.v)
(Backdoor.Win32.Bandok.j)
(Backdoor.Win32.Nuclear.ag)
(not-virus:BadJoke.Win32.Delf.ak)
(Trojan-PSW.Win32.Delf.vg)
(Trojan-PSW.Win32.Delf.vg)
by Princeali
Released in April 2007
more versions

Changes in 1.35
---------------
-Added Computer Name Next to username to Stop Duplication of Dirs with Same names
-Added Selection Mass Download , u Can Select the Vics u want to Download Files on them
-Fixed Crashing on Wrong Utilities Plugin 
-Fixed Crashing on Information Retreiving
-Fixed few stuffs in File manager (Dirs , file listing , Drives listing ect)
-Added TCP TUNNEL
-Double Click on The Row Copies the IP to Clipboard [Client]
-Fixed Download Folder where not being Created Sometimes
-Added Notifications Back
-Fixed Persistence bug when used different Dir than System32
-Unicode Support has been added to the Client [So Multi Languages will be available in Next version]
-Updated the PWS Components with latest versions 
-FIXED PWS Plugin Crash when Firefox Not found
-Fixed File Size Problem in all Download procedure , wich made file unreadable or screenshot unviewable on some vics
-Implemented a Threads Handler using SendMessage to Make the Client Safe Thread
-Replaced Ping Interval from MS to Seconds
-Fixed a Bug in Windows 2000 [ShellExecute] causing many crashes on VNC,VID REC,PWS ect..
-Fixed many Windows 2000 Bugs [Important]
-Added Ability to retreive IP and port Via URL
-Fixed Cam manager totaly
-Removed Popups menus from Screen and Cam manager and Moved to Options
-Added Offline IM SPY (MSN,YAHOO,AIM)
-Added NFA Plugin [MS Agent 2.0 Control]
-Added Ability to Listen on Multiple Ports in the Same Time [in The Client]
-Added FTP Server [Require Utility Plugin]
-Changed Screen Clicks Method , Enable Screen Clicks and Click Directly on the image
-Added Uninstall Service to Service Manager
-Fixed Compression Set in Cam manager
-Added Cache Reader [Require Utility Plugin]
-Added Shutdown Menu
-Added Modules Manager to the Process Manager
-Fixed Folder Mirroring
-Added Ability to Delete Multiple Files in File manager(Selection)
-Added Stats [Client]
-Added Open Windows Menu [Client]
-Added Shortcut Menu  [Client]
-Changed the GUI of the Client 
-Fixed Cam Manager , Added ability to Select from Multiple Cams 
-Choose Installation Location in Create Server


Server
Dropped Files:
c:\WINDOWS\bhookpl.dll         Size: 17,896 bytes 
c:\WINDOWS\system32\ali.exe    Size: 98,304 bytes 

Added to Registry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion "bnhide"
data: 2000|ali.exe|Bandook|1167|x| 

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Bandook"
data: C:\WINDOWS\System32\ali.exe 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{B6A807N6-42DF-4W02-93E5-B156B3FA8AL1} "StubPath"
old data: C:\WINDOWS\System32\screp.exe 
new data: C:\WINDOWS\System32\ali.exe 		
		
		
		
Tested on Windows XP
April 02, 2007
MegaSecurity