by SiCmaggOt
Written in Delphi
Released in february 2003
Made in Sweden
Server: c:\WINDOWS\SYSTEM\EXPLORER.EXE size: 596.992 bytes port: 31337 TCP startup: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "EXPLORER" Added: folder: c:\WINDOWS\sys32 with 227 different named files of 596.992 bytes registry: HKEY_CURRENT_USER\Software\Kazaa\LocalContent "dir0" Type: REG_SZ Data: 012345:C:\Windows\sys32 HKEY_CURRENT_USER\Software\Kazaa\LocalContent "dir1" Type: REG_SZ Data: 012345:C:\Windows\sys32 HKEY_CURRENT_USER\Software\Kazaa\LocalContent "dir2" Type: REG_SZ Data: 012345:C:\Windows\sys32 HKEY_CURRENT_USER\Software\Kazaa\LocalContent "dir3" Type: REG_SZ Data: 012345:C:\Windows\sys32 HKEY_CURRENT_USER\Software\Kazaa\LocalContent "dir4" Type: REG_SZ Data: 012345:C:\Windows\sys32 HKEY_CURRENT_USER\Software\Kazaa\LocalContent "dir5" Type: REG_SZ Data: 012345:C:\Windows\sys32 HKEY_CURRENT_USER\Software\Kazaa\LocalContent "DisableSharing" Type: REG_SZ Data: 0 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main "RegisteredOrganization" Type: REG_SZ Data: http://www.crash.comMegaSecurity