by Demon-Child
Released in January 2007
Made in Iran
Server: dropped file: c:\WINDOWS\system32\Boy.exe size: 8,457 bytes added to registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run "(Default)" data: C:\WINDOWS\System32\Boy.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run "(Default)" data: C:\WINDOWS\System32\Boy.exe HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer "Download Directory" old data: C:\Documents and Settings\Kobayashi\Desktop new data: C:\WINDOWS\System32\drivers tested on Windows XP January 03, 2006MegaSecurity