| Name: | Cafeini |
| Aliases: | |
| Ports: | 80, 51966 (port can be changed) |
| Files: | Cafeini_polish.zip - 121,628 bytes Cafeini0.8.zip - 250,361 bytes Cafeini0.9.zip - 281,752 bytes Cafein10.zip - 377,898 bytes Cafeini1.1.zip - 395,170 bytes Cafeini.exe - 122,880 bytes Cafeini.exe - 142,848 bytes Cafeclnt.exe - 132,608 bytes Cafeclnt.exe - 143,872 bytes Cafeiniclient.exe - 158,720 bytes Cafeiniclient.exe - 163,840 bytes Cafeiniconfig.exe - 72,192 bytes Cafeiniserver.exe - 153,600 bytes Cafeiniserver.exe - 165,888 bytes Cafe08pl.exe - 123,904 bytes Rundll32.exe - Bygotit.exe - Hemany.exe - Mutihaka.exe - Pazymi.exe - Wilokyl.exe - |
| Created: | Mar 2000 |
| Requires: | |
| Actions: | Remote Access / Hacking tool |
| It kills 21 antivirus and 9 anti trojan programs in memory and also four dedicated antitrojan softwares. The trojan can redirect ports and connect to several servers at the same time. It can also be used as a port scanner. Cafeini can also take another programīs place in the Registry. The server will automatically be updated using HTTP. | |
| Versions: | 0.8, 0.9, 1.0, 1.1, |
| Registers: | HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\ HKEY_LOCAL_ MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOne\ HKEY_LOCAL_MACHINE\Sof tware\Microsoft\Windows\CurrentVersion\RunServices\ HKEY_LOCAL_MACHINE\Software\ Microsoft\Windows\CurrentVersion\RunServicesOnce\ HKEY_CURRENT_USER\Software\Mic rosoft\Windows\CurrentVersion\Run\ HKEY_CURRENT_USER\Software\Microsoft\Windows\ CurrentVersion\RunOnce\ HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVers ion\RunServices\ HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ServicesOnce\ |
| Notes: | Works on Windows 95, 98, NT and 2000. Telnet can also be used asclient. |
| Country: | written in Poland |
| Program: | Written in Visual C++. |