| Port No | 25982 |
| Service Name | Moonpie |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening. |
| Reference Link | More Information |
| Attack | Name:MoonPie Backdoor Moon pie 1.0 is a Trojan that opens up a backdoor program that, once installed on a system, permits unauthorized users to remotely perform a variety of operations, such as changing the registry, executing commands, starting services, listing files, and uploading or downloading files. How To Remove: 1. Remove the WinSys key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run Which can be done with regedit or any other registry editing program. 2. Reboot the computer or close winsys.exe. 3. Delete the trojan file winsys.exe in the windows system directory if it exists. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.