| Port No | 27160 |
| Service Name | MoonPie |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Backdoor Moon pie 1.0 is a Trojan that opens up a backdoor program that, once installed on a system, permits unauthorized users to remotely perform a variety of operations, such as changing the registry, executing commands, starting services, listing files, and uploading or downloading files. |
| Reference Link | More Information |
| Attack | Name:MoonPie MoonPie 1.3 is a german trojan. This version now has a edit server program. This edit server program allows the "hacker" to be notified via email when the server comes online. How To Remove: 1. Remove the WinSys key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run Which can be done with regedit or any other registry editing program. 2. Reboot the computer or close winsys.exe. 3. Delete the trojan file winsys.exe in the windows system directory if it exists. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.