Description: Grab pass: Edialer, The Bat!, Outlook Express, Internet Explorer, ICQ[2003 & Lite], FAR, Windows Commander, Dial-Up [98 & NT].
List of installed program
RING0
FW bypass throught hide IExplorer window
Intercept passwords: mail, FTP, auth [base64] web
Formgrabber
Selfdelete (if need)
WORM
3 upgrade link
Search file by mask && upload to web-server
File list (Check if you may need any files):
Kyrgyz Trojan v5.0
..................\Del_KT
..................\......\Del_KT.cpp
..................\......\Del_KT.dsp
..................\......\Del_KT.dsw
..................\......\Del_KT.opt
..................\......\StdAfx.cpp
..................\......\StdAfx.h
..................\Hidden_Proc_Dll
..................\...............\Hidden_Proc_Dll.cpp
..................\...............\Hidden_Proc_Dll.dsp
..................\...............\Hidden_Proc_Dll.dsw
..................\...............\Hidden_Proc_Dll.opt
..................\...............\RING0.CPP
..................\...............\RING0.H
..................\...............\StdAfx.cpp
..................\...............\StdAfx.h
..................\ICQDercrypt
..................\...........\BULD.BAT
..................\...........\Common
..................\...........\......\Data.inc
..................\...........\......\Decrypt.asm
..................\...........\ICQ2003Decrypt.asm
..................\...........\ICQ2003Decrypt.def
..................\InjectDLL
..................\.........\DETOURS.CPP
..................\.........\DETOURS.H
..................\.........\DETOURS.LIB
..................\.........\Inject.rc
..................\.........\InjectDLL.cpp
..................\.........\InjectDLL.dsp
..................\.........\InjectDLL.dsw
..................\.........\InjectDLL.opt
..................\.........\RESOURCE.H
..................\.........\StdAfx.cpp
..................\.........\StdAfx.h
..................\KTDLL
..................\.....\KTDLL.CPP
..................\.....\KTDLL.DSP
..................\.....\KTDLL.DSW
..................\.....\KTDLL.OPT
..................\.....\KTDLL.RC
..................\.....\RESOURCE.H
..................\.....\StdAfx.cpp
..................\.....\StdAfx.h
..................\MailGrab
..................\........\Diesel.cpp
..................\........\Yandex.cpp
..................\Newkt
..................\.....\HDFKT.DLL
..................\.....\IEHook
..................\.....\......\IEHOOK.CPP
..................\.....\......\IEHOOK.H
..................\.....\Iphlpapi
..................\.....\........\IPExport.h
..................\.....\........\IPHlpApi.h
..................\.....\........\IPTypes.h
..................\.....\Lib
..................\.....\...\IPHlpApi.lib
..................\.....\NewKT.cpp
..................\.....\NewKT.dsp
..................\.....\NewKT.dsw
..................\.....\NewKT.opt
..................\.....\New_KT.rc
..................\.....\OBJ
..................\.....\...\ICQ2003Decrypt.obj
..................\.....\...\SendByIE.obj
..................\.....\PHIDE.DLL
..................\.....\RDSHOST.DLL
..................\.....\RESOURCE.H
..................\.....\StdAfx.cpp
..................\.....\StdAfx.h
..................\Packers
..................\.......\FSG.EXE
..................\.......\UPX.EXE
..................\ReadMe.txt
..................\Script
..................\......\GBOOK.CGI
..................\......\GBOOK2.CGI
..................\......\GBOOK3.CGI
..................\......\GBOOK4.CGI
..................\......\M.PHP
..................\SendByIE
..................\........\BUILD.BAT
..................\........\SendByIE.asm
..................\........\_SendByIE_.asm