Home | About Us | Contact Us | Threats to your Security on the Internet | Products | Support | Online Store

RCT's & RAT's
What are they?
How do I detect them?
How many are there?
What ports do they use?

How do I Remove?
Acid Shivers
Acid Shivers (modified)
Back Orifice
Baron Knight
Big Gluck
Blade Runner
Deep Back Orifice
Delta Source
Doly Trojan
Deep Throat
Deep Throat v2
Executer v1
Executer v2
Hack 'a' Tack
Master's Paradise
NetBus 2 Pro
Sockets 'de Troie
SubSeven (Sub7)
Whack-a-mole (NetBus)

Additional Resources
Latest News
Recommended Books
Recommended Links
Recommended Software

Deep Throat

Deep Throat currently affects Windows 95/98 PC's. It's rumored that the author is working on a Windows NT version.

The "server" portion (typically named "systempatch.exe") is approximately 255kb in size.

UDP Ports 2140 and 3150 are used to establish its connection between the "client" and "server".

Once installed, it is rerun every time the computer is started by means of an entry under the "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" branch in the Registry.

Who is Responsible?

Deep Throat was written by an individual known as ^Cold^ KiLler, CEO of DarkLIGHT Corp. His reasoning behind creating Deep Throat appears to be the same reasoning as others have offered. It was done for fun...

Taken from it's readme.txt file, below are some of the functions that Deep Throat offers:
- Ejecting And Closing The CD-ROM Drive - Ummmmmmmmm it unscrews the CD-ROM and Ejects it across the room, Honist
- Msg Box - Sends a Msg Box To The Host
- Hide\Show Startbar - Really Funny When Used On PPL Who Know Nothing)
- FTP Server - Starts a FTP Server (On Port 21) Which Allows you too upload/download load files from the host (FTP CLIENT NEEDED)
- Capture Screen - Captures the screen to a Jpeg around 80Kb and sends it to you. When it is fully Downloaded RemoteControl displays the JPG with your computers JPG image viewer probbally Internet Explorer Or Netscape
- Send To URL - Sends Host to A Url Of Your Choice
- Turn Monitor On/Off - This sends the hosts monitor to Powersave mode and it can only be turned back on by you!!
- Steal Passwords - _*This Is not inculeded Yet As I Can't Fiqure Out How The F*** to Do it!!!!*_ Mail Me If You Know How!
- Spawn Prog - (I Sugest using this along with the FTP server) Runs a Program
- Spawn Prog Invis - Spawns a program invisibly
- Reboot - (I inculed this incase it is needed but Please use it wisely Don't be a Lamer!!!!)
- Scanner - This is to scan for Hosts with DT server running
- Ping Host - Sends a packet to see in host is Running the Server
- Host System info

To use the FTP server you will need a FTP Client Like Cute FTP or WS_FTP, This allows you to Upload and download files from the server (Any Client Should Work)

Provided below, is a picture of what the "client" portion of the software looks like. It's what the remote user would use to control your system. What could be easier than "pointing and clicking" your way through another users PC?

Deep Throat client screenshot

How to Remove

Several steps involve working within the Windows 95/98 registry. And although the steps are easy, I cannot be held responsible if a mistake is made. Please use caution.

Step 1.
type REGEDIT and hit ENTER

Step 2.
In the left window, click the "+" (plus sign) to the left of the following:

Step 3.
In the right window, look for a registry key with a name value of "systemDLL32" and a data value of "systempatch.exe". This is the registry key that provides the ability to load the server portion whenever the PC is started.

Note: Look at the path specified within the Data value. Write down the directory where the "systempatch.exe" file is being loaded from.

Step 4.
In the right window, highlight the registry key that loads the file and press the DELETE key. Answer YES to delete the entry.

Step 5.
Exit the Registry

Step 6.
Click START | SHUTDOWN. Choose "Restart in MS-DOS mode" and click OK.

Step 7.
After the computer has restarted, change to the directory previously written down (e.g. CD WINDOWS\SYSTEM) and delete the "systempatch.exe" file (e.g. DEL system~

Step 8.
Press CTRL-ALT-DEL and allow Windows to restart.

Congratulations, Deep Throat has now been removed from your system.

While Commodon Communications does not participate in or condone the activities of hacking. We recognize the need to educate persons who express an interest so they can better identify the activities associated and to better protect themselves and/or their organization. If you're interested in purchasing software for the purpose of learning the subject of hacking and Internet Security click here to visit our online store.

    © Copyright Commodon Communications. All rights reserved.