Pathetic attempt at phishing people into downloading malware

loaded up my AVRed server and already at the start it was gettind detected. In the VM i saw it editing the registry, kinda weird for something meant to help people, no? also why in the f are you using SetWindowsHookEx, what are you trying to do?