.: Netsys 7.0 :.
Released 16 years, 5 months ago. May 2005By Zhou Jian
- From: China
- Coded by: Zhou Jian
- Version: Netsys 7.0
- Released date: May 2005, 16 years, 5 months ago.
- Coded in: Delphi
- Family: Netsys
- Category: Remote Access
Server: dropped file: c:\WINNT\system32\ZRundlll.exe size: 497,261 bytes port: 4778 TCP added to registry: HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\MediaResources\msvideo HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\ZRundlll HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\MediaResources\msvideo HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ZRundlll tested on win2000 May 28, 2005
URL's and mails were automatically redacted (filtered) for reader's safety. However the filter is not perfect and can't find all harmful elements. If you find something dangerous including file link, website, mail address, profanity... contact me immediately at email@example.com, thank you in advance.