.: Netsys 7.2 :.
Released 16 years, 3 months ago. Aug 2005By Zhou Jian
- From: China
- Coded by: Zhou Jian
- Version: Netsys 7.2
- Released date: Aug 2005, 16 years, 3 months ago.
- Coded in: Delphi
- Family: Netsys
- Category: Remote Access
Server: dropped file: c:\WINNT\system32\ZRundlll.exe size: 497,261 bytes port: 4778 TCP added to registry: HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\MediaResources\msvideo HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\ZRundlll HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\MediaResources\msvideo HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ZRundlll tested on win2000 August 27, 2005
URL's and mails were automatically redacted (filtered) for reader's safety. However the filter is not perfect and can't find all harmful elements. If you find something dangerous including file link, website, mail address, profanity... contact me immediately at firstname.lastname@example.org, thank you in advance.