| Port No | 30103 |
| Service Name | NetSphere |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Works on Windows 95, 98 and NT, together with ICQ. Version 1.33137 is to be the final release of this trojan. Added to the most common features are Kill CPU, add to ICQ , see the open ports on target, IP scan, view all hidden windows processes, etc. |
| Reference Link | NetSphere Trojan |
| Attack | It autoloads the Registry: KEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\ HCU\Software\Microsoft\Windows\CurrentVersion\Run\ HU\ [All individual users on the PC]\Software\Microsoft\Windows\CurrentVersion\Run\ It does the following : 1. Remote Access. 2. Keylogger. 3. ICQ trojan |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.