Byshell 1.09 Build 20071002
(Backdoor.Win32.Visel.pz)
(Backdoor.Win32.Visel.qg for Server)

by ?

Released in October 2007

Made in China

more versions 



Server
Dropped Files:
c:\WINDOWS\system32\NTboot.exe      Size: 206,552 bytes 
c:\WINDOWS\system32\NTboot.log      Size: 813 bytes 
c:\WINDOWS\system32\NTboot32.dll    Size: 135,168 bytes  


Added to Registry:
HKEY_CLASSES_ROOT\CLSID\{bfbc1a78-cddd-1672-876e-324d6c4686e9}\InProcServer32 "(Default)"
Data: NTboot32.dll 	



Tested on Windows XP
August 14, 2008
MegaSecurity