by Tiger Liu
aka NetSpy
Written in Microsoft Visual C++
Released in December 1999
Made in China
Server: dropped file: c:\WINNT\system32\netspy.exe size: 135.168 bytes port: 7306 TCP startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "netspy" data: netspy.exe tested on Windows 2000MegaSecurity