2. ABOUT NETBUS
• NetBus or Netbus is a Software Program for
Remotely Controlling a Microsoft Windows
Computer system over a Network.
• Its Potential of Being Used as a Backdoor.
• The Netbus was Also Known as one of the
Famous trojan.
• Netbus may also be known as Patch.exe or
SysEdit.exe.
3. ABOUT NETBUS
• Delphi is both an Object Oriented
Programming Language (OOP) and an
Integrated Development Environment (IDE).
• NetBus was written in Delphi by Carl-
Fredrik Neikter a Swedish programmer.
• Delphi is a Programming Language.
4. NETBUS WAS DESIGNED TO WORK
ON
• Windows 95
• Windows 98
• Windows ME
• Windows NT 4.0
• Netbus Client (v1.70) Works Fine in
Windows 2000 and in Windows XP as
Well.
5. NETBUS IS CAPABLE OF :
• Open/Close CD-ROM.
• Swap Mouse Buttons.
• Screen Captures
• Control Mouse.
• Show Different Kind's of Messages.
• Shut Down Windows.
• Download/Upload/Delete files
ect….
6.
7. CASE -:
In 1999, Attackers Used Netbus to Plant Child
Pornography on a Law Scholar’s Work Computer at
Sweden University.
Around 3,500 Images were Downloaded to the
Victim’s Computer, Which was later Discovered by
the System Administrators.
As a Result, the Law Scholar Lost his Research
Position at the Institution, and had to Flee from the
Country. In 2004, he was Exonerated When the
Court Found Out That Netbus was Used to Carry
8. HOW TO IDENTIFIED AND
REMOVE
• The Netbus Infection can be Identified
by Verifying the Windows Registry.
• If Infected, Netbus can be Removed
Either by Using Malware or Spyware
Eemoval Applications, or by Manually
Deleting Its Entries in Windows
Registry.