| Port No | 20000 |
| Service Name | Millenium |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Millenium is a trojan which is very similar to BackOrifice, however has a much nicer GUI even compared to NetBus. One major difference is this one is alot harder to remove. |
| Reference Link | More Information |
| Attack | Name:Millenium There are two places your system will start this trojan when windows loads. The trojan itself will also reinstall itself on shutdown. Removal The best way to remove this trojan is to Restart the computer in MS DOS mode. This should place you at a C:\windows\ prompt. First type the command cd system Then type del reg66.exe. This will delete the trojan from your system, however there is still more to be done. Type exit to get back to windows. You will see two error dialogs come up, just click OK on both. First, open regedit and follow the path to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run and find the item: Millenium = "C:\windows\system\reg66.exe Right click this item and delete it. Close regedit and open windows explorer. Go to the path C:\windows\ and find the file WIN.INI. Double click WIN.INI to open it in your text editor, and at the top you will see a line that looks like: run=C:\windows\system\reg66.exe |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.