| Port No | 21544 |
| Service Name | Kid Terror |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Kid Terror 1.0 is nothing more then GirlFriend 1.35 with a new client. It is in spanish we we believe. It is open source in Delphi. Other then the south park looking Icon for the client this trojan is a waste of time. |
| Reference Link | Kid Terror Trojan |
| Attack |
It autoloads the Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices Key: Windll.exe It does the following : File manager Send message Show cached passwords Removal : 1. Remove the Windll.exe key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices Which can be done with regedit or any other registry editing program. 2.Reboot the computer or close Windll.exe. 3. Delete the trojan file Windll.exe in the windows directory. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.