| Port No | 23006 |
| Service Name | NetTrash |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | NetTrash is a Visual Basic trojan with a lot of features. This trojan does have something new: it can take up as many megabytes of RAM on your computer as the "hacker" wants. Also note that NetTrash is open source so it can be changed |
| Reference Link | |
| Attack | It Autoloads: Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Key: USER32
Features: Beep Change computer name Change resolution Change window color settings Chat with server Click mouse Control mouse Disable/enable clipboard Display dialog File manager Get list of active windows Get screen shot Get server, network, os, drive, and system information Get windows running time Hang up internet connection Hide/show desktop and task bar Initiate/abort system shutdown Key logger Lockup system Minimize all windows Play sound Press start button Reboot, exit or logout windows Remove/close server Open browser Open/close CD-Rom Send keys Set double click time Set/restore monitor in standby mode Show message box Start program Start screen saver Toggle Caps/num/scroll lock Use x amount of RAM Fix: Remove the USER32 key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run Which can be done with regedit or any other registry editing program. Reboot the computer or close user32.exe. Delete the trojan file user32.exe in the windows system directory |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.