| Port No | 33577 |
| Service Name | Psychward |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Psychward version small 02 is the same as the first small version except that his version is 1.5K smaller, can view/kill programs and does not run on Windows 9x. When we tested it on Windows 95 it gave an error. |
| Reference Link | Psychward |
| Attack | Autloads: Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ Key: VxdCore Features: Server can be pre configured (ICQ) List/Kill processes Upload file Remove server Get windows directory Change directory View directory Run file Fix: Remove the VxdCore key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run Which can be done with regedit or any other registry editing program Reboot the computer or close the trojan file listed in the registry. Delete the trojan file listed in the registry. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.