| Port No | 49000 |
| Service Name | Fraggle Rock |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Fraggle Rock is a Visual Basic 6 trojan. This trojan does have a edit server program, which allows an ICQ UIN to be notified when the server comes online. |
| Reference Link | Fraggle Rock Trojan |
| Attack | It autoloads the Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices Key: Fraggle It does the following : Call telephone number Caps lock on/off Control mouse File manager Get information Hide/show task bar Key logger Nums lock on/off Open/close CD-Rom Play cd player Printer Reboot or shutdown Windows Scrolls lock on/off Set clipboard Removal : 1.Remove the Fraggle key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices Which can be done with regedit or any other registry editing program. 2. Reboot the computer or close Explorer32.exe. 3. Delete the trojan file Explorer32.exe in the windows system directory. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.