Services    Trojan info    Chat    Downloads      About Us      Contact  Us     Help Forum     Support Us    Search

Cero
This isn't a very good trojan , it doesn't even work ( I didn't for me ) . It has the old icq notification thing , most trojans these days are using this , its easier for the wannabe hackers to keep track of all the people they have infected I suppose . Once the server is executed it will open up port 4653 TCP.

Removal :
Go to start , then to run and type regedit , then hit ok .
When regedit opens follow this path
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
Right click on the run folder and look for a key called cero delete this key and reboot
Delete the trojan file probably called cero.exe or server.exe it changes so you'll have to remember from the registry key

Matrix
This isn't to be confused with the subseven feature by the same name . This trojan is in some other language , some of the things I can read but Im not sure of some of it . Ive worked out how to remove it and what port it opens , it opens port 1272 TCP.

Removal :
Go to start , then to run and type regedit , then hit ok .
When regedit opens follow this path
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
Right click on the run folder and look for a key called Encrypt delete this key and reboot

When windows restarts go to start then find and look for and delete Encrypt.exe.

Freak 88 DDoS
This trojan is a smaller version of the large DDoS Unix trojans . It doesn't register itself into the victims registry and does not auto load  . It opens port 7001 tcp , so if you see that that port is open , reboot and the hacker will not have access again unless you re execute the server.exe file ( its only 14 kbs ) .