Killer 1.0

· Overview ·
· Origins ·
· Operation ·
· Detection and Removal ·
· Research ·

Overview

Vendor Notes:

 From the doc: 'Killer will kill over 200+ Anti-virus/Firewall Applications running. Included in the 'kill list' are setup files for some of these AV/Firewall programs. Nice addition, eh? ;->. Killer will then set it's attributes as 'Hidden' and install itself to a folder commonly used by Windows. Finally, it will save itself to the registry, so it'll run on windows load. P.S. - When Killer is running, it'll kill the AV/Firewall Apps every 12 seconds. Have fun!'

Alias:

 destructive program [F-Prot], ProcKill [McAfee], ProcKill-K trojan, Trj/W32.A1 [Panda], Trojan.Win32.Killav.e [Kaspersky], Win32/KillAV.5!Trojan [Computer Associates]

Category:

AV Killer: Any hacker tool intended to disable a user's anti-virus software to help elude detection. Some will also disable personal firewalls.

Trojan: Any program with a hidden intent. Trojans are one of the leading causes of breaking into machines. If you pull down a program from a chat room, new group, or even from unsolicited e-mail, then the program is likely trojaned with some subversive purpose. The word Trojan can be used as a verb: To trojan a program is to add subversive functionality to an existing program. For example, a trojaned login program might be programmed to accept a certain password for any user's account that the hacker can use to log back into the system at any time. Rootkits often contain a suite of such trojaned programs.

Similar Pests:

 AV Killer · Trojan

Origins

Author:

 Timmsy,

By This Author:

 Extension Creator · Extension Creator 1.0 · Extension Creator 1.1 · Killfiles · Killfiles.AF · Nova 1.0 · Shock Mailer 1.0 · Sinique · Sinique 1.0

Date of Origin:

 June, 2002

Operation

Storage Required:
  • Killer 1.0: at least 77 KB
    		•

    Detection and Removal

    Automatic Removal:

    PestPatrol detects this.

    PestPatrol removes this.

    Manual Removal:

    		 Follow these steps to remove Killer 1.0 from your machine. Begin by backing up your registry and your system, and/or setting a Restore Point, to prevent trouble if you make a mistake.
    Stop Running Processes:

    Kill these running processes with Task Manager:

    Remove Files:

    Remove these files (if present) with Windows Explorer:

    Research

    File Analyses:

    More Info:
  • AllTheWeb, AltaVista, AOL Search, Ask Jeeves, Google, HotBot, Lycos, LookSmart, MSN, Yahoo!
    		•

    Research By:
  • PestPatrol's Pest Research Center
    		•

    Last Revised:

    		 April 03, 2005