About: KillAV.gj   Sponge Permalink

An Entity of Type : dbkwik:resource/uazuHg3wEfJ5Uid5iYR3Jw==, within Data Space : 134.155.108.49:8890 associated with source dataset(s)

Trojan.Win32.KillAV.gj or KillAV.gj is a trojan that causes a message box to appear. File:KillAV.gj.Rootkit.png The easy way to tell this is fake is that it's title is Project1 and that it says "Scaning for root kit" instead of "Scanning for Root-kit..." Its also easy to see that it looks like a simple notepad joke virus but it creates a batch file in the C:\ directory called "Update.bat". The trojan also terminates the following processes. It also registers itself into the system registry. [HKLM\Software\Microsoft\Windows\CurrentVersion\Run] "Start"="c:\Update.bat" File:KillAV.gj.RootkitInProgress.png

AttributesValues
rdf:type
rdfs:label
  • KillAV.gj
rdfs:comment
  • Trojan.Win32.KillAV.gj or KillAV.gj is a trojan that causes a message box to appear. File:KillAV.gj.Rootkit.png The easy way to tell this is fake is that it's title is Project1 and that it says "Scaning for root kit" instead of "Scanning for Root-kit..." Its also easy to see that it looks like a simple notepad joke virus but it creates a batch file in the C:\ directory called "Update.bat". The trojan also terminates the following processes. It also registers itself into the system registry. [HKLM\Software\Microsoft\Windows\CurrentVersion\Run] "Start"="c:\Update.bat" File:KillAV.gj.RootkitInProgress.png
dcterms:subject
dbkwik:malware/pro...iPageUsesTemplate
Date
  • Circa 2005
Origin
  • Unknown
Platform
  • Win32
Name
  • KillAV.gj
Type
  • Trojan
pl
  • Visual C++
filetype
  • .exe
Family
Creator
  • mad max!
Size
  • 61440(xsd:integer)
abstract
  • Trojan.Win32.KillAV.gj or KillAV.gj is a trojan that causes a message box to appear. File:KillAV.gj.Rootkit.png The easy way to tell this is fake is that it's title is Project1 and that it says "Scaning for root kit" instead of "Scanning for Root-kit..." Its also easy to see that it looks like a simple notepad joke virus but it creates a batch file in the C:\ directory called "Update.bat". The trojan also terminates the following processes. _AVP32.EXE _AVPCC.EXE _AVPM.EXE ACKWIN32.EXE ADVXDWIN.EXE ALERTSVC.EXE ALOGSERV.EXE AMON9X.EXE ANTI-t*r*o*jan.EXE ANTS.EXE apvxdwin.exe ATCON.EXE ATUPDATER.EXE ATWATCH.EXE AUTODOWN.EXE AutoTrace.exe AUTOUPDATE.EXE AVCONSOL.EXE AVGCC32.EXE Avgctrl.exe AvgServ.exe AVGSERV.EXE AVGSERV9.EXE AVGW.EXE avkpop.exe AVKSERV.EXE avkservice.exe avkwctl9.exe AVP.EXE AVP32.EXE AVPCC.EXE AVPM.EXE Avsched32.exe AvSynMgr.exe AVSYNMGR.EXE AVWINNT.EXE AVXMONITOR9X.EXE AVXMONITORNT.EXE AVXQUAR.EXE.EXE AVXW.EXE BLACKICE.EXE CDP.EXE CLAW95.EXE CLAW95CF.EXE CLEANER.EXE CLEANER3.EXE CMGRDIAN.EXE CONNECTIONMONITOR.EXE CTRL.EXE defscangui.exe DEFWATCH.EXE DOORS.EXE DRWATSON.EXE DVP95.EXE DVP95_0.EXE EFPEADM.EXE ETRUSTCIPE.EXE EVPN.EXE EXPERT.EXE F-AGNT95.EXE fameh32.exe FAST.EXE fch32.exe fih32.exe fnrb32.exe F-PROT.EXE F-PROT95.EXE FP-WIN.EXE FRW.EXE fsaa.exe fsav32.exe fsgk32.exe fsm32.exe fsma32.exe fsmb32.exe F-STOPW.EXE gbmenu.exe gbpoll.exe GENERICS.EXE GUARD.EXE GUARDDOG.EXE IAMAPP.EXE IAMSERV.EXE ICLOAD95.EXE ICLOADNT.EXE ICMON.EXE ICSUPP95.EXE ICSUPPNT.EXE IFACE.EXE IOMON98.EXE ISRV95.EXE JEDI.EXE LDNETMON.EXE LDPROMENU.EXE LDSCAN.EXE LOCKDOWN.EXE LOCKDOWN2000.EXE LUALL.EXE LUCOMSERVER.EXE MCAGENT.EXE MCMNHDLR.EXE McShield.exe MCSHIELD.EXE MCTOOL.EXE MCUPDATE.EXE MCVSRTE.EXE MCVSSHLD.EXE MGAVRTCL.EXE MGAVRTE.EXE MGHTML.EXE MINILOG.EXE MONITOR.EXE MOOLIVE.EXE MpfConsole MPFSERVICE.EXE MPFTRAY.EXE MWATCH.EXE NAVAPSVC.EXE NAVLU32.EXE NAVW32.EXE NAVWNT.EXE NDD32.EXE NeoWatchLog.exe NETUTILS.EXE NISSERV.EXE NISUM.EXE NMAIN.EXE NORMIST.EXE notepad.exe NPROTECT.EXE NPSSVC.EXE NSCHED32.EXE ntrtscan.EXE NTVDM.EXE Nui.EXE NVC95.EXE NWService.exe NWTOOL16.EXE PADMIN.EXE pavproxy.exe PCCIOMON.EXE pccntmon.EXE pccwin97.EXE PCCWIN98.EXE pcscan.EXE PERSFW.EXE POP3TRAP.EXE POPROXY.EXE PORTMONITOR.EXE PROGRAMAUDITOR.EXE PVIEW95.EXE RAV7.EXE RAV7WIN.EXE REALMON.EXE REGEDIT.EXE RESCUE.EXE RTVSCN95.EXE sbserv.exe SCAN32.EXE SCRSCAN.EXE SMC.EXE SPHINX.EXE SPYXX.EXE SS3EDIT.EXE SWEEP95.EXE SWEEPSRV.SYS SWNETSUP.EXE SymProxySvc.exe SYMTRAY.EXE taskmgr.exe taskmgr.exe TAUMON.EXE TC.EXE TCA.EXE TCM.EXE TDS-3.EXE TFAK.EXE UPDATE.EXE vbcmserv.exe VbCons.exe VET32.EXE VET95.EXE VETTRAY.EXE VIR-HELP.EXE VPC32.EXE VPTRAY.EXE VSCHED.EXE VSECOMR.EXE VSHWIN32.EXE VSMON.EXE VSSTAT.EXE WATCHDOG.EXE WEBSCANX.EXE WEBTRAP.EXE WGFE95.EXE WIMMUN32.EXE WRADMIN.EXE WRCTRL.EXE ZATUTOR.EXE ZAUINST.EXE ZONEALARM.EXE It also registers itself into the system registry. [HKLM\Software\Microsoft\Windows\CurrentVersion\Run] "Start"="c:\Update.bat" While it is carrying out this routine, it displays the following message. File:KillAV.gj.RootkitInProgress.png
Alternative Linked Data Views: ODE     Raw Data in: CXML | CSV | RDF ( N-Triples N3/Turtle JSON XML ) | OData ( Atom JSON ) | Microdata ( JSON HTML) | JSON-LD    About   
This material is Open Knowledge   W3C Semantic Web Technology [RDF Data] Valid XHTML + RDFa
OpenLink Virtuoso version 07.20.3217, on Linux (x86_64-pc-linux-gnu), Standard Edition
Data on this page belongs to its respective rights holders.
Virtuoso Faceted Browser Copyright © 2009-2012 OpenLink Software