Win32.Troj.Killav.ak是木馬病毒。
基本介紹
- 外文名:Win32.Troj.Killav.ak
- 威脅級別:★★
- 中文名稱:安軟殺手
- 病毒類型:木馬
- 影響系統:Win9x / WinNT
病毒概述,病毒行為,
病毒概述
病毒別名:Trojan.Win32.Killav.ak [AVP],Trojan/Killav.ay [KV],Trojan.Win32.Killav.ak.a [RS]
病毒行為
這是一個木馬病毒。該病毒發作的時候會關閉眾多的安全軟體,導致系統安全性能嚴重下降,病毒就能很輕易地侵入用戶的機器,會給用戶的系統帶來非常嚴重的破壞。
1)病毒釋放的檔案:
%System%\somename.exe (病毒副本)
%System%\somename.dll
2)添加啟動項:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"somename"="%System%\somename.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
"somename"="%System%\somename.exe"
3)關閉以下安全軟體的進程:
KAVPF.EXE
agentw.EXE
AckWin32.EXE
Claw95.EXE
Monitor.EXE
avpm.EXE
_AVP32.EXE
AVP32.EXE
vshwin32.EXE
f-stopw.EXE
APVXDWIN.EXE
PAVPROXY.EXE
VbCons.EXE
vbcmserv.EXE
_AVPCC.EXE
GBPOLL.EXE
TAUMON.EXE
zonealarm.EXE
vsmon.EXE
zapro.EXE
PERSWF.EXE
MPFAGENT.EXE
MPFSERVICE.EXE
MPFTRAY.EXE
VSHWIN32.EXE
VSECOMR.EXE
WEBSCANX.EXE
AVCONSOL.EXE
VSSTAT.EXE
cpd.EXE
ALOGSERV.EXE
CMGRDIAN.EXE
RULAUNCH.EXE
VSMAIN.EXE
Mcshield.EXE
iamapp.EXE
iamserv.EXE
FRW.EXE
WrCtrl.EXE
WrAdmin.EXE
lockdown2000.EXE
Sphinx.EXE
BlackICE.EXE
blackd.EXE
rapapp.EXE
IAMAPP.EXE
NISUM.EXE
IAMSTATS.EXE
LUSPT.EXE
ccApp.EXE
ccEvtMgr.EXE
ccPxySvc.EXE
NISSERV.EXE
AUTODOWN.EXE
VET32.EXE
ETRUSTCIPE.EXE
MWATCH.EXE
EFPEADM.EXE
EVPN.EXE
cleaner3.EXE
cleaner.EXE
Navw32.EXE
AVXMONITOR9X.EXE
AVXMONITORNT.EXE
AVXQUAR.EXE
NORMIST.EXE
NVC95.EXE
Claw95cf.EXE
Claw95.EXE
Nupgrade.EXE
AVGCC32.EXE
AVGCTRL.EXE
AVGSERV.EXE
ICSUPP95.EXE
ICLOADNT.EXE
IOMON98.EXE
Vet95.EXE
VetTray.EXE
AutoDown.EXE
Rescue.EXE
WRADMIN.EXE
GUARD.EXE
DOORS.EXE
PCCIOMON.EXE
AvkServ.EXE
AckWin32.EXE
notstart.EXE
AVSYNMGR.EXE
MINILOG.EXE
VSMON.EXE
BLACKD.EXE
NISUM.EXE
NISSERV.EXE
NMAIN.EXE
IAMAPP.EXE
IAMSERV.EXE
CDP.EXE
GUARDDOG.EXE
FRW.EXE
PERSFW.EXE
LOCKDOWN.EXE
LOCKDOWN2000.EXE
SPHINX.EXE
NPROTECT.EXE
NDD32.EXE
SMC.EXE
NETUTILS.EXE
LDNETMON.EXE
PORTMONITOR.EXE
CONNECTIONMONITOR.EXE
navapsvcNVSVC32NAVAPNAVENGNAVEX15NAV
Auto-ProtectSymProxySvc.EXE
SweepNetSWEEPSRV.SYS
AvSynMgrAvgServ_AVPM.EXE
AVPM.EXE
AVP.EXE
NAVAPW32.EXE
RTVSCN95.EXE
DEFWATCH.EXE
VPC32.EXE
VPTRAY.EXE
POPROXY.EXE
NAVAPSVC.EXE
ALERTSVC.EXE
NAVLU32.EXE
NAVWNT.EXE
NPSSVC.EXE
LUALL.EXE
SWNETSUP.EXE
ICLOAD95.EXE
ICMON.EXE
ICSUPP95.EXE
ICLOADNT.EXE
ICSUPPNT.EXE
IFACE.EXE
ADVXDWIN.EXE
PADMIN.EXE
NWTOOL16.EXE
NTVDM.EXE
ANTS.EXE
ANTI-TROJAN.EXE
WRCTRL.EXE
WRADMIN.EXE
TC.EXE
TCA.EXE
TCM.EXE
MOOLIVE.EXE
MGHTML.EXE
MCMNHDLR.EXE
MCVSRTE.EXE
MCVSSHLD.EXE
MGAVRTCL.EXE
MGAVRTE.EXE
VSHWIN32.EXE
SCAN32.EXE
SCRSCAN.EXE
ALOGSERV.EXE
VSECOMR.EXE
WEBSCANX.EXE
VSSTAT.EXE
SYMTRAY.EXE
VSCHED.EXE
MCTOOL.EXE
AVXW.EXE
AVXMONITORNT.EXE
AVXMONITOR9X.EXE
AVXQUAR.EXE
AMON9X.EXE
AVGSERV.EXE
AVGW.EXE
AVGCC32.EXE
IOMON98.EXE
WEBTRAP.EXE
PCCWIN98.EXE
PCCIOMON.EXE
POP3TRAP.EXE
TDS-3.EXE
SS3EDIT.EXE
DOORS.EXE
JEDI.EXE
MONITOR.EXE
RAV7WIN.EXE
RAV7.EXE
SWEEP95.EXE
MCAGENT.EXE
MCUPDATE.EXE
ntrtscan.EXE
pccwin97.EXE
pccntmon.EXE
pcscan.EXE
Nui.EXE
CLAW95.EXE
CLAW95CF.EXE
NORMIST.EXE
NVC95.EXE
VET95.EXE
VETTRAY.EXE
AUTODOWN.EXE
VET32.EXE
ETRUSTCIPE.EXE
MWATCH.EXE
EFPEADM.EXE
EVPN.EXE
RESCUE.EXE
ACKWIN32.EXE
DVP95.EXE
DVP95_0.EXE
F-AGNT95.EXE
F-PROT95.EXE
EXPERT.EXE
FP-WIN.EXE
F-STOPW.EXE
VIR-HELP.EXE
F-PROT.EXE
SPYXX.EXE
ATWATCH.EXE
ATUPDATER.EXE
ATCON.EXE
PVIEW95.EXE
WGFE95.EXE
CTRL.EXE
LDPROMENU.EXE
LDSCAN.EXE
GENERICS.EXE
PROCESSMONITOR.EXE
PROGRAMAUDITOR.EXE
AVSYNMGR.EXE
GUARD.EXE
TFAK.EXE
LUCOMSERVER.EXE
WIMMUN32.EXE
AutoTrace.EXE
NWService.EXE
NTXconfig.EXE
NeoWatchLog.EXE
NSCHED32.EXE
WATCHDOG.EXE
ISRV95.EXE
REALMON.EXE
AVWINNT.EXE
AVGSERV9.EXE
avkpop.EXE
avkservice.EXE
avkwctl9.EXE
fsav32.EXE
fameh32.EXE
fch32.EXE
fih32.EXE
fnrb32.EXE
fsaa.EXE
fsgk32.EXE
fsm32.EXE
fsma32.EXE
fsmb32.EXE
sbserv.EXE
apvxdwin.EXE
gbpoll.EXE
gbmenu.EXE
pavproxy.EXE
VbCons.EXE
vbcmserv.EXE
Avgctrl.EXE
Avsched32.EXE
defscangui.EXE
navapsvc.EXE
defalert.EXE
npscheck.EXE