| Port No | 121 |
| Service Name | Jammer Killah |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Jammer Killah 1.2 is a trojan that is suppose to kill the Jammer program. This program detects back orifice and netbus. Then it drops a Back Orifice 1.20 server. The server is configured on port 121 with password hack. |
| Reference Link | Jammer Killah Trojan |
| Attack | It autoloads the Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices Key: MsWind32drv It does the following : Back Orifice 1.20 features Removal : 1.Remove the MsWind32 key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices Which can be done with regedit or any other registry editing program. 2. Reboot the computer or close MsWind32.drv. 3. Delete the trojan file MsWind32.drv in the windows directory |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.