Search
Keyword: htmlbagleq1
" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\WindowsUpdate\ Auto Update AUOptions = "1" HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ Services\lanmanserver\parameters AutoShareWks = "0" HKEY_LOCAL_MACHINE
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
}" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\IPSec\ Policy\Local\ipsecFilter{f2fd0bda-3962-428d-9d06-34c2b19568bb} ipsecDataType = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft
HKEY_CURRENT_USER\Software\Afqteuv\ 1926745233 It adds the following registry entries: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Security Center UacDisableNotify = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Security
\Software\Administrator914 A4_0 = "1" HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ Services\SharedAccess\Parameters\ FirewallPolicy\StandardProfile\AuthorizedApplications\ List %User Temp%\winehdngg.exe = "%User
\ Microsoft\Internet Explorer\Control Panel HomePage = "1" HKEY_CURRENT_USER\Software\Policies\ Microsoft\Internet Explorer\Control Panel HomePage = "1" HKEY_CURRENT_USER\Software\Microsoft\ Internet Explorer
This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Backdoor arrives on a system as a
CVE-2009-1467 Multiple cross-site scripting (XSS) vulnerabilities in IceWarp eMail Server and WebMail Server before 9.4.2 allow remote attackers to inject arbitrary web script or HTML via (1) the
CVE-2009-1468 Multiple SQL injection vulnerabilities in the search form in server/webmail.php in the Groupware component in IceWarp eMail Server and WebMail Server before 9.4.2 allow remote
CVE-2012-1525 Heap-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified
CVE-2012-4152 Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via
CVE-2012-2049 Stack-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified
CVE-2012-4148 Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via
This worm arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager, Registry Editor, and Folder
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager, Registry Editor, and Folder
SMS\Atomic_SMS.exe" 5 %System%\PING.EXE ping 127.0.0.1 "%Program Files%\AtomPark\Atomic SMS\Atomic_SMS.exe" 4 %Program Files%\MachinerData\Atomic_SMS.exe 1 %Windows%\Microsoft.NET\Framework\v4.0.30319
V1.0(PFS) NoModify = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\ Microsoft\Windows\CurrentVersion\ Uninstall\nProtect Online Security V1.0(PFS) NoRepair = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node
9.53.3 DisplayVersion = 9.53.3 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\Uninstall\ GPL Ghostscript 9.53.3 NoModify = 1 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion
{F4406238-983A-4845-9053-F1D0007FD135}" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\Explorer\ Browser Helper Objects\{098716A9-0310-4CBE-BD64-B790A9761158} NoExplorer = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Classes
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies files, disabling programs and applications