Keyword: microsoft internet explorer
74031 Total Search   |   Showing Results : 33721 - 33740
  Previous   Next  
TROJ_SMALL.AKO
\SOFTWARE\Microsoft\ DirectDraw\MostRecentApplication Name = "iexplore.exe" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ DirectDraw\MostRecentApplication ID = 4117b81 Other Details This Trojan connects to the
TROJ_RANSOM.BNR
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run S13916183 = "{malware path and file name}" Other System Modifications This Trojan adds the following
TROJ_RANSOM.BJL
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run Shell = "{malware path and file name}" Other System Modifications This Trojan adds the following registry
TROJ_RANSOM.UB
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run Shell = "{malware path and file name}" Other System Modifications This Trojan adds the following registry
TROJ_FAKEAV.HAS
\Software\Microsoft\ Direct3D\MostRecentApplication It adds the following registry entries: HKEY_CURRENT_USER\Software\Microsoft\ Direct3D\MostRecentApplication Name = "{malware file name}" Dropping Routine
TROJ_RANSOM.BLY
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run Shell = "{malware path and file name}" Other System Modifications This Trojan adds the following registry
TROJ_VBNA.GK
\Software\Description\ Microsoft\Rpc\UuidTemporaryData HKEY_LOCAL_MACHINE\SOFTWARE\vPro4\ 28811 It adds the following registry entries: HKEY_LOCAL_MACHINE\SOFTWARE\Description\ Microsoft\Rpc\UuidTemporaryData
TROJ_YAKES.JV
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ DirectDraw\MostRecentApplication Name = "iexplore.exe" (Note: The default value data of the said registry entry is iexplore.exe .) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft
TROJ_BANKER.QVD
\Pkoy.clsPkoy\Clsid It adds the following registry entries: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion TrayPlus = "0x223" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\policies
TROJ_BANKER.QUR
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ DirectDraw\MostRecentApplication Name = "{malware file name}" (Note: The default value data of the said registry entry is iexplore.exe .) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft
WORM_IRCBOT.DMS
DoNotAllowExceptions = "0" Dropping Routine This worm drops the following files: %Program Files%\Microsoft Office\OFFICE11\ WINWORD.EXE %Program Files%\Microsoft Office\OFFICE11\services.exe %User Startup%\Adobe Gamma
TROJ_RANSOM.CGU
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run S19010774 = "{malware path and file name}" Other System Modifications This Trojan adds the following
TROJ_RANSOM.CKB
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run S176179123 = "{malware path and file name}" Other System Modifications This Trojan adds the following
TROJ_RANSOM.DHX
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run S12635180 = "{malware path and file name}" Other System Modifications This Trojan adds the following
TROJ_AGENT_016829.TOMB
\Microsoft\ Security Center UACDisableNotify = "0" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\policies\ system EnableLUA = "0" This report is generated via an automated analysis system.
TROJ_DANGINEX.WC
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ DirectDraw\MostRecentApplication Name = "{malware file name}" (Note: The default value data of the said registry entry is iexplore.exe .) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft
TROJ_DLOADER.TJW
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ DirectDraw\MostRecentApplication Name = "iexplore.exe" (Note: The default value data of the said registry entry is iexplore.exe .) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft
TROJ_BANLOAD.GHU
\SOFTWARE\Microsoft\ Windows\CurrentVersion\policies\ system EnableLUA = "0" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Security Center UacDisableNotify = "1" Other Details This Trojan connects to the following
TROJ_RANSOM.BQH
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run She11 = "{malware path and file name}" Other System Modifications This Trojan adds the following registry
TROJ_JORIK.DBD
\Software\Microsoft\ Windows Script\Settings It adds the following registry entries: HKEY_CURRENT_USER\Software\Microsoft\ Windows Script\Settings JITDebug = "0" Dropping Routine This Trojan drops the