Search
Keyword: vbsinorb1
This Trojan modifies the affected system's HOSTS files. This prevents users from accessing certain websites. Installation This Trojan drops the following files: %system%\b.dll - detected by Trend
\goopdate.dll,-3000" HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ CLSID\{6F8BD55B-E83D-4A47-85BE-81FFA8057A69}\Elevation Enabled = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ CLSID\{6F8BD55B-E83D-4A47-85BE-81FFA8057A69}\Elevation
\OPTION dwMainPriority = "2" HKEY_CURRENT_USER\Software\GRETECH\ GOMPLAYER\OPTION nLangResource = "0" HKEY_CURRENT_USER\Software\GRETECH\ GOMPLAYER\OPTION bCheckNetMeeting = "1" HKEY_CURRENT_USER\Software
CVE-2009-1835 �Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 associate local documents with external domain names located after the file:// substring in a URL, which allows user-assisted
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
CVE-2009-1834 Visual truncation vulnerability in netwerk/dns/src/nsIDNService.cpp in Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 allows remote attackers to spoof the location bar via an
This Adware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies Internet Explorer security settings. This
\MiscStatus\ 1 HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ CLSID\{{GUID}}\Control HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ CLSID\{{GUID}}\Version HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ CLIP.eForm.Viewer.AxViewerCtrl
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager, Registry Editor, and Folder
\MiscStatus\ 1 HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ CLSID\{AC414988-E5BB-4C2C-873B-EA53D2F3D23A}\TypeLib HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ CLSID\{AC414988-E5BB-4C2C-873B-EA53D2F3D23A}\Version
entries: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Security Center UacDisableNotify = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Security Center\Svc AntiVirusOverride = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft
\ Windows\CurrentVersion\SharedDLLs C:\Program Files\Freemake\COM\1.1\msvcp100.dll = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\SharedDLLs C:\Program Files\Freemake\COM\1.1\msvcr100.dll
CVE-2012-4820 Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and
CVE-2012-4822 Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13
\CurrentControlSet\ Services\svflooje ErrorControl = 1 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\svflooje ImagePath = %System%\drivers\svflooje.exe HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services
\CurrentControlSet\ Services\svflooje ErrorControl = 1 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\svflooje ImagePath = %System%\drivers\svflooje.exe HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services
{6C348EAC-3600-45D3-B477-DFEDDFB78472} ToolboxBitmap32 = "%Program Files%\COMMON~1\uusee\UUWEBP~1.OCX, 1" HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ CLSID\{6C348EAC-3600-45D3-B477-DFEDDFB78472} MiscStatus = "0" HKEY_LOCAL_MACHINE\SOFTWARE
\CurrentVersion\Uninstall\ Plus-HD-8.1 UninstallString = "%Program Files%\Plus-HD-8.1\Uninstall.exe /fromcontrolpanel=1" HKEY_LOCAL_MACHINE\SOFTWARE\Plus-HD-8.1\ Installer BundledFirefox = "1" HKEY_LOCAL_MACHINE
\ProxySettings\ HTTP ProxyStyle = "1" HKEY_CURRENT_USER\Software\Microsoft\ MediaPlayer\Preferences\ProxySettings\ HTTP ProxyPort = "5" HKEY_CURRENT_USER\Software\Microsoft\ MediaPlayer\Preferences\ProxySettings
CVE-2009-2408 Mozilla Network Security Services (NSS) before 3.12.3, Firefox before 3.0.13, Thunderbird before 2.0.0.23, and SeaMonkey before 1.1.18 do not properly handle a '\0' character in a