Keyword: usojan.ps1.pcastle.b
60162 Total Search   |   Showing Results : 41 - 60
  Previous   Next  
TROJ_KOVTER.AUSKKF
characters}" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate\ OSUpgrade ReservationsAllowed =
TROJ_KOVTER.AUSKKC
\ Microsoft\Windows\WindowsUpdate DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate\ OSUpgrade ReservationsAllowed = "0" HKEY_LOCAL_MACHINE\SOFTWARE\qanz ltpxeirzlt =
TSPY_KOVTER.XXE
" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate\ OSUpgrade ReservationsAllowed = "0
TROJ_DLOADR.PBN
\FeatureControl\ FEATURE_BROWSER_EMULATION iexplore.exe = "22b8" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows
TROJ_KOVTER.AUSIO
Explorer\Main\FeatureControl\ FEATURE_BROWSER_EMULATION iexplore.exe = "22b8" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies
TROJ_KOVTER.AUSKKB
{random characters}" HKEY_CURRENT_USER\Software\qanz zojewbdazo = "{random characters}" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE
TSPY_KOVTER.XXJ
\WindowsUpdate DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate\ OSUpgrade ReservationsAllowed = "0" HKEY_LOCAL_MACHINE\SOFTWARE\qanz ltpxeirzlt = "eGwRgMVrVTpfkg==
TROJ_KOVTER.EH
characters}" HKEY_CURRENT_USER\Software\qanz zojewbdazo = "{random characters}" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies
TSPY_KOVTER.XXP
{random characters}" HKEY_CURRENT_USER\Software\qanz zojewbdazo = "{random characters}" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE
PUA_ASKTOOLBAR.GG
\Software\AppDataLow\ Software\AskToolbar\Prefs Active = "1" HKEY_CURRENT_USER\Software\AppDataLow\ Software\AskToolbar\Macro to = "" HKEY_CURRENT_USER\Software\AppDataLow\ Software\AskToolbar\Macro dtid = "
TSPY_INJECTOR_CA082EBF.TOMC
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager, Registry Editor, and Folder
TROJ_DROPPR.TAK
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager, Registry Editor, and Folder
PUA.Win32.WebCompanion.AA
\PDF Architect 2 locale = en HKEY_CURRENT_USER\Software\PDF Architect 2\ Options\General Allow Automatic Updates = 1 HKEY_CURRENT_USER\Software\PDF Architect 2\ Installation Desktop Shortcut = %Desktop%
PUA.Win32.BundledGTB.A
Application adds the following processes: ping -n 1 -w 5000 www.piriform.com %System Root%\Program Files\CCleaner\CCleaner64.exe /createSkipUAC "%System Root%\Program Files\Internet Explorer\iexplore.exe
WORM_AUTORUN.ISV
This worm arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager, Registry Editor, and Folder
TROJ_KOVTER.AUSKKD
DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate\ OSUpgrade ReservationsAllowed = "0" HKEY_LOCAL_MACHINE\SOFTWARE\qanz ltpxeirzlt = "eDFHgMIxVmA7Pg==" HKEY_CURRENT_USER
TSPY_DYZAP.NIQ
DisableOSUpgrade = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Microsoft\Windows\WindowsUpdate\ OSUpgrade ReservationsAllowed = "0" HKEY_LOCAL_MACHINE\SOFTWARE\qanz ltpxeirzlt = "eT0SjJJuWKW0Xw==" HKEY_CURRENT_USER
TROJ_FAKEAV.EZB
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies files, disabling programs and applications
TROJ_FAKEAV.JIH
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies files, disabling programs and applications
TROJ_FAKEAV.MRW
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes itself after execution. Arrival Details This