PCSecurity2009
PCSecurity2009
Found:
2009-07-08
Known system changes:
Created Files
- %System%_scui.cpl
- %Desktop%PC_Security2009.lnk
- %CommonProgramFiles%nezetiras.exe
- %CommonProgramFiles%tixiji.inf
- %Temp%tmpwr2
- %Temp%tmpwr3
- %Temp%tmpwr4
- %Temp%tmpwr5
- %Temp%tmpwr6
- %Temp%tmpwr7
- %Temp%tmpwr1
- %Windir%yvetebaj.dll
- %Windir%xukokaroh.db
- %Windir%kecodavy.bat
- %Windir%oxupa.inf
- %Windir%aqebicud.sys
- %Windir%mybihul.sys
- %Windir%quhydaviqo.vbs
- %System%fyhedygax.ban
- %System%gegowihy.reg
- %System%%allusersprofile%\Documents\hega.dat
- %System%%allusersprofile%\Documents\iqebogyr.dat
- %System%%allusersprofile%\Documents\uhuwuwoxak.dl
- %System%%allusersprofile%\Documents\vysynuse.pif_
- %ApplicationData%osafavi.dl
- %ApplicationData%uzuter.reg
- %ApplicationData%syzurykyfo.inf
Created Folders
- %ProgramFiles%PC_Security2009
- %CommonPrograms%PC_Security2009
Registry Entries
- Key: HKEY_CURRENT_USER\Control Panel\don't load
- Value: scui.cpl
- Data: No
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PC_Security2009
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\PC_Security2009
- Value:
- Data:
- Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
- Value: ForceClassicControlPanel
- Data: 01, 00, 00, 00
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
- Value: PC Security 2009
- Data: "C:\Program Files\PC_Security2009\PC_Security2009.exe" /hide