VirusResponseLab2009
VirusResponseLab2009
Found:
2008-09-16
Known system changes:
Created Files
- %Desktop%VirusResponse Lab.lnk
- %StartMenu%VirusResponse Lab
- %ApplicationData%Microsoft\Internet Explorer\Quick Launch\VirusResponse Lab 2009
Created Folders
- %ProgramFiles%VirusResponseLab2009
- %StartMenu%Programs\VirusResponse Lab
- %StartMenu%Program\VirusResponse Lab
- %ProgramFiles%avrlabs
- %ProgramFiles%ViRsLab
- %ProgramFiles%VirRL2009
- %ProgramFiles%vrl32software
Registry Entries
- Key: HKEY_CLASSES_ROOT\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}
- Value:
- Data:
- Key: HKEY_CURRENT_USER\software\virusresponselab2009
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\avlwarning.warningbho
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\avlwarning.warningbho.1
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\clsid\{a21c8d81-a9c7-46c6-a488-2a32fa0daeb6}
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\clsid\{f5734812-e6a1-8833-eca9-949b5b8a88bf}
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\app paths\virusresponselab2009
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{a21c8d81-a9c7-46c6-a488-2a32fa0daeb6}
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\virusresponselab2009
- Value:
- Data:
- Key: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
- Value: virusresponselab2009
- Data:
- Key: HKEY_LOCAL_MACHINE\system\controlset001\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list
- Value: c:\program files\virusresponselab2009\virusresponselab2009.exe
- Data:
- Key: HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list
- Value: c:\program files\virusresponselab2009\virusresponselab2009.exe
- Data:
- Key: HKEY_CURRENT_USER\Software\avrlabs
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\avrlabsWarning.WarningBHO
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\avrlabsWarning.WarningBHO.1
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\CLSID\{D695B871-8020-4041-A6D2-59F922E1B2E2}
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D695B871-8020-4041-A6D2-59F922E1B2E2}
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\avrlabs
- Value:
- Data:
- Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
- Value: avrlabs
- Data: "C:\Program Files\avrlabs\avrlabs.exe"
- Key: HKEY_CURRENT_USER\Software\ViRsLab
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\CLSID\{2B394226-862F-4aa4-AA53-988E24F50841}
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\ViRsLabWarning.WarningBHO
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\ViRsLabWarning.WarningBHO.1
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B394226-862F-4aa4-AA53-988E24F50841}
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViRsLab
- Value:
- Data:
- Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
- Value: SavedLegacySettings
- Data: 3C, 00, 00, 00, 6E, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 00, 00, 00, 00, 00, 00, C0, 4F, D0, EF, 26, A2, C4, 01, 01, 00, 00, 00, C0, A8, 01, 22, 00, 00, 00, 00, 00, 00, 00, 00
- Key: HKEY_CURRENT_USER\Software\vrl32
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\CLSID\{4E6615B5-A259-4e55-905F-7F9CE60B379D}
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\Interface\{305043E5-F9D9-4B3A-A618-C4D0DA8031CE}
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\Interface\{536CBA8A-9DB6-45CF-8D65-F486C49242D5}
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\TypeLib\{B3A0AA5C-9FA3-408D-8193-2A948EF51D2D}
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\vrl32Warning.WarningBHO
- Value:
- Data:
- Key: HKEY_CLASSES_ROOT\vrl32Warning.WarningBHO.1
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\vrl32
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E6615B5-A259-4e55-905F-7F9CE60B379D}
- Value:
- Data:
- Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vrl32
- Value:
- Data:
- Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
- Value: vrl32
- Data: "C:\Program Files\vrl32software\vrl32.exe"