View MDO database (ALL)
Showing entries 16726 to 16750 of 18323.
Go directly to page: 1 663 664 665 666 667 668 669 670 671 672 673 674 675 676 677 733
(X) SearchScopes: HKCU - 08E2B78DBA8244EFB2DB4577A7DAEC55 URL = http://slirsredirect...mrud=11-12-2011 browser hijacker that alters hompage settings in IE and FireFox with Whatsfind.com and redirects users http://www.scanforfree.com/39/remove-slirsredirect-search-aol-com.html Windows ALL; discovered by Nasdaq |
(X) SearchScopes: HKCU - DefaultScope {81389902-4850-470E-B756-74A7D71861B8} URL = http://start.mysearchdial.com/results.php? "PUP.Optional.MySearchDial.A" http://www.systemlookup.com/search.php?type=name&client=malwaresearch-chrome&search=mysearchdial Windows ALL; discovered by Nasdaq |
(U) SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://nortonsafe.se...t=kwd&qsrc=2869 Norton Identity Safe is a free password manager that makes logging into your favorite sites easier and more secure. https://identitysafe.norton.com/ Windows ALL; discovered by Nasdaq |
(X) SearchScopes: HKLM - {09E1E4E7-C278-461D-87FD-8758D9A72E15} URL = http://www.ask.com/w...}&l=dis&o=uscql AdWare, PUP (Potentially Unwanted Program) http://www.systemlookup.com/search.php?type=name&client=malwaresearch-chrome&search=ask.com Windows ALL; discovered by Nasdaq |
(X) Secured Yahoo Powered adware https://forums.commentcamarche.net/forum/affich-33750070-trojan-script-generic Windows ALL; discovered by Nasdaq |
(O) ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2010-07-21] (EasyBits Software Corp.) Magic Desktop parental control software http://www.systemlookup.com/SEH/1014-SYSDIR_ezUPBHook_dll_EZUPBH_1_DLL.html Windows ALL; discovered by Nasdaq |
(L) ShellExecuteHooks-x32: SpywareGuard.Handler - {81559C35-8464-49F7-BB0E-07A383BEF910} - C:\Program Files (x86)\SpywareGuard\spywareguard.dll [126976 2003-08-02] () catch and block spyware before it is executed http://www.systemlookup.com/SEH/302-Program_Files_SpywareGuard_spywareguard_dll.html Windows ALL; discovered by Nasdaq |
(L) ShellExecuteHooks: Eudora's Shell Extension - {EDB0E980-90BD-11D4-8599-0008C7D3B6F8} - C:\Program Files\Qualcomm\Eudora\EuShlExt.dll [77824 2002-03-28] (Qualcomm Inc.) Eudora's Shell Extension http://www.systemlookup.com/SEH/43-ProgramFiles_Qualcomm_Eudora_EuShlExt_dll.html Windows ALL; discovered by Nasdaq |
(X) ShellExecuteHooks: Kein Name - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} - C:\Windows\System32\mcicda64.dll Trojan.BitcoinMiner http://www.freefixer.com/library/file/mcicda64.dll-279267/ Windows ALL; discovered by Nasdaq |
(L) ShellExecuteHooks: OA Shell Helper - {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\Program Files\Online Armor\oaevent.dll [1033968 2013-10-11] (Emsisoft GmbH) Online Armor http://www.systemlookup.com/SEH/318-Program_Files_Tall_Emu_Online_Armor_oaevent_dll.html Windows ALL; discovered by Nasdaq |
(L) ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation) Windows Desktop Search Namespace Manager http://www.systemlookup.com/search.php?type=filename&client=malwaresearch-chrome&search=MsnlNamespaceMgr.dll Windows ALL; discovered by Nasdaq |
(L) ShellIconOverlayIdentifiers: VeriFace Enc -> {771C7324-DA80-49D3-8017-753B0AF60951} => C:windowssystem32IcnOvrly.dll () VeriFace found on Lenovo computers. http://www.shouldiblockit.com/icnovrly.dll-27688.aspx Windows ALL; discovered by Nasdaq |
(L) ShellIconOverlayIdentifiers: [ mozysyncNotUploaded] -> {34DF8AC2-A6BB-4855-B45A-CC1B4D9183E3} => C:\Program Files\Mozy Sync\mozysyncshell.dll Mozy Sync Shell Extension https://www.reasoncoresecurity.com/mozysyncshell.dll-4331a7b658140408ff8d94c9e7cb92608af3a9af.aspx Windows ALL; discovered by Nasdaq |
(U) ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\C2MP\TrayMenu.exe () CodecPack TrayMenu https://www.file.net/process/traymenu.exe.html Windows ALL; discovered by Nasdaq |
(U) ShortcutTarget: Cox Business Online Backup Status.lnk -> C:\Program Files\Online Backup\Cox_Business_CBOBstat.exe (Cox Business) Cox Business Online Backup http://www.cox.com/business/tulsa/data/onlinebackup.cox Windows ALL; discovered by Nasdaq |
(U) ShortcutTarget: EmEditor.lnk -> C:Program FilesEmEditoremedtray.exe (Emurasoft, Inc.) EmEditor is a fast, lightweight, yet extendable, easy-to-use text editor for Windows http://www.emeditor.com/ Windows ALL; discovered by Nasdaq |
(N) ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe () lets you customize the boot splash screen. http://www.ehow.com/info_12185841_fancystart-daemon-asus.html Windows ALL; discovered by Nasdaq |
(U) ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass) Password keeper http://www.freefixer.com/library/file/lpuninstall.exe-92748/ Windows ALL; discovered by Nasdaq |
(U) ShortcutTarget: Monitor Ink Alerts - .lnk -> C:\Program Files\HP\HP Officejet Pro 8100\Bin\HPStatusBL.dll (Hewlett-Packard Co.) Linif to HP Officejet Pro 8100 ePrinter http://support.hp.com/us-en/product/HP-Officejet-Pro-8100-ePrinter-series---N8/4322917/model/4323213/drivers Windows ALL; discovered by Nasdaq |
(X) ShortcutTarget: Of_US-I3-OptimizerPro_chk_0_188.lnk -> C:\ProgramData\{7053def0-e6d1-27ff-7053-3def0e6d7bc3}\Of_US-I3-OptimizerPro_chk_0_188.exe (PC Utilities Software Limited) Gen:Variant.Application.OptimizerPro http://www.herdprotect.com/of_us-i3-optimizerpro_chk_0_188.exe-6d35120e0aa34578dd258cf9afb232cb7a785eeb.aspx Windows ALL; discovered by Nasdaq |
(X) ShortcutTarget: SafeGuard.lnk -> C:\Program Files\SafeGuard\SafeGuard.exe (Alerts LLC) PUP.Optional.StormWatch.A http://www.herdprotect.com/safeguardapp.exe-6f29634e5f864b6311ee4c16e00c62ab96938695.aspx Windows ALL; discovered by Nasdaq |
(U) ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\w32x86\3\NetFaxTray.exe (Samsung Electronics Co., Ltd.) Samsung Network PC Fax is a software package designed to send fax messages via Samsung multifunction printers http://www.shouldiremoveit.com/Samsung-Network-PC-Fax-17997-program.aspx Windows ALL; discovered by Nasdaq |
(Q) spfprc.exe Anti spyware program which has not be evaluated by SpywareWarrior. http://castlecops.com/s12838-spywarefighterguard.html Windows ALL; discovered by nasdaq |
(L) SRV - (npggsvc) -- C:\Windows\SysWOW64\GameMon.des nProtect GameGuard Service http://www.systemlookup.com/Drivers/3513-gamemon_des.html Windows ALL; discovered by nasdaq |
(U) Start Menu\Programs\Startup\Error Recovery Guide.lnk Shortcut to program Windows ALL; discovered by Nasdaq |
This is a list of items that is designed to help with the analysis of HijackThis, DDS, OTL and FRST logs.
It is by no means exhaustive (in fact it is being added to all the time), and is intended
to complement other legitimate online lists.