New Zlob has been released again. It installs the following files and registry entries.
C:\Windows\System32\uszhv.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
{629340b5-8df6-4211-9245-a86563a35792} = cramping
We have provided removal instructions for anybody unfortunate to have been infected by this trojan.
New Zlob has been released again. It installs the following files, and registry entries.
C:\Windows\System32\xevhbpw.dll
C:\Windows\System32\219725\219725.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{6EA1DB25-2524-4DD6-B997-42E8F38C6E46}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
{201a14d7-b5b4-422c-816f-5f2a1e92e0e7} = incorrectnesses
We have provided removal instructions for anybody unfortunate to have been infected by this trojan.
New Zlob has been released again. It installs the following files, and registry entries.
C:\Windows\System32\cxbrk.dll
C:\Windows\System32\784953\784953.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{32E0E18C-7B9A-4A83-96D1-75DF1AFD98A3}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
{c96395b8-ab09-46a4-b539-7ddf6e061808} = altigraph
We have provided removal instructions for anybody unfortunate to have been infected by this trojan.
VideoAccessCodec has been updated. The codec installs the following files.
C:\Windows\agpqlrfm.exe
C:\Windows\evgratsm.dll
C:\Windows\kvxqmtre.dll
C:\Windows\qndsfmao.dll
We have provided removal instructions for anybody unfortunate to have been infected by this codec.
A new version of Trojan.DNSChanger was released. It installs the following files.
C:\Windows\System32\msliksurdns.dll
C:\Windows\System32\msliksurcredo.dll
C:\Windows\System32\Drivers\msliksurserv.sys
We have provided removal instructions for anybody unfortunate to have been infected by this trojan.
New Zlob has been released again. It installs the following files and registry entries.
C:\Windows\System32\oyryp.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
{ec86e5b0-45f2-45fa-9294-24878aec09f6} = elat
We have provided removal instructions for anybody unfortunate to have been infected by this trojan.
New Zlob has been released again. It installs the following files and registry entries.
C:\Windows\System32\gnmguxh.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
{629340b5-8df6-4211-9245-a86563a35792} = enation
We have provided removal instructions for anybody unfortunate to have been infected by this trojan.
Two new rogue applications were discovered this week, PC Antispy and PC Clean Pro.
If you have seen any of the windows above on your computer, it is recommended that you follow these instructions. We have provided removal instructions for anybody unfortunate to have downloaded these applications.
Removal instructions for PC Antispy
Removal instructions for PC Clean Pro
Marcin Kleczynski
New Zlob has been released again. It installs the following files, and registry entries.
C:\Windows\System32\hkushdr.dll
C:\Windows\System32\734914\734914.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{0BD071A6-C989-49E8-9B8E-80F92A868E26}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
{d1577581-2ed7-469f-99b1-72c1339e0ee0} = doctordom
We have provided removal instructions for anybody unfortunate to have been infected by this trojan.
New Zlob has been released again. It installs the following files and registry entries.
C:\Windows\System32\blbpeoy.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
{ecc974ae-6ede-44a2-90da-93b996d8eaf8} = frizzed
We have provided removal instructions for anybody unfortunate to have been infected by this trojan.
Recent Comments