Jump to content

[FP] Trojan.Zlob


Dirhael
 Share

Recommended Posts

This one is very likely a false positive. The ShellLoad.dll file referenced is clean according to A2, SAS Pro, Avira Premium & Virustotal+Jotti. The file belongs to Objectdock which was downloaded directly from Stardock and installed on a clean system. I've attached the file for verification and here's the log:

Malwarebytes' Anti-Malware 1.23Database version: 1010Windows 6.0.6001 Service Pack 1
22:00:43 30.07.2008mbam-log-7-30-2008 (22-00-42).txt
Scan type: Quick ScanObjects scanned: 35824Time elapsed: 1 minute(s), 49 second(s)
Memory Processes Infected: 0Memory Modules Infected: 0Registry Keys Infected: 1Registry Values Infected: 1Registry Data Items Infected: 0Folders Infected: 0Files Infected: 1
Memory Processes Infected:(No malicious items detected)
Memory Modules Infected:(No malicious items detected)
Registry Keys Infected:HKEY_CLASSES_ROOT\CLSID\{ec654325-1273-c2a9-2b7c-45d29bfe11c3} (Trojan.Zlob) -> No action taken. [scanForZlob() Function]
Registry Values Infected:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{ec654325-1273-c2a9-2b7c-45d29bfe11c3} (Trojan.Zlob) -> No action taken. [scanForZlob() Function]
Registry Data Items Infected:(No malicious items detected)
Folders Infected:(No malicious items detected)
Files Infected:C:\Program Files\Stardock\ObjectDock\ShellLoad.dll (Trojan.Zlob) -> No action taken. [scanForZlob() Function]

ShellLoad.zip

ShellLoad.zip

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.