Jump to content

Recommended Posts

A new one ?

http://www.atribune.org/forums/index.php?showtopic=4796

Files Infected:

C:\Documents and Settings\Henrik\Lokale indstillinger\Temp\CmdLineExt03.dll (Trojan.Agent) -> Quarantined and deleted successfully.

Got another one, from my own PC, is flagging the AVZ driver

Malwarebytes' Anti-Malware 1.24

Database version: 1061

Windows 5.1.2600 Service Pack 2

20:43:58 08/17/2008

mbam-log-8-17-2008 (20-43-48).txt

Scan type: Full Scan (A:\|C:\|D:\|E:\|)

Objects scanned: 126878

Time elapsed: 1 hour(s), 28 minute(s), 59 second(s)

Registry Keys Infected:

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\utqwnzcx (Rootkit.iyi) -> No action taken.

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\utqwnzcx (Rootkit.iyi) -> No action taken.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\utqwnzcx (Rootkit.iyi) -> No action taken.

Files Infected:

C:\WINDOWS\system32\drivers\utqwnzcx.sys (Rootkit.iyi) -> No action taken.

Information about it from runscanner

Item: 011 HKLM\SYSTEM\CurrentControlSet\Services (drivers)

Description: AVZ Kernel Driver

Version: 1, 2, 0, 0

Path: c:\windows\system32\drivers\utqwnzcx.sys

MD5: 2483450c624a47d1b9be0ba9d664c408

Productname: AVZ Driver

FileDescription: AVZ Driver

Registry path: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\utqwnzcx

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.