InternetAntivirusPro

InternetAntivirusPro

Found: 
2008-11-06
Known system changes: 

Created Files

  • %CommonDesktop%\Internet Antivirus Pro.lnk
  • %ProgramFiles%\Internet Antivirus Pro
  • %ApplicationData%\Microsoft\Internet Explorer\Quick Launch\Internet Antivirus Pro.lnk
  • %CommonDesktop%\123.lnk

Created Folders

  • %ProgramFiles%\Internet Antivirus Pro
  • %ApplicationData%\Internet Antivirus Pro
  • %CommonPrograms%\Internet Antivirus Pro
  • %ApplicationData%\Internet Antivirus Pro
  • %ProgramFiles%\Internet Antivirus Pro
  • %CommonStartMenu%\Programs\Internet Antivirus Pro

Registry Entries

  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe
  • Key: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\run
  • Value: iv
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\internet antivirus pro_is1
  • Key: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\run
  • Value: procgdxc32.exe
  • Key: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
  • Value: internet antivirus pro
  • Key: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
  • Value: microsoft windows logon process
  • Key: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\runonce
  • Value: fr_ia
  • Key: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_ITGRDENGINE
  • Key: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\ITGrdEngine
  • Key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ITGRDENGINE
  • Key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ITGrdEngine
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IAPro_is1
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IntAVPro_is1
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InterAntiVPro_is1
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\123_is1
  • Key: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_HTGRDENGINE
  • Key: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\HTGrdEngine
  • Key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HTGRDENGINE
  • Key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\HTGrdEngine
  • Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
  • Value: byand
  • Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
  • Value: Internet Antivirus Pro
  • Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
  • Value: Microsoft Windows logon process
  • Data: C:\Documents and Settings\No1\Application Data\Microsoft\Windows\winlogon.exe
  • Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
  • Value: forbyorat