PCSecurity2009

PCSecurity2009

Found: 
2009-07-08
Known system changes: 

Created Files

  • %System%_scui.cpl
  • %Desktop%PC_Security2009.lnk
  • %CommonProgramFiles%nezetiras.exe
  • %CommonProgramFiles%tixiji.inf
  • %Temp%tmpwr2
  • %Temp%tmpwr3
  • %Temp%tmpwr4
  • %Temp%tmpwr5
  • %Temp%tmpwr6
  • %Temp%tmpwr7
  • %Temp%tmpwr1
  • %Windir%yvetebaj.dll
  • %Windir%xukokaroh.db
  • %Windir%kecodavy.bat
  • %Windir%oxupa.inf
  • %Windir%aqebicud.sys
  • %Windir%mybihul.sys
  • %Windir%quhydaviqo.vbs
  • %System%fyhedygax.ban
  • %System%gegowihy.reg
  • %System%%allusersprofile%\Documents\hega.dat
  • %System%%allusersprofile%\Documents\iqebogyr.dat
  • %System%%allusersprofile%\Documents\uhuwuwoxak.dl
  • %System%%allusersprofile%\Documents\vysynuse.pif_
  • %ApplicationData%osafavi.dl
  • %ApplicationData%uzuter.reg
  • %ApplicationData%syzurykyfo.inf

Created Folders

  • %ProgramFiles%PC_Security2009
  • %CommonPrograms%PC_Security2009

Registry Entries

  • Key: HKEY_CURRENT_USER\Control Panel\don't load
  • Value: scui.cpl
  • Data: No
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PC_Security2009
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\PC_Security2009
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
  • Value: ForceClassicControlPanel
  • Data: 01, 00, 00, 00
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
  • Value: PC Security 2009
  • Data: "C:\Program Files\PC_Security2009\PC_Security2009.exe" /hide