VirusResponseLab2009

VirusResponseLab2009

Found: 
2008-09-16
Known system changes: 

Created Files

  • %Desktop%VirusResponse Lab.lnk
  • %StartMenu%VirusResponse Lab
  • %ApplicationData%Microsoft\Internet Explorer\Quick Launch\VirusResponse Lab 2009

Created Folders

  • %ProgramFiles%VirusResponseLab2009
  • %StartMenu%Programs\VirusResponse Lab
  • %StartMenu%Program\VirusResponse Lab
  • %ProgramFiles%avrlabs
  • %ProgramFiles%ViRsLab
  • %ProgramFiles%VirRL2009
  • %ProgramFiles%vrl32software

Registry Entries

  • Key: HKEY_CLASSES_ROOT\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\software\virusresponselab2009
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\avlwarning.warningbho
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\avlwarning.warningbho.1
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\clsid\{a21c8d81-a9c7-46c6-a488-2a32fa0daeb6}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\clsid\{f5734812-e6a1-8833-eca9-949b5b8a88bf}
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\app paths\virusresponselab2009
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{a21c8d81-a9c7-46c6-a488-2a32fa0daeb6}
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\virusresponselab2009
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
  • Value: virusresponselab2009
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\controlset001\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list
  • Value: c:\program files\virusresponselab2009\virusresponselab2009.exe
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list
  • Value: c:\program files\virusresponselab2009\virusresponselab2009.exe
  • Data:
  • Key: HKEY_CURRENT_USER\Software\avrlabs
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\avrlabsWarning.WarningBHO
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\avrlabsWarning.WarningBHO.1
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\CLSID\{D695B871-8020-4041-A6D2-59F922E1B2E2}
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D695B871-8020-4041-A6D2-59F922E1B2E2}
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\avrlabs
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
  • Value: avrlabs
  • Data: "C:\Program Files\avrlabs\avrlabs.exe"
  • Key: HKEY_CURRENT_USER\Software\ViRsLab
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\CLSID\{2B394226-862F-4aa4-AA53-988E24F50841}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\ViRsLabWarning.WarningBHO
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\ViRsLabWarning.WarningBHO.1
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B394226-862F-4aa4-AA53-988E24F50841}
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViRsLab
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
  • Value: SavedLegacySettings
  • Data: 3C, 00, 00, 00, 6E, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 00, 00, 00, 00, 00, 00, C0, 4F, D0, EF, 26, A2, C4, 01, 01, 00, 00, 00, C0, A8, 01, 22, 00, 00, 00, 00, 00, 00, 00, 00
  • Key: HKEY_CURRENT_USER\Software\vrl32
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\CLSID\{4E6615B5-A259-4e55-905F-7F9CE60B379D}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\Interface\{305043E5-F9D9-4B3A-A618-C4D0DA8031CE}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\Interface\{536CBA8A-9DB6-45CF-8D65-F486C49242D5}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\TypeLib\{B3A0AA5C-9FA3-408D-8193-2A948EF51D2D}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\vrl32Warning.WarningBHO
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\vrl32Warning.WarningBHO.1
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\vrl32
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E6615B5-A259-4e55-905F-7F9CE60B379D}
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vrl32
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
  • Value: vrl32
  • Data: "C:\Program Files\vrl32software\vrl32.exe"