Jump to content

Malwarebytes

system.exe

Started by Jaxryley, May 02 2009 11:23 AM

2 replies to this topic

#1
Jaxryley
Posted 02 May 2009 - 11:23 AM

    Forum Deity

  • Malware Hunters
  • PipPipPipPipPipPip
  • 6,718 posts
  • Gender:Male
  • Location:West Aussie
  • Interests:Gardening and computers.
astrofonix.com/zui_files/system.exe

Quote

File system.exe received on 05.02.2009 13:18:00 (CET)
Current status: finished
Result: 34/40 (85.00%)
Virus Total
File size: 52224 bytes

#2
B-boy/StyLe/
Posted 03 May 2009 - 12:47 PM

    Elite Member

  • Trusted Advisors
  • PipPipPipPipPip
  • 658 posts
  • Gender:Male
  • Location:Bulgaria
Drops ntos.exe picked by MBAM:

Scan type: Quick Scan
Objects scanned: 59402
Time elapsed: 1 minute(s), 47 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 2
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Backdoor.Bot) -> Data: c:\windows\system32\ntos.exe -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Hijack.UserInit) -> Bad: (C:\Windows\system32\userinit.exe,C:\Windows\system32\ntos.exe,) Good: (userinit.exe) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Windows\System32\ntos.exe (Backdoor.Bot) -> Quarantined and deleted successfully.

Posted Image

#3
Azlan
Posted 04 May 2009 - 01:10 PM

    Advanced Member

  • Honorary Members
  • PipPipPip
  • 111 posts
  • Gender:Male
  • Location:Malaysia
Website blocked by IE8 SmartScreen
Posted Image Posted Image
Back to Newest Rogue Threats · Next Unread Topic →


1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users

  1. Malwarebytes Forum
  2. Research Center
  3. Newest Rogue Threats

Products

About

Partners

Follow Us