Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

codec_setup.exe ~46k

Started by nosirrah, Nov 17 2007 10:16 PM

Please log in to reply

2 replies to this topic

#1 nosirrah

Forum Deity

Administrators
5,402 posts

Location:Northampton, MA USA

Posted 17 November 2007 - 10:16 PM

Found by Fatdcuk , thanks . :angry:

Movie Pages :

http://newvideogalleries.com/hosted/3735/8kBWwlHi1C/

Direct downloads :

http://88.208.19.147/get/download/codec_setup.exe

Bruce Harrison
Vice President of Research

Follow us: Twitter, Become a fan: Facebook

Back to top

#2 nosirrah

Forum Deity

Administrators
5,402 posts

Location:Northampton, MA USA

Posted 18 November 2007 - 08:51 AM

Fallout :

C:\Program Files\*RANDOM*\*RANDOM*.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"*RANDOM*"="rundll32.exe \"C:\\Program Files\\*RANDOM*\\*RANDOM*.dll\",Init"

HJT :

O4 - HKLM\..\Run: [*RANDOM*] rundll32.exe "C:\Program Files\*RANDOM*\*RANDOM*.dll",Init

Now for the good news , the dll has a static MD5 for a period of about 24 hours at a time .

MD5 : FB0865B1E6635ED5E864EFE74FD397E0

Bruce Harrison
Vice President of Research

Follow us: Twitter, Become a fan: Facebook

Back to top

#3 nosirrah

Forum Deity

Administrators
5,402 posts

Location:Northampton, MA USA

Posted 23 November 2007 - 09:33 AM

Fallout :

C:\Program Files\*RANDOM*\*RANDOM*.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"*RANDOM*"="rundll32.exe \"C:\\Program Files\\*RANDOM*\\*RANDOM*.dll\",Init"

HJT :

O4 - HKLM\..\Run: [*RANDOM*] rundll32.exe "C:\Program Files\*RANDOM*\*RANDOM*.dll",Init

MD5 : 61D37AC92C195182AB5E57D9D0E5D217

Bruce Harrison
Vice President of Research

codec_setup.exe ~46k

#1 nosirrah

#2 nosirrah

#3 nosirrah

0 user(s) are reading this topic

Sign In