Sus/VB-BD

Category: Suspicious Behavior and Files Protection available since:10 Nov 2009 23:52:47 (GMT)
Type: Suspicious file Last Updated:10 Nov 2009 23:52:47 (GMT)

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Sus/VB-BD include:

Example 1

File Information

Size
24K
SHA-1
0ec07ba41e1bc12d266061bb0390cb03ebc71871
MD5
e8c2f608b01c31f1dbf77e689bcac6c1
CRC-32
789f53e0
File type
application/x-ms-dos-executable
First seen
2010-08-24

Example 2

File Information

Size
10K
SHA-1
3ee34778a5d2a025cf0dba7734ff58e4fdff19fa
MD5
1724f4ddebd34b5159eb377ac6238430
CRC-32
89c570c4
File type
application/x-ms-dos-executable
First seen
2010-12-22

Other vendor detection

Trend
PAK_Generic.001

Example 3

File Information

Size
52K
SHA-1
53dde8936111c4dd30a91e76b69d007525bad51d
MD5
168ab915573f59ac9648a6c895be4e7c
CRC-32
968ecad7
File type
application/x-ms-dos-executable
First seen
2011-01-26

Runtime Analysis

Registry Keys Created
  • HKCR\CLSID\{5143B0E9-469A-43DE-A016-96CA7B3BF5C4}
    (Default)
    WebTVHelper2.Window
  • HKCR\TypeLib\{83EBDB28-9ECE-4E33-88E6-393A05065436}\5.1\HELPDIR
    (Default)
    c:\
  • HKCR\TypeLib\{83EBDB28-9ECE-4E33-88E6-393A05065436}\5.1\FLAGS
    (Default)
  • HKCR\Interface\{8473CBDF-AE6C-496F-9715-058A3519F8CC}\ProxyStubClsid
    (Default)
    {00020420-0000-0000-C000-000000000046}
  • HKCR\Interface\{9C9F0CB2-A2CC-4EDA-AC93-561F1C0C8705}\ProxyStubClsid
    (Default)
    {00020420-0000-0000-C000-000000000046}
  • HKCR\Interface\{9C9F0CB2-A2CC-4EDA-AC93-561F1C0C8705}\ProxyStubClsid32
    (Default)
    {00020420-0000-0000-C000-000000000046}
  • HKCR\Interface\{9215CD7C-6968-44D6-8731-468E0277CE66}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\Interface\{9215CD7C-6968-44D6-8731-468E0277CE66}
    (Default)
    Window
  • HKCR\Interface\{9C9F0CB2-A2CC-4EDA-AC93-561F1C0C8705}\TypeLib
    Version
    5.1
  • HKCR\TypeLib\{83EBDB28-9ECE-4E33-88E6-393A05065436}\5.1
    (Default)
    WebTVHelper2
  • HKCR\Interface\{8473CBDF-AE6C-496F-9715-058A3519F8CC}
    (Default)
    Window
  • HKCR\Interface\{9C9F0CB2-A2CC-4EDA-AC93-561F1C0C8705}
    (Default)
    Window
  • HKCR\Interface\{6F44E685-2BB9-499E-AFBC-98249FA87440}\TypeLib
    (Default)
    {83EBDB28-9ECE-4E33-88E6-393A05065436}
  • HKCR\Interface\{6F44E685-2BB9-499E-AFBC-98249FA87440}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\CLSID\{5143B0E9-469A-43DE-A016-96CA7B3BF5C4}\ProgID
    (Default)
    WebTVHelper2.Window
  • HKCR\Interface\{9215CD7C-6968-44D6-8731-468E0277CE66}\Forward
    (Default)
    {6F44E685-2BB9-499E-AFBC-98249FA87440}
  • HKCR\WebTVHelper2.Window
    (Default)
    WebTVHelper2.Window

download Try Sophos products for free
Download now

© 1997 - 2012 Sophos Ltd. All rights reserved. Legal Privacy