| X | ProtectingTool | SysRep.exe | "ProtectingTool rogue system error and cleaning utility - not recommended |
| X | ProtejaseuDrive | SysRep.exe | "ProtejaseuDrive rogue system error and cleaning utility - not recommended. A member of the ErrClean family"
|
| X | ProtezioneSoft | SysRep.exe | "ProtezioneSoft |
| X | RecycleSTR | msreg32.exe | "Added by the RBOT-TC WORM!"
|
| X | Remndr | CsRemnd.exe | CasinoOnline foistware
|
| X | ReparateurDeSysteme | SysRep.exe | "ReparateurDeSysteme |
| U | RssReader | RssReader.exe | "RssReader - a free RSS reader able to display any RSS and Atom news feed (XML)"
|
| X | SafeHardDrive | SysRep.exe | "SafeHardDrive rogue system error and cleaning utility - not recommended |
| X | SafePCTool | SysRep.exe | "SafePCTool rogue system error and cleaning utility - not recommended |
| X | SchijfBewaker | SysRep.exe | "SchijfBewaker |
| X | SicherheitsTool | SysRep.exe | "SicherheitsTool |
| X | SolutionReg | SysRep.exe | "SolutionReg rogue system error and cleaning utility - not recommended. A member of the ErrClean family"
|
| X | sre | "rundll32.exe sre.dll | Register" |
| ? | srePostpone | "rundll32.exe [path] srescan.dll | DoSpecialAction" |
| X | StorageProtector | SysRep.exe | "StorageProtector rogue system error and cleaning utility - not recommended |
| X | Svcsys Registry Manager | svcsysreg.exe | "Detected by Kaspersky as the AGENT.CV TROJAN!"
|
| X | syelimS-esreveR-troppuS | [filename] | "Added by the LITBOT.C TROJAN!"
|
| X | Sys Ren | SysRen.exe | "Part of FlashEnhancer adware"
|
| X | SysDepannage | SysRep.exe | "SysDepannage |
| X | SysReg | SysReg.exe | "Added by the CHEKIN TROJAN!"
|
| X | SysReg | SysReg.exe | "SearchSeekFind textual marketing foistware"
|
| X | Sysres | Sysres.exe | "Added by the LOGMOD.A TROJAN!"
|
| X | SysRes | TASKMANAGER.exe | "Added by the ELIPTER.A or ELIPTER.B WORMS!"
|
| X | SysRes | WWE DIVAS.exe | "Added by the ELIPTER.D WORM!"
|
| X | SysRes | IExpIore .exe | "Added by the ELITPER.E WORM!"
|
| X | sysrest32.exe | sysrest32.exe | "Added by the AGENT-GIN TROJAN!"
|
| X | sysrestore32.exe | sysrestore32.exe | "Unknown malware detected by McAfee - see here"
|
| X | SysSearch | Regedit.exe -s sysreg.reg | "Added by the STARTPA-ME TROJAN! Note that regedit.exe is a legitimate Microsoft file and shouldn't be deleted. The ""sysreg.reg"" file is located in %Windir%"
|
| X | System Service | MSREXE.EXE | "Added by the AML TROJAN!"
|
| X | SystemErrorFixer | SysRep.exe | "SystemErrorFixer rogue system error and cleaning utility - not recommended. A member of the ErrClean family"
|
| X | SystemOrdnare | SysRep.exe | "SystemOrdnare |
| X | toolsicuro | SysRep.exe | "ToolSicuro |
| X | UtilisateurSur | SysRep.exe | "UtilisateurSur |
| X | Video Driver | Msregdrv32.exe | "Added by the SPIGOT BACKDOOR!"
|
| X | Virus Remover Profesional | virusremover.exe | "Virus Remover Profesional rogue security software - not recommended |
| X | VirusRemover2008 | VRM2008.exe | "VirusRemover2008 rogue security software - not recommended |
| X | VirusRemover2009 | VRM2009.exe | "VirusRemover2009 rogue security software - not recommended |
| X | VirusRescue | VirusRescue.exe | "VirusRescue rogue security software - not recommended"
|
| X | VirusResponseLab2009 | VirusResponseLab2009.exe | "VirusResponse Lab 2009 rogue security software - not recommended |
| X | Windows Spoolsre Service | spoolsre.exe | "Added by the SDBOT-AAE WORM!"
|
| X | Windows System Drivers | sysretain.exe | "Added by the SLENFBOT.BY WORM!"
|
| X | WindowsReg% update | [random filename].exe | "Added by the RBOT-HH WORM!"
|
| X | WindowsRegistration | [random filename] | "Added by the RBOT-NO WORM!"
|
| X | WindowsRegKey Autoupdate | [random filename] | "Added by a variant of the RBOT WORM!"
|
| X | WindowsRegKey upd4te2d4te | *********.exe [* = random char] | "Added by the RBOT.XQ WORM!"
|
| X | WindowsRegKey update | winupdate.exe | "Added by the RBOT-QJ WORM!"
|
| X | WindowsRegKey update | windns.exe | "Added by the RBOT.IE WORM!"
|
| X | WindowsRegKey update | winupdatexx.exe | "Added by the RBOT.LW WORM!"
|
| X | WindowsRegKey update | [random filename] | "Added by the RBOT.QT WORM!"
|
| X | WindowsRegKey update | svchoosts.exe | "Added by the RBOT.ADB WORM!"
|
| X | WindowsRegKey update | svchostc.exe | "Added by the RBOT.IF WORM!"
|
| X | WindowsRegKey update | wdnupdate.exe | "Added by the SDBOT.QX WORM!"
|
| X | WindowsRegKey update | Windowsup.exe | "Added by the SDBOT.PU WORM!"
|
| X | WindowsRegKey update | WINUPDATES.EXE | "Added by the RBOT-MM WORM!"
|
| X | WindowsRegKey update | rkbuouoxfl.exe | "Added by the RBOT-OO WORM!"
|
| X | WindowsRegKey update | winsys.exe | "Added by the RBOT-JY WORM!"
|
| X | WindowsRegKey update | winupdat32.exe | "Added by the RBOT-AGW WORM!"
|
| X | WindowsRegKey update XP | windexv1.exe | "Added by the RBOT-ABM WORM!"
|
| X | WindowsRegKey%$ update | msi332.exe | "Added by the RBOT-IX WORM!"
|
| X | WindowsRegKey%update | ethernet32m.exe | "Added by the RBOT-EN WORM!"
|
| X | WindowsRegKeys update | winsysi.exe | "Added by the SDBOT.WE WORM!"
|
| X | winlogon | msreg32.exe | "Added by the SDBOT.EO WORM!"
|
| X | WinPCDoctor | SysRep.exe | "WinPCDoctor rogue system error and cleaning utility - not recommended |
| X | Winsock2 driver | sysreq.exe | "Added by the SPYBOT-CC WORM!"
|
| X | WinSP | [path] REGEDIT.EXE -s [path] sysreg.reg | "Added by the STARTPA-ME TROJAN!"
|
| X | {**-**-**-**-**} | mrdsregp.exe | "Zenosearch adware |
| X | {1C-CC-C5-54-ZN} | dwdsregt.exe | "ZenoSearch adware"
|
| X | {2F-FF-F4-4C-ZN} | omdsregk.exe | "ZenoSearch adware"
|
| X | {8C-C4-4A-A4-ZN} | dwdsregt.exe | "ZenoSearch adware"
|
| X | {B7-7D-D0-08-ZN} | dwdsregt.exe | "Added by the AGENT-GBC TROJAN!"
|
