Corrupting security descriptor-and some changes!
recently, i found some new icones on my desktop, and the same on other computers using Microsoft Windows Vista ultimate Service Pack 2, with a security suite including firewall and other AV engines(trojan,net-worms...), on all the network, i lunched a complete and full scan on all the network(including network cards, and other ressources without OS), the result displayed some worms like(Mabezat.a...) not really dangerous, but the malicious software that is installed on all computers isn't on the list of threats detected by the engine ( i search for description ).
the threat corrupt also security descriptors on some files and on all protected partitions including the system protection restore(restrui.exe).
taskmgr.exe is locked, thats why i know this is a threat, and we can see that when i add a home page, after restarting the home page on Windows internet explorer ( iexplorer.exe) isn't avaliable, and on the application registry the key ( homepage ) cannot be loaded.
i used to check the active protection shield that monitor suspicious changes on BHO and other computer zone like AutoStart keys, and i found some changes that was blocked, but however it was successfully executed.
Thank you for your help.- Tipo Alteradomehdibens sexta-feira, 29 de maio de 2009 20:06
