Ahiga Posted August 10, 2011 I guess I posted this in the wrong forum. SAS found 11 threats of the Trojan.Mad Code Hook Injector via the Critical Point Scan. Is this a false positive or a real threat. I've read conflicting reports several of which say the MCHINJDRV is needed for security. Should I delete these or keep them? Thanks SUPERAntiSpyware Scan Log Generated 08/09/2011 at 04:13 PM Application Version : 5.0.1108 Core Rules Database Version : 7538 Trace Rules Database Version: 5350 Scan type : Critical Point Scan Total Scan Time : 00:03:02 Operating System Information Windows XP Home Edition 32-bit, Service Pack 3 (Build 5.01.2600) Administrator Memory items scanned : 679 Memory threats detected : 0 Registry items scanned : 34300 Registry threats detected : 11 File items scanned : 4009 File threats detected : 0 Trojan.Mad Code Hook Injector HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV#NextInstance HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\0000 HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\0000#Service HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\0000#Legacy HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\0000#ConfigFlags HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\0000#Class HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\0000#ClassGUID HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\0000#DeviceDesc HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\0000#Capabilities HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\0000\LogConf Share this post Link to post Share on other sites