fake antivirus alpha

View previous topic View next topic Go down

Re: fake antivirus alpha

Post by sandy_hagen2001 on Mon Nov 02, 2009 7:14 pm

[2009/10/20 20:59:39 | 00,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdm.tsp
[2009/10/20 20:59:39 | 00,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanui.dll
[2009/10/20 20:59:39 | 00,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\nwifi.sys
[2009/10/20 20:59:39 | 00,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlgpclnt.dll
[2009/10/20 20:59:39 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cipher.exe
[2009/10/20 20:59:38 | 01,702,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2009/10/20 20:59:38 | 00,688,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
[2009/10/20 20:59:38 | 00,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shwebsvc.dll
[2009/10/20 20:59:38 | 00,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskcomp.dll
[2009/10/20 20:59:38 | 00,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasppp.dll
[2009/10/20 20:59:38 | 00,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsprop.dll
[2009/10/20 20:59:37 | 02,153,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\oobefldr.dll
[2009/10/20 20:59:37 | 00,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\softkbd.dll
[2009/10/20 20:59:37 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\l2nacp.dll
[2009/10/20 20:59:37 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dimsroam.dll
[2009/10/20 20:59:36 | 00,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\modemui.dll
[2009/10/20 20:59:36 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\input.dll
[2009/10/20 20:59:36 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscandui.dll
[2009/10/20 20:59:36 | 00,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasmontr.dll
[2009/10/20 20:59:36 | 00,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasmontr.dll
[2009/10/20 20:59:36 | 00,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\btpanui.dll
[2009/10/20 20:59:36 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shsetup.dll
[2009/10/20 20:59:35 | 06,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\chtbrkr.dll
[2009/10/20 20:59:35 | 00,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
[2009/10/20 20:59:34 | 00,542,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
[2009/10/20 20:59:34 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlgpclnt.dll
[2009/10/20 20:59:34 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dataclen.dll
[2009/10/20 20:59:34 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscapi.dll
[2009/10/20 20:59:34 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NcdProp.dll
[2009/10/20 20:59:33 | 00,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2009/10/20 20:59:33 | 00,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll
[2009/10/20 20:59:33 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\credui.dll
[2009/10/20 20:59:33 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\findstr.exe
[2009/10/20 20:59:32 | 00,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpeffects.dll
[2009/10/20 20:59:32 | 00,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll
[2009/10/20 20:59:32 | 00,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstask.dll
[2009/10/20 20:59:32 | 00,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2009/10/20 20:59:32 | 00,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdwcn.dll
[2009/10/20 20:59:32 | 00,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSDMon.dll
[2009/10/20 20:59:32 | 00,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adsmsext.dll
[2009/10/20 20:59:32 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\deskmon.dll
[2009/10/20 20:59:31 | 02,226,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\networkexplorer.dll
[2009/10/20 20:59:31 | 00,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
[2009/10/20 20:59:31 | 00,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpcsvc.dll
[2009/10/20 20:59:31 | 00,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctfui.dll
[2009/10/20 20:59:31 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logagent.exe
[2009/10/20 20:59:31 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cipher.exe
[2009/10/20 20:59:31 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ifmon.dll
[2009/10/20 20:59:31 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\version.dll
[2009/10/20 20:59:30 | 00,946,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMADMOD.DLL
[2009/10/20 20:59:30 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmnet.dll
[2009/10/20 20:59:30 | 00,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InkEd.dll
[2009/10/20 20:59:30 | 00,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mdminst.dll
[2009/10/20 20:59:30 | 00,203,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdwcn.dll
[2009/10/20 20:59:30 | 00,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpresult.exe
[2009/10/20 20:59:30 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll
[2009/10/20 20:59:30 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msimtf.dll
[2009/10/20 20:59:29 | 00,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\thawbrkr.dll
[2009/10/20 20:59:29 | 00,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDMon.dll
[2009/10/20 20:59:29 | 00,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credui.dll
[2009/10/20 20:59:29 | 00,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\softkbd.dll
[2009/10/20 20:59:29 | 00,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logagent.exe
[2009/10/20 20:59:29 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sendmail.dll
[2009/10/20 20:59:29 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasdial.exe
[2009/10/20 20:59:28 | 00,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MediaMetadataHandler.dll
[2009/10/20 20:59:28 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msctfui.dll
[2009/10/20 20:59:27 | 00,403,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MediaMetadataHandler.dll
[2009/10/20 20:59:27 | 00,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAC3ENC.DLL
[2009/10/20 20:59:27 | 00,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dmsynth.dll
[2009/10/20 20:59:27 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\olepro32.dll
[2009/10/20 20:59:27 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rshx32.dll
[2009/10/20 20:59:27 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidusb.sys
[2009/10/20 20:59:26 | 00,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
[2009/10/20 20:59:26 | 00,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax

sandy_hagen2001
Novice
Novice

Status :
Online
Offline

Posts : 31
Joined : 2009-11-01
OS : vista

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by sandy_hagen2001 on Mon Nov 02, 2009 7:15 pm

[2009/10/20 20:59:26 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprapi.dll
[2009/10/20 20:59:26 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscdll.dll
[2009/10/20 20:59:25 | 00,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmdev.dll
[2009/10/20 20:59:25 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll
[2009/10/20 20:59:25 | 00,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiapi.dll
[2009/10/20 20:59:25 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprapi.dll
[2009/10/20 20:59:25 | 00,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\smb.sys
[2009/10/20 20:59:25 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FwRemoteSvr.dll
[2009/10/20 20:59:25 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\deskadp.dll
[2009/10/20 20:59:25 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2009/10/20 20:59:25 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\version.dll
[2009/10/20 20:59:24 | 00,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMADMOD.DLL
[2009/10/20 20:59:24 | 00,116,736 | ---- | C] (Microsoft) -- C:\Windows\SysNative\SMBHelperClass.dll
[2009/10/20 20:59:24 | 00,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdSSDP.dll
[2009/10/20 20:59:24 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthci.dll
[2009/10/20 20:59:24 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshbth.dll
[2009/10/20 20:59:24 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fc.exe
[2009/10/20 20:59:24 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msisip.dll
[2009/10/20 20:59:23 | 00,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdmaud.drv
[2009/10/20 20:59:23 | 00,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpapi.dll
[2009/10/20 20:59:23 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2009/10/20 20:59:23 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdSSDP.dll
[2009/10/20 20:59:22 | 02,247,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkexplorer.dll
[2009/10/20 20:59:22 | 00,291,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapp3hst.dll
[2009/10/20 20:59:22 | 00,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscntfy.dll
[2009/10/20 20:59:22 | 00,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tintlgnt.ime
[2009/10/20 20:59:22 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dmusic.dll
[2009/10/20 20:59:22 | 00,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxg.sys
[2009/10/20 20:59:22 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3cfg.dll
[2009/10/20 20:59:22 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\[You must be registered and logged in to see this link.]
[2009/10/20 20:59:22 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscapi.dll
[2009/10/20 20:59:22 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsCtfMonitor.dll
[2009/10/20 20:59:21 | 00,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpps.dll
[2009/10/20 20:59:21 | 00,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapp3hst.dll
[2009/10/20 20:59:21 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PNPXAssoc.dll
[2009/10/20 20:59:21 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2009/10/20 20:59:21 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\l2nacp.dll
[2009/10/20 20:59:21 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\[You must be registered and logged in to see this link.]
[2009/10/20 20:59:21 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys
[2009/10/20 20:59:21 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msjint40.dll
[2009/10/20 20:59:21 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CHxReadingStringIME.dll
[2009/10/20 20:59:20 | 00,347,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmnet.dll
[2009/10/20 20:59:20 | 00,083,456 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\SMBHelperClass.dll
[2009/10/20 20:59:20 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Storprop.dll
[2009/10/20 20:59:20 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscdll.dll
[2009/10/20 20:59:20 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsdchngr.dll
[2009/10/20 20:59:19 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mydocs.dll
[2009/10/20 20:59:19 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdWCN.dll
[2009/10/20 20:59:19 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdWCN.dll
[2009/10/20 20:59:19 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasdiag.dll
[2009/10/20 20:59:19 | 00,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hbaapi.dll
[2009/10/20 20:59:19 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3cfg.dll
[2009/10/20 20:59:19 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthudtask.exe
[2009/10/20 20:59:19 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasdial.exe
[2009/10/20 20:59:18 | 00,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappcfg.dll
[2009/10/20 20:59:18 | 00,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAC3ENC.DLL
[2009/10/20 20:59:18 | 00,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappcfg.dll
[2009/10/20 20:59:18 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tscupgrd.exe
[2009/10/20 20:59:18 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ipconfig.exe
[2009/10/20 20:59:18 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CHxReadingStringIME.dll
[2009/10/20 20:59:17 | 00,506,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSMPEG2ENC.DLL

sandy_hagen2001
Novice
Novice

Status :
Online
Offline

Posts : 31
Joined : 2009-11-01
OS : vista

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by sandy_hagen2001 on Mon Nov 02, 2009 7:16 pm

[2009/10/20 20:59:17 | 00,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SLLUA.exe
[2009/10/20 20:59:17 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nslookup.exe
[2009/10/20 20:59:17 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tscupgrd.exe
[2009/10/20 20:59:17 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkitemfactory.dll
[2009/10/20 20:59:17 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\slcinst.dll
[2009/10/20 20:59:17 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\networkitemfactory.dll
[2009/10/20 20:59:16 | 00,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappgnui.dll
[2009/10/20 20:59:16 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappgnui.dll
[2009/10/20 20:59:16 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdeploy.dll
[2009/10/20 20:59:16 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slcinst.dll
[2009/10/20 20:59:16 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hbaapi.dll
[2009/10/20 20:59:16 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetup.exe
[2009/10/20 20:59:16 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetup.exe
[2009/10/20 20:59:16 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FwRemoteSvr.dll
[2009/10/20 20:59:16 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msacm32.drv
[2009/10/20 20:59:15 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dfsc.sys
[2009/10/20 20:59:15 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsigd.dll
[2009/10/20 20:59:15 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msacm32.drv
[2009/10/20 20:59:15 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmcico.dll
[2009/10/20 20:59:14 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cbsra.exe
[2009/10/20 20:59:14 | 00,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
[2009/10/20 20:59:14 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpupdate.exe
[2009/10/20 20:59:13 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsilog.dll
[2009/10/20 20:59:12 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vss_ps.dll
[2009/10/20 20:59:12 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbcconf.dll
[2009/10/20 20:59:12 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthudtask.exe
[2009/10/20 20:59:12 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NcdProp.dll
[2009/10/20 20:59:12 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vdmdbg.dll
[2009/10/20 20:59:12 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetppui.dll
[2009/10/20 20:59:11 | 00,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpps.dll
[2009/10/20 20:59:11 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2009/10/20 20:59:11 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcconf.dll
[2009/10/20 20:59:11 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winrnr.dll
[2009/10/20 20:59:11 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys
[2009/10/20 20:59:11 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\slwga.dll
[2009/10/20 20:59:10 | 00,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cdrom.sys
[2009/10/20 20:59:10 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbohci.sys
[2009/10/20 20:59:10 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\midimap.dll
[2009/10/20 20:59:10 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\midimap.dll
[2009/10/20 20:59:08 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2009/10/20 20:59:07 | 00,068,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\stream.sys
[2009/10/20 20:59:07 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\raspppoe.sys
[2009/10/20 20:59:07 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2009/10/20 20:59:04 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\f3ahvoas.dll
[2009/10/20 20:59:04 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\f3ahvoas.dll
[2009/10/20 20:59:04 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msimsg.dll
[2009/10/20 20:59:04 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msimsg.dll
[2009/10/20 20:58:38 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdscore.dll
[2009/10/20 20:58:21 | 00,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll
[2009/10/20 19:19:31 | 00,936,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmiEngine.dll
[2009/10/20 19:19:22 | 00,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdscore.dll
[2009/10/20 19:19:22 | 00,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PkgMgr.exe
[2009/10/20 19:18:58 | 00,315,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll
[2009/10/13 18:26:29 | 05,940,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtml.dll
[2009/10/13 18:26:27 | 09,236,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtml.dll
[2009/10/13 18:26:26 | 12,461,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieframe.dll
[2009/10/13 18:26:25 | 11,069,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieframe.dll
[2009/10/13 18:26:24 | 02,334,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2009/10/13 18:26:24 | 01,985,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iertutil.dll
[2009/10/13 18:26:23 | 01,484,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\urlmon.dll
[2009/10/13 18:26:23 | 01,208,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\urlmon.dll
[2009/10/13 18:26:23 | 00,916,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wininet.dll
[2009/10/13 18:26:22 | 01,147,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wininet.dll
[2009/10/13 18:26:22 | 00,700,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll

sandy_hagen2001
Novice
Novice

Status :
Online
Offline

Posts : 31
Joined : 2009-11-01
OS : vista

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by sandy_hagen2001 on Mon Nov 02, 2009 7:16 pm

[2009/10/13 18:26:22 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2009/10/13 18:26:22 | 00,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iedkcs32.dll
[2009/10/13 18:26:22 | 00,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iedkcs32.dll
[2009/10/13 18:26:22 | 00,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2009/10/13 18:26:22 | 00,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2009/10/13 18:26:21 | 01,538,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2009/10/13 18:26:21 | 01,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2009/10/13 18:26:21 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2009/10/13 18:26:21 | 00,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2009/10/13 18:26:21 | 00,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2009/10/13 18:26:20 | 00,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2009/10/13 18:26:20 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2009/10/13 18:26:20 | 00,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2009/10/13 18:26:20 | 00,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2009/10/13 18:26:20 | 00,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2009/10/13 18:26:20 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedsbs.dll
[2009/10/13 18:26:20 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2009/10/13 18:26:20 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedsbs.dll
[2009/10/13 18:26:20 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jsproxy.dll
[2009/10/13 18:26:20 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2009/10/13 18:26:19 | 01,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtml.tlb
[2009/10/13 18:26:19 | 01,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtml.tlb
[2009/10/13 18:26:19 | 00,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2009/10/13 18:26:19 | 00,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2009/10/13 18:26:19 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2009/10/13 18:26:19 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2009/10/13 18:26:19 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2009/10/13 18:26:19 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jsproxy.dll
[2009/10/13 18:26:19 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2009/10/13 18:22:33 | 04,698,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2009/10/13 18:19:08 | 00,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMSPDMOD.DLL
[2009/10/13 18:19:08 | 00,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMSPDMOD.DLL
[2009/10/13 18:13:22 | 00,269,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msv1_0.dll
[2009/10/13 18:13:22 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msv1_0.dll
[2009/10/13 18:13:03 | 00,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\srv2.sys
[2009/10/13 18:12:59 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2009/10/13 18:12:58 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msasn1.dll

========== Files - Modified Within 30 Days ==========

[2009/11/02 13:46:24 | 02,097,152 | -HS- | M] () -- C:\Users\Dennis\ntuser.dat
[2009/11/02 13:45:58 | 00,528,384 | ---- | M] (OldTimer Tools) -- C:\Users\Dennis\Desktop\OTL.exe
[2009/11/02 13:38:22 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/11/02 12:38:16 | 00,003,216 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-

601632D005A0
[2009/11/02 12:38:16 | 00,003,216 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-

601632D005A0
[2009/11/02 12:19:20 | 00,000,436 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{EB86D9EB-393E-4B73-98EB-F65CA92AE16C}.job
[2009/11/01 22:22:42 | 00,000,848 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/11/01 19:17:12 | 00,000,238 | ---- | M] () -- C:\Windows\tasks\AlphaAV.job
[2009/11/01 19:12:28 | 00,595,684 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2009/11/01 19:12:28 | 00,101,350 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2009/11/01 19:12:27 | 00,690,960 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2009/11/01 19:04:45 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/11/01 19:04:18 | 40,242,62656 | -HS- | M] () -- C:\hiberfil.sys
[2009/11/01 17:56:55 | 00,524,288 | -HS- | M] () -- C:\Users\Dennis\ntuser.dat{c730b2a1-8883-11de-a106-

00235a2fe768}.TMContainer00000000000000000001.regtrans-ms
[2009/11/01 17:56:55 | 00,065,536 | -HS- | M] () -- C:\Users\Dennis\ntuser.dat{c730b2a1-8883-11de-a106-00235a2fe768}.TM.blf
[2009/11/01 17:35:30 | 00,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2009/11/01 17:34:34 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2009/11/01 17:34:20 | 04,698,937 | -H-- | M] () -- C:\Users\Dennis\AppData\Local\IconCache.db
[2009/10/31 22:52:39 | 00,000,211 | ---- | M] () -- C:\Users\Dennis\Desktop\american greetings.url
[2009/10/30 17:05:24 | 00,355,328 | ---- | M] () -- C:\Windows\SysWow64\AdvancedIEupdate.dll
[2009/10/29 07:07:51 | 00,075,280 | ---- | M] () -- C:\Users\Dennis\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/10/29 02:21:31 | 00,304,824 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2009/10/28 07:20:44 | 00,046,096 | ---- | M] () -- C:\Users\Dennis\DSC00902.JPG
[2009/10/28 07:20:44 | 00,045,253 | ---- | M] () -- C:\Users\Dennis\DSC00898.JPG
[2009/10/28 07:20:44 | 00,037,068 | ---- | M] () -- C:\Users\Dennis\DSC00903.JPG
[2009/10/28 07:20:44 | 00,029,724 | ---- | M] () -- C:\Users\Dennis\DSC00905.JPG
[2009/10/28 07:20:44 | 00,028,286 | ---- | M] () -- C:\Users\Dennis\DSC00904.JPG
[2009/10/28 07:20:44 | 00,028,126 | ---- | M] () -- C:\Users\Dennis\DSC00901.JPG
[2009/10/28 07:20:43 | 00,057,015 | ---- | M] () -- C:\Users\Dennis\DSC00906.JPG
[2009/10/28 07:20:43 | 00,050,798 | ---- | M] () -- C:\Users\Dennis\DSC00907.JPG
[2009/10/28 07:20:43 | 00,038,151 | ---- | M] () -- C:\Users\Dennis\DSC00911.JPG
[2009/10/28 07:20:43 | 00,037,614 | ---- | M] () -- C:\Users\Dennis\DSC00915.JPG
[2009/10/28 07:20:43 | 00,037,363 | ---- | M] () -- C:\Users\Dennis\DSC00910.JPG
[2009/10/28 07:20:43 | 00,037,234 | ---- | M] () -- C:\Users\Dennis\DSC00913.JPG
[2009/10/28 07:20:43 | 00,035,327 | ---- | M] () -- C:\Users\Dennis\DSC00908.JPG
[2009/10/28 07:20:43 | 00,035,299 | ---- | M] () -- C:\Users\Dennis\DSC00914.JPG
[2009/10/28 07:20:43 | 00,034,882 | ---- | M] () -- C:\Users\Dennis\DSC00912.JPG
[2009/10/28 07:20:43 | 00,033,308 | ---- | M] () -- C:\Users\Dennis\DSC00909.JPG
[2009/10/28 07:20:42 | 00,056,092 | ---- | M] () -- C:\Users\Dennis\DSC00918.JPG
[2009/10/28 07:20:42 | 00,049,161 | ---- | M] () -- C:\Users\Dennis\DSC00923.JPG
[2009/10/28 07:20:42 | 00,045,508 | ---- | M] () -- C:\Users\Dennis\DSC00917.JPG
[2009/10/28 07:20:42 | 00,042,542 | ---- | M] () -- C:\Users\Dennis\DSC00916.JPG
[2009/10/28 07:20:42 | 00,040,247 | ---- | M] () -- C:\Users\Dennis\DSC00925.JPG
[2009/10/28 07:20:42 | 00,036,150 | ---- | M] () -- C:\Users\Dennis\DSC00922.JPG
[2009/10/28 07:20:42 | 00,035,053 | ---- | M] () -- C:\Users\Dennis\DSC00919.JPG
[2009/10/28 07:20:41 | 00,054,814 | ---- | M] () -- C:\Users\Dennis\DSC00931.JPG
[2009/10/28 07:20:41 | 00,053,758 | ---- | M] () -- C:\Users\Dennis\DSC00932.JPG
[2009/10/28 07:20:41 | 00,046,494 | ---- | M] () -- C:\Users\Dennis\DSC00929.JPG
[2009/10/28 07:20:41 | 00,043,682 | ---- | M] () -- C:\Users\Dennis\DSC00927.JPG
[2009/10/28 07:20:41 | 00,032,141 | ---- | M] () -- C:\Users\Dennis\DSC00926.JPG
[2009/10/28 07:20:40 | 00,054,176 | ---- | M] () -- C:\Users\Dennis\DSC00935.JPG
[2009/10/28 07:20:40 | 00,051,266 | ---- | M] () -- C:\Users\Dennis\DSC00944.JPG
[2009/10/28 07:20:40 | 00,050,390 | ---- | M] () -- C:\Users\Dennis\DSC00934.JPG
[2009/10/28 07:20:40 | 00,047,481 | ---- | M] () -- C:\Users\Dennis\DSC00947.JPG
[2009/10/28 07:20:40 | 00,047,408 | ---- | M] () -- C:\Users\Dennis\DSC00960.JPG
[2009/10/28 07:20:40 | 00,045,181 | ---- | M] () -- C:\Users\Dennis\DSC00943.JPG
[2009/10/28 07:20:40 | 00,044,893 | ---- | M] () -- C:\Users\Dennis\DSC00948.JPG
[2009/10/28 07:20:40 | 00,042,489 | ---- | M] () -- C:\Users\Dennis\DSC00950.JPG
[2009/10/28 07:20:40 | 00,042,356 | ---- | M] () -- C:\Users\Dennis\DSC00959.JPG
[2009/10/28 07:20:40 | 00,042,286 | ---- | M] () -- C:\Users\Dennis\DSC00951.JPG
[2009/10/28 07:20:40 | 00,041,809 | ---- | M] () -- C:\Users\Dennis\DSC00946.JPG
[2009/10/28 07:20:40 | 00,039,168 | ---- | M] () -- C:\Users\Dennis\DSC00940.JPG
[2009/10/28 07:20:40 | 00,037,363 | ---- | M] () -- C:\Users\Dennis\DSC00956.JPG
[2009/10/28 07:20:39 | 00,045,967 | ---- | M] () -- C:\Users\Dennis\DSC00965.JPG
[2009/10/28 07:20:39 | 00,044,271 | ---- | M] () -- C:\Users\Dennis\DSC00969.JPG
[2009/10/28 07:20:39 | 00,043,966 | ---- | M] () -- C:\Users\Dennis\DSC00963.JPG
[2009/10/28 07:20:39 | 00,043,754 | ---- | M] () -- C:\Users\Dennis\DSC00967.JPG
[2009/10/28 07:20:39 | 00,043,216 | ---- | M] () -- C:\Users\Dennis\DSC00961.JPG
[2009/10/28 07:20:39 | 00,041,327 | ---- | M] () -- C:\Users\Dennis\DSC00968.JPG
[2009/10/28 07:20:39 | 00,039,684 | ---- | M] () -- C:\Users\Dennis\DSC00962.JPG
[2009/10/28 07:20:39 | 00,035,880 | ---- | M] () -- C:\Users\Dennis\DSC00964.JPG
[2009/10/28 07:20:39 | 00,032,901 | ---- | M] () -- C:\Users\Dennis\DSC00966.JPG
[2009/10/27 12:53:14 | 00,524,288 | -HS- | M] () -- C:\ntuser.dat{fa28384c-c174-11de-a6ce-

00235a2fe768}.TMContainer00000000000000000002.regtrans-ms
[2009/10/27 12:53:14 | 00,524,288 | -HS- | M] () -- C:\ntuser.dat{fa28384c-c174-11de-a6ce-

00235a2fe768}.TMContainer00000000000000000001.regtrans-ms
[2009/10/27 12:53:14 | 00,065,536 | -HS- | M] () -- C:\ntuser.dat{fa28384c-c174-11de-a6ce-00235a2fe768}.TM.blf
[2009/10/27 12:53:13 | 00,262,144 | ---- | M] () -- C:\ntuser.dat
[2009/10/25 13:06:38 | 00,001,699 | ---- | M] () -- C:\Users\Dennis\Desktop\Notepad.lnk
[2009/10/25 13:06:29 | 00,001,875 | ---- | M] () -- C:\Users\Dennis\Desktop\Wordpad.lnk
[2009/10/24 23:06:02 | 00,000,782 | ---- | M] () -- C:\Users\Public\Desktop\Tux Paint.lnk
[2009/10/13 06:39:04 | 00,000,338 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForDennis.job
[2009/10/08 18:20:21 | 00,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\dxgkrnl.sys.mui
[2009/10/08 16:08:04 | 00,736,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UIAutomationCore.dll
[2009/10/08 16:08:01 | 00,555,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAutomationCore.dll
[2009/10/08 16:08:01 | 00,234,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\oleacc.dll
[2009/10/08 16:07:59 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\oleaccrc.dll
[2009/10/08 16:07:58 | 00,315,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2009/10/08 16:07:54 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\oleaccrc.dll

========== Files Created - No Company Name ==========

[2009/11/01 22:22:42 | 00,000,848 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/11/01 17:34:34 | 00,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2009/10/30 17:05:26 | 00,000,238 | ---- | C] () -- C:\Windows\tasks\AlphaAV.job
[2009/10/30 17:05:23 | 00,355,328 | ---- | C] () -- C:\Windows\SysWow64\AdvancedIEupdate.dll
[2009/10/28 04:17:58 | 00,057,015 | ---- | C] () -- C:\Users\Dennis\DSC00906.JPG
[2009/10/28 04:17:58 | 00,050,798 | ---- | C] () -- C:\Users\Dennis\DSC00907.JPG
[2009/10/28 04:17:58 | 00,046,096 | ---- | C] () -- C:\Users\Dennis\DSC00902.JPG
[2009/10/28 04:17:58 | 00,045,253 | ---- | C] () -- C:\Users\Dennis\DSC00898.JPG
[2009/10/28 04:17:58 | 00,037,068 | ---- | C] () -- C:\Users\Dennis\DSC00903.JPG
[2009/10/28 04:17:58 | 00,035,327 | ---- | C] () -- C:\Users\Dennis\DSC00908.JPG
[2009/10/28 04:17:58 | 00,029,724 | ---- | C] () -- C:\Users\Dennis\DSC00905.JPG
[2009/10/28 04:17:58 | 00,028,286 | ---- | C] () -- C:\Users\Dennis\DSC00904.JPG
[2009/10/28 04:17:58 | 00,028,126 | ---- | C] () -- C:\Users\Dennis\DSC00901.JPG
[2009/10/28 04:17:56 | 00,056,092 | ---- | C] () -- C:\Users\Dennis\DSC00918.JPG
[2009/10/28 04:17:56 | 00,045,508 | ---- | C] () -- C:\Users\Dennis\DSC00917.JPG
[2009/10/28 04:17:56 | 00,042,542 | ---- | C] () -- C:\Users\Dennis\DSC00916.JPG
[2009/10/28 04:17:56 | 00,038,151 | ---- | C] () -- C:\Users\Dennis\DSC00911.JPG
[2009/10/28 04:17:56 | 00,037,614 | ---- | C] () -- C:\Users\Dennis\DSC00915.JPG
[2009/10/28 04:17:56 | 00,037,363 | ---- | C] () -- C:\Users\Dennis\DSC00910.JPG
[2009/10/28 04:17:56 | 00,037,234 | ---- | C] () -- C:\Users\Dennis\DSC00913.JPG
[2009/10/28 04:17:56 | 00,035,299 | ---- | C] () -- C:\Users\Dennis\DSC00914.JPG
[2009/10/28 04:17:56 | 00,034,882 | ---- | C] () -- C:\Users\Dennis\DSC00912.JPG
[2009/10/28 04:17:56 | 00,033,308 | ---- | C] () -- C:\Users\Dennis\DSC00909.JPG
[2009/10/28 04:17:54 | 00,049,161 | ---- | C] () -- C:\Users\Dennis\DSC00923.JPG
[2009/10/28 04:17:54 | 00,046,494 | ---- | C] () -- C:\Users\Dennis\DSC00929.JPG
[2009/10/28 04:17:54 | 00,043,682 | ---- | C] () -- C:\Users\Dennis\DSC00927.JPG
[2009/10/28 04:17:54 | 00,040,247 | ---- | C] () -- C:\Users\Dennis\DSC00925.JPG
[2009/10/28 04:17:54 | 00,036,150 | ---- | C] () -- C:\Users\Dennis\DSC00922.JPG
[2009/10/28 04:17:54 | 00,035,053 | ---- | C] () -- C:\Users\Dennis\DSC00919.JPG
[2009/10/28 04:17:54 | 00,032,141 | ---- | C] () -- C:\Users\Dennis\DSC00926.JPG
[2009/10/28 04:17:52 | 00,054,814 | ---- | C] () -- C:\Users\Dennis\DSC00931.JPG
[2009/10/28 04:17:52 | 00,054,176 | ---- | C] () -- C:\Users\Dennis\DSC00935.JPG
[2009/10/28 04:17:52 | 00,053,758 | ---- | C] () -- C:\Users\Dennis\DSC00932.JPG
[2009/10/28 04:17:52 | 00,051,266 | ---- | C] () -- C:\Users\Dennis\DSC00944.JPG
[2009/10/28 04:17:52 | 00,050,390 | ---- | C] () -- C:\Users\Dennis\DSC00934.JPG
[2009/10/28 04:17:52 | 00,045,181 | ---- | C] () -- C:\Users\Dennis\DSC00943.JPG
[2009/10/28 04:17:52 | 00,041,809 | ---- | C] () -- C:\Users\Dennis\DSC00946.JPG
[2009/10/28 04:17:52 | 00,039,168 | ---- | C] () -- C:\Users\Dennis\DSC00940.JPG
[2009/10/28 04:17:50 | 00,047,481 | ---- | C] () -- C:\Users\Dennis\DSC00947.JPG
[2009/10/28 04:17:50 | 00,047,408 | ---- | C] () -- C:\Users\Dennis\DSC00960.JPG
[2009/10/28 04:17:50 | 00,044,893 | ---- | C] () -- C:\Users\Dennis\DSC00948.JPG
[2009/10/28 04:17:50 | 00,043,216 | ---- | C] () -- C:\Users\Dennis\DSC00961.JPG
[2009/10/28 04:17:50 | 00,042,489 | ---- | C] () -- C:\Users\Dennis\DSC00950.JPG
[2009/10/28 04:17:50 | 00,042,356 | ---- | C] () -- C:\Users\Dennis\DSC00959.JPG
[2009/10/28 04:17:50 | 00,042,286 | ---- | C] () -- C:\Users\Dennis\DSC00951.JPG
[2009/10/28 04:17:50 | 00,039,684 | ---- | C] () -- C:\Users\Dennis\DSC00962.JPG
[2009/10/28 04:17:50 | 00,037,363 | ---- | C] () -- C:\Users\Dennis\DSC00956.JPG
[2009/10/28 04:17:48 | 00,045,967 | ---- | C] () -- C:\Users\Dennis\DSC00965.JPG
[2009/10/28 04:17:48 | 00,044,271 | ---- | C] () -- C:\Users\Dennis\DSC00969.JPG
[2009/10/28 04:17:48 | 00,043,966 | ---- | C] () -- C:\Users\Dennis\DSC00963.JPG
[2009/10/28 04:17:48 | 00,043,754 | ---- | C] () -- C:\Users\Dennis\DSC00967.JPG
[2009/10/28 04:17:48 | 00,041,327 | ---- | C] () -- C:\Users\Dennis\DSC00968.JPG
[2009/10/28 04:17:48 | 00,035,880 | ---- | C] () -- C:\Users\Dennis\DSC00964.JPG
[2009/10/28 04:17:48 | 00,032,901 | ---- | C] () -- C:\Users\Dennis\DSC00966.JPG
[2009/10/27 12:53:13 | 00,524,288 | -HS- | C] () -- C:\ntuser.dat{fa28384c-c174-11de-a6ce-

00235a2fe768}.TMContainer00000000000000000002.regtrans-ms
[2009/10/27 12:53:13 | 00,524,288 | -HS- | C] () -- C:\ntuser.dat{fa28384c-c174-11de-a6ce-

00235a2fe768}.TMContainer00000000000000000001.regtrans-ms
[2009/10/27 12:53:13 | 00,262,144 | ---- | C] () -- C:\ntuser.dat
[2009/10/27 12:53:13 | 00,065,536 | -HS- | C] () -- C:\ntuser.dat{fa28384c-c174-11de-a6ce-00235a2fe768}.TM.blf
[2009/10/25 13:06:38 | 00,001,699 | ---- | C] () -- C:\Users\Dennis\Desktop\Notepad.lnk
[2009/10/25 13:06:29 | 00,001,875 | ---- | C] () -- C:\Users\Dennis\Desktop\Wordpad.lnk
[2009/10/24 23:06:02 | 00,000,782 | ---- | C] () -- C:\Users\Public\Desktop\Tux Paint.lnk
[2009/10/20 21:02:29 | 00,121,856 | ---- | C] () -- C:\Windows\SysNative\EhStorAuthn.dll
[2009/10/20 21:02:29 | 00,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2009/10/20 21:02:08 | 00,262,552 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2009/10/20 21:01:37 | 00,471,992 | ---- | C] () -- C:\Windows\SysNative\dot3.tmf
[2009/10/20 21:01:34 | 00,700,507 | ---- | C] () -- C:\Windows\SysNative\eaphost.tmf
[2009/10/20 21:01:30 | 00,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
[2009/10/20 21:01:30 | 00,107,612 | ---- | C] () -- C:\Windows\SysNative\StructuredQuerySchema.bin
[2009/10/20 21:01:25 | 03,662,128 | ---- | C] () -- C:\Windows\SysWow64\locale.nls
[2009/10/20 21:01:25 | 03,662,128 | ---- | C] () -- C:\Windows\SysNative\locale.nls
[2009/10/20 21:01:24 | 00,395,723 | ---- | C] () -- C:\Windows\SysNative\onex.tmf
[2009/10/20 21:00:44 | 00,207,968 | ---- | C] () -- C:\Windows\SysNative\WFP.TMF
[2009/10/20 21:00:40 | 00,092,918 | ---- | C] () -- C:\Windows\SysWow64\slmgr.vbs
[2009/10/20 21:00:40 | 00,092,918 | ---- | C] () -- C:\Windows\SysNative\slmgr.vbs
[2009/10/20 21:00:35 | 00,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/10/20 20:59:51 | 00,009,239 | ---- | C] () -- C:\Windows\SysWow64\spcinstrumentation.man
[2009/10/20 20:59:51 | 00,009,239 | ---- | C] () -- C:\Windows\SysNative\spcinstrumentation.man
[2009/10/20 20:59:10 | 00,009,212 | ---- | C] () -- C:\Windows\SysWow64\RacUR.xml
[2009/10/20 20:59:10 | 00,009,212 | ---- | C] () -- C:\Windows\SysNative\RacUR.xml
[2009/04/12 09:54:57 | 00,003,584 | ---- | C] () -- C:\Users\Dennis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/04/01 18:48:39 | 00,003,345 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2009/03/31 18:33:59 | 04,698,937 | -H-- | C] () -- C:\Users\Dennis\AppData\Local\IconCache.db
[2009/03/31 18:04:21 | 00,046,974 | ---- | C] () -- C:\ProgramData\HPWALog.txt
[2009/03/31 18:04:17 | 00,000,000 | ---- | C] () -- C:\Users\Dennis\AppData\Local\QSwitch.txt
[2009/03/31 18:04:17 | 00,000,000 | ---- | C] () -- C:\Users\Dennis\AppData\Local\DSwitch.txt
[2009/03/31 18:04:17 | 00,000,000 | ---- | C] () -- C:\Users\Dennis\AppData\Local\AtStart.txt
[2009/03/31 18:02:10 | 00,075,280 | ---- | C] () -- C:\Users\Dennis\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/02/26 09:09:40 | 00,000,105 | ---- | C] () -- C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log
[2009/02/26 09:09:28 | 00,000,032 | ---- | C] () -- C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
[2009/02/26 09:08:44 | 00,000,032 | ---- | C] () -- C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
[2009/02/26 09:06:57 | 00,000,032 | ---- | C] () -- C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
[2009/02/26 09:04:15 | 00,000,032 | ---- | C] () -- C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
[2009/01/20 00:45:49 | 00,000,109 | ---- | C] () -- C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
[2009/01/20 00:36:56 | 00,000,110 | ---- | C] () -- C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
[2009/01/20 00:34:18 | 00,000,105 | ---- | C] () -- C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
[2009/01/20 00:32:19 | 00,000,107 | ---- | C] () -- C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
[2008/01/20 21:50:05 | 00,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2006/11/02 10:25:49 | 00,000,174 | -HS- | C] () -- C:\Program Files (x86)\desktop.ini
[2006/11/02 10:07:25 | 00,037,665 | ---- | C] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont
[2006/11/02 10:07:25 | 00,029,779 | ---- | C] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2006/11/02 10:07:25 | 00,026,489 | ---- | C] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2006/11/02 10:07:25 | 00,026,040 | ---- | C] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2006/11/02 07:34:27 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 07:34:27 | 00,000,179 | ---- | C] () -- C:\Windows\win.ini
< End of report >

sandy_hagen2001
Novice
Novice

Status :
Online
Offline

Posts : 31
Joined : 2009-11-01
OS : vista

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by Belahzur on Mon Nov 02, 2009 9:23 pm

Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose CopyCrying


    :files
    C:\Program Files (x86)\Common Files\AlphaAVUninstall
    C:\Program Files (x86)\AlphaAV
    C:\Windows\tasks\AlphaAV.job


  • Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Status :
Online
Offline

Posts : 34916
Joined : 2008-08-03
Gender : Male
OS : XP SP3 Media Centre

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by sandy_hagen2001 on Tue Nov 03, 2009 5:44 pm

Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!

OTL by OldTimer - Version 3.1.3.0 log created on 11032009_124345

sandy_hagen2001
Novice
Novice

Status :
Online
Offline

Posts : 31
Joined : 2009-11-01
OS : vista

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by sandy_hagen2001 on Tue Nov 03, 2009 5:47 pm

there were no such files so I just copied and pasted from your post but there is a file called C:\Program Files (x86)\AlphaAV\alpha.exe
actually there are 3 of those.

sandy_hagen2001
Novice
Novice

Status :
Online
Offline

Posts : 31
Joined : 2009-11-01
OS : vista

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by Belahzur on Tue Nov 03, 2009 8:47 pm

Hello.
You missed :files


:files
C:\Program Files (x86)\Common Files\AlphaAVUninstall
C:\Program Files (x86)\AlphaAV
C:\Windows\tasks\AlphaAV.job


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Status :
Online
Offline

Posts : 34916
Joined : 2008-08-03
Gender : Male
OS : XP SP3 Media Centre

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by sandy_hagen2001 on Thu Nov 05, 2009 3:37 am

========== FILES ==========
C:\Program Files (x86)\Common Files\AlphaAVUninstall folder moved successfully.
C:\Program Files (x86)\AlphaAV folder moved successfully.
File\Folder C:\Windows\tasks\AlphaAV.job not found.

OTL by OldTimer - Version 3.1.3.0 log created on 11042009_223704

sandy_hagen2001
Novice
Novice

Status :
Online
Offline

Posts : 31
Joined : 2009-11-01
OS : vista

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by Belahzur on Thu Nov 05, 2009 9:47 pm

Hello.
How is it now?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Status :
Online
Offline

Posts : 34916
Joined : 2008-08-03
Gender : Male
OS : XP SP3 Media Centre

View user profile

Back to top Go down

Re: fake antivirus alpha

Post by sandy_hagen2001 on Sat Nov 07, 2009 4:38 pm

It seems to be gone.
Thanks you very much!!! Thank You!

sandy_hagen2001
Novice
Novice

Status :
Online
Offline

Posts : 31
Joined : 2009-11-01
OS : vista

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum