spyware protect 2009 - ericshin

View previous topic View next topic Go down

Re: spyware protect 2009 - ericshin

Post by ericshin on Sun 8 Mar - 7:06

+ 2001-08-18 12:00:00 13,568 -c----w c:\windows\$NtServicePackUninstall$\asyncmac.sys
- 2001-08-18 12:00:00 22,528 -c----w c:\windows\$NtServicePackUninstall$\at.exe
+ 2002-08-28 14:41:20 22,528 -c----w c:\windows\$NtServicePackUninstall$\at.exe
- 2001-08-18 12:00:00 86,656 -c----w c:\windows\$NtServicePackUninstall$\atapi.sys
+ 2002-08-28 12:27:50 86,912 -c----w c:\windows\$NtServicePackUninstall$\atapi.sys
+ 2002-08-28 14:40:48 377,984 -c----w c:\windows\$NtServicePackUninstall$\ati2dvaa.dll
+ 2002-08-28 14:40:48 202,496 -c----w c:\windows\$NtServicePackUninstall$\ati2dvag.dll
+ 2002-08-28 10:16:18 327,040 -c----w c:\windows\$NtServicePackUninstall$\ati2mtaa.sys
+ 2002-08-28 10:16:16 450,176 -c----w c:\windows\$NtServicePackUninstall$\ati2mtag.sys
+ 2002-08-28 14:40:48 844,675 -c----w c:\windows\$NtServicePackUninstall$\ati3d1ag.dll
+ 2002-08-28 14:40:50 921,475 -c----w c:\windows\$NtServicePackUninstall$\ati3d2ag.dll
+ 2002-08-28 10:16:24 56,591 -c----w c:\windows\$NtServicePackUninstall$\atinbtxx.sys
+ 2002-08-28 10:16:24 11,615 -c----w c:\windows\$NtServicePackUninstall$\atinmdxx.sys
+ 2002-08-28 10:16:26 12,047 -c----w c:\windows\$NtServicePackUninstall$\atinpdxx.sys
+ 2002-08-28 10:16:26 30,671 -c----w c:\windows\$NtServicePackUninstall$\atinraxx.sys
+ 2002-08-28 10:16:26 63,663 -c----w c:\windows\$NtServicePackUninstall$\atinrvxx.sys
+ 2002-08-28 10:16:28 26,367 -c----w c:\windows\$NtServicePackUninstall$\atinsnxx.sys
+ 2002-08-28 10:16:28 21,343 -c----w c:\windows\$NtServicePackUninstall$\atinttxx.sys
+ 2002-08-28 10:16:28 36,463 -c----w c:\windows\$NtServicePackUninstall$\atintuxx.sys
+ 2002-08-28 10:16:30 29,455 -c----w c:\windows\$NtServicePackUninstall$\atinxbxx.sys
+ 2002-08-28 10:16:30 34,735 -c----w c:\windows\$NtServicePackUninstall$\atinxsxx.sys
- 2001-08-18 12:00:00 74,802 -c----w c:\windows\$NtServicePackUninstall$\atl.dll
+ 2002-08-28 14:40:50 74,810 -c----w c:\windows\$NtServicePackUninstall$\atl.dll
+ 2001-08-18 12:00:00 10,240 -c----w c:\windows\$NtServicePackUninstall$\atmadm.exe
+ 2001-08-18 12:00:00 57,216 -c----w c:\windows\$NtServicePackUninstall$\atmarpc.sys
+ 2001-08-18 12:00:00 272,768 -c----w c:\windows\$NtServicePackUninstall$\atmfd.dll
- 2001-08-18 12:00:00 53,888 -c----w c:\windows\$NtServicePackUninstall$\atmlane.sys
+ 2002-08-28 12:33:36 53,888 -c----w c:\windows\$NtServicePackUninstall$\atmlane.sys
+ 2001-08-18 12:00:00 27,136 -c----w c:\windows\$NtServicePackUninstall$\atmlib.dll
+ 2001-08-18 12:00:00 11,264 -c----w c:\windows\$NtServicePackUninstall$\attrib.exe
- 2001-08-18 12:00:00 37,888 -c----w c:\windows\$NtServicePackUninstall$\audiosrv.dll
+ 2002-08-28 14:40:50 38,912 -c----w c:\windows\$NtServicePackUninstall$\audiosrv.dll
- 2001-05-22 08:15:08 20,540 -c----w c:\windows\$NtServicePackUninstall$\author.dll
+ 2002-08-28 14:40:50 20,540 -c----w c:\windows\$NtServicePackUninstall$\author.dll
- 2001-05-22 08:15:08 16,439 -c----w c:\windows\$NtServicePackUninstall$\author.exe
+ 2002-08-28 14:41:20 16,439 -c----w c:\windows\$NtServicePackUninstall$\author.exe
+ 2001-08-18 12:00:00 51,200 -c----w c:\windows\$NtServicePackUninstall$\authz.dll
- 2001-08-18 12:00:00 565,760 -c----w c:\windows\$NtServicePackUninstall$\autochk.exe
+ 2002-08-28 14:41:20 565,760 -c----w c:\windows\$NtServicePackUninstall$\autochk.exe
+ 2001-08-18 12:00:00 578,560 -c----w c:\windows\$NtServicePackUninstall$\autoconv.exe
+ 2001-08-18 12:00:00 558,592 -c----w c:\windows\$NtServicePackUninstall$\autofmt.exe
- 2001-08-18 12:00:00 8,192 -c----w c:\windows\$NtServicePackUninstall$\autolfn.exe
+ 2002-08-28 14:41:20 8,192 -c----w c:\windows\$NtServicePackUninstall$\autolfn.exe
+ 2002-08-28 12:33:22 36,224 -c----w c:\windows\$NtServicePackUninstall$\avc.sys
- 2001-08-18 12:00:00 76,288 -c----w c:\windows\$NtServicePackUninstall$\avifil32.dll
+ 2002-08-28 14:40:50 76,288 -c----w c:\windows\$NtServicePackUninstall$\avifil32.dll
- 2001-08-18 12:00:00 45,056 -c----w c:\windows\$NtServicePackUninstall$\basesrv.dll
+ 2002-08-28 14:40:50 44,032 -c----w c:\windows\$NtServicePackUninstall$\basesrv.dll
+ 2001-08-18 12:00:00 27,136 -c----w c:\windows\$NtServicePackUninstall$\batmeter.dll
- 2001-08-18 12:00:00 6,656 -c----w c:\windows\$NtServicePackUninstall$\batt.dll
+ 2002-08-28 14:40:50 6,656 -c----w c:\windows\$NtServicePackUninstall$\batt.dll
+ 2004-07-08 15:26:38 11,392 -c----w c:\windows\$NtServicePackUninstall$\bdasup.sys
+ 2004-07-08 15:26:38 11,392 -c----w c:\windows\$NtServicePackUninstall$\bdasup.sys.000
+ 2001-08-18 12:00:00 14,848 -c----w c:\windows\$NtServicePackUninstall$\bidispl.dll
- 2001-08-18 12:00:00 53,376 -c----w c:\windows\$NtServicePackUninstall$\bridge.sys
+ 2002-08-28 12:34:42 68,864 -c----w c:\windows\$NtServicePackUninstall$\bridge.sys
- 2001-08-18 12:00:00 62,976 -c----w c:\windows\$NtServicePackUninstall$\browselc.dll
+ 2002-08-28 14:40:10 62,976 -c----w c:\windows\$NtServicePackUninstall$\browselc.dll
- 2001-08-18 12:00:00 49,152 -c----w c:\windows\$NtServicePackUninstall$\browser.dll
+ 2002-08-28 14:40:50 49,152 -c----w c:\windows\$NtServicePackUninstall$\browser.dll
- 2001-08-18 12:00:00 1,020,416 -c----w c:\windows\$NtServicePackUninstall$\browseui.dll
+ 2002-08-28 14:40:50 1,021,952 -c----w c:\windows\$NtServicePackUninstall$\browseui.dll
- 2001-08-18 12:00:00 71,680 -c----w c:\windows\$NtServicePackUninstall$\browsewm.dll
+ 2002-08-28 14:40:50 71,680 -c----w c:\windows\$NtServicePackUninstall$\browsewm.dll
+ 2001-08-18 12:00:00 218,112 -c----w c:\windows\$NtServicePackUninstall$\c_g18030.dll
- 2001-08-18 12:00:00 58,880 -c----w c:\windows\$NtServicePackUninstall$\cabinet.dll
+ 2002-08-28 14:40:50 59,904 -c----w c:\windows\$NtServicePackUninstall$\cabinet.dll
+ 2001-08-18 12:00:00 80,384 -c----w c:\windows\$NtServicePackUninstall$\cabview.dll
+ 2001-08-18 12:00:00 18,432 -c----w c:\windows\$NtServicePackUninstall$\cacls.exe
- 2001-08-18 12:00:00 360,448 -c----w c:\windows\$NtServicePackUninstall$\callcont.dll
+ 2002-08-28 14:40:50 360,448 -c----w c:\windows\$NtServicePackUninstall$\callcont.dll
+ 2001-08-18 12:00:00 45,056 -c----w c:\windows\$NtServicePackUninstall$\camocx.dll
+ 2001-08-18 12:00:00 142,848 -c----w c:\windows\$NtServicePackUninstall$\capesnpn.dll
+ 2001-08-18 12:00:00 215,040 -c----w c:\windows\$NtServicePackUninstall$\catsrv.dll
+ 2001-08-18 12:00:00 85,504 -c----w c:\windows\$NtServicePackUninstall$\catsrvps.dll
- 2001-08-18 12:00:00 583,168 -c----w c:\windows\$NtServicePackUninstall$\catsrvut.dll
+ 2002-08-28 14:40:50 582,656 -c----w c:\windows\$NtServicePackUninstall$\catsrvut.dll
+ 2004-07-08 15:26:38 16,384 -c----w c:\windows\$NtServicePackUninstall$\ccdecode.sys
+ 2004-07-08 15:26:38 16,384 -c----w c:\windows\$NtServicePackUninstall$\ccdecode.sys.001
- 2001-08-18 12:00:00 62,208 -c----w c:\windows\$NtServicePackUninstall$\cdfs.sys
+ 2002-08-28 12:58:52 59,648 -c----w c:\windows\$NtServicePackUninstall$\cdfs.sys
+ 2001-08-18 12:00:00 142,336 -c----w c:\windows\$NtServicePackUninstall$\cdfview.dll
- 2001-08-18 12:00:00 9,728 -c----w c:\windows\$NtServicePackUninstall$\cdm.dll
+ 2002-08-28 14:40:50 14,848 -c----w c:\windows\$NtServicePackUninstall$\cdm.dll
+ 2001-08-18 12:00:00 2,028,032 -c----w c:\windows\$NtServicePackUninstall$\cdosys.dll
- 2001-08-18 12:00:00 47,488 -c----w c:\windows\$NtServicePackUninstall$\cdrom.sys
+ 2002-08-28 12:27:56 47,488 -c----w c:\windows\$NtServicePackUninstall$\cdrom.sys
- 2001-08-18 12:00:00 184,320 -c----w c:\windows\$NtServicePackUninstall$\certcli.dll
+ 2002-08-28 14:40:50 186,880 -c----w c:\windows\$NtServicePackUninstall$\certcli.dll
+ 2001-08-18 12:00:00 436,736 -c----w c:\windows\$NtServicePackUninstall$\certmgr.dll
- 2001-08-18 12:00:00 32,768 -c----w c:\windows\$NtServicePackUninstall$\cfgbkend.dll
+ 2002-08-28 14:40:50 32,768 -c----w c:\windows\$NtServicePackUninstall$\cfgbkend.dll
+ 2001-08-18 12:00:00 16,896 -c----w c:\windows\$NtServicePackUninstall$\cfgmgr32.dll
- 2001-05-22 08:15:08 188,480 -c----w c:\windows\$NtServicePackUninstall$\cfgwiz.exe
+ 2002-08-28 14:41:20 188,480 -c----w c:\windows\$NtServicePackUninstall$\cfgwiz.exe
- 2001-08-18 12:00:00 204,861 -c----w c:\windows\$NtServicePackUninstall$\chtmbx.dll
+ 2002-08-28 08:39:42 97,792 -c----w c:\windows\$NtServicePackUninstall$\chtmbx.dll
- 2001-08-18 12:00:00 131,134 -c----w c:\windows\$NtServicePackUninstall$\chtskdic.dll
+ 2002-08-28 08:39:42 56,320 -c----w c:\windows\$NtServicePackUninstall$\chtskdic.dll
- 2001-08-18 12:00:00 299,069 -c----w c:\windows\$NtServicePackUninstall$\chtskf.dll
+ 2002-08-28 08:39:42 173,568 -c----w c:\windows\$NtServicePackUninstall$\chtskf.dll
+ 2001-08-18 12:00:00 109,568 -c----w c:\windows\$NtServicePackUninstall$\cic.dll
- 2001-08-18 12:00:00 1,266,688 -c----w c:\windows\$NtServicePackUninstall$\cimwin32.dll
+ 2002-08-28 14:40:50 1,267,712 -c----w c:\windows\$NtServicePackUninstall$\cimwin32.dll
- 2001-08-18 12:00:00 344,127 -c----w c:\windows\$NtServicePackUninstall$\cintime.dll
+ 2002-08-28 08:39:42 201,216 -c----w c:\windows\$NtServicePackUninstall$\cintime.dll
- 2001-08-18 12:00:00 540,745 -c----w c:\windows\$NtServicePackUninstall$\cintsetp.exe
+ 2002-08-28 08:39:44 480,256 -c----w c:\windows\$NtServicePackUninstall$\cintsetp.exe
- 2001-08-18 12:00:00 62,976 -c----w c:\windows\$NtServicePackUninstall$\ciodm.dll
+ 2002-08-28 14:40:50 64,512 -c----w c:\windows\$NtServicePackUninstall$\ciodm.dll
+ 2001-08-18 12:00:00 5,120 -c----w c:\windows\$NtServicePackUninstall$\cisvc.exe
- 2001-08-18 12:00:00 44,928 -c----w c:\windows\$NtServicePackUninstall$\classpnp.sys
+ 2002-08-28 13:08:44 46,336 -c----w c:\windows\$NtServicePackUninstall$\classpnp.sys
+ 2001-08-18 12:00:00 100,864 -c----w c:\windows\$NtServicePackUninstall$\clbcatex.dll
+ 2001-08-18 12:00:00 468,480 -c----w c:\windows\$NtServicePackUninstall$\clbcatq.dll
+ 2001-08-18 12:00:00 61,440 -c----w c:\windows\$NtServicePackUninstall$\cleanmgr.exe
+ 2001-08-18 12:00:00 127,552 -c----w c:\windows\$NtServicePackUninstall$\cliconfg.dll
+ 2001-08-18 12:00:00 45,632 -c----w c:\windows\$NtServicePackUninstall$\cliconfg.exe
- 2001-08-18 12:00:00 98,816 -c----w c:\windows\$NtServicePackUninstall$\clipbrd.exe
+ 2002-08-28 14:41:20 98,816 -c----w c:\windows\$NtServicePackUninstall$\clipbrd.exe
+ 2001-08-18 12:00:00 30,720 -c----w c:\windows\$NtServicePackUninstall$\clipsrv.exe
- 2001-08-18 12:00:00 53,248 -c----w c:\windows\$NtServicePackUninstall$\clusapi.dll
+ 2002-08-28 14:40:50 54,272 -c----w c:\windows\$NtServicePackUninstall$\clusapi.dll
+ 2002-08-28 12:09:06 13,184 -c----w c:\windows\$NtServicePackUninstall$\cmbatt.sys
+ 2001-08-18 12:00:00 12,288 -c----w c:\windows\$NtServicePackUninstall$\cmcfg32.dll
+ 2001-08-18 12:00:00 375,808 -c----w c:\windows\$NtServicePackUninstall$\cmd.exe
- 2001-08-18 12:00:00 314,880 -c----w c:\windows\$NtServicePackUninstall$\cmdial32.dll
+ 2002-08-28 14:40:50 324,608 -c----w c:\windows\$NtServicePackUninstall$\cmdial32.dll
- 2001-08-18 12:00:00 41,472 -c----w c:\windows\$NtServicePackUninstall$\cmdl32.exe
+ 2002-08-28 14:41:22 41,472 -c----w c:\windows\$NtServicePackUninstall$\cmdl32.exe
+ 2001-08-18 12:00:00 35,840 -c----w c:\windows\$NtServicePackUninstall$\cmmon32.exe
+ 2001-08-18 12:00:00 174,592 -c----w c:\windows\$NtServicePackUninstall$\cmprops.dll
+ 2001-08-18 12:00:00 54,784 -c----w c:\windows\$NtServicePackUninstall$\cmstp.exe
+ 2001-08-18 12:00:00 36,352 -c----w c:\windows\$NtServicePackUninstall$\cmutil.dll
+ 2001-08-18 12:00:00 45,568 -c----w c:\windows\$NtServicePackUninstall$\cnbjmon.dll
+ 2001-08-18 12:00:00 56,832 -c----w c:\windows\$NtServicePackUninstall$\colbact.dll
+ 2001-08-18 12:00:00 25,600 -c----w c:\windows\$NtServicePackUninstall$\comaddin.dll
- 2001-08-18 12:00:00 186,880 -c----w c:\windows\$NtServicePackUninstall$\comadmin.dll
+ 2002-08-28 14:40:50 186,880 -c----w c:\windows\$NtServicePackUninstall$\comadmin.dll
- 2001-08-18 12:00:00 557,568 -c----w c:\windows\$NtServicePackUninstall$\comctl32.dll
+ 2002-08-28 14:40:50 557,056 -c----w c:\windows\$NtServicePackUninstall$\comctl32.dll
- 2001-08-18 12:00:00 258,048 -c----w c:\windows\$NtServicePackUninstall$\comdlg32.dll
+ 2002-08-28 14:40:50 258,048 -c----w c:\windows\$NtServicePackUninstall$\comdlg32.dll
- 2001-08-18 12:00:00 238,592 -c----w c:\windows\$NtServicePackUninstall$\compatui.dll
+ 2002-08-28 14:40:50 238,592 -c----w c:\windows\$NtServicePackUninstall$\compatui.dll
+ 2001-08-18 12:00:00 222,208 -c----w c:\windows\$NtServicePackUninstall$\compstui.dll
+ 2001-08-18 12:00:00 82,432 -c----w c:\windows\$NtServicePackUninstall$\comrepl.dll
+ 2001-08-18 12:00:00 8,192 -c----w c:\windows\$NtServicePackUninstall$\comrepl.exe
+ 2001-08-18 12:00:00 5,120 -c----w c:\windows\$NtServicePackUninstall$\comrereg.exe
+ 2001-08-18 12:00:00 792,064 -c----w c:\windows\$NtServicePackUninstall$\comres.dll
+ 2001-08-18 12:00:00 259,584 -c----w c:\windows\$NtServicePackUninstall$\comsetup.dll
+ 2001-08-18 12:00:00 147,456 -c----w c:\windows\$NtServicePackUninstall$\comsnap.dll
- 2001-08-18 12:00:00 1,139,200 -c----w c:\windows\$NtServicePackUninstall$\comsvcs.dll
+ 2002-08-28 14:40:50 1,172,992 -c----w c:\windows\$NtServicePackUninstall$\comsvcs.dll
+ 2001-08-18 12:00:00 495,616 -c----w c:\windows\$NtServicePackUninstall$\comuid.dll
- 2001-08-18 12:00:00 995,328 -c----w c:\windows\$NtServicePackUninstall$\conf.exe
+ 2002-08-28 14:41:22 995,328 -c----w c:\windows\$NtServicePackUninstall$\conf.exe
+ 2001-08-18 12:00:00 45,056 -c----w c:\windows\$NtServicePackUninstall$\confmrsl.dll
+ 2001-08-18 12:00:00 345,600 -c----w c:\windows\$NtServicePackUninstall$\confmsp.dll
- 2001-08-18 12:00:00 24,576 -c----w c:\windows\$NtServicePackUninstall$\conime.exe
+ 2002-08-28 14:41:22 24,576 -c----w c:\windows\$NtServicePackUninstall$\conime.exe
+ 2001-08-18 12:00:00 14,877 -c----w c:\windows\$NtServicePackUninstall$\corpol.dll

ericshin
Intermediate
Intermediate

Posts Posts : 80
Joined Joined : 2008-12-08
Gender Gender : Male
OS OS : microsoft windows xp
Points Points : 29554
# Likes # Likes : 0

View user profile

Back to top Go down

Re: spyware protect 2009 - ericshin

Post by ericshin on Sun 8 Mar - 7:07

- 2001-08-18 12:00:00 61,492 -c----w c:\windows\$NtServicePackUninstall$\cplexe.exe
+ 2002-08-28 08:38:26 57,400 -c----w c:\windows\$NtServicePackUninstall$\cplexe.exe
- 2001-08-18 12:00:00 161,792 -c----w c:\windows\$NtServicePackUninstall$\credui.dll
+ 2002-08-28 14:40:50 158,720 -c----w c:\windows\$NtServicePackUninstall$\credui.dll
- 2001-08-18 12:00:00 31,360 -c----w c:\windows\$NtServicePackUninstall$\crusoe.sys
+ 2002-08-28 12:05:08 31,488 -c----w c:\windows\$NtServicePackUninstall$\crusoe.sys
- 2001-08-18 12:00:00 554,496 -c----w c:\windows\$NtServicePackUninstall$\crypt32.dll
+ 2002-08-28 14:40:50 557,568 -c----w c:\windows\$NtServicePackUninstall$\crypt32.dll
- 2001-08-18 12:00:00 70,144 -c----w c:\windows\$NtServicePackUninstall$\cryptdlg.dll
+ 2002-08-28 14:40:50 70,144 -c----w c:\windows\$NtServicePackUninstall$\cryptdlg.dll
+ 2001-08-18 12:00:00 29,184 -c----w c:\windows\$NtServicePackUninstall$\cryptdll.dll
+ 2001-08-18 12:00:00 48,640 -c----w c:\windows\$NtServicePackUninstall$\cryptext.dll
+ 2001-08-18 12:00:00 53,248 -c----w c:\windows\$NtServicePackUninstall$\cryptnet.dll
- 2001-08-18 12:00:00 51,200 -c----w c:\windows\$NtServicePackUninstall$\cryptsvc.dll
+ 2002-08-28 14:40:50 53,248 -c----w c:\windows\$NtServicePackUninstall$\cryptsvc.dll
- 2001-08-18 12:00:00 470,016 -c----w c:\windows\$NtServicePackUninstall$\cryptui.dll
+ 2002-08-28 14:40:50 471,040 -c----w c:\windows\$NtServicePackUninstall$\cryptui.dll
+ 2001-08-18 12:00:00 89,600 -c----w c:\windows\$NtServicePackUninstall$\cscdll.dll
+ 2001-08-18 12:00:00 102,450 -c----w c:\windows\$NtServicePackUninstall$\cscript.exe
- 2001-08-18 12:00:00 305,664 -c----w c:\windows\$NtServicePackUninstall$\cscui.dll
+ 2002-08-28 14:40:50 307,712 -c----w c:\windows\$NtServicePackUninstall$\cscui.dll
- 2001-08-18 12:00:00 29,184 -c----w c:\windows\$NtServicePackUninstall$\csrsrv.dll
+ 2002-08-28 14:40:50 29,184 -c----w c:\windows\$NtServicePackUninstall$\csrsrv.dll
+ 2001-08-18 12:00:00 4,096 -c----w c:\windows\$NtServicePackUninstall$\csrss.exe
- 2001-08-18 12:00:00 13,312 -c----w c:\windows\$NtServicePackUninstall$\ctfmon.exe
+ 2002-08-28 14:41:22 13,312 -c----w c:\windows\$NtServicePackUninstall$\ctfmon.exe
+ 2004-07-08 15:27:28 1,201,152 -c----w c:\windows\$NtServicePackUninstall$\d3d8.dll
+ 2002-12-11 11:14:32 8,192 -c----w c:\windows\$NtServicePackUninstall$\d3d8thk.dll
+ 2004-07-08 15:27:28 1,703,936 -c----w c:\windows\$NtServicePackUninstall$\d3d9.dll
+ 2003-05-29 20:00:02 797,184 -c----w c:\windows\$NtServicePackUninstall$\d3dim700.dll
- 2001-08-18 12:00:00 986,112 -c----w c:\windows\$NtServicePackUninstall$\danim.dll
+ 2002-08-28 14:40:50 986,112 -c----w c:\windows\$NtServicePackUninstall$\danim.dll
+ 2001-08-18 12:00:00 557,128 -c----w c:\windows\$NtServicePackUninstall$\dao360.dll
+ 2001-08-18 12:00:00 51,712 -c----w c:\windows\$NtServicePackUninstall$\dataclen.dll
+ 2001-08-18 12:00:00 152,064 -c----w c:\windows\$NtServicePackUninstall$\datime.dll
+ 2001-08-18 12:00:00 22,016 -c----w c:\windows\$NtServicePackUninstall$\davclnt.dll
- 2001-08-18 12:00:00 486,400 -c----w c:\windows\$NtServicePackUninstall$\dbghelp.dll
+ 2002-08-28 14:40:50 489,984 -c----w c:\windows\$NtServicePackUninstall$\dbghelp.dll
- 2001-08-18 12:00:00 24,576 -c----w c:\windows\$NtServicePackUninstall$\dbmsrpcn.dll
+ 2002-08-28 11:36:06 24,576 -c----w c:\windows\$NtServicePackUninstall$\dbmsrpcn.dll
- 2001-08-18 12:00:00 65,536 -c----w c:\windows\$NtServicePackUninstall$\dbnetlib.dll
+ 2002-08-28 14:40:00 61,440 -c----w c:\windows\$NtServicePackUninstall$\dbnetlib.dll
- 2001-08-18 12:00:00 28,672 -c----w c:\windows\$NtServicePackUninstall$\dbnmpntw.dll
+ 2002-08-28 11:34:36 28,672 -c----w c:\windows\$NtServicePackUninstall$\dbnmpntw.dll
+ 2002-08-28 14:57:58 1,740 -c----w c:\windows\$NtServicePackUninstall$\dcache.bin
- 2001-08-18 12:00:00 40,960 -c----w c:\windows\$NtServicePackUninstall$\dcap32.dll
+ 2002-08-28 14:40:50 40,960 -c----w c:\windows\$NtServicePackUninstall$\dcap32.dll
+ 2001-08-18 12:00:00 7,680 -c----w c:\windows\$NtServicePackUninstall$\dciman32.dll
+ 2001-08-18 12:00:00 5,120 -c----w c:\windows\$NtServicePackUninstall$\dcomcnfg.exe
+ 2001-08-18 12:00:00 27,136 -c----w c:\windows\$NtServicePackUninstall$\ddeshare.exe
+ 2004-07-08 15:27:28 292,864 -c----w c:\windows\$NtServicePackUninstall$\ddraw.dll
+ 2002-12-11 11:14:32 24,064 -c----w c:\windows\$NtServicePackUninstall$\ddrawex.dll
- 2001-08-18 12:00:00 109,568 -c----w c:\windows\$NtServicePackUninstall$\defrag.exe
+ 2002-08-28 14:41:22 70,656 -c----w c:\windows\$NtServicePackUninstall$\defrag.exe
+ 2003-05-29 20:00:02 132,608 -c----w c:\windows\$NtServicePackUninstall$\devenum.dll
- 2001-08-18 12:00:00 263,680 -c----w c:\windows\$NtServicePackUninstall$\devmgr.dll
+ 2002-08-28 14:40:50 263,168 -c----w c:\windows\$NtServicePackUninstall$\devmgr.dll
- 2001-08-18 12:00:00 73,216 -c----w c:\windows\$NtServicePackUninstall$\dfrgfat.exe
+ 2002-08-28 14:41:22 76,288 -c----w c:\windows\$NtServicePackUninstall$\dfrgfat.exe
- 2001-08-18 12:00:00 85,504 -c----w c:\windows\$NtServicePackUninstall$\dfrgntfs.exe
+ 2002-08-28 14:41:22 99,328 -c----w c:\windows\$NtServicePackUninstall$\dfrgntfs.exe
- 2001-08-18 12:00:00 41,984 -c----w c:\windows\$NtServicePackUninstall$\dfrgsnap.dll
+ 2002-08-28 14:40:50 35,328 -c----w c:\windows\$NtServicePackUninstall$\dfrgsnap.dll
- 2001-08-18 12:00:00 124,928 -c----w c:\windows\$NtServicePackUninstall$\dfrgui.dll
+ 2002-08-28 14:40:50 113,152 -c----w c:\windows\$NtServicePackUninstall$\dfrgui.dll
- 2001-08-18 12:00:00 25,088 -c----w c:\windows\$NtServicePackUninstall$\dfsshlex.dll
+ 2002-08-28 14:40:50 25,600 -c----w c:\windows\$NtServicePackUninstall$\dfsshlex.dll
- 2001-08-18 12:00:00 103,424 -c----w c:\windows\$NtServicePackUninstall$\dgnet.dll
+ 2002-08-28 14:40:50 103,424 -c----w c:\windows\$NtServicePackUninstall$\dgnet.dll
- 2001-08-18 12:00:00 98,816 -c----w c:\windows\$NtServicePackUninstall$\dhcpcsvc.dll
+ 2002-08-28 14:40:50 99,840 -c----w c:\windows\$NtServicePackUninstall$\dhcpcsvc.dll
+ 2001-08-18 12:00:00 370,176 -c----w c:\windows\$NtServicePackUninstall$\dhcpmon.dll
+ 2001-08-18 12:00:00 522,240 -c----w c:\windows\$NtServicePackUninstall$\dialer.exe
+ 2001-08-18 12:00:00 79,360 -c----w c:\windows\$NtServicePackUninstall$\diantz.exe
- 2001-08-18 12:00:00 55,808 -c----w c:\windows\$NtServicePackUninstall$\digest.dll
+ 2002-08-28 14:40:50 55,296 -c----w c:\windows\$NtServicePackUninstall$\digest.dll
- 2002-08-28 14:40:00 648,704 -c----w c:\windows\$NtServicePackUninstall$\dinput.dll
+ 2002-08-28 14:40:50 151,552 -c----w c:\windows\$NtServicePackUninstall$\dinput.dll
- 2002-08-28 14:40:00 667,648 -c----w c:\windows\$NtServicePackUninstall$\dinput8.dll
+ 2002-08-28 14:40:50 168,960 -c----w c:\windows\$NtServicePackUninstall$\dinput8.dll
+ 2001-08-18 12:00:00 76,288 -c----w c:\windows\$NtServicePackUninstall$\directdb.dll
- 2001-08-18 12:00:00 33,664 -c----w c:\windows\$NtServicePackUninstall$\disk.sys
+ 2002-08-28 12:27:58 33,792 -c----w c:\windows\$NtServicePackUninstall$\disk.sys
+ 2001-08-18 12:00:00 1,501,696 -c----w c:\windows\$NtServicePackUninstall$\diskcopy.dll
- 2001-08-18 12:00:00 13,184 -c----w c:\windows\$NtServicePackUninstall$\diskdump.sys
+ 2002-08-28 12:27:56 13,184 -c----w c:\windows\$NtServicePackUninstall$\diskdump.sys
+ 2001-08-18 12:00:00 145,920 -c----w c:\windows\$NtServicePackUninstall$\diskpart.exe
+ 2001-08-18 12:00:00 45,083 -c----w c:\windows\$NtServicePackUninstall$\dispex.dll
- 2001-08-18 12:00:00 294,912 -c----w c:\windows\$NtServicePackUninstall$\dlimport.exe
+ 2002-08-28 14:41:22 294,912 -c----w c:\windows\$NtServicePackUninstall$\dlimport.exe
+ 2001-08-18 12:00:00 4,608 -c----w c:\windows\$NtServicePackUninstall$\dllhost.exe
+ 2001-08-18 12:00:00 204,800 -c----w c:\windows\$NtServicePackUninstall$\dmadmin.exe
+ 2002-12-11 11:14:32 27,136 -c----w c:\windows\$NtServicePackUninstall$\dmband.dll
+ 2001-08-18 12:00:00 780,928 -c----w c:\windows\$NtServicePackUninstall$\dmboot.sys
+ 2002-12-11 11:14:32 58,368 -c----w c:\windows\$NtServicePackUninstall$\dmcompos.dll
+ 2001-08-18 12:00:00 273,920 -c----w c:\windows\$NtServicePackUninstall$\dmdlgs.dll
+ 2001-08-18 12:00:00 184,320 -c----w c:\windows\$NtServicePackUninstall$\dmdskmgr.dll
+ 2004-07-08 15:27:28 181,248 -c----w c:\windows\$NtServicePackUninstall$\dmime.dll
+ 2001-08-18 12:00:00 146,304 -c----w c:\windows\$NtServicePackUninstall$\dmio.sys
+ 2002-12-11 11:14:32 33,280 -c----w c:\windows\$NtServicePackUninstall$\dmloader.dll
+ 2001-08-18 12:00:00 14,336 -c----w c:\windows\$NtServicePackUninstall$\dmremote.exe
+ 2002-12-11 11:14:32 76,800 -c----w c:\windows\$NtServicePackUninstall$\dmscript.dll
+ 2001-08-18 12:00:00 21,504 -c----w c:\windows\$NtServicePackUninstall$\dmserver.dll
+ 2002-12-11 11:14:32 98,816 -c----w c:\windows\$NtServicePackUninstall$\dmstyle.dll
+ 2002-12-11 11:14:32 100,864 -c----w c:\windows\$NtServicePackUninstall$\dmsynth.dll
+ 2004-07-08 15:27:28 122,880 -c----w c:\windows\$NtServicePackUninstall$\dmusic.dll
+ 2001-08-17 13:59:58 50,048 -c----w c:\windows\$NtServicePackUninstall$\dmusic.sys
+ 2001-08-18 12:00:00 50,688 -c----w c:\windows\$NtServicePackUninstall$\dmutil.dll
- 2001-08-18 12:00:00 139,264 -c----w c:\windows\$NtServicePackUninstall$\dnsapi.dll
+ 2002-08-28 14:40:50 139,264 -c----w c:\windows\$NtServicePackUninstall$\dnsapi.dll
+ 2001-08-18 12:00:00 44,032 -c----w c:\windows\$NtServicePackUninstall$\dnsrslvr.dll
- 2001-08-18 12:00:00 45,056 -c----w c:\windows\$NtServicePackUninstall$\docprop2.dll
+ 2002-08-28 14:40:50 45,568 -c----w c:\windows\$NtServicePackUninstall$\docprop2.dll
+ 2001-08-18 12:00:00 53,840 -c----w c:\windows\$NtServicePackUninstall$\dosx.exe
- 2001-08-18 12:00:00 116,736 -c----w c:\windows\$NtServicePackUninstall$\dpcdll.dll
+ 2002-08-28 13:20:28 115,200 -c----w c:\windows\$NtServicePackUninstall$\dpcdll.dll
+ 2002-12-11 11:14:32 28,160 -c----w c:\windows\$NtServicePackUninstall$\dplaysvr.exe
+ 2004-07-08 15:27:28 230,400 -c----w c:\windows\$NtServicePackUninstall$\dplayx.dll
+ 2002-12-11 11:14:32 77,824 -c----w c:\windows\$NtServicePackUninstall$\dpmodemx.dll
+ 2002-12-11 11:14:32 3,072 -c----w c:\windows\$NtServicePackUninstall$\dpnaddr.dll
+ 2002-12-11 11:14:32 723,968 -c----w c:\windows\$NtServicePackUninstall$\dpnet.dll
+ 2003-03-23 20:00:02 32,768 -c----w c:\windows\$NtServicePackUninstall$\dpnhpast.dll
+ 2003-03-23 20:00:02 68,096 -c----w c:\windows\$NtServicePackUninstall$\dpnhupnp.dll
+ 2002-12-11 11:14:32 3,072 -c----w c:\windows\$NtServicePackUninstall$\dpnlobby.dll
+ 2002-12-11 11:14:32 16,896 -c----w c:\windows\$NtServicePackUninstall$\dpnsvr.exe
+ 2002-12-11 11:14:32 19,968 -c----w c:\windows\$NtServicePackUninstall$\dpvacm.dll
+ 2002-12-11 11:14:32 381,952 -c----w c:\windows\$NtServicePackUninstall$\dpvoice.dll
+ 2002-12-11 11:14:32 80,896 -c----w c:\windows\$NtServicePackUninstall$\dpvsetup.exe
+ 2002-12-11 11:14:32 112,128 -c----w c:\windows\$NtServicePackUninstall$\dpvvox.dll
+ 2004-07-08 15:27:28 79,360 -c----w c:\windows\$NtServicePackUninstall$\dpwsockx.dll
- 2001-08-17 01:01:20 57,344 -c----w c:\windows\$NtServicePackUninstall$\drmk.sys
+ 2002-08-28 12:32:34 57,856 -c----w c:\windows\$NtServicePackUninstall$\drmk.sys
- 2001-08-17 14:01:16 2,816 -c----w c:\windows\$NtServicePackUninstall$\drmkaud.sys
+ 2002-08-28 12:32:34 2,816 -c----w c:\windows\$NtServicePackUninstall$\drmkaud.sys
+ 2001-08-18 12:00:00 11,776 -c----w c:\windows\$NtServicePackUninstall$\drprov.dll
- 2001-08-18 12:00:00 16,384 -c----w c:\windows\$NtServicePackUninstall$\ds32gt.dll
+ 2002-08-28 14:40:50 16,384 -c----w c:\windows\$NtServicePackUninstall$\ds32gt.dll
+ 2002-12-11 11:14:32 186,880 -c----w c:\windows\$NtServicePackUninstall$\dsdmo.dll
+ 2002-12-11 11:14:32 491,520 -c----w c:\windows\$NtServicePackUninstall$\dsdmoprp.dll
+ 2001-08-18 12:00:00 84,992 -c----w c:\windows\$NtServicePackUninstall$\dskquota.dll
+ 2001-08-18 12:00:00 144,384 -c----w c:\windows\$NtServicePackUninstall$\dskquoui.dll
+ 2004-07-08 15:27:28 381,952 -c----w c:\windows\$NtServicePackUninstall$\dsound.dll
+ 2002-12-11 11:14:32 1,294,336 -c----w c:\windows\$NtServicePackUninstall$\dsound3d.dll
- 2001-08-18 12:00:00 131,072 -c----w c:\windows\$NtServicePackUninstall$\dsprop.dll
+ 2002-08-28 14:40:50 135,680 -c----w c:\windows\$NtServicePackUninstall$\dsprop.dll
+ 2002-08-28 12:14:26 3,584 -c----w c:\windows\$NtServicePackUninstall$\dsprpres.dll
- 2001-08-18 12:00:00 227,840 -c----w c:\windows\$NtServicePackUninstall$\dsquery.dll
+ 2002-08-28 14:40:52 227,840 -c----w c:\windows\$NtServicePackUninstall$\dsquery.dll
+ 2001-08-18 12:00:00 47,104 -c----w c:\windows\$NtServicePackUninstall$\dssec.dll
- 2001-08-18 12:00:00 122,880 -c----w c:\windows\$NtServicePackUninstall$\dssenh.dll
+ 2002-08-28 09:27:32 124,928 -c----w c:\windows\$NtServicePackUninstall$\dssenh.dll
+ 2001-08-18 12:00:00 106,496 -c----w c:\windows\$NtServicePackUninstall$\dsuiext.dll
+ 2002-12-11 11:14:32 18,432 -c----w c:\windows\$NtServicePackUninstall$\dswave.dll
- 2001-08-18 12:00:00 30,208 -c----w c:\windows\$NtServicePackUninstall$\dumprep.exe
+ 2002-08-28 14:41:22 9,216 -c----w c:\windows\$NtServicePackUninstall$\dumprep.exe
- 2001-08-18 12:00:00 261,120 -c----w c:\windows\$NtServicePackUninstall$\duser.dll
+ 2002-08-28 14:40:52 263,680 -c----w c:\windows\$NtServicePackUninstall$\duser.dll
+ 2001-08-18 12:00:00 15,872 -c----w c:\windows\$NtServicePackUninstall$\dvdupgrd.exe
- 2001-08-18 12:00:00 162,128 -c----w c:\windows\$NtServicePackUninstall$\dwwin.exe
+ 2002-08-28 14:41:22 180,224 -c----w c:\windows\$NtServicePackUninstall$\dwwin.exe
+ 2002-12-11 11:14:32 602,624 -c----w c:\windows\$NtServicePackUninstall$\dx7vb.dll
+ 2003-05-29 20:00:02 1,189,888 -c----w c:\windows\$NtServicePackUninstall$\dx8vb.dll
+ 2004-07-08 15:27:28 974,848 -c----w c:\windows\$NtServicePackUninstall$\dxdiag.exe
+ 2004-07-08 15:27:28 1,769,472 -c----w c:\windows\$NtServicePackUninstall$\dxdiagn.dll
- 2001-08-18 12:00:00 68,224 -c----w c:\windows\$NtServicePackUninstall$\dxg.sys
+ 2002-08-28 14:40:44 68,992 -c----w c:\windows\$NtServicePackUninstall$\dxg.sys
- 2001-08-18 12:00:00 498,205 -c----w c:\windows\$NtServicePackUninstall$\dxmasf.dll
+ 2002-08-28 14:40:52 498,205 -c----w c:\windows\$NtServicePackUninstall$\dxmasf.dll

ericshin
Intermediate
Intermediate

Posts Posts : 80
Joined Joined : 2008-12-08
Gender Gender : Male
OS OS : microsoft windows xp
Points Points : 29554
# Likes # Likes : 0

View user profile

Back to top Go down

Re: spyware protect 2009 - ericshin

Post by ericshin on Sun 8 Mar - 7:07

- 2001-08-18 12:00:00 802,816 -c----w c:\windows\$NtServicePackUninstall$\dxmrtp.dll
+ 2002-08-28 14:40:52 802,304 -c----w c:\windows\$NtServicePackUninstall$\dxmrtp.dll
- 2001-08-18 12:00:00 337,920 -c----w c:\windows\$NtServicePackUninstall$\dxtmsft.dll
+ 2002-08-28 14:40:52 337,920 -c----w c:\windows\$NtServicePackUninstall$\dxtmsft.dll
- 2001-08-18 12:00:00 194,560 -c----w c:\windows\$NtServicePackUninstall$\dxtrans.dll
+ 2002-08-28 14:40:52 194,560 -c----w c:\windows\$NtServicePackUninstall$\dxtrans.dll
- 2001-08-18 12:00:00 173,568 -c----w c:\windows\$NtServicePackUninstall$\els.dll
+ 2002-08-28 14:40:52 165,376 -c----w c:\windows\$NtServicePackUninstall$\els.dll
+ 2002-08-28 14:40:52 12,288 -c----w c:\windows\$NtServicePackUninstall$\encapi.dll
+ 2002-08-28 14:40:52 155,648 -c----w c:\windows\$NtServicePackUninstall$\encdec.dll
- 2001-08-18 12:00:00 17,408 -c----w c:\windows\$NtServicePackUninstall$\ersvc.dll
+ 2002-08-28 14:40:52 19,456 -c----w c:\windows\$NtServicePackUninstall$\ersvc.dll
- 2001-08-18 12:00:00 224,768 -c----w c:\windows\$NtServicePackUninstall$\es.dll
+ 2002-08-28 14:40:52 225,280 -c----w c:\windows\$NtServicePackUninstall$\es.dll
+ 2001-08-18 12:00:00 1,018,368 -c----w c:\windows\$NtServicePackUninstall$\esent.dll
- 2001-08-18 12:00:00 235,520 -c----w c:\windows\$NtServicePackUninstall$\esscli.dll
+ 2002-08-28 14:40:52 235,520 -c----w c:\windows\$NtServicePackUninstall$\esscli.dll
- 2001-08-18 12:00:00 178,688 -c----w c:\windows\$NtServicePackUninstall$\eudcedit.exe
+ 2002-08-28 14:41:24 178,688 -c----w c:\windows\$NtServicePackUninstall$\eudcedit.exe
- 2001-08-18 12:00:00 47,616 -c----w c:\windows\$NtServicePackUninstall$\eventlog.dll
+ 2002-08-28 14:40:52 49,152 -c----w c:\windows\$NtServicePackUninstall$\eventlog.dll
+ 2001-08-18 12:00:00 96,256 -c----w c:\windows\$NtServicePackUninstall$\evntagnt.dll
+ 2001-08-18 12:00:00 22,528 -c----w c:\windows\$NtServicePackUninstall$\evntcmd.exe
- 2001-08-18 12:00:00 19,456 -c----w c:\windows\$NtServicePackUninstall$\evntrprv.dll
+ 2002-08-28 14:40:52 19,456 -c----w c:\windows\$NtServicePackUninstall$\evntrprv.dll
+ 2001-08-18 12:00:00 84,992 -c----w c:\windows\$NtServicePackUninstall$\evntwin.exe
- 2001-08-18 12:00:00 1,000,960 -c----w c:\windows\$NtServicePackUninstall$\explorer.exe
+ 2002-08-28 14:41:24 1,004,032 -c----w c:\windows\$NtServicePackUninstall$\explorer.exe
- 2001-08-18 12:00:00 379,152 -c----w c:\windows\$NtServicePackUninstall$\expsrv.dll
+ 2002-08-28 14:40:54 380,445 -c----w c:\windows\$NtServicePackUninstall$\expsrv.dll
+ 2001-08-18 12:00:00 40,960 -c----w c:\windows\$NtServicePackUninstall$\extrac32.exe
+ 2001-08-18 12:00:00 121,856 -c----w c:\windows\$NtServicePackUninstall$\exts.dll
+ 2001-08-18 12:00:00 7,168 -c----w c:\windows\$NtServicePackUninstall$\f3ahvoas.dll
- 2001-08-18 12:00:00 144,768 -c----w c:\windows\$NtServicePackUninstall$\fastfat.sys
+ 2002-08-28 13:12:46 145,152 -c----w c:\windows\$NtServicePackUninstall$\fastfat.sys
- 2001-08-18 12:00:00 585,216 -c----w c:\windows\$NtServicePackUninstall$\fastprox.dll
+ 2002-08-28 14:40:54 565,248 -c----w c:\windows\$NtServicePackUninstall$\fastprox.dll
- 2001-08-18 12:00:00 61,952 -c----w c:\windows\$NtServicePackUninstall$\faultrep.dll
+ 2002-08-28 14:40:54 66,560 -c----w c:\windows\$NtServicePackUninstall$\faultrep.dll
+ 2002-08-28 14:41:24 18,944 -c----w c:\windows\$NtServicePackUninstall$\faxpatch.exe
+ 2001-08-18 12:00:00 26,240 -c----w c:\windows\$NtServicePackUninstall$\fdc.sys
+ 2001-08-18 12:00:00 18,432 -c----w c:\windows\$NtServicePackUninstall$\feclient.dll
+ 2001-08-18 12:00:00 323,072 -c----w c:\windows\$NtServicePackUninstall$\filemgmt.dll
+ 2001-08-18 12:00:00 25,088 -c----w c:\windows\$NtServicePackUninstall$\findstr.exe
+ 2001-08-18 12:00:00 34,944 -c----w c:\windows\$NtServicePackUninstall$\fips.sys
- 2001-08-18 12:00:00 84,992 -c----w c:\windows\$NtServicePackUninstall$\fldrclnr.dll
+ 2002-08-28 14:40:54 82,432 -c----w c:\windows\$NtServicePackUninstall$\fldrclnr.dll
- 2001-08-18 12:00:00 19,712 -c----w c:\windows\$NtServicePackUninstall$\flpydisk.sys
+ 2002-08-28 12:27:44 19,712 -c----w c:\windows\$NtServicePackUninstall$\flpydisk.sys
+ 2001-08-18 12:00:00 361,472 -c----w c:\windows\$NtServicePackUninstall$\fontext.dll
+ 2001-08-18 12:00:00 79,360 -c----w c:\windows\$NtServicePackUninstall$\fontsub.dll
- 2001-08-18 12:00:00 18,944 -c----w c:\windows\$NtServicePackUninstall$\fontview.exe
+ 2002-08-28 14:41:24 19,456 -c----w c:\windows\$NtServicePackUninstall$\fontview.exe
+ 2001-08-18 12:00:00 7,168 -c----w c:\windows\$NtServicePackUninstall$\forcedos.exe
+ 2001-08-18 12:00:00 25,600 -c----w c:\windows\$NtServicePackUninstall$\format.com
- 2001-08-18 12:00:00 32,828 -c----w c:\windows\$NtServicePackUninstall$\fp40ext.dll
+ 2002-08-28 14:40:54 32,828 -c----w c:\windows\$NtServicePackUninstall$\fp40ext.dll
- 2001-05-22 08:15:08 184,435 -c----w c:\windows\$NtServicePackUninstall$\fp4amsft.dll
+ 2002-08-28 14:40:54 184,435 -c----w c:\windows\$NtServicePackUninstall$\fp4amsft.dll
- 2001-05-22 08:15:08 82,035 -c----w c:\windows\$NtServicePackUninstall$\fp4anscp.dll
+ 2002-08-28 14:40:54 82,035 -c----w c:\windows\$NtServicePackUninstall$\fp4anscp.dll
- 2001-05-22 08:15:08 147,513 -c----w c:\windows\$NtServicePackUninstall$\fp4apws.dll
+ 2002-08-28 14:40:54 147,513 -c----w c:\windows\$NtServicePackUninstall$\fp4apws.dll
- 2001-05-22 08:15:08 94,208 -c----w c:\windows\$NtServicePackUninstall$\fp4areg.dll
+ 2002-08-28 14:40:54 127,034 -c----w c:\windows\$NtServicePackUninstall$\fp4areg.dll
- 2001-05-22 08:15:08 102,509 -c----w c:\windows\$NtServicePackUninstall$\fp4atxt.dll
+ 2002-08-28 14:40:54 102,509 -c----w c:\windows\$NtServicePackUninstall$\fp4atxt.dll
- 2001-05-22 08:15:08 618,605 -c----w c:\windows\$NtServicePackUninstall$\fp4autl.dll
+ 2002-08-28 14:40:54 618,605 -c----w c:\windows\$NtServicePackUninstall$\fp4autl.dll
- 2001-05-22 08:15:08 41,020 -c----w c:\windows\$NtServicePackUninstall$\fp4avnb.dll
+ 2002-08-28 14:40:54 41,020 -c----w c:\windows\$NtServicePackUninstall$\fp4avnb.dll
- 2001-05-22 08:15:08 32,826 -c----w c:\windows\$NtServicePackUninstall$\fp4avss.dll
+ 2002-08-28 14:40:54 32,826 -c----w c:\windows\$NtServicePackUninstall$\fp4avss.dll
- 2001-05-22 08:15:08 49,212 -c----w c:\windows\$NtServicePackUninstall$\fp4awebs.dll
+ 2002-08-28 14:40:54 49,212 -c----w c:\windows\$NtServicePackUninstall$\fp4awebs.dll
- 2001-05-22 08:15:08 872,557 -c----w c:\windows\$NtServicePackUninstall$\fp4awel.dll
+ 2002-08-28 14:40:56 872,557 -c----w c:\windows\$NtServicePackUninstall$\fp4awel.dll
- 2001-05-22 08:15:08 14,608 -c----w c:\windows\$NtServicePackUninstall$\fp98sadm.exe
+ 2002-08-28 14:41:24 15,120 -c----w c:\windows\$NtServicePackUninstall$\fp98sadm.exe
- 2001-05-22 08:15:08 109,328 -c----w c:\windows\$NtServicePackUninstall$\fp98swin.exe
+ 2002-08-28 14:41:24 109,840 -c----w c:\windows\$NtServicePackUninstall$\fp98swin.exe
- 2001-05-22 08:15:08 24,632 -c----w c:\windows\$NtServicePackUninstall$\fpadmcgi.exe
+ 2002-08-28 14:41:24 24,632 -c----w c:\windows\$NtServicePackUninstall$\fpadmcgi.exe
- 2001-05-22 08:15:08 20,541 -c----w c:\windows\$NtServicePackUninstall$\fpadmdll.dll
+ 2002-08-28 14:40:56 20,541 -c----w c:\windows\$NtServicePackUninstall$\fpadmdll.dll
- 2001-05-22 08:15:08 94,208 -c----w c:\windows\$NtServicePackUninstall$\fpcount.exe
+ 2002-08-28 14:41:24 188,494 -c----w c:\windows\$NtServicePackUninstall$\fpcount.exe
- 2001-05-22 08:15:08 94,208 -c----w c:\windows\$NtServicePackUninstall$\fpencode.dll
+ 2002-08-28 14:40:56 94,208 -c----w c:\windows\$NtServicePackUninstall$\fpencode.dll
- 2001-05-22 08:15:08 20,541 -c----w c:\windows\$NtServicePackUninstall$\fpexedll.dll
+ 2002-08-28 14:40:56 20,541 -c----w c:\windows\$NtServicePackUninstall$\fpexedll.dll
- 2001-05-22 08:15:08 598,071 -c----w c:\windows\$NtServicePackUninstall$\fpmmc.dll
+ 2002-08-28 14:40:56 598,071 -c----w c:\windows\$NtServicePackUninstall$\fpmmc.dll
- 2001-05-22 08:15:10 208,896 -c----w c:\windows\$NtServicePackUninstall$\fpmmcsat.dll
+ 2002-05-14 05:16:22 208,896 -c----w c:\windows\$NtServicePackUninstall$\fpmmcsat.dll
- 2001-05-22 08:15:08 20,538 -c----w c:\windows\$NtServicePackUninstall$\fpremadm.exe
+ 2002-08-28 14:41:24 20,538 -c----w c:\windows\$NtServicePackUninstall$\fpremadm.exe
+ 2002-08-28 14:41:24 28,728 -c----w c:\windows\$NtServicePackUninstall$\fpsrvadm.exe
- 2001-08-18 12:00:00 8,832 -c----w c:\windows\$NtServicePackUninstall$\framebuf.dll
+ 2002-08-28 14:40:44 8,832 -c----w c:\windows\$NtServicePackUninstall$\framebuf.dll
+ 2001-08-18 12:00:00 174,592 -c----w c:\windows\$NtServicePackUninstall$\framedyn.dll
- 2001-08-18 12:00:00 40,448 -c----w c:\windows\$NtServicePackUninstall$\[You must be registered and logged in to see this link.]
+ 2002-08-28 14:41:24 40,448 -c----w c:\windows\$NtServicePackUninstall$\[You must be registered and logged in to see this link.]
- 2001-08-18 12:00:00 442,880 -c----w c:\windows\$NtServicePackUninstall$\fxsapi.dll
+ 2002-08-28 14:40:56 443,392 -c----w c:\windows\$NtServicePackUninstall$\fxsapi.dll
- 2001-08-18 12:00:00 131,584 -c----w c:\windows\$NtServicePackUninstall$\fxsclnt.exe
+ 2002-08-28 14:41:24 130,048 -c----w c:\windows\$NtServicePackUninstall$\fxsclnt.exe
+ 2001-08-18 12:00:00 68,096 -c----w c:\windows\$NtServicePackUninstall$\fxscom.dll
- 2001-08-18 12:00:00 271,872 -c----w c:\windows\$NtServicePackUninstall$\fxscomex.dll
+ 2002-08-28 14:40:56 271,360 -c----w c:\windows\$NtServicePackUninstall$\fxscomex.dll
- 2001-08-18 12:00:00 216,064 -c----w c:\windows\$NtServicePackUninstall$\fxscover.exe
+ 2002-08-28 14:41:24 216,064 -c----w c:\windows\$NtServicePackUninstall$\fxscover.exe
- 2001-08-18 12:00:00 24,064 -c----w c:\windows\$NtServicePackUninstall$\fxsdrv.dll
+ 2002-08-28 14:40:56 24,064 -c----w c:\windows\$NtServicePackUninstall$\fxsdrv.dll
+ 2001-08-18 12:00:00 53,760 -c----w c:\windows\$NtServicePackUninstall$\fxsevent.dll
- 2001-08-18 12:00:00 20,992 -c----w c:\windows\$NtServicePackUninstall$\fxsext32.dll
+ 2002-08-28 14:40:56 20,992 -c----w c:\windows\$NtServicePackUninstall$\fxsext32.dll
+ 2001-08-18 12:00:00 22,016 -c----w c:\windows\$NtServicePackUninstall$\fxsmon.dll
- 2001-08-18 12:00:00 122,368 -c----w c:\windows\$NtServicePackUninstall$\fxsocm.dll
+ 2002-08-28 14:40:56 122,880 -c----w c:\windows\$NtServicePackUninstall$\fxsocm.dll
- 2001-08-18 12:00:00 7,168 -c----w c:\windows\$NtServicePackUninstall$\fxsperf.dll
+ 2002-08-28 14:40:56 7,168 -c----w c:\windows\$NtServicePackUninstall$\fxsperf.dll
- 2001-08-18 12:00:00 6,656 -c----w c:\windows\$NtServicePackUninstall$\fxsres.dll
+ 2002-08-28 14:39:56 6,656 -c----w c:\windows\$NtServicePackUninstall$\fxsres.dll
- 2001-08-18 12:00:00 559,616 -c----w c:\windows\$NtServicePackUninstall$\fxsst.dll
+ 2002-08-28 14:40:56 559,616 -c----w c:\windows\$NtServicePackUninstall$\fxsst.dll
- 2001-08-18 12:00:00 249,344 -c----w c:\windows\$NtServicePackUninstall$\fxssvc.exe
+ 2002-08-28 14:41:24 250,368 -c----w c:\windows\$NtServicePackUninstall$\fxssvc.exe
- 2001-08-18 12:00:00 236,032 -c----w c:\windows\$NtServicePackUninstall$\fxst30.dll
+ 2002-08-28 14:40:56 236,032 -c----w c:\windows\$NtServicePackUninstall$\fxst30.dll
- 2001-08-18 12:00:00 391,168 -c----w c:\windows\$NtServicePackUninstall$\fxstiff.dll
+ 2002-08-28 14:40:56 391,168 -c----w c:\windows\$NtServicePackUninstall$\fxstiff.dll
- 2001-08-18 12:00:00 149,504 -c----w c:\windows\$NtServicePackUninstall$\fxsui.dll
+ 2002-08-28 14:40:56 149,504 -c----w c:\windows\$NtServicePackUninstall$\fxsui.dll
- 2001-08-18 12:00:00 186,368 -c----w c:\windows\$NtServicePackUninstall$\fxswzrd.dll
+ 2002-08-28 14:40:56 185,856 -c----w c:\windows\$NtServicePackUninstall$\fxswzrd.dll
- 2001-08-18 12:00:00 395,264 -c----w c:\windows\$NtServicePackUninstall$\fxsxp32.dll
+ 2002-08-28 14:40:56 395,264 -c----w c:\windows\$NtServicePackUninstall$\fxsxp32.dll
- 2001-08-17 14:02:32 9,728 -c----w c:\windows\$NtServicePackUninstall$\gameenum.sys
+ 2002-08-28 12:32:44 9,856 -c----w c:\windows\$NtServicePackUninstall$\gameenum.sys
+ 2002-08-28 12:32:48 54,144 -c----w c:\windows\$NtServicePackUninstall$\gckernel.sys
- 2001-08-18 12:00:00 250,880 -c----w c:\windows\$NtServicePackUninstall$\gdi32.dll
+ 2002-08-28 14:40:56 250,368 -c----w c:\windows\$NtServicePackUninstall$\gdi32.dll
+ 2001-08-18 12:00:00 116,736 -c----w c:\windows\$NtServicePackUninstall$\glu32.dll
+ 2001-08-18 12:00:00 9,728 -c----w c:\windows\$NtServicePackUninstall$\gpkrsrc.dll
+ 2001-08-18 12:00:00 37,888 -c----w c:\windows\$NtServicePackUninstall$\grpconv.exe
- 2001-08-18 12:00:00 113,664 -c----w c:\windows\$NtServicePackUninstall$\guitrn.dll
+ 2002-08-28 14:40:56 114,688 -c----w c:\windows\$NtServicePackUninstall$\guitrn.dll
- 2001-08-18 12:00:00 53,248 -c----w c:\windows\$NtServicePackUninstall$\h323cc.dll
+ 2002-08-28 14:40:56 53,248 -c----w c:\windows\$NtServicePackUninstall$\h323cc.dll
+ 2001-08-18 12:00:00 592,896 -c----w c:\windows\$NtServicePackUninstall$\h323msp.dll
- 2001-08-18 12:00:00 128,768 -c----w c:\windows\$NtServicePackUninstall$\hal.dll
+ 2002-08-28 12:05:04 127,872 -c----w c:\windows\$NtServicePackUninstall$\hal.dll
+ 2002-08-28 12:05:04 127,872 -c----w c:\windows\$NtServicePackUninstall$\halaacpi.dll

ericshin
Intermediate
Intermediate

Posts Posts : 80
Joined Joined : 2008-12-08
Gender Gender : Male
OS OS : microsoft windows xp
Points Points : 29554
# Likes # Likes : 0

View user profile

Back to top Go down

Re: spyware protect 2009 - ericshin

Post by ericshin on Sun 8 Mar - 7:13

There is too much too paste and i don't think this was what you asked for so i'm just gonna skip to the end from here. and also i mentioned something important above in the post after your latest post

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2003-02-20 2185800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-13 208952]
"PHIME2002ASync"="c:\windows\System32\IME\TINTLGNT\TINTSETP.EXE" [2002-08-28 455168]
"PHIME2002A"="c:\windows\System32\IME\TINTLGNT\TINTSETP.EXE" [2002-08-28 455168]
"WinampAgent"="d:\program files\Winamp\winampa.exe" [2008-08-04 36352]
"NvCplDaemon"="c:\windows\System32\NvCpl.dll" [2005-11-04 7307264]
"NvMediaCenter"="c:\windows\System32\NvMcTray.dll" [2005-11-04 86016]
"DAEMON Tools"="d:\program files\DAEMON Tools\daemon.exe" [2005-11-09 128920]
"nTrayFw"="d:\progra~1\NVIDIA~1\NETWOR~1\bin\nTrayFw.exe" [2005-04-29 266240]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-12-07 185872]
"SunJavaUpdateSched"="d:\program files\Java\jre6\bin\jusched.exe" [2008-12-30 136600]
"avgnt"="d:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-06-12 266497]
"nwiz"="nwiz.exe" [2005-11-04 c:\windows\system32\nwiz.exe]
"SoundMan"="SOUNDMAN.EXE" [2005-04-15 c:\windows\SOUNDMAN.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - d:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [12/14/2004 4:44:06 AM 29696]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"= ctwdm32.dll
"msacm.divxa32"= msaud32_divx.acm

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=

S2 gupdate1c9876a894a61ea;Google Update Service (gupdate1c9876a894a61ea);c:\program files\Google\Update\GoogleUpdate.exe [2/5/2009 9:19:07 PM 133104]
.
Contents of the 'Scheduled Tasks' folder

2009-03-08 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-02-05 21:17]

2009-03-08 c:\windows\Tasks\GoogleUpdateTaskMachine.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-05 21:18]
.
.
------- Supplementary Scan -------
.
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
LSP: %SYSTEMROOT%\system32\nvappfilter.dll
FF - ProfilePath - c:\documents and settings\Andrew\Application Data\Mozilla\Firefox\Profiles\0d6ybm7f.default\
FF - component: d:\program files\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1487.6512\npCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.141.5\npGoogleOneClick7.dll
FF - plugin: d:\program files\Adobe\Acrobat 7.0\Reader\browser\nppdf32.dll
FF - plugin: d:\program files\Java\jre6\bin\new_plugin\npdeploytk.dll
FF - plugin: d:\program files\Java\jre6\bin\new_plugin\npjp2.dll
FF - plugin: d:\program files\RealPlayer\Netscape6\nppl3260.dll
FF - plugin: d:\program files\RealPlayer\Netscape6\nprjplug.dll
FF - plugin: d:\program files\RealPlayer\Netscape6\nprpjplug.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [You must be registered and logged in to see this link.]
Rootkit scan 2009-03-08 19:28:22
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'lsass.exe'(764)
c:\windows\system32\nvappfilter.dll
.
Completion time: 2009-03-08 19:29:32
ComboFix-quarantined-files.txt 2009-03-08 06:29:23
ComboFix2.txt 2008-12-08 23:43:38

Pre-Run: 4,490,534,912 bytes free
Post-Run: 4,549,611,520 bytes free

WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn

Current=1 Default=1 Failed=0 LastKnownGood=4 Sets=1,2,3,4
7692

ericshin
Intermediate
Intermediate

Posts Posts : 80
Joined Joined : 2008-12-08
Gender Gender : Male
OS OS : microsoft windows xp
Points Points : 29554
# Likes # Likes : 0

View user profile

Back to top Go down

Re: spyware protect 2009 - ericshin

Post by Belahzur on Sun 8 Mar - 15:25

Hello.
How is it now?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245091
# Likes # Likes : 1

View user profile

Back to top Go down

Re: spyware protect 2009 - ericshin

Post by ericshin on Mon 9 Mar - 2:51

yeah its awesome everythings fixed. mbams working too.

thanks a ton.

*edit* i just did an avira scan and it found that rootkit virus thing. I saw the word quarantine when they were found so i'm assumming its nothing but just in case heres th log report



Avira AntiVir Personal
Report file date: Monday, 9 March 2009 16:28

Scanning for 1289201 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 3) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Computer name: ANDREW-UX8YV5KH

Version information:
BUILD.DAT : 8.2.0.337 16934 Bytes 11/18/2008 13:05:00
AVSCAN.EXE : 8.1.4.10 315649 Bytes 11/17/2008 20:21:26
AVSCAN.DLL : 8.1.4.0 40705 Bytes 5/25/2008 19:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 6/12/2008 00:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 5/25/2008 19:58:52
ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 10/27/2008 23:30:36
ANTIVIR1.VDF : 7.1.2.12 3336192 Bytes 2/11/2009 01:02:19
ANTIVIR2.VDF : 7.1.2.105 513536 Bytes 3/3/2009 02:52:14
ANTIVIR3.VDF : 7.1.2.137 172032 Bytes 3/8/2009 02:55:14
Engineversion : 8.2.0.105
AEVDF.DLL : 8.1.1.0 106868 Bytes 3/1/2009 01:02:44
AESCRIPT.DLL : 8.1.1.57 356729 Bytes 3/6/2009 07:48:10
AESCN.DLL : 8.1.1.8 127346 Bytes 3/6/2009 07:48:08
AERDL.DLL : 8.1.1.3 438645 Bytes 11/4/2008 01:58:38
AEPACK.DLL : 8.1.3.10 397686 Bytes 3/5/2009 03:01:23
AEOFFICE.DLL : 8.1.0.36 196987 Bytes 3/1/2009 01:02:36
AEHEUR.DLL : 8.1.0.104 1634679 Bytes 3/6/2009 07:48:06
AEHELP.DLL : 8.1.2.2 119158 Bytes 3/1/2009 01:02:29
AEGEN.DLL : 8.1.1.25 336243 Bytes 3/6/2009 07:48:01
AEEMU.DLL : 8.1.0.9 393588 Bytes 10/13/2008 22:05:56
AECORE.DLL : 8.1.6.6 176501 Bytes 3/1/2009 01:02:26
AEBB.DLL : 8.1.0.3 53618 Bytes 10/13/2008 22:05:56
AVWINLL.DLL : 1.0.0.12 15105 Bytes 7/8/2008 20:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 5/15/2008 21:28:01
AVREP.DLL : 8.0.0.2 98344 Bytes 7/31/2008 00:02:15
AVREG.DLL : 8.0.0.1 33537 Bytes 5/8/2008 23:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 2/11/2008 20:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 6/12/2008 00:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 1/22/2008 05:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 6/12/2008 00:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 1/25/2008 00:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 6/12/2008 01:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 6/27/2008 01:34:37

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: d:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, D:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: Monday, 9 March 2009 16:28

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'wscntfy.exe' - '1' Module(s) have been scanned
Scan process 'Apache.exe' - '1' Module(s) have been scanned
Scan process 'nSvcAppFlt.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'PnkBstrB.exe' - '1' Module(s) have been scanned
Scan process 'PnkBstrA.exe' - '1' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
Scan process 'nSvcLog.exe' - '1' Module(s) have been scanned
Scan process 'nSvcIp.exe' - '1' Module(s) have been scanned
Scan process 'jqs.exe' - '1' Module(s) have been scanned
Scan process 'Apache.exe' - '1' Module(s) have been scanned
Scan process 'devldr32.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'realsched.exe' - '1' Module(s) have been scanned
Scan process 'SOUNDMAN.EXE' - '1' Module(s) have been scanned
Scan process 'nTrayFw.exe' - '1' Module(s) have been scanned
Scan process 'daemon.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'winampa.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'GoogleUpdate.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
43 processes with 43 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting to scan the registry.
The registry was scanned ( '58' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Qoobox\Quarantine\C\WINDOWS\system32\UACbgejpxdq.dll.vir
[DETECTION] Contains recognition pattern of the RKIT/TDss.eyj.65 root kit
[NOTE] The file was deleted!
C:\Qoobox\Quarantine\C\WINDOWS\system32\UACefavbrpn.dll.vir
[DETECTION] Contains recognition pattern of the RKIT/TDss.eyj.66 root kit
[NOTE] The file was deleted!
C:\Qoobox\Quarantine\C\WINDOWS\system32\UACpmuyvtbp.dll.vir
[DETECTION] Is the TR/PCK.Tdss.F.135 Trojan
[NOTE] The file was deleted!
C:\Qoobox\Quarantine\C\WINDOWS\system32\UACwtnkrobo.dll.vir
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE] The file was deleted!
C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\_UACppjwswur_.sys.zip
[0] Archive type: ZIP
--> UACppjwswur.sys
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE] The file was deleted!
C:\System Volume Information\_restore{DFAC1D38-F60A-49EE-A8BD-012BC55B399C}\RP64\A0017031.dll
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE] The file was deleted!
C:\System Volume Information\_restore{DFAC1D38-F60A-49EE-A8BD-012BC55B399C}\RP64\A0017032.dll
[DETECTION] Contains recognition pattern of the RKIT/TDss.eyj.66 root kit
[NOTE] The file was deleted!
C:\System Volume Information\_restore{DFAC1D38-F60A-49EE-A8BD-012BC55B399C}\RP64\A0017033.dll
[DETECTION] Contains recognition pattern of the RKIT/TDss.eyj.65 root kit
[NOTE] The file was deleted!
C:\System Volume Information\_restore{DFAC1D38-F60A-49EE-A8BD-012BC55B399C}\RP64\A0017034.dll
[DETECTION] Is the TR/PCK.Tdss.F.135 Trojan
[NOTE] The file was deleted!
C:\WINDOWS\system32\drivers\dtscsi.sys
[WARNING] The file could not be opened!
C:\WINDOWS\system32\drivers\sptd.sys
[WARNING] The file could not be opened!
C:\WINDOWS\system32\drivers\sptd9053.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\'


End of the scan: Monday, 9 March 2009 16:55
Used time: 27:18 Minute(s)

The scan has been done completely.

4151 Scanning directories
193215 Files were scanned
9 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
9 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
4 Files cannot be scanned
193202 Files not concerned
1159 Archives were scanned
4 Warnings
9 Notes

ericshin
Intermediate
Intermediate

Posts Posts : 80
Joined Joined : 2008-12-08
Gender Gender : Male
OS OS : microsoft windows xp
Points Points : 29554
# Likes # Likes : 0

View user profile

Back to top Go down

Re: spyware protect 2009 - ericshin

Post by Belahzur on Mon 9 Mar - 14:46

All it found was system restore points and Combofix's quarantine.

Click Start > Run and copy/paste the following bolded text into the Run box and click OK:

ComboFix /u



This will also reset your restore points.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245091
# Likes # Likes : 1

View user profile

Back to top Go down

Re: spyware protect 2009 - ericshin

Post by ericshin on Tue 10 Mar - 2:51

ok done a billion thanks. you are god

ericshin
Intermediate
Intermediate

Posts Posts : 80
Joined Joined : 2008-12-08
Gender Gender : Male
OS OS : microsoft windows xp
Points Points : 29554
# Likes # Likes : 0

View user profile

Back to top Go down

Re: spyware protect 2009 - ericshin

Post by Belahzur on Tue 10 Mar - 9:31

Below I have included a number of recommendations for how to protect your computer in order to prevent future malware infections. Please take these recommendations seriously; these few simple steps can stave off the vast majority of spyware problems. As happy as we are to help you, for your sake we would rather not have repeat customers. Goofy

1) Please navigate to [You must be registered and logged in to see this link.] and download all the "critical updates" for Windows. This can patch many of the security holes through which attackers can gain access to your computer.

Please either enable Automatic Updates under Start -> Control Panel -> Automatic Updates , or get into the habit of checking for Windows updates regularly. I cannot stress enough how important this is.

2) In order to protect yourself against spyware, you should consider installing and running the following free programs:

[You must be registered and logged in to see this link.]
A tutorial on using Ad-Aware to remove spyware from your computer may be found [You must be registered and logged in to see this link.].

[You must be registered and logged in to see this link.]
A tutorial on using Spybot to remove spyware from your computer may be found [You must be registered and logged in to see this link.]. Please also remember to enable Spybot's "Immunize" and "TeaTimer" features.

[You must be registered and logged in to see this link.]
A tutorial on using SpywareBlaster to prevent spyware from ever installing on your computer may be found [You must be registered and logged in to see this link.].

[You must be registered and logged in to see this link.]
A tutorial on using SpywareGuard for realtime protection against spyware and hijackers may be found [You must be registered and logged in to see this link.].

Make sure to keep these programs up-to-date and to run them regularly, as this can prevent a great deal of spyware hassle.

3) Please consider using an alternate browser. Mozilla's Firefox browser is fantastic; it is much more secure than Internet Explorer, immune to almost all known browser hijackers, and also has the best built-in popup blocker (as an added benefit!) that I have ever seen. If you are interested, Firefox may be downloaded from here:
[You must be registered and logged in to see this link.]
I also recommand the following add-ons for Firefox, they will help keep you safe from malicious scripts or activeX exploits.
[You must be registered and logged in to see this link.]
[You must be registered and logged in to see this link.]
[You must be registered and logged in to see this link.]

4) Also make sure to run your antivirus software regularly, and to keep it up-to-date.

To help you keep your software updated, please considering using this free software program that will check for program updates.
[You must be registered and logged in to see this link.]

5) Finally, consider maintaining a firewall. Some good free firewalls are [You must be registered and logged in to see this link.], or
[You must be registered and logged in to see this link.]
A tutorial on understanding and using firewalls may be found [You must be registered and logged in to see this link.].

Please also read Tony Klein's excellent article: [You must be registered and logged in to see this link.]

If you would take a moment to fill out our feedback form, we would appreciate it.
The link can be found [You must be registered and logged in to see this link.].

Hopefully this should take care of your problems! Good luck. Big Grin


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245091
# Likes # Likes : 1

View user profile

Back to top Go down

Re: spyware protect 2009 - ericshin

Post by ericshin on Wed 11 Mar - 1:46

ok will do that

ericshin
Intermediate
Intermediate

Posts Posts : 80
Joined Joined : 2008-12-08
Gender Gender : Male
OS OS : microsoft windows xp
Points Points : 29554
# Likes # Likes : 0

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum