Posted 22 October 2007 - 09:18 PM
XP Pro, fully updated, Trend Micro, Spywareblaster, Adaware, A2, all show no current problems. did get a keylogger a few months ago, which was so severe it shut off Trend. All seems pretty well with that now, but sometimes I think there still may be some issue there as occasionally the keys seem slow, or double strike. I just ran Rootkit Revealer and got the title message, that "there's an error in cmd.exe which prevents RR from accurately analyzing the system."
These below are the first 5 lines that were captured before it quit. The first two are from April, the rest are today. There were many more lines, all of which were Temp Int Files which I have since deleted, but I have not yet rescanned.
HKLM\SECURITY\Policy\Secrets\SAC* 4/24/2007 3:41 PM 0 bytes Key name contains embedded nulls (*)
HKLM\SECURITY\Policy\Secrets\SAI* 4/24/2007 3:41 PM 0 bytes Key name contains embedded nulls (*)
HKLM\SOFTWARE\TrendMicro\PC-cillinNTCorp\CurrentVersion\Misc.\TotalScanned 10/22/2007 3:37 PM 4 bytes Data mismatch between Windows API and raw hive data.
HKLM\SOFTWARE\TrendMicro\PC-cillinNTCorp\CurrentVersion\Misc.\LastScannedFileName 10/22/2007 3:37 PM 49 bytes Windows API length not consistent with raw hive data.
C:\Documents and Settings\Administrator\Cookies\email@example.com 10/22/2007 3:57 PM 104 bytes Hidden from Windows API.