SpywareSoftStop

SpywareSoftStop

Found: 
2007-05-04
Known system changes: 

Created Files

  • %Temp%\posterm.dll
  • %Temp%\sthbdm32.dll
  • %System%\krnl32.dll
  • %Desktop%SpywareSoftStop.lnk
  • %Desktop%SpywareSoftStop..lnk

Created Folders

  • %ProgramFiles%\spywaresoftstop
  • %StartMenu%Programs\SpywareSoftStop
  • %ProgramFiles%SpywareSoftStop
  • %CommonStartMenu%Programs\SpywareSoftStop

Registry Entries

  • Key: HKEY_CLASSES_ROOT\clsid\{74f25a2c-22b3-4023-8f1a-ca616c30a8b5}
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\software\spywaresoftstop
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
  • Value: spywaresoftstop
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{74f25a2c-22b3-4023-8f1a-ca616c30a8b5}
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\spywaresoftstop
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\spywaresoftstop
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\controlset001\enum\root\legacy_spywaresoftstopfilter
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\controlset001\services\spywaresoftstopfilter
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_spywaresoftstopfilter
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\currentcontrolset\services\spywaresoftstopfilter
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
  • Value: mmnext06
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
  • Value: shellbn
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
  • Value: software soft stop
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\controlset001\enum\root\legacy_spywaresoftstopfilter
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_spywaresoftstopfilter
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\software\spywaresoftstop
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\spywaresoftstop
  • Value:
  • Data:
  • Key: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
  • Value: spywaresoftstop
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
  • Value: mmnext06
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
  • Value: shellbn
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\controlset001\enum\root\legacy_spywarefilter
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\controlset001\services\spywarefilter
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_spywarefilter
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\system\currentcontrolset\services\spywarefilter
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\spywaresoftstop_is1
  • Value:
  • Data:
  • Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
  • Value: bxproxy
  • Data:
  • Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
  • Value: SpywareSoftStop
  • Data: C:\Program Files\SpywareSoftStop\SpywareSoftStop.exe
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
  • Value: mmnext06
  • Data: C:\Temp\posterm.dll
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
  • Value: new.net startup
  • Data: C:\Documents and Settings\%userprofile%\regdll32.exe
  • Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
  • Value: shellbn
  • Data: C:\Temp\winsys32.exe
  • Key: HKEY_CLASSES_ROOT\CLSID\{12EE7A5E-0674-42f9-A76B-000000004D00}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\CLSID\{4e7bd74f-2b8d-469e-dcf7-f96da086b434}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\CLSID\{5AA06644-BC46-4220-A460-47A6EB47C96D}
  • Value:
  • Data:
  • Key: HKEY_CLASSES_ROOT\CLSID\{6C6B8C69-9285-4D94-8492-9E920C8C2B65}
  • Value:
  • Data: