|
-
July 3rd, 2009, 10:54 AM
#16
Do you have any knowledge of installing any keylogger on this computer, because I can see some files from Perfect Keylogger by BlazingTools Software?
You can always split the log into couple of replies...
ComboFix 09-07-02.02 - Ashley Dee 07/02/2009 23:52.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.1013.209 [GMT -5:00]
Running from: c:\users\Ashley Dee\Desktop\ComboFix.exe
SP: Lavasoft Ad-Watch Live! *disabled* (Updated) {67844DAE-4F77-4D69-9457-98E8CFFDAA22}
SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\Installer\WMEncoder.msi
c:\windows\system32\17228900.dll
c:\windows\system32\17844300.dll
c:\windows\system32\27158697.dll
c:\windows\system32\2914851.dll
c:\windows\system32\3670548.dll
c:\windows\system32\8127708.dll
c:\windows\system32\82790.dll
c:\windows\system32\8536514.dll
c:\windows\system32\9166218.dll
.
((((((((((((((((((((((((( Files Created from 2009-06-03 to 2009-07-03 )))))))))))))))))))))))))))))))
.
2009-07-03 05:11 . 2009-07-03 05:19 -------- d-----w- c:\users\Ashley Dee\AppData\Local\temp
2009-07-03 05:11 . 2009-07-03 05:11 -------- d-----w- c:\users\Ashley D\AppData\Local\temp
2009-07-01 05:41 . 2009-07-01 05:41 -------- d-----w- c:\users\Ashley Dee\DoctorWeb
2009-07-01 05:13 . 2009-07-01 05:13 -------- d-----w- c:\programdata\RegCure
2009-07-01 05:13 . 2009-07-01 05:27 -------- d-----w- c:\program files\RegCure
2009-07-01 05:13 . 2009-07-01 05:13 2069088 ----a-w- c:\users\Ashley Dee\RegCureSetup_RW.exe
2009-07-01 01:48 . 2009-07-01 01:50 -------- d-----w- c:\program files\CrossLoop
2009-07-01 01:46 . 2009-07-01 01:47 2579768 ----a-w- c:\users\Ashley Dee\crossloopsetup.exe
2009-06-30 02:48 . 2009-06-30 02:48 286208 ----a-w- c:\users\Ashley Dee\4ogbx1rl.exe
2009-06-29 23:41 . 2009-06-29 23:41 -------- d-----w- c:\users\Ashley Dee\AppData\Roaming\Malwarebytes
2009-06-29 23:41 . 2009-06-17 16:27 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-06-29 23:41 . 2009-06-29 23:41 -------- d-----w- c:\programdata\Malwarebytes
2009-06-29 23:41 . 2009-06-17 16:27 19096 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-06-29 23:41 . 2009-06-29 23:41 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-06-29 23:39 . 2009-06-29 23:40 3561744 ----a-w- c:\users\Ashley Dee\mbam-setup.exe
2009-06-29 23:37 . 2009-06-28 15:22 2052888 ----a-w- c:\programdata\avg8\update\backup\avgcorex.dll
2009-06-29 01:34 . 2009-07-01 04:55 117760 ----a-w- c:\users\Ashley Dee\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
2009-06-29 01:33 . 2009-06-29 01:33 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2009-06-29 01:32 . 2009-06-29 01:32 -------- d-----w- c:\program files\SUPERAntiSpyware
2009-06-29 01:32 . 2009-06-29 01:32 -------- d-----w- c:\users\Ashley Dee\AppData\Roaming\SUPERAntiSpyware.com
2009-06-29 01:30 . 2009-06-29 01:30 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-06-29 01:30 . 2009-06-29 01:30 6568480 ----a-w- c:\users\Ashley Dee\SUPERAntiSpyware.exe
2009-06-29 01:21 . 2009-06-29 01:23 -------- d-----w- C:\HostsXpert
2009-06-29 01:21 . 2009-06-29 01:21 353485 ----a-w- c:\users\Ashley Dee\HostsXpert.zip
2009-06-29 00:26 . 2009-06-29 00:26 -------- d-----w- c:\users\Ashley Dee\AppData\Local\AVG Security Toolbar
2009-06-28 23:51 . 2009-06-28 23:56 -------- d-----w- c:\windows\system32\ca-ES
2009-06-28 23:51 . 2009-06-28 23:55 -------- d-----w- c:\windows\system32\eu-ES
2009-06-28 23:51 . 2009-06-28 23:55 -------- d-----w- c:\windows\system32\vi-VN
2009-06-28 23:26 . 2009-06-28 23:26 -------- d-----w- c:\windows\system32\EventProviders
2009-06-28 23:25 . 2009-04-11 05:03 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll
2009-06-28 23:23 . 2009-04-11 06:28 321536 ----a-w- c:\windows\system32\WMPhoto.dll
2009-06-28 23:22 . 2009-04-11 06:28 223744 ----a-w- c:\windows\system32\wscntfy.dll
2009-06-28 23:21 . 2009-04-11 06:28 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-06-28 23:14 . 2009-06-28 23:14 -------- d-----w- c:\program files\Trend Micro
2009-06-28 23:14 . 2009-06-28 23:14 812344 ----a-w- c:\users\Ashley Dee\HJTInstall.exe
2009-06-28 20:55 . 2009-06-28 20:55 -------- d-----w- c:\users\Ashley D\AppData\Roaming\Yahoo!
2009-06-28 19:42 . 2009-06-28 19:23 15688 ----a-w- c:\windows\system32\lsdelete.exe
2009-06-28 19:36 . 2009-06-28 19:36 -------- d-----w- c:\program files\CodeStuff
2009-06-28 19:35 . 2009-06-28 19:35 680340 ----a-w- c:\users\Ashley Dee\StarterSetup.zip
2009-06-28 19:24 . 2009-06-28 19:23 64160 ----a-w- c:\windows\system32\drivers\Lbd.sys
2009-06-28 19:22 . 2009-06-28 19:22 -------- d-----w- c:\users\Ashley Dee\AppData\Roaming\Yahoo!
2009-06-28 19:22 . 2009-06-28 19:22 -------- d-----w- c:\program files\CCleaner
2009-06-28 19:21 . 2009-06-28 19:21 -------- dc-h--w- c:\programdata\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
2009-06-28 19:21 . 2009-03-12 08:17 2902048 -c--a-w- c:\programdata\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}\Ad-AwareAE.exe
2009-06-28 19:20 . 2009-06-28 19:22 3252640 ----a-w- c:\users\Ashley Dee\ccsetup221.exe
2009-06-28 19:20 . 2009-06-28 19:24 -------- d-----w- c:\programdata\Lavasoft
2009-06-28 19:20 . 2009-06-28 19:20 -------- d-----w- c:\program files\Lavasoft
2009-06-28 19:13 . 2009-06-28 19:17 37452296 ----a-w- c:\users\Ashley Dee\Ad-AwareAE.exe
2009-06-28 18:59 . 2009-06-28 18:59 746744 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2009-06-28 18:35 . 2008-07-27 18:03 41984 ----a-w- c:\windows\system32\netfxperf.dll
2009-06-28 18:06 . 2009-05-09 05:34 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-06-28 18:06 . 2009-05-09 05:50 915456 ----a-w- c:\windows\system32\wininet.dll
2009-06-28 16:28 . 2009-06-30 00:47 -------- d--h--w- C:\$AVG8.VAULT$
2009-06-28 15:26 . 2009-06-14 21:07 1004800 ----a-w- c:\programdata\AVG Security Toolbar\IEToolbar.dll
2009-06-28 15:23 . 2009-06-28 15:23 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2009-06-28 15:23 . 2009-06-28 15:23 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2009-06-28 15:23 . 2009-06-28 15:23 327688 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2009-06-28 15:23 . 2009-07-02 22:49 -------- d-----w- c:\windows\system32\drivers\Avg
2009-06-28 15:23 . 2009-06-28 15:23 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2009-06-28 15:23 . 2009-06-28 18:25 -------- d-----w- c:\programdata\AVG Security Toolbar
2009-06-28 15:22 . 2009-06-28 15:22 -------- d-----w- c:\programdata\avg8
2009-06-28 15:22 . 2009-06-28 15:22 -------- d-----w- c:\program files\AVG
2009-06-28 15:07 . 2009-06-30 02:38 -------- d-----w- c:\programdata\AB
2009-06-18 15:37 . 2009-03-19 21:32 23400 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2009-06-18 15:37 . 2008-04-17 17:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2009-06-18 15:37 . 2009-06-18 15:37 -------- d-----w- c:\program files\iPod
2009-06-18 15:37 . 2009-06-18 15:37 -------- d-----w- c:\programdata\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-06-18 15:37 . 2009-06-18 15:37 -------- d-----w- c:\program files\iTunes
2009-06-18 15:37 . 2009-06-18 15:37 -------- d-----w- c:\users\Ashley D\AppData\Roaming\Apple Computer
2009-06-18 15:34 . 2009-06-18 15:35 -------- d-----w- c:\program files\QuickTime
2009-06-18 15:25 . 2009-06-18 15:25 75048 ----a-w- c:\programdata\Apple Computer\Installer Cache\iTunes 8.2.0.23\SetupAdmin.exe
2009-06-10 02:53 . 2009-04-21 11:39 2034688 ----a-w- c:\windows\system32\win32k.sys
2009-06-10 02:53 . 2009-04-23 12:14 623616 ----a-w- c:\windows\system32\localspl.dll
2009-06-10 02:53 . 2009-04-23 12:15 784896 ----a-w- c:\windows\system32\rpcrt4.dll
2009-06-04 13:17 . 2009-06-04 13:17 -------- d-----w- c:\users\Ashley D\AppData\Roaming\PlayFirst
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-29 04:55 . 2008-06-15 19:36 6648 ----a-w- c:\users\Ashley Dee\AppData\Local\d3d9caps.dat
2009-06-29 00:29 . 2007-07-02 19:13 -------- d-----w- c:\program files\Yahoo!
2009-06-29 00:28 . 2008-08-30 03:40 -------- d-----w- c:\program files\Google
2009-06-28 23:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2009-06-28 23:57 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-06-28 23:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2009-06-28 23:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2009-06-28 23:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2009-06-28 23:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2009-06-28 23:56 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2009-06-28 23:51 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-06-28 22:25 . 2009-05-09 20:17 -------- d-----w- c:\users\Ashley D\AppData\Roaming\DNA
2009-06-28 19:48 . 2009-05-09 20:17 -------- d-----w- c:\program files\DNA
2009-06-28 19:36 . 2009-05-18 01:23 695389 ----a-w- C:\StarterSetup.exe
2009-06-28 18:36 . 2007-07-02 19:44 -------- d-----w- c:\program files\Java
2009-06-28 07:37 . 2009-02-14 23:53 770728 ----a-w- c:\programdata\KingsIsle Entertainment\Wizard101\PatchClient\BankB\WizardLauncher.exe
2009-06-28 07:37 . 2009-02-14 23:52 770728 ----a-w- c:\programdata\KingsIsle Entertainment\Wizard101\PatchClient\BankA\WizardLauncher.exe
2009-06-28 07:37 . 2009-02-14 23:53 73728 ----a-w- c:\programdata\KingsIsle Entertainment\Wizard101\PatchClient\BankB\PatchClientUIRsrc.dll
2009-06-28 07:37 . 2009-02-14 23:52 73728 ----a-w- c:\programdata\KingsIsle Entertainment\Wizard101\PatchClient\BankA\PatchClientUIRsrc.dll
2009-06-28 07:37 . 2009-02-14 23:53 111272 ----a-w- c:\programdata\KingsIsle Entertainment\Wizard101\PatchClient\BankB\Configurator.exe
2009-06-28 07:37 . 2009-02-14 23:52 111272 ----a-w- c:\programdata\KingsIsle Entertainment\Wizard101\PatchClient\BankA\Configurator.exe
2009-06-18 15:37 . 2009-01-20 05:07 -------- d-----w- c:\program files\Common Files\Apple
2009-06-18 15:37 . 2009-01-20 05:13 -------- d-----w- c:\programdata\Apple Computer
2009-06-15 14:58 . 2009-02-15 20:54 5972 ----a-w- c:\users\Ashley D\AppData\Local\d3d9caps.dat
2009-06-04 13:24 . 2008-04-19 00:46 1700416 ----a-w- c:\programdata\WildTangent\My HP Game Console\Downloads\en-us\Installers\SetupGamesClient.exe
2009-05-30 14:52 . 2007-07-02 19:15 -------- d-----w- c:\programdata\WildTangent
2009-05-30 14:13 . 2007-07-02 19:15 -------- d-----w- c:\program files\HP Games
2009-05-03 19:43 . 2008-04-01 22:43 409600 ----a-w- c:\windows\system32\wrap_oal.dll
2009-05-03 19:43 . 2008-04-01 22:43 114688 ----a-w- c:\windows\system32\OpenAL32.dll
2009-04-11 06:33 . 2009-06-28 23:24 986600 ----a-w- c:\windows\system32\winload.exe
2009-04-11 06:33 . 2009-06-28 23:23 926184 ----a-w- c:\windows\system32\winresume.exe
2009-04-11 06:33 . 2009-06-28 23:23 292840 ----a-w- c:\windows\system32\drivers\volmgrx.sys
2009-04-11 06:33 . 2009-06-28 23:24 897000 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-04-11 06:33 . 2009-06-28 23:23 614376 ----a-w- c:\windows\system32\ci.dll
2009-04-11 06:28 . 2009-06-28 23:23 56320 ----a-w- c:\windows\system32\xmlfilter.dll
2009-04-11 06:27 . 2009-06-28 23:24 441344 ----a-w- c:\windows\system32\SearchIndexer.exe
2009-04-11 06:22 . 2009-06-28 23:21 7168 ----a-w- c:\windows\system32\f3ahvoas.dll
2009-04-11 06:21 . 2009-06-28 23:22 37376 ----a-w- c:\windows\system32\cdd.dll
2009-04-11 05:42 . 2009-06-28 23:22 93696 ----a-w- c:\windows\system32\drivers\bridge.sys
2009-04-11 05:03 . 2009-06-28 23:24 2644480 ----a-w- c:\windows\system32\NlsLexicons0009.dll
2009-04-11 04:57 . 2009-06-28 23:21 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-04-11 04:54 . 2009-06-28 23:21 2048 ----a-w- c:\windows\system32\mferror.dll
2009-04-11 04:51 . 2009-06-28 23:22 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2009-04-11 04:47 . 2009-06-28 23:22 273920 ----a-w- c:\windows\system32\drivers\afd.sys
2009-04-11 04:46 . 2009-06-28 23:22 69120 ----a-w- c:\windows\system32\drivers\rassstp.sys
2009-04-11 04:46 . 2009-06-28 23:22 121344 ----a-w- c:\windows\system32\drivers\ndiswan.sys
2009-04-11 04:46 . 2009-06-28 23:21 41472 ----a-w- c:\windows\system32\drivers\raspppoe.sys
2009-04-11 04:46 . 2009-06-28 23:21 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2009-04-11 04:46 . 2009-06-28 23:22 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2009-04-11 04:46 . 2009-06-28 23:22 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2009-04-11 04:45 . 2009-06-28 23:22 72192 ----a-w- c:\windows\system32\drivers\tdx.sys
2009-04-11 04:45 . 2009-06-28 23:22 72192 ----a-w- c:\windows\system32\drivers\pacer.sys
2009-04-11 04:45 . 2009-06-28 23:23 185856 ----a-w- c:\windows\system32\drivers\netbt.sys
2009-04-11 04:45 . 2009-06-28 23:23 401408 ----a-w- c:\windows\system32\drivers\http.sys
2009-04-11 04:45 . 2009-06-28 23:22 113664 ----a-w- c:\windows\system32\drivers\rmcast.sys
2009-04-11 04:45 . 2009-06-28 23:22 66560 ----a-w- c:\windows\system32\drivers\smb.sys
2009-04-11 04:43 . 2009-06-28 23:22 148480 ----a-w- c:\windows\system32\drivers\nwifi.sys
2009-04-11 04:43 . 2009-06-28 23:23 196096 ----a-w- c:\windows\system32\drivers\usbhub.sys
2009-04-11 04:42 . 2009-06-28 23:23 226304 ----a-w- c:\windows\system32\drivers\usbport.sys
2009-04-11 04:42 . 2009-06-28 23:22 25856 ----a-w- c:\windows\system32\drivers\USBCAMD2.sys
2009-04-11 04:42 . 2009-06-28 23:22 25856 ----a-w- c:\windows\system32\drivers\USBCAMD.sys
2009-04-11 04:42 . 2009-06-28 23:22 39936 ----a-w- c:\windows\system32\drivers\usbehci.sys
2009-04-11 04:42 . 2009-06-28 23:22 167936 ----a-w- c:\windows\system32\drivers\portcls.sys
2009-04-11 04:42 . 2009-06-28 23:22 12800 ----a-w- c:\windows\system32\drivers\hidusb.sys
2009-04-11 04:42 . 2009-06-28 23:22 39424 ----a-w- c:\windows\system32\drivers\hidclass.sys
2009-04-11 04:42 . 2009-06-28 23:22 52992 ----a-w- c:\windows\system32\drivers\stream.sys
2009-04-11 04:42 . 2009-06-28 23:24 561152 ----a-w- c:\windows\system32\drivers\hdaudbus.sys
2009-04-11 04:39 . 2009-06-28 23:22 16384 ----a-w- c:\windows\system32\iscsilog.dll
2009-04-11 04:39 . 2009-06-28 23:22 67072 ----a-w- c:\windows\system32\drivers\cdrom.sys
2009-04-11 04:39 . 2009-06-28 23:22 19456 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2009-04-11 04:38 . 2009-06-28 23:22 149504 ----a-w- c:\windows\system32\drivers\ks.sys
2009-04-11 04:38 . 2009-06-28 23:22 17408 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2009-04-11 04:27 . 2009-06-28 23:21 2560 ----a-w- c:\windows\system32\msimsg.dll
2009-04-11 04:23 . 2009-06-28 23:23 626176 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2009-04-11 04:23 . 2009-06-28 23:22 76288 ----a-w- c:\windows\system32\drivers\dxg.sys
2009-04-11 04:23 . 2009-06-28 23:22 289792 ----a-w- c:\windows\system32\atmfd.dll
2009-04-11 04:22 . 2009-06-28 23:22 33280 ----a-w- c:\windows\system32\drivers\watchdog.sys
2009-04-11 04:15 . 2009-06-28 23:23 288768 ----a-w- c:\windows\system32\drivers\srv.sys
2009-04-11 04:15 . 2009-06-28 23:23 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2009-04-11 04:15 . 2009-06-28 23:23 98816 ----a-w- c:\windows\system32\drivers\srvnet.sys
2009-04-11 04:14 . 2009-06-28 23:23 114688 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2009-04-11 04:14 . 2009-06-28 23:23 212992 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2009-04-11 04:14 . 2009-06-28 23:23 225280 ----a-w- c:\windows\system32\drivers\rdbss.sys
2009-04-11 04:14 . 2009-06-28 23:22 79360 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2009-04-11 04:14 . 2009-06-28 23:23 105984 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-04-11 04:14 . 2009-06-28 23:22 75264 ----a-w- c:\windows\system32\drivers\dfsc.sys
2009-04-11 04:14 . 2009-06-28 23:22 35328 ----a-w- c:\windows\system32\drivers\npfs.sys
2009-04-11 04:13 . 2009-06-28 23:22 226816 ----a-w- c:\windows\system32\drivers\udfs.sys
2009-04-11 04:13 . 2009-06-28 23:22 136704 ----a-w- c:\windows\system32\drivers\exfat.sys
2009-04-11 04:13 . 2009-06-28 23:22 142848 ----a-w- c:\windows\system32\drivers\fastfat.sys
2009-04-11 04:12 . 2009-06-28 23:23 617984 ----a-w- c:\windows\system32\adtschema.dll
2009-04-11 02:52 . 2009-06-28 23:24 684032 ----a-w- c:\windows\system32\drivers\spsys.sys
2009-04-11 01:59 . 2009-06-28 23:23 107612 ----a-w- c:\windows\system32\StructuredQuerySchema.bin
2008-04-07 06:59 . 2008-06-11 02:16 67696 ----a-w- c:\program files\mozilla firefox\components\jar50.dll
2008-04-07 06:59 . 2008-06-11 02:16 54376 ----a-w- c:\program files\mozilla firefox\components\jsd3250.dll
2008-04-07 06:59 . 2008-06-11 02:16 34952 ----a-w- c:\program files\mozilla firefox\components\myspell.dll
2008-04-07 06:59 . 2008-06-11 02:16 46720 ----a-w- c:\program files\mozilla firefox\components\spellchk.dll
2008-04-07 06:59 . 2008-06-11 02:16 172144 ----a-w- c:\program files\mozilla firefox\components\xpinstal.dll
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Tags for this Thread
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
