WiredWX Christian Hobby Weather Tools
Would you like to react to this message? Create an account in a few clicks or log in to continue.

WiredWX Christian Hobby Weather ToolsLog in

 


Does this mean I have keylogger activity?

2 posters

descriptionDoes this mean I have keylogger activity? EmptyDoes this mean I have keylogger activity?18th February 2010, 12:06 pm

more_horiz
I ran KL-Detector and this was the report

Below are some file operations that were done during the monitoring process.
Review them carefully and check for suspicious files.


C:\WINDOWS\Tasks\User_Feed_Synchronization-{34CD53BE-07A6-4108-B6CE-D8E418EA34BA}.job
was modified.

C:\WINDOWS\Tasks\User_Feed_Synchronization-{34CD53BE-07A6-4108-B6CE-D8E418EA34BA}.job
was modified.

C:\WINDOWS\SchedLgU.Txt
was modified.

C:\WINDOWS\SchedLgU.Txt
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\CONFIG\AVWIN.INI
was modified.

C:\WINDOWS\Tasks\User_Feed_Synchronization-{34CD53BE-07A6-4108-B6CE-D8E418EA34BA}.job
was modified.

C:\WINDOWS\Tasks\User_Feed_Synchronization-{34CD53BE-07A6-4108-B6CE-D8E418EA34BA}.job
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\wbem\Logs\wbemcore.log
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA
was modified.

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR
was modified.

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP
was modified.

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP
was modified.

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP
was modified.

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER
was modified.

C:\WINDOWS\Tasks\User_Feed_Synchronization-{34CD53BE-07A6-4108-B6CE-D8E418EA34BA}.job
was modified.

C:\WINDOWS\Tasks\User_Feed_Synchronization-{34CD53BE-07A6-4108-B6CE-D8E418EA34BA}.job
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\Tasks\User_Feed_Synchronization-{34CD53BE-07A6-4108-B6CE-D8E418EA34BA}.job
was modified.

C:\WINDOWS\Tasks\User_Feed_Synchronization-{34CD53BE-07A6-4108-B6CE-D8E418EA34BA}.job
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.

C:\WINDOWS\system32\config\software.LOG
was modified.



No suspicious files were found in your hard disk Smile...


You MAY want to take a look at:
C:\WINDOWS\system32\config\

descriptionDoes this mean I have keylogger activity? EmptyRe: Does this mean I have keylogger activity?18th February 2010, 7:35 pm

more_horiz
Download OTL by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
Does this mean I have keylogger activity? DXwU4
Does this mean I have keylogger activity? VvYDg

descriptionDoes this mean I have keylogger activity? EmptyRe: Does this mean I have keylogger activity?18th February 2010, 11:05 pm

more_horiz
I was able to download the OTL but wasnt able to run it. I run Windows XP. But it said that I may not have the promissions needed to run it. I dont understand that considering I am the only account on my pc. I dont have an Administrator account. I have the same privilege/rights as an Administrator. What should I do?

descriptionDoes this mean I have keylogger activity? EmptyRe: Does this mean I have keylogger activity?

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum