Jump to content

Lostpath

Members
  • Posts

    9
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Thanks for your help. So did it look like I had anything malicious from that ammy scam or anything else? Do you think I am fairly safe?
  2. ESETSmartInstaller@High as CAB hook log: OnlineScanner.ocx - registred OK # version=7 # iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339) # OnlineScanner.ocx=1.0.0.6583 # api_version=3.0.2 # EOSSerial=d584e069a20c014f9393beb1a2adf99f # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2012-10-14 09:49:09 # local_time=2012-10-14 02:49:09 (-0800, Pacific Daylight Time) # country="United States" # lang=1033 # osver=5.1.2600 NT Service Pack 3 # compatibility_mode=512 16777215 100 0 3759548 3759548 0 0 # compatibility_mode=1024 16777175 100 0 526935 526935 0 0 # compatibility_mode=8192 67108863 100 0 0 0 0 0 # scanned=143787 # found=1 # cleaned=1 # scan_time=3793 C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\36\5be70a64-71bdb0f4 Java/Exploit.CVE-2012-0507.BR trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
  3. Here it is, never mind my last question. aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software Run date: 2012-10-12 18:11:35 ----------------------------- 18:11:35.739 OS Version: Windows 5.1.2600 Service Pack 3 18:11:35.739 Number of processors: 1 586 0x2C02 18:11:35.739 ComputerName: OWNER-5A18BC4B4 UserName: Owner 18:11:37.614 Initialize success 18:12:29.458 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-5 18:12:29.458 Disk 0 Vendor: WDC_WD800JD-75LSA0 09.01D09 Size: 76293MB BusType: 3 18:12:29.489 Disk 0 MBR read successfully 18:12:29.489 Disk 0 MBR scan 18:12:29.489 Disk 0 Windows XP default MBR code 18:12:29.489 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 76285 MB offset 63 18:12:29.489 Disk 0 scanning sectors +156232125 18:12:29.599 Disk 0 scanning C:\WINDOWS\system32\drivers 18:12:49.021 Service scanning 18:13:02.771 Modules scanning 18:13:10.911 Disk 0 trace - called modules: 18:13:10.927 ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS 18:13:10.927 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x89df0ab8] 18:13:10.927 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-5[0x89e53b00] 18:13:10.927 Scan finished successfully 18:14:04.568 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Owner\Desktop\MBR.dat" 18:14:04.568 The log file has been saved successfully to "C:\Documents and Settings\Owner\Desktop\aswMBR.txt" aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software Run date: 2012-10-12 18:11:35 ----------------------------- 18:11:35.739 OS Version: Windows 5.1.2600 Service Pack 3 18:11:35.739 Number of processors: 1 586 0x2C02 18:11:35.739 ComputerName: OWNER-5A18BC4B4 UserName: Owner 18:11:37.614 Initialize success 18:12:29.458 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-5 18:12:29.458 Disk 0 Vendor: WDC_WD800JD-75LSA0 09.01D09 Size: 76293MB BusType: 3 18:12:29.489 Disk 0 MBR read successfully 18:12:29.489 Disk 0 MBR scan 18:12:29.489 Disk 0 Windows XP default MBR code 18:12:29.489 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 76285 MB offset 63 18:12:29.489 Disk 0 scanning sectors +156232125 18:12:29.599 Disk 0 scanning C:\WINDOWS\system32\drivers 18:12:49.021 Service scanning 18:13:02.771 Modules scanning 18:13:10.911 Disk 0 trace - called modules: 18:13:10.927 ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS 18:13:10.927 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x89df0ab8] 18:13:10.927 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-5[0x89e53b00] 18:13:10.927 Scan finished successfully 18:14:04.568 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Owner\Desktop\MBR.dat" 18:14:04.568 The log file has been saved successfully to "C:\Documents and Settings\Owner\Desktop\aswMBR.txt" 18:14:26.396 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Owner\Desktop\MBR.dat" 18:14:26.396 The log file has been saved successfully to "C:\Documents and Settings\Owner\Desktop\aswMBR.txt"
  4. Malwarebytes Anti-Malware 1.65.0.1400 www.malwarebytes.org Database version: v2012.10.12.08 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Owner :: OWNER-5A18BC4B4 [administrator] 10/12/2012 5:46:33 PM mbam-log-2012-10-12 (17-46-33).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 276518 Time elapsed: 10 minute(s), 56 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end) Here is my malwarebytes log. Do I need to download avast for the second scanner? I cant seem to save the second log so its readable by my computer.
  5. Hi, thanks for looking at these. Im going to copy and paste from the notepads, thats what you want me to do right? I live in Canada and they just called me again. Can you tell me what that ID is that shows up when you connect to ammyy.com and what exactly I gave to them? . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26 Run by Owner at 16:19:14 on 2012-10-10 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2047.1234 [GMT -7:00] . FW: AVG Firewall *Disabled* . ============== Running Processes =============== . C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AVG\AVG2013\avgfws.exe C:\Program Files\AVG\AVG2013\avgidsagent.exe C:\Program Files\AVG\AVG2013\avgwdsvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe C:\Program Files\AVG\AVG2013\avgnsx.exe C:\Program Files\AVG\AVG2013\avgemcx.exe C:\Program Files\AVG\AVG2013\avgrsx.exe C:\Program Files\AVG\AVG2013\avgcsrvx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Program Files\AVG\AVG2013\avgui.exe C:\Program Files\AVG\AVG2013\avgcsrvx.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\12.2.6\ScriptHelper.exe C:\Program Files\Internet Explorer\iexplore.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ uInternet Connection Wizard,ShellNext = iexplore mSearchAssistant = hxxp://start.facemoods.com/?a=bfus&s={searchTerms}&f=4 BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\12.2.5.34\AVG Secure Search_toolbar.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: {99079a25-328f-4bd4-be04-00955acaa0a7} - No File TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\12.2.5.34\AVG Secure Search_toolbar.dll TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File {e7df6bff-55a5-4eb7-a673-4ed3e9456d39} uRun: [Google Update] "c:\documents and settings\owner\local settings\application data\google\update\GoogleUpdate.exe" /c mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSConfig.exe /auto mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [vProt] "c:\program files\avg secure search\vprot.exe" mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY mRun: [ROC_ROC_NT] "c:\program files\avg secure search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe Trusted Zone: vizzed.com\www DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} - hxxps://www-secure.symantec.com/techsupp/asa/ss/sa/sa_cabs/tgctlsr.cab DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1291236325734 DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} - hxxps://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.110.0.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab TCP: DhcpNameServer = 192.168.1.254 75.153.176.9 TCP: Interfaces\{6270C3DA-D719-4F66-9EE0-97EFA5E5A5A7} : DhcpNameServer = 192.168.1.254 75.153.176.9 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\12.2.6\ViProtocol.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll Hosts: 127.0.0.1 www.spywareinfo.com . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\owner\application data\mozilla\firefox\profiles\2lm1dujd.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3059010&SearchSource=3&q={searchTerms} FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT3059010&SearchSource=13 FF - prefs.js: keyword.URL - hxxps://isearch.avg.com/search?cid=%7Bb903b2c0-f875-4f48-acec-9133e7701596%7D&mid=5b93e1e2225147d1bffbd1581d0e0619-06ce4fc639803a2e3563922518183d8e94088cb9&ds=AVG&v=12.2.5.34〈=en&pr=pr&d=2012-09-28%2018%3A52%3A00&sap=ku&q= FF - component: c:\documents and settings\owner\application data\mozilla\firefox\profiles\2lm1dujd.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\components\XPATLCOM.dll FF - component: c:\documents and settings\owner\application data\mozilla\firefox\profiles\2lm1dujd.default\extensions\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}\components\RadioWMPCoreGecko19.dll FF - component: c:\documents and settings\owner\application data\mozilla\firefox\profiles\2lm1dujd.default\extensions\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}\components\RadioWMPCoreGecko5.dll FF - component: c:\documents and settings\owner\application data\mozilla\firefox\profiles\2lm1dujd.default\extensions\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}\components\RadioWMPCoreGecko6.dll FF - component: c:\documents and settings\owner\application data\mozilla\firefox\profiles\2lm1dujd.default\extensions\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}\components\RadioWMPCoreGecko7.dll FF - component: c:\documents and settings\owner\application data\mozilla\firefox\profiles\2lm1dujd.default\extensions\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}\components\RadioWMPCoreGecko8.dll FF - component: c:\documents and settings\owner\application data\mozilla\firefox\profiles\2lm1dujd.default\extensions\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}\components\RadioWMPCoreGecko9.dll FF - plugin: c:\documents and settings\owner\local settings\application data\google\update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\12.2.6\npsitesafety.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_278.dll . ---- FIREFOX POLICIES ---- FF - user.js: yahoo.ytff.general.dontshowhpoffer - true ============= SERVICES / DRIVERS =============== . R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 51936] R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-8-9 178656] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-1-31 35168] R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 176096] R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 19808] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-2-22 151648] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-12-23 89440] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-3-19 164704] R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-8-13 27496] R2 avgfws;AVG Firewall;c:\program files\avg\avg2013\avgfws.exe [2012-8-20 1286392] R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2012-8-20 5751928] R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2012-8-20 184304] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-8-12 655944] R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files\avg\avg pc tuneup\TuneUpUtilitiesService32.exe [2012-8-23 1532280] R2 vToolbarUpdater12.2.6;vToolbarUpdater12.2.6;c:\program files\common files\avg secure search\vtoolbarupdater\12.2.6\ToolbarUpdater.exe [2012-8-29 722528] R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-8-12 22344] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\avg\avg pc tuneup\TuneUpUtilitiesDriver32.sys [2012-7-4 10088] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-6-8 250808] S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944] S3 EagleXNt;EagleXNt;\??\c:\windows\system32\drivers\eaglexnt.sys --> c:\windows\system32\drivers\EagleXNt.sys [?] . =============== Created Last 30 ================ . 2012-10-10 00:26:50 -------- d-----w- c:\windows\system32\wbem\repository\FS 2012-10-10 00:26:50 -------- d-----w- c:\windows\system32\wbem\Repository 2012-10-09 22:29:26 711240 ----a-w- c:\windows\isRS-000.tmp 2012-10-09 21:31:05 -------- d-----w- c:\documents and settings\all users\application data\AMMYY 2012-10-09 18:05:22 10220472 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe 2012-10-07 18:24:22 32120 ----a-w- c:\windows\system32\TURegOpt.exe 2012-10-07 18:24:05 -------- d-----w- c:\documents and settings\owner\application data\AVG 2012-10-07 18:23:25 -------- d-----w- c:\documents and settings\all users\application data\AVG 2012-10-07 18:23:15 -------- d-sh--w- c:\documents and settings\all users\application data\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} 2012-09-29 03:49:39 -------- d-----w- c:\documents and settings\owner\application data\AVG2013 2012-09-29 01:52:21 -------- d-----w- c:\documents and settings\owner\application data\TuneUp Software 2012-09-29 01:51:57 -------- d-----w- c:\program files\AVG Secure Search 2012-09-29 01:49:02 -------- d-----w- c:\documents and settings\all users\application data\AVG2013 2012-09-29 01:46:26 -------- d-----w- c:\documents and settings\owner\local settings\application data\MFAData 2012-09-29 01:46:26 -------- d-----w- c:\documents and settings\owner\local settings\application data\Avg2013 . ==================== Find3M ==================== . 2012-10-09 19:05:10 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-10-09 19:05:09 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-09-18 01:58:56 51936 ----a-w- c:\windows\system32\drivers\avgidshx.sys 2012-09-12 18:47:22 164704 ----a-w- c:\windows\system32\drivers\avgtdix.sys 2012-09-12 18:47:04 151648 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2012-08-29 14:57:07 27496 ----a-w- c:\windows\system32\drivers\avgtpx86.sys 2012-08-28 15:14:53 916992 ----a-w- c:\windows\system32\wininet.dll 2012-08-28 15:14:53 43520 ----a-w- c:\windows\system32\licmgr10.dll 2012-08-28 15:14:52 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-08-28 12:07:15 385024 ----a-w- c:\windows\system32\html.iec 2012-08-24 13:53:22 177664 ----a-w- c:\windows\system32\wintrust.dll 2012-08-21 13:29:19 2192896 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-08-21 12:58:06 2069632 ----a-w- c:\windows\system32\ntkrnlpa.exe 2012-08-13 23:40:54 176096 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys 2012-08-10 11:52:28 19808 ----a-w- c:\windows\system32\drivers\avgidsshimx.sys 2012-08-10 11:52:18 35168 ----a-w- c:\windows\system32\drivers\avgrkx86.sys 2012-08-09 20:56:44 178656 ----a-w- c:\windows\system32\drivers\avglogx.sys 2005-04-01 06:17:42 40960 ----a-w- c:\program files\Uninstall_CDS.exe . ============= FINISH: 16:20:09.73 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows XP Home Edition Boot Device: \Device\HarddiskVolume1 Install Date: 11/27/2010 4:15:17 PM System Uptime: 10/10/2012 9:57:09 AM (7 hours ago) . Motherboard: | | 760GX-M Processor: AMD Sempron Processor 3000+ | Socket 940 | 1799/200mhz . ==== Disk Partitions ========================= . A: is Removable C: is FIXED (NTFS) - 74 GiB total, 56.553 GiB free. D: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP344: 7/13/2012 1:23:27 PM - System Checkpoint RP345: 7/14/2012 3:43:40 PM - System Checkpoint RP346: 7/16/2012 11:50:27 AM - System Checkpoint RP347: 7/16/2012 3:54:23 PM - Removed OpenOffice.org 3.2 RP348: 7/16/2012 5:44:13 PM - Installed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 RP349: 7/16/2012 5:44:44 PM - Installed OpenOffice.org 3.4 RP350: 7/17/2012 4:31:54 PM - Installed PDFill PDF Editor with FREE Writer and FREE Tools RP351: 7/17/2012 4:49:12 PM - Removed PDFill PDF Editor with FREE Writer and FREE Tools RP352: 7/18/2012 4:55:55 PM - System Checkpoint RP353: 7/19/2012 5:05:34 PM - System Checkpoint RP354: 7/20/2012 5:56:27 PM - System Checkpoint RP355: 7/20/2012 7:19:37 PM - Installed AVG 2012 RP356: 7/20/2012 7:26:59 PM - Removed AVG 2012 RP357: 7/22/2012 6:43:58 PM - System Checkpoint RP358: 7/23/2012 6:55:03 PM - System Checkpoint RP359: 7/24/2012 6:57:56 PM - System Checkpoint RP360: 7/25/2012 7:37:54 PM - System Checkpoint RP361: 7/27/2012 11:05:17 AM - System Checkpoint RP362: 7/28/2012 11:24:17 AM - System Checkpoint RP363: 7/29/2012 7:01:29 PM - System Checkpoint RP364: 7/30/2012 8:05:21 PM - System Checkpoint RP365: 8/1/2012 10:29:37 AM - System Checkpoint RP366: 8/2/2012 11:25:44 AM - System Checkpoint RP367: 8/3/2012 11:47:35 AM - System Checkpoint RP368: 8/4/2012 12:05:31 PM - System Checkpoint RP369: 8/5/2012 6:16:32 PM - System Checkpoint RP370: 8/6/2012 6:35:28 PM - System Checkpoint RP371: 8/7/2012 8:25:44 PM - System Checkpoint RP372: 8/9/2012 10:51:49 AM - System Checkpoint RP373: 8/10/2012 11:44:55 AM - System Checkpoint RP374: 8/11/2012 1:39:27 PM - System Checkpoint RP375: 8/13/2012 10:12:19 AM - Removed AVG 2012 RP376: 8/13/2012 10:14:22 AM - Removed AVG 2012 RP377: 8/13/2012 10:19:50 AM - Installed AVG 2012 RP378: 8/13/2012 10:20:19 AM - Installed AVG 2012 RP379: 8/14/2012 10:33:13 AM - System Checkpoint RP380: 8/15/2012 8:31:19 AM - Software Distribution Service 3.0 RP381: 8/16/2012 9:04:43 AM - System Checkpoint RP382: 8/17/2012 11:27:32 AM - System Checkpoint RP383: 8/18/2012 12:37:26 PM - System Checkpoint RP384: 8/19/2012 6:53:26 PM - System Checkpoint RP385: 8/20/2012 7:19:50 PM - System Checkpoint RP386: 8/21/2012 9:26:50 AM - Installed HiJackThis RP387: 8/22/2012 10:12:14 AM - System Checkpoint RP388: 8/23/2012 10:53:06 AM - System Checkpoint RP389: 8/24/2012 11:56:22 AM - System Checkpoint RP390: 8/25/2012 12:57:49 PM - System Checkpoint RP391: 8/27/2012 10:37:10 AM - System Checkpoint RP392: 8/28/2012 12:12:01 PM - System Checkpoint RP393: 8/29/2012 12:36:08 PM - System Checkpoint RP394: 8/30/2012 1:13:25 PM - System Checkpoint RP395: 8/31/2012 2:05:32 PM - System Checkpoint RP396: 9/1/2012 2:12:21 PM - System Checkpoint RP397: 9/3/2012 8:35:35 AM - System Checkpoint RP398: 9/4/2012 8:53:09 AM - System Checkpoint RP399: 9/5/2012 10:48:25 AM - System Checkpoint RP400: 9/6/2012 12:35:23 PM - System Checkpoint RP401: 9/7/2012 12:51:15 PM - System Checkpoint RP402: 9/8/2012 1:00:50 PM - System Checkpoint RP403: 9/10/2012 10:13:05 AM - System Checkpoint RP404: 9/11/2012 11:37:06 AM - System Checkpoint RP405: 9/12/2012 12:32:19 PM - System Checkpoint RP406: 9/12/2012 12:35:11 PM - Software Distribution Service 3.0 RP407: 9/13/2012 1:28:37 PM - System Checkpoint RP408: 9/14/2012 1:34:31 PM - System Checkpoint RP409: 9/15/2012 1:56:02 PM - System Checkpoint RP410: 9/16/2012 8:07:25 PM - System Checkpoint RP411: 9/18/2012 10:27:42 AM - System Checkpoint RP412: 9/19/2012 11:15:08 AM - System Checkpoint RP413: 9/20/2012 11:30:13 AM - System Checkpoint RP414: 9/21/2012 11:32:15 AM - System Checkpoint RP415: 9/21/2012 7:16:32 PM - Software Distribution Service 3.0 RP416: 9/22/2012 8:12:32 PM - System Checkpoint RP417: 9/23/2012 8:46:13 PM - System Checkpoint RP418: 9/25/2012 1:58:09 PM - System Checkpoint RP419: 9/26/2012 2:21:57 PM - System Checkpoint RP420: 9/27/2012 3:11:41 PM - System Checkpoint RP421: 9/28/2012 3:40:15 PM - System Checkpoint RP422: 9/28/2012 6:48:39 PM - Installed AVG 2013 RP423: 9/28/2012 6:48:49 PM - Removed AVG 2012 RP424: 9/28/2012 6:49:26 PM - Installed AVG 2013 RP425: 9/28/2012 6:53:42 PM - Removed AVG 2012 RP426: 9/29/2012 7:40:14 PM - System Checkpoint RP427: 9/30/2012 8:35:06 PM - System Checkpoint RP428: 10/2/2012 8:28:46 AM - System Checkpoint RP429: 10/3/2012 9:37:24 AM - System Checkpoint RP430: 10/4/2012 11:20:22 AM - System Checkpoint RP431: 10/5/2012 12:35:43 PM - System Checkpoint RP432: 10/6/2012 12:39:31 PM - System Checkpoint RP433: 10/7/2012 11:23:40 AM - Installed AVG PC TuneUp RP434: 10/8/2012 1:09:06 PM - System Checkpoint RP435: 10/9/2012 1:14:34 PM - System Checkpoint RP436: 10/9/2012 5:25:56 PM - Restore Operation RP437: 10/9/2012 6:11:54 PM - Software Distribution Service 3.0 . ==== Installed Programs ====================== . Adobe Acrobat 5.0 Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader X (10.1.4) Amazon Kindle AVG 2013 AVG PC TuneUp AVG PC TuneUp Language Pack (en-US) DVD Solution Google Chrome HiJackThis Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2158563) Hotfix for Windows XP (KB2443685) Hotfix for Windows XP (KB2570791) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB2756822) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB981793) Java Auto Updater Java 6 Update 26 Malwarebytes Anti-Malware version 1.62.0.1300 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Security Update (KB2656353) Microsoft .NET Framework 1.1 Security Update (KB2656370) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft Compression Client Pack 1.0 for Windows XP Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable - KB2467175 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Mozilla Firefox (3.6.10) NVIDIA Drivers OpenOffice.org 3.4 Realtek AC'97 Audio RPS CRT Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft Windows (KB2564958) Security Update for Windows Internet Explorer 8 (KB2360131) Security Update for Windows Internet Explorer 8 (KB2416400) Security Update for Windows Internet Explorer 8 (KB2482017) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2530548) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2559049) Security Update for Windows Internet Explorer 8 (KB2586448) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB2647516) Security Update for Windows Internet Explorer 8 (KB2675157) Security Update for Windows Internet Explorer 8 (KB2699988) Security Update for Windows Internet Explorer 8 (KB2722913) Security Update for Windows Internet Explorer 8 (KB2744842) Security Update for Windows Internet Explorer 8 (KB971961) Security Update for Windows Internet Explorer 8 (KB981332) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player (KB979402) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2121546) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2259922) Security Update for Windows XP (KB2279986) Security Update for Windows XP (KB2286198) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2296199) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2436673) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2476687) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479628) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485376) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2503665) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508272) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2524375) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2536276) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2544893) Security Update for Windows XP (KB2555917) Security Update for Windows XP (KB2562937) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2567053) Security Update for Windows XP (KB2567680) Security Update for Windows XP (KB2570222) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2619339) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2621440) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2639417) Security Update for Windows XP (KB2641653) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB2647518) Security Update for Windows XP (KB2653956) Security Update for Windows XP (KB2655992) Security Update for Windows XP (KB2659262) Security Update for Windows XP (KB2660465) Security Update for Windows XP (KB2661637) Security Update for Windows XP (KB2676562) Security Update for Windows XP (KB2685939) Security Update for Windows XP (KB2686509) Security Update for Windows XP (KB2691442) Security Update for Windows XP (KB2695962) Security Update for Windows XP (KB2698365) Security Update for Windows XP (KB2705219) Security Update for Windows XP (KB2707511) Security Update for Windows XP (KB2709162) Security Update for Windows XP (KB2712808) Security Update for Windows XP (KB2718523) Security Update for Windows XP (KB2719985) Security Update for Windows XP (KB2723135) Security Update for Windows XP (KB2724197) Security Update for Windows XP (KB2731847) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975561) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979559) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980218) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981852) Security Update for Windows XP (KB981957) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982214) Security Update for Windows XP (KB982381) Security Update for Windows XP (KB982665) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft Windows (KB971513) Update for Windows Internet Explorer 8 (KB2447568) Update for Windows Internet Explorer 8 (KB976662) Update for Windows XP (KB2141007) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2541763) Update for Windows XP (KB2607712) Update for Windows XP (KB2616676) Update for Windows XP (KB2641690) Update for Windows XP (KB2661254-v2) Update for Windows XP (KB2718704) Update for Windows XP (KB2736233) Update for Windows XP (KB2749655) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) WebFldrs XP Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 8 Windows Media Format 11 runtime Windows Media Player 11 Windows XP Service Pack 3 . ==== Event Viewer Messages From Past Week ======== . 10/9/2012 5:20:38 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service helpsvc with arguments "" in order to run the server: {833E4010-AFF7-4AC3-AAC2-9F24C1457BCE} 10/7/2012 11:08:19 AM, error: Service Control Manager [7006] - The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied. . ==== End Of File ===========================
  6. Hey everyone, Ive had a slow and irritating computer for a while that Ive been too busy to deal with but something just happened to me that requires attention now. I got a call today from someone with a thick indian accent claiming to be a tech support person from microsoft. Long story short I ran ammyy and let them control my computer as they showed me errors that they said "they" had been recieveing reports about. My wishful thinking got the better of me, they told me that a lot of people were havinig major computer slow downs (as I have been having) and I thought that it was a legitimate outreach attempt on microsofts part to solve some virus anomaly or something. They showed me all these errors and said they could fix it. As Ive had no luck with Avg or malwarebytes in getting my computer to a resonable speed I was foolishly intrigued. Anyway heres the deal. I dont think I downloaded anything but they got me to log into ammyy and from the ammy connection window I gave them an ID (not an IP) not sure what kind of ID but I gave it to them I am not very computer literate but I want to keep as safe as I can now, how dire is the situation Im in? I didnt give them any money or credit card information (they asked for $201) but they have some ID of mine now. I ran malwarebytes (updated) and Avg but as usual they found nothing. What advice would you give for me at this point? What steps should I take? Would someone mind taking a look at a hijackthis log or malwarebytes log from me? Thanks for your guys help.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.