Jump to content

sammakko

Members
  • Posts

    19
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Junkware removal tool crashes when running. Some plugin stops functioning at it never finishes the scan. I ran MWB and got the following log. MBAM-log-2013-10-24 (14-36-56).txt I tried to remove the found items, it asked me to reinstall but I am not sure if it actually did anything. Could you tell me what you have observed so far?
  2. Hi again. Sorry for taking a time in replying, and the thread was locked meanwhile, I was not at home and busy. Here is the file attached that you requested! I don't know if this question belongs into this forum, since I am not sure whether it is hardware or software related problem. But I still experience the lag online(in online games and web surfing its quite frustrating), programs crashing often and I noticed some accesories like headset, sound system and monitor having connection problems(that I didn't have before). I see red dots, lines and monitor turning itself on/off, headset and speakers(although having different plug holes) are doing the same. Is it just a weird coincidence... Im going to run tomorrow some heat/torture tests on hardware. noticed another thing before, game client(league of legends) had after the automatic game patch(thats when it started acting weird) different loading screen logo than it did before. I thought its just part of the patch, but I recently re-installed the program and now it looks and feels just the same as before the patch.
  3. You forgot to add the attachment file I removed the threats using mwbytes afterwards before I read this... :/ I still seem to have problems with internet(speed/connection timeouts - if we cant work it out I may try and switch service provider) and pc(lag)..
  4. Ok, nice to get that cleared up.. I just looked up several websites on the net that stated "established" means there is someone on my pc, I don't know if they are trolls or just misinformed.. anyway, was it normal that windows tells me to start using virus protection when I have it on? And another thing, I noticed my firefox was out of date, updated it. While I was updating avira notified me it had installed 15 new files, and that's when my computer crashed. BAM. And after installation, I open firefox to get to login page of the school network, it tells me that the sites certificate(or along the lines) is not trusted. It didn't do this on previous version.. Am I just being a little paranoid here? I will send the logs in the evening..
  5. I don't know.. I wanted to know what is the best option of free antiviruses(currently running avira) plus firewall, avira dont come with free firewall so I have windows defender on. What is weird is that windows tells me to "start using antivirus program" but avira is running. When I try to click fix nothing will happen. I remember avira was infected.. I still encounter this weird lag when surfing I had earlier... Command prompt lines tell me that Proto Paikallinen osoite Vieras osoite Tila PID TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 924 TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4 TCP 0.0.0.0:44080 0.0.0.0:0 LISTENING 2880 TCP 0.0.0.0:44081 0.0.0.0:0 LISTENING 2880 TCP 0.0.0.0:49152 0.0.0.0:0 LISTENING 552 TCP 0.0.0.0:49153 0.0.0.0:0 LISTENING 1012 TCP 0.0.0.0:49154 0.0.0.0:0 LISTENING 468 TCP 0.0.0.0:49155 0.0.0.0:0 LISTENING 648 TCP 0.0.0.0:49174 0.0.0.0:0 LISTENING 640 TCP 127.0.0.1:44080 127.0.0.1:56181 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56184 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56186 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56199 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56202 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56204 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56206 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56208 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56213 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56252 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56254 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56256 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56258 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56260 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56262 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56264 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:56266 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58284 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58319 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58321 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58323 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58325 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58327 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58329 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58331 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58333 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58335 TIME_WAIT 0 TCP 127.0.0.1:44080 127.0.0.1:58339 TIME_WAIT 0 TCP 127.0.0.1:50397 127.0.0.1:50398 ESTABLISHED 4596 TCP 127.0.0.1:50398 127.0.0.1:50397 ESTABLISHED 4596 TCP 127.0.0.1:56188 127.0.0.1:44080 TIME_WAIT 0 TCP 127.0.0.1:56190 127.0.0.1:44080 TIME_WAIT 0 TCP 127.0.0.1:56192 127.0.0.1:44080 TIME_WAIT 0 TCP 127.0.0.1:56196 127.0.0.1:44080 TIME_WAIT 0 TCP 127.0.0.1:56215 127.0.0.1:44080 TIME_WAIT 0 TCP 127.0.0.1:58337 127.0.0.1:44080 TIME_WAIT 0 TCP 127.0.0.1:58341 127.0.0.1:44080 TIME_WAIT 0 TCP 192.168.10.169:139 0.0.0.0:0 LISTENING 4 TCP 192.168.10.169:56180 192.168.10.1:53 TIME_WAIT 0 TCP 192.168.10.169:56183 193.229.108.84:443 ESTABLISHED 4596 TCP 192.168.10.169:56189 93.184.220.111:80 TIME_WAIT 0 TCP 192.168.10.169:56191 66.33.220.204:80 TIME_WAIT 0 TCP 192.168.10.169:56193 2.21.207.139:80 TIME_WAIT 0 TCP 192.168.10.169:56194 173.194.32.47:443 ESTABLISHED 4596 TCP 192.168.10.169:56195 74.125.143.84:443 ESTABLISHED 4596 TCP 192.168.10.169:56197 74.125.232.107:443 ESTABLISHED 4596 TCP 192.168.10.169:56198 193.45.10.159:80 TIME_WAIT 0 TCP 192.168.10.169:56216 184.173.97.194:80 TIME_WAIT 0 TCP 192.168.10.169:56218 173.252.107.18:443 ESTABLISHED 4596 TCP 192.168.10.169:56222 193.45.10.146:443 ESTABLISHED 4596 TCP 192.168.10.169:56223 193.45.10.146:443 ESTABLISHED 4596 TCP 192.168.10.169:56225 23.62.98.145:443 ESTABLISHED 4596 TCP 192.168.10.169:56229 92.123.155.80:443 ESTABLISHED 4596 TCP 192.168.10.169:56230 92.123.155.66:443 ESTABLISHED 4596 TCP 192.168.10.169:56234 23.62.98.145:443 ESTABLISHED 4596 TCP 192.168.10.169:56235 23.62.98.145:443 ESTABLISHED 4596 TCP 192.168.10.169:56236 193.45.10.146:443 ESTABLISHED 4596 TCP 192.168.10.169:56237 193.45.10.146:443 ESTABLISHED 4596 TCP 192.168.10.169:56238 193.45.10.146:443 ESTABLISHED 4596 TCP 192.168.10.169:56239 193.45.10.146:443 ESTABLISHED 4596 TCP 192.168.10.169:56241 92.123.155.66:443 ESTABLISHED 4596 TCP 192.168.10.169:56242 92.123.155.66:443 ESTABLISHED 4596 TCP 192.168.10.169:56506 23.62.98.120:443 ESTABLISHED 4596 TCP 192.168.10.169:56684 31.13.64.97:443 ESTABLISHED 4596 TCP 192.168.10.169:58315 23.62.98.145:443 ESTABLISHED 4596 TCP 192.168.10.169:58338 192.221.106.126:80 TIME_WAIT 0 TCP 192.168.10.169:58342 68.232.35.121:80 TIME_WAIT 0 TCP [::]:135 [::]:0 LISTENING 924 TCP [::]:445 [::]:0 LISTENING 4 TCP [::]:44080 [::]:0 LISTENING 2880 TCP [::]:49152 [::]:0 LISTENING 552 TCP [::]:49153 [::]:0 LISTENING 1012 TCP [::]:49154 [::]:0 LISTENING 468 TCP [::]:49155 [::]:0 LISTENING 648 TCP [::]:49174 [::]:0 LISTENING 640 UDP 0.0.0.0:1234 *:* 4352 UDP 0.0.0.0:5355 *:* 1160 UDP 127.0.0.1:1900 *:* 3904 UDP 127.0.0.1:51181 *:* 3904 UDP 192.168.10.169:137 *:* 4 UDP 192.168.10.169:138 *:* 4 UDP 192.168.10.169:1900 *:* 3904 UDP 192.168.10.169:51180 *:* 3904 UDP [::]:5355 *:* 1160 UDP [::1]:1900 *:* 3904 UDP [::1]:51179 *:* 3904 UDP [fe80::29a8:fc8:9415:3158%11]:546 *:* 1012 UDP [fe80::29a8:fc8:9415:3158%11]:1900 *:* 3904 UDP [fe80::29a8:fc8:9415:3158%11]:51178 *:* 3904 If I understood correctly. "Established" means that someone else is on my pc/using some of my programs? Am I correct? I need a good router since im in shared network(dormitory with ~20 using the same network)?
  6. I updated now and it seems a success. It couldnt verify which java I was using so I just installed the latest version manually. I was just asking your opinion how I go with changing IF the person has collected my login data(should I use separate pc, network, make new account or change better) I mean a case where I change my passwords and the hacker could see me doing so I read this link if it will give more advice Again, thanks for all so far.
  7. Here is the log, I am updating the outdated programs. I just wanted to hear your suggestion on login data what I asked earlier.. 10072013_165947.log
  8. I ran the program, it didnt reboot but it "locked the user" so i had to login again, but I didnt get any notepad, nor do I find the logfile. I can find _OTM/movedfiles... but there is no logfile.
  9. Here is the results from all of the tests. I did not remove nothing like you told. I'm just curious what's your opinion, on how I should change my passwords,logins and other personal info(I have used for instance my mail, one online game, x-fire, student login info etc. Plus me and my friend had planned a trip for next month, the information was on my mailbox at the time of attack, now my friend is a bit on toes and we decided it would be wise to cancel this trip and rebook on better date, I know it's a bit over the top but you can never be to sure who would follow you and whats their motives) since if I do this now(change passwords, make new mailbox etc), the one who is on my pc could see it? What would be your suggestion? ESET SCAN.txt checkup.txt mbam-log-2013-10-04 (21-09-43).txt
  10. Thanks for very thorough guide. I just wondered if I had to remove the found registry errors in RogueKiller or just the report? I am leaving for weekend now, I can't stay at dorm in the weekends so I probably need to run the tests on sunday and get back to topic. Thanks for all so far, you have helped much
  11. I wasnt connected when I made this but here is the results. I can try second time connected. It tells me something too, but I dont see programs that were used by someone according to netstat - in command prompt(x-fire, ituneshelper, firefox, chrome, avira web protect and some aplle product) I cant find them in list. What if this hacker comes back at me? RKreport0_S_10042013_174803.txt AdwCleanerS0.txt Fixlog.txt
  12. One question before I begin, should I stay connected to internet or not during this procedure`?
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.