Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible Malware, compromised cred card


  • Please log in to reply
3 replies to this topic

#1 Udo Werner

Udo Werner

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:34 PM

Posted 29 October 2010 - 10:49 AM

Running Windows XP Pro with SP 3:
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.528 [GMT -7:00]

I am hoping someone can look at the combofix log and let me know if I was actually infected with malware.

The computer usually runs TrendMicro Officescan but it was turned off at some point. Computer was running with no issues and no slow downs.

My credit card was compromised on the same day I typed it into a website using Internet Explorer 8. This could just be a coincidence. That is when I saw the antivirus was not running.

Steps done:
- Ran Combofix while computer was running normally - did not show an infection, but files shown under "Other Deletions" section, log attached
- Rebooted in Safe mode and ran combofix again - nothing found
- Ran Malwarebytes - nothing found
- Downloaded next day's Combofix and ran it - nothing found
- Took the files out of the combofix quarantine onto a usb drive, renamed the files back to the original, and ran Malwarebytes against them - nothing found

Edited by hamluis, 29 October 2010 - 11:49 AM.
Moved from XP forum to Am I Infected ~ Hamluis.


BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,470 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:34 PM

Posted 29 October 2010 - 03:42 PM

ComboFix logs are not permitted outside the Virus, Trojan, Spyware, and Malware Removal Logs forum and then only when requested by a Malware Response Team member. Please read the pinned topic ComboFix usage, Questions, Help? - Look here.

:thumbsup: ComboFix logs, where should I post them?

... if you ran ComboFix on your own due to malware infection, please be aware that a ComboFix log is only one part of the disinfection process. Therefore we ask that you please read the pinned topic titled "Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help". When you have done that, post the required logs to include your ComboFix log in that forum, NOT here, for assistance by the Malware Response Team Experts.


If you were the victim of an Internet scam, fraud, hacking or identity theft, you should disconnect the computer from the Internet and from any networked computers until it is cleaned. If your computer was used for online banking, has credit card information or other sensitive data on it, all passwords should be changed immediately to include those used for banking, email, eBay, paypal and any online activities which require a username and password. You should consider them to be compromised and change passwords from a clean computer, not the infected one. If not, an attacker may get the new passwords and transaction information. Banking and credit card institutions should be notified immediately of the possible security breach. Failure to notify your financial institution and local law enforcement can result in refusal to reimburse funds lost due to fraud or similar criminal activity. If using a router, you need to reset it with a strong logon/password so the malware cannot gain control before connecting again.

For more detailed instructions as to what you should do, please read:

Edited by quietman7, 29 October 2010 - 03:44 PM.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 Udo Werner

Udo Werner
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:34 PM

Posted 29 October 2010 - 03:43 PM

(deleted)

Edited by Udo Werner, 29 October 2010 - 03:44 PM.


#4 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,958 posts
  • ONLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:11:34 PM

Posted 30 October 2010 - 07:31 PM

Hello,

Please follow the instructions in ==>This Guide<== starting at step 6.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Since you have run ComboFix, please include the ComboFix log in the new topic. Please be sure to include a description of your computer issues and what you have done to try to resolve them.

If you cannot produce any of the other logs, then please create the new topic anyway, include the information that you were unable to produce the other logs and why and include the ComboFix log along with a description of your computer issues.

Orange Blossom :thumbsup:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users