Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I am convinced I have an intruder


  • Please log in to reply
10 replies to this topic

#1 Jove

Jove

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:12:36 AM

Posted 04 January 2013 - 02:23 AM

I have had a series of events that cause me to believe that I have an intruder,

now I discover that a file folder gone missing I honestly believe was removed

by this intruder.

Somehow it , they, is getting by my Firewall and my AVG Anti-Virus ?

What can I do to pin point the problem or point of entry and to further

protect my data ?

*Moderator Edit: Moved topic from AntiVirus, Firewall and Privacy Products and Protection Methods to the more appropriate forum. ~ Queen-Evie*

Edited by Queen-Evie, 04 January 2013 - 09:49 AM.

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:36 AM

Posted 04 January 2013 - 09:17 PM

Hello Jove, Lets see if we can see anything here..

MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results




I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:12:36 AM

Posted 06 January 2013 - 10:51 AM

I am now running G-Chrome, FF is still installed and I have basically, "skeletonized",

running services.

Please advise

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:36 AM

Posted 06 January 2013 - 01:40 PM

Can you run the 3 tools and post their logs?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:12:36 AM

Posted 07 January 2013 - 05:09 AM

First Request
Mini ToolBox


Note;
The following plug-in is unresponsive;
Skype Tool Bars

MiniToolBox by Farbar
Ran by Jp (administrator) on 07-01-2013 at 04:58:14
Microsoft Windows XP Service Pack 3 (X86)

***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 4

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 www.100888290cs.com
127.0.0.1 100888290cs.com

There are 15237 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip



popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : CPQ80632953046

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



PPP adapter Snip:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface

Physical Address. . . . . . . . . : 00-53-45-00-00-00

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 216.178.90.159

Subnet Mask . . . . . . . . . . . : 255.255.255.255

Default Gateway . . . . . . . . . : 216.178.90.159

DNS Servers . . . . . . . . . . . : 216.178.92.98

216.178.92.114

NetBIOS over Tcpip. . . . . . . . : Disabled

Server: ns1.netcarrier.net
Address: 216.178.92.98

Name: google.com
Addresses: 173.194.43.14, 173.194.43.0, 173.194.43.1, 173.194.43.2
173.194.43.3, 173.194.43.4, 173.194.43.5, 173.194.43.6, 173.194.43.7
173.194.43.8, 173.194.43.9



Pinging google.com [173.194.43.9] with 32 bytes of data:



Reply from 173.194.43.9: bytes=32 time=402ms TTL=55

Reply from 173.194.43.9: bytes=32 time=319ms TTL=55



Ping statistics for 173.194.43.9:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 319ms, Maximum = 402ms, Average = 360ms

Server: ns1.netcarrier.net
Address: 216.178.92.98

Name: yahoo.com
Addresses: 98.138.253.109, 98.139.183.24, 72.30.38.140



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:



Reply from 72.30.38.140: bytes=32 time=416ms TTL=49

Reply from 72.30.38.140: bytes=32 time=399ms TTL=49



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 399ms, Maximum = 416ms, Average = 407ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x40003 ...00 53 45 00 00 00 ...... WAN (PPP/SLIP) Interface
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 216.178.90.159 216.178.90.159 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
216.178.90.159 255.255.255.255 127.0.0.1 127.0.0.1 50
216.178.90.255 255.255.255.255 216.178.90.159 216.178.90.159 50
216.178.92.168 255.255.255.255 216.178.90.159 216.178.90.159 1
224.0.0.0 240.0.0.0 216.178.90.159 216.178.90.159 1
255.255.255.255 255.255.255.255 216.178.90.159 216.178.90.159 1
Default Gateway: 216.178.90.159
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/06/2013 08:35:18 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80040206.

Error: (01/06/2013 08:35:18 AM) (Source: EventSystem) (User: )
Description: The COM+ Event System detected a bad return code during its internal processing. HRESULT was 80070422 from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp. Please contact Microsoft Product Support Services to report this error.

Error: (01/06/2013 08:27:45 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80040206.

Error: (01/06/2013 08:27:45 AM) (Source: EventSystem) (User: )
Description: The COM+ Event System detected a bad return code during its internal processing. HRESULT was 80070422 from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp. Please contact Microsoft Product Support Services to report this error.

Error: (01/05/2013 02:14:51 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80040206.

Error: (01/05/2013 02:14:51 PM) (Source: EventSystem) (User: )
Description: The COM+ Event System detected a bad return code during its internal processing. HRESULT was 80070422 from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp. Please contact Microsoft Product Support Services to report this error.

Error: (01/05/2013 08:33:33 AM) (Source: Application Error) (User: )
Description: Fault bucket -993292606.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (01/05/2013 08:32:56 AM) (Source: Application Error) (User: )
Description: Faulting application skype.exe, version 5.10.0.116, faulting module kernel32.dll, version 5.1.2600.6293, fault address 0x0000984e.
Processing media-specific event for [skype.exe!ws!]

Error: (01/04/2013 03:43:24 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80040206.

Error: (01/04/2013 03:43:24 PM) (Source: EventSystem) (User: )
Description: The COM+ Event System detected a bad return code during its internal processing. HRESULT was 80070422 from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp. Please contact Microsoft Product Support Services to report this error.


System errors:
=============
Error: (01/07/2013 04:48:45 AM) (Source: DCOM) (User: Jp)
Description: DCOM got error "%%1058" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (01/06/2013 10:48:26 AM) (Source: DCOM) (User: Jp)
Description: DCOM got error "%%1058" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (01/06/2013 10:46:24 AM) (Source: DCOM) (User: Jp)
Description: DCOM got error "%%1058" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (01/06/2013 08:36:06 AM) (Source: Service Control Manager) (User: )
Description: The System Event Notification service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (01/06/2013 08:35:53 AM) (Source: DCOM) (User: SYSTEM)
Description: The server {4EB61BAC-A3B6-4760-9581-655041EF4D69} did not register with DCOM within the required timeout.

Error: (01/06/2013 08:35:32 AM) (Source: DCOM) (User: SYSTEM)
Description: DCOM got error "%%1058" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (01/06/2013 08:35:18 AM) (Source: DCOM) (User: SYSTEM)
Description: DCOM got error "%%1058" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (01/06/2013 08:33:31 AM) (Source: DCOM) (User: SYSTEM)
Description: DCOM got error "%%1058" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (01/06/2013 08:28:34 AM) (Source: Service Control Manager) (User: )
Description: The System Event Notification service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (01/06/2013 08:28:25 AM) (Source: DCOM) (User: SYSTEM)
Description: The server {4EB61BAC-A3B6-4760-9581-655041EF4D69} did not register with DCOM within the required timeout.


Microsoft Office Sessions:
=========================
Error: (01/06/2013 08:35:18 AM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040206

Error: (01/06/2013 08:35:18 AM) (Source: EventSystem)(User: )
Description: d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp4480070422

Error: (01/06/2013 08:27:45 AM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040206

Error: (01/06/2013 08:27:45 AM) (Source: EventSystem)(User: )
Description: d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp4480070422

Error: (01/05/2013 02:14:51 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040206

Error: (01/05/2013 02:14:51 PM) (Source: EventSystem)(User: )
Description: d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp4480070422

Error: (01/05/2013 08:33:33 AM) (Source: Application Error)(User: )
Description: -993292606

Error: (01/05/2013 08:32:56 AM) (Source: Application Error)(User: )
Description: skype.exe5.10.0.116kernel32.dll5.1.2600.62930000984e

Error: (01/04/2013 03:43:24 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040206

Error: (01/04/2013 03:43:24 PM) (Source: EventSystem)(User: )
Description: d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp4480070422


=========================== Installed Programs ============================

7-Zip 4.65
Acrobat.com (Version: 1.6.65)
Ad-Aware (Version: 7.1.0.7)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 10 ActiveX (Version: 10.1.53.64)
Adobe Flash Player 11 Plugin (Version: 11.2.202.235)
Adobe Reader 9.2 (Version: 9.2.0)
Apple Application Support (Version: 2.0.1)
Apple Software Update (Version: 2.1.3.127)
ArcSoft MediaImpression 2 (Version: 2.0.27.735)
Ask Toolbar (Version: 1.6.9.0)
AVG Free 9.0
AVG Security Toolbar
Bing Bar (Version: 5.0.1372.0)
Canon MP Navigator 3.0
Canon MP160 User Registration
Canon My Printer
Coloreal
COMODO Firewall Pro (Version: 2.4.1.92)
Compaq SetRefresh (Version: 1.0.0.6)
EASEUS Partition Master 4.1.1 Home Edition
Easy Access Button Support
ESET Online Scanner v3
Google Chrome (Version: 23.0.1271.97)
Google Update Helper (Version: 1.3.21.123)
HijackThis 2.0.2 (Version: 2.0.2)
IrfanView (remove only)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 32 (Version: 6.0.320)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
ModemXpert
MorphVOX Junior (Version: 2.6.1)
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
Mozilla Maintenance Service (Version: 17.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
NetWaiting
OLYMPUS Master 2 (Version: 1.0.2)
Paint.NET v3.5.10 (Version: 3.60.0)
PrimoPDF -- brought to you by Nitro PDF Software (Version: 5)
QuickTime (Version: 7.70.80.34)
RealPlayer
RingCentral SmartFax 2002
Secunia PSI
Segoe UI (Version: 14.0.4327.805)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.10 (Version: 5.10.116)
Speccy (Version: 1.14)
Spybot - Search & Destroy (Version: 1.6.0)
SpywareBlaster 4.1 (Version: 4.1.0)
SUPERAntiSpyware Free Edition (Version: 4.25.0.1012)
WebFldrs XP (Version: 9.50.5318)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows NT Messaging
Windows XP Service Pack 3 (Version: 20080414.031525)
WinZip Self-Extractor

========================= Memory info: ===================================

Percentage of memory in use: 82%
Total physical RAM: 510.42 MB
Available physical RAM: 87.91 MB
Total Pagefile: 1228.85 MB
Available Pagefile: 266.99 MB
Total Virtual: 2047.88 MB
Available Virtual: 2002.52 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:149.05 GB) (Free:120.26 GB) NTFS

========================= Users: ========================================

User accounts for \\CPQ80632953046

Administrator Guest HelpAssistant
Jp SUPPORT_388945a0 SUPPORT_b326ad0c


**** End of log ****

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


#6 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:12:36 AM

Posted 07 January 2013 - 11:56 AM

I am getting Network error when I D/L TDSSkiller

Do you reccomend that I should go to ESET ?

Edited by Jove, 07 January 2013 - 12:00 PM.

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:36 AM

Posted 07 January 2013 - 02:39 PM

Appears there are many errors with this, internet software and othrs,so that may be the intruder.

Download Windows Repair (all in one) from this site

Install the program then run it.

Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

Posted Image



Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

Posted Image


Go to Step 4 and under "System Restore" click on Create button:

Posted Image


Go to Start Repairs tab and click Start button.

Posted Image


Please ensure that ONLY items seen in the image below are ticked as indicated (they're all checked by default):

Posted Image

Click on box next to the Restart System when Finished. Then click on Start.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:12:36 AM

Posted 08 January 2013 - 04:04 PM

I did the Windows Repair, . .

Thank you Boopme.

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:36 AM

Posted 08 January 2013 - 06:31 PM

You're welcome Jove,
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Pajajn

Pajajn

  • Members
  • 357 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:127.0.0.1
  • Local time:11:36 PM

Posted 09 January 2013 - 06:12 AM

I just wanna commen't your tons of programs installed :huh: :wacko: these are total waste and got several security problems. Just to let you know ofcourse :busy:

Crap
Ask Toolbar (Version: 1.6.9.0)
AVG Security Toolbar
Bing Bar (Version: 5.0.1372.0)

COMODO Firewall Pro (Version: 2.4.1.92) You actually don't need AVG free with this :wink:
HijackThis 2.0.2 (Version: 2.0.2) Newer version avaible 2.0.4
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729) why you keeping the old 2.0 3.0 3.5
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001) install newer version and uninstall these old
Mozilla Maintenance Service (Version: 17.0.1)
RealPlayer why using realplayer
Secunia PSI why having this when youre still not updating your installed programs
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.10 (Version: 5.10.116) why not update
Speccy (Version: 1.14)
Spybot - Search & Destroy (Version: 1.6.0)
SpywareBlaster 4.1 (Version: 4.1.0)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)

#11 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:12:36 AM

Posted 09 January 2013 - 01:06 PM

I just wanna commen't your tons of programs installed :huh: :wacko: these are total waste and got several security problems. Just to let you know ofcourse :busy:

Crap
Ask Toolbar (Version: 1.6.9.0) >Uninstalled
AVG Security Toolbar >Ininstalled
Bing Bar (Version: 5.0.1372.0) >Uninstalled

COMODO Firewall Pro (Version: 2.4.1.92) You actually don't need AVG free with this :wink: What about my email scanner ?

HijackThis 2.0.2 (Version: 2.0.2) Newer version avaible 2.0.4(ok will check)

Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)

Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729) why you keeping the old 2.0 3.0 3.5Actually know very little about these as they arrive and are installed probably with Windows Automatic Updates, etc. So are you saying these should go and should be replaced by (1);V:3.5.30729 ?

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001) install newer version and uninstall these old OK will check

Mozilla Maintenance Service (Version: 17.0.1)

RealPlayer why using realplayer
It seems to re-appear it is checked of in my start-up configurations.

Secunia PSI why having this when youre still not updating your installed programs
I'll look into that


Skype Click to Call (Version: 5.9.9216)Need to Check what this actually is, . . I use Skype to chat with one or two friends and sometimes use video.

Skype™ 5.10 (Version: 5.10.116) why not update I'll check that

What is your reccomendation for the following ?

Speccy (Version: 1.14)
Spybot - Search & Destroy (Version: 1.6.0)
SpywareBlaster 4.1 (Version: 4.1.0)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)


I am using Google Chrome, . . trying to get a little more power out of this maxed 512,Compaq Presario 4403, . .but with GC alone I am using over 550 MB Page Usage.
Firefox is installed but I am discontinuing use.

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users