New
#1
When in C:\dell?
I know this isn't based on windows7. But, just had to inquire here. I recently was hacked and set my system back to the factory condition. My computer is a dell. Specs:
Inspirion 545S
Processor- Pentium dual-core ES300 @ 2.60GHz
Memory- 6.00 GB
Op Sys- 64bit
Running WIndows 7.
And also downloaded and am running "Windows Sercurity Essential".
I have the firewall and virus protection on and up to date.
I recently went into my C:\dir. Just to see what I have (cause the hacker(s) took over privledges and all. Please review searh and if you can help that would be great.
Directory of C:\
07/16/2011 12:14 AM <DIR> dell
01/25/2010 02:17 PM <DIR> Drivers
01/25/2010 12:32 PM <DIR> Intel
07/16/2011 05:46 AM <DIR> PerfLogs
07/18/2011 10:23 PM <DIR> Program Files
07/16/2011 07:08 PM <DIR> Program Files (x86)
07/20/2011 08:31 PM <DIR> System Volume Information
07/15/2011 11:18 PM <DIR> Users
07/19/2011 05:10 AM <DIR> WINDOWS
0 File(s) 0 bytes
10 Dir(s) 701,327,736,832 bytes free
Directory of C:\dell
07/16/2011 12:14 AM <DIR> .
07/16/2011 12:14 AM <DIR> ..
01/25/2010 02:18 PM <DIR> CAE
01/25/2010 12:34 PM 66 dell.cae
01/25/2010 02:18 PM 29,936 dscstart64.exe
01/25/2010 02:21 PM <DIR> postvpe
2 File(s) 30,002 bytes
4 Dir(s) 701,337,407,488 bytes free
Directory of C:\WINDOWS
07/19/2011 05:10 AM <DIR> .
07/19/2011 05:10 AM <DIR> ..
07/14/2009 01:32 AM <DIR> addins
07/13/2009 11:20 PM <DIR> AppCompat
07/16/2011 03:29 PM <DIR> AppPatch
11/20/2010 09:24 AM 71,168 bfsvc.exe
07/14/2009 01:32 AM <DIR> Boot
07/14/2009 01:32 AM <DIR> Branding
01/25/2010 02:21 PM 12 csup.txt
07/14/2009 01:32 AM <DIR> Cursors
07/16/2011 01:19 AM <DIR> debug
07/14/2009 01:32 AM <DIR> diagnostics
07/14/2009 01:37 AM <DIR> DigitalLocker
01/25/2010 12:40 PM 31,419 DirectX.log
07/14/2009 01:32 AM <DIR> Downloaded Program File
01/25/2010 12:48 PM 2,027 DtcInstall.log
07/16/2011 03:30 PM <DIR> ehome
07/14/2009 01:37 AM <DIR> en-US
07/16/2011 07:54 AM 1,945 epplauncher.mif
11/20/2010 09:24 AM 2,872,320 explorer.exe
07/13/2009 09:39 PM 15,360 fveupdate.exe
07/14/2009 03:50 AM <DIR> Globalization
07/14/2009 01:37 AM <DIR> Help
07/13/2009 09:39 PM 733,696 HelpPane.exe
07/13/2009 09:39 PM 16,896 hh.exe
06/10/2009 04:30 PM 48,265 HomePremium.xml
07/16/2011 04:53 AM 2,921 IE9_main.log
07/14/2009 01:37 AM <DIR> IME
07/21/2011 07:58 AM <DIR> inf
07/14/2009 01:32 AM <DIR> L2Schemas
07/13/2009 10:34 PM <DIR> LiveKernelReports
07/16/2011 03:50 PM <DIR> Logs
07/16/2011 12:48 AM 444,004,727 MEMORY.DMP
07/13/2009 07:06 PM 43,131 mib.bin
07/19/2011 05:43 AM <DIR> Microsoft.NET
07/16/2011 12:48 AM <DIR> Minidump
07/13/2009 10:34 PM <DIR> ModemLogs
06/10/2009 04:36 PM 1,405 msdfmap.ini
07/13/2009 09:39 PM 193,536 notepad.exe
07/14/2009 01:32 AM <DIR> Offline Web Pages
07/15/2011 01:15 PM <DIR> Panther
07/14/2009 01:32 AM <DIR> Performance
07/17/2011 04:22 PM 17,168 PFRO.log
07/13/2009 11:20 PM <DIR> PLA
07/16/2011 05:19 AM <DIR> PolicyDefinitions
07/21/2011 10:23 AM <DIR> Prefetch
07/13/2009 09:39 PM 427,008 regedit.exe
07/13/2009 11:20 PM <DIR> Registration
07/17/2011 05:55 PM <DIR> rescache
07/14/2009 01:32 AM <DIR> Resources
07/13/2009 10:35 PM <DIR> SchCache
07/14/2009 01:32 AM <DIR> schemas
07/13/2009 11:20 PM <DIR> security
07/14/2009 12:45 AM <DIR> ServiceProfiles
07/16/2011 03:30 PM <DIR> servicing
01/25/2010 02:16 PM <DIR> Setup
07/21/2011 07:54 AM 22,308 setupact.log
07/14/2009 12:51 AM 0 setuperr.log
07/14/2009 03:45 AM <DIR> ShellNew
07/15/2011 12:14 PM <DIR> SMINST
07/16/2011 12:33 AM <DIR> SoftwareDistribution
07/14/2009 01:37 AM <DIR> Speech
11/20/2010 09:25 AM 67,072 splwow64.exe
06/10/2009 04:31 PM 48,201 Starter.xml
07/13/2009 10:36 PM <DIR> system
06/10/2009 05:08 PM 219 system.ini
07/21/2011 07:58 AM <DIR> System32
07/16/2011 07:08 PM <DIR> SysWOW64
07/19/2011 05:13 AM 38 tabled32.ini
07/14/2009 12:57 AM <DIR> TAPI
07/20/2011 05:58 PM <DIR> Tasks
07/21/2011 10:23 AM <DIR> Temp
07/13/2009 10:34 PM <DIR> tracing
01/25/2010 02:28 PM 1,313 TSSysprep.log
06/10/2009 05:41 PM 94,784 twain.dll
07/14/2009 01:32 AM <DIR> twain_32
11/20/2010 08:21 AM 51,200 twain_32.dll
06/10/2009 05:41 PM 49,680 twunk_16.exe
07/13/2009 09:14 PM 31,232 twunk_32.exe
07/13/2009 11:20 PM <DIR> Vss
07/10/2009 05:13 PM <DIR> Web
07/14/2009 01:09 AM 403 win.ini
07/21/2011 02:56 AM 1,347,626 WindowsUpdate.log
07/13/2009 09:14 PM 9,728 winhlp32.exe
07/19/2011 04:43 AM <DIR> winsxs
06/10/2009 04:52 PM 316,640 WMSysPr9.prx
07/13/2009 09:39 PM 10,240 write.exe
01/25/2010 12:39 PM 20 ¼ùM
34 File(s) 450,533,708 bytes
54 Dir(s) 701,327,548,416 bytes free
I guess I have a couple questions.
If there is any backdoor program to get in or remotely logon.
Where would they most likely place them?
I kept the file sharing ON for "Home/Work"
Will this make my computer vulnerble to outside sources?
I have file sharing shut off in my control panel for the "Public".
WHen I set it computer back to the factory condition. It booted back up with the windows 7 loaded.
Any insight to what I can have to do in my computer to ensure that it is not able to be invaded again would be helpful. I am not dumb with computers. And, I am no expert in this area as well.
Is there another program or settings that I need to look at?
Thanks for at least getting to this sentence. That means you do care and read this.
Brian H