Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: New info from my computer


26 Jul 2011   #1

Windows 7, 64bit
 
 
New info from my computer

I was hacked and found out some new info and need help.
Windows 7 Forums > Windows 7 help and support > Network & Sharing When in C:\dell?

Above is my original post but I found some things that may help the experts help -Maybe.

SO, I did more reseach online and found a thing named:
it is 27 page document:

WINDOWS 7 RC build:7100
Securing & Safe Computing
PROTECTING YOUR PERSONAL COMPUTER FROM MALICIOUS THREATS
by infosec@uc.edu


I sent this email to him where I got suck and wanted to get an answer...
I found this to be quite informative piece of work they and found some flaws right of the bat. It has step by step with screen shots. First off I already sent an email to them and I am posting it right below here. I haven't even got through the whole and noticed some changes. Email is here.

I am currently going through my windows7 as I type. I am amazed at all the stuff I have left undone. I was hacked about 1 month ago and had to spend countless hours looking up stuff. I reset my Dell computer back to Factory. It was preload with Windows7, I believe. My ex-wife bought this computer when we were married and I have it now. I know it is safer to reload by hard disk but I don't have access to the original and my Microsoft support has expired. JUst some insight of the situation. So, I seen your document and thought I should go through and make sure it is secure. Could not believe how much stuff I left undone.

1. When Windows 7 loaded I began setting up everything as Admin and Admin only from the beginning. Only to realize that somehow from that point on I wasnt the actual Admin till I started your step by step process. I didnt lose the admin privledges. But, just yesterday when logging in. I notice that it didnt say administration under the computer name. I swear up and down that I was admin when starting and creating my new computer name. I got to page 6 of 27 and really freaked out. I was still able to gain access to the admin account. Got in there and it looks like the bear system I started with. In the last month I have reloaded all my music via from CD's and pictures from my digital camera.

2.Go to page 7 0f 27 and my Computer management is not looking like your screen that you provided. I am providing a screen shot of what but, I don't have the Word program anymore but here is a description: I am missing the "User and Groups" catagory to the left in the Computer mgmt area. Since I am the Admin (I believe) that is what it says- why am not seeing it?

I will send this now to see if you will respond and continue on. Hoping you still view your emails on this. Thanks again for spending time doing. I know you have help out alot that have seen this.

Sincerely,

Brian Heston
TWINMAKER
-------------------------------------------------------------------------------
So, I skip the process that I got stuck on and continued on. Then I found other issues. I have a screen shot of the issue above mentioned. And will post anything someone ask to look at to help me find out why the problem exists and to help me fix it. So I started looking through my files as once again Admin. Went in to my C:\Wondows files and found the files listed below:
dell
WINDOWS
Drivers
F HACKERS- I created this for a encryption program. I have started to use.
Intel
PerfLogs
Program Files
Program Files (x86)
System Volume Information
Users
In Windows I have these files:

Directory of C:\WINDOWS
07/24/2011 06:01 PM <DIR> .
07/24/2011 06:01 PM <DIR> ..
07/13/2009 11:20 PM <DIR> AppCompat
07/16/2011 03:29 PM <DIR> AppPatch
11/20/2010 09:24 AM 71,168 bfsvc.exe
07/14/2009 01:32 AM <DIR> Boot
07/14/2009 01:32 AM <DIR> Branding
01/25/2010 02:21 PM 12 csup.txt
07/14/2009 01:32 AM <DIR> Cursors
07/25/2011 09:22 PM <DIR> debug
07/14/2009 01:32 AM <DIR> diagnostics
07/14/2009 01:37 AM <DIR> DigitalLocker
01/25/2010 12:40 PM 31,419 DirectX.log
07/14/2009 01:32 AM <DIR> Downloaded Program Files
01/25/2010 12:48 PM 2,027 DtcInstall.log
07/16/2011 03:30 PM <DIR> ehome
07/14/2009 01:37 AM <DIR> en-US
07/16/2011 07:54 AM 1,945 epplauncher.mif
11/20/2010 09:24 AM 2,872,320 explorer.exe
07/13/2009 09:39 PM 15,360 fveupdate.exe
07/14/2009 03:50 AM <DIR> Globalization
07/14/2009 01:37 AM <DIR> Help
07/13/2009 09:39 PM 733,696 HelpPane.exe
07/13/2009 09:39 PM 16,896 hh.exe
06/10/2009 04:30 PM 48,265 HomePremium.xml
07/16/2011 04:53 AM 2,921 IE9_main.log
07/14/2009 01:37 AM <DIR> IME
07/25/2011 09:13 PM <DIR> inf
07/14/2009 01:32 AM <DIR> L2Schemas
07/13/2009 10:34 PM <DIR> LiveKernelReports
07/16/2011 03:50 PM <DIR> Logs
07/16/2011 12:48 AM 444,004,727 MEMORY.DMP
07/13/2009 07:06 PM 43,131 mib.bin
07/25/2011 11:32 PM <DIR> Microsoft.NET
07/16/2011 12:48 AM <DIR> Minidump
07/13/2009 10:34 PM <DIR> ModemLogs
06/10/2009 04:36 PM 1,405 msdfmap.ini
07/13/2009 09:39 PM 193,536 notepad.exe
07/24/2011 04:15 PM 313,822 ntbtlog.txt
07/14/2009 01:32 AM <DIR> Offline Web Pages
07/15/2011 01:15 PM <DIR> Panther
07/14/2009 01:32 AM <DIR> Performance
07/17/2011 04:22 PM 17,168 PFRO.log
07/13/2009 11:20 PM <DIR> PLA
07/24/2011 06:01 PM <DIR> PolicyDefinitions
07/26/2011 07:43 PM <DIR> Prefetch
07/13/2009 09:39 PM 427,008 regedit.exe
07/13/2009 11:20 PM <DIR> Registration
07/24/2011 11:46 PM <DIR> rescache
07/14/2009 01:32 AM <DIR> Resources
07/13/2009 10:35 PM <DIR> SchCache
07/14/2009 01:32 AM <DIR> schemas
07/13/2009 11:20 PM <DIR> security
07/14/2009 12:45 AM <DIR> ServiceProfiles
07/16/2011 03:30 PM <DIR> servicing
01/25/2010 02:16 PM <DIR> Setup
07/25/2011 05:38 PM 23,518 setupact.log
07/14/2009 12:51 AM 0 setuperr.log
07/15/2011 12:14 PM <DIR> SMINST
07/16/2011 12:33 AM <DIR> SoftwareDistribution
07/14/2009 01:37 AM <DIR> Speech
11/20/2010 09:25 AM 67,072 splwow64.exe
06/10/2009 04:31 PM 48,201 Starter.xml
07/13/2009 10:36 PM <DIR> system
06/10/2009 05:08 PM 219 system.ini
07/25/2011 05:42 PM <DIR> System32
07/24/2011 05:41 PM <DIR> SysWOW64
07/19/2011 05:13 AM 38 tabled32.ini
07/14/2009 12:57 AM <DIR> TAPI
07/20/2011 05:58 PM <DIR> Tasks
07/26/2011 07:38 PM <DIR> Temp
07/13/2009 10:34 PM <DIR> tracing
01/25/2010 02:28 PM 1,313 TSSysprep.log
06/10/2009 05:41 PM 94,784 twain.dll
07/14/2009 01:32 AM <DIR> twain_32
11/20/2010 08:21 AM 51,200 twain_32.dll
06/10/2009 05:41 PM 49,680 twunk_16.exe
07/13/2009 09:14 PM 31,232 twunk_32.exe
07/13/2009 11:20 PM <DIR> Vss
07/10/2009 05:13 PM <DIR> Web
07/14/2009 01:09 AM 403 win.ini
07/26/2011 06:01 PM 1,592,800 WindowsUpdate.log
07/13/2009 09:14 PM 9,728 winhlp32.exe
07/24/2011 08:03 PM <DIR> winsxs
06/10/2009 04:52 PM 316,640 WMSysPr9.prx
07/13/2009 09:39 PM 10,240 write.exe
01/25/2010 12:39 PM 20 M
35 File(s) 451,093,914 bytes
52 Dir(s) 702,760,263,680 bytes free

And in my \users directory I have a file called public. Do I need it and does a reload of windows add that:
07/25/2011 09:07 PM <DIR> .
07/25/2011 09:07 PM <DIR> ..
07/25/2011 09:09 PM <DIR> Administrator
07/20/2011 08:19 PM <DIR> Public
07/20/2011 06:11 PM <DIR> TWINMAKER
0 File(s) 0 bytes
5 Dir(s) 702,760,222,720 bytes free

In \Program files I have the do I need these if my support has expired?
Dell
Dell Inc
Dell Support Center

Program files (x86) has:
07/24/2011 05:26 PM <DIR> .
07/24/2011 05:26 PM <DIR> ..
07/16/2011 06:39 PM <DIR> Adobe
01/25/2010 12:33 PM <DIR> Citrix
07/16/2011 06:39 PM <DIR> Common Files
01/25/2010 12:35 PM <DIR> CyberLink
07/16/2011 06:38 PM <DIR> Google
01/25/2010 12:32 PM <DIR> Intel
07/16/2011 05:19 AM <DIR> Internet Explorer
07/16/2011 01:04 AM <DIR> Java
01/25/2010 12:38 PM <DIR> Microsoft
01/25/2010 12:33 PM <DIR> Microsoft Office
07/16/2011 07:54 AM <DIR> Microsoft Security Client
07/16/2011 01:17 AM <DIR> Microsoft Silverlight
07/16/2011 01:07 AM <DIR> Microsoft Works
07/16/2011 05:17 AM <DIR> Microsoft.NET
01/25/2010 12:41 PM <DIR> Roxio
07/24/2011 08:05 PM <DIR> Spybot - Search & Destroy
07/14/2009 01:37 AM <DIR> Windows Defender
07/16/2011 03:30 PM <DIR> Windows Mail
07/16/2011 03:30 PM <DIR> Windows Media Player
07/14/2009 01:32 AM <DIR> Windows NT
07/16/2011 03:30 PM <DIR> Windows Photo Viewer
07/16/2011 03:30 PM <DIR> Windows Portable Devices
07/16/2011 03:30 PM <DIR> Windows Sidebar
0 File(s) 0 bytes
25 Dir(s) 702,760,239,104 bytes free

the "spybot - Search & destroy" that I thought I deleted from UNinstall in windows and still resides in there try to cd into and says:
The system cannot find the path specified.
'Destroy' is not recognized as an internal or external command,
operable program or batch file. - WTF

Sorry for so much info at one time but this is killing me. I know the best way to load windows is from hard copy. But, waiting for more money to do so. So, setting back to Factory settings is all I have.

Thanks for anything that could help.

TWINMAKER "Brian"


My System SpecsSystem Spec
.

Reply

 New info from my computer




Thread Tools



Similar help and support threads for2: New info from my computer
Thread Forum
Computer Slows down after a couple of hours of use: No more info Performance & Maintenance
Solved Building a new computer, help/info needed! Hardware & Devices
Changing the info in Basic computer details? Customization
Help - Info on computer security Browsers & Mail
how to use the info to fix my computer Performance & Maintenance
Computer Info Systems... Chillout Room
how do I share info from another home computer Network & Sharing

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 11:37 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33