Page 3 of 3 FirstFirst 123
Results 21 to 27 of 27
  1. #21
    Computer "Specialist" Agent_24's Avatar
    Join Date
    Dec 2004
    Location
    64 Bitville
    Posts
    14,305

    Default Re: credit card fraud

    Quote Originally Posted by Robinz View Post
    Didn't know that about PayPal. Haven't really trusted them after hearing horror stories about them. Dont they take their own skim of the top though?
    I don't know, but I always notice their exchange rate works out where I get charged a little higher than the one on www.xe.com. Then again, I think they explain this by using a 24-hour average rate and not the exact rate at the time of transaction - or something along those lines.

    I've heard horror stories too, but it seemed most of those were with people using it to receive payments, getting their account frozen for no reason and their money being inaccessible.

    Since I am only using it to buy things, I don't consider that an issue.
    Non-system disk or disk error. Replace and strike any key when ready.

  2. #22
    Computer "Specialist" Agent_24's Avatar
    Join Date
    Dec 2004
    Location
    64 Bitville
    Posts
    14,305

    Default Re: credit card fraud

    But back on topic... Have you tried downloading something like http://download.bitdefender.com/rescue_cd/ ?

    Download the large 260MB ISO, burn it onto a CD and boot from it. Make sure you have your Internet connection on so it can update the virus definitions.

    It will automatically scan all drives and all partitions.
    Non-system disk or disk error. Replace and strike any key when ready.

  3. #23
    Member
    Join Date
    May 2006
    Location
    Wales, UK. EX Napier inmate
    Posts
    192

    Default Re: credit card fraud

    So i have run root kit revealer from sysinternals. Not sure how to decode the log but it is below.
    I will burn the image mentioned above and see if that produces anything:
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WSM AN 13/08/2009 21:43 0 bytes Security mismatch.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WSM AN\CertMapping 13/08/2009 21:45 0 bytes Security mismatch.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WSM AN\Client 02/11/2006 12:54 0 bytes Security mismatch.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WSM AN\Listener 02/11/2006 12:54 0 bytes Security mismatch.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WSM AN\Service 02/11/2006 12:54 0 bytes Security mismatch.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WSM AN\WinRS 13/08/2009 21:45 0 bytes Security mismatch.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WSM AN\WinRS\CustomRemoteShell 13/08/2009 21:45 0 bytes Security mismatch.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib\009 02/11/2006 10:33 0 bytes Security mismatch.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0082CE 7E-A809-4E60-A243-93F32EEB234B}\DynamicInfo 24/02/2010 07:34 28 bytes Data mismatch between Windows API and raw hive data.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C0414 48-C69A-4D8B-A774-4F3948997407}\DynamicInfo 24/02/2010 07:43 28 bytes Data mismatch between Windows API and raw hive data.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{99B952 1C-F109-4B7B-BDDF-99CF656525E0}\DynamicInfo 24/02/2010 07:43 28 bytes Data mismatch between Windows API and raw hive data.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1868F 64-ED08-49A9-9F86-F62ED855AFFD}\DynamicInfo 24/02/2010 07:34 28 bytes Data mismatch between Windows API and raw hive data.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A728AE 6B-5AB8-4223-AD3E-E6341441A01C}\DynamicInfo 24/02/2010 07:43 28 bytes Data mismatch between Windows API and raw hive data.
    HKLM\SYSTEM\ControlSet001\Enum\PCI\VEN_10DE&DEV_04 07&SUBSYS_022E1028&REV_A1\4&233a497c&0&0008\Devic e Parameters\VidPnLkgTopology 24/02/2010 07:43 5.00 KB Data mismatch between Windows API and raw hive data.
    HKLM\SYSTEM\ControlSet001\Services\pla\Configurati on\EventBookmark 24/02/2010 07:44 270 bytes Data mismatch between Windows API and raw hive data.

  4. #24
    Senior Member
    Join Date
    Jan 2005
    Location
    Plimmerton
    Posts
    3,421

    Default Re: credit card fraud

    Know the feeling! I tried that one and gave up knowing I couldn't make head nor tail of it.

  5. #25
    Computer "Specialist" Agent_24's Avatar
    Join Date
    Dec 2004
    Location
    64 Bitville
    Posts
    14,305

    Default Re: credit card fraud

    Tried Gmer? (www.gmer.net)
    Non-system disk or disk error. Replace and strike any key when ready.

  6. #26
    Senior Member pctek's Avatar
    Join Date
    Feb 2005
    Location
    In the Wild West
    Posts
    24,212

    Default Re: credit card fraud

    Easy. remove all items the rootkit finds.
    wipe your paws.

  7. #27
    Computer "Specialist" Agent_24's Avatar
    Join Date
    Dec 2004
    Location
    64 Bitville
    Posts
    14,305

    Default Re: credit card fraud

    I would be wary of just blindly deleting everything that is found by Rootkit Revealer. It's possible some of these are legitimate items.

    AVG likes deleting system files all the time, we can all agree that's not good
    Non-system disk or disk error. Replace and strike any key when ready.

Similar Threads

  1. Followup - credit card fraud.
    By Nomad in forum PC World Chat
    Replies: 7
    Last Post: 22-01-2010, 09:26 PM
  2. Which Credit Card?
    By gum digger in forum PC World Chat
    Replies: 18
    Last Post: 22-01-2008, 09:25 PM
  3. westpac's prepaid credit card-debit plus visa card
    By lance4k in forum PC World Chat
    Replies: 12
    Last Post: 01-02-2007, 10:53 PM
  4. CREDIT CARD SCAM
    By FrankS in forum PressF1
    Replies: 6
    Last Post: 24-09-2006, 08:22 AM
  5. Credit Card Fraud
    By kbcad in forum PressF1
    Replies: 4
    Last Post: 21-06-2003, 09:18 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •