Skype account compromised

Welcome to Major Geeks!

I'm sorry but you do not appear to be having malware problems. Your issues just may be due to security holes in the software you are running (like Skype) and also running high risk software like utorrent. Also you have Logmein/Goto Meeting running and if they are not properly password protected you leave yourself open to attack.

The only other item I question is what is this?
C:\Program Files (x86)\TechSmith\Jing\Jing.exe

In additon to the above, your PC does not appear to have proper protection installed. The QwestInternetSecurity you have installed is questionable at best and appears to be broken anyway. And you also seem to be relying on the Windows Firewall which is also rather poor. Also your logs show signs of some software from Symantec but it is also broken/uninstall. Thus you basically have no protection and have left the door open for all kinds of possible attacks.

 

It still leaves your PC open to the world no matter what you are downloading or even if you are not downloading and it is just running.

Company PCs should never be running P2P or torrent programs and I'm quite surprised that you IT dept (assuming you have one) would allow this. This tools are block by most companies because they are high security risks.

Not according to your logs. MSE does not show as installed or running. Also that showed was broken Symantec and broken QwestInternetSecurity . And as far as how good MSE really is remains to be seen. Right now, I don't think very much of it.

No question about it. It's rating has always been poor.

Not completely. And neither did Symantec. Notice tha below in your hijackthis.log inside the MGlogs.zip file:


O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O4 - HKLM\..\Run: [NovaNet-WEB Tray Control] "C:\Program Files (x86)\Qwest Office Backup\TrayControl.exe"
O4 - HKLM\..\Run: [isCfgWiz] "c:\Program Files (x86)\Common Files\Symantec Shared\OPC\{C86EA115-FACD-4aa8-BFA2-398C677D0936}\SYMCUW.exe" -G:{77CCBE0B-A541-49a9-883E-14F8337EC861} -T:Config -REBOOT
O4 - HKLM\..\Run: [ccApp] "c:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AuthStart] "C:\Program Files (x86)\QwestInternetSecurity\ISS\app\authstart.exe"


Perhaps you should do the below to finish cleaning this up:

Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O4 - HKLM\..\Run: [NovaNet-WEB Tray Control] "C:\Program Files (x86)\Qwest Office Backup\TrayControl.exe"
O4 - HKLM\..\Run: [isCfgWiz] "c:\Program Files (x86)\Common Files\Symantec Shared\OPC\{C86EA115-FACD-4aa8-BFA2-398C677D0936}\SYMCUW.exe" -G:{77CCBE0B-A541-49a9-883E-14F8337EC861} -T:Config -REBOOT
O4 - HKLM\..\Run: [ccApp] "c:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AuthStart] "C:\Program Files (x86)\QwestInternetSecurity\ISS\app\authstart.exe"

After clicking Fix, exit HJT.

 

Each computer requires a new thread.