Suspicious Behavior Online and Off

My first sign that I was in trouble was when I logged in to LastPass (password keeper extension for browsers), rather than take me to my password vault as usual, it took me to a blank page. But, like a dummy, I merely shrugged and thought, "Hm, that's strange," and went about my business.

The next sign was I got 2 e-mails in as many weeks from Twitter telling me that my angelswilliam account's password had been reset because a suspicious application had accessed it. Aware that the e-mail could be a phishing one, I opened my browser (I use Google Chrome) and physically typed twitter.com and went to my angelswilliam account. It said I could not access my account until I reset my password. Same the second time around. And, obviously, I changed my password between the two times this happened. I changed the password again, as well as the associated e-mail.

I also have a Livejournal account with the ID angelswilliam. All the personal messages were deleted the next time I logged in after the Twitter issue. I changed the password for this account; and, as said above, the associated e-mail.

However, the suspicious behavior remains. My browser and system have also been running very slowly.

I'm attaching as many logs as I can to this message, and will reply with the rest. (I asked that the previous ticket be closed because that issue no longer exists.)

 

Here are SAS and MBAM.

Thanks for your help!

 

I also should probably mention that the last "there's a Java update available" gave me 7.9, but when I went to do your "dump the Java cache," there was no Java icon. So, I did your get the newest Java version and downloaded it, and that solved the problem. 7.9 was 128MB, the version you guys have is only in the double digits.

That's probably a significant issue, too.

 

Soon after I posted this, there was a huge MS update, part of which included a genuine MS Office check (mine is) and 2 updates that would only be updated if the genuine check proved positive. I had been having issues the last two times I used Word with it closing down on me, which I know is a characteristic of big-brother MS thinking you're running a copy. (I've heard horror stories of them slowly shutting down people's computers for good if they "detect" they're running a copy of Windows, right or wrong.)

Anyway, at the end of the update, it told me the two Word updates could not be installed, which, I assumed, met I failed the "genuine" test. This pissed me off, so I went to the update site. It took a LOOOOOOONG time, but it said the only update I needed was the genuine MS Office update; so, I went ahead and downloaded it. Once I'd downloaded it, I checked my download history, and it showed that the two MS Office security updates had downloaded successfully! WTH?

Anyway, I'm wondering if maybe MS "detecting" that I had a "copy"--NOT (I spent over $200 for the pro version because I was a med transcriptionist at the time, thank you very much)--was the reason for all my troubles. I'm pretty sure the troubles started after the other mega-security update this month.

Could that be what caused all this? I have the name, company name, and phone number of the guy who sold it to me just in case. He always buys his stuff online, but it was wrapped with the serial number on the outside and everything!:confused

That questionable item: Could it be related to Diablo II Expansion or Spotify? I think those are the only two new pieces of software I've installed since I last submitted logs. I missed playing Diablo multiplayer with my ex and his friend SO MUCH, and Wal Mart had the Battle Chest for under $20, so...I just hadta. *grabby hands*

 

I started having looooooots of trouble with Google Chrome, and TDS Killer and MBR Check gave the same results they did last time. Someone keeps hacking into all my angelswilliam accounts--ONLY my angelswilliam accounts--which are only used for fandom. The first two times it was Twitter and Livejournal; the third time it was Facebook. (Facebook is getting much better about security; they shut my account down immediately because it was getting accessed from an unusual place by an unknown device and e-mailed me about it.)

Anyway, I know I'm going to get torn a new one for this, but I restored my computer back to last Friday and ran Combofix and MGTools--ONLY those two programs. As I watched MGTools, the results were different from any I'd ever seen before and kinda scared me. I'm attaching both logs for your review.

Thanks,