Logmein123 Scam - commands__

Congratulations on not falling for that scam!  No legitimate company makes calls like that.  For more information, please see Don’t fall for phony phone tech support in Microsoft's MSDN Security Tips blog .

The things that he asked you to run are standard parts of Windows, and they have nothing to do with finding infected files on your computer:

• The "INF" command shows the contents of the folder named C:\Windows\Inf, which contains files used in installing the system.
• The "Prefetch" command shows the contents of the folder named C:\Windows\Prefetch, which contains files used in loading programs.
• The "Eventvwr" command opens the Event Viewer program, which shows logs of messages created by Windows and other programs as they run.  It's normal to see large numbers of errors and warnings in those logs.

---

Boulder Computer Maven
Microsoft Most Valuable Professional

Hi all,

 

I just got a call from one person claimed that he is calling from W Australia, an agent of Microsoft helping people to rectify their computer infections. Asked me to type some commands like, inf, prefetch and then asked me to logon towww.logmein123.com and then give me a pin 264529 to contact his technician. Before doing this I asked him to hold the phone and googled this web address and found the scam details. Then I asked this person to give me more details about his company and he said that he will connect to his superior and then another fellow asked me what my problem is? I asked him to tell me how he got into my home phone number and he answered that he got the info through my internet provider. Any way when I mentioned to him that I am now reading the scam report about your people, he disconnect the phone.

LOL they just called me :P this what happened..

I got this phone call today also....I too got suspicious after him telling me different things to run....he called me from India...I could hear other people talking in the background....I too googled while he was talking to me....I hung up on him, he phoned me back FOUR times! I would pick up and hang up right away....on the 4th call, I let my answering machine answer, he left no message and he never called back.

They Called me yesterday.
Can't belive how long this scam has been going on without their

i just had this same call. thought i'd heard it all but actually this is quite a sophisticated scam routine - i am hugely sceptical of anything like this but they still managed to get me to the point where i was about to allow remote access to my computer. duh. thankfully i was so incredulous that microsoft would call me about malicious files that i just put the phone down on them when i saw 'dr alex reid wants to connect to you' on the pop up box. yeah right. and then searched online to see if anyone else had similar. could have been all myt bank details etc on their way to nigeria... flippin heck, be careful folks.

I just got the same call for the second time in 2 weeks.  It was obviously from India, but the call came from a Seattle phone # 206-456-0661.  I just told him, both times, that my computer was just fine and I wasn't about to enter anyone's commands so he hung up.  Who do I report this to?

I was recently phoned by a person claiming to be employed by a company advanced support based out of California.  He stated that my PC was infected and asked me to type in the "INF" command at the run.  He claimed that this identified all infected files on my computer.  He also asked to run the "Prefetch" command and the "Eventvwr" command.  He claimed that these also identified more malicious code. 

He then asked me to go to www.logmein123.com and enter my six digit code.  I stated that I did not know of any code and he stated that I should have been given one when I purchased the machine.  He gave me a code.  Before I entered it I asked for more details about his comany.  He could not give me a Street address or phone number so I refused to enter the code. 

I guess I was lucky reading the other postings but can someone tell me what the Inf, prefetch and eventvwr commands are for?