Windows eventvwr scam

I am pretty sure I fell for a scam today and I`m worried that whoever has done this still has access to my computer and can see my passwords, perhaps has even installed viruses of their own. I`m sorry if this is the wrong place to post this but I am not that good at computers (which is probably why I fell for this )

This is what happened : A man called my house today and said he was from windows and that he received error messages that needed to be fixed or my comp would crash. I fell for it at first and allowed remote access to my computer. Did not go far enough to buy the 'warranty' they were offering but now I am freaking out that they could have gotten my passwords or something.

How do I make sure that they can no longer access my computer? Are there any programs I should install to fix any problems they might have caused and to make sure they can't get in again?

Any help would be greatly appreciated.

Hi,

Wait so someone called you and claimed they were from Microsoft/Windows and asked you to allow him to remotely access your computer? That's new. What did he use to view it and do you have the phone number?

Please download OTL to your Desktop. (If you already have it downloaded, then just follow the instructions below).

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  
• Under the Custom Scan box paste this in
  
  %systemroot%\*. /mp /s
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\system32\*.exe /lockedfiles
  %systemroot%\Tasks\*.job /lockedfiles
  %systemroot%\system32\drivers\*.sys /lockedfiles
  %systemroot%\System32\config\*.sav
  %systemroot%\system32\*.sys
  %systemroot%\system32\drivers\*.dll
  %systemroot%\system32\drivers\*.ini
  %systemroot%\system32\drivers\*.exe
  %SYSTEMDRIVE%\*.*
  %PROGRAMFILES%\*.
  %appdata%\*.*
  netsvcs
  msconfig
  safebootminimal
  safebootnetwork
  activex
  drivers32
  /md5start
  eventlog.dll
  scecli.dll
  netlogon.dll
  cngaudit.dll
  sceclt.dll
  ntelogon.dll
  logevent.dll
  iaStor.sys
  nvstor.sys
  atapi.sys
  IdeChnDr.sys
  viasraid.sys
  AGP440.sys
  vaxscsi.sys
  nvatabus.sys
  viamraid.sys
  nvata.sys
  nvgts.sys
  iastorv.sys
  ViPrt.sys
  eNetHook.dll
  ahcix86.sys
  KR10N.sys
  disk.sys
  nvstor32.sys
  ahcix86s.sys
  nvrd32.sys
  symmpi.sys
  adp3132.sys
  mv61xx.sys
  usbstor.sys
  /md5stop
  CREATERESTOREPOINT
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
  
  
• Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  
  
  
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    
  • Please copy (Edit->Select All, Edit->Copy) and paste (Edit->Paste) the contents of these files, one at a time

Note: in the event that OTL fails to run, please use alternate download links to try again:

http://oldtimer.geekstogo.com/OTL.com
http://oldtimer.geekstogo.com/OTL.scr

Thank you for responding!

Yeah, I don't know how they got my number and I'd never heard of it before. I really wish I'd googled about it before I gave him access I feel so stupid lol. I have two numbers I got from it (they called twice), should I post them here? I'm probably going to report it to the police fraud unit tomorrow. He asked me to run event viewer and then got me to go to a website (I can't remember the link ) where I entered a code he provided and which got him access to the computer. At that point he tried to sell me something and yeah, I figured out something was up and made up an excuse to hang up.

I downloaded OTL but it says 'OTL cannot be run from a temporary folder!' I tried all the links you provided.

Hi,

Could you please save OTL to your desktop?

Also, could you please PM me the phone numbers and the website he had you go to?