Russia Defence Forum

Would you like to react to this message? Create an account in a few clicks or log in to continue.

Military Forum for Russian and Global Defence Issues


+5
Broski
Sujoy
PapaDragon
Mir
George1
9 posters

    I am BACK

    George1
    George1


    Posts : 18488
    Points : 18991
    Join date : 2011-12-22
    Location : Greece

    I am BACK  Empty I am BACK

    Post  George1 Tue Jul 30, 2024 6:00 am

    Hello guys. My account had been hacked before 3 days, probably it was obvious from my avatar change and a comment in my profile

    I was also hacked in
    - Linkedin (name, profile picture also changed to an asian (chinese? japanese?) as well as all my info
    - A yahoo mail account which was deleted/not recognized any more by yahoo
    - A google mail account where my password also changed and i am unable to recover it

    Thanks a lot to Sephernox (who i was able to contact with and informed Garry) for his valuable help.
    Thanks also Garry for the immediate response and action.

    I would appreciate also any advise on the incident

    Sujoy likes this post

    Mir
    Mir


    Posts : 3753
    Points : 3751
    Join date : 2021-06-10

    I am BACK  Empty Re: I am BACK

    Post  Mir Tue Jul 30, 2024 9:04 pm

    Hectic stuff George!!! Happy to know that you were able to recover yourself - so to speak! Shocked

    It's a real pain but you should try and change your passwords regulary?

    George1 likes this post

    PapaDragon
    PapaDragon


    Posts : 13454
    Points : 13494
    Join date : 2015-04-26
    Location : Fort Evil, Serbia

    I am BACK  Empty Re: I am BACK

    Post  PapaDragon Tue Jul 30, 2024 10:42 pm


    Accounts here getting hacked?

    We are moving up in the world lol1



    Sujoy
    Sujoy


    Posts : 2406
    Points : 2564
    Join date : 2012-04-02
    Location : India || भारत

    I am BACK  Empty Re: I am BACK

    Post  Sujoy Thu Aug 01, 2024 1:20 pm

    George1 wrote:Hello guys. My account had been hacked before 3 days, probably it was obvious from my avatar change and a comment in my profile

    I was also hacked in
    - Linkedin (name, profile picture also changed to an asian (chinese? japanese?) as  well as all my info
    - A yahoo mail account which was deleted/not recognized any more by yahoo
    - A google mail account where my password also changed and i am unable to recover it

    Thanks a lot to Sephernox (who i was able to contact with and informed Garry) for his valuable help.
    Thanks also Garry for the immediate response and action.

    I would appreciate also any advise on the incident

    Scary. Maybe you should link your existing Google account to another account. So that if your account gets hacked you can still access it using the other linked account.

    George1 likes this post

    George1
    George1


    Posts : 18488
    Points : 18991
    Join date : 2011-12-22
    Location : Greece

    I am BACK  Empty Re: I am BACK

    Post  George1 Thu Aug 01, 2024 6:07 pm

    Today i recieved this e-mail:

    I am BACK  115
    I am BACK  219
    I am BACK  314


    the code that he refers is not that of my e-mail above but it is the actual code i use in some forums including this one.

    I ran Avast antivirus, is that enough? i will also change the codes of all my forums. Pls give any other advise
    Mir
    Mir


    Posts : 3753
    Points : 3751
    Join date : 2021-06-10

    I am BACK  Empty Re: I am BACK

    Post  Mir Thu Aug 01, 2024 7:23 pm

    The only advice I can give you is to format and re-install your OS on your computer BUT BUT BUT

    First thing you can do is to do a system restore to a date that precedes this shit.

    I presume Avast was already installed on your PC? If so it could be infected so don't run it again.
    Backup all your stuff on all your drives.

    Download Malwarebytes and do a complete scan (scan all your drives and the backup)
    https://www.malwarebytes.com/

    For good measure you can run a rootkit killer from here and run it as well
    https://www.malwarebytes.com/solutions/rootkit-scanner

    See what comes up - if nothing you could be OK.

    Important! Create a new restore point.


    Don't delete the old ones yet.

    Change all your passwords


    If your PC is ok after a week delete all the restore points and create a new one.

    If it does not solve your problem - format your OS drive.

    Best of luck!

    George1, Sujoy, PapaDragon, owais.usmani and lancelot like this post

    Broski
    Broski


    Posts : 771
    Points : 769
    Join date : 2021-07-12

    I am BACK  Empty Re: I am BACK

    Post  Broski Thu Aug 01, 2024 7:43 pm

    Kaspersky is much better than Avast or Malwarebytes imo, also this email sounds like a scam, especially if he has not shared any evidence of hacked material.

    GarryB, George1, owais.usmani and lancelot like this post

    lancelot
    lancelot


    Posts : 3089
    Points : 3085
    Join date : 2020-10-18

    I am BACK  Empty Re: I am BACK

    Post  lancelot Thu Aug 01, 2024 7:47 pm

    Sometimes these people just get your passwords from a hacker group and then try to blackmail you into giving them money or giving them access to your computer.
    Make sure you use a strong password in your main accounts.

    sepheronx, GarryB, George1 and Broski like this post

    Sujoy
    Sujoy


    Posts : 2406
    Points : 2564
    Join date : 2012-04-02
    Location : India || भारत

    I am BACK  Empty Re: I am BACK

    Post  Sujoy Thu Aug 01, 2024 8:14 pm

    George1 wrote:the code that he refers is not that of my e-mail above but it is the actual code i use in some forums including this one.

    I ran Avast antivirus, is that enough? i will also change the codes of all my forums. Pls give any other advise
    Mir has already provided you some valuable advise.

    That aside, is your Avast AV even working? How could this guy install Trojans into your system and your AV did not even sound an alarm. AV databases get updated regularly so that they can identify any malware.

    If possible do not store your personal identification information - passport, bank account, credit card etc on the same system that you use for surfing.

    George1 likes this post

    PhSt
    PhSt


    Posts : 1410
    Points : 1416
    Join date : 2019-04-02
    Location : Canada

    I am BACK  Empty Re: I am BACK

    Post  PhSt Thu Aug 01, 2024 11:51 pm


    This is a Scam, the contents of the email is pretty much copy and paste, the scammer is probably from Scam farms found in India or Myanmar that's operated by organized crime syndicates.

    Follow the advice of the IT experts here and Never send money to the scammer.

    sepheronx and owais.usmani like this post

    sepheronx
    sepheronx


    Posts : 8800
    Points : 9060
    Join date : 2009-08-06
    Age : 35
    Location : Canada

    I am BACK  Empty Re: I am BACK

    Post  sepheronx Fri Aug 02, 2024 12:11 am

    PapaDragon wrote:
    Accounts here getting hacked?

    We are moving up in the world lol1




    George said he was hacked, but we all know the real reason was he always wanted to be a Japanese guy as his profile said.

    Joking aside, I recommend a password manager. It's only a matter of time when it's my turn that dick pics of mine are released to the world.

    Many men will be jealous and many fan mail from women will be sent to me.

    Broski likes this post

    GarryB
    GarryB


    Posts : 40376
    Points : 40876
    Join date : 2010-03-30
    Location : New Zealand

    I am BACK  Empty Re: I am BACK

    Post  GarryB Fri Aug 02, 2024 2:28 am

    That aside, is your Avast AV even working? How could this guy install Trojans into your system and your AV did not even sound an alarm. AV databases get updated regularly so that they can identify any malware.

    This person is trying to extort money from you, I would not believe a word they say.

    Go to the Kaspersky website and look up scams and trojans and download any free scanners they might have to see if you have software on your system.

    Also depending on your operating system check to make sure remote access is turned off.

    I get scammers phoning all the time saying there is a problem with my internet connection. They basically tell me I need to activate remote desktop so they can fix it for me. When I tell them I am using Linux instead of windows they normally just hang up because Linux does not have remote desktop functions so they can't take control of my PC.

    Never send them money simply because once you start sending money they will keep asking for more.

    There is no honour amongst thieves.

    Sujoy and Broski like this post

    George1
    George1


    Posts : 18488
    Points : 18991
    Join date : 2011-12-22
    Location : Greece

    I am BACK  Empty Re: I am BACK

    Post  George1 Fri Aug 02, 2024 3:05 am

    GarryB wrote:
    That aside, is your Avast AV even working? How could this guy install Trojans into your system and your AV did not even sound an alarm. AV databases get updated regularly so that they can identify any malware.

    This person is trying to extort money from you, I would not believe a word they say.

    Go to the Kaspersky website and look up scams and trojans and download any free scanners they might have to see if you have software on your system.

    Also depending on your operating system check to make sure remote access is turned off.

    I get scammers phoning all the time saying there is a problem with my internet connection. They basically tell me I need to activate remote desktop so they can fix it for me. When I tell them I am using Linux instead of windows they normally just hang up because Linux does not have remote desktop functions so they can't take control of my PC.

    Never send them money simply because once you start sending money they will keep asking for more.

    There is no honour amongst thieves.

    ofc i dont believe what he says but the problem exists. I ran malwarebytes and there is a trojan in my PC
    sepheronx
    sepheronx


    Posts : 8800
    Points : 9060
    Join date : 2009-08-06
    Age : 35
    Location : Canada

    I am BACK  Empty Re: I am BACK

    Post  sepheronx Fri Aug 02, 2024 3:25 am

    Avast isn't a good antivirus.  Believe it or not, built in Windows one is the best with Kaspersky beside being great, but banned.

    Ad blockers and password managers are best bet.

    If you are really worried about your PC being infested or infected, the best thing to do is try to build a USB to help fix this.

    _________________________________________________________________________



    After this, place the Hirens Boot into the drive



    If you need any assistance, just ask me.  I could try to go a bit more indepth.

    I have built a USB to do lots of stuff and I use medicat and hirens bootcd.  Both of these are used by professionals quite often.

    As well

    For web browsers, Brave is great out of the box. Download and use. Great built in adblockers. If not interested in Brave, can use Firefox and install ublock origin.

    George1, lancelot, Mir and Broski like this post

    George1
    George1


    Posts : 18488
    Points : 18991
    Join date : 2011-12-22
    Location : Greece

    I am BACK  Empty Re: I am BACK

    Post  George1 Fri Aug 02, 2024 6:04 am

    I did it! Malawarebytes didnt delete the 2 Trojan.BitCoinMiner but Microsoft Defender offline scan did it! The last scan was clear!

    I am BACK  45237210


    Last edited by George1 on Fri Aug 02, 2024 6:39 am; edited 1 time in total

    GarryB and Broski like this post

    sepheronx
    sepheronx


    Posts : 8800
    Points : 9060
    Join date : 2009-08-06
    Age : 35
    Location : Canada

    I am BACK  Empty Re: I am BACK

    Post  sepheronx Fri Aug 02, 2024 6:18 am

    are you doing it in safe mode?

    Malwarebytes works best in safe mode.

    Also run some other tests too.

    George1, Mir and Broski like this post

    Mir
    Mir


    Posts : 3753
    Points : 3751
    Join date : 2021-06-10

    I am BACK  Empty Re: I am BACK

    Post  Mir Fri Aug 02, 2024 8:56 am

    Happy to see you're getting sorted! Smile

    George1 likes this post

    PhSt
    PhSt


    Posts : 1410
    Points : 1416
    Join date : 2019-04-02
    Location : Canada

    I am BACK  Empty Re: I am BACK

    Post  PhSt Fri Aug 02, 2024 10:33 am

    Believe it or not, built in Windows one is the best with Kaspersky beside being great, but banned.

    I use Kaspersky and works great on Win10


    Kaspersky will shutter US operations after software is banned by Commerce Department, citing risk

    So we know that Kaspersky is banned in the US, but what is preventing individual users from purchasing it online? Unless Microsoft bans the anti virus itself from working on Windows OS
    lancelot
    lancelot


    Posts : 3089
    Points : 3085
    Join date : 2020-10-18

    I am BACK  Empty Re: I am BACK

    Post  lancelot Fri Aug 02, 2024 12:06 pm

    PhSt wrote:So we know that Kaspersky is banned in the US, but what is preventing individual users from purchasing it online? Unless Microsoft bans the anti virus itself from working on Windows OS
    They can just ban payments. Simple as that.
    You can still install the free version and use it I suppose.
    Broski
    Broski


    Posts : 771
    Points : 769
    Join date : 2021-07-12

    I am BACK  Empty Re: I am BACK

    Post  Broski Fri Aug 02, 2024 3:44 pm

    lancelot wrote:
    PhSt wrote:So we know that Kaspersky is banned in the US, but what is preventing individual users from purchasing it online? Unless Microsoft bans the anti virus itself from working on Windows OS
    They can just ban payments. Simple as that.
    You can still install the free version and use it I suppose.
    If Kaspersky is smart, they'll enable crypto currency payments for their software.

    sepheronx likes this post

    GarryB
    GarryB


    Posts : 40376
    Points : 40876
    Join date : 2010-03-30
    Location : New Zealand

    I am BACK  Empty Re: I am BACK

    Post  GarryB Sat Aug 03, 2024 12:02 pm

    Not sure a US ban would effect George because he is not in America is he?

    You have the names of the trojans, most anti virus software sites will have databases describing how they work and will either had instructions on how to remove them or sometimes even tools that will remove them for you.
    George1
    George1


    Posts : 18488
    Points : 18991
    Join date : 2011-12-22
    Location : Greece

    I am BACK  Empty Re: I am BACK

    Post  George1 Fri Aug 09, 2024 2:40 am

    i found exactly what it was. Information-stealing malwares

    I am BACK  Att_rt10

    here is description and guidelines for removal:

    https://nordvpn.com/blog/redline-stealer-malware/

    https://www.pcrisk.com/removal-guides/26076-stealc-stealer

    GarryB and Mir like this post


    Sponsored content


    I am BACK  Empty Re: I am BACK

    Post  Sponsored content


      Current date/time is Wed Oct 30, 2024 11:47 pm