Johnpolo
Badges: 12
Rep:
?
#1
Report Thread starter 2 years ago
#1
My computer is hacked, Email, facebook messenger.viber, msgs
Changed password in email.
I have an antivirus but I dont think does anything.
what can I else can I do,

help
0
reply
joeged123
Badges: 12
Rep:
?
#2
Report 2 years ago
#2
I would day you research the account recovery process for each of the accounts. Try googleing 'account recovery [insert application here]'

Change all of your passwords so nothing else goes down. What has most likely happened is one of your accounts was breached and you used the same passwords on multiple accounts. To stop this happening in the future I suggest you invest in a password manager.

Good luck recovering your accounts.
2
reply
RoyalSheepy
Badges: 20
Rep:
?
#3
Report 2 years ago
#3
(Original post by Johnpolo)
My computer is hacked, Email, facebook messenger.viber, msgs
Changed password in email.
I have an antivirus but I dont think does anything.
what can I else can I do,

help
Have you got any other computer? If so install Malwarebytes onto a memory stick, then boot your infected computer up into safe mode.

Plug the memory stick and allow to scan. Post an update of what is found once that's done. Also scan using your anti-virus in safe mode.

Make sure that computer isn't connected to the internet at all, safe mode should disable internet connectivity anyways.

May I suggest changing any account's passwords which were logged onto that computer.

Tagging AngryJellyfish to get this moved to Technology and computers
2
reply
Johnpolo
Badges: 12
Rep:
?
#4
Report Thread starter 2 years ago
#4
(Original post by joeged123)
I would day you research the account recovery process for each of the accounts. Try googleing 'account recovery [insert application here]'

Change all of your passwords so nothing else goes down. What has most likely happened is one of your accounts was breached and you used the same passwords on multiple accounts. To stop this happening in the future I suggest you invest in a password manager.

Good luck recovering your accounts.
(Original post by RoyalSheepy)
Have you got any other computer? If so install Malwarebytes onto a memory stick, then boot your infected computer up into safe mode.

Plug the memory stick and allow to scan. Post an update of what is found once that's done. Also scan using your anti-virus in safe mode.

Make sure that computer isn't connected to the internet at all, safe mode should disable internet connectivity anyways.

May I suggest changing any account's passwords which were logged onto that computer.

Tagging AngryJellyfish to get this moved to Technology and computers
How do I enter safe mode, I have windows 8? I install Malwarebytes
in the memory stick or on the computer ?
thanks
0
reply
_gcx
Badges: 21
Rep:
?
#5
Report 2 years ago
#5
(Original post by Johnpolo)
My computer is hacked, Email, facebook messenger.viber, msgs
Changed password in email.
I have an antivirus but I dont think does anything.
what can I else can I do,

help
Why do you think you're "hacked"? To enter safe mode mash F8 when it's booting up. Or if you can boot into the OS press ctrl+alt+del, click restart while holding shift and you will reboot into safe mode. Once you're there go to troublshoot -> advanced -> startup settings -> restart.

If you can get into a web browser and download mbam you probably don't have to run in safe mode, unless malware is stopping the installer. (also try mbam chameleon if this doesn't work, just remembered that)
1
reply
Johnpolo
Badges: 12
Rep:
?
#6
Report Thread starter 2 years ago
#6
Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 9/10/2018 Scan Time: 8:42:42 PM Logfile: malbytes_file_1.txt Administrator: Yes Version: 2.00.4.1028 Malware Database: v2014.11.20.06 Rootkit Database: v2014.11.18.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 8.1 CPU: x64 File System: FAT User: Skywalker Scan Type:
Threat Scan Result: Completed Objects Scanned: 366198 Time Elapsed: 23 min, 59 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 0 (No malicious items detected) Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 0 (No malicious items detected) Physical Sectors: 0 (No malicious items detected) (end)

the result is this, but the database is out of date. 2014.

How to run mallware in safe mode when theres no wifi to update database??
0
reply
Johnpolo
Badges: 12
Rep:
?
#7
Report Thread starter 2 years ago
#7
malwarebytes. chameleon

Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 9/11/2018 Scan Time: 12:55:37 PM Logfile: malbyts_cham_11_09.txt Administrator: Yes Version: 2.00.4.1028 Malware Database: v2014.11.20.06 Rootkit Database: v2014.11.18.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Enabled OS: Windows 8.1 CPU: x64 File System: FAT User: Skywalker Scan Type: Threat Scan Result: Completed Objects Scanned: 366319 Time Elapsed: 31 min, 30 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 0 (No malicious items detected) Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 0 (No malicious items detected) Physical Sectors: 0 (No malicious items detected) (end)
0
reply
Johnpolo
Badges: 12
Rep:
?
#8
Report Thread starter 2 years ago
#8
hello,

how can i disable network access to windows registry? i run antivirus an d found a hole...
0
reply
Johnpolo
Badges: 12
Rep:
?
#9
Report Thread starter 2 years ago
#9
ok, I understand, I will run antivirus again.


run malware on my 2nd pc found 8 malicious items. I quarantine

Version: 3.5.1.2522 Components Version: 1.0.365 Update Package Version: 1.0.6791 License: Trial -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: Home\SerVag -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 261838 Threats Detected: 8 Threats Quarantined: 0 (No malicious items detected) Time Elapsed: 10 min, 30 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 4 PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKC ACHE\TREE\SlimCleaner Plus (Scheduled Scan - SerVag), No Action By User, [1448], [334098],1.0.6791 PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKC ACHE\TASKS\{9BF5808C-1E01-4D34-BB66-985D169F1AC2}, No Action By User, [1448], [334098],1.0.6791 PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKC ACHE\PLAIN\{9BF5808C-1E01-4D34-BB66-985D169F1AC2}, No Action By User, [1448], [334098],1.0.6791 PUP.Optional.DriverUpdate, HKLM\SOFTWARE\WOW6432NODE\SlimWa re Utilities, Inc.\DriverApp, No Action By User, [2897], [341522],1.0.6791 Registry Value: 1 PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKC ACHE\TASKS\{9BF5808C-1E01-4D34-BB66-985D169F1AC2}|PATH, No Action By User, [1448], [334102],1.0.6791 Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 3 PUP.Optional.SlimCleanerPlus, C:\WINDOWS\TASKS\SlimCleaner Plus (Scheduled Scan - SerVag).job, No Action By User, [1448], [331621],1.0.6791 PUP.Optional.SlimCleanerPlus, C:\WINDOWS\SYSTEM32\TASKS\SlimCl eaner Plus (Scheduled Scan - SerVag), No Action By User, [1448], [334098],1.0.6791 PUP.Optional.InstallCore, C:\USERS\SERVAG\DOWNLOADS\FREE_V PN_3.21_DOWNLOADER.EXE, No Action By User, [402], [494289],1.0.6791 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)
0
reply
jameelagrada
Badges: 13
Rep:
?
#10
Report 2 years ago
#10
Use linux... its as simple as that.
0
reply
jameelagrada
Badges: 13
Rep:
?
#11
Report 2 years ago
#11
Not immune, but invulnerable. Kali linux
0
reply
jameelagrada
Badges: 13
Rep:
?
#12
Report 2 years ago
#12
Kali was based on linux for that exact reason.
How does a malware works anyway? How can it affect an operating system that is "Read only"

I know Tails, runs on RAM right? It even makes it difficult to find a fellow Tails user...
0
reply
Student1191
Badges: 21
Rep:
?
#13
Report 2 years ago
#13
Omegalul
0
reply
Sivir
Badges: 5
Rep:
?
#14
Report 2 years ago
#14
Get a new PC
0
reply
jameelagrada
Badges: 13
Rep:
?
#15
Report 2 years ago
#15
I didn't meant kali to be a read only OS. Haha, i was jumping with my words.
Yes, like you said linux is much more customisable, and is more likely be able to be a read only os, and just use ram for os processes.
0
reply
jameelagrada
Badges: 13
Rep:
?
#16
Report 2 years ago
#16
Exactly, its like an OS installed in a write protected USB device, and once you need to update it, just switch it back to read/write. Cool dont you think
0
reply
jameelagrada
Badges: 13
Rep:
?
#17
Report 2 years ago
#17
Do you know old USB devices in the past with a physical read only switch? Unless an attacker actually bust your head open and stole it from you, then yes.
0
reply
cmahesh13
Badges: 4
Rep:
?
#18
Report 2 years ago
#18
Looks like OP has been comprised I'd check haveibeenpwned https://haveibeenpwned.com. I'd suggest you change ALL of your passwords and dont use the same password for everything. Let's say one website you had an account on got hacked. Now that person has access to EVERYTHING as they know the password on your other accounts. I don't think your PC specifically is hacked.
0
reply
jameelagrada
Badges: 13
Rep:
?
#19
Report 2 years ago
#19
You clicked a phishing link? Haha...
0
reply
cmahesh13
Badges: 4
Rep:
?
#20
Report 2 years ago
#20
If you don't trust it then I'd download a database of the passwords in SHA format and scan it yourself.
0
reply
X

Quick Reply

Attached files
Write a reply...
Reply
new posts
Back
to top
Latest
My Feed

See more of what you like on
The Student Room

You can personalise what you see on TSR. Tell us a little about yourself to get started.

Personalise

Should there be a new university admissions system that ditches predicted grades?

No, I think predicted grades should still be used to make offers (609)
33.76%
Yes, I like the idea of applying to uni after I received my grades (PQA) (756)
41.91%
Yes, I like the idea of receiving offers only after I receive my grades (PQO) (359)
19.9%
I think there is a better option than the ones suggested (let us know in the thread!) (80)
4.43%

Watched Threads

View All