| I got hacked Hello, guys I did open an msdos file on my PC which I downloaded and I just didn't do anything about it. That was like 3 weeks ago...Yesterday a guy started typing stuff in my chat windows while I was chatting with friends, and then he oppened a chat windows on my PC and said he's got all the passwords and so on. What's a sure way to remove him from my PC? I don't feel safe doing anything on my PC at all now. Althought I've reinstalled windows. |
|
|
|
 CudniLa Merma - VigiladoPremium,MVM
join:2003-12-20
Someshire
kudos:13 | said by Larliand:What's a sure way to remove him from my PC?
follow steps
»Security Cleanup FAQ »Mandatory Steps Before Requesting Assistance
Cudni
--
"what we know we know the same, what we don't know, we don't know it differently."
Help yourself so God can help you.
Microsoft MVP, 2006 - 2012/13 |
|
 BlitzenZeusBurnt Out CynicPremium
join:2000-01-13
kudos:2
 ·Frontier FiOS
| reply to Larliand
Well for the paranoid, you would wipe the os partition, shutdown to make sure anything didn't remain in memory, and then have done a clean install of the os, and any other executable you had stored on other devices/partitions that were not read only might be considered tainted if it were sophisticated enough.
If you just did a repair install, and didn't wipe the os partition then I wouldn't begin to trust it. Just like you can't trust system restore to actually remove malware even when taken to an earlier date.
--
I distrust those people who know so well what god wants them to do because I notice it always coincides with their own desires- Susan B. Anthony
Yesterday we obeyed kings, and bent out necks before emperors. But today we kneel only to the truth- Kahlil G. |
|
 owlynPremium,MVM
join:2004-06-05
Newtown, PA | reply to Larliand
Sorry to hear. Hope you get it cleaned out. Do you use any anti-malware programs? If so, which one? It would be nice to know which one missed it. |
|
| reply to BlitzenZeus
So basically, just installing fresh windows OS which deletes all the previous stuff that has been in the PC before will do it right? |
|
 trparkyApple... YUMPremium,MVM
join:2000-05-24
Cleveland, OH
kudos:2
 ·Time Warner Cable
| said by Larliand:So basically, just installing fresh windows OS which deletes all the previous stuff that has been in the PC before will do it right? In this case, I'd say that it would be the best route to take. It's called the "Nuke and Repave" method for a reason, it leaves nothing of the old system left and you replace it with all new system data.
--
Tom
Boycott AT&T uVerse! | Tom's Android Blog | AOKP (The Android Open Kang Project) |
|
| Well I've just done that, I've deleted everything and I've got new OS running. Althought when the hacker openned the chat panel he said that non antivirus will help me because it's some ip2 to ip connection or whatever? But I guess he was just saying stuff since he saw I'm installing anti-malware and it founds the logs of keeylogger and all the stuff and I cleaned it out. Also what antivirus would you reccomend? |
|
 dellsweigExtreme AerobaticsPremium,MVM
join:2003-12-10
Campbell Hall, NY
kudos:1
 ·Vonage
| said by Larliand:Well I've just done that, I've deleted everything and I've got new OS running. Althought when the hacker openned the chat panel he said that non antivirus will help me because it's some ip2 to ip connection or whatever? But I guess he was just saying stuff since he saw I'm installing anti-malware and it founds the logs of keeylogger and all the stuff and I cleaned it out. Also what antivirus would you reccomend?
Microsoft security essentials (free)
»windows.microsoft.com/en-US/wind···download
--
Nothin' left to do but smile smile smile  |
|
trparkyApple... YUMPremium,MVM
join:2000-05-24
Cleveland, OH
kudos:2 | And layer it with MalwareBytes AntiMalware. |
|
trparkyApple... YUMPremium,MVM
join:2000-05-24
Cleveland, OH
kudos:2 Reviews:
·Time Warner Cable
| Good security should be treated as a layered approach. What one doesn't get, the other security products on your machine (hopefully) will get.
And yes, I do recommend paying for MalwareBytes.
Though, if you want to pay for an antivirus software, I'd stay away from Norton and the like. I myself have been running Webroot for awhile and it's a very decent AV package. I hardly see it running on my machine.
--
Tom
Boycott AT&T uVerse! | Tom's Android Blog | AOKP (The Android Open Kang Project) |
|
| reply to Larliand
Well thanks. So it's sure my PC is safe now right? After clean install and also formatting whole hdd. I'm just scared to log in to Facebook on my PC or my email. There's no chance he's still there right? Since he mentioned antivirus won't help me. But I think it was crapping only tho. I just want to make sure. |
|
 BlackbirdBuilt for SpeedPremium
join:2005-01-14
Fort Wayne, IN
kudos:3
 ·Frontier Communi..
| reply to Larliand
After your computer had been infected, depending on how the infection(s) operated, it's possible that antivirus alone wouldn't have helped much at that point, so his claim had some possible validity. Formatting the whole hard drive and clean installing the OS will eliminate any kind of software virus/malware that might have made its way into the system during the episode. The very rare forms of "firmware" viruses that are known to exist are highly unlikely to be involved, particularly in the case of a hacker who brags directly to you about his prowess.
What you do need to be careful about are possibly restoring any personal/data files from storage media from right before or during the infection... you don't want to reinfect the system. So check anything like that very carefully first on a rigorous file-scan basis. All of your commercial software install CD's, etc should all be safe, though.
A final thing to consider is to revisit all the online "log-in" places you may have visited while infected and change those passwords - just in case he actually harvested anything while the infection existed.
--
“The American Republic will endure until the day Congress discovers that it can bribe the public with the public's money.” A. de Tocqueville |
|
 StuartMWWho Is John Galt?Premium
join:2000-08-06
Galt's Gulch
kudos:2
·CenturyLink
1 edit | said by Blackbird:Formatting the whole hard drive and clean installing the OS will eliminate any kind of software virus/malware that might have made its way into the system during the episode. Well viruses can hide in the Master Partition Table so a simple "format" of a drive may not remove it.
I'd recommend overwriting the whole drive with zeroes, repartition and reformat (often done by the O/S install these days), then reinstall the O/S.
--
Don't feed trolls--it only makes them grow! |
|
| reply to Larliand
said by Larliand :
I'm installing anti-malware and it founds the logs of keeylogger and all the stuff and I cleaned it out.
With a key logger on board be sure to change your passwords and watch for any credit card activity, perhaps get them reissued. If you bank online alert your bank. Do this from a known clean machine.
I am having trouble following the time line. Did the AV find the key logger after you nuked and paved it? If it did you may still have a problem. |
|
| Nah, I formated and installed fresh OS just got malwarebyte pro and scanned with it, it didn't find anything anymore. I think it's clean now. |
|
peterboroAvatars are for posersPremium
join:2006-11-03
Peterborough, ON | reply to Larliand
said by Larliand: ...said he's got all the passwords and so on. There's the pertinent info. You could get a whole new computer but it won't solve this problem. If he was diligent he got all your personal info as well as passwords so watch for identity theft as well. |
|
| I've managed to get on my Laptop asap and changed all my passwords so I'm all safe with that I've scanned the Laptop it wasn't infected at all. |
|
 vaxvmsferroequine fanPremium
join:2005-03-01
Wormtown | reply to Larliand
You should consider trashing your backups.
--
CMKRNL |
|
| I have no backups made |
|
vaxvmsferroequine fanPremium
join:2005-03-01
Wormtown | Why? |
|
