Early sept I sense some oddities -and I always jump on it. I've never had a virus or malware problem- I keep everything updated and safe... I thought
I get a slowdown on my speeds. 20x2 with A commercial wireless ambit. I didnt see anything obvious on my laptop so I telnetted in the ambit to look.
I would have said it was impossible to penetrate, but not only did it get in- it also rewrote the config file in the modem/ router allowing VPN tunnel. Nothing I could do would keep it out for more than 3 minutes. At this point, i go dynamic and a wired modem connection.
Week after week- one software product after the next and a few times coming close- but in an instant with one wrong move my win32 files bursting with agent droppers and hooks and who knows what. Just me- but 2 laptops and the a Linux and all suffered the same within minutes of drive scrubber fresh os install. New mfg. discs... Nothing helped
2 months has passed and I can't even change my passwords to accounts that have been accessed from Germany and elsewhere. If I tried to load a disk- it would slow down to not moving or actually back up and uninstall as I watched. If it did load, by the time I could see it rules already written, options gray and access denied. Downloading on line very similar, the few times I could get there.
Everyone including me thought I'd lost it- it seemed like someone was right there watching my every move. And they were. I bought a new laptop week 8 and still unsure how this was happening- I knew to make recover disks and set some controls before attempting going online. But even that didn't work. I was suspicious of everything now. The next day I returned the laptop and got a new one, hoping it was bad luck. I went to car in parking lot and began the recover disks. I had turned my iPhone off because it has not even been bale to get the iOS 5 and I know it's vulnerable.
Disk one seems to be burning ok, but disk 2 took forever. The second it finished, a brand new Kapersky pure goes in. I didn't have to wait to know what I was going to see. Mind you- still in my car- nowhere near home.
Now I know how- my work phone. Sure enough- it is running a silent blutooth tether. So is my iPhone. And my xp has no Bluetooth so it's ir. All the scripts Nd software, drivers, logs are on my machines. They've left a nice blue print on how and who- but no one will pursue it. I get called crazy by apple and sprint. 2 trips to genius bar- the first genius did not touch my phone and had me turn it on in a packed store and said impossible. I called apple support Nd thought sure it was one of the hackers the guy wouldn't say anything. Even though I have a hacked symbian app running silent that will brick me- and a script box. I was crazy. The next week.- windows phone is disabled and unusable and iPhone fading fast
Another call to apple and finally- at least he listened. Back to the genius bar who offered to wipe 3000 songs and all contacts- but phone is perfectly fine. No way it is tethering silently and all the other things I'm showing them must be because the os needs updated. Next trip to at&t to change sim- the phone guardian is a big concern. A tiny victory- phone guardian software not running.
I know data must be off if batteries are in any laptop. Last night- one hdd connected via USB and running mini xp from hiren- I believe I have one drive mostly clean. However- I could 100% verify my iPhone WAS tethering. Hot spot not active and has never been, but wheel keeps turning.
This mooring I went back in with no hdd in and was astounded at the amount of crap STILL in the ram. None running yet, but getting closer.
The purpose is to warn. I never used BT on windows phone or computers and always shut it off on iPhone keep it off. Watch it closely and when every single person tells you it can't be happening- don't believe them.
I have scripts to prove it. Like the delay on USB and cd so they copy disk and set controls before allowing access. A scripting site used in browsers stops the downloads.
If I can help anyone I will. All the av folks said I was crazy. I wonder if they would like the write protected disks returned with all the new bonus programs added.
It's a nightmare. Something this sophisticated could do some serious harm.