Possible infection or hacked? [Closed] [Solved]
Started by
queendom
, Jul 10 2015 07:36 PM
-
This topic is locked
#16
Posted 23 July 2015 - 09:00 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
#17
Posted 23 July 2015 - 09:02 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
Meanwhile you could try this version which runs from the desktop http://www.freedrweb.com/cureit
#18
Posted 23 July 2015 - 09:15 PM
queendom
- Topic Starter
-
- Member
-
- 75 posts
Member
No problem. I've attached a zip file. My browsers crashed when I copy/pasted, and it was too large without compressing. Thanks!
Attached Files
-
cureit.zip 3.04MB
800 downloads
Edited by queendom, 23 July 2015 - 09:15 PM.
#19
Posted 24 July 2015 - 05:39 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
Well I think that we can now say that there are no known bad files on the system.. How is it behaving now ?
#20
Posted 25 July 2015 - 07:05 PM
queendom
- Topic Starter
-
- Member
-
- 75 posts
Member
Oh great! Glad to know its clean. I'm still receiving alerts about suspicious attempts on various accounts, so I'll continue to change passwords and just keep an eye out overall. Thanks so much again!
#21
Posted 26 July 2015 - 04:05 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
Are they all online accounts like mail etc...
#22
Posted 26 July 2015 - 04:59 AM
queendom
- Topic Starter
-
- Member
-
- 75 posts
Member
Yep mail, message boards, shopping accounts, etc. Some are tracked to my IP while others are linked to another state or a cloaking service. The ones linked locally only occur when the computer is on.
Edited by queendom, 26 July 2015 - 05:01 AM.
#23
Posted 26 July 2015 - 05:16 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
Do you use the same e-mail address or username for these accounts
#24
Posted 26 July 2015 - 05:24 AM
queendom
- Topic Starter
-
- Member
-
- 75 posts
Member
No they're different addresses and usernames. About 10-20 email addresses and 5 different website accounts.
#25
Posted 26 July 2015 - 05:43 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
OK .. Sort of long range Q&A on this 
When you have changed the passwords do you still get attempts to access them ?
I am thinking here that someone has access to all your e-mail addresses (probably via a copy of your address book) and is trying them out to see if the password can be cracked
The best way to confirm this would be to create one new e-mail address and see if that is attacked
When you have changed the passwords do you still get attempts to access them ?
I am thinking here that someone has access to all your e-mail addresses (probably via a copy of your address book) and is trying them out to see if the password can be cracked
The best way to confirm this would be to create one new e-mail address and see if that is attacked
#26
Posted 26 July 2015 - 05:56 AM
queendom
- Topic Starter
-
- Member
-
- 75 posts
Member
Ok I will try that.
The attempts on my email addresses are a mixed bag. I think there were 1-2 addresses with attempts even after changing the password. Otherwise, they'd stop after a password change. The suspicious website login attempts only happened once, regardless of whether or not I changed my password. There was one online store account that had 5 password reset requests within one hour. No other attempts after that.
I try to keep many of the email addresses separate. For example, I won't exchange emails between different addresses nor save alternate addresses within account settings. I do this with some but not all addresses.
The attempts on my email addresses are a mixed bag. I think there were 1-2 addresses with attempts even after changing the password. Otherwise, they'd stop after a password change. The suspicious website login attempts only happened once, regardless of whether or not I changed my password. There was one online store account that had 5 password reset requests within one hour. No other attempts after that.
I try to keep many of the email addresses separate. For example, I won't exchange emails between different addresses nor save alternate addresses within account settings. I do this with some but not all addresses.
#27
Posted 26 July 2015 - 07:14 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
Sounds like an opportunist attack rather than something based on data from your computer
#28
Posted 28 July 2015 - 06:32 AM
queendom
- Topic Starter
-
- Member
-
- 75 posts
Member
Understood. I'll just keep monitoring then. Thanks so much!
#29
Posted 28 July 2015 - 07:52 AM
Essexboy
-
- Retired Staff
-
- 69,964 posts
GeekU Moderator
What I will do is remove my tools for now but, leave the thread open for a few more days in case you come across something else
Subject to no further problems
I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean
A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:
Remove tools
Download and run Delfix
Select the options as shown
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
CryptoPrevent install this programme to lock down and prevent crypto ransome ware
Malwarebytes
Update and run weekly to keep your system clean
Unchecky
Click on the link above to be taken to Unchecky.com
click the very large Download button.
click Save
Click Open folder
Right click on the Unchecky_setup and choose to Run as Administrator
Once open click the Install button.
Then click on Finish
Unchecky is now installed and will help you keep unwanted check boxes unchecked, this is a fire and forget programme
It is critical to have both a firewall and anti virus to protect your system and to keep them updated.
To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe
Subject to no further problems
I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean
A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:
Remove tools
Download and run Delfix
Select the options as shown
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
CryptoPrevent install this programme to lock down and prevent crypto ransome ware
Malwarebytes
Update and run weekly to keep your system clean
Unchecky
Click on the link above to be taken to Unchecky.com
click the very large Download button.
click Save
Click Open folder
Right click on the Unchecky_setup and choose to Run as Administrator
Once open click the Install button.
Then click on Finish
Unchecky is now installed and will help you keep unwanted check boxes unchecked, this is a fire and forget programme
It is critical to have both a firewall and anti virus to protect your system and to keep them updated.
To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe
#30
Posted 03 August 2015 - 05:15 AM
queendom
- Topic Starter
-
- Member
-
- 75 posts
Member
Just checking in. Think we're in the all-clear. So far so good! 
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
