[FluffyKittensVomitHairball]

I run several facebook pages recently a rival page tried reporting me but my page doesnt violate TOS .So they are being malicous and vandalizing my pages with memes and stegoloaders w possibly the lurker trojan. I have reported to Facebook but its a multiple choice report that doesnt cover serious hacking attempts that are criminal.

 

I locked down my pages to only allow admin publishing- I also limited the Countrys that see my pages. as I was deleting the spammed memes I caught  several memes trying to download malicous content.

 

The next day some guy from a far off desert country. liked my page and his cover photo had a crying character that said "something about lookg at said profile"

 

The minute I went to this FB profile page without clicking anything it again tried deliverring a malicous payload. Drive by malware possibly injected into facebook page. that executes just by going to the page.

 

I Have not been back to my pages . Im trying to safely clean up my page and report these people to Fb.

 

I need help figuring out what these attacks are and how to combat them so I can safely go about my life without being harassed and some hacker destroying my hardware.

 

please help I'm pretty proficiant at avoiding the average script kiddie but never underestimate anyone thats why I am here.

 

[Advertisements]

Hello, FluffyKittensVomitHairball. Welcome to Geeks to Go! My nickname is Nevan and I will be helping you getting your system back on its electronic feet.

Before we get started, please keep these things in mind:

• Always read every part of my post carefully. If you don't, you may do something wrong and there could be more problems to solve.
• If your security programs give you any warnings when using tools I asked you to, don't be afraid. Every tool I provide to you is 100% safe.
• Only run tools that I ask you to. Some of them can be dangerous to your system as they have much power.
• You should save or print my instructions. It is possible that we will be using Safe mode, which will cut you off from your internet connection and without access to them, you might be stuck.
• Malware removal is a complicated process that takes multiple steps to be completed. Don't give up, be patient.
• The tools we are going to use and your software may cause unwanted interactions. Because of that, I recommend you to make backups of any important files from your machine before proceeding as they might be lost.
• I recommend you to stay with me until I tell you that we are done. It is important because when your system does not show any bad symptoms anymore it does not mean that it is 100% clean.
• Your time to reply is limited. If you don't reply within 3 days, your topic will be closed and you will have to request it to be reopened by contacting one of Moderator group members with the link to this topic.
• Every program I ask you to download should be saved to and run from desktop. If you don't know how to choose the direction of where a download is saved, check this site. You can also just copy these programs to your desktop manually and then run them from there.
• Remember that the fixes I give you are only for your machine. Using it on other systems may (and probably will) cause problems.
• Finally, if you have any questions or are unsure about something, just ask. I will not blame you for it. It is better to ask rather than regret it later.

As I see you haven't yet done that, there's a button at the top-right side of this page. This will allow you to get notified once I post an answer to this topic

Also, please note that I'm currently in training, so my answers to you will have to be checked first by an experienced helper before I can post them. This can lengthen the time between my answers to you, but in return you will have an extra person reviewing your log.

Let's get started

 
First, I'd like to have a look at your system. Please, do the following:

FRST Scan

Download Farbar Recovery Scan Tool and save it to your Desktop. There are two different versions:

• Click here to download the 32-bit version.
• Click here to download the 64-bit version.

If you don't know which version you should use, download one of them and check if it's working or not. If it doesn't, download the second one. Once you have the right one, perform the instructions below.

• Right click FRST.exe (or FRST64.exe) and click Run as administrator. When the tool opens click Yes to disclaimer.
• Make sure that Addition.txt is checked and press the Scan button.
• It will produce two logs - one called FRST.txt and another one called Addition.txt in the same directory the tool is run from.
• Select all (CTRL+A) the content of the logs, copy them (CTRL+C) and paste (CTRL+V) them into your next reply.

 
Things that should appear in your next post:

• FRST.txt log content
• Addition.txt log content

[Nevan]

Hello, FluffyKittensVomitHairball. Welcome to Geeks to Go! My nickname is Nevan and I will be helping you getting your system back on its electronic feet.

Before we get started, please keep these things in mind:

• Always read every part of my post carefully. If you don't, you may do something wrong and there could be more problems to solve.
• If your security programs give you any warnings when using tools I asked you to, don't be afraid. Every tool I provide to you is 100% safe.
• Only run tools that I ask you to. Some of them can be dangerous to your system as they have much power.
• You should save or print my instructions. It is possible that we will be using Safe mode, which will cut you off from your internet connection and without access to them, you might be stuck.
• Malware removal is a complicated process that takes multiple steps to be completed. Don't give up, be patient.
• The tools we are going to use and your software may cause unwanted interactions. Because of that, I recommend you to make backups of any important files from your machine before proceeding as they might be lost.
• I recommend you to stay with me until I tell you that we are done. It is important because when your system does not show any bad symptoms anymore it does not mean that it is 100% clean.
• Your time to reply is limited. If you don't reply within 3 days, your topic will be closed and you will have to request it to be reopened by contacting one of Moderator group members with the link to this topic.
• Every program I ask you to download should be saved to and run from desktop. If you don't know how to choose the direction of where a download is saved, check this site. You can also just copy these programs to your desktop manually and then run them from there.
• Remember that the fixes I give you are only for your machine. Using it on other systems may (and probably will) cause problems.
• Finally, if you have any questions or are unsure about something, just ask. I will not blame you for it. It is better to ask rather than regret it later.

As I see you haven't yet done that, there's a button at the top-right side of this page. This will allow you to get notified once I post an answer to this topic

Also, please note that I'm currently in training, so my answers to you will have to be checked first by an experienced helper before I can post them. This can lengthen the time between my answers to you, but in return you will have an extra person reviewing your log.

Let's get started

 
First, I'd like to have a look at your system. Please, do the following:

FRST Scan

Download Farbar Recovery Scan Tool and save it to your Desktop. There are two different versions:

• Click here to download the 32-bit version.
• Click here to download the 64-bit version.

If you don't know which version you should use, download one of them and check if it's working or not. If it doesn't, download the second one. Once you have the right one, perform the instructions below.

• Right click FRST.exe (or FRST64.exe) and click Run as administrator. When the tool opens click Yes to disclaimer.
• Make sure that Addition.txt is checked and press the Scan button.
• It will produce two logs - one called FRST.txt and another one called Addition.txt in the same directory the tool is run from.
• Select all (CTRL+A) the content of the logs, copy them (CTRL+C) and paste (CTRL+V) them into your next reply.

 
Things that should appear in your next post:

• FRST.txt log content
• Addition.txt log content

[FluffyKittensVomitHairball]

Hello, FluffyKittensVomitHairball. Welcome to Geeks to Go! My nickname is Nevan and I will be helping you getting your system back on its electronic feet.

Before we get started, please keep these things in mind:

• Always read every part of my post carefully. If you don't, you may do something wrong and there could be more problems to solve.
• If your security programs give you any warnings when using tools I asked you to, don't be afraid. Every tool I provide to you is 100% safe.
• Only run tools that I ask you to. Some of them can be dangerous to your system as they have much power.
• You should save or print my instructions. It is possible that we will be using Safe mode, which will cut you off from your internet connection and without access to them, you might be stuck.
• Malware removal is a complicated process that takes multiple steps to be completed. Don't give up, be patient.
• The tools we are going to use and your software may cause unwanted interactions. Because of that, I recommend you to make backups of any important files from your machine before proceeding as they might be lost.
• I recommend you to stay with me until I tell you that we are done. It is important because when your system does not show any bad symptoms anymore it does not mean that it is 100% clean.
• Your time to reply is limited. If you don't reply within 3 days, your topic will be closed and you will have to request it to be reopened by contacting one of Moderator group members with the link to this topic.
• Every program I ask you to download should be saved to and run from desktop. If you don't know how to choose the direction of where a download is saved, check this site. You can also just copy these programs to your desktop manually and then run them from there.
• Remember that the fixes I give you are only for your machine. Using it on other systems may (and probably will) cause problems.
• Finally, if you have any questions or are unsure about something, just ask. I will not blame you for it. It is better to ask rather than regret it later.

As I see you haven't yet done that, there's a button at the top-right side of this page. This will allow you to get notified once I post an answer to this topic

Also, please note that I'm currently in training, so my answers to you will have to be checked first by an experienced helper before I can post them. This can lengthen the time between my answers to you, but in return you will have an extra person reviewing your log.

Let's get started

 
First, I'd like to have a look at your system. Please, do the following:

FRST Scan

Download Farbar Recovery Scan Tool and save it to your Desktop. There are two different versions:

• Click here to download the 32-bit version.
• Click here to download the 64-bit version.

If you don't know which version you should use, download one of them and check if it's working or not. If it doesn't, download the second one. Once you have the right one, perform the instructions below.

• Right click FRST.exe (or FRST64.exe) and click Run as administrator. When the tool opens click Yes to disclaimer.
• Make sure that Addition.txt is checked and press the Scan button.
• It will produce two logs - one called FRST.txt and another one called Addition.txt in the same directory the tool is run from.
• Select all (CTRL+A) the content of the logs, copy them (CTRL+C) and paste (CTRL+V) them into your next reply.

 
Things that should appear in your next post:

• FRST.txt log content
• Addition.txt log content

 

my system is fine it's my facebook page i'm worried about.

[Nevan]

I can't see what's going on with your Facebook pages so it's hard for me to judge if it's an infection or not.

If something is appearing on your pages as if you were the one posting it, then it may be an infection and this is what we help with here. Otherwise there's nothing we can do and if something is really happening to your Facebook pages and it is not an infection on your system, Facebook's support staff should try and help you deal with the problem.

[FluffyKittensVomitHairball]

I can't see what's going on with your Facebook pages so it's hard for me to judge if it's an infection or not.

If something is appearing on your pages as if you were the one posting it, then it may be an infection and this is what we help with here. Otherwise there's nothing we can do and if something is really happening to your Facebook pages and it is not an infection on your system, Facebook's support staff should try and help you deal with the problem.

Thank you for your reply , I am trying to find out how to combat this malware and find out how to report it . FB does not have that as a option i their multiple choice reporting options.

They told me i am being targeted by hackers and the only thing that saved me was noscript add on - When I was deleting the Memes my softeware detected automatic downloads but prompted for permissions. Can you please direct me to someone who can help me? after they threatened me I went to full security mode with vpn and noscript thats how I avoided their attack. Now I need help possibly identifying what Im dealing with "stegoloader"? They are trying to get my physical address , because they have been making threats . sorry for botherring you but I really need some advice,  what kind of automatic dowloads hide in memes and trys to download when you are deleting them? these automatic downloads are definitely malicous , I just need some advice and a guess what those memes are downloading and is it possible to inject malicious code in a fb profile that auto downloads?

[FluffyKittensVomitHairball]

I can't see what's going on with your Facebook pages so it's hard for me to judge if it's an infection or not.

If something is appearing on your pages as if you were the one posting it, then it may be an infection and this is what we help with here. Otherwise there's nothing we can do and if something is really happening to your Facebook pages and it is not an infection on your system, Facebook's support staff should try and help you deal with the problem.

They spammed my page with threatening memes and the poster is a photoshop master very talented but in those memes was a downloader . I need to know what Im dealing with is this just a script kiddie or a full on hacker . this will tell me wether or not I will ever return to FB.

[Nevan]

Hello again, FluffyKittensVomitHairball

What you're having problems with cannot be solved with our help here. Attacks like this require assistance from Facebook, which I believe can be received by asking for it here. You could also try reading pages like this.

If they can't do it, I don't think anyone can. Attacks like this might be hard to control, especially on social medias.

[Essexboy]

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.