[bobobobo123]

I'm not gonna say i understand any of this even slightly, but i went to my App history and "Mail and calendar" has 1,155 mb network transfer, i right clicked it and pressed "Search online" (because pressing properties did nothing) and it pasted "microsoft.windowscommunicationsapps_*****.*****.*****.*(string of numbers)_x64__*************(string of characters and numbers) Mail and Calendar", When i went to the folder (removing the string of numbers and placing the string of characters and numbers), it was filled with MANY very personal things including pictures of my id, direct deposit forms, etc. There is also a folder titled "EFMData" filled with hundreds of .dat files

[Advertisements]

I should note that there are multiple empty folders, and the folder with my personal data is a few folders deep, within LocalState > Files > S0 > 3 > Attachments . These are selective, not including absolutely everything, just the very sensitive information (including my social insurance number(this is very bad))

Edited by bobobobo123, 01 August 2023 - 12:31 AM.

[bobobobo123]

I should note that there are multiple empty folders, and the folder with my personal data is a few folders deep, within LocalState > Files > S0 > 3 > Attachments . These are selective, not including absolutely everything, just the very sensitive information (including my social insurance number(this is very bad))

Edited by bobobobo123, 01 August 2023 - 12:31 AM.

[bobobobo123]

i'm suspicious that it might be a lot deeper than a replacement of the mail and calender app or a script, i can't be sure because i'm really not familiar with the regular functioning of what i've been noticing but there just seems to be some very strange things happening on the backend in like a really unconventional malware method, it's difficult to articulate because i don't have any experience, but if there would be a possibility of a screen sharing call or some way of sharing event logs, in fact i'll attach some screenshots i thought seemed odd. there seems to be attempts to cover their tracks, very extensively, and it's quite scary honestly. I paused my card because i noticed a new subscription for Amazon Prime which i have never signed up for and couldn't be found when i called amazon support.

Attached Thumbnails

• 
• 

Edited by bobobobo123, 01 August 2023 - 01:08 AM.

[bobobobo123]

Would there be any sensitive information that would compel me to not send a copy of my tcp/udp port list? i have an html report, if that could help detect something (there are a lot of connections, idk how many is normal)