Jump to content
CallSignChurch

Being Remotely Hacked

Recommended Posts

I would consider upgrading Malwarebytes to premium.... Last thing before you are ready for bed leave your PC and run ESET online AV scan, this is very torough and can take several hours to complete:

Go here and click 'SCAN NOW' under 'ESET Online Scanner' save to your Desktop.
 
  • You will be prompted to download and install esetonlinescanner_enu.exe. Click on the link and save the file to a convenient location.
  • Double-click on esetonlinescanner_enu.exe to install and a new window will open. Follow the prompts.
  • Turn off the real-time scanner of any existing antivirus program before performing the online scan. Here's how
  • At the bottom of the Terms of use window, tick the option Download latest version of ESET Online Scanner then click Accept
  • When/if prompted by UAC, 'Do you want to allow this app to make changes to your PC?', please choose Yes
  • Tick the option Enable detection of potentially unwanted applications
  • Click on Advanced settings
  • Make sure that the option Clean threats automatically is unticked.
  • Ensure these options are ticked:
 
  • Enable detection of potentially unsafe applications
  • Enable detection of suspicious applications
  • Scan archives
  • Enable Anti-Stealth technology
 
  • Click Scan
  • Wait for the scan to finish.
  • When the scan is done, if it shows a screen that says Threats found, click Save to text file... then name it and save it to your desktop.
  • Do NOT be alarmed by what you see in the report. Many of the finds have likely been quarantined.
  • Please copy/paste the contents of the log in your next reply.
  • To close ESET Online Scanner, select Do not clean then Finish

Thanks,

Kevin..

Share this post


Link to post
Share on other sites

apparently the computer blue screened during the scan...pasting the log now

Problem signature:
  Problem Event Name:    BlueScreen
  OS Version:    6.1.7601.2.1.0.256.1
  Locale ID:    1033

Additional information about the problem:
  BCCode:    7a
  BCP1:    FFFFF6FC5001AE40
  BCP2:    FFFFFFFFC0000185
  BCP3:    00002000D60F3880
  BCP4:    FFFFF8A0035C8000
  OS Version:    6_1_7601
  Service Pack:    1_0
  Product:    256_1

Files that help describe the problem:
  C:\Windows\Minidump\111618-26083-01.dmp
  C:\Users\Sean\AppData\Local\Temp\WER-155907-0.sysdata.xml

Share this post


Link to post
Share on other sites

Can you zip up the dump file and attach it to your next reply: C:\Windows\Minidump\111618-26083-01.dmp

Share this post


Link to post
Share on other sites

Can you turn off your PC, disconnet power (plus battery if a laptop) then hold in start button for maybe one minute. When finished reconnect power (plus battery if a laptop). Reboot the system...

Please download Malwarebytes Anti-Rootkit from here
 
  • Right click on the tool (select "Run as Administrator) to start the extraction to a convenient location. (Desktop is preferable)
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • Click on the Cleanup button to remove any threats and reboot if prompted to do so.
  • Wait while the system shuts down and the cleanup process is performed.
  • Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
  • When done, please post the two logs produced they will be in the MBAR folder... mbar-log.txt and system-log.txt

Thanks,

Kevin

 

 

Share this post


Link to post
Share on other sites

Ok...Netflix account password changed last night and the location came from my state...we've ruled out the possibility of it being the other users on the account. So they still have access to my computer

Share this post


Link to post
Share on other sites

If you are using a wired connection are you able to turn off the wireless broadcast option or is it needed for other devices...?

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.

×

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.