Jump to content

Continual Malware and accounts broken into - what to do


ctl8

Recommended Posts

Hello, I have seemingly been targeted by someone or a group over the last year or less. I have had 3 androids hacked into it and one iPhone as well as two computers. It has not stopped and I don;t know what to do. So please bear with me as I try to explain a bit of this and hopefully you can understand why I am very wary at this point.

I watched in real time as someone took over my android apps, they literally put malware and other, who knows what, on my phone and then began manipulating programs and logos. For example, to make it look like I was clicking on a true google logo to get to google they would somehow get a program onto my phone then cover it up with a google logo, chrome and various other ones. How could I tell? I watched them in real time do it. It was bizarre and alarming. I don;t know how they did it, however my place was broken into and two of the four phones could have been manually compromised but I don't know how that works...They were doing it quickly and I could see part of the spyware or malware that was being put on my phone underneath the fake logo they were putting on top of it. They went down almost every app.

They also screwed up various logo colors, for example, at times put grey background instead of blue etc. I also had countless passwords key-logged off computers and several accounts broken into. It is straight out vicious. So now I am very wary...

When I first started this new 3rd computer, it was maybe about 15 minutes and the screen began to go grey/black several times as I was trying to put Malwarebytes on. I tried to get into another account that had been hacked months ago, but it sent the code to the hacked email possibly alerting whoever this is that I am back online. The next day, I noticed in the windows start up menu and settings that the  Malwarebytes logo is blue on blue (so you can hardly see the "M"). I am used to seeing it as white on blue. How should it show up?

I deleted McAfee that was on there and activated Windows Defender instead along with MalwareBytes a few days ago, but today the MacFee logo reappeared outlined in grey when originally the logo was red days. It is showing up in my Windows 10 apps settings and start menu. Other strange things like this have been going on today and it is reminding me of what happened with the phone.

Today I also added SpyShelter Firewall and the icon keeps changing colors and keeps disappearing and moving from the taskbar. My screen has several times done strange blinking, delays and switching screens. So due to all these what seem to be monitored attacks over time I am not sure what to do or how to protect myself. 

I would deeply appreciate any help. I feel like I need a cyber body guard! 

Attached are the FRST. Malwarebytes scans have not picked up anything, however in some of my logs it says that the rootkit was not enabled which is odd since I have it set to be enabled. Does it turn off on an auto-scan? I would not think so...?

Thanks

 

FRST.txt

Addition.txt

Link to post
Share on other sites

Hello  and
:welcome:

Please take your time.

From what you've described, it sounds like this is coming through your router.

 

Let’s try to reset the router to its default configuration.

This can be done by inserting something tiny like a paper clip end or pencil tip into a small hole labeled "reset" located on the back of the router.

Press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds).

You also need to reconfigure any security settings you had in place prior to the reset.

Note: After resetting your router, it is important to set a non-default password, and if possible, username, on the router. This will assist in eliminating the possibility of the router being hijacked again.

Next:

You might need elevated privileges

Open the Start Menu, (Windows Globe) click on All Programs > Accessories >, right click on Command Prompt, and click on Run as administrator.

In the command prompt window that opens, copy / paste or type the following commands:

Note the spaces between G / it needs to be there.

Click the Microsoft Start logo in the bottom left corner of the screen Type CMD and click Ok.

The MSDOS Window will be displayed. At the command prompt, copy / paste or type the following and press Enter after each line:

IPCONFIG /release

IPCONFIG /flushdns

IPCONFIG /renew

IPCONFIG /registerdns

netsh winsock reset

netsh int ip reset

regsvr32 netshell.dll

regsvr32 netcfgx.dll

regsvr32 netman.dll

Type in Exit


Restart the computer.

 

Link to post
Share on other sites

  • Root Admin

Due to the lack of feedback, this topic is closed to prevent others from posting here.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread.

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.