Jump to content

Request for information/ resources

Henri123
 Share
Go to solution Solved by AdvancedSetup,

Recommended Posts

Henri123

Henri123

Posted
Posted

Hi, my name is Henry. I live in the Caribbean currently and over the past two years or so I’ve been dealing with a pretty bad issue of cyberstalking and bullying that I haven’t been able to get any help with. I’ve reached out to a number or different persons and places with no luck. I’m not sure if this is the correct place for something like this but I figured it was worth a shot. 
If there’s anyone who might know or have any useful resources that could actually assist with this, I’d appreciate it a lot. You would really be a life saver.  Thanks you in advance 

Link to post
Share on other sites
SQx

SQx

Posted
Posted

Hello Henry,

Please can you provide any examples to be sure that we have necessary guide/strategy that can help you.

Could you please provide the model  and vendor name of your router if you are using one. 

Have you contacted Consumer Support as was recommended before?
https://support.malwarebytes.com/hc/en-us/requests/new

Thank you.

  • Thanks 1
Link to post
Share on other sites
Henri123

Henri123

Posted
  • Author
Posted
7 hours ago, SQx said:

Hello Henry,

Please can you provide any examples to be sure that we have necessary guide/strategy that can help you.

Could you please provide the model  and vendor name of your router if you are using one. 

Have you contacted Consumer Support as was recommended before?
https://support.malwarebytes.com/hc/en-us/requests/new

Thank you.

Hello, thanks for the quick response. It has been going on for a while, I didn’t realize I had posted here before. It’s mostly verbal, the persons involved persons will mock me or reveal something personal about me. 
My modem is an Arris TG2482A. 
Again, I appreciate the effort. 

Link to post
Share on other sites
Henri123

Henri123

Posted
  • Author
Posted
1 hour ago, AdvancedSetup said:

Is this for your mobile device again? or for another device?

 

Hi, thanks for responding. Yes, this is the continuation of the same saga from two years ago. I will be honest, I’m not sure how this stuff is being leaked. I’ve changed mobile devices and switched to IOS. But it hasn’t changed anything. My local authorities won’t look into the issue without physical evidence or someone else coming forward to corroborate. I’m kinda looking for resources for victims of this sort of thing that operate internationally please? But whatever assistance I can get would be appreciated. 
To answer your question, I own a laptop PC, iPhone 8 and a kindle fire 7 right now. Thank you. 

Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

An iPhone is pretty secure and extremely difficult to breach.

You can attempt to reset your router if you own it.

 

 

If you own your own router and are not renting it from your Internet Service Provider

Please ensure that you have the user manual for your router. Then perform a factory reset.

How To Reset Your Router
https://setuprouter.com/networking/how-to-reset-your-router/

Depending on one's preferences and the Router's capabilities please consider the following.

  • Disable acceptance of ICMP Pings
  • Change the Default Router password using a Strong Password
  • Use a Strong WiFi password on WPA2 using AES encryption or Enable WPA3 if it is an option.
  • Disable Remote Management
  • Create separate WiFi networks for groups of devices with similar purposes to prevent an entire network of devices from being compromised if a malicious actor is able to gain unauthorized access to one device or network.
    Example: Keep IoT devices on one network and mobile devices on another.
  • Change the network name (SSID).  Do not use your; Name, Postal address or other personal information.  Make it unique or whimsical and known to your family/group.
  • Is the Router Firmware up-to-date ?  Updating the firmware mitigates exploitable vulnerabilities.
  • Specifically set Firewall rules to BLOCK;   TCP and UDP ports 135 ~ 139, 445, 1234, 3389, 5555 and 9034
  • Document passwords created and store them in a safe but accessible location.

 

 

  • Thanks 1
Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

For the PC we can scan it to see what we can find. @Henri123

 

Let's go ahead and run a couple of scans and get some updated logs from your system. Please read the entire post below before starting so that you're more familiar with the process

Then follow each step in the order provided. Unless otherwise asked, please attach all logs

 

Please make the following system changes:

  • If you have not done so already - Enable System Protection and create a NEW System Restore Point
  • Temporarily disable your antivirus real-time protection or other security software first only if it blocks or interferes with the scans or downloads.. Make sure to turn it back on once the scans are completed
  • Temporarily disable Microsoft SmartScreen to download software below only if needed. Make sure to turn it back on once the downloads are completed
  • Disable-Fast-Startup
  • Show-Hidden-Folders-Files-Extensions

Please run the following scans:

  1. Click the following link and run a  Scan with AdwCleaner
  2. Click the following link and run a  Scan with Malwarebytes 
       RESTART the computer
  3. Click the following link and run a  Scan with Farbar Recovery Scan Tool 
     

Example image of where to click to attach files when posting your reply

image.thumb.png.e208c182ff570799c53bcf57

 

Thank you

 

  • Like 1
Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

It looks like you may have a router that can easily be compromised.

Please try to update the firmware if it addressed this, or consider purchasing a new router as the one you have is not safe.

https://www.malwarebytes.com/blog/news/2023/02/arris-vulnerability-found-in-commonly-used-router-could-result-in-complete-take-over

 

Thank you to @SQx for pointing this out.

 

  • Like 1
  • Thanks 1
Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

Thank you for the logs. Yes, please get the Router replaced as soon as possible. That is a sever risk to your security

 

Dr.Web CureIt!

Please download the Dr.Web CureIt! anti-virus utility
https://free.drweb.com/

 

You will need to send them an email to obtain a link to download the scanner, please do so

  • The downloaded file will normally have a unique name such as:  q7a9tr4p.exe
  • Close all open applications and locate the downloaded file and double-click to run it
  • The program will take a moment to launch and bring up the License and Update screen
  • Place a check mark to agree to the terms and then click on the Continue button
  • Click the underlined link Select objects for scanning
  • On the top left click the Scanning objects that should automatically check all objects
  • Click the small wrench and make sure there is a check on Automatically apply actions to threats
  • Then click the large button on bottom right Start scanning
  • Once the scan has completed there will be a link named Open report click that and a log named cureit.log should open in Notepad
  • The log is saved in the folder named Doctor Web in the top of your user profile folders
  • Please attach that log on your next reply

 

 

 

  • Like 1
Link to post
Share on other sites
  • Root Admin
  • Solution
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
  • Solution
Posted

It found something in your hosts file it did not like and removed it.

Until that ROUTER gets replaced the computer and ALL devices connected to it are at risk of compromise.

Replacing the router should by your number one goal at this point

 

  • Thanks 1
Link to post
Share on other sites
Henri123

Henri123

Posted
  • Author
Posted

I'm happy it removed something. I understand and I really appreciate the help so far.
My router is rented from my ISP and uses a coaxial cable. I haven't found secure options for a router that uses the cable yet. Can I keep the current router and use a more secure intermediate router between it and my devices? or would that defeat the purpose?

Thank you so much again.

Link to post
Share on other sites
SQx

SQx

Posted
Posted (edited)
2 hours ago, Henri123 said:

My router is rented from my ISP and uses a coaxial cable. I haven't found secure options for a router that uses the cable yet.

Then it's better to work with your ISP to find the right solution. If bad actor gains access to your router and manipulates routes (like dns spoofing, cache poisoning, etc) the second (intermediate) router will not help in this case.
Please ensure that you follow the guidelines provided above. 

Edited by SQx
  • Like 1
  • Thanks 1
Link to post
Share on other sites
Henri123

Henri123

Posted
  • Author
Posted

Hi, I spoke with a rep from my ISP and the response and service wasn't really great. They assured me the router was safe and said it wasn't possible to switch to another. I've set up an appointment with another ISP in the mean time and hopefully the service will be a bit better over there. I really appreciate the help @AdvancedSetup. You as well @SQx. Thanks a lot.

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.