Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

THE DANGERS OF ONLINE GAMES AND DOWLOADS


  • Please log in to reply
8 replies to this topic

#1 BInarybaited

BInarybaited

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:23 PM

Posted 26 February 2014 - 09:51 PM

I Have had The worst  luck ever with just trying to protect my personal files and helping others to warn them about computer related experiences i have had and am still having.Sometimes i wonder if i should just keep quiet.But unfortunatly for me i cant stand seeing victims get burned because of theyre lack of knowledge.

 

I could write a book about everything ive went through .so i will try to keep this brief,About ten years ago i started to do  researching on how computers work and work with as  many software programs that i could .Well downloading software was getting to be quite  a hassle ,because malware ,adware viruses and not having the available program or drivers was annoying to have to look for them alll over again online.

 

So i decided to burn what  programs i had downloaded as well as a few more to fill a disk where i could use this info or program when  i needed it.the first time i decide to do some burning  was fine ..until i tried to burn  copys of my originals because after a while they would get  damaged from usage or  defective optical drives.  creating a iso image  file   disk image on a dvd  that   boots  was just  starting to get  a little easier. Well i downloaded software tools neeeded to try  them out. This is about the  time where everything went out of control.The software on my computer ,started to do things remotely ,it  was acontinous nightmare trying to keep up with what was going on right in front of my eyes.At first  i thought it was a hacker ,trying to steal all my personal info  and software.when about  afew minutes  later a program started up and proceeded to download a file like an update.

 

this file was taking  way to long to download as it was very small.so i tried exiting ..no response ..i tried task manager thinking it hung..  no response...i noticed on my task bar games  and programs  were disapearing one by one .i tried everything to stop this program from taking my software...Thats when i seen the most  bizarre thing on a computer in my life.It was like a Chess match to see who got the upper hand in certain moves to win the prize.well about 6  hours later i decided to pulll the plug on the net. after half my software had  just dissapeared.the next day i thought i should back up whats left  with no connection to internet at all ,everything disconneced completely.

 

thats when the bizarre started to happen.this thing started to proceed where it left offf.and again i was in a battle .so i decided to start deleting these programs that came to life to use against me.but the damn things wouldnt stay deleted .the files would rebuild itself as quick as i tried deleting them..i found that  the  recycle bin wasnt a real one because it had a k in front of it  and a dollar sign  i think..

$Krecycle$   most  likely from the kingston  antivirus folder.then it threw me a huge loop i didnt expect and indexed  all my file extentions everywhere .they  were alll mixed up. now things like cursors  and exe files  started to fail. this led to a complete mess and totally corrupt registry..what  a frkn nightmare..well needless to say i was pissed...how it was done right in front of me.

 

So i started to learn a little more about exactly what just happened , no one believed me , they alll thought i was nuts .when i told them of a 6 hour battle  with  no internet to keep my programs..

well this persisted even after a reinstall of windows.  over  and over  and over...no  virus was detected.

and i scubbed the hard drive with  a low level format to make sure.  after the first incident i have never been left alone to this day...its like im being monitored 24/7 . i filed a report to  fbi  and microsoft 

to no avail. they just wanted to selll me antispy  or malware.. i left them a little note saying i wasnt very impressed how it was handled..and then had more problems .like spyware and software distribution eulas by the dozens.as well as activations for windows . i would  see a BUILD text on bottom right of screen as if they were trying to killl my activation.as it did but dissapeared after shut down...

 

i found out later that this pirate iwas trying to track and catch and almost did .had sent a bunch of illegal software with my pics taken  from my personal computer... to  someone from microsoft  or interpol to take the heat off him. this person also tried to do a identity theft as well ,but from reading posts and keeping an eye on oddd things had saved me from more problems....

 

so  to this day i willl post a few more experiences to aide anyone from this happening to them.

 

keyloggers malware tojan genera/svchost/rootkit /undelete recover/remote modules /false positives /iso recovery/self extracting files/ to  name a few were used and not really known back then.so whoever it  was had a great deal of knowledge on data progamming.

 

 

 



BC AdBot (Login to Remove)

 


#2 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:11:23 AM

Posted 26 February 2014 - 10:13 PM

Sounds like your router is hacked too...

 

This happens all the time, and often leads to spiraling paranoia of the safety of computer systems. I have a friend who has had a very similar experience to you. You're not alone.



#3 BInarybaited

BInarybaited
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:23 PM

Posted 09 March 2014 - 05:47 AM


Yea hacked is right ,and they are still at it.i am thinking there are companys that pressure you to buy antivirus and malware software when you download a trial version..I wanted to buy a good program , so I tried a few trials .after the trial expired or I didn't really like it . was usually the time when
things stared happening like malware and crashes etc.the program always seemed to stop working just
before the trial ends and are left with empty icons on the desktop with a different set of folders and files in the empty trial versions directory name.

something that happens quite often with certain software. I guess the companys expect you to buy the
product right away.these companys I don't trust..i did like some that worked and had few issues
one was super antispyware .another was windows manager 7 or 8 the only program that fixed my internet
connection problems properly.the only thing I didn't like was the junk file remover.it included some importatant documents on the removal list .its a good idea to always check what files are being removed
when running a tune up tool.

I will try to get back and list the ways hackers use to get in your computer and take control with out you noticing.

#4 NickAu

NickAu

    Bleepin' Fish Doctor


  • Moderator
  • 13,099 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:127.0.0.1 Australia
  • Local time:11:23 AM

Posted 09 March 2014 - 06:04 AM

 

I will try to get back and list the ways hackers use to get in your computer and take control with out you noticing.

I could tell you a few stories about ways n means.  But no that is not going to happen. Too many script kiddies around.


Arch Linux .
 
 Come join the fun, chat to Bleeping computer members and staff in real time on Discord.
 
The BleepingComputer Official Discord Chat Server!


#5 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:11:23 AM

Posted 09 March 2014 - 06:08 AM

Yeah, it's not appropriate for this site anyhow, there's plenty of other sites out there for those who want that.

 

:thumbup2:



#6 BInarybaited

BInarybaited
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:23 PM

Posted 09 March 2014 - 08:46 AM

Hmmm. yeah maybe you guys are right i just wanted to see if there is anyone else that's had those kind
of problems as well, everyone is so quiet about it.?????....is there something i am missing or am i asking for trouble..i know its a pain in the a** but if people don't post whats going on hows anyone going to keep it from getting worse.

we got so tired of being hacked we used to just sit back and let them do whatever. but made sure we had no important info stored on the computers.we found that ignoring the problem made things worse . the hackers used us as a scapegoat for the
trouble they were causing ,leading companys to believe including Microsoft that it was us that was
burning illegal copys , child porn ,identity theft.. etc.

the final straw was when we received a
FBI malware system lock and to pay them 100$ to release the lock..im not sure if it was even from the hacker to be honest .. Microsoft didn't want to help and a few other companys were mad for some
reason. until i found out later by odd messages in my updates from Microsoft they thought i was pirating software and porno.

we were done with staying quiet.and were prepared to deal with the outcome.i have learned a ton just by watching them, the government doesn't think its a big deal,im sure you know why.the uk has clamped
down on the phone scammers , i already knew this was next as they access your computers for pictures
and an address for credit card scams.an ex hacker wrote a book of how he stated the worst thing you can do is stay quiet or not protect your identity.if people want to try and hack us .i will make sure i
find them.everyone leaves a trail, especially when a computers logs and errors lead right to them if
you know what to look for and are prepared .

#7 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:11:23 AM

Posted 09 March 2014 - 09:10 AM

there are people who experience similar problems...

 

I can assure you your $100 lock was a malware scam though, Microsoft don't do that.

 

What sort of odd messages? Errors are common, MS deals with hundreds of calls a day because their verification software plays up.

 

Sadly logs do not lead right back to scammers... They will use a proxy, then a vpn, then using that take control of another innocent persons machine and use that machine to do any illegal activities. Logs lead back to other hacked people generally. Unless it is extremely high level (state seceret type high) there is no way to track them, and even if you did they are probably in Russia or China, so there is nothing to do anyhow...

 

Now... If you want to be 99% sure you are safe (this is extreme by the way)

 

physically reset your router, then create a new password at least 12 random characters in length

low level reformat your hard drives and re-install your operating systems.

avoid using Windows if possible, this will minimize your threat levels. (ie: move to Linux)

Set up a strong firewall.

Set up a high class antivirus

If you use ADSL call your ISP and get them to change your IP address.

Do not re-install high risk software (java, flash, adobe etc)

Only use web based mail (hotmail or google are safe)

Uninstall Windows Media Player and Internet Explorer

Disable Autorun and Autostart

Create a group policy that all exe files can only execute from C:/program files and C:/program filesx86

Install Deep Freeze...

Consider Sandboxie for when you go online.

want to go the extra level?..... Get an additional machine to act as a router and configure M0n0wall on it.

 

You'll be pretty safe after all of this. It would be considered safe enough to guard corporate financial records.



#8 BInarybaited

BInarybaited
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:23 PM

Posted 09 March 2014 - 10:43 AM

Hey thanx for all the info..its pretty sad like you said to have to go to those extremes but better
safe than sorry.the stupid thing about it is I don't have anything of interest on my computers ,I do collect a great deal of info on certain topics .That maybe sparked an interest on someones page or
spyware.

I think Defcon gives a little to much info by making certain topics public.sure they expose security
risks but some things should be kept low profile.dont tell everyone how to hack a stolen phone to
remotely hijack the new 10 million dollar stealth jet from the armys testing base.

The odd things I noticed were about 30 eulas of software copyright laws.my cd or dvd windows burner was removed and I didn't even have a burner. pictures were removed or downloaded like the user account jpg
they tried to send a build that shows up on start up in bottom left for win authentication.programs
were disabled.just before that happened I had downloaded a couple of photos of me .that were stolen
I placed ads for a car and property for sale from a note pad I created for a couple of different ad
companys .they were also stolen.

I downloaded a free movie that was only in zip form. that was taken.
other strange things happened like the sound recorder would be turned on .the tv screen would go real dull.and the final proof was when the IM chat started writing texts I didn't write to my g.f while
I was away for a few minutes.i always wondered why she was so mad at me sometimes.i confronted them
on the chat text and they sent emoticons like baseball bats . skull&cross bones . and a grim REaper .
basically telling me if I tell the cops I am dead..i just laughed and asked if he wanted my address so
that it would save me the trouble of finding him.

yea you are probably right they are half way cross the world.it would seem like Akamai has something to do with that as they use certain area connections like mine. as a bridge across two long distance
countrys.which explains a lot.if you want more info it looks like you could use it for your studys I would
rather talk p.m.
Kel

#9 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:11:23 AM

Posted 09 March 2014 - 10:59 AM

The only thing I haven't done in that list is install Deep Freeze... as it is quite expensive.

 

Your symptoms are that of a classic RAT though (remote administration terminal/trojan). It is probably something like DarkComet. Serious hackers wouldn't bother sending messages on your behalf, they are looking to monetize, not terrorize. It actually sounds like you have 1st world script kiddies hijacking your machine, not 'real' hackers as such.

 

So basically, it's time for you to clean up.

 

You can either start a malware removal topic, and physically remove these nasties, or reformat and try again.

 

No point dwelling on this stuff, just fix it up now.

 

We're here to help. :thumbup2:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users