Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Anonghost or Anon Ghost


  • Please log in to reply
5 replies to this topic

#1 cfourkays

cfourkays

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Jensen Beach FL
  • Local time:02:24 PM

Posted 11 March 2014 - 06:06 PM

For information.

 

Customer called me yesterday and said she got the heck scared out of her. Had a popup come up  and said "You have been hacked by Anonghost". She was able to click out of it

After telling her to shut down, I went and did my usual malware cleanup. I've been using d7II from Foolish IT for all my malware removal work. I found the usual pile of crap and was able to clean everything.

She tried to describe what the "head", as she called it, looked like.

I just got my email from "Naked Security" and noticed this article about anonghost. I copied the picture, emailed it to my customer and she said that was it.

The infected PC is a single user, non-business.

 

http://nakedsecurity.sophos.com/2014/03/10/anonghost-hackers-deface-a-fake-bank-site/?utm_source=Naked+Security+-+Sophos+List&utm_medium=email&utm_campaign=532b0d6d89-naked%252Bsecurity&utm_term=0_31623bb782-532b0d6d89-418455993

 

 


[URL=http://petespcworks.com/petehand.gif]

BC AdBot (Login to Remove)

 


m

#2 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,230 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:05:24 AM

Posted 11 March 2014 - 06:40 PM

I've not been able to find a single review online for d7II...? It's very, very new....

 

How do you find this application?

 

Pros?

 

Cons?

 

edit: anonghost is clearly kids... defacing the wrong website, other than the one intended, and then bragging about it. letting their victims know they are infected with pop-ups... lol. script kiddies. they will end up in juvenile detention soon enough.


Edited by TsVk!, 11 March 2014 - 06:43 PM.


#3 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,603 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:24 PM

Posted 11 March 2014 - 08:34 PM

...As Paul Ducklin said when he wrote up the typosquatting report, there's plenty of risk if you take a wrong turn and wind up on some murky, misspelled domain, whether you're talking about malware, bait and switch, hacking, phishing, online fraud or spamming.


I have heard of d7II by FoolishTech, the creator of CryptoPrevent...however I've never used it. Here is the official announcement with some screenshots.

d7II is a rewrite of d7 which was developed for experienced computer technicians, not end users. As the website indicates, "the tool can be very dangerous and destructive if you don’t know how to use it properly, or are inexperienced in malware removal techniques."
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,603 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:24 PM

Posted 11 March 2014 - 08:56 PM

AnonGhost in the news
An interview with Hacker group Anonghost, from the world of Anonymous hacking
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,230 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:05:24 AM

Posted 11 March 2014 - 09:22 PM

They read like hardcore hacktivists... rather than kids hacking users machines for profit. (should have googled this before I commented)...

 

Perhaps someone has decided to start using their name in the name of financial crime, as OP's post would suggest.

 

Still would like to hear your review of the d7II project OP...


Edited by TsVk!, 11 March 2014 - 09:23 PM.


#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,603 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:24 PM

Posted 12 March 2014 - 11:24 AM

They read like hardcore hacktivists... rather than kids hacking users machines for profit....

Yes they do.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users