Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I don't have control of my computer, please help!


  • This topic is locked This topic is locked
29 replies to this topic

#1 J'siosis

J'siosis

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:08:51 PM

Posted 25 July 2015 - 09:25 AM

Hiya, I need some urgent help, my bro in law has hacked my system. Tried all spyware, malware programs but he still figures out my passwords, freezes up my computer as he wishes, changing certain options etc. Need some help as I'm abit witty with pcs but it's been awhile so not really up to scratch with the latest stuff lol

 

Update: Tried several anti virus programs including eset, spybot etc but nothing came up... avg at first didn't show anything but now shows 7 threats that I have tried to heal/ remove but I'm unable to.

 

I ran aswMBR and the results are attached, what's the difference between FixMBR and Fix?

Attached Files

 



BC AdBot (Login to Remove)

 


#2 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:02:51 PM

Posted 25 July 2015 - 01:15 PM

Download CKScanner from here

Important : Save it to your desktop.
  • Doubleclick CKScanner.exe and click Search For Files.(If you have Windows Vista / Windows 7 / Windows 8 please do a Right click on CKScanner.exe and select Run as Administrator)
  • After a very short time, when the cursor hourglass disappears, click Save List To File.
  • A message box will verify that the file is saved.
  • Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#3 J'siosis

J'siosis
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:08:51 PM

Posted 25 July 2015 - 05:25 PM

CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.ZZ.11.HJAAW0
 ----- EOF -----
 
I have a serious problem as I said earlier, I want to be able to change my passwords and not worry about my bro in law logging in as me while I am asleep and posting naked men or porn on facebook... and I am tired of changing my passwords every couple of days plus he slows my computer down and causes it to freeze to the point I have to do a hard reboot (switch it off by pressing and holding the power button)


#4 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:02:51 PM

Posted 26 July 2015 - 03:16 AM

Why are you altering log(s) again?


Edited by Machiavelli, 26 July 2015 - 05:51 AM.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#5 Valinorum

Valinorum

    Shadow Hide The Hunter


  • Malware Response Instructor
  • 1,648 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:51 AM

Posted 26 July 2015 - 07:45 AM

Hi, :)

:welcome:

My name is Valinorum and I will be the acolyte today. Before we proceed, please, acknowledge yourself the following(s):
  • Please do not create any new threads on this while we are working on your system as it wastes another volunteer's time. If you are being helped/have solved the issue/no longer wish to continue, notify me in your reply and I will quickly close this thread. Failing to comply will result in denial of future assistance.
  • Please do not install any new software while we are working on this system as it may hinder our process.
  • Malware removal is a complicated process so don't stop following the steps even if the symptoms are not found. Keep up with me until I declare you clean.
  • Please do not try to fix anything without being ask.
  • Please do not attach your logs or put them inside code/quote tags. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise.
  • Please print or save the instructions I give you for quick reference. We may be using Safe mode which will cut you off from internet and you will not always be able to access this thread.
  • Back up your data. I will not knowingly suggest your any course that might damage your system but sometimes Malware infections are so severe that only option we have is to re-format and re-install the operating system.
  • If you are confused about any instruction, stop and ask. Do not keep on going.
  • Do not repeat the steps if you face any problems.
  • I am not an omniscient. There are things even I cannot foresee. But what I know took years to learn and perfect the skill. This site is run by volunteers who help people in need in their own free time. I would ask you to respect their time and be patient as sometimes real life demands our time and replies to you can be delayed.
  • Private Message(PM) if and only if I have not responded to your thread within three days or your query is offtopic and personal. Do not PM me under any other circumstances. Your thread is the only medium of communication.
  • The fixes are for your system only. Please refrain from using these fixes on other system as it may do serious damage.
 

Machiavelli will be unable to provide his support and I will take over from here. Please disconnect yourself from the internet and change your login credentials from a clean PC. If you do banking and other works from his PC, please, contact the proper authority.


 
  • Step #1 Scan with Farbar Recovery Scan Tool
    • Please download Farbar Recovery Scan Tool by Farbar to your Desktop from the link below.
      Download link for 32 bit system
      Download link for 64 bit system
    • Right-click on the program and choose Run as administrator;
    • Put tick-mark on all boxes under Whitelist and Optional Scan;
    • Click on Scan;
    • After the scan two notepad files will be opened --
      • FRST.txt;
      • Addition.txt
    • Copy and Paste the contents of the logs in your next reply.
 
  • Required Log(s):
    • FRST.txt
    • Addition.txt
Regards,
Valinorum

Geek U Graduate

I close my topic(s) with no replies for more than 4 days. PM me or Moderators to reactivate. All helps are provided via forum ergo do not PM me for help.

 


#6 J'siosis

J'siosis
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:08:51 PM

Posted 27 July 2015 - 03:13 AM

Ok, I'll do that. 

I'm a bit surprised that I have managed to log on as google chrome has been freezing every time I launch it and when it does work and I try to google solutions it freezes again. (I presume my bro in law is monitoring my activity and wants to keep it that way)

Now what I'm wondering is since it's working and I'm logged in, it seems suspicious... I hope your intentions are to truly help me and not wipe my laptop clean or do something worse... I'm worried he might have got to you...

 

Another thing, I may have a few cracked programs that I downloaded to test out and intend to buy them if I like/ need them... will that be a problem? As when I tried to seek help on another forum, the person that was helping me locked the post on these grounds.



#7 J'siosis

J'siosis
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:08:51 PM

Posted 27 July 2015 - 03:17 AM

The logs have my name despite me changing my admin username, how do i change it so my name does not show?

 

I have thought of using a different pc to change stuff but there's no point as I would not be able to log on on my pc later lol


Edited by J'siosis, 27 July 2015 - 03:23 AM.


#8 Valinorum

Valinorum

    Shadow Hide The Hunter


  • Malware Response Instructor
  • 1,648 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:51 AM

Posted 27 July 2015 - 10:11 AM

Hi,

I will try to be as detailed as possible.

I'm a bit surprised that I have managed to log on as google chrome has been freezing every time I launch it and when it does work and I try to google solutions it freezes again.

:thumbsup:

(I presume my bro in law is monitoring my activity and wants to keep it that way)

If you are sure, please, contact your local law enforcement authority.

Now what I'm wondering is since it's working and I'm logged in, it seems suspicious... I hope your intentions are to truly help me and not wipe my laptop clean or do something worse...

I am sorry but are you accusing me? My intentions are --
  • I inspect the PC of the user based on the log(s) asked by me and provided by the user in this part of the forum.
  • I remove the traces of Malware shown in the log and remnants found either via automated tools or hindsight.
The public log and reply based helping system also works as a tracking system for both parties should something goes wrong. As stated in my terms here:-

I will not knowingly suggest you any course that might damage your system but sometimes Malware infections are so severe that only option we have is to re-format and re-install the operating system.


I'd not ask you to wipe out harddisk otherwise. If it is not compatible with your, I counsel you to take your PC to a repair shop.

I'm worried he might have got to you...

Apart from your paranoia I doubt this statement. If you have valid reason, do share please.

I may have a few cracked programs that I downloaded to test out and intend to buy them if I like/ need them... will that be a problem?

Yes, this forum does not condone piracy and I will remove every traces of cracked/pirated program. If you wish to test, try trial version of the software. You are given the chance to remove them completely either by yourself or with the help of your helper and should any traces of pirated programs are found in your PC in the future, further assistance in this forum will be denied.

The logs have my name despite me changing my admin username, how do i change it so my name does not show?

I do not understand what you are saying. All the accounts currently in your PC are shown in the log and are required should you wish to fix problems. I advise you to refrain from changing anything shown in the log as the fix(es) I will instruct then won't function properly and will cause more problem. Moreover, I ask you to check few threads in our Virus, Trojan, Spyware, and Malware Removal Logs forum and see how other people post their logs. The logs do not contain any information that can be used to harm unless your password is same as your PC username.

I have thought of using a different pc to change stuff but there's no point as I would not be able to log on on my pc later lol

I asked you change your online account passwords and other information and disconnect the infected PC from the internet. If possible, use a clean PC and a flash-drive to peruse my instruction and transferring tools.


 

Regards,
Valinorum

Geek U Graduate

I close my topic(s) with no replies for more than 4 days. PM me or Moderators to reactivate. All helps are provided via forum ergo do not PM me for help.

 


#9 J'siosis

J'siosis
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:08:51 PM

Posted 28 July 2015 - 07:56 AM

Ok, one more question... is it possible to get someones password through the wifi or internet connection?



#10 Valinorum

Valinorum

    Shadow Hide The Hunter


  • Malware Response Instructor
  • 1,648 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:51 AM

Posted 28 July 2015 - 08:32 AM

Theoretically it is possible but it is a complex process and I doubt that is your case.

Geek U Graduate

I close my topic(s) with no replies for more than 4 days. PM me or Moderators to reactivate. All helps are provided via forum ergo do not PM me for help.

 


#11 Valinorum

Valinorum

    Shadow Hide The Hunter


  • Malware Response Instructor
  • 1,648 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:51 AM

Posted 31 July 2015 - 11:24 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

Geek U Graduate

I close my topic(s) with no replies for more than 4 days. PM me or Moderators to reactivate. All helps are provided via forum ergo do not PM me for help.

 


#12 Valinorum

Valinorum

    Shadow Hide The Hunter


  • Malware Response Instructor
  • 1,648 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:51 AM

Posted 02 August 2015 - 12:54 AM

This topic has been re-opened at the request of the person who originally posted.

Geek U Graduate

I close my topic(s) with no replies for more than 4 days. PM me or Moderators to reactivate. All helps are provided via forum ergo do not PM me for help.

 


#13 J'siosis

J'siosis
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:08:51 PM

Posted 04 August 2015 - 06:14 AM

Will repairing windows with the install disk get rid of the key loggers, remote assist bugs etc?



#14 Valinorum

Valinorum

    Shadow Hide The Hunter


  • Malware Response Instructor
  • 1,648 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:51 AM

Posted 06 August 2015 - 01:56 AM

If you wish, you can back up your non-executable files such as PDFs, pictures, videos et cetera and re-install your Operating System. This method will be like using a sledge hammer to crack a nut but will console your paranoia regarding your brother-in-law. Do file a complain to your local police department against him if you are sure.

Geek U Graduate

I close my topic(s) with no replies for more than 4 days. PM me or Moderators to reactivate. All helps are provided via forum ergo do not PM me for help.

 


#15 J'siosis

J'siosis
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:08:51 PM

Posted 06 August 2015 - 04:57 AM

Yeah that should work but that would be a last resort as I would have to re-install all my programs again after :( can't a repair work? (not a total re-install but repair of the operating system) 

I would report him to the police (or deal with him) but that would mean getting him into trouble (getting him hurt)... which would mean his sister would hate me for good... can't do anything to him as I would hurt his sister (who I love with all my heart and soul) indirectly :(

 

You mentioned backing up my files, unfortunately I don't have an external hard drive (used to but it got messed) and I have a PC that I haven't used in awhile, tried to use it the other day but for some reason, when i connect it to my HDTV (VGA to VGA), the TV is like it's in stand-by mode... the pc boots up, fans etc are running, can't hear any beeps but last I recall, it worked fine when I last used it :/

(I hope he didn't mess with it, he could have for seen all this and is well prepared)

 

PS: It's an old PC and I only have it's keyboard, would not detecting the mouse stop it from showing a display? 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users