Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Identity theft possible hacking


  • Please log in to reply
6 replies to this topic

#1 Omar Yehia

Omar Yehia

  • Members
  • 133 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 23 March 2017 - 01:43 PM

Hello
Someone claimed to be from Dell just called and said my system has a virus and took my credit card infornatioj to install some security software.

The company is BestComputerRepairSolution

I called my bank to cancel the transaction but i would like to use my computer as soon as possible

Right now i am wrting this on iphone

Omar

BC AdBot (Login to Remove)

 


#2 Will5200

Will5200

  • Members
  • 141 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:United States
  • Local time:12:25 AM

Posted 23 March 2017 - 02:37 PM

https://www.bbb.org/west-florida/business-reviews/computers-service-and-repair/best-computer-repair-solution-in-marco-island-fl-90297288/reviews-and-complaints

 

Suggest that you get your money back, if possible. Microsoft/Dell/HP/Toshiba/etc will never call and say that. There's no way they could know, anyway. Suggest you get a decent antivirus program and scan yourself. Better yet, install Malwarebytes (I believe it's available here in the download section). There are others there, too. Good luck.



#3 DeimosChaos

DeimosChaos

  • BC Advisor
  • 1,420 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:United States, Delaware
  • Local time:12:25 AM

Posted 23 March 2017 - 04:04 PM

I would cancel the transaction and also get a new card number issued. Did you let them on your PC to install anything? If so, I recommend creating a topic in the "Am I infected? What do I do?" section and get your PC cleaned.


OS - Ubuntu 14.04/16.04 & Windows 10
Custom Desktop PC / Lenovo Y580 / Sager NP8258 / Dell XPS 13 (9350)
_____________________________________________________
Bachelor of Science in Computing Security from Drexel University
Security +


#4 Omar Yehia

Omar Yehia
  • Topic Starter

  • Members
  • 133 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 23 March 2017 - 05:15 PM

Yes they installed several software which all seems to ne legit but they left task manager running thrn i saw a lot of activity which i became suspicious so i killed their remote software and shutdown everything. My bank asked to get a refund which they ssid thry would but the bank insisted i clean it at sn expert and send them a letter what has been done by the experts. So right now bestbuy is busy dealing with other clients. My credit card was cancelled and i should be getting a refund but i am afraid of turning on my computer without a backdoor been installed somewhere

Omar

#5 Omar Yehia

Omar Yehia
  • Topic Starter

  • Members
  • 133 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 23 March 2017 - 05:24 PM

Ok bestbuy wants to charge 200$ and it would take a day or so i would rather have an expert here help me out, so where do i start do i turn on my computer now?

#6 Crazy Cat

Crazy Cat

  • Members
  • 808 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lunatic Asylum
  • Local time:04:25 PM

Posted 23 March 2017 - 06:23 PM

On another pc, NOT the infected one, download these 4 malware scanners onto a USB thumb drive.

RKill 2.8.4.0 Download. https://www.bleepingcomputer.com/download/rkill/
Emsisoft Emergency Kit Download. https://www.bleepingcomputer.com/download/emsisoft-emergency-kit/
Sophos Virus Removal Tool Download. https://www.bleepingcomputer.com/download/sophos-virus-removal-tool/
Farbar Recovery Scan Tool. https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/

Update Emsisoft Emergency Kit and Sophos Virus Removal Tool malware signature databases first on the usb thumb drive.

Download Process Explorer 16.12.0.0 https://www.bleepingcomputer.com/download/process-explorer/ onto the usb thumb drive also. This is essential to find all auto start exe and services.


NOW, disconnect the infected pc from the router and internet, CRITICAL!

Boot pc into Safe Mode (toggle F8 at boot up) and start in Safe Mode.

Scan with 4 malware scanners, and save all scanner logs.

Run as Administrator > Process Explorer > Save > System Idle Process.txt

Post scan logs and System Idle Process.txt to "Am I infected? What do I do?" https://www.bleepingcomputer.com/forums/f/103/am-i-infected-what-do-i-do/

Edited by Crazy Cat, 23 March 2017 - 06:24 PM.

 

Two things are infinite: the universe and human stupidity; and I'm not sure about the universe. ― Albert Einstein ― Insanity is doing the same thing, over and over again, but expecting different results.

 

InternetDefenseLeague-footer-badge.png


#7 Omar Yehia

Omar Yehia
  • Topic Starter

  • Members
  • 133 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 23 March 2017 - 06:56 PM

Sorry i dont have another computer just ipad or iphone anyhow i downloaded those files on yhevcomputer did tge updates then went into sage mode with no network, rkill does not work nothing happens in safe mode, the other svannefs are currently running
Regards




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users