Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 21

Thread: I have been hacked and now my bank account is gone! please help!!!

  1. #11
    Security Expert-emeritus Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    4,084

    Default

    Did you allow the tools to remove/quarantine what it found?

    Let's check for remnants
    If you're already running Malwarebytes 3 then open Malwarebytes and check for updates. Then click on the Scan tab and select Threat Scan and click on Start Scan button.
    If you don't have Malwarebytes 3 installed yet please download it from here and install it. Here

    Once installed then open Malwarebytes and check for updates. Then click on the Scan tab and select Threat Scan and click on Start Scan button.
    Once the scan is completed click on the Export Summary button and save the file as a Text file to your desktop or other location you can find, and attach that log on your next reply.

    ~~~~~~~~~~~~~~~~~~~~~~~

    Emsisoft Emergency Kit - Fix Mode
    Follow the instructions below to run a scan using the Emsisoft Emergency Kit.
    • Download the Emsisoft Emergency Kit and execute it. From there, click on the Install button to extract the program in the EEK folder;
    • Once the extraction is complete, the EEK folder will open. Right-click on [img=http://i.imgur.com/G0tu5D9.png]start emergency kit scanner.exe and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users);
    • EEK will suggest that you run an online update before using the program. Click on Yes to launch it.
    • After the update, click on Malware Scan under 2. Scan and accept to let EEK detect PUPs (click on Yes).
    • Once the scan is complete, make sure that every item in the list is checked, and click on the Quarantine selected button;
    • If it asks you for a reboot to delete some items, click on Ok to reboot automatically;
    • After the restart, open EEK again (in the C:\EEK folder);
    • This time, click on Logs;
    • From there, go under the Quarantine Log tab, and click on the Export button;
    • Save the log on your desktop, then open it, and copy/paste its content in your next reply;

    Please post these 2 logs when finished.

    Also, tell me how the computer is now.
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  2. #12
    Junior Member
    Join Date
    Jun 2019
    Posts
    11

    Default

    Hello!

  3. #13
    Security Expert-emeritus Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    4,084

    Default

    yes
    did you follow post 11?

    Did you allow the tools to remove/quarantine what it found?

    Let's check for remnants
    If you're already running Malwarebytes 3 then open Malwarebytes and check for updates. Then click on the Scan tab and select Threat Scan and click on Start Scan button.
    If you don't have Malwarebytes 3 installed yet please download it from here and install it. Here

    Once installed then open Malwarebytes and check for updates. Then click on the Scan tab and select Threat Scan and click on Start Scan button.
    Once the scan is completed click on the Export Summary button and save the file as a Text file to your desktop or other location you can find, and attach that log on your next reply.

    ~~~~~~~~~~~~~~~~~~~~~~~

    Emsisoft Emergency Kit - Fix Mode
    Follow the instructions below to run a scan using the Emsisoft Emergency Kit.
    • Download the Emsisoft Emergency Kit and execute it. From there, click on the Install button to extract the program in the EEK folder;
    • Once the extraction is complete, the EEK folder will open. Right-click on [img=http://i.imgur.com/G0tu5D9.png]start emergency kit scanner.exe and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users);
    • EEK will suggest that you run an online update before using the program. Click on Yes to launch it.
    • After the update, click on Malware Scan under 2. Scan and accept to let EEK detect PUPs (click on Yes).
    • Once the scan is complete, make sure that every item in the list is checked, and click on the Quarantine selected button;
    • If it asks you for a reboot to delete some items, click on Ok to reboot automatically;
    • After the restart, open EEK again (in the C:\EEK folder);
    • This time, click on Logs;
    • From there, go under the Quarantine Log tab, and click on the Export button;
    • Save the log on your desktop, then open it, and copy/paste its content in your next reply;

    Please post these 2 logs when finished.

    Also, tell me how the computer is now.
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  4. #14
    Junior Member
    Join Date
    Jun 2019
    Posts
    11

    Default

    Malwarebytes
    www.malwarebytes.com

    -Log Details-
    Scan Date: 6/19/19
    Scan Time: 4:13 PM
    Log File: 0cfe0068-92d7-11e9-8910-9cb6d0c187b0.json

    -Software Information-
    Version: 3.7.1.2839
    Components Version: 1.0.538
    Update Package Version: 1.0.11144
    License: Free

    -System Information-
    OS: Windows 10 (Build 17763.557)
    CPU: x64
    File System: NTFS
    User: DESKTOP-BLHSTOF\markt

    -Scan Summary-
    Scan Type: Threat Scan
    Scan Initiated By: Manual
    Result: Completed
    Objects Scanned: 286411
    Threats Detected: 0
    Threats Quarantined: 0
    Time Elapsed: 0 min, 55 sec

    -Scan Options-
    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Detect
    PUM: Detect

    -Scan Details-
    Process: 0
    (No malicious items detected)

    Module: 0
    (No malicious items detected)

    Registry Key: 0
    (No malicious items detected)

    Registry Value: 0
    (No malicious items detected)

    Registry Data: 0
    (No malicious items detected)

    Data Stream: 0
    (No malicious items detected)

    Folder: 0
    (No malicious items detected)

    File: 0
    (No malicious items detected)

    Physical Sector: 0
    (No malicious items detected)

    WMI: 0
    (No malicious items detected)


    (end)

    Emsisoft Anti-Malware - Version 2019.5
    Last update: 6/19/2019 4:24:00 PM
    Initiated by: DESKTOP-BLHSTOF\markt
    Computer name: DESKTOP-BLHSTOF
    OS version: Windows 10x64

    Scan settings:

    Scan type: Quick Scan
    Objects: Rootkits, Memory, Traces

    Detect PUPs: On
    Scan archives: Off
    Scan mail archives: Off
    ADS Scan: On
    File extension filter: Off
    Direct disk access: Off

    Scan start: 6/19/2019 4:24:32 PM

    Scanned 64135
    Found 0

    Scan end: 6/19/2019 4:24:42 PM
    Scan time: 0:00:10

  5. #15
    Security Expert-emeritus Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    4,084

    Default

    Thank you for the logs, if you allowed previous tools used to quarantine what it had found also you should be in better shape now.

    Whats happening to the computer at the moment.
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  6. #16
    Junior Member
    Join Date
    Jun 2019
    Posts
    11

    Cool

    its running great just dont know if its safe yet, lol, i have never had this happen before

  7. #17
    Security Expert-emeritus Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    4,084

    Default

    From the logs there were no signs of breech or specific infection on the computer which makes me tend to believe entry was gained through the web sites.
    Very often we see post of people complaining their accounts have been hacked into on Ebay and PayPal. Myself thinking the web sites were compromised, which so many are attacked each year where money is exchanged. Google Ebay hacked.
    If, fraudulent criminal activity has occurred, please contact PayPal so you might be reimbursed.

    I'm not sure if this can be considered a POS attack or not.
    Good articles to read over below.

    https://www.trendmicro.com/vinfo/pl/...f-recent-years

    someone got a hold of my bank account/routing number, added to their paypal and used it.
    https://www.zdnet.com/article/why-cr...a-big-problem/

    This is what Jesper M. Johansson, Security Program Manager at Microsoft TechNet has to say: Help: I Got Hacked. Now What Do I Do?.
    The only way to clean a compromised system is to reformat and rebuild. If you have a system that has been completely compromised, the only thing you can do is to reformat the system (reformat the system disk) and rebuild it from scratch (reinstall Windows and your applications).
    ~~~~~~~~~~~~~~~~~~~~~~`

    One thing we haven't run is a rootkit scan.

    Follow the instructions in the thread below to run a scan with MBAR. Don't forget to update the database before launching the scan, and once launched, leave MBAR running and do not touch your computer until it is done scanning.

    https://forums.malwarebytes.com/topi...-malwarebytes/

    Once MBAR is done scanning, removing threats and rebooting your computer, go in its MBAR folder, and copy/paste the content of the mbar-log-TODAYS-DATE.txt log in your next reply.
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  8. #18
    Junior Member
    Join Date
    Jun 2019
    Posts
    11

    Default

    thanks for everything you do!
    Attached Files Attached Files

  9. #19
    Security Expert-emeritus Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    4,084

    Default

    In the future I strongly suggest you stay away from using cracks and/or Keygens. Malware and virus authors love to spread their infections via cracks.
    Many of the keygens uploaded to p2p sites are done so by infected systems and are named in such a way to make them look like awsome downloads.
    Most victims don't even know they are sharing worms....
    Others are script kiddies uploading crapware because they think its funny.

    Crack sites are just as bad.
    Simply visiting the site out of curosity just to see if a "crack" is even available without downloading can get you infected because the sites themselves take advantage of exploitable software/OS to infect it.

    For more detailed instructions as to what you should do, please read:
    Identity Theft Victims Guide - What to do
    How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
    What Should I Do If I've Become A Victim Of Identity Theft?

    ~~~~~~~~~~~~~~~~
    I think we can remove tools and quarantine folders now.

    • Please download DelFix or from Here and save the file to your Desktop.
    • Double-click DelFix.exe to run the programme.
    • Place a checkmark next to the following items:
    • Activate UAC
    • Remove disinfection tools
    • Click the Run button.
    • -- This will remove the specialized tools we used to disinfect your system.
      Any leftover logs, files, folders or tools remaining on your Desktop which were not removed can be deleted manually (right-click the file + delete
      ).

    *************
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  10. #20
    Junior Member
    Join Date
    Jun 2019
    Posts
    11

    Default

    will do!!!! and thank you so very much for all the help!!!!!

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •