Results 1 to 6 of 6

Thread: How would I know if my laptop has been hacked?

  1. #1
    Featured Member Girly_Girl's Avatar
    Joined
    Jun 2015
    Posts
    1,276
    Thanks
    2,649
    Thanked 684 Times in 366 Posts
    My Mood
    Flirty

    Default How would I know if my laptop has been hacked?

    I received an email from my internet company while I was working ( I will post below a copy of the email)


    Also I hate to even admit this but I am guilty of letting my anti virus expire ( I know, very stupid on my part) but I have went thru all my computers except for my daughters because she is at work. I uninstalled the old virus protection and added a new virus protection and then did a scan on all computers. Webroot didn't find anything but before I uninstalled my old virus protection, I found out my firewall was turned off??? Why would the firewall be off? I uninstalled the old virus protection from all pcs and then installed webroot and did a scan on all of them but it didn't find anything. Also I went to spectrum.com/security and installed the anti bot scanner like they recommended in the email. On the computer that I'd found the firewall turned off, it found 6 different files that they asked if I wanted to be sent to them to be checked, so I did. I will post a screenshot below of that. In the email it mentions that I could lose my internet and when I called them they said if it keeps happening that I could lose my internet for a year!! I can't lose my internet cause then I couldn't work! Would resetting windows get rid of any virus or malware? What do I need to do next? I am not even sure of webroot did a complete scan or not either cause it only took 2 minutes.


    Also when I called they told me that it happened on 4-25-19, 5-21-19 and 5-28-19 and one other time in 2017. I've been hacked once before thru skype a few years ago, how could I tell if I've been hacked again? I will post the email below

    Name:  Screenshot 2019-06-02 14.17.57.png
Views: 332
Size:  66.1 KB

  2. #2
    Featured Member Girly_Girl's Avatar
    Joined
    Jun 2015
    Posts
    1,276
    Thanks
    2,649
    Thanked 684 Times in 366 Posts
    My Mood
    Flirty

    Default Re: How would I know if my laptop has been hacked?

    Here is the email from spectrum:


    Dear Spectrum Internet Customer,

    Charter Communications has been notified of a potential security related issue with your internet service.

    Issue Description - A device using your network may be infected with malware. Malware is malicious software that is often disguised as a legitimate program or file. It can be in the form of a Virus, Trojan, Worm, or Botnet infection as well as a range of other malware varieties. The infected device could be any laptop, desktop, tablet, mobile smart phone, or gaming console connected to your network.

    We are asking that you take immediate action to remediate this issue.

    Remediation Recommendations

    Update all firewall and antivirus software.
    Run a full system scan on each device used on your Charter Internet connection.
    Use a tool such as the Charter AntiBot Scanner in conjunction with your anti-virus software to locate and remove any possible advanced malware.
    The Charter AntiBot Scanner can be located at Spectrum.net/security
    Update all plug-ins on your browsers and web applications.
    Consider taking your computer to a computer repair professional.
    The final step in remediating a botnet or malware infection is to change passwords to important login credentials such as email accounts, online banking and other financial sites AFTER the machine has been ful ly cleaned of the infection.
    Please be advised that Charter?s Acceptable Use Policies explicitly prohibit actions, whether intentional or unintentional, that disrupt Charter?s network. These policies are available on https://www.spectrum.net/page/terms-...vice-policies/ for your convenience.

    Repeated events and/or complaints pertaining to this network abuse issue may result in an interruption of your service.

    If you have any questions, please contact us at 855-222-7342, Monday through Friday, 6AM-11PM US Mountain MST time, or Saturday and Sunday, 6AM-11PM US Mountain MST time and a member of our team would be more than happy to assist you.

    Thank you for choosing Spectrum!

    CSOC Customer Security Operations Center

    2018 Charter Communications, Inc.

    --- The following material was provided to us as evidence --- An IP address (*5.***.22.1*9) under your control appears to have attacked o= ne of our customers as part of a coordinated DDoS botnet. We manually revie= wed the captures from this attack and do not believe that your IP address w= as spoofed, based on the limited number of distinct hosts attacking us, the= identicality of many attacking IP addresses to ones we've seen in the past= , and the non-random distribution of IP addresses.=20 =20=20 It is possible that this host is one of the following, from the responses t= hat others have sent us: - A compromised webhost, such as one running a vulnerable version of Drupal= (for instance, using the vulnerability discussed at https://groups.drupal.= org/security/faq-2018-002), WordPress, phpMyAdmin, or zPanel - A compromised DVR, such as a "Hikvision" brand device (ref: http://www.co= resecurity.com/advisories/hikvision-ip-cameras-multiple-vulnerabilities) - A compromised IPMI device, such as one made by Supermicro (possibly becau= se it uses the default U/P of ADMIN/ADMIN or because its password was found= through an exploit described at http://arstechnica.com/security/2014/06/at= -least-32000-servers-broadcast-admin-passwords-in-the-clear-advisory-warns/) - A compromised router, such as one made by China Telecom which still allow= s a default admin username and password; one by Netis, with its built-in in= ternet-accessible backdoor (http://blog.trendmicro.com/trendlabs-security-i= ntelligence/netis-routers-leave-wide-open-backdoor/); or one running an old= AirOS version with its exposed administrative interface - A compromised Xerox-branded device - Some other compromised standalone device - A compromised client, such as one running a vulnerable web browser suscep= tible to a Java exploit - A server with an insecure password that was brute-forced, such as through= SSH or RDP From your side, you would be able to observe this attack as a burst of traf= fic that likely saturated the network adapter of the source device for appr= oximately one to five minutes. This is example traffic from the IP address, as interpreted by the "tcpdump= " utility and captured by our router during the attack. Source and destinat= ion IP addresses, protocols, and ports are included. Date/timestamps (at the very left) are UTC. 2019-05-28 03:55:33.080297 IP (tos 0x0, ttl 53, id 35204, offset 0, flags [= DF], proto UDP (17), length 127 75.138.22.179.45655 > 192.223.26.x.14597: UDP, length 1250 0x0000: 4500 04fe 8984 4000 3511 795d 4b8a 16b3 [email protected]]K... 0x0010: c0df 1af1 b257 3905 04ea 6b82 4920 4675 .....W9...k.I.Fu 0x0020: 434b 694e 6720 4c6f 5665 2042 6947 2046 CKiNg.LoVe.BiG.F 0x0030: 6154 2042 6f61 0841 7453 204e 756d 6d6d aT.Boa.AtS.Nummm 0x0040: 6d42 6847 7900 0000 4e65 5469 5320 4973 mBhGy...NeTiS.Is 0x0050: 2041 .A 2019-05-28 03:55:33.127323 IP (tos 0x0, ttl 53, id 35209, offset 0, flags [= DF], proto UDP (17), length 127 75.138.22.179.45655 > 192.223.26.x.14597: UDP, length 1250 0x0000: 4500 04fe 8989 4000 3511 7958 4b8a 16b3 [email protected] 0x0010: c0df 1af1 b257 3905 04ea b17c 5673 4520 .....W9....|VsE. 0x0020: 4f6e 2055 5220 4675 436b 4b4b 6b4b 6b4b On.UR.FuCkKKkKkK 0x0030: 694e 4e4e 4720 466f 5265 4168 4541 4420 iNNNG.FoReAhEAD. 0x0040: 4f4f 4f6f 6f50 7320 4920 5370 654c 6c45 OOOooPs.I.SpeLlE 0x0050: 6420 d. 2019-05-28 03:55:33.436532 IP (tos 0x0, ttl 53, id 35240, offset 0, flags [= DF], proto UDP (17), length 127 75.138.22.179.45655 > 192.223.26.x.14597: UDP, length 1250 0x0000: 4500 04fe 89a8 4000 3511 7939 4b8a 16b3 [email protected] 0x0010: c0df 1af1 b257 3905 04ea 71d2 4869 2054 .....W9...q.Hi.T 0x0020: 6a6f 6973 2069 7320 756e 666f 7274 6e75 jois.is.unfortnu 0x0030: 6174 656e 2066 7563 6b20 6920 6963 616e aten.fuck.i.ican 0x0040: 7420 7370 656c 6c20 2c20 7468 6174 7320 t.spell.,.thats. 0x0050: 7768 wh 2019-05-28 03:55:33.545722 IP (tos 0x0, ttl 53, id 35251, offset 0, flags [= DF], proto UDP (17), length 127 75.138.22.179.45655 > 192.223.26.x.14597: UDP, length 1250 0x0000: 4500 04fe 89b3 4000 3511 792e 4b8a 16b3 [email protected] 0x0010: c0df 1af1 b257 3905 04ea 5ad1 4144 4420 .....W9...Z.ADD. 0x0020: 4d45 204f 4e20 4449 5343 4f52 4420 4073 [email protected] 0x0030: 656c 6672 6570 6e65 7469 7323 3639 3133 elfrepnetis#6913 0x0040: 0000 0000 5975 6d20 696e 7374 616c 6c20 ....Yum.install. 0x0050: 6e69 ni 2019-05-28 03:55:33.703036 IP (tos 0x0, ttl 53, id 35267, offset 0, flags [= DF], proto UDP (17), length 127 75.138.22.179.45655 > 192.223.26.x.14597: UDP, length 1250 0x0000: 4500 04fe 89c3 4000 3511 791e 4b8a 16b3 [email protected] 0x0010: c0df 1af1 b257 3905 04ea 5ad1 4144 4420 .....W9...Z.ADD. 0x0020: 4d45 204f 4e20 4449 5343 4f52 4420 4073 [email protected] 0x0030: 656c 6672 6570 6e65 7469 7323 3639 3133 elfrepnetis#6913 0x0040: 0000 0000 5975 6d20 696e 7374 616c 6c20 ....Yum.install. 0x0050: 6e69 ni (The final octet of our customer's IP address is masked in the above output= because some automatic parsers become confused when multiple IP addresses = are included. The value of that octet is "241".) Based on the size, number of samples, and timestamps of received packets fr= om your host in our capture, we estimate that your host was sending at leas= t 35.8 Mbps of attack traffic at the peak of this coordinated attack. The p= eak of the attack may have lasted only a few seconds. -John President NFOservers.com (We're sending out so many of these notices, and seeing so many auto-respon= ses, that we can't go through this email inbox effectively. If you have fol= low-up questions, please contact us at [email protected].)

  3. #3
    Member QueenMary's Avatar
    Joined
    Jul 2014
    Posts
    72
    Thanks
    246
    Thanked 113 Times in 53 Posts
    My Mood
    Amazed

    Default Re: How would I know if my laptop has been hacked?

    Download Bitdefender and MalwareBytes. Uninstall any other antivirus or malware detection software and install Bitdefender and Malwarebytes and have them both scan your computer. They're both very reliable, even the free versions.
    If you do have malware installed it may not let you install or uninstall antivirus software so you would have to boot your laptop in Safe Mode.

  4. The Following 4 Users Say Thank You to QueenMary For This Useful Post:


  5. #4
    God/dess whirlerz's Avatar
    Joined
    May 2004
    Location
    Midwest
    Posts
    27,134
    Thanks
    55,898
    Thanked 26,027 Times in 13,270 Posts
    Blog Entries
    1
    My Mood
    Aggressive

    Arrow Re: How would I know if my laptop has been hacked?

    This's 1 reason I use a VPN, love it actually..

    Express VPN, you can use any location, 12.00 a month or cheaper if you pay for the year.
    There's free ones, but I like that co.
    Stellar customer service 24/7

    Then there's the computer protectors, I use free Avast.
    Edit also, C Cleaner, free version.

    Good luck


    MANY MEN WANTED TO LAY ME DOWN, BUT FEW WANTED TO LIFT ME UP

    -Eartha Kitt

  6. The Following 2 Users Say Thank You to whirlerz For This Useful Post:


  7. #5
    Veteran Member SweetSouthernElle's Avatar
    Joined
    Apr 2019
    Location
    AL
    Posts
    204
    Thanks
    95
    Thanked 277 Times in 137 Posts

    Default Re: How would I know if my laptop has been hacked?

    Opera browser is fast as fuck and they have free VPN n built in to it

  8. The Following 3 Users Say Thank You to SweetSouthernElle For This Useful Post:


  9. #6
    Featured Member Girly_Girl's Avatar
    Joined
    Jun 2015
    Posts
    1,276
    Thanks
    2,649
    Thanked 684 Times in 366 Posts
    My Mood
    Flirty

    Default Re: How would I know if my laptop has been hacked?

    Quote Originally Posted by SweetSouthernElle View Post
    Opera browser is fast as fuck and they have free VPN n built in to it
    Quote Originally Posted by whirlerz View Post
    This's 1 reason I use a VPN, love it actually..

    Express VPN, you can use any location, 12.00 a month or cheaper if you pay for the year.
    There's free ones, but I like that co.
    Stellar customer service 24/7

    Then there's the computer protectors, I use free Avast.
    Edit also, C Cleaner, free version.

    Good luck
    What does vpn's do exactly? I've never used one but wouldn't the vpn hide my ip address and prevent them from stealing it and using it again? I was thinking that we couldnt use a vpn with sm and some sites tho too?

    When I called my internet co, they said I could lose my internet for a year if it keeps happening then I really would be fucked

    Also I ended up running the scans and it found 39 issues so I just reset my whole laptop and then ran the scans again just to be sure....I learned my lesson for sure tho
    Last edited by Girly_Girl; 06-04-2019 at 06:40 PM.

  10. The Following User Says Thank You to Girly_Girl For This Useful Post:


Similar Threads

  1. Has your chaturbate room ever been hacked?? Need help...
    By lll99 in forum Camming Connection
    Replies: 2
    Last Post: 06-23-2016, 02:20 PM
  2. Help please been hacked
    By bootiebabe in forum Camming Connection
    Replies: 3
    Last Post: 08-27-2013, 05:22 PM
  3. such rotten luck, laptop broke any laptop savy ppl here?
    By melissahornygirl in forum Camming Connection
    Replies: 7
    Last Post: 04-01-2012, 08:47 PM
  4. Help my website has been hacked
    By naughtycamgirl in forum Camming Connection
    Replies: 15
    Last Post: 11-01-2011, 08:24 AM
  5. Amazon.com has been hacked!
    By So Fine Divyne in forum The Lounge
    Replies: 8
    Last Post: 04-04-2011, 03:33 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •