Overclock.net banner

Got hacked - Lost everything

2K views 45 replies 29 participants last post by  Mrzev 
#1 ·
Hey, guys,

Someone has been tampering with my computer (PC). Not only has my e-mail address' password been changed, but all the accounts linked to the e-mail have now had their password changed. Thus, I cannot long into Twitter or Facebook, but thank God my OCN account is safe
biggrin.gif
Along with the accounts, information such a debit cards and Paypal subscriptions have been (possibly) been accessed. Nobody in my house is spiteful enough to do such a things, and I have no real enemies in my personal life who know how to hack (at least to this degree). I've tried to recover my e-mail but unfortunately I don't remember my security question. I've also been failing the "test" that Microsoft performs when you can't remember your information. The reason why I know its a hacker is because of this simple event:

I was casually messaging my friend and suddenly, out of nowhere, the hacker types a message for me: "hacker here" from my account. At this point, I though my keyboard was haunted, I then regained my senses and realized that I was being hacked. While in the Skype chat, the hacker asked for another e-mail address in my name. After multiple threats, I eventually handed the hacker my other address and we both called it a day. Now, I have no social networking, no Paypal account and no e-mail address.

I would really like some advice as to what I should do at this point, and also what I can do to prevent this person (and anyone else) from doing this again. It may sound stupid but my entire life evolves around the internet and its websites and facilities; this is what I would call a "fatal blow".

Any help, whether useful or not, will be given +REP to.
 
See less See more
1
#3 ·
For facebook and twitter you can drop email to their support line.

If you have a stolen Blizzard account they can help you if you send a copy of your ID

call your bank to cancel any credit card linked to paypal.

and also contact hotmail and see if they can revert back to your old password. Maybe you can provide them details and an ID?

Good luck man.

Last but not least you can report the incident to police but I am doubtful they will be much of a help.

Hacking is a crime at the end of the day.
 
#7 ·
Quote:
Originally Posted by dekciW View Post

When you noticed he was in you should of pulled the lan at the back of the computer. Cant hack you without an internet connection...Unless your on wireless, you can turn off the wireless I guess...Every time I've had some malicious suspicions first thing I do is yank that plug as fast as possible.
This, after that scan from a bootable cd/dvd.
Or a clean install and restore from backup.
 
#9 ·
Change your OCN pass. If it gets hacked, you probably still have a keylogger or something.
Do a complete format to be safe and do a fresh install of OS. Then move on to getting back your accounts.
 
#10 ·
Quote:
Originally Posted by nicedart View Post

I'd be sure to contact all of your credit card, banks, paypal w/e that you may have accessed with your PC. Change everything. Social media hacking is an annoyance, financial hacking is damaging.
Especially with credit cards they are a huge risk also things like paypal that only need a password which is easily keylogged.
I don't really concur on the social media part cause it can be just as damaging especially if you have someone messing around. (boss, contacts, advisor's, family, friends)
 
#11 ·
At this point i'd bait them into doing it again while having some monitoring software running on your network to get their IP and report it to the authorities.

My moms BF had his credit card # stolen and the idiot was dumb enough to order something on newegg and have it shipped to that guys house.
 
#13 ·
Quote:
Originally Posted by lurker2501 View Post

Because operating under your real IP is the most logical and smart thing to do...
Well I don't think you're dealing with a smart person here as he used his access to get keyboard access and alert the person being hacked.
Best thing is to block everything and keep it safe before going after something like this just contact local police which in their turn will tell you they can't do anything for you.
 
#14 ·
At the very least I would fully wipe ASAP, if the hacker got this far, who knows what kind of keyloggers or remote access programs could be hidden away on your system somewhere. Probably nothing as that would certainly require physical access to the system but better safe than sorry. Otherwise even getting all your passwords changed or reverted wouldn't help things. This has happened to a friend of mine, where someone he considered a friend put a keylogger on his system and stole boatloads from him.
 
#15 ·
Quote:
Originally Posted by RatPatrol01 View Post

At the very least I would fully wipe ASAP, if the hacker got this far, who knows what kind of keyloggers or remote access programs could be hidden away on your system somewhere. Probably nothing as that would certainly require physical access to the system but better safe than sorry. Otherwise even getting all your passwords changed or reverted wouldn't help things. This has happened to a friend of mine, where someone he considered a friend put a keylogger on his system and stole boatloads from him.
Chances are, the perpetrator is someone OP knows. He should definitely 'nuke and pave' that box.
 
#17 ·
Same thing happened to a friend on april 1st 2011. He thought I did it at first, seeing as I was the only tech sort of guy in the house. We never found out who did it, but they essentially stole everything he ever logged into with his mac. He called the bank right away and put a hold on his account, called the credit card company to report stolen card just in case and they froze his account. Also had to contact the university to let them know and reset the password.

He essentially had to build his internet life all over again, facebook, email, linkedin,etc. Yeah it was super annoying, but as long as you stop them from robbing you more financially everything else could be rebuilt. I'd recommend you as others have said, zero fill any HDD you have. I'd even go as far as to install some sort of key logger preferably one that'll take screen shots randomly and email them to a set address.

I just don't understand why anyone would do this to a broke english major student...not much to gain really.

Best of luck to you!
 
#18 ·
Skype?

Probably obtained your IP address through it and did some nasty stuff there on out.

Wanna be careful who you add on that. It's likely someone who you know, or have spoken to at some point.
Quote:
Originally Posted by Sylon View Post

I just don't understand why anyone would do this to a broke english major student...not much to gain really.

Best of luck to you!
There's usually no reason, just a quick ego boost on their part to make them feel better. Often quite insecure people otherwise. Assuming of course, the OP doesn't notice any changes in their bank/paypal balance.
 
#19 ·
Quote:
Originally Posted by maarten12100 View Post

Well I don't think you're dealing with a smart person here as he used his access to get keyboard access and alert the person being hacked.
Best thing is to block everything and keep it safe before going after something like this just contact local police which in their turn will tell you they can't do anything for you.
If he got everything on that PC, he's not dumb
biggrin.gif

That actually is to show off or also he knew OP couldn't do anything about it.
Can't only be keyboard access, he could've just logged on to his account at the same time and sent messages.
If he can access keyboard it's probably some trojan and entire computer is compromised which it seems like since OP lost almost everything.

Also something also possible right now can be that he's still receiving the screenshots from OP's pc and reading our responses
biggrin.gif


And Skype security isn't good, anyone can get your account if they just know the names of about 4-5 people(friends) on your skype friendlist.

Good luck and keep us posted.
 
#20 ·
I hesitate to say "hacked", because with Skype, and many other messenger programs (including facebook), you can log in from more than one place, and send messages from both of them.

Most likely a case of a keylogger, which, as much as I am sure you will never want to hear it, is 100% your own fault. Even if it is unwillingly, chances are better than good that you picked it up somewhere on the net.

Take a look at some of the shadier things you might have downloaded in the last few weeks.

If this is the case, no amount of pulling the lan cable from your PC will fix anything... as this person is simply logged in elsewhere. You don't need to be online at all.
 
#21 ·
Quote:
Originally Posted by Masta Squidge View Post

I hesitate to say "hacked", because with Skype, and many other messenger programs (including facebook), you can log in from more than one place, and send messages from both of them.

Most likely a case of a keylogger, which, as much as I am sure you will never want to hear it, is 100% your own fault. Even if it is unwillingly, chances are better than good that you picked it up somewhere on the net.

Take a look at some of the shadier things you might have downloaded in the last few weeks.

If this is the case, no amount of pulling the lan cable from your PC will fix anything... as this person is simply logged in elsewhere. You don't need to be online at all.
I don't know if I agree with that. If the hacker is remote-desktopping into his machine somehow, and hoping to get passwords from saved forms and what-not (which I'm sure is how some hacking is done), unplugging the LAN cable/turning off WIFI will sever the link. He DOES need to be online, as remote desktop and these remote-access programs only work through an internet connection. Shoot, he doesn't even have to unplug his computer as much as just turn the darn thing off.

In any case, are all your passwords saved in your browser so you automatically log in? Or, saved in a text document on your desktop? All I'm saying is, consider your points of vulnerability. If there are saved browser passwords, then unplug and isolate your machine, reset and reinstall your browser or the whole of Windows itself. If you have a password text doc on your desktop, move it to a thumbdrive.

You can make it through this fine if you're careful. Also, as suggested, give PayPal and your bank/banks a phone call. They are more than understanding, and can help you get straightened out.

I'll keep my fingers crossed for you. This kind of thing can be very damaging, I hope it was only social media that they were able to get. I know that my bank, if I log in from an unknown source, it asks for verification via registered phone number.

-Donny
 
#22 ·
He has done nothing to indicate that this person is doing anything of the sort. Everything he has listed allows multiple logins.

Actual "hacking" as you describe is very rare, and nearly never worth the time or effort for any random schlub internet user.

As you said, passwords get saved on chrome, and if you upload them all to google's cloud service... All the guy had to do was 'kee-rog" your gmail password, and voila... access to literally every single website you ever saved a password for.

The chances anyone is doing this the hardware are slim to none. I am telling you, nobody does this remote-desktop sort of thing. It just doesn't happen, because it is a massive waste of time.

Again, all this person needs is a keylogger, and poof, access to anything he has programmed said keylogger for.

Will it stop him from getting NEW passwords if you disconnect? Yes. But that will also stop you from changing them in the first place. You need to be positive the machine is clean before changing anything, or you re wasting time.

Best chance is to change them from another location, like a cell phone if you can.
 
#23 ·
If you are using google's services to save password and autofill data, you simply MUST use the sync passphrase... at minimum. It is in the advanced sync options.

You need to use this every time you attempt to sync data from google. If you only ever use it when reinstalling windows, then you know the system will be clean... and you only used it once. Just be sure to keep that somewhere secure. I personally keep a list of important stuff in my fireproof safe, with that information on it.
 
#25 ·
Take the system offline and scan it with avast boot scanner and malwarebytes anti-malware to start with. Depending on the results of that, let's assume it's successful in removing the infection, then you should change your passwords. No point trying to do that now since if its a RAT it'll have keylogging enabled most likely
 
This is an older thread, you may not receive a response, and could be reviving an old thread. Please consider creating a new thread.
Top