Troubleshoot someone remoted in without allowing them access

Rozesky2

Rozesky2

Level 3
Thread author
Verified
Oct 12, 2014
221
my friend was using her browser when a page popped up on her screen saying that she had a virus, and to call a number. She did call the number and of course they said she had a bad virus and wanted money. She said no but then they took over her computer and used the mouse. They Told her what her passwords were for places. She hung up on them BUT how did they get into her computer? She did no allow access



I am going to run a recovery on her computer. Are they getting into her computer through the adobe flash hack? Is running a recovery the best way to fix this problem? This is actually the 2nd friend this happened too. The hackers were in her computer without her allow remote access. I find this very scary.



Please advise me what to do to fix this and how to stop this from happening a gain if I can
 
  • Like
Reactions: Amelith Nargothrond and shmu26
Sort by date Sort by votes
Amelith Nargothrond

Amelith Nargothrond

Level 12
Verified
Top Poster
Well-known
Mar 22, 2017
587
If you have no earlier image backups, i suggest to format the system partition and reinstall windows, although you could also try to run an on-demand scanner in safe mode, but i wouldn't feel safe with the latter.
 
  • Like
Reactions: shmu26
Upvote 0
Rozesky2

Rozesky2

Level 3
Thread author
Verified
Oct 12, 2014
221
Amelith Nargothrond said:
If you have no earlier image backups, i suggest to format the system partition and reinstall windows, although you could also try to run an on-demand scanner in safe mode, but i wouldn't feel safe with the latter.
Click to expand...
Yes a reinstall is what I am going to do.
I wonder if this happened because of the adobe flash problem?? how does a hacker get into a computer remotely without someone giving them access
 
  • Like
Reactions: shmu26
Upvote 0
Amelith Nargothrond

Amelith Nargothrond

Level 12
Verified
Top Poster
Well-known
Mar 22, 2017
587
Rozesky2 said:
Yes a reinstall is what I am going to do.
I wonder if this happened because of the adobe flash problem?? how does a hacker get into a computer remotely without someone giving them access
Click to expand...

Exactly how they did it (the method) i could not know. But i'm guessing they exploited some flash (if it was flash) vulnerability you had (they got lucky somehow, or they have some new exploits) and detonated a payload. The payload is what they used to remotely connect (if this is what they did). I can look for some vulnerabilities if you want too.
 
  • Like
Reactions: shmu26 and sunshineboy
Upvote 0
shmu26

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
There are plenty of ways for hackers to get into a computer. It's hard to know on someone else's computer what the reason was, we can't know what they did wrong.

A reinstall is the right way to deal with it.

In order to prevent it from happening again, the very first step is to keep the operating system and software updated.
The second step is to teach the user proper computer habits.
The third step is to install proper security software, and educate the user not to ignore warnings from their security software.

If they are click-happy, then you have to put them in a lockdown setup, for instance, Voodooshield on automatic pilot, or Comodo firewall with autosandbox enabled, or Avast hardened mode/aggressive + disabling the wscript files.

And don't use Windows XP. It is too hard to make it secure. Windows 10 is the most secure Windows operating system, so if you have a choice, show a preference for Win 10.
 
  • Like
Reactions: sunshineboy and Amelith Nargothrond
Upvote 0
Rozesky2

Rozesky2

Level 3
Thread author
Verified
Oct 12, 2014
221
Amelith Nargothrond said:
Off topic:
@shmu26 , are we allowed to post here (malware removal assistance)? last time i think i was not allowed (when i joined MT). 10x
Click to expand...
Well I really wasnt looking for malware removal , just how to the computer was remoted into, I am doing a reformat to take care of the issue.
I was just really bothered by the fact my friends computer was taken over and she did not allow remote access. They even told her passwords for accounts. I was hoping to find out if they happened because of the adobe flash vulnerability?
 
  • Like
Reactions: shmu26
Upvote 0
Rozesky2

Rozesky2

Level 3
Thread author
Verified
Oct 12, 2014
221
shmu26 said:
There are plenty of ways for hackers to get into a computer. It's hard to know on someone else's computer what the reason was, we can't know what they did wrong.

A reinstall is the right way to deal with it.

In order to prevent it from happening again, the very first step is to keep the operating system and software updated.
The second step is to teach the user proper computer habits.
The third step is to install proper security software, and educate the user not to ignore warnings from their security software.

If they are click-happy, then you have to put them in a lockdown setup, for instance, Voodooshield on automatic pilot, or Comodo firewall with autosandbox enabled, or Avast hardened mode/aggressive + disabling the wscript files.

And don't use Windows XP. It is too hard to make it secure. Windows 10 is the most secure Windows operating system, so if you have a choice, show a preference for Windows 10.
Click to expand...
shmu26 said:
There are plenty of ways for hackers to get into a computer. It's hard to know on someone else's computer what the reason was, we can't know what they did wrong.

A reinstall is the right way to deal with it.

In order to prevent it from happening again, the very first step is to keep the operating system and software updated.
The second step is to teach the user proper computer habits.
The third step is to install proper security software, and educate the user not to ignore warnings from their security software.

If they are click-happy, then you have to put them in a lockdown setup, for instance, Voodooshield on automatic pilot, or Comodo firewall with autosandbox enabled, or Avast hardened mode/aggressive + disabling the wscript files.

And don't use Windows XP. It is too hard to make it secure. Windows 10 is the most secure Windows operating system, so if you have a choice, show a preference for Windows 10.
Click to expand...
Thank you after the reinstall I will make sure everything is up to date
 
  • Like
Reactions: Amelith Nargothrond and shmu26
Upvote 0

Similar threads

cartaphilus
    • HaHa
    • Wow
What honest mistake have you made in your relationship?
Replies
1
Views
444
Member Chat
billink
billink
H
    • Wow
    • Like
    • Sad
Victim loses over $20k from credit card and bank accounts after downloading third-party app
Replies
6
Views
1,434
News Archive
Digmor Crusher
Digmor Crusher
Gandalf_The_Grey
    • Like
    • Applause
Technology A quick look back at the launch of Google's Gmail that happened 20 years ago today (no joke)
Replies
0
Views
311
Technology News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top