Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Malware Analysis
Suspicious activity. How to find it?
Message
<blockquote data-quote="Parsh" data-source="post: 863202" data-attributes="member: 58090"><p>There's no easy way to know how your email fell in hands off someone unwanted, if that's really the case.</p><p>For the sake of understanding, you can search for terms like keylogger, adware, PUP, viruses... <a href="https://blog.emsisoft.com/en/4176/dictionary-computer-security/" target="_blank">here</a>.</p><p></p><p>You should double-check the time of login that is mentioned inside the login alert mail.. if that matches your login/activity time. The mails do sometimes come later than the activity.</p><p></p><p>You can use Bitdefender SafePay or Kaspersky SafeMoney to login to avoid fear of keyloggers. Since you formatted Windows multiple times and apparently the scanners are not detecting any keyloggers, you need to relax.</p><p>You changed your password. You have 2FA enabled. That is enough. No one can steal your 2FA unless you hand it over to them somehow. And if someone can bypass that 2FA mechanism, not only you, but other users are also prey.</p><p></p><p>Ransomware are software that lock out your files by encrypting them. You cannot read those locked out files unless you pay a ransom amount to the hacker. And it's not guaranteed that you'll get your files back. Again, that's not your case, is it?!</p><p>The ones you stated till now are not malware.</p><p>When you enable sync, the old PUPs and adware will come over, probably. You know, in worst case, you can again remove them and disable sync.</p><p>There are 3 options</p><ol> <li data-xf-list-type="ol"><em>either</em> Sync, remove those PUPs using scanners, then <a href="https://support.google.com/chrome/answer/2765944" target="_blank">reset browser</a> (steps I described in my previous post)</li> <li data-xf-list-type="ol"><em>or</em> simply use another Google account</li> <li data-xf-list-type="ol"><em>or</em> switch browser</li> </ol><p>And make sure that</p><ul> <li data-xf-list-type="ul">you do not visit shady sites that force these PUPs onto your machine</li> <li data-xf-list-type="ul">do not allow their installation if asked (most modern browsers alert about such installation attempts/requests)</li> <li data-xf-list-type="ul">block ads using extensions I suggested in 1st post</li> <li data-xf-list-type="ul">make sure to perform 'custom' installation instead of 'default' mode when installing apps. Un-check any extras offered during installation. That's the usual cluprit</li> <li data-xf-list-type="ul">download apps and browsers from <a href="https://www.google.com/chrome/?brand=CHBD&gclid=CjwKCAiA-vLyBRBWEiwAzOkGVBQ64oudL82is4ri-c3UdS-EUhQUMzRU8klUsCSa8WXIoZBEMVwSnRoC9c0QAvD_BwE&gclsrc=aw.ds" target="_blank">official site</a> only and extensions too from <a href="https://chrome.google.com/webstore/category/extensions?h1=en" target="_blank">official site</a></li> </ul><p></p><p>Resetting the browser should also remedy. Google have suggested this against recurring adware and PUPs.</p><p>[USER=86239]@Zecha[/USER] as [USER=72712]@Moonhorse[/USER] suggests, you can switch to another browser and export your bookmarks from Chrome to the other browser, if that's fine with you.</p><p></p><p>EDIT: You can go to <a href="https://myaccount.google.com" target="_blank">Sign in - Google Accounts</a> and checkout he 'Security Issues found' card.</p><p>This is to check and further secure your account. You can do <a href="https://www.wikihow.com/Find-Out-Who-Hacked-Your-Yahoo-Email" target="_blank">something similar</a> for Yahoo as well.</p><p>[SPOILER="Security checkup"]</p><p>[ATTACH=full]234182[/ATTACH]</p><p>[/SPOILER]</p></blockquote><p></p>
[QUOTE="Parsh, post: 863202, member: 58090"] There's no easy way to know how your email fell in hands off someone unwanted, if that's really the case. For the sake of understanding, you can search for terms like keylogger, adware, PUP, viruses... [URL='https://blog.emsisoft.com/en/4176/dictionary-computer-security/']here[/URL]. You should double-check the time of login that is mentioned inside the login alert mail.. if that matches your login/activity time. The mails do sometimes come later than the activity. You can use Bitdefender SafePay or Kaspersky SafeMoney to login to avoid fear of keyloggers. Since you formatted Windows multiple times and apparently the scanners are not detecting any keyloggers, you need to relax. You changed your password. You have 2FA enabled. That is enough. No one can steal your 2FA unless you hand it over to them somehow. And if someone can bypass that 2FA mechanism, not only you, but other users are also prey. Ransomware are software that lock out your files by encrypting them. You cannot read those locked out files unless you pay a ransom amount to the hacker. And it's not guaranteed that you'll get your files back. Again, that's not your case, is it?! The ones you stated till now are not malware. When you enable sync, the old PUPs and adware will come over, probably. You know, in worst case, you can again remove them and disable sync. There are 3 options [LIST=1] [*][I]either[/I] Sync, remove those PUPs using scanners, then [URL='https://support.google.com/chrome/answer/2765944']reset browser[/URL] (steps I described in my previous post) [*][I]or[/I] simply use another Google account [*][I]or[/I] switch browser [/LIST] And make sure that [LIST] [*]you do not visit shady sites that force these PUPs onto your machine [*]do not allow their installation if asked (most modern browsers alert about such installation attempts/requests) [*]block ads using extensions I suggested in 1st post [*]make sure to perform 'custom' installation instead of 'default' mode when installing apps. Un-check any extras offered during installation. That's the usual cluprit [*]download apps and browsers from [URL='https://www.google.com/chrome/?brand=CHBD&gclid=CjwKCAiA-vLyBRBWEiwAzOkGVBQ64oudL82is4ri-c3UdS-EUhQUMzRU8klUsCSa8WXIoZBEMVwSnRoC9c0QAvD_BwE&gclsrc=aw.ds']official site[/URL] only and extensions too from [URL='https://chrome.google.com/webstore/category/extensions?h1=en']official site[/URL] [/LIST] Resetting the browser should also remedy. Google have suggested this against recurring adware and PUPs. [USER=86239]@Zecha[/USER] as [USER=72712]@Moonhorse[/USER] suggests, you can switch to another browser and export your bookmarks from Chrome to the other browser, if that's fine with you. EDIT: You can go to [URL='https://myaccount.google.com']Sign in - Google Accounts[/URL] and checkout he 'Security Issues found' card. This is to check and further secure your account. You can do [URL='https://www.wikihow.com/Find-Out-Who-Hacked-Your-Yahoo-Email']something similar[/URL] for Yahoo as well. [SPOILER="Security checkup"] [ATTACH type="full" alt="Screenshot (1556).png"]234182[/ATTACH] [/SPOILER] [/QUOTE]
Insert quotes…
Verification
Post reply
Top