PC Troubles

[securespark]

Recently been hacked.

Amazon & ebay accounts. They took full responsibility and the bank coughed.

Now my email has been hijacked. I need to change my mailbox password. We have Plusnet, but I use my old domain-based addys. I can't get hold of Plusnet and I can't remember how to do this.

Just now, I clicked on a link I have in my Opera browser to Argos:

And it takes ages to respond. Then up pops this in the address bar- www.tkqlhce.com
Which is blocked by Opera. Looks like a hijacked link.

I have been ****-hot with security since this hijacked accounts malarkey: I make sure the Bitdefender is regularly updated and use the full versions of C Cleaner, Malware Bytes and Super Anti Spyware, but they have not pulled anything suspicious.

Where do I go from here?

 

[footprints]

Worth a look here perhaps?
https://community.plus.net/t5/Forum/ct-p/Forum

 

[securespark]

Thank you. I'll look at that now.

I forgot to mention that the scans have highlighted a large number of password-protected files on my drives, but I have never created any.

Is that sinister?

 

[footprints]

Worth downloading malwarebytes, use the free version (just on demand scan)then it will not clash with whatever security you normally run.
https://www.malwarebytes.com/

 

[chalkywhite]

Thank you. I'll look at that now.

I forgot to mention that the scans have highlighted a large number of password-protected files on my drives, but I have never created any.

Is that sinister?

That's ransomware at work. They are encrypted, which requires a password from the hacker to unlock. Best to revert to backup of the data and delete the encrypted files

 

[securespark]

Yikes, thanks, chalky.

How do you stop this happening?

Footprints, I am already using Malware Bytes (and C Cleaner and Super Anti Spyware: all paid for versions) and they never flag anything suspicious.

 

[pete50]

Best to do a full reinstall. You will never get rid of all the junk that viri, malware and other scammers put on your computer. If you don't how learn. Plenty on how to do it on the web.

 

[EddieM]

Try this

 

[securespark]

Best to do a full reinstall.

I have considered that.

But how would you stop snoopers and hackers from doing it again?

 

[Nozzle]

Don't click on links that have been helpfully provided to you in a dodgy email.

Nozzle

 

[mattylad]

Best to do a full reinstall. You will never get rid of all the junk that viri, malware and other scammers put on your computer. If you don't how learn. Plenty on how to do it on the web.

Not quite.
Do not just do a reinstall.
You need to remove the files from your drive, just reinstalling will leave them there.

Wiping the drive before a reinstall is what ought to return this to a usable condition, however beware that some may even hide a payload in areas that even a format cannot remove.

 

[empip]

Win10 has some sort of 'Ransomware Protection' - It requires turning on.
Windows Security - Virus & Threat protection - Ransomware Protection (bottom of page) - Manage Ransomware Protection.
I'd read up on that if considering using the stuff - May not suit your needs.
Good idea to keep W10 up to date - Never had a real problem thus far.. W10 Pro V:1909 : OS Build 18363.88
https://www.dummies.com/computers/o...-in-windows-10-with-controlled-folder-access/


I was a long time user of Malware-bytes (freeby) ... Not so impressed with the paid version, did register it in the Windows security Centre, but found it then replaced Defender - I unregistered it, wanted both active. Found nothing yet - maybe I am too conservative with my Googling.
I never seemed to witness MWB updating was quickly through scan for updates - then I left clicked it's icon in the 'show hidden icons' at right, near end, taskbar - Selected check for updates - Seemed to do as expected.

Also found this ok - 'StartPage' search engine :- https://www.google.com/search?client=opera&q=startpage.com&sourceid=opera&ie=UTF-8&oe=UTF-8

I am thinking you - SS, or someone else inadvertently invited something malignant into your system.
Thinking fresh install, and if more than one person has use of the machine - log in separately.

-0-

 

[Diver Fred]

Q1 - are running Win10?
Q2 - Did create a Recovery Drive?
Yes? Oh goody! No? Oh Shonet - Ask you computer supplier for a copy that works with your license, will cost a few quid.
Q3 - do you have a recent (pre-problem) Back Up of your data (no the OS)?
Yes - Good

So then with 'Yes' answers follow the guidance in this web page
https://www.lifewire.com/how-to-wipe-a-hard-drive-2624527

Once that is complete - (Maybe even run it twice) then Run the recovery drive, and then load all 'apps' from fresh.

Finally reload your data.

Good Luck

 

[securespark]

Not quite.
Do not just do a reinstall.
You need to remove the files from your drive, just reinstalling will leave them there.

Wiping the drive before a reinstall is what ought to return this to a usable condition, however beware that some may even hide a payload in areas that even a format cannot remove.

Would DBAN work?

 

[securespark]

Thanks everyone.

Thinking of wiping the OS.

Trouble is, I have 3 HDD's and 1 SSD, carrying the OS.

The HDD's have got music, images and the contents of hard drives from previous PC's dating back to 1998.

Does the whole lot need wiping?