Need security help.

cpdnd31

Ueber Meister
webmeister
CAG
OK I don't know if computer was hacked or just email.

Bank just called someone sent them info for a bank wire transfer- they used my email -(i checked nothing in sent file) the bank was communicating with them for last 48 hours and called me to verify some info- thats how I found out -

I changed password on email --

A couple of weeks ago I sent documents through email for mortgage - my Social Security my Drivers license bank statements the works. I forgot to erase the sent file in email. I am thinking that's how they got the info but I am not sure.

I need a excellent program to scan computer with to make sure nothing is on it/ Also I changed password to email acct - can they get the new password? I hate this crap - need help and advice--
 

Googobucs

Meister Member
Malware bytes

You do not have permission to view link Log in or register now.


download the free version. Don't activate the free trial or it will bug you to buy it constantly. Just install and run a scan.
 

Journeyman

Meister Minion
MM
First step is Malware Bytes indeed. Are you affraid they put a keylogger on your system or can it be someone has your retrieved your password somehow?
 

Fjellsame

Meister Minion
MM
Sorry to hear about this.

First, i would as the others recommend. Install Malewarebytes. Then i would change passwords on everything, strong passwords. Plus take a look at my present firewall "allowed apps", to look for anomalys.

Then i would take precautions. Set up a solid firewall and make sure im not using Windows-user account with admin rights to my daily use of the computer. And make sure i have Malewarebytes running updated for scans once a week.

Did you have a weak password on you mail, or the same password as used in other places? Could you have been a victim of social phishing, by friends or others?
 

AintWon1967

Experienced Member
OK I don't know if computer was hacked or just email.

Bank just called someone sent them info for a bank wire transfer- they used my email -(i checked nothing in sent file) the bank was communicating with them for last 48 hours and called me to verify some info- thats how I found out -

I changed password on email --

A couple of weeks ago I sent documents through email for mortgage - my Social Security my Drivers license bank statements the works. I forgot to erase the sent file in email. I am thinking that's how they got the info but I am not sure.

I need a excellent program to scan computer with to make sure nothing is on it/ Also I changed password to email acct - can they get the new password? I hate this crap - need help and advice--
This happened to my employer about 2 years ago. He was on a business trip in Korea and China and was using his cell phone to check his personal gmail account.

The bank and police figure it was his phone that was hacked in Korea.

They found old emails to his bank advisor from 2010 and then emailed them. The bank then forwarded to the current advisor who happened to be on vacation, so it was sent to the person covering their job.

The person (pretending to be my employer) requested $25,000 wire to a an account in Toronto and told them he was in China and because of the web blocking in China, he was unable to log in to his online banking and do it himself. They were deleting all the emails as they were sent or came in.

As my employer has done this many times before and had them bend the rules (although he usually sent an email, then phoned and sent a fax, and we would provide the signed original after he returns) they began to process this wire for him.
Just prior to it being sent, "my employer" emailed again and said that the person was in the area and would pick the money up as cash.

Then they got suspicious and called us at the office to confirm.
I said if that is what he directed you to do, then do it, as it was not out of the ordinary.
My employer usually calls me to let me know he has done these things and I figured with the time difference he just hadn't gotten around to it.
Then all of a sudden, something didn't sit right so I called back and said not to do it and then called my employer.

We are not sure how it ended, but we got many apologies from the bank and I believe someone lost their job.

We used Norton's on all the computers.

We cancelled all the Credit Cards and got replacements just to be safe.

As he was using Gmail, there is a button that you can click to log off of all devices. I would check with your email provider if they have similar.
Our fear was that if they left the email open, even with a new password they would still have access so long as they did not log out.

He now uses a VPN for his phone and computers.

The bank provided us with copies of all the back and forth email correspondences for our records.
It is like they went through and read enough of his emails to sound just like him and be believable.
He is Korean and his English is very good but certain words and sentences are consistently wrong and they copied it just perfect.
They copied his way of speaking, personality, how he reacts when told no we can't do it at first.

We have had no further issues or any signs of identity theft since.
The bank now calls and confirms everything including staff and vendors who take their checks to be cashed there.

Connie
 

cpdnd31

Ueber Meister
webmeister
CAG
I am not sure if there is a key logger or not. Will malware pick it up if there is? Guys I am thinking email but don't know for sure. So starting with malware scan first-- then what?

Thanks so much for help-- I am a little frazzled they have a copy of everything and can do much harm with the info they got.

The bank thank god called : they tried to wire 38,000 out of our account.
 

Googobucs

Meister Member
Well the malware program found this

PUP.Optional.Wajam.A key so im guessing key logger on computer.
Its not a key logger. You can google it and get more info. It's a Trojan that fills your browser with spam and other nasty things.

You might want to go to your bank and ask them for advice. Maybe have them close your existing account and open a new one with a new account number. They should have a fraud prevention department that can give you some advice.
 

bjtaz44

Full Member
Well the malware program found this

PUP.Optional.Wajam.A key so im guessing key logger on computer.
I am a computer tech, that has never been linked to a key logger program.

someone would need access to your computer or send you a file to install a key logger, which would be disguised as a legit file.

My experience it's usually a email hack at the server host. Be it using a password hacker tool or a password you use on multiple sites including as your email one.

Change the password on server, set up security protocols through the client , Hotmail etc. have multiple ones you can set up.
But they already have important info it sounds like so I would set up a credit monitoring security.
 

cpdnd31

Ueber Meister
webmeister
CAG
I have bank appointment in morning. Until then they moved all money into safe savings acct. Meaning you have to go into bank and physically withdraw. Tomorrow getting new acct numbers and cards. Filing police report with bank. Calling all 3 credit bureaus to have identity theft on report and block any active activity so no one can try to open acct. Can't do that until I get police report number/

Running scans still - hopefully I can clean this computer out. Just aggravating.

I truly thank you guys for your help.
 

Journeyman

Meister Minion
MM
As far as I know that Trojan is more of an advertiser then a keylogger but you need to delete it anyway. Check back after a while or after a reboot that it did not come back. AntiMalwareBytes deletes this trojan but usually it will come back and needs to get deleted manually. If you are really infected with a keylogger or other dangerous malware it can be very difficult to remove them and you need to be a bit savvy or if you have some basic knowledge and good google skills to recognize and delete the treaths to your computer, there are plenty of forums where people will help you out.
Ofcourse change your email password as well as all your other password. When someone has acces to your email they will be able to reset passwords from your ewallets, casinoaccounts etc.
Always use a combination of upper- and lowercase letters combined with a number and special symbols if allowed.

If you get really paranoid about your computer you can consider format your HD and reinstall Windows instead of going through the whole process of cleaning up your computer from malware.

Very scary story!
 

Jakestar

Senior Member
Another thing to also note, is not to have your browser (chrome, firefox etc.) auto save/store your passwords. Gmail is also quite susceptible as you can access your Gmail without having to re-login for a period of time. Someone with access to your PC could easily access your emails (fake friends, plumbers etc. etc.) 2 minutes without you looking that sorta thing. Anyhoo, hopefully no damage done.
 

richie1913

Registered
Another couple of free excellent programs to use after malwarebytes would be

Hitman pro - just use the one time scan option you will be amazed at how much more you will find.

Adwcleaner - deletes Adware, Toolbars, Potentially Unwanted Programs (PUP), and browser Hijackers from your computer.
 

Wild Reels

Meister Member
webmeister
another vote for hitman pro, one thing to note is that lots of the free anti virus and anti malware now come bundled with pups, so double and triple check the checkboxes that you arent installing other junk with the free programs.

Potentially unwanted program = pup so its not necessarily even a virus or trojan just something you didn't intend on installing.
 
Top