Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: System may be compromised

07 Jul 2014   #1
Sir George

Windows 7 Professional x64
 
 
System may be compromised

My son called this afternoon and said he had an issue with an IPhone and in order to get support he did a Google search for Apple support. The first hit in the results was the following link;

Amazingtechsupport

He called them and the tech, who had a heavy accent, asked him to attach the device to his computer and then requested remoted access. FOOLISHLY and after my giving him several warnings to never allow remote access he did it anyway. He explains what happened next as follows;

The tech ran a "dos" emulation window and the screened scrolled for about 15 seconds and at the bottom of the screen was the following message; "Your system has been hacked". At this point my son called me to explain what just happened and during him explaining things the tech proceeded to draw, with what my son said looked like using a pencil, to make a symbolic sad face; ie, :-( Then he circled the "Your system has been hacked" and said "Do you see that?". By now I had obtained enough detail to say disconnect your system and get off the phone, which he did.

My questions are;
1. Does anyone know if the link is associated with a legitimate company?
2. Is there anyway I can check the system for a keylogger, nefarious software or damage?

I have had him run a scan with MBAM and Avast and both came back with no infections detected, although I doubt from what he discribed that the system would be infected with malware or a virus.


My System SpecsSystem Spec
.
07 Jul 2014   #2
ignatzatsonic

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium SP1, 64-bit
 
 

Quote   Quote: Originally Posted by Sir George View Post

My questions are;
1. Does anyone know if the link is associated with a legitimate company?
Minimal chance it's legit.

I counted at least a half dozen grammatical, spelling, and punctuation errors in a quick reading of the first page presented in that link. That's been a foolproof indicator of scams that has yet to fail me.

The name alone makes me roll my eyes. That would be enough to make me look elsewhere.

http://stuffgate.com/amazingtechsupport.us

Apparently been around 2 months.
My System SpecsSystem Spec
07 Jul 2014   #3
Sir George

Windows 7 Professional x64
 
 

Quote   Quote: Originally Posted by ignatzatsonic View Post
Quote   Quote: Originally Posted by Sir George View Post

My questions are;
1. Does anyone know if the link is associated with a legitimate company?
Minimal chance it's legit.

I counted at least a half dozen grammatical, spelling, and punctuation errors in a quick reading of the first page presented in that link. That's been a foolproof indicator of scams that has yet to fail me.

The name alone makes me roll my eyes. That would be enough to make me look elsewhere.

Amazingtechsupport.us is worth $5,840 USD - Amazingtechsupport

Apparently been around 2 months.
Thanks! Any information you can provide on question #2?
My System SpecsSystem Spec
.

07 Jul 2014   #4
Layback Bear

Windows 7 Pro. 64/SP-1
 
 

Have you reported the website to the authorities?

The computer and the phone are probably compromised.

I would also recommend changing all passwords and anything to do with banking, credit cards ect.
My System SpecsSystem Spec
07 Jul 2014   #5
ignatzatsonic

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium SP1, 64-bit
 
 

Quote   Quote: Originally Posted by Sir George View Post

Thanks! Any information you can provide on question #2?
Nothing beyond the obvious---run anti-malware apps and Google the best you can for answers re keyloggers or whatever. I've never hooked up with any website like that or interacted with "tech support" in that way, so I don't know how embedded they can become. But a good Google pounding should give you ideas on what to check. Malwarebytes is a good tool to start with.
My System SpecsSystem Spec
07 Jul 2014   #6
derekimo

Microsoft Community Contributor Award Recipient

 
 

They appear to change their name quite often too,

https://www.google.com/search?q=1201...sm=93&ie=UTF-8

And in the same building as the Delaware state chamber of commerce.
My System SpecsSystem Spec
07 Jul 2014   #7
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

My System SpecsSystem Spec
07 Jul 2014   #8
Slartybart

x64 (6.3.9600) Win8.1 Pro & soon dual boot x64 (6.1.7601) Win7_SP1 HomePrem
 
 

2. Is there anyway I can check the system for a keylogger, nefarious software or damage?


Jacee is probably the best person to answer that question.
My System SpecsSystem Spec
08 Jul 2014   #9
Sir George

Windows 7 Professional x64
 
 

Quote   Quote: Originally Posted by Jacee View Post
Thank you for the reply. As I stated in my original post, I had my son run Avast and MBAM and both of them found no problem. If I visit him with a current up to date version of Kaspersky's AV on a thumb drive and run it without any detections would it be safe to assume the computer is OK or could there still be issues with something like a keylogger?

Thanks in advance for your help.
My System SpecsSystem Spec
08 Jul 2014   #10
Tews

64-bit Windows 8.1 Pro
 
 

IMO once a system is infected, the only way to insure that you are safe, is to format and reinstall your OS.
My System SpecsSystem Spec
Reply

 System may be compromised




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Compromised PC - Advice please!
A friend (yes - honestly!) has allowed a scammer to have access to his win7 PC for 20 minutes and money has subsequently been taken from his Paypal account. I've advised him to disconnect his PC from the internet until it's "clean" but I'd appreciate some advice on what is needed. Would a...
System Security
Can I tell if my address book has been compromised?
I recently sent and received a series of emails to a colleague (I use Thunderbird, he accesses Verizon Mail online). The gentleman claims that 'immediately' afterward he became deluged with spam mail. He rarely uses that particular email address, I use mine constantly. No one else I correspond...
System Security
Computer compromised
Hi there, Im trying to help my mum out with her computer. After a visit to her local bank they informed her that someone had got her bank details online and has been ordering video games for themselves from this. I need to ensure that her PC is like fort Knox as im meant to be good with ...
System Security
RSA comes clean, SecurID is compromised
It took them long enough. RSA finally comes clean: SecurID is compromised
News


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 03:58.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App