System may be compromised

Page 1 of 2 12 LastLast

  1. Posts : 1,346
    Windows 7 Professional x64
       #1

    System may be compromised


    My son called this afternoon and said he had an issue with an IPhone and in order to get support he did a Google search for Apple support. The first hit in the results was the following link;

    Amazingtechsupport

    He called them and the tech, who had a heavy accent, asked him to attach the device to his computer and then requested remoted access. FOOLISHLY and after my giving him several warnings to never allow remote access he did it anyway. He explains what happened next as follows;

    The tech ran a "dos" emulation window and the screened scrolled for about 15 seconds and at the bottom of the screen was the following message; "Your system has been hacked". At this point my son called me to explain what just happened and during him explaining things the tech proceeded to draw, with what my son said looked like using a pencil, to make a symbolic sad face; ie, :-( Then he circled the "Your system has been hacked" and said "Do you see that?". By now I had obtained enough detail to say disconnect your system and get off the phone, which he did.

    My questions are;
    1. Does anyone know if the link is associated with a legitimate company?
    2. Is there anyway I can check the system for a keylogger, nefarious software or damage?

    I have had him run a scan with MBAM and Avast and both came back with no infections detected, although I doubt from what he discribed that the system would be infected with malware or a virus.
      My Computer


  2. Posts : 12,012
    Windows 7 Home Premium SP1, 64-bit
       #2

    Sir George said:

    My questions are;
    1. Does anyone know if the link is associated with a legitimate company?
    Minimal chance it's legit.

    I counted at least a half dozen grammatical, spelling, and punctuation errors in a quick reading of the first page presented in that link. That's been a foolproof indicator of scams that has yet to fail me.

    The name alone makes me roll my eyes. That would be enough to make me look elsewhere.

    http://stuffgate.com/amazingtechsupport.us

    Apparently been around 2 months.
      My Computer


  3. Posts : 1,346
    Windows 7 Professional x64
    Thread Starter
       #3

    ignatzatsonic said:
    Sir George said:

    My questions are;
    1. Does anyone know if the link is associated with a legitimate company?
    Minimal chance it's legit.

    I counted at least a half dozen grammatical, spelling, and punctuation errors in a quick reading of the first page presented in that link. That's been a foolproof indicator of scams that has yet to fail me.

    The name alone makes me roll my eyes. That would be enough to make me look elsewhere.

    Amazingtechsupport.us is worth $5,840 USD - Amazingtechsupport

    Apparently been around 2 months.
    Thanks! Any information you can provide on question #2?
      My Computer


  4. Posts : 25,847
    Windows 10 Pro. 64/ version 1709 Windows 7 Pro/64
       #4

    Have you reported the website to the authorities?

    The computer and the phone are probably compromised.

    I would also recommend changing all passwords and anything to do with banking, credit cards ect.
      My Computer


  5. Posts : 12,012
    Windows 7 Home Premium SP1, 64-bit
       #5

    Sir George said:

    Thanks! Any information you can provide on question #2?
    Nothing beyond the obvious---run anti-malware apps and Google the best you can for answers re keyloggers or whatever. I've never hooked up with any website like that or interacted with "tech support" in that way, so I don't know how embedded they can become. But a good Google pounding should give you ideas on what to check. Malwarebytes is a good tool to start with.
      My Computer


  6. Posts : 17,322
    Win 10 Pro x64
       #6

    They appear to change their name quite often too,

    https://www.google.com/search?q=1201...sm=93&ie=UTF-8

    And in the same building as the Delaware state chamber of commerce.
      My Computer


  7. Posts : 8,608
    Windows 7 Ultimate 32bit SP1
       #7
      My Computer


  8. Posts : 6,458
    x64 (6.3.9600) Win8.1 Pro & soon dual boot x64 (6.1.7601) Win7_SP1 HomePrem
       #8

    2. Is there anyway I can check the system for a keylogger, nefarious software or damage?


    Jacee is probably the best person to answer that question.
      My Computer


  9. Posts : 1,346
    Windows 7 Professional x64
    Thread Starter
       #9

    Thank you for the reply. As I stated in my original post, I had my son run Avast and MBAM and both of them found no problem. If I visit him with a current up to date version of Kaspersky's AV on a thumb drive and run it without any detections would it be safe to assume the computer is OK or could there still be issues with something like a keylogger?

    Thanks in advance for your help.
      My Computer


  10. Posts : 11,840
    64-bit Windows 8.1 Pro
       #10

    IMO once a system is infected, the only way to insure that you are safe, is to format and reinstall your OS.
      My Computer


 
Page 1 of 2 12 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 10:14.
Find Us