I'm worried I might've done something stupid...
31-01-2018, 20:25
|
#1
|
RIP Tigger - 12 years?!
Join Date: Jul 2005
Location: Bolton
Age: 58
Services: EE Superfast Broadband
Posts: 1,465
|
I'm worried I might've done something stupid...
I got a phone call from a company saying they work with Microsoft, telling me my PC had a trojan - specifically winlogon.exe. But they sounded legit because they knew the Windows license number, which I'm fairly sure they couldn't have obtained from anyone but the people I bought my laptop from, PC Specialist.
I then spent a nerve-wracking half-hour or so surrendering control of my laptop while they did various things to clean up my system, terminate foreign network connections and restart Windows services allegedly disabled by Russian hackers. I've also paid them a sum of dosh for network security software; I presume I'll receive an email link to download it.
Has anyone else experienced this? If so, have I been conned? Is there any way a Windows license number can be fraudulently obtained remotely?
Or am I being paranoid?
But I can't help wondering how these supposed hackers got winlogon.exe past Norton. Plus I've been running https protocol for months and I now have a VPN.
So what precisely have I done: the smart thing, or the bloody stupid thing? Just in case, I've changed my most critical passwords, plus the passcodes on my debit and credit cards.
- I've just looked up 'remote access scams', and now I'm pretty sure I did something stupid.
__________________
"People tend to confuse the words 'new' and 'improved'."
- Agent Phil Coulson, S.H.I.E.L.D.
Last edited by Anonymouse; 31-01-2018 at 20:41.
|
|
|
31-01-2018, 20:36
|
#2
|
Sad Doig Fan!
Join Date: Aug 2007
Location: Barry South Wales
Age: 68
Services: With VM for BB 250Mb service.(Deal)
Posts: 11,675
|
Re: I'm worried I might've done something stupid...
Quote:
Originally Posted by Anonymouse
I got a phone call from a company saying they work with Microsoft, telling me my PC had a trojan - specifically winlogon.exe. But they sounded legit because they knew the Windows license number, which I'm fairly sure they couldn't have obtained from anyone but the people I bought my laptop from, PC Advisor.
I then spent a nerve-wracking half-hour or so surrendering control of my laptop while they did various things to clean up my system, terminate foreign network connections and restart Windows services allegedly disabled by Russian hackers. I've also paid them a sum of dosh for network security software; I presume I'll receive an email link to download it.
Has anyone else experienced this? If so, have I been conned? Is there any way a Windows license number can be fraudulently obtained remotely?
Or am I being paranoid?
But I can't help wondering how these supposed hackers got winlogon.exe past Norton. Plus I've been running https protocol for months and I now have a VPN.
So what precisely have I done: the smart thing, or the bloody stupid thing?
|
The bloody stupid thing. You've given control of your PC to people you don't know who contacted you by phone. How did they get your phone number?
If your PC is not a "home built" one then it will have a generic product number.
Contact your bank or credit cards company and cancel all payments. You will (or should) have to replace your credit/debit cards as well. Also contact the bank to change login details for online banking.
Your PC will also have to be checked for any spyware/malware or virus which may have been installed by them.
Your fault totally, NEVER accept anyone contacting you by phone knows anything about you. Thay will use social engineering to get you to believe they do unless it is actually a company you have dealt with and given your phone number to and give you the correct reference number.
Sorry to be the bearer of bad news but don't shoot the messenger.
|
|
|
31-01-2018, 21:09
|
#3
|
RIP Tigger - 12 years?!
Join Date: Jul 2005
Location: Bolton
Age: 58
Services: EE Superfast Broadband
Posts: 1,465
|
Re: I'm worried I might've done something stupid...
Wouldn't dream of it, dude. Thanks for the advice.
Okay, I've cancelled the credit card and told Barclaycard what happened, so the ball's in their court now. The payment's still pending, so it shouldn't happen now. If it does, well, lesson learned.
Right. Time for in-depth Norton scanning, so I think I'll go offline for a while and read a book.
__________________
"People tend to confuse the words 'new' and 'improved'."
- Agent Phil Coulson, S.H.I.E.L.D.
|
|
|
31-01-2018, 21:22
|
#4
|
Sad Doig Fan!
Join Date: Aug 2007
Location: Barry South Wales
Age: 68
Services: With VM for BB 250Mb service.(Deal)
Posts: 11,675
|
Re: I'm worried I might've done something stupid...
I'd download Malwarebytes and scan with that too.
|
|
|
31-01-2018, 22:57
|
#5
|
Dr Pepper Addict
Cable Forum Team
Join Date: Oct 2003
Location: Nottingham
Age: 61
Services: Flextel SIP : Sky Mobile : Sky Q TV : VM BB (1000 Mbps) : Aquiss FTTP (900 Mbps)
Posts: 27,868
|
Re: I'm worried I might've done something stupid...
Quote:
Originally Posted by Anonymouse
I then spent a nerve-wracking half-hour or so surrendering control of my laptop
|
Too late for you, but for anyone else ....
NEVER, NEVER, NEVER, NEVER do this, Ever.
---------- Post added at 22:57 ---------- Previous post was at 22:56 ----------
If I were you, Id seriously think about re-installing the laptop from scratch, there is no telling what they have put on it.
__________________
Baby, I was born this way.
|
|
|
01-02-2018, 00:02
|
#6
|
RIP Tigger - 12 years?!
Join Date: Jul 2005
Location: Bolton
Age: 58
Services: EE Superfast Broadband
Posts: 1,465
|
Re: I'm worried I might've done something stupid...
Well, I've applied updates to and run Norton, Spybot and Malwarebytes, and all they found were a few tracking cookies and some suspect registry keys. It would appear I've been rather luckier than I deserved, as I freely admit. Just goes to show even experienced users can be fooled, and I've been into computers since the days when MS-DOS had to be loaded from a 5 1/4" floppy.
Jeez, that dates me, doesn't it?!
__________________
"People tend to confuse the words 'new' and 'improved'."
- Agent Phil Coulson, S.H.I.E.L.D.
|
|
|
01-02-2018, 00:52
|
#7
|
CF Resident Dog
Join Date: Mar 2005
Posts: 14,345
|
Re: I'm worried I might've done something stupid...
As Paul says format the computer asap.
__________________
PSN: Snoopzster
|
|
|
01-02-2018, 08:22
|
#8
|
Bah Humbug!!
Join Date: Feb 2004
Location: Glasgow
Age: 43
Services: Sky Q 2Tb, Sky Q mini, boxsets and Sports & Movies HD, Sky Fibre unlimited
Posts: 13,892
|
Re: I'm worried I might've done something stupid...
Reformat and reinstall asap.
I had a call from this scam before. It's well known and been around for year as.
As soon as I told them that's funny as there are no Windows devices here only 3 Macs, they actually went silent then hung up.
__________________
AMD Ryzen 7 7700 | 32GB DDR5 6000 | RADEON 7900XT | WD 2TB NVME
|
|
|
01-02-2018, 13:33
|
#9
|
Believe in yourself ...
Join Date: Dec 2013
Location: Here & there ...
Services: tv phone mobile broadband V6 and tivo.
Posts: 5,252
|
Re: I'm worried I might've done something stupid...
Quote:
Originally Posted by Anonymouse
- I've just looked up 'remote access scams', and now I'm pretty sure I did something stupid.
|
I think remote access can be a good thing as the technician can see the problem your having and investigate directly.
I admit I have used this once and I found it amazing tbh, saying that I called them and I think that is the key word you contact them not the other way around and no payment was needed or asked for in my case.
My advice Anonymouse don't beat yourself up about this what's done is done, take care
__________________
A smile is a curve that sets everything straight.
Last edited by weenie; 01-02-2018 at 13:36.
|
|
|
02-02-2018, 09:10
|
#10
|
cf.mega pornstar
Join Date: Jan 2006
Posts: 18,823
|
Re: I'm worried I might've done something stupid...
Quote:
Originally Posted by weenie
My advice Anonymouse don't beat yourself up about this what's done is done, take care
|
And it's good advice imo, if it can happen to him it can happen to quite a few others out there
|
|
|
02-02-2018, 09:52
|
#11
|
Virgin Media Employee
Join Date: Sep 2005
Location: Winchester
Services: Staff MyRates
BB: VM XXL
TV: VM XL
Phone : VM XL
Posts: 3,130
|
Re: I'm worried I might've done something stupid...
You may be able to boot from a Live Linux distro and copy any files you want off the PC, better than booting into PC and copying some nasty over.
__________________
I work for VMO2 but reply here in my own right. Any help or advice is made on a best-effort basis. No comments construe any obligation on VMO2 or its employees.
|
|
|
02-02-2018, 09:55
|
#12
|
The Invisible Woman
Cable Forum Team
Join Date: Jun 2003
Location: between Portsmouth and Southampton.
Age: 71
Services: VM XL TV,50 MB VM BB,VM landline, Tivo
Posts: 40,170
|
Re: I'm worried I might've done something stupid...
Quote:
Originally Posted by weenie
I think remote access can be a good thing as the technician can see the problem your having and investigate directly.
I admit I have used this once and I found it amazing tbh, saying that I called them and I think that is the key word you contact them not the other way around and no payment was needed or asked for in my case.
My advice Anonymouse don't beat yourself up about this what's done is done, take care
|
I did the same with Eset when I had an issue that Nod32 couldn't resolve.. I contacted them,they emailed me back and suggested we talk over the phone and then used remote access to sort out the issue which was a virus hiding on my external hard drive. You have to be the contactee..not the other way round.
__________________
Hell is empty and all the devils are here. Shakespeare..
|
|
|
02-02-2018, 19:58
|
#13
|
RIP Tigger - 12 years?!
Join Date: Jul 2005
Location: Bolton
Age: 58
Services: EE Superfast Broadband
Posts: 1,465
|
Re: I'm worried I might've done something stupid...
Thanks, peeps, lesson learned - I am going to reinstall everything on my next 3-day break from work (I work 5 nights on, 3 off);
I'm usually too tired while I'm working to think straight, so it'll have to wait till then. As a compromise I'm disconnecting from the Internet while I'm not browsing...so if there is anything that's been missed by Norton, Spybot, Malwarebytes and the Microsoft tool, it can't do anything significant.
__________________
"People tend to confuse the words 'new' and 'improved'."
- Agent Phil Coulson, S.H.I.E.L.D.
|
|
|
02-02-2018, 20:26
|
#14
|
Permanently Banned
Join Date: Jan 2012
Location: Near France
Services: Tivo XL
150mb broadband
L phone
Posts: 1,817
|
Re: I'm worried I might've done something stupid...
A good days work to sort this out.. good luck Anonymouse.
|
|
|
03-02-2018, 17:57
|
#15
|
nashville
Join Date: Feb 2011
Location: Rutherglen. Glasgow
Services: Virgin Media
Posts: 5,178
|
Re: I'm worried I might've done something stupid...
Terrible thing to happen to you, So sorry, Hope you have not lost a lot of money
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT +1. The time now is 07:26.
|