It's happened, I was hacked

malwarebytes might pick up more.

Btw do u use a adblocker, as that should stop up most dodgy sites opening up tabs going to infected sites i think.
Yeah I use adblocker ultimate on chrome, might go back to firefox and grab the javascript blocker i used to use. I think it was nonamescript?
 
Last edited:
I searched my default ublock origin filters lists for the domain posted above and nothing came up, so not sure it would have helped. I may not have looked in the right place though, didn't want to risk visiting the domain directly.
 
Yeh that's a RAT... You were controlled remotely.

JavaScript-based Remote Access Trojan (RAT)

Remember when ProRAT used to be free for anyone? I used to have a lot of fun with that tool with friends

Edit: I find HitManPro to be a good tool for getting rid of compromised software
 
Last edited:
Windows defender no see this?

Depends - nominally it doesn't just get on your system but relies on the user's common sense being overridden by greed, etc. with an innocuous front end which bypasses Defender and ESET before deploying the actual malware. It should pickup on an infected file from another infected system however. (I'm not that up to date on it but I don't believe it has virus like behaviour in terms of spreading by infecting exe files generally on a system).

In a nominal deployment of the malware there are 2 manual steps which should be setting off all kinds of alarms before it infects the system - it is commonly bundled in dodgy crypto software and games and game cheats/cracks.
 
Last edited:
Sorry to hear about what happened i got charged £150 in Microsoft credit about a year ago, and like yourself im usually quite careful and aware of what can happen. But reading through this post has made me re-download and run a scan on both Malwarebytes and Avast just as a bit of extra precaution.
 
haveibeenpwned is a legit site, also if you have Firefox and are signed in, then it automatically notifies you if your email is ever part of a breech.

I don't understand what whatsapp has anything to do with Paypal in the OP though.


This has more to do with user error than having whatsapp installed or buying games through cdkeys - Both of which are perfectly legit.
 
Last edited:
malwarebytes might pick up more.

Btw do u use a adblocker, as that should stop up most dodgy sites opening up tabs going to infected sites i think.
I just use the built in Windows 10 security with Windows updates applied.
I do have an ad blocker though that I highly recommend. ublock origin for Firefox. It's blocked 2.3 millions ads since it was installed! The best thing, it blocks all ads in Youtube. Incredible plugin
 
Yeah I use adblocker ultimate on chrome, might go back to firefox and grab the javascript blocker i used to use. I think it was nonamescript?
NoScript, uBlock Origin and Ghostery are the ones I won’t be without. There’s been documented instances of ads being used to deliver virus payloads once the ad server is compromised. Prevent the ads loading, use noscript to stop js running in the background and Ghostery blocks trackers.

I refuse to use Chrome. I’d rather deal With a bit of hassle the first time I visit a site than risk a virus, put up with ads or let the shysters build a profile of me. Firefox all the way and zero social media presence.
 
Last edited:
@GaryTheSnail What you recommend to run 8n the background to catch these sorts of things?

I don't run anything to catch these things but every so often I run Microsoft Defender and Malware Bytes, Spybot Search and Destroy.

I also have uBlock addon installed in browser as well but I don't click links until I know where the link goes too, I hover over a link to see where it goes first before clicking it.
 
Back
Top Bottom