Nearly lost my Steam account to someone out in Texas, email shows the first malicious action was someone removed my mobile authenticator, nothing happened before it. No login from new IP, no security changes like password, nothing.
What kind of encryption does Steam use, and did someone possibly find a backdoor meant for the good ol' American pal, the NSA.
Other urls found in this thread:
howtogeek.com
twitter.com
Wat? Since I have a scp command running, I will answer your thread.
Steam has two factor authentication. If you never used it, you are stupid. If you used it, he has access to your mail account and you should change your stuff. If he has your mail, he prolly also has your router and/or your pc making you a slave. Although this is the wrong board, can you post your task manager?
>LOGin
Now that I think about it I did start running a Rust server off my PC because I don't have a box to dedicate it, but still the only ports open on my firewall and router are 2015-2016 as required to run the server and 2025/2035-2026/2036 to operate the servers in parallel. Will post Task Manager soon.
>the only ports open on my firewall and router are 2015-2016
No, please no. That is wrong even on linux it would be (no mails, no websites, no videos, no updates). If you run windows you have a flagship of open ports. That brings me to my first important question: What OS are you running?
...
I mean opened by myself and not auto configured.
this is not good user....... OH MY GOD
is that Google ultron? very nice user
So it is windows. Be happy, getting and remving malware is the easiest on windows.
I found two malware programs through the first image. Try to delete autostart programs. If you want to be sure first install and run mallwarebytes and then hijack and post on their website.
I've got multiple plugins and tabs in use. That's why it looks like so many processes.
And I want to tell you one thing: Are you retarded for having so many autostart programs? Never have more than 10 programms running at once, else you are infected.
What processes are they? Everything there looks fine to me as its all icons/shit I recognize from long times ago when the PC was still a new baby.
no I asked if you were using Google ultron...
The bats are my programs to help with sorting/settings that often get changed by applications.
Nope, I run Chrome and Chromium only.
The other guy is an idiot, I own a PC repair store. Task manager looks fine as long as you're the one using PocketCloud.
you should really get ultron. this shit would've never happened had that been the case
Can I go for a smoke, the list will be longer. It is not only the proceses, but what the processes allow. IE bluetooth always was one of the highest owasp rankings.
dude get ultron I'm serious
Run a full malware bytes scan.
Change your email password and all other important accounts passwords (may want to do this asap on a device that you know to be secure, since it may take a while to do the scan). Also check your email if you're using gmail to see if it's been accessed from any other IPs (open gmail.com and it will be on the bottom right)
So you mean, his pc is fine as long as he only uses it as mirroring screen. K, I guess, you are in the business for several years and know pcs are only mirroring devices?
Almost forgot I got the sethc.exe backdoor because I forgot my desktop password one time, but isn't that only if you have physical access to the computer and cant use any RCONs to utilize it?
This question will be sensible and I hope, you have dynamic IP. But what router do you have? Your router is most likely infected, elese you would have gotten the mail because of two factor.
No pleb, I'm saying he's the one using the unattended remote desktop application. I understand that you're ESL (english second language) but perhaps grasp what I'm saying here.
This thread is full of retards / trolls. Ignore most of it your PC is fine.
I have never setup a static IP. Should I just block my game server ports until I get a server box and a separate network system? Also how easy is it to remotely access a network's router login screen if your not connected to it. Just forgot I had the admin/password login default.
We already told you: first download malwarebytes and let it scan once, then if hacks were found, download hijackthis, run a scan and post on their forums and during that install netbalancer and look at outgoing IP's. It is not that hard.
My nigger its taking a while chill out.
>t. botnet owner
Fuckerty offerty. He has gaping security holes and I would be surprised if he is not infected. Even if you are trolling, always help a Sup Forumstard
Anyone care to see some hard drive gore?
While you are downloading, take a look at your router. Since '14 it is easier to slave a router than a pc. About 40% of routers are infected.
It is a bad tutorial, but it helps at least a little bit.
Remote admin is off by default on the majority of routers. You have a bunch of paranoid uninformed neckbeards giving you information.
Malwarebytes isn't going to find anything other than some PUPs,
Download Autoruns from TechNet and post a pastebin to the text output and I'll tell you if the neckbeards are right to be paranoid or not.
You are retarded. Where is your repair store, so I never have to visit it? Bluetooth, PowerDVD, two instances of csrss, dcc and ddv are completely fine programs. What the actual fuck. I dont even have to look further mister repair guy. But thank you, I will ask every repair guy if they know those programms.