So I contacted a hacker , i didn’t know he was one he just gave me his email and said we could chat he goes to a forum i know.
its his favorite forum (I think) he spends more often on it.
I chatted with him and he asked me to download a File Program to test it on my windows and silly me downloaded it.
my antivirus (avg) found it was a malware but i don’t really remember the name then the hacker said it was a false result.
I formatted my computer after for some reasons (No i didn’t know he was a hacker just a quins dent).
Now i had some troubles on forums and Ended up getting banned , I created another account on that forums and complained about the unfair ban So the hacker Sent me a message and Said “HAHAHA I HACKED YOU I TOLD YOU HACKER ALWAYS WIN , I HAVE ALL OF YOUR EMAIL ADDRESSEES AND HERE IS THE LINK TO THEM Link” So i downloaded his file (Silly me again) opened the Zip File and Extracted and Found a Bat File , So I Entered that Bat File and for some reason avg never detected any thing but the bat file suddenly closed.
I then transferred all my Personal pics into flash drive for security.
I went back to the Forums , and the Hacker asked me to email him and he said that if I don’t go away from the forums he will keep the Virus on my computer and watch me.
after that I contacted him in yahoo messenger , he told me to download a File he sent me , he claims that file will remove the Virus and Silly me again Downloaded that file
its name was “Trojan Destruct” avg Detected it but Silly me belieaved the hacker who told me its a false positive.
I tried to open it and it said some thing about win32 application.
So he (The hacker) told me to download the latest netframe work and i downloaded it then i tried to run that File and no thing work (Trojan Destruct) So The hacker Sent me another Trojan Destruct and it gave me “Error Memmory XX000” or some thing then the hacker said he will contact me again he also asked me if I Run Team Viewer then said nvm he then asked if I Run Vista and i told him no because i don’t.
Now When i woke up i contacted him he said the Virus never worked since i am running XP , and he said we can chat and be Friends again.
Suddenly AVG Found Trojan Destruct on my Defualt Download Folder “My Documents/Download” and I Removed it but when i click properties it said it came from another computer and Might be blocked (Any file that is downloaded thought is treated as came from another computer).
Suddenly i was suspicious what is that hacker contacting me for and thinking that he might really stole pictures of me and put it on some site.
i kept asking him if he stole any thing i also asked him how Trojan Destruct Re-Appeared on my computer and how he hacked me , he said he used Secure Shell Tunneling So i asked him what is that then he stopped responding and blocked me from contacting him.
I Then Came to the Forum I used to go in with an account i never used since 2008 , and Found a Topic that was made by that hacker that laughs at me at a picture that shows the Log of me and Him chatting on yahoo (not real pictures just Y/M Pictures) , He then Said to other Members on the topic “lol he accused me of posting his pictures on some sites”
Then Using an account of Mine that I never used since 2008 and Pretending about some one else then he said “I Would Hack Him if I Really could”.
I Sent him a message asking about that Person’s Picture (ITS Me pretending to be some one else to know if he stole any of my pictures or not) then he said “lol i never stole any thing from him but if you want their is a program to do this” he then Felt Suspicious about me and Knew it was me.
I Created a Topic on Forums asking a question without Goggling , Elite Members Trolled me for making this topic including him the hacker said "Now I know what is my Next Victim -_-’
Suddenly i found a private message that Includes a Scam that says “Hi you are an active memmber , Download this File it will Speed up your Gaming preference!” , that message was by a Person with 0 Posts And I never downloaded it since I knew it was Him.
(The hacker Sent me a message with another account to sent me Trojan if you don’t understand what i am saying but i never downloaded this file thought).
I then asked him Sending him a message about “did you hack me?” he Said that Those Trojans never worked and He Said we can be Friends again.
For some reasons i trusted him and Contacted him and Since then he was nice and he told me “Stop asking me if i hacked you! I never hacked you -_-'” so he apperntly normal and Such But i was just contacting him once again because i was Suspicious.
I Scanned my computer and Removed some Trojans using AVG
and Malware bites didn’t look at those trojans thought. and I also Disabled Remove access and Secure Shell Tunnel (Server) From my Router.
my Firewall was always off for Higher Speed thought i forgot to turn it on until now But the Firewall on my Router was always on.
I then used hotspot shield and Removed it later (Hot spot shield is a program that changes my IP but post Porn ads)
Now I Found Trojan agent on my Temp File Thought Removed but I am not sure if its Hotspot’s Shield File or its that hacker’s file.
Later , My Family Started entering Facebook on my computer and skype which contains real pictures of me and my family and This is Where i feel unsecured…again :-[
the hacker said if i ever asked him if I hacked him or not he will shutdown my Internet.
I never Found any thing on the Forums.
the only Reason i am contacting him is to Make sure he never got any Pictures or passwords.
I am Running avast , avg Internet Security , malware bytes.
Now this is not like “my Computer didn’t got Owned!!!” its not about the computer i can throw it out of the window once I know no thing was Taken.
Overview:
This is Last Trojans i detected which were yesturday:
"Malwarebytes’ Anti-Malware 1.41
Database version: 3024
Windows 5.1.2600 Service Pack 3
10/24/2009 2:43:57 PM
mbam-log-2009-10-24 (14-43-57).txt
Scan type: Quick Scan
Objects scanned: 127636
Time elapsed: 5 minute(s), 22 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 5
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\Temp\cd100d77-0916-4168-bc22-fdb799ed7506.tmp (Trojan.Agent) → Quarantined and deleted successfully.
C:\WINDOWS\Temp\cd13623f-b9c9-4b21-bc02-dd74a7d7dc3d.tmp (Trojan.Agent) → Quarantined and deleted successfully.
C:\WINDOWS\Temp\cd18f494-cdc9-4d0a-a83a-3274defebb9b.tmp (Trojan.Agent) → Quarantined and deleted successfully.
C:\WINDOWS\Temp\cd1b5003-e871-4a7f-a1f8-2c9924411e98.tmp (Trojan.Agent) → Delete on reboot.
C:\WINDOWS\Temp\cd1ece47-eeb0-4575-b79e-988bbeef2f6d.tmp (Trojan.Agent) → Quarantined and deleted successfully."
I have alg.exe , Spoonlv.exe open (by the way can some one help me Log the process without typing all of them?).
scanned with avast , avg , malware bites , super antispyware just today and no thing was found.
do you think he stole any thing?