Hack Warning Please read
Hey guys my name is Paul and as a victim of the recent hackings I would like to share some info with you guys in hope that you guys don't get caught out and what damage dealt is limited.
So first, How did i got caught out?
Well, it started when a friend got hacked on skype. The hacker on my friends account sent me an excel document (spreadsheet) without thinking i accepted and opened and the hack was installed. The excel document went under the name of (GAZED) FM Price List.xls obviously this method and file name might be different but for now at least you might want to question any xls document sent to you. EVEN IF YOU THINK IT'S YOUR FRIEND.
What next?
So basically the hack installs various files (some which the antivirus couldn't pick up) If you think that you have become a victim of the hackings go to your task manager (ctrl+alt+delete) and look for a process under the name of winhv.exe, this seems to be the keyloggers active process you cannot stop it as it will automatically reactivate so to remove completely you need to remove during safe mode or the safest option.. reformat your pc.
The file can be found at
appdata/roaming/microsoft/windows (type %appdata% into the text box in the start menu) some other files include Update.exe and Updates.exe in Roaming
However if possible reformat your pc to eliminate any malicious files.
Thanks for reading and please stay safe, if you have gotten caught good luck to you! (oh yeah and don't trust the character Foxino, it is not me)
13 Comments • Newest first
Dang it Foxino! I was so excited that I finally found a good dkhanjar and earrings in fm and I buddied you and everything..
Now I know and will not buy them D:
its probably just your friend
[quote=LGSlayer]Not at all true, if you get malware bytes and run it whilst in safe mode with only initial windows start up programs you can remove root kits and RAT's.[/quote]
QFT. MBAM in safe-mode can handle this.
You intel is greatly appreciated. If you were a ninja , yould would be a KIA (killed in action) shinobi. It is good that you uncovered some valid data that will help us to suppress further incidents. If you start over in Scania I can lend you a helping hand. Arigato
[quote=RobbieYO]dont accept files on skype, thats all you needed to say man[/quote]
this. if i don't know you in real life, i ain't accepting crap from you, even if you're a "friend"
This is why you don't open up any files on your computer! Check everything on your phone guys!
If you are the original owner of the account, there's a good chance you can recover it. Send in a ticket or live chat.
[quote=iMario5Bro5]That won't get rid of everything either, though it is somewhat powerful special cases such as root kits (which sounds like what the hacker sent) are end game for most software. Even combofix and what not have a hard time completely getting rid of those.[/quote]
Not at all true, if you get malware bytes and run it whilst in safe mode with only initial windows start up programs you can remove root kits and RAT's.
Hey Paul. This is very sad news. I hope you get your account back. Thanks for the tips.
[quote=RobbieYO]dont accept files on skype, thats all you needed to say man[/quote]
Yeah true that. usually i'm pretty careful but i was doing a few things at once and yeah lol.
@watchmefall: hi Fred, Nice to meet you.
[quote=PandaBurr]tumps up if u cri all the time.
this is jus duckd up rly[/quote]
Trying too hard, -1
dont accept files on skype, thats all you needed to say man
As long as I remember you have a YouTube channel right?