Jump to content



Photo

[Virus/Malware] I involved the POLICE!


  • Please log in to reply
50 replies to this topic

#16 Circaflex

Circaflex

    Neowinian Senior

  • Tech Issues Solved: 2
  • Joined: 18-August 02
  • Location: California
  • OS: 8 x64, 7 x64, Mountain Lion, Ubuntu
  • Phone: shamu

Posted 23 January 2013 - 03:07

"The Virus was acquired from the Google Homepage. Download logs indicated that."

then why would you claim something like that?


#17 shozilla

shozilla

    Neowinian Senior

  • Tech Issues Solved: 9
  • Joined: 11-January 09

Posted 23 January 2013 - 03:08

Simon,

He called Cybercrimes to check it out so they will report it and probably track that person who created the virus/malware. So OP is making sure his dad is not a victim of identity theft.

Of course cops do not come to the house to remove crap for you... all they do is report and probably track someone down.

#18 fusi0n

fusi0n

    Don't call it a come back

  • Tech Issues Solved: 3
  • Joined: 08-July 04
  • OS: OSX 10.9\Windows 10\Ubuntu
  • Phone: LG G3

Posted 23 January 2013 - 03:13

U dun goofed! Better backtrace it!!

#19 OP Titoist

Titoist

    The Socialistician

  • Joined: 15-October 06
  • Location: Banff, Alberta
  • OS: OSX, iOS 7.1
  • Phone: iPhone 5S (32GB) Space Grey

Posted 23 January 2013 - 03:13

"The Virus was acquired from the Google Homepage. Download logs indicated that."

then why would you claim something like that?


That is what the investigator told me once he checked the computer. He showed up, put some USB stick into the computer that ran a DOS program. Program scanned the computer and he wrote things down. He found out several things,

1. International IP
2. Program came from www.google.ca
3. International malware cannot be tracked by local police. He contacted RCMP and provided information from USB stick. RCMP will attempt to follow where the money is being transferred since Ukash is being used (without actually transferring money).
4. RCMP will publish warning.

I just wanted to inform people about this program. I did not know that some people already knew about it.

#20 +Medfordite

Medfordite

    Neowinian Senior

  • Tech Issues Solved: 2
  • Joined: 16-March 06
  • Location: Medford Oregon
  • OS: Win 8.1 Pro
  • Phone: HTC One M7 - Blue

Posted 23 January 2013 - 03:21

For everyone who is complaining he called the cybercrimes division, why not? Sure, he could have nuked the virus (since we are all well versed in this topic here), but let's assume for a moment that he did this. Then, it is shrugged off to be infected later on possibly and run through the same garbage.

When the cybercrimes division gets involved, they have the power to trace things back further than you might think via the ISP involved. They could trace back the records via a warrant (at least here), and find the originating source of the data. Then take action against that source or trace even further. And with the apparently alarming information contained in the virus such as his ultra private id numbers (social security type), then there is a reason to also call police as there might have been identity theft involved. (I have been a victim of Identity theft and it is not something you would ever want to go through -trust me), With a case number, they could probably give that to any parties involved later on down the road which might have been taken by his identification and bought a lot of things on his credit and never paid. Then it goes to collections/legal action - his Dad finds out later and then is sued. With that case number - it is sort of his insurance against being liable for those charges.

I am sorry this happened to your Dad, it is scary to see this type fo stuff come around especially as sophisticated they are lately.

#21 jkrupa128

jkrupa128

    I'm not as think as you drunk I am.

  • Joined: 09-February 04

Posted 23 January 2013 - 03:24

I'm sure no porn was involved...{Rolls eyes}

#22 CrashGordon

CrashGordon

    The Perfect Threesome: Lime, Salt & Tequila

  • Joined: 31-January 04
  • Location: Atlanta, GA
  • Phone: Jackson JS3 Kelly Bird IV through a Fender Rumble 150. Can ya hear me now?

Posted 23 January 2013 - 03:26

In the screenshot I didn't see where the SSN/SIC number was mentioned or blocked out, just a IP and City.

And curious minds want to know what the RCMP used to "check" the computer. Malwarebytes (pro or free version)?

#23 Obi-Wan Kenobi

Obi-Wan Kenobi

    "You were the chosen one!"

  • Joined: 11-November 02
  • Location: West-Central Texas

Posted 23 January 2013 - 03:26

I'm sure no porn was involved...{Rolls eyes}

Exactly. Every time I've seen this infection, it's never had anything to do with porn. </s> :rolleyes:

#24 OP Titoist

Titoist

    The Socialistician

  • Joined: 15-October 06
  • Location: Banff, Alberta
  • OS: OSX, iOS 7.1
  • Phone: iPhone 5S (32GB) Space Grey

Posted 23 January 2013 - 03:26

TA DA.... They posted it, and stated to call police once you receive it. http://www.rcmp-grc....areware-eng.htm

#25 vetneufuse

neufuse

    Neowinian Senior

  • Tech Issues Solved: 1
  • Joined: 16-February 04

Posted 23 January 2013 - 03:28

i highly doubt he got this from the google homepage btw


why do you highly doubt it? I saw someone at work get the FBI scam one from a google image search, after clicking on the image it went right to that via an exploit (we think it was a java exploit)

I got hit with something similar on Houzz.com, and that is not a malware site, it's a pretty large house design site...

#26 OP Titoist

Titoist

    The Socialistician

  • Joined: 15-October 06
  • Location: Banff, Alberta
  • OS: OSX, iOS 7.1
  • Phone: iPhone 5S (32GB) Space Grey

Posted 23 January 2013 - 03:28

In the screenshot I didn't see where the SSN/SIC number was mentioned or blocked out, just a IP and City.

And curious minds want to know what the RCMP used to "check" the computer. Malwarebytes (pro or free version)?


More info was at the bottom, including how much needed to be paid, etc. I did not include it.

#27 Obi-Wan Kenobi

Obi-Wan Kenobi

    "You were the chosen one!"

  • Joined: 11-November 02
  • Location: West-Central Texas

Posted 23 January 2013 - 03:31

In the screenshot I didn't see where the SSN/SIC number was mentioned or blocked out, just a IP and City.

And curious minds want to know what the RCMP used to "check" the computer. Malwarebytes (pro or free version)?

I'd like to know the name of this supposed "dos" program, considering Windows hasn't used "dos" since....forever ago.

why do you highly doubt it? I saw someone at work get the FBI scam one from a google image search, after clicking on the image it went right to that via an exploit (we think it was a java exploit)

I got hit with something similar on Houzz.com, and that is not a malware site, it's a pretty large house design site...


sounds like "drive by downloads", usually happens because a machine is not fully patched. ;)

#28 OP Titoist

Titoist

    The Socialistician

  • Joined: 15-October 06
  • Location: Banff, Alberta
  • OS: OSX, iOS 7.1
  • Phone: iPhone 5S (32GB) Space Grey

Posted 23 January 2013 - 03:32

I'd like to know the name of this supposed "dos" program, considering Windows hasn't used "dos" since....forever ago.



sounds like "drive by downloads", usually happens because a machine is not fully patched. ;)


Command prompt.

#29 fusi0n

fusi0n

    Don't call it a come back

  • Tech Issues Solved: 3
  • Joined: 08-July 04
  • OS: OSX 10.9\Windows 10\Ubuntu
  • Phone: LG G3

Posted 23 January 2013 - 03:32

At least he did not fall for it

#30 Obi-Wan Kenobi

Obi-Wan Kenobi

    "You were the chosen one!"

  • Joined: 11-November 02
  • Location: West-Central Texas

Posted 23 January 2013 - 03:32

TA-DA! http://botcrawl.com/...alware-removal/