[Closed] My computer is infected

I had them on for nearly an hour the other day while they tried to "fix" a clean copy of Windows 8 in a VM. Got bored in the end. It was interesting to watch their "specialist" try to download most of the contents of the machine while the woman tried to keep me distracted by trying various remote control web sites that didn't work!

this is fun, they really are knobs

Just told them I have a big black box....although they did ask if I had a laptop or a desktop, I described a big black box

25 minutes

"oh, wait, that's the Xbox."

Do you need a poo? Even if you don't, take the phone in to the bog and have (or pretend to) a really noisy poo 🙂

Then, do the old "hang on, there's someone at the door" trick and put the phone down - see how long they hold on for!

30 minutes, he has gone for help 😀

What are they doing all this time?

No idea, I have them on hold at the moment, 45 minutes

Do you just have to go to some funny website and then they raid your computer for a while?

What are they doing all this time?

Playing you at your own game by the sound of it.

50 minutes then I got bored 😆 they paid for the call, lovely

molgrips - Member

Playing you at your own game by the sound of it.

Planting some very nasty spywares and creating back door to breach your system later on ...

Do you just have to go to some funny website and then they raid your computer for a while?

Yep, all depends if you actually go to the websites or if you keep feeding them error messages, the more error messages you feed them the more they get annoyed and confused 😆

Do you just have to go to some funny website and then they raid your computer for a while?

Basically yes. If you let them, the basic process seems to be that they get you to download some remote admin software and give their "specialist" admin rights to your PC. The person on the phone then tries to get you to use one of many free remote control web sites so that she can "show you what's wrong". Meanwhile the tech in the background is raiding your machine, on mine they started with a memory dump, downloaded the system logs and various system files, went through the installed software and were in the process of downloading the user files when I cut them off.

I get the impression that the call centre part doesn't know what's going on and really thinks they're helping you. It's the people in the background that are doing the really dodgy stuff.

ah - understand now. What were you using to watch what they were actually up to? Presumably they can see whatever processes you are running

creating back door to breach your system later on ...

What were you using to watch what they were actually up to?

The remote admin software they used on mine was fairly verbose; they're relying on you not watching it and generally not knowing much about it. They try to get you to keep a browser window open to hide what they're doing but if you keep closing that (they keep trying to re-open it!) it's fairly obvious what's going on. It's all very primitive with no real stealth; they're not after the knowledgeable user, it's more aimed at grannies etc.

Thinking about this,

Once they've connected, it should be possible to run netstat to get their IP address from the connected port used by TeamViewer. You could then report them to their ISP.

Hmm.

Seems Teamviewer uses port 80. You change that with a registry hack though.

I might have a go next time I get one.

ok. Now I get why they are so happy with people messing them around for hours.

leffeboy - Member

ok. Now I get why they are so happy with people messing them around for hours.

The longer they stay connected with you the more information they can extract from you system and with far better chance of understanding your security system.

Best thing to do is chat to them without your computer ...

Or blast a rape alarm down the phone.

They probably have volume filters for that these days.

1 hour 7min is my best time so far... 😉

[url= http://singletrackworld.com/forum/topic/on-the-phone-windows-have-found-a-virus-on-my-computer-lol ]http://singletrackworld.com/forum/topic/on-the-phone-windows-have-found-a-virus-on-my-computer-lol[/url]

[i]My computer is infected[/i]

So you thought you'd log on the the World Wide Web and in particular STW?

*Quickly logs off*

So you thought you'd log on the the World Wide Web and in particular STW?

*Quickly logs off*

Are you for real?? 🙄

My computer is infected, was the opening line from the Indian call centre, telling me my PC was infected, so whilst they asked me to do various tasks I actually sat twiddling my thumbs throwing errors and stuff back at them, without actually touching my PC, although with me being Microsoft certified and Cisco certified I could have some fun with them and kept them on for 50 minutes whilst they achieved nothing, they never had access to my PC

I knew someone from here had kept them going for over an hour, well done Ski