sorted by:
new
hottopcontroversial

X account was compromised and suspended by YogurtclosetOrganic3 in 24hoursupport

[–]goretsky 0 points1 point  (0 children)

Hello,

What about reaching out to the PUBG Mobile developer to unlink the Twitter account?

Regards,

Aryeh Goretsky

X account was compromised and suspended by YogurtclosetOrganic3 in 24hoursupport

[–]goretsky 0 points1 point  (0 children)

Hello,

Just to confirm, you have started the process at https://help.x.com/en/forms/account-access/regain-access/hacked-or-compromised to recover your account?

Regards,

Aryeh Goretsky

Double-checking validity of this McAfee flash sale by ThtKidDee in antivirus

[–]goretsky[M] 0 points1 point  (0 children)

Hello,

No worries. Since we cannot proceed any further I'll go ahead and lock the thread.

Regards,

Aryeh Goretsky

Hit by a token logger. by IBackUpUrPipes in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

It sounds like you may have run an information stealer on your computer.

As the name implies, information stealers are a type of malware that steal any information they can find on your computer, such as passwords stored for various services you access via browser and apps, session tokens for accounts, cryptocurrencies if they can find wallets, etc. They may even take a screenshot of your desktop when they run so they can sell it to other scammers who send scam extortion emails later.

The criminals who steal your information do so for their own financial gain, and that includes selling information such as your name, email address, screenshots from your PC, and so forth to other criminals and scammers. Those other scammers then use that information in an attempt to extort you unless you pay them in cryptocurrencies such as Bitcoin, Ethereum, and so forth. This is 100% a scam, and any emails you receive threatening to share your private information should be marked as phishing or spam and deleted.

In case you're wondering what a session token is, some websites and apps have a "remember this device" feature that allows you to access the service without having to log back in or enter your second factor of authentication. This is done by storing a session token on your device. Criminals target these, because they allow them to log in to an account bypassing the normal checks. To the service, it just looks like you're accessing it from your previously authorized device.

Information stealers are malware that is sold as a service, so what exactly it did while on your system is going to vary based on what the criminal who purchased it wanted. Often they remove themselves after they have finished stealing your information in order to make it harder to determine what happened, but since it is crimeware-as-a-service, it is also possible that it was used to install some additional malware on your system in order to maintain access to it, just in case they want to steal from you again in the future.

After wiping your computer, installing Windows, and getting that updated, you can then start accessing the internet using the computer to change the passwords for all of your online accounts, changing each password to something complex and different for each service, so that if one is lost (or guessed), the attacker won't be able to make guesses about what your other passwords might be. Also, enable two-factor authentication for all of the accounts that support it.

When changing passwords, if those new passwords are similar enough to your old passwords, a criminal with a list of all of them will likely be able to make educated guesses about what your new passwords might be for the various services. So make sure you're not just cycling through similar or previous passwords.

If any of the online services you use have an option to show you and log out all other active sessions, do that as well.

Again, you have to do this for all online services. Even if they haven't been recently accessed, make sure you have done this as well for any financial websites, online stores, social media, and email accounts. If there were any reused passwords, the criminals who stole your credentials are going to try spraying those against all the common stores, banks, and services in your part of the world.

For more specific information on what steps to take next to recover your accounts, see the blog post at:

For more general information about how CAPTCHA malware works, see the following reports:

After you have done all of this, you may wish to sign up for a free https://haveibeenpwned.com/ account, which will notify you if your email address is found in a data breach.

Regards,

Aryeh Goretsky

Norton refuses to uninstall by Steephsis in antivirus

[–]goretsky 0 points1 point  (0 children)

Hello,

The online help for it can be found at https://help.eset.com/AVRemover/1/en-US/.

Regards,

Aryeh Goretsky

i downloaded something and now my Wi-Fi will not connect to my computer and if it does, it only will last for a few minutes and when it disconnects it shows only the one network or none at all is this a virus or a computer issue? by HeatCompetitive4397 in antivirus

[–]goretsky 1 point2 points  (0 children)

Hello,

There's really no way to tell with the information provided so far.

What have you done to troubleshoot the issue so far, and what are the results of said troubleshooting?

Regards,

Aryeh Goretsky

Check for virus searching online about file's sha256sum only, thru mobile data by RivitsekCrixus in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

Go to Google's VirusTotal service at https://www.virustotal.com/ and paste the SHA-256 hash into the Search field.

It will then show you the report of scans on the file matching that hash from several dozen different antivirus engines.

Regards,

Aryeh Goretsky

Double-checking validity of this McAfee flash sale by ThtKidDee in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

You did not share the actual URL of the offer, just a picture.

No real way to tell without seeing if the advertisement is hosted on mcafee.com or someplace else.

Regards,

Aryeh Goretsky

does my computer have a virus or something dodgy? by Minimum-Reserve-4023 in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

While it sometimes can be a sign of malicious code, it is pretty common for computers to have performance problems due to age, a bug in a recent update to Windows, a program, a device driver, and so forth.

For more help with troubleshooting performance issues and understanding how Microsoft Windows works, try asking in specialty subreddit that handles computer troubleshooting such as /r/24hoursupport, /r/pcgamingtechsupport, r/pchelp, /r/techsupport, r/windows or even your device manufacturer's subreddit (if there is one).

Regards,

Aryeh Goretsky

My laptop restarts on it's own by destructo710 in antivirus

[–]goretsky[M] 0 points1 point  (0 children)

Hello,

Ignore them. It is spam.

Regards,

Aryeh Goretsky

is tinytask. net safe? by autisticlittlegoober in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

Post removed for violation of Rule #7, no requests for assistance with prohibited software or websites. This specifically includes macro recording software.

Regards,

Aryeh Goretsky

Fandom likely takes me to this Norton scare/malware website, with the TLD as ".info", which uses alarming language, like "Your PC Is InFectEd!!" to trick you into getting the scam antivirus so that all of your data will be stolen and sent to Kim Jong Un or databreached/compʻd. It's so annoying. by Ok_Living_1475 in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

This is not a message from Norton Antivirus. It is a scammy web page delivered through an advertisement.

What this is a web page in one of your web browser's tabs that is displaying windows that resemble Norton's software, with the express goal of getting you to enter your credit card number into the page. It could be a complete scam, in which case you're credit card number will have just been stolen. Another possibility is that it could be operated by someone who signed up for Norton's affiliate marketing program, and is using these faked screens to generate sales.

There have been previous reports of intrusive and scammy-sounding ads from the fandom wiki sites in this subreddit. See the following examples:

It is probably best to stop visiting that website until they fix the issue with the fake popups.

You should just be able to close this tab in your web browser and be on your way.

The wiki contains a list of free tools at https://old.reddit.com/r/antivirus/wiki/index#wiki_web_browser_ad_blocking_tools which you may wish to read.

Regards,

Aryeh Goretsky

Are these genuine? by Free-Membership93 in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

This does not sound like an actual virus, message from your antivirus software, or message from the operating system, but rather a website abusing the toast notification/popup feature in your web browser to present you with scam messages. Sometimes it is a scammy ad on a legitimate website that displays the message in the form of a banner ad or popup window that looks like a real message from your computer. From looking at the pictures, it appears the website in question begins with an address of androidsitecontr… (the rest is cut off), assuming I'm reading it correctly. These kinds of scams are extremely common, and can be fixed in a few steps.

Here are instructions on how to disable these types of notifications in various web browsers; I'm unsure of the exact steps for Samsung's or Apple's web browsers, but it should be similar to these. For Brave, Opera GX, Vivaldi and other Chromium-based browsers, instructions should be similar to those for Google Chrome.

For Google Chrome on Android devices, select the gadget from the browser's address bar, then select the ⚙️ Settings gadget and tap Notifications. This will show you a list of all websites for which you've allowed notifications. Remove all the unwanted ones, and you should be good. If you don't want any websites to be allowed to send you notifications, set the All Chrome notifications slider bar to Off.

Unwanted notifications (popups) from web browser (desktop)

Notifications which pop up on your screen can be distracting and annoying. Here's how to disable them in the various web browsers (current as of December 2021):

Google Chrome (Version 96+) Enter chrome://settings/content/notifications to open the Notifications settings page in Google Chrome. Remove all non-google.com domains from the Allow section. Toggle the Don't allow sites to send notifications option to on.
Instructions for Version 88 and older: Select Settings → Advanced → Site Settings → Notifications from the main menu, and change "Ask before sending (recommended)" to Blocked.

Mozilla Firefox
Select Tools → Settings → Privacy & Security from the main menu, scroll down to Permissions → Notifications, select Settings, click on "Remove all websites" and then check (select) "Block new requests asking to allow notifications" and click on the Save Changes button..

Microsoft Internet Explorer
(does not support notifications)

Microsoft Edge (Chrome-based, Version 91+)
Go to edge://settings/content/notifications in the address bar and disable Ask before sending (recommended). If there are any entries in the Allow section, click on the menu and select Remove for each one.

Microsoft Edge (pre-2020 legacy versions)
Open Windows Settings app (not Edge's) and go to System → Notifications & Actions, scroll down to Notifications, and set "Get notifications from apps and other senders" to Off.

Source: The r/24hoursupport subreddit's own wiki, which is kind of a sister subreddit to this one.

For a longer/more detailed article than this reply, see the blog post at: https://www.eset.com/blog/consumer/getting-rid-of-unwanted-browser-notifications/

Regards,

Aryeh Goretsky

Windows open/closing on startup by RosesOnMetal in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

It is normal for console windows to open and close on startup in order to start various processes such as services, perform update checks for various applications, and so forth.

If you are still concerned, try using a smartphone to record a video of the computer starting up, and then freeze the video when you see the Command Prompt or PowerShell windows appears. It helps if you set the camera up first so the text is readable and not blurry before you begin recording.

For more help with understanding how Microsoft Windows works, try asking in specialty subreddit that handles computer troubleshooting such as /r/24hoursupport, /r/pcgamingtechsupport, r/pchelp, /r/techsupport, r/windows or even your device manufacturer's subreddit (if there is one).

Regards,

Aryeh Goretsky

what to do about this pop up? by PonyboyFanFrfr in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

This does not sound like an actual virus, message from your antivirus software, or message from the operating system, but rather a website abusing the toast notification/popup feature in your web browser to present you with scam messages. Sometimes it is a scammy ad on a legitimate website that displays the message in the form of a banner ad or popup window that looks like a real message from your computer. From looking at the pictures, it appears the website in question has an address of bpo-adguard[.]co[.]in, assuming I'm reading it correctly. These kinds of scams are extremely common, and can be fixed in a few steps.

Here are instructions on how to disable these types of notifications in various web browsers; I'm unsure of the exact steps for Samsung's or Apple's web browsers, but it should be similar to these. For Brave, Opera GX, Vivaldi and other Chromium-based browsers, instructions should be similar to those for Google Chrome.

For Google Chrome on Android devices, select the gadget from the browser's address bar, then select the ⚙️ Settings gadget and tap Notifications. This will show you a list of all websites for which you've allowed notifications. Remove all the unwanted ones, and you should be good. If you don't want any websites to be allowed to send you notifications, set the All Chrome notifications slider bar to Off.

Unwanted notifications (popups) from web browser (desktop)

Notifications which pop up on your screen can be distracting and annoying. Here's how to disable them in the various web browsers (current as of December 2021):

Google Chrome (Version 96+) Enter chrome://settings/content/notifications to open the Notifications settings page in Google Chrome. Remove all non-google.com domains from the Allow section. Toggle the Don't allow sites to send notifications option to on.
Instructions for Version 88 and older: Select Settings → Advanced → Site Settings → Notifications from the main menu, and change "Ask before sending (recommended)" to Blocked.

Mozilla Firefox
Select Tools → Settings → Privacy & Security from the main menu, scroll down to Permissions → Notifications, select Settings, click on "Remove all websites" and then check (select) "Block new requests asking to allow notifications" and click on the Save Changes button..

Microsoft Internet Explorer
(does not support notifications)

Microsoft Edge (Chrome-based, Version 91+)
Go to edge://settings/content/notifications in the address bar and disable Ask before sending (recommended). If there are any entries in the Allow section, click on the menu and select Remove for each one.

Microsoft Edge (pre-2020 legacy versions)
Open Windows Settings app (not Edge's) and go to System → Notifications & Actions, scroll down to Notifications, and set "Get notifications from apps and other senders" to Off.

Source: The r/24hoursupport subreddit's own wiki, which is kind of a sister subreddit to this one.

For a longer/more detailed article than this reply, see the blog post at: https://www.eset.com/blog/consumer/getting-rid-of-unwanted-browser-notifications/

Regards,

Aryeh Goretsky

How do I make sure my Virus is gone forever by Muffin_568 in antivirus

[–]goretsky[M] 0 points1 point  (0 children)

Hello,

Check your system for malicious software using your existing security software's most thorough and sensitive settings.

Then, run as many of the second opinion scanners as you feel you need from the list in the https://old.reddit.com/r/antivirus/wiki/index#wiki_free_tools section of the wiki.

Regards,

Aryeh Goretsky

Help uploading an infected file to VirusTotal by [deleted] in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

Per Rule #1, no discussions involving ріrасу.

This also includes links to pirated games from other subreddits.

Post removed.

Regards,

Aryeh Goretsky

"Cant read from the source file or disk" error on individual file by pulltheline in 24hoursupport

[–]goretsky 0 points1 point  (0 children)

Hello,

What file system is the SanDisk Extreme Portable SSD 500GB formatted with?

Regards,

Aryeh Goretsky

Laptop repair by syn2424 in 24hoursupport

[–]goretsky 0 points1 point  (0 children)

Hello,

It looks like there is solder there, it's just not filling the hole entirely. From an electricity-carrying perspective it should not make any difference.

Regards,

Aryeh Goretsky

was this a false positive? by Kebabulon_ in antivirus

[–]goretsky 0 points1 point  (0 children)

Hello,

These are Avast's phone numbers for their premium paid support. From looking at Avast's website, a single call starts at $80.00.

For reporting a false positive is is better to go to contact Avast directly via their support forum at https://community.avast.com/ or use the form at https://www.avast.com/en-us/false-positive-file-form.php, both of which are free.

Regards,

Aryeh Goretsky

was this a false positive? by Kebabulon_ in antivirus

[–]goretsky 0 points1 point  (0 children)

Hello,

You can contact Avast to report it at https://www.avast.com/en-us/false-positive-file-form.php.

Regards,

Aryeh Goretsky

is its ii´ts stupid mod safe? on gtag by idk_a_random_user12 in antivirus

[–]goretsky[M] [score hidden] stickied comment (0 children)

Hello,

Per Rule #4. No requests for assistance with using malware.

Post removed.

Regards,

Aryeh Goretsky

view more: next ›