leborim12 0 Posted March 7, 2023 Share Posted March 7, 2023 Recently a hacker got into my PC and is able to listen using my PC microphone. I have never disabled the Eset antivirus and did not install any software when Eset did say so. I think he was able to find backdoors using my IP, according to the research I have made so far. How can Eset antivirus in this case help me? Any other suggestions are appreciated. Link to comment Share on other sites More sharing options...
Most Valued Members cyberhash 197 Posted March 7, 2023 Most Valued Members Share Posted March 7, 2023 Has your PC really been compromised or are you acting on an email that someone has sent you saying you have been hacked and demanding money ? Posting more information here will be helpful , like what the hacker is doing or is able to do with your PC. Screenshots and try running scans with other products and see what (and if) they discover anything. Something like malwarebytes free would be a good starting point . Link to comment Share on other sites More sharing options...
itman 1,751 Posted March 7, 2023 Share Posted March 7, 2023 (edited) There is a microphone malware called BugDrop: https://www.forbes.com/sites/leemathews/2017/02/21/malware-that-eavesdrops-via-computer-microphones-is-stealing-hundreds-of-gigs-of-data/?sh=62d0a3bf257a . First, advanced threat actors used it against high valued targets in the past. I haven't hear of it being used to target individual users. Also, the attack dates to 2017 and I would think Eset would have a signature detection for it by now. If you don't use your PC microphone for anything, it can be disabled: Quote To disable your microphone on Windows, follow these step-by-step instructions: 1. Open the Settings app. 2. Select System from the menu. 3. Click on Sound. 4. Scroll down to the Input section. 5. Click on Device Properties. 6. Mark the checkbox next to Disable. Or, only enable the microphone when needed and disable it afterwards. -EDIT- Here's an article with more details on BugDrop:https://asamborski.github.io/cs558_s17_blog/2017/03/30/bugdrop.html . It was originally deployed via malicious Word macro from an e-mail attachment. With Microsoft now disabling macros, it may well be that the malware has been modified to use Cobalt Strike instead. Edited March 7, 2023 by itman Link to comment Share on other sites More sharing options...
leborim12 0 Posted March 8, 2023 Author Share Posted March 8, 2023 (edited) I think I got hacked in chats. He is able to track my online activity. Sometimes he uses in chats the name of the wifi that are near me or phone names that are connected in my wifi netwrok. Knows my name also. I tried malawarebytes premium and did not detect anything. Also, because on internet there is a lot of info, I would appreciate if you can tell a way to find any backdoors on my PC or any other solution. Edited March 8, 2023 by leborim12 Link to comment Share on other sites More sharing options...
Most Valued Members Nightowl 206 Posted March 8, 2023 Most Valued Members Share Posted March 8, 2023 17 minutes ago, leborim12 said: I think I got hacked in chats. He is able to track my online activity. Sometimes he uses in chats the name of the wifi that are near me or phone names that are connected in my wifi netwrok. Knows my name also. I tried malawarebytes premium and did not detect anything. Also, because on internet there is a lot of info, I would appreciate if you can tell a way to find any backdoors on my PC or any other solution. Try to install ESET Smart Security or ESET Internet Security - Run it as a trial for 30 days , after that you will have to buy a license to continue using it. - Run a deep scan in your system - Update your router to latest firmware available by manufacturers - Reset your router admin password , Reset your WIFI password If your router is no longer maintained and updated by the manufacturers , I highly recommend getting one that is supported , your Internet Service Provider can provide you one if you don't want to bother yourself getting one from a shop. Link to comment Share on other sites More sharing options...
itman 1,751 Posted March 9, 2023 Share Posted March 9, 2023 7 hours ago, leborim12 said: Sometimes he uses in chats the name of the wifi that are near me or phone names that are connected in my wifi netwrok. Knows my name also. As noted previously, both Eset Internet and Smart Premium Security have network protection and will warn you about connecting using an insecure Wi-Fi connection. Otherwise, check your router/gateway and verify that the Wi-Fi settings are using preferably, WPA3, or WPA2 encryption. Link to comment Share on other sites More sharing options...
Recommended Posts