01-18-2015, 01:29 PM
Hello all,
Bit of a situation here...I'm about 95% sure someone installed a RAT onto my laptop. I've done all the scans out there, including a few of the manual techniques off YouTube. My best guess is someone from my Steam friends list as I generally practice the use of common sense(
) when web browsing. Steam was actually my first clue, when I noticed during my CS:GO games I would almost always have "1 viewer", including a couple times I did a personal server. Since then I've noticed little system tweaks here and there that I know were not my doing. Ill admit the lad isn't malicious (knock wood) which is nice, but I do think he has me chained up to his train of hacked PCs, used for DDOS or some other sort.
I'm assuming he's somewhere in my registry to make coming and going swift, as well as some sort of restore function. I ran Tweakings.com Windows Firewall repair, and was successful for all of 5-7 minutes until it was shifted back to "his" version, which allows separate VPN clients to be run as well as specific guidelines for my network ports. Can't forget constantly being denied access to multiple different file locations(usually TrustedInstaller), even though I'm running the admin account.
Also I'll point out this laptop use to belong to my roommate months ago, I've done a full system reset since then but figured it was worth the shout? Maybe he's on the HDD?
Thanks and hope to hear back soon
P.S. Britec-can't thank you enough for the YouTube videos!!
-Kompany
Bit of a situation here...I'm about 95% sure someone installed a RAT onto my laptop. I've done all the scans out there, including a few of the manual techniques off YouTube. My best guess is someone from my Steam friends list as I generally practice the use of common sense(
) when web browsing. Steam was actually my first clue, when I noticed during my CS:GO games I would almost always have "1 viewer", including a couple times I did a personal server. Since then I've noticed little system tweaks here and there that I know were not my doing. Ill admit the lad isn't malicious (knock wood) which is nice, but I do think he has me chained up to his train of hacked PCs, used for DDOS or some other sort. I'm assuming he's somewhere in my registry to make coming and going swift, as well as some sort of restore function. I ran Tweakings.com Windows Firewall repair, and was successful for all of 5-7 minutes until it was shifted back to "his" version, which allows separate VPN clients to be run as well as specific guidelines for my network ports. Can't forget constantly being denied access to multiple different file locations(usually TrustedInstaller), even though I'm running the admin account.
Also I'll point out this laptop use to belong to my roommate months ago, I've done a full system reset since then but figured it was worth the shout? Maybe he's on the HDD?
Thanks and hope to hear back soon
P.S. Britec-can't thank you enough for the YouTube videos!!
-Kompany
![[Image: FRST.png]](https://briteccomputers.co.uk/forum/tutorials/FRST.png)
![[Image: RunAsAdmin.jpg]](https://briteccomputers.co.uk/forum/tutorials/RunAsAdmin.jpg)