Hacked again, Lesson learned and funds are safu

avatar

image.png

Have you ever had one of those days that just feels like the universe is after you? Yesterday, I just wanted to perform a very simple task and this somehow snowballed into my laptop being formatted.

Yesterday, while trying to test how to convert HBD into pHBD, I noticed that my metamask had a glitch. I talked about it in the Leofinance discord and it turned out there was a keylogger/virus in my system.

Due to the virus, my metamask was compromised but my assets were still safu because I use a ledger wallet. The virus basically affected the periphery of my metamask by converting my wallet address I copy from the extension into this one in the bracket[0xDB3D1b0813316f87ca311FFA9eD9aBE089572E6c]..

Due to this oversight, I converted 20 HBD but of course, I didn't receive it in the right wallet. I originally didn't notice the issue.

Since it is a virus, I ran a scan using Malwarebytes antivirus that was recommended for me after the first time I got hacked. I was told that this is a hardcore antivirus that doesn't take prisoners.

So, I ran the scan and just as expected, there were 9 trojans doing nasty shit on my computer. This time, I know exactly where the trojans came from and I believe it is also the source of the hack that I experienced in the past.

The story starts when I wanted to find a backdoor route to activate Microsoft office for the computers at home. For what it is worth, I was only considering this route because Microsoft was rejecting our attempt to pay with our debit card.

Anyway, I visited one KMSAuto Net site where I usually download a tool that I use to hack windows and office packages. It is a tool that I've used many times in the past.

The problem is that this time, the application didn't work but it was installed. Fast forward to a couple of days later and I noticed that weirdness happening to my metamask.

The scan

So yesterday, I ran the virus scan, immediately after publishing my post in the morning. I found 9 trojans and stuff in my system.

Malwarebytes turned out to be a little bit too brutal for my computer because while killing the viruses, it also killed something in my windows that prevented it from loading completely.

To be specific, the taskbar refused to load and I also couldn't perform some simple windows features like deleting, uninstalling a file and stuff like that.

I initially thought it was because of the antivirus, so I booted in safe mode and uninstalled the antivirus but that didn't fix the problem.

I expended my limited computer knowledge, tweaking settings in the boot logger and whatnot but all that failed me. I decided I was going to wipe the computer clean by restoring factory settings, after backing up my files.

While going back to factory settings, I then experienced one last glitch that I couldn't overcome, which was something about a loandepot email that I obviously don't have because it is for Americans.

So I took my laptop to a computer shop, I then opened it, removed the hard disk and formatted it with a different laptop. It was one of the most stressful 5-6 hours I've experienced this year.

I fought really hard to ensure I won't have to format the system because when it comes to my devices, I really hate change. I only ever change whenever I absolutely have to, and that's exclusively for when I'm upgrading.

Flashback

When I noticed the virus in my system, I flashed back to how I felt when I lost all those funds. I panicked inwardly but believed that my hardware wallet kept me safu.

In any case, I was still really concerned that I might be at risk. I feared the worst but I survived, and now I can tell the story.

I had backups that weren't on y system and also had my seed phrase for all my metamask accounts. It was a little bit of a hassle setting it all back but I achieved it in the end.

At the end of the day, I learned where or how my previous wallet might have been compromised from. Needless to say that I'm never going to download any hacked application or visit any sketchy website.

Posted Using LeoFinance Beta



0
0
0.000
44 comments
avatar

Get WPS Office. Its free and can do what Microsoft office can do.

0
0
0.000
avatar

Does it work on laptop?

0
0
0.000
avatar

Ye. I use it for everyday things, like word or budgeting

0
0
0.000
avatar

I'm really glad this was not bad news🙏

0
0
0.000
avatar

Totally. So glad I got a hardware wallet.

0
0
0.000
avatar

I remember mentioning it must be a keylogger. We have a very bad habit of downloading programs from unknown sources. Now that you are making some good money from crypto it doesn't hurt paying for the programs just to avoid these unfortunate circumstances.

0
0
0.000
avatar

You said it my man. If I can't pay for the shit, I ain't using it

0
0
0.000
avatar

When the hacker becomes hacked :)... How's the ledger working, is it easy to use? I'm thinking of buying one myself as well

Posted using LeoFinance Mobile

0
0
0.000
avatar

You should get one. It is easy to use. Just minor setup in a few minutes and you're good to go

0
0
0.000
avatar

Tough luck but at the end of the day at least it was only $20 this time.

Judging by the block explorer you are also the first one victim. ETH wallet is empty and the Polygon address only holding your pHBD.

Stay safe out there and don't watch porn on the same laptop that you use for crypto.

Posted Using LeoFinance Beta

0
0
0.000
avatar

That's Socrates level wisdom right there

0
0
0.000
avatar

That is pretty ingenious the changing of the addresses , and way scarier than some haxorman type thing. Also goes to show Metamask is not the thing hacked it is merely the target your PC clipboard was the exploit. I never go look for the KMS site because as many fake tokens as there are there just as many fake KMS. I like the new one I got now though it works via the command-line and think it was part of the 2019 Microsoft. still does the classic re-arm for 180 days etc but does not get virus flagged much. I did one time have a issue with KMS also and yeah wiping was the only route, not even spyhunter could remove the root malware. Now though hmmm I don't really download stuff anymore and all my software is exploited now for years so I just use the whatever windows got lol anti-virus

Posted Using LeoFinance Beta

0
0
0.000
avatar

I don't know how to do that command line stuff. I think the one you're using is KMS pico, didn't figure it it out and gave up.

0
0
0.000
avatar

Dunno, think it the new KMs or a version of it but I like it, mainly need office because customers use the shit else I just use LibreOffice if need to but google docs etc do just fine, most opensource match any of the cracked ones so no real need for cracks anymore. !PIZZA

Posted Using LeoFinance Beta

0
0
0.000
avatar

I've had a ledger wallet for awhile now, I keep putting using it off. But I think after reading this I'll have to get it set up and working. Glad it didn't end up being too bad for you, and thanks for the motivation to get my ledger sorted haha

0
0
0.000
avatar

Lol yeah I think you should get to it asap. You can't be too careful around here 😄

0
0
0.000
avatar

I kid you not, if I notice glitches ill just assume I need a new laptop. Tfym??? I'm not done learning crypto shit now I have to get down into learning computer fixing shit just because I don't want to get rekt???

Posted Using LeoFinance Beta

0
0
0.000
avatar

It's more than a detective story, I'm sorry you had to go through it.

Posted Using LeoFinance Beta

0
0
0.000
avatar

Thanks mate. I think I've found out where the first hack came from

0
0
0.000
avatar

$20 down from $10k
Nice mitigation.

This is why I never mess with torrents or random .exe files anymore. Hardware wallet stronk.

0
0
0.000
avatar

Hardware wallet saved my ass man but I was very worried when I noticed it.

0
0
0.000
avatar

You made a great decision by getting a hard wallet. That's the way to go now. It's best to have a physical device to authenticate transactions. This is standard now in the cyber space

Posted Using LeoFinance Beta

0
0
0.000
avatar

I'm glad it wasn't so bad this time. I think digital security is going to become more and more important going forward. Thanks for sharing your experiences so we can all learn something from it.

Posted Using LeoFinance Beta

0
0
0.000
avatar

Torrent websites are a place where many talented hackers are uploading midified programs, some of them downloaded many many times, they look legit, but they are not. Some of them are not even detected by antivirus.

Posted using 1UP - Play2Earn & NFTs

0
0
0.000
avatar

What about just using Google Docs for everything?

You can set it up to allow offline editing too.


Also, when you had the trojan that changed your clipboard to someone else's address, could you see the change when you actually pasted?

But just didn't notice?

Posted Using LeoFinance Beta

0
0
0.000
avatar

curiously made me learn hacking at one time but now I can say keep to your last words and you are free that's it.
I can't take any chances again cause I know how sh**t works

Posted Using LeoFinance Beta

0
0
0.000
avatar

Thskks God your funds are safe. That was all inwas thinking as i was reading it.
It's not good to go back to square one.

Posted using LeoFinance Mobile

0
0
0.000
avatar

My heart was pounding at first because of the title of the post, but I read it and discovered it wasn't bad news; nonetheless, it is recommended that you take the necessary safeguards please

Posted Using LeoFinance Beta

0
0
0.000
avatar

Could have been a lot freaking worst!

0
0
0.000
avatar

Jeez! Glad your assets are Safu. It could have been worst if you didn't have them on a hard wallet. One of my fears so I am not tempted to download any programs on my PC other than the things I already have.

Posted Using LeoFinance Beta

0
0
0.000
avatar

Take care man. Don't get hacked too much. Your stake is our stake and our stake is your stake. ❤️

Posted Using LeoFinance Beta

0
0
0.000
avatar

wow, I understand you, sometimes my laptop goes crazy and I think it's a virus, it also happened to me a few days ago when I wanted to enter splinterlands but it asked me for a metamask address, thank goodness I warned about the danger of a pirate site.

And even if you download from safe sites, nowadays they are all flooded with hidden viruses, maybe from the lazaro group from north korea.

Posted Using LeoFinance Beta

0
0
0.000
avatar

It's a good thing you made the right and timely decisions to salvage the problem, it's good to have you back on track, and please stay safe out there.

Posted Using LeoFinance Beta

0
0
0.000