Solved

Business PC compromised and bank details taken and transfers attempted by persons unknown - bank req PC be cleaned.

Posted on 2014-10-30
3
114 Views
Last Modified: 2014-11-14
Hi,

The PC is used for online banking.
Bank called and said suspicious activity on account (conf by owners of account )and stopped all $ transfers until bug found / removed.

Ive ran Superanti Spy and Mbam

Any other aps to run?
Best anti-virus around at the moment?  (They had an anti virus ap)

As a matter of interest, wouldn't chrome be more secure than IE ?

On the way now to go onsite
0
Comment
Question by:feck1
3 Comments
 
LVL 7

Assisted Solution

by:Stampel
Stampel earned 167 total points
ID: 40413064
Chrome is very attentive on security and looks safer to me.
Have a look at http://tiptopsecurity.com/safest-web-browser-chrome-firefox-ie-opera-safari-comparison-chart/

You could use Lavasoft Ad Aware :
http://www.lavasoft.com/

The best antivirus to me among those i have tryed is Kaspersky :
http://www.kaspersky.com/
According internet it would be Symantec and Bitdefender

Considering your problem, i would format and reinstall from scratch and use this PC only for banking / not for surfing.

If you have a bit knowledge of it or if you wanna learn, use Linux instead of windows.
0
 
LVL 8

Assisted Solution

by:R_Edwards
R_Edwards earned 167 total points
ID: 40413072
Feck1,
     there are a few things you can try:
1. run antivirus and spyware from a bootable CD
2. run a root kit checker
3. if you have systernals suite available (free download) see what is running in the background, regmon, filemon, etc.
4. what is showing up in netstat, is there any odd processes, if so delete them

I prefer firefox and opera over chrome and IE, but that is a preference.

I do agree with Stampel, use this for banking only and not surfing, if you can.

I do hope this helps
-=Richard
0
 
LVL 95

Accepted Solution

by:
Lee W, MVP earned 166 total points
ID: 40413087
WIPE AND RELOAD.  Why wouldn't you?  No cleaning is going to be as effective.  And not just format - WIPE - DBAN disk wipe.  You really want to be safe, make sure there isn't some kind of BIOS hack, replace the PC.  This is BANKING information.  Is that not worth a few dollars to keep secure.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Envision that you are chipping away at another e-business site with a team of pundit developers and designers. Everything seems, by all accounts, to be going easily.
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now