stuff keeps getting hacked

[Armakar]

Today, I recieved emails saying someone was trying to change my Ubisoft password. They then went on my account and activated google authentication so I couldn't log in, so I contacted Ubisoft and changed my password.

 

Afaik, there's absolutley no way they have acsess to my email because I use an authenticator (which is why my password wasn't changed)

However, they have just in the last 5 minutes sent another password reset request. I quickly activated an authenticator on my Ubisoft account, so they can't login to in.

 

What concerns me is this : This guy was able to activate two step authentication on my Ubisoft, which means he is logged into my account. He got my password within an hour of me changing it (couldn't be bruteforce, it's too strong of a password for that )

 

So, oviously I suspect a keylogger or RAT. I ran Malwarebytes and it found 4 PUP's, but PUP's afaik don't leak passwords like that.  I have found nothing from scanning with Avast, and there's nothing suspicious running in task manager.

 

What should I do? It's clear there's a RAT or keylogger somewhere, but I can't find shit. All my accounts are safe because I have a fingerprint authenticator and i'll get a notification when someone tries to sign into my emails, so this guy can carry on logging into my accounts but he'll never get my email. I juts don't like having my passwords leaked like this.

 

Any ideas?

[BleakMaker]

Sorry I have no idea.

But why would he/she do all this just for a stupid Ubisoft account?

Hope you can find the problem wish you best of luck!

[RAM555789]

Honestly if your anti-virus software cant find it, it could be some kind of day zero attack which does not have a patch, or a signature base in your anti-virus yet. It could be that this guy may be also hacking in ubisoft to get your password. If you really think it maleware though backup your data and perform a factory reset.

[Verrierr]

Full force solution would be a clean installation of Windows.

[Armakar]

Just now, Mark17 said:

Sorry I have no idea.

But why would he/she do all this just for a stupid Ubisoft account?

Hope you can find the problem wish you best of luck!

I have no idea. To be honest, I've been victim of alot of this bullshit, and it's not normal. It's someone who really has a spite for me, because all my accounts keep getting leaked.

Most recently, my league account with about £1000 of skins on it was permabanned 6 months ago, and when I asked why. it's because someone was making posts on the league of legends forums asking who wants to buy the account.

I DOX'd myself and found several notepad and pastebin links to several accounts of mine like Minecraft, League, emails, now my Ubisoft, etc...  I've checked both my computers and found nothing, i've reinstalled windows and i've had a new PC built in October last year, aswell as a new laptop within this month, and yet my stuff is still hacked..

 

Whoever this guy is does it well, and often without me realising. I have no idea how he does it so quietly. He was on my league account for months before I realised - no emails saying he logged in, no password reset requests or warnings from Riot, etc..

[Armakar]

Just now, Verrierr said:

Full force solution would be a clean installation of Windows.

 

I've had issues like this before which were not solved by a full harddrive wipe. These issues even persisted on new computers, I believe it's the same guy coming after my accounts and I have no idea why. Just looking for ways he's getting to me. I haven't downloaded anything bad at all, so it's pretty confusing how he/she is doing this.

[Verrierr]

This guy could be hooked to your LAN.

[knightslugger]

2 minutes ago, Armakar said:

I DOX'd myself

i dont know what this is.

[Jade]

6 minutes ago, knightslugger said:

i dont know what this is.

Don't need to, but the gist is using someone's online identity to find information (incl name/address/family/etc) about their real life.

 

Not sure the solution to your problem, OP, but PUPs is a general term for any potentially unwanted programs -- includes spyware (keyloggers, RATs), so it's absolutely possible those were the case. Also start using a password manager & enable 2FA before you need it.

[Armakar]

13 minutes ago, Verrierr said:

This guy could be hooked to your LAN.

Not possible. Ubisoft told me the guy is outside of the UK, but wouldn't give me his IP.

[Verrierr]

Just now, Armakar said:

Not possible. Ubisoft told me the guy is outside of the UK, but wouldn't give me his IP.

He could have logged into your acc using briged connection so it would appear he's out of UK at the time.

[Armakar]

4 minutes ago, Jade said:

Don't need to, but the gist is using someone's online identity to find information (incl name/address/family/etc) about their real life.

 

Not sure the solution to your problem, OP, but PUPs is a general term for any potentially unwanted programs -- includes spyware (keyloggers, RATs), so it's absolutely possible those were the case. Also start using a password manager & enable 2FA before you need it.

I thought PUP's were just crap like Adware and weather program garbage.

Malwarebytes found 4 PUPs in my Appdata, then I removed them and it found 2 more in my Chrome appdata. I deleted chrome, ran 5 scans with Malwarebytes to check for reinstallers, and i'm now running a full system scan with Avast to  double-check for reinstallers. I'll then install chrome again and hope for the best..

Any other reccomendations?

[mrzoltowski]

26 minutes ago, Armakar said:

Today, I recieved emails saying someone was trying to change my Ubisoft password. They then went on my account and activated google authentication so I couldn't log in, so I contacted Ubisoft and changed my password.

 

Afaik, there's absolutley no way they have acsess to my email because I use an authenticator (which is why my password wasn't changed)

However, they have just in the last 5 minutes sent another password reset request. I quickly activated an authenticator on my Ubisoft account, so they can't login to in.

 

What concerns me is this : This guy was able to activate two step authentication on my Ubisoft, which means he is logged into my account. He got my password within an hour of me changing it (couldn't be bruteforce, it's too strong of a password for that )

 

So, oviously I suspect a keylogger or RAT. I ran Malwarebytes and it found 4 PUP's, but PUP's afaik don't leak passwords like that.  I have found nothing from scanning with Avast, and there's nothing suspicious running in task manager.

 

What should I do? It's clear there's a RAT or keylogger somewhere, but I can't find shit. All my accounts are safe because I have a fingerprint authenticator and i'll get a notification when someone tries to sign into my emails, so this guy can carry on logging into my accounts but he'll never get my email. I juts don't like having my passwords leaked like this.

 

Any ideas?

Can you not change your password using you mobile phone? That would rule out anything lurking on your PC

[Armakar]

2 minutes ago, mrzoltowski said:

Can you not change your password using you mobile phone? That would rule out anything lurking on your PC

I could, yeah, but seems pointless because sooner or later i'm going to log into that account, so if it's a rat or keylogger encryption isn't a problem for them and they will see the password anyway. Avast and Malwarebytes have found nothing since I deleted chrome, so it could have just been a dumbass PUP embedded in Chrome.