NEED SOME HELP?

That's as may be but us old gits sometimes need these youngsters for their innate understanding of their world of technology in which we old farts (is that more acceptable?)only exist 'cos we gate crashed the party!😀

Moral of this story? Don't let tech whizz 20 somethings loose on your computer, or at least only in a guest account which prevents them from downloading anything!  🙂

HI Folks, update and the end of the nightmare!

It's been a fraught weekend, just waiting for a shed load of bad news but it has turned out OK.

Looking through my Browser history was a pain, trying to go back more than about 4 days and the dratted thing skips back to "today", you can never get it to allow you to see further back.

Eventually on Sunday afternoon I stumbled on a way to do it but I've not remembered how to with all the stress!

Turns out that my cousin and her husband came to see me on Thursday 16th Oct with their son David.

Since he is in his late 20's and considerably more IT aware, I had asked him if he knew how to use an old iPad as a second screen for my PC.

He wasn't sure as the iPad is I think a 2012 vintage.

I left him with it and went off with Cousin & spouse to help move some furniture, as they are emigrating to Albania, (Crazy!)

When we had finished, David said bad news, the iPad was too old and it couldn't be used and that was the end of the matter!

A horrible coincidence (I think I've said I don't like them) on Sunday morning, I awoke to find an unsolicited email at 2:02 on Sunday morning from a Bank who hold one of my investments asking if I could confirm my contact details!

My heart sank thinking this was the start of a nightmare I wouldn't awake from. 

I managed to get hold of David on Sunday afternoon to ask if he knew how "Splashtop" arrived on my machine

Turns out that he had indeed downloaded it but forgot to uninstall it afterwards.

The relief was enormous, but I was still not sure until I spoke to the bank to confirm that this email was indeed from them, and thankfully it was!

The sense of freedom with the lifting of that fear was unbelievable.

Thanks for your input, especially the simple advice to check my history, despite how hard Chrome make that it was the key!

Happy bunny.

@Steamywee 

Splashtop has created a blog about recent abuse of remote access tools, including Splashtop.

https://www.splashtop.com/blog/phishing-campaign-misuses-remote-access

The attack described in the blog tricks the user into downloading malware that subsequently downloads and installs two remote access tools.

I am not saying that is how it has come to be downloaded and installed on your device, because of course I do not know that.

You have said "I am loathe to uninstall "Splashtop" in case it holds any clues as to who planted it or what it may have accessed."

At the very least you should check that it is not configured for unattended access.

@Gliwmaeden2 

I have had incoming calls from TalkTalk on that number. 

I can't see how receiving a phone call on your mobile could cause a download to your PC, even if you have My Phone, or whatever they call it now, is installed.

@ferguson advice re scam protection is correct and @nameunknown_ has also given good advice.

If you really feel that your mobile phone is at fault, there is no support for mobile available on the forum.

I suggest you wait for Malware Bytes to respond and give you advice.

As an aside, have you taken steps regarding your mobile, given the imminent closure of the service as would have been advised recently via email,assuming your mobile is with TalkTalk?

The number could easily have been spoofed - most businesses don't call out on the number that is publicised for calling in as a customer, @Steamywee.

The same happens with banking  - scammers tend to use the number for calling in, lulling customers into trusting the call.

Unlikely to have been calls from Talktalk. 

Worth reporting these as suspicious calls:

https://www.ncsc.gov.uk/collection/phishing-scams/report-scam-call

Thanks @fr8ys  there was no need to do a Google search, since I have already ascertained that this is remote access software.

Not sure what you mean when saying "Do you have scam protection activated? If not re-enable this" Enable it where and in what application?

My antivirus "protection" is with Malwarebytes aka MBAM, with whom I have raised a "Support Ticket" - their parlance for an Investigation.

Sadly their idea of "Urgent" seems to involve a two day lag!

Regarding your final sentence, I disagree, since this unwanted download occurred at exactly the time two calls were made to my mobile phone and were unanswered, both were from 0345 172 0088, which is a TalkTalk line as I understand.

Doing a Google search suggests this is a remote desktop access programme that many are reporting issues with.

Do you have scam protection activated? If not re-enable this.

Who is your anti virus protection? Have you contacted them for advice.

Is the acronym you have used for malware bytes? If so then they seem to be able to tailor a response if approached, by user. Don't try to run the suggested solution from their forum as they says it is tailored to that user. 

It may well be worth posting on there to receive a response.

Hope you find a solution there.

As this isn't something that appears to be a TalkTalk issue I shall move this to the Lounge 

Hmm, Thanks @nameunknown_ not sure about that since it has somehow already installed without my knowledge!

@Steamywee 

Unattended access is a feature of Splashtop that must be enabled. By default, the 'Request permission to connect' setting is enabled, requiring an end-user to approve each connection.

If unattended access has not been enabled, and you have not granted permission for a connection, then your device would not not been remotely accessed using Splashtop.