Posted on 01/12/2005 6:10:20 PM PST by maui_hawaii
How can I tell for sure if I am hacked? My computer I mean.
I run several anti-spyware programs on a regular basis...such as Adware SE, Spybot, the new Microsoft spyware program, and I have Spyware Blaster on my machine.
I also run Outpost firewall on block most mode.
I clean my computer's junk files regularly, and check for spyware often and up until now no real problems.
However, I am noticing that the icons on my desktop are moving around at random. I move them back, then they get shuffled again. If its not a hacker, then why?
I completely disconnected from the internet today, and shut the computer down entirely...but when I booted again after coming home from work my icons were again in the wrong order...
I am running XP Home...
Oh yeah, and I run that Leak Tester software and it came up as a tight ship...
Also while we are at it on my firewall, sometimes it lists IP addresses under the attack detection screen.
What exactly does that mean? And what does "Port Scanned" mean?
(On the last one lets start with "What is a port?")
If I do the cmd as mentioned above, and only see my 2 ports with my ID on them I am OK, right?
also since we are on the subject. Last night I had a new icon popup on my desktop that said hppavillion wireless, which i do not have. I think i got rid of it, but was that someone accessing or trying to access my pc?
On the way...in FR mail
Why so many, and why do they need different ones?
Maybe its a dumb question there...
I have learned more than my fair share about computers here on FR....so thanks in advance...
I am still trying to get the port concept...
So are they like little 'windows' that open up to the internet as needed? Am I close or way off?
Yes
Last night I had a new icon popup on my desktop that said hppavillion wireless
Did you recently install or have you got a Hewlett-Packard wireless network card? If so, that's why. It's not someone from the outside world connecting to your machine.
Because no one port does the same task. You've got ports for HTTP (web), FTP (file transfer), SMTP (mail), and various other ports for streaming audio, webcams, etc.
NO hp network card or anything HP on my pc. So how do i stop them, i do have a firewall. so are they getting in?
Yes, ports only open up when needed. Like when you connect to a web server, ports open up so you can receive data. Or when you connect to an internet audio stream, a port will open up so you can establish a connection to the internet audio server on the other end.
All ports are assigned to do one thing (basically)...kind of like routing the info blips to the right place on your computer???
msconfig
Click start, then Run, then type
msconfigin the dialog box. Once that opens, go to the Startup tab and uncheck anything that resembles the program your trying keep from starting up. Click "Apply" then "OK". (you will have to reboot for the changes to take effect)
Yes
Reverse is true on the other end of the internet connection (like to your internet provider). Because you also have POP3 (sending mail) ports that connect to your provider SMTP (receive mail) port.
This seems like a script kiddie hack. A file has been added to your startup possibly that affects your gui environment. If you are familiar with the programs that "should" be starting at boot, then you can do an msconfig, click on the startup tab and check if there is any unknown files there. If there are, you can disable them there. Also I suggest spy bot. It has a tool that will help you do just what I described.
Are you logged into the admin user on your machine or a secondary user?
You may not be able to retain changes to the desktop icons for that reason, or because of a corrupted Windows file that keeps track of the desktop icon placements.
Another thing to try is to boot up in safe mode, move the icons, reboot into safe mode and see if the changes are retained.
When all else fails, kill a chicken and put a sledgehammer next to the computer's CPU unit... then read an issue of MacWorld and surf Apple's web site checking out the prices on the new $500 Mac Mini...
If that doesn't motivate the demon in your machine, exorcise it with Holy Water, but I recommend you stand back if you plan on leaving the power on when you douse the machine with the sanctified water... ;-)
Okay, I'm sorry... It doesn't sound like you've been hacked.
I am the one and only user.
What tool is that. I have the program, just don't know what I should do with it to do what you mention.
Got your freepmail. I'm not seeing any red flags here. You've got the usual open ports on your system and most are simply talking on localhost (127.0.0.1). From what I've seen thus far, it doesn't look like you've been hacked or backdoored.
Maybe I have a worm.
If you do, it doesn't appear to be active. Your netstat showed no outbound connections.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.