geekhack
geekhack Community => Off Topic => Topic started by: Lethal Squirrel on Fri, 04 November 2011, 16:38:34
-
So I was sitting on my computer minding my own business, watching some youtube. When all of a sudden, My window closed. I thought "hmm weird" and pulled it back up. Then my mouse was moving by itself and there were random letters being typed into my address bar. i thought it was one of my friends playing a joke on me through some sort to software. So i asked one of my friends who I thought was suspect. And he said it wasn't him. Then an aim message popped up from a user called "hacksandcracks" or something like that. he said "It's not your buddy" then he said "so you like battlefield 3 eh?" which was a browser window i was open at the time. I said "who is this" and he replied "somebody you won't like" Then I tried to go to task manager to see what was upand he said "that won't help you" I closed aim and it started right back up. and he said "you can't get rid of me" so I turned off my computer. I'm kinda scared to turn it back on.
-
Do you have teamviewer or any sort of remoting software installed?
Either that or you're going into the matrix soon.
EDIT: Start that puppy in safe mode, see what happens.
Check MSConfig to see what's running at startup
Check HiJackThis and check the log
Run a scan with Malwarebytes and whatever your AV is if you see anything amiss.
If all else fails, especially if you have sensitive data on the drive, yank it, get it on a secure computer with good AV, transfer data and reformat.
-
If you need to get the data off it use a *NIX based PC.
-
alright. i'll try what you guys recommended
-
If you need to get the data off it use a *NIX based PC.
Or he could just bring it up without a connection to the internet...
-
I only browse prawns on FF with adblock, WoT and noscript installed, and even then I check out reputation of sites before I visit.
BTW Check out the AV program Dr. WEB, it's russian or some ****, but I used it once and it was pretty solid.
EDIT: I'm willing to give 3-1 odds on matrix, still. Anyone interested?
-
There are several things that could be happening here! Most likely you have downloaded something that is not what you think it is. Probably some sort of wrapper program or pdf that contains remote desktop software. It is also possible if you have that on your system that you could have a keylogger or your session might have been hijacked but probably not. There a couple things you can do but first things first I would disconnect this computer from your network until you can figure out how it was penetrated. Another thing you might want to do is to download yourself a IDS or honeypot like Specter, honeyd, or sobek and then you can figure out who you are dealing with (then the fun begins)
Anyways good luck more likely then not your computer will probably be part of a botnet
-
hahahahaha! lol! Sounds like some kiddy "hacker" wannabe vnc'd ur box! lol :D
-
hey guys. thanks for the suggestions. I just fixed my computer. all I did was burn a copy of avast from my other computer, and ran a pre-boot scan
It found a **** ton of viruses. I don't remember exactly, but it found something like 48 Trojans, and a ton of other crap.
-
unless you have a press 2005 computer, you should always be running with anti-virus... i mean the good ones are free and even then you can pay 50bucks and you get 3 licenses for a year for 3 computers, again... it's free.
-
I have never run an AV on my main rig which runs windows. I will admit to having a VM for browsing sites I expect to have issues. I've never gotten a virus on my main.
-
Nothing at all, reject that MS defender update crap too.