Thread: Someone hacked into my machine

yeah, speaking of which I have the same problems too
I also have a firewall (software) but it doesn't seem to help

out of nowhere my sbcglobal account was logged on with another name that I totally don't know

What version of MSN are you using, Do you run your remote assistence and Remote Desktop All the time. Version of AIM. and what not

hmmm ye you might have something setup wrong that allows people to get into ur pc.
I had that problem once... but it's resolved now.

Grumble Grumble Grumble

File and Print sharing, and Remote Assistance/Desktop have documented vulnerabilities. Just the slighest mis-configuration in either of these services could let a skilled hacker in...

There is also the possibility that your system was compromised by a virus/trojan/malware that was a part of a downloaded Email attachment or Internet download... There are also documented cases of a malicious downloads being triggered by vulnerabilites in IE, which could have happend if your system isn't current with the Window's Update Security patches... (Before you flatten your Box, try the Microsoft Spyware Beta and see what it finds...)

MSN Messenger: version 6.2
AIM: I don't remember which version.
Remote Assistance: When I enabled it, I left it at its default settings. I guess I can always disable it.
File and Print Sharing: How do I deal with its vulnerbilities?
Viruses and Malware: I have McAfee Anti-Virus installed and run it regularly. Also, all of my email goes some form of virus scan before coming down to my machine. And with both Ad-Aware and Spybot running, I hope nothing came down.
Remote Desktop: While my box isn't always on, Remote Desktop is always enabled.
Updates: Always

Skilled hacker?

Usually anyone trying to get onto a random machine is hardly 'skilled' nor wants anything to do with you files. A LOT of spyware programs and virus' are around that often make it seem like someone is on your machine because they often run programs of their own.

If you're interested in ports that your system have have open for these types of attacks:

www.blackcode.com

Programs like MSN, Ares etc all open a gate into you machine. Firewalls allow these programs to receive and send thus making your computer really anyones domain. Why anyone would want you computer other than to use it's IP to hide a bigger attack is beyond me. Unless they're completely foolish and feel special becaue they've walking into an 'open door' so to speak.

My advice: Webroot spysweeper, PC-Cillin 2005 if you're running on windows. Limit your time on File sharing programs and occasional disconnect your modem to get a new IP.

Start reading up on the most common programs you use, know what they open and know what traffic is allowed through, that way you can protect yourself.



[J]

Grumble Grumble Grumble

Unless you have a real need for a outsider to access your files and use your printer, the easiest thing to do is to disable the service in the network properties...

Also, Virus scanners will usually ignore Spyware/Malware (who knows, You may have actually wanted and agreed to installed these things...) There have been many reports that the Microsoft Spyware Tool Beta have been picking up Trojans and Malware that Ad-aware and Spybot miss. (You can assume that Microsoft has more experience with these issues through licensed corporate technical support problems...)