I suspect I've been hacked but I'm not sure
Tags:
- Internet Explorer
-
Hacking
-
Computers
-
Security
Last response: in Laptop Tech Support
Andromedat
October 5, 2014 1:14:19 PM
My husband thinks I'm being paranoid but my gut tells me we have been hacked. I see a red computer id flash in my security tab for internet explorer and as soon as I notice it, it disappears never reappearing again until the next time I'm back online. I'll see the red computer address under the users in security tab again every now and then... I think I've been hacked. Am I being a paranoid spaz?
More about : suspect hacked
-
Reply to Andromedat
06yfz450ridr
October 5, 2014 1:18:07 PM
Related resources
- I thnk Ive been remote hacked - Forum
- AudioGuy needs Laptops with PCIe, 1st time it's ever been asked I'm sure - Forum
- I'm looking for a new HD telly, I’ve been looking at Samsung/Sony/Phil - Forum
Andromedat
October 5, 2014 1:18:13 PM
06yfz450ridr
October 5, 2014 1:24:31 PM
Andromedat
October 5, 2014 1:25:09 PM
COLGeek said:
Have you scanned your system for viruses and malware? If so, with what applications?Also, in Control Panel/User Accounts, are there any usernames you don't recognize?
I've been using Norton to scan my computer but it doesn't seem to detect whatever is going on. No there are no other users in User Accounts.
-
Reply to Andromedat
m
0
l
Get malwarebytes (as previously suggested) and perform a threat scan on your system. Remove all items found.
Get the free version here: www.malwarebytes.org
Install, update, scan.
Good luck!
Get the free version here: www.malwarebytes.org
Install, update, scan.
Good luck!
-
Reply to COLGeek
m
0
l
scout_03
October 5, 2014 2:25:40 PM
sdpctek
October 5, 2014 3:27:42 PM
Norton is complete garbage, almost as bad as McAfee. They are both excellent at marketing though. As others have said, Malwarebytes free version is the way to go. This will detect 95% of viruses/spyware.
The term 'hacked' is widely misused though. If you mean you think someone is accessing your machine remotely, there are ways you can find out. Running 'netstat -an' in a command prompt will list all open connections/IP addresses connected to your machine. Ignore all local ports (127.0.0.1's, 192.168.x.x's etc.) and then whois the ones you don't recognize to track them down. Or you could run a packet sniffer if you wanna get really crazy.
Sounds more like a spyware thing though if you're seeing things in IE options menu. Download and scan with AdwCleaner from bleepingcomputer.com as it does a good job of cleaning up browser toolbar crap/extensions.
http://www.bleepingcomputer.com/download/adwcleaner/dl/...
I see thread says solved but still hope this helps someone eventually. =)
The term 'hacked' is widely misused though. If you mean you think someone is accessing your machine remotely, there are ways you can find out. Running 'netstat -an' in a command prompt will list all open connections/IP addresses connected to your machine. Ignore all local ports (127.0.0.1's, 192.168.x.x's etc.) and then whois the ones you don't recognize to track them down. Or you could run a packet sniffer if you wanna get really crazy.
Sounds more like a spyware thing though if you're seeing things in IE options menu. Download and scan with AdwCleaner from bleepingcomputer.com as it does a good job of cleaning up browser toolbar crap/extensions.
http://www.bleepingcomputer.com/download/adwcleaner/dl/...
I see thread says solved but still hope this helps someone eventually. =)
-
Reply to sdpctek
m
0
l
Andromedat
October 5, 2014 7:41:17 PM
COLGeek said:
Have you scanned your system for viruses and malware? If so, with what applications?Also, in Control Panel/User Accounts, are there any usernames you don't recognize?
06yfz450ridr said:
download malware bytes and install the free trial(will ask during instal) and run a scan, you will see it blocking stuff if you really are infectedThanks for the recommendation, I will look into it.
-
Reply to Andromedat
m
0
l
Andromedat
October 5, 2014 8:40:58 PM
sdpctek said:
Norton is complete garbage, almost as bad as McAfee. They are both excellent at marketing though. As others have said, Malwarebytes free version is the way to go. This will detect 95% of viruses/spyware. The term 'hacked' is widely misused though. If you mean you think someone is accessing your machine remotely, there are ways you can find out. Running 'netstat -an' in a command prompt will list all open connections/IP addresses connected to your machine. Ignore all local ports (127.0.0.1's, 192.168.x.x's etc.) and then whois the ones you don't recognize to track them down. Or you could run a packet sniffer if you wanna get really crazy.
Sounds more like a spyware thing though if you're seeing things in IE options menu. Download and scan with AdwCleaner from bleepingcomputer.com as it does a good job of cleaning up browser toolbar crap/extensions.
http://www.bleepingcomputer.com/download/adwcleaner/dl/...
I see thread says solved but still hope this helps someone eventually. =)
Hi,
Thanks for the detailed response. I tried netstat and didn't find anything questionable at this time. I'm just wondering but Is it possible for spyware to show up under the IE properties menu. I don't think it's the IE options menu but I may be mistaken (specifically, when I right click the IE browser icon on my desktop then scroll down to the last line to select "properties" - and click on the "security tab" : It shows up as a red colored set of numbers under "group or users names" in the security tab (it looks like a computer address - I really have no clue)? I know I'm repeating myself but this red computer address type thing shows up and disappears as soon as I look for it. My husband thinks I'm hallucinating, I'm 100% sure I'm not. It disappeared for several months and recently came back (again for a split second as soon as I searched for it). I'm super paranoid because a computer my husband uses (on our network) was recently accessed by someone to watch porn until I caught the activity. Um...and before anybody asks...I'm sure he wasn't the one surfing for porn;) It would happen every time he logged off - I checked just to make sure.
Also, I'll definitely look into malware bytes. Do I have to remove Norton to use it properly? I tend to agree with you about Norton. Unfortunately it's very main stream and my husband trusts it all the more - which leaves me in a bind.
-
Reply to Andromedat
m
0
l
Best solution
06yfz450ridr
October 6, 2014 11:59:18 AM
COLGeek said:
You do not need to remove Norton to use Malwarebytes. They will happily co-exist.You really should consider using another browser (Firefox, Chrome, even Opera) because IE is literally full of holes and exploits.
also its one of the slowest out there and microsoft admitted it because it has issues. SO malwarebytes has or has not been used yet?
I would remove norton and find something better. a paid version of malwarebytes for $20 will will be tons better even without antivirus even installed.
-
Reply to 06yfz450ridr
m
0
l
Andromedat
October 6, 2014 1:37:09 PM
06yfz450ridr said:
COLGeek said:
You do not need to remove Norton to use Malwarebytes. They will happily co-exist.You really should consider using another browser (Firefox, Chrome, even Opera) because IE is literally full of holes and exploits.
also its one of the slowest out there and microsoft admitted it because it has issues. SO malwarebytes has or has not been used yet?
I would remove norton and find something better. a paid version of malwarebytes for $20 will will be tons better even without antivirus even installed.
Thanks for the response. I scanned the computer with both malwarebytes and Norton and they both show no malicious activity. I just don't know what that set of red numbers under "group or users names" is about. The fact that it comes and goes. Could it be something else altogether?
Also, thanks for the browser suggestions too. Do you have preference?
-
Reply to Andromedat
m
0
l
scout_03
October 6, 2014 6:21:12 PM
Andromedat
October 7, 2014 8:57:55 PM
Andromedat
October 7, 2014 9:06:57 PM
Ok... please feel free to ignore this. I'm going to vent into space:
Like the paranoid spaz that I am, I'm chronically checking under my security tab for the mysterious set of red numbers to reappear. I still have no clue what it was... since all my scans show nothing. It is possible that I'm chasing my own tail and this is the remnant of a legitimate program in my computer? or Maybe the worst of my fears are true... some person out there knows when I'm away and is joyriding my pc when I'm asleep. If that's the case... is there anything else I can do besides putting my router on standby whenever it's not in use?
Like the paranoid spaz that I am, I'm chronically checking under my security tab for the mysterious set of red numbers to reappear. I still have no clue what it was... since all my scans show nothing. It is possible that I'm chasing my own tail and this is the remnant of a legitimate program in my computer? or Maybe the worst of my fears are true... some person out there knows when I'm away and is joyriding my pc when I'm asleep. If that's the case... is there anything else I can do besides putting my router on standby whenever it's not in use?
-
Reply to Andromedat
m
0
l
06yfz450ridr
October 8, 2014 8:30:43 AM
Andromedat said:
Ok... please feel free to ignore this. I'm going to vent into space:Like the paranoid spaz that I am, I'm chronically checking under my security tab for the mysterious set of red numbers to reappear. I still have no clue what it was... since all my scans show nothing. It is possible that I'm chasing my own tail and this is the remnant of a legitimate program in my computer? or Maybe the worst of my fears are true... some person out there knows when I'm away and is joyriding my pc when I'm asleep. If that's the case... is there anything else I can do besides putting my router on standby whenever it's not in use?
if malware bytes didnt find anything you are most likely not being hijacked unless your pc has RDP enabled to allow people in and someone is accessing your network via wifi and has your login info.
you could monitor your wireless router and see all the devices on there and even use mac filtering and only give access to your devices to connect if you really want. also make sure you have encryption enabled preferably wpa2 since wpa and wep can be cracked
-
Reply to 06yfz450ridr
m
0
l
Locking down your network would prevent unauthorized access. As mentioned, using WPA2 with a strong password would help. You should also set up, in your router, the MAC addresses of allowed devices. This will prevent leeches as well. Be sure you change your router admin password as well and disable external access to the router itself. Further, I would also disable wireless users from being able to administer the router.
-
Reply to COLGeek
m
0
l
scout_03
October 8, 2014 12:35:43 PM
Andromedat
October 8, 2014 8:24:21 PM
Paul NZ
October 8, 2014 8:27:28 PM
Andromedat
October 8, 2014 8:32:12 PM
06yfz450ridr said:
Andromedat said:
Ok... please feel free to ignore this. I'm going to vent into space:Like the paranoid spaz that I am, I'm chronically checking under my security tab for the mysterious set of red numbers to reappear. I still have no clue what it was... since all my scans show nothing. It is possible that I'm chasing my own tail and this is the remnant of a legitimate program in my computer? or Maybe the worst of my fears are true... some person out there knows when I'm away and is joyriding my pc when I'm asleep. If that's the case... is there anything else I can do besides putting my router on standby whenever it's not in use?
if malware bytes didnt find anything you are most likely not being hijacked unless your pc has RDP enabled to allow people in and someone is accessing your network via wifi and has your login info.
you could monitor your wireless router and see all the devices on there and even use mac filtering and only give access to your devices to connect if you really want. also make sure you have encryption enabled preferably wpa2 since wpa and wep can be cracked
Thanks for your suggestions. It looks like RDP is not enabled but I'll definitely look into mac filtering
-
Reply to Andromedat
m
0
l
Reese_Myersss
October 26, 2014 10:11:23 PM
I had some ad/spyware on my computer a while ago, and it wasn't detected by Norton, malwarebytes or windows defender.
So what i did and i strongly suggest you do, is go through your documents/downloads, think back to when you first started having these issues, and delete any suspicious programs that you don't need or have never heard of.
Most likely this malicious software (If there even is any) is held in one of these programs.
So what i did and i strongly suggest you do, is go through your documents/downloads, think back to when you first started having these issues, and delete any suspicious programs that you don't need or have never heard of.
Most likely this malicious software (If there even is any) is held in one of these programs.
-
Reply to Reese_Myersss
m
0
l
Read discussions in other Laptop Tech Support categories