Sign in with
Sign up | Sign in
Your question
Solved

I suspect I've been hacked but I'm not sure

Tags:
  • Internet Explorer
  • Hacking
  • Computers
  • Security
Last response: in Laptop Tech Support
Share
October 5, 2014 1:14:19 PM

My husband thinks I'm being paranoid but my gut tells me we have been hacked. I see a red computer id flash in my security tab for internet explorer and as soon as I notice it, it disappears never reappearing again until the next time I'm back online. I'll see the red computer address under the users in security tab again every now and then... I think I've been hacked. Am I being a paranoid spaz?

More about : suspect hacked

a b 8 Security
October 5, 2014 1:17:03 PM

Have you scanned your system for viruses and malware? If so, with what applications?

Also, in Control Panel/User Accounts, are there any usernames you don't recognize?
m
0
l
October 5, 2014 1:18:07 PM

download malware bytes and install the free trial(will ask during instal) and run a scan, you will see it blocking stuff if you really are infected
m
0
l
Related resources
October 5, 2014 1:18:13 PM

COLGeek said:
Have you scanned your system for viruses and malware? If so, with what applications?


m
0
l
October 5, 2014 1:24:31 PM

Andromedat said:
COLGeek said:
Have you scanned your system for viruses and malware? If so, with what applications?




sorry there is no response in that last post
m
0
l
October 5, 2014 1:25:09 PM

COLGeek said:
Have you scanned your system for viruses and malware? If so, with what applications?

Also, in Control Panel/User Accounts, are there any usernames you don't recognize?

I've been using Norton to scan my computer but it doesn't seem to detect whatever is going on. No there are no other users in User Accounts.
m
0
l
a b 8 Security
October 5, 2014 1:28:44 PM

Get malwarebytes (as previously suggested) and perform a threat scan on your system. Remove all items found.

Get the free version here: www.malwarebytes.org

Install, update, scan.

Good luck!
m
0
l
October 5, 2014 2:25:40 PM

do the test that been ask you could been hit by a malware that try to connect as the main page in ie did you try firefox as browser and see if this happens .
m
0
l
October 5, 2014 3:27:42 PM

Norton is complete garbage, almost as bad as McAfee. They are both excellent at marketing though. As others have said, Malwarebytes free version is the way to go. This will detect 95% of viruses/spyware.

The term 'hacked' is widely misused though. If you mean you think someone is accessing your machine remotely, there are ways you can find out. Running 'netstat -an' in a command prompt will list all open connections/IP addresses connected to your machine. Ignore all local ports (127.0.0.1's, 192.168.x.x's etc.) and then whois the ones you don't recognize to track them down. Or you could run a packet sniffer if you wanna get really crazy.

Sounds more like a spyware thing though if you're seeing things in IE options menu. Download and scan with AdwCleaner from bleepingcomputer.com as it does a good job of cleaning up browser toolbar crap/extensions.

http://www.bleepingcomputer.com/download/adwcleaner/dl/...

I see thread says solved but still hope this helps someone eventually. =)
m
0
l
October 5, 2014 7:41:17 PM

COLGeek said:
Have you scanned your system for viruses and malware? If so, with what applications?

Also, in Control Panel/User Accounts, are there any usernames you don't recognize?


06yfz450ridr said:
download malware bytes and install the free trial(will ask during instal) and run a scan, you will see it blocking stuff if you really are infected

Thanks for the recommendation, I will look into it.
m
0
l
October 5, 2014 8:40:58 PM

sdpctek said:
Norton is complete garbage, almost as bad as McAfee. They are both excellent at marketing though. As others have said, Malwarebytes free version is the way to go. This will detect 95% of viruses/spyware.

The term 'hacked' is widely misused though. If you mean you think someone is accessing your machine remotely, there are ways you can find out. Running 'netstat -an' in a command prompt will list all open connections/IP addresses connected to your machine. Ignore all local ports (127.0.0.1's, 192.168.x.x's etc.) and then whois the ones you don't recognize to track them down. Or you could run a packet sniffer if you wanna get really crazy.

Sounds more like a spyware thing though if you're seeing things in IE options menu. Download and scan with AdwCleaner from bleepingcomputer.com as it does a good job of cleaning up browser toolbar crap/extensions.

http://www.bleepingcomputer.com/download/adwcleaner/dl/...

I see thread says solved but still hope this helps someone eventually. =)


Hi,

Thanks for the detailed response. I tried netstat and didn't find anything questionable at this time. I'm just wondering but Is it possible for spyware to show up under the IE properties menu. I don't think it's the IE options menu but I may be mistaken (specifically, when I right click the IE browser icon on my desktop then scroll down to the last line to select "properties" - and click on the "security tab" : It shows up as a red colored set of numbers under "group or users names" in the security tab (it looks like a computer address - I really have no clue)? I know I'm repeating myself but this red computer address type thing shows up and disappears as soon as I look for it. My husband thinks I'm hallucinating, I'm 100% sure I'm not. It disappeared for several months and recently came back (again for a split second as soon as I searched for it). I'm super paranoid because a computer my husband uses (on our network) was recently accessed by someone to watch porn until I caught the activity. Um...and before anybody asks...I'm sure he wasn't the one surfing for porn;) It would happen every time he logged off - I checked just to make sure.

Also, I'll definitely look into malware bytes. Do I have to remove Norton to use it properly? I tend to agree with you about Norton. Unfortunately it's very main stream and my husband trusts it all the more - which leaves me in a bind.
m
0
l

Best solution

a b 8 Security
October 6, 2014 7:27:02 AM

You do not need to remove Norton to use Malwarebytes. They will happily co-exist.

You really should consider using another browser (Firefox, Chrome, even Opera) because IE is literally full of holes and exploits.
Share
October 6, 2014 11:59:18 AM

COLGeek said:
You do not need to remove Norton to use Malwarebytes. They will happily co-exist.

You really should consider using another browser (Firefox, Chrome, even Opera) because IE is literally full of holes and exploits.


also its one of the slowest out there and microsoft admitted it because it has issues. SO malwarebytes has or has not been used yet?

I would remove norton and find something better. a paid version of malwarebytes for $20 will will be tons better even without antivirus even installed.
m
0
l
October 6, 2014 1:37:09 PM

06yfz450ridr said:
COLGeek said:
You do not need to remove Norton to use Malwarebytes. They will happily co-exist.

You really should consider using another browser (Firefox, Chrome, even Opera) because IE is literally full of holes and exploits.


also its one of the slowest out there and microsoft admitted it because it has issues. SO malwarebytes has or has not been used yet?

I would remove norton and find something better. a paid version of malwarebytes for $20 will will be tons better even without antivirus even installed.


Thanks for the response. I scanned the computer with both malwarebytes and Norton and they both show no malicious activity. I just don't know what that set of red numbers under "group or users names" is about. The fact that it comes and goes. Could it be something else altogether?

Also, thanks for the browser suggestions too. Do you have preference?
m
0
l
October 6, 2014 6:21:12 PM

i been using firefox from the start and happy with keep ie only for microsoft update .
m
0
l
a b 8 Security
October 6, 2014 6:27:34 PM

scout_03 said:
i been using firefox from the start and happy with keep ie only for microsoft update .

Same here. I also use Chrome pretty often. I only use IE when absolutely required (like when teleworking with office applications and Windows Update).
m
0
l
October 7, 2014 8:57:55 PM

scout_03 said:
i been using firefox from the start and happy with keep ie only for microsoft update .


Thanks for the input. I already have Chrome but I'll try out firefox as well.
m
0
l
October 7, 2014 9:06:57 PM

Ok... please feel free to ignore this. I'm going to vent into space:
Like the paranoid spaz that I am, I'm chronically checking under my security tab for the mysterious set of red numbers to reappear. I still have no clue what it was... since all my scans show nothing. It is possible that I'm chasing my own tail and this is the remnant of a legitimate program in my computer? or Maybe the worst of my fears are true... some person out there knows when I'm away and is joyriding my pc when I'm asleep. If that's the case... is there anything else I can do besides putting my router on standby whenever it's not in use?
m
0
l
a b 8 Security
October 8, 2014 7:20:51 AM

Is your wireless network secure? Have you changed the password recently?
m
0
l
October 8, 2014 8:30:43 AM

Andromedat said:
Ok... please feel free to ignore this. I'm going to vent into space:
Like the paranoid spaz that I am, I'm chronically checking under my security tab for the mysterious set of red numbers to reappear. I still have no clue what it was... since all my scans show nothing. It is possible that I'm chasing my own tail and this is the remnant of a legitimate program in my computer? or Maybe the worst of my fears are true... some person out there knows when I'm away and is joyriding my pc when I'm asleep. If that's the case... is there anything else I can do besides putting my router on standby whenever it's not in use?



if malware bytes didnt find anything you are most likely not being hijacked unless your pc has RDP enabled to allow people in and someone is accessing your network via wifi and has your login info.

you could monitor your wireless router and see all the devices on there and even use mac filtering and only give access to your devices to connect if you really want. also make sure you have encryption enabled preferably wpa2 since wpa and wep can be cracked
m
0
l
a b 8 Security
October 8, 2014 9:34:35 AM

Locking down your network would prevent unauthorized access. As mentioned, using WPA2 with a strong password would help. You should also set up, in your router, the MAC addresses of allowed devices. This will prevent leeches as well. Be sure you change your router admin password as well and disable external access to the router itself. Further, I would also disable wireless users from being able to administer the router.
m
0
l
October 8, 2014 12:35:43 PM

adding this for the router settings do not use any dictionnary name and put a capital letter and a number in the password .
m
0
l
October 8, 2014 8:24:21 PM

COLGeek said:
Is your wireless network secure? Have you changed the password recently?


I hope it's secure I changed the password and decided to hide the network about two months ago. How often do you change your passwords?
m
0
l
October 8, 2014 8:27:28 PM

COLGeek said:
You do not need to remove Norton to use Malwarebytes. They will happily co-exist.

You really should consider using another browser (Firefox, Chrome, even Opera) because IE is literally full of holes and exploits.


The others are just as bad
m
0
l
October 8, 2014 8:32:12 PM

06yfz450ridr said:
Andromedat said:
Ok... please feel free to ignore this. I'm going to vent into space:
Like the paranoid spaz that I am, I'm chronically checking under my security tab for the mysterious set of red numbers to reappear. I still have no clue what it was... since all my scans show nothing. It is possible that I'm chasing my own tail and this is the remnant of a legitimate program in my computer? or Maybe the worst of my fears are true... some person out there knows when I'm away and is joyriding my pc when I'm asleep. If that's the case... is there anything else I can do besides putting my router on standby whenever it's not in use?



if malware bytes didnt find anything you are most likely not being hijacked unless your pc has RDP enabled to allow people in and someone is accessing your network via wifi and has your login info.

you could monitor your wireless router and see all the devices on there and even use mac filtering and only give access to your devices to connect if you really want. also make sure you have encryption enabled preferably wpa2 since wpa and wep can be cracked


Thanks for your suggestions. It looks like RDP is not enabled but I'll definitely look into mac filtering ;) 
m
0
l
October 26, 2014 10:11:23 PM

I had some ad/spyware on my computer a while ago, and it wasn't detected by Norton, malwarebytes or windows defender.
So what i did and i strongly suggest you do, is go through your documents/downloads, think back to when you first started having these issues, and delete any suspicious programs that you don't need or have never heard of.

Most likely this malicious software (If there even is any) is held in one of these programs.
m
0
l
Tom’s guide in the world
  • Germany
  • France
  • Italy
  • Ireland
  • UK
Follow Tom’s guide
Subscribe to our newsletter
  • add to twitter
  • add to facebook
  • ajouter un flux RSS