Overclock.net › Forums › Software, Programming and Coding › Networking & Security › How do i stop a hacker?
New Posts  All Forums:Forum Nav:

How do i stop a hacker? - Page 5

post #41 of 48
heres a simple and easy solution

disconnect all pcs from the router and reinstall windows
disconnect router from the modem and plug in one pc (to router with no internet)
restore the router to factory defaults and set it up all over again.
while setting it up change all passwords on the router
also change the ip address of the router i.e 192.168.2.2 change to something like
129.186.9.6 or some other random string of numbers just remember to write it down

make sure you change all windows and program passwords
then snag yourself a copy of either viper or avast(if you cant afford an av)
also install malwarebytes run scans every night before you go to bed for the first week or so just to be safe.

reformatting and reinstalling will do no bit of good if hes all ready got access to the router. he will just attach himself to every pc connected to it and keep going.
Edited by ELEKTRIK_BLUE - 6/13/11 at 2:14pm
valkyrja
(28 items)
 
mini destroyer
(17 items)
 
 
CPUMotherboardGraphicsRAM
Intel i7 2600k asrock z77 professional-m evga GTX670 (reference) patriot viper extreme division 4 
Hard DriveHard DriveHard DriveOptical Drive
OCZ Vertex 4 SSD Seagate Momentus  Western Digital My Book ASUS SDRW-08D2S-U 
CoolingCoolingCoolingCooling
XSPC EX120 JINGWAY DDC12V PRO 800LPH PUMP swiftech micro res assorted fittings 
CoolingCoolingCoolingCooling
XSPC RAZA  EK FC670 GTX ACETAL CSQ EK FC670 BACKPLATE XSPC EX120 
CoolingCoolingCoolingCooling
XSPC EX120 YATE LOON D12SM-12 YATE LOON D12SM-12 YATE LOON D12SM-12 
OSMonitorKeyboardPower
Windows 7 Ultimate x64  AOC E2343FK Logitech G110 Corsair AX850 
CaseMouseMouse PadAudio
Silverstone ps07 x7 xl-790h Corsair MM200 Pioneer VSX-D914 
CPUMotherboardGraphicsRAM
intel core i7-3615QM apple mac mini 6,1 logic board intel hd 4000 patriot mac series 
Hard DriveHard DriveCoolingOS
corsair neutron gtx 240 ssd hitachi apple hdd stock apple cooling osx 10.8.4 mountain lion 
MonitorKeyboardPowerCase
asus vs238 apple wired usb keyboard stock apple psu mac mini 6,1 late 2012 
MouseMouse PadAudioAudio
apple mighty mouse corsair 200m presonus firestudio presonus audiobox usb 22vsl 
Audio
samson resolve A6 studio monitors 
  hide details  
Reply
valkyrja
(28 items)
 
mini destroyer
(17 items)
 
 
CPUMotherboardGraphicsRAM
Intel i7 2600k asrock z77 professional-m evga GTX670 (reference) patriot viper extreme division 4 
Hard DriveHard DriveHard DriveOptical Drive
OCZ Vertex 4 SSD Seagate Momentus  Western Digital My Book ASUS SDRW-08D2S-U 
CoolingCoolingCoolingCooling
XSPC EX120 JINGWAY DDC12V PRO 800LPH PUMP swiftech micro res assorted fittings 
CoolingCoolingCoolingCooling
XSPC RAZA  EK FC670 GTX ACETAL CSQ EK FC670 BACKPLATE XSPC EX120 
CoolingCoolingCoolingCooling
XSPC EX120 YATE LOON D12SM-12 YATE LOON D12SM-12 YATE LOON D12SM-12 
OSMonitorKeyboardPower
Windows 7 Ultimate x64  AOC E2343FK Logitech G110 Corsair AX850 
CaseMouseMouse PadAudio
Silverstone ps07 x7 xl-790h Corsair MM200 Pioneer VSX-D914 
CPUMotherboardGraphicsRAM
intel core i7-3615QM apple mac mini 6,1 logic board intel hd 4000 patriot mac series 
Hard DriveHard DriveCoolingOS
corsair neutron gtx 240 ssd hitachi apple hdd stock apple cooling osx 10.8.4 mountain lion 
MonitorKeyboardPowerCase
asus vs238 apple wired usb keyboard stock apple psu mac mini 6,1 late 2012 
MouseMouse PadAudioAudio
apple mighty mouse corsair 200m presonus firestudio presonus audiobox usb 22vsl 
Audio
samson resolve A6 studio monitors 
  hide details  
Reply
post #42 of 48
and this people is why having a hardware firewall is so critical, block all inbound connections. If you are hosting a server place that server in a DMZ and block inbound connections to your trusted network.

OP, before you get anything hooked to you network you need to get your network secure otherwise as already seen, you will have further work cut out for you sanitizing every infected system.
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
post #43 of 48
Do you have Kaspersky Internet Security 2011? I have the paid version and it has advanced internet security where it blocks people when they try to get in your network, also scans everything and has a firewall to configure any way you like, stops all kinds of viruses, and much more. What you should be more afraid of is that the hacker could of potentially installed a key logger to collect all your passwords.

I know this is some personal stuff but how about you list the names of your (program files) programs in that folder, maybe we can spot something that you could of missed.
PC
(7 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K Asrock p67 extreme4 gen3 Gigabyte GTX 970 G1 Corsair 8 GB  
Hard DriveCoolingCase
M4 128 GB 212+ evo  Corsair 600T SE 
  hide details  
Reply
PC
(7 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K Asrock p67 extreme4 gen3 Gigabyte GTX 970 G1 Corsair 8 GB  
Hard DriveCoolingCase
M4 128 GB 212+ evo  Corsair 600T SE 
  hide details  
Reply
post #44 of 48
Quote:
Originally Posted by Iceman23 View Post
How wouldn't it help? Format = exploit gone. That's by far the safest and most effective way to deal with this problem. Sure he can do all the digging around he wants to find the issue, but will he be 100% sure all traces are gone? What's the point of spending hours and hours on a wild goose chase when an install could be done in 30 min.

Sure, if he backs up a malicious file there is the possibility of getting reinfected. However, it's a lot easier to backup and transfer the correct files safely than it is to effectively remove rootkits and other malware.



Umm you do realize that you can run scans on more than the mounted OS drive right? And you do realize that these scans are often more effective and safer to run on another PC right?
yes but not when you tell them to back up their data before formatting. Thats not going to help. How many drives does the OP have? More than 1 drive its not going to help as well. If its a worm and he's on a network its not going to help as well. Hence first see where it got thru what it is remove then you can do whatever you want format, reinstall etc etc

OP just run that tool
Edited by Spooony - 6/13/11 at 4:17pm
post #45 of 48
Quote:
Originally Posted by Bartonn View Post
BIG PROBLEMS:
I just built a new pc out of some old parts, and plugged it into the same spot that the other 2 infected pcs were plugged into. While installing windows, the hacker started moving around the mouse! What the heck is that?
Ok, this is beginning to sound a little far fetched.
post #46 of 48
Thread Starter 
Far fetched?
that is what happened to my computer. I know it sounds really odd, which is why I am trying to get help for the problem.
W.O.P.R.
(15 items)
 
HAL 9000
(9 items)
 
 
CPUMotherboardGraphicsRAM
i7 2600k P67A-UD4 palit gtx 570 sonic platinum 2x4gb g.skill ripjaws 1600 7-8-7-24 
Hard DriveHard DriveOptical DriveCooling
Crucial M4 samsung spinpoint f3 one that works h70 
OSMonitorKeyboardPower
Windows 7 BSOD edition sony fw900 $10 at walmart xfx black edition 850w 
CaseMouseMouse Pad
antec lanboy air blue razer SWTOR MMO mouse razer kabuto 
CPUMotherboardGraphicsRAM
Core 2 Quad Q9450 Asus P5K Deluxe Sapphire 5850 Corsair/Crucial DDR2 800 
Hard DriveCoolingOSPower
Western Digital Blue Cooler Master Hyper 212 EVO Windows 7 BSOD edition Rosewill Green 530w 
Case
NZXT Gamma 
  hide details  
Reply
W.O.P.R.
(15 items)
 
HAL 9000
(9 items)
 
 
CPUMotherboardGraphicsRAM
i7 2600k P67A-UD4 palit gtx 570 sonic platinum 2x4gb g.skill ripjaws 1600 7-8-7-24 
Hard DriveHard DriveOptical DriveCooling
Crucial M4 samsung spinpoint f3 one that works h70 
OSMonitorKeyboardPower
Windows 7 BSOD edition sony fw900 $10 at walmart xfx black edition 850w 
CaseMouseMouse Pad
antec lanboy air blue razer SWTOR MMO mouse razer kabuto 
CPUMotherboardGraphicsRAM
Core 2 Quad Q9450 Asus P5K Deluxe Sapphire 5850 Corsair/Crucial DDR2 800 
Hard DriveCoolingOSPower
Western Digital Blue Cooler Master Hyper 212 EVO Windows 7 BSOD edition Rosewill Green 530w 
Case
NZXT Gamma 
  hide details  
Reply
post #47 of 48
Quote:
Originally Posted by Iceman23 View Post
Ok, this is beginning to sound a little far fetched.
Google Conflicker worm
Google Stuxnet
Google Virut

Quote:
Originally Posted by Bartonn View Post
Far fetched?
that is what happened to my computer. I know it sounds really odd, which is why I am trying to get help for the problem.
^don't mind him he still doesn't know what different types of malware do. Did you run that utility I posted? Please do so otherwise I can't help you.
http://screen317.spywareinfoforum.org/SecurityCheck.exe

Please download this as well.
http://downloadcenter.mcafee.com/pro..._tool_v108.zip
Make sure your connected to the network and run it. Remember to put the start ip of your pc and the end ip is the ranges that the pcs on your network is on.
Edited by Spooony - 6/14/11 at 3:58am
post #48 of 48
go into cmd

netstat -a (will take bit to finish)
netstat -b (easier to see what ip is coming from where)

may get better idea whats connecting to comp
     
CPUMotherboardGraphicsGraphics
Intel Core i7 2600K @ 4.6GHz 1.385v ASUS Maximus IV Extreme Z - Z68 series ASUS GeForce GTX 960 STRIX-GTX960-DC2OC-4GD5 Intel HD Graphics 3000 (GT2+) 
RAMHard DriveHard DriveHard Drive
G.SKILL Sniper Series 8GB (4 x 4GB) DDR3 2133 F... OCZ Vertes 460 250GB (OCZ VTX460-25SAT3-240G) Western Digital Green WD30EZRX-00DC0B0 - 3TB Western Digital Green WD30EZRX-00DC0B0 - 3TB 
Hard DriveHard DriveCoolingOS
SAMSUNG HD204UI - 2TB Western Digital Blue WD5000AAKX-00ERMA0 - 500GB GeminII Win7 Ultimate x64 
MonitorMonitorMonitorKeyboard
ASUS VH238H 23-Inch LED ASUS VH238H 23-Inch LED Philips 46" LCD TV 46PFL5706/F7  Logitech G910 Orion Spark 
PowerCaseMouseAudio
OCZ ZX Series 850W Fully-Modular 80PLUS Gold Antec DF-85 Black Steel Logitech G700S Turtle Beach Ear Force DX11 w/ DSS unit 
CPUMotherboardRAMOptical Drive
AMD Athlon 64 X2 3800+ DFI LANPARTY nF4 Ultra-DR socket 939 motherboard OCZ OCZ5001024ELGLGXT Sony DVD-RW DRU-870S 
OSPowerCaseMouse
Win7 Ultimate x64 Ultra LSP-750 NZXT GAMMA lightly modded Dell optical 
Mouse Pad
Every&Anything 
  hide details  
Reply
     
CPUMotherboardGraphicsGraphics
Intel Core i7 2600K @ 4.6GHz 1.385v ASUS Maximus IV Extreme Z - Z68 series ASUS GeForce GTX 960 STRIX-GTX960-DC2OC-4GD5 Intel HD Graphics 3000 (GT2+) 
RAMHard DriveHard DriveHard Drive
G.SKILL Sniper Series 8GB (4 x 4GB) DDR3 2133 F... OCZ Vertes 460 250GB (OCZ VTX460-25SAT3-240G) Western Digital Green WD30EZRX-00DC0B0 - 3TB Western Digital Green WD30EZRX-00DC0B0 - 3TB 
Hard DriveHard DriveCoolingOS
SAMSUNG HD204UI - 2TB Western Digital Blue WD5000AAKX-00ERMA0 - 500GB GeminII Win7 Ultimate x64 
MonitorMonitorMonitorKeyboard
ASUS VH238H 23-Inch LED ASUS VH238H 23-Inch LED Philips 46" LCD TV 46PFL5706/F7  Logitech G910 Orion Spark 
PowerCaseMouseAudio
OCZ ZX Series 850W Fully-Modular 80PLUS Gold Antec DF-85 Black Steel Logitech G700S Turtle Beach Ear Force DX11 w/ DSS unit 
CPUMotherboardRAMOptical Drive
AMD Athlon 64 X2 3800+ DFI LANPARTY nF4 Ultra-DR socket 939 motherboard OCZ OCZ5001024ELGLGXT Sony DVD-RW DRU-870S 
OSPowerCaseMouse
Win7 Ultimate x64 Ultra LSP-750 NZXT GAMMA lightly modded Dell optical 
Mouse Pad
Every&Anything 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › How do i stop a hacker?