HELP!! Someone has broken into my PC!!

Discussion in 'Computer Science & Culture' started by curioucity, Oct 28, 2003.

Thread Status:
Not open for further replies.
  1. curioucity

    curioucity Unbelievable and odd Registered Senior Member

    Messages:
    2,429
    Hello

    This is bad.... I'm running XP right now, and have my firewall disabled (it cause dmore problems). I usually use my LAN connection to surf the net. However, someone just made a connection using my PC, and it is undeletable! And my Antivirus keeps telling me that my sytem is visited by virus very often.
    It says here on my network Connection panel:
    Internet Gateway:
    blah blah blah (something I NEVER created)

    LAN
    the one I use

    Help me!
     
    Last edited: Oct 28, 2003
    curioucity, Oct 28, 2003
    #1

  2. Google AdSense Guest Advertisement



    to hide all adverts.
  3. ElectricFetus

    ElectricFetus Sanity going, going, gone Valued Senior Member

    Messages:
    18,523
    your going to need to give us more info then that.
     
    Last edited: Oct 28, 2003
    ElectricFetus, Oct 28, 2003
    #2

  4. Google AdSense Guest Advertisement



    to hide all adverts.
  5. Stryder

    Stryder Keeper of "good" ideas. Valued Senior Member

    Messages:
    13,105
    Indeed that will take far more information, One thing you should consider Pirated warez like firewall programs are the sort of program that would be hackers drop trojans in.

    So you might have to dump your warez if you are into warez.

    Next you have to note that you can't delete a file when a program has created a "File Lock", this means it stops other programs from being able to access for read, writes or even deletes.

    What you could try and do is find out how the program is loading into your memory in the first place, I could give you a list of directions of how to remove an offending program but your best off checking out www.mlin.net for "Startup CPL". (Basically it places a startup icon in your control panel which allows you to remove some of the things that load on bootup.)

    Once you disable the program from running at bootup you can then remove it.

    Also you might want to turn off the "recovery" portion to the OS if your running winME, win2000, WinXP since it actually seems to be more trouble than it's worth.

    I've seen it lock files from virus checkers being able to heal files, which means if the recovery section takes a roll back copy of an infected file, the file becomes ever present in your system until you disable recovery. (The files are stored in C:/_RESTORE which can be safely deleted one recover is turned off. _RESTORE can't be seen in windows, but can be accessed through a Commandline)

    You might even want to check on information for "Universal Plug and Play", the more recent programmed method to help a system detect it's internal peripherals actually sends information out to the peripherals and the internet to Identify the peripherals and even what drivers it should have to run them.

    (Universal Plug and Play has been noted for causing problems in a network I've been using in the sense that a system that had a wireless connection detected a network in a building up the road and connected to it. It caused the network managers to systematically shut down the systems until the culprit system was found. Nobody told it to connect, but due to Universal Plug and Play it tried detecting a network on Bootup.)
     
    Stryder, Oct 28, 2003
    #3

  6. Google AdSense Guest Advertisement



    to hide all adverts.
Thread Status:
Not open for further replies.

Share This Page