April 3rd, 2004, 12:17 PM
Help! Hacker zapping ME BIG TIME!
Getting Worse: Old computer, Win 98, no updated anti-virus or firewall. A program needed a downloadable patch that took 4 hours. Left computer to do its thing. Restarted the computer. Upon logging back online, AOL account fired off an e-mail. E-mail came back to our inbox as if it came from someone we knew. The someone we knew had worked for us, was our former system administrator, had left the country, and was under investigation by authorities. Ten days earlier, our AOL account logged on and sent hundreds of e-mails as well. Could not find any trojans on computer. The e-mails that were sent did not come from us, but have our IP address. We DIDN'T send them!?
If someone knows your IP address and password, can they use your computer to send e-mails anywhere that have your IP address? Is this possible thru hacking?
A random check now reveals that our "File Created" dates have been changed. On some machines, whole document files have been changed. On others, random dates have been changed. Also, there are documents added to our system that aren't our work product.
An outside hacker can take over your machine, use it for e-mailing with your IP address, get your financial info, and change your files around? Yes or No?
Can someone also manipulate your files by hacking into your system OR individual machine as well? Yes or No?
Last thing, most of the problems are coming thru our former system guy's machine. Is it possible that since it was his machine he is accessing it externally with ease because of some program he's got in there that we don't know about? Should I just yank his machine until we find the problem?
April 3rd, 2004, 01:03 PM
In a word "yes"
However, if you are on a dial up modem, your IP addy should be dynamic, and change at every logon?
Unless you have some third party software Win98 does not have an "administrator password" it is very vulnerable "out of the box" as it is really a "stand alone" home user system.
It sounds as if you have a trojan, even if you didn',t find it, or it might be mass mailing malware of some sort.
You might try running housecall from Trend Micro and get the trial of Moosoft's "The Cleaner"
Also run Hijack This to find out what is running on your machine.
Change all passwords, particularly your AOL one!
EDIT: and please update your firewall and AV
Is this machine part of a network?
April 4th, 2004, 01:22 AM
They don't have to know your ip address, just your screen name and password. And if they send enough emails from your account within a short period of time aol will suspend your account. No problem there realy, as a quick call to customer services will sort the problem out. I no this from experience as i fell for a con a while back.
Without a doubt change you passwords asap. DO IT NOW.
What happens if a big asteroid hits the Earth? Judging from realistic simulations involving a sledge hammer and a common laboratory frog, we can assume it will be pretty bad. - Dave Barry
April 4th, 2004, 01:41 AM
Welcome to AntiOnline.
You definitely want to get a round turn on that box with the programs that nilhil recommended and if you catch that little crab that left, put a throat seizing on him as well!
This site is full of great info on just about any computer security related subject. So use the heck out of the search on the main page.