owned pc-need your imput pls
Page 1 of 3 123 LastLast
Results 1 to 10 of 27

Thread: owned pc-need your imput pls

  1. #1
    Senior Member
    Join Date
    Jun 2003
    Posts
    349

    owned pc-need your imput pls

    ok guys hi and ty for your answers and solutions
    its not my pc learned few tricks here
    my friend called me that her pc is getting crazy with poip ups and her daughter is 12 yrs old and she is using this pc the most.
    its old p3 with xp pr and 256mg but hardware probably not important here.
    She has modem dial up.(set up by friend)
    i went to her place instaled ad-aware and spybot 1.4 and cc(crap cleaner) and found quite a lot objects and files which shouldnt be there(500).
    but noticed one of files was trojan and when i did netstat-a to see the conection there were some very strange lettters there.
    my question is this?
    if somone broke to her computer and use it to surf the net or to do whatever he/she wants connection for any reason does everywhere he goes and
    does is visible on my friend pc or its on attacker pc.
    i am not sure if i am expressing myself clearly here.
    when i look into the history of internet explore it was able to look 2 weeks back.lot of porno sites and usual crap but wat was interesting time and date on pc was different(set for 17/8/2005.
    when i calculated excact time and day noone was this hours in house except grandmother 85 yrs old.possible remote access because its xp?
    i think here is case of social engenering where person who instaled her upgrade month ago maybe used this feature without her knowlage(no professsionlly employed tehnician)
    Or maybe boyfriend of older gelfriend knows password and user name to log in.but if you log in from say your pc(just to setup internet connection with her details )that has nothing to do with this fisical pc.
    So is this somone acctually using her pc(in the house) or how this things work.??
    sry dont really know how to ecplain it but if you have questions pls ask
    how did all that crap come to her pc>somone surfing from her pc or somone on remote acces and is still all visible on this pc?
    thnks

  2. #2
    Senior Member
    Join Date
    Jul 2004
    Posts
    469
    Just my guess, but if her only internet access is via a dialup modem, I doubt someone would remotely use it to surf porn. That is WAY too slow.

  3. #3
    AO Veteran NeuTron's Avatar
    Join Date
    Apr 2003
    Posts
    550
    First of all, keep an eye on the grandmother...its always the last one you'd expect Sounds to me that if your browser history is full of porn, someone is using your PC to visit porn sites. The trojan you got is probably from one of the sites. I bet's its the boyfriend.

  4. #4
    Senior Member
    Join Date
    Jul 2005
    Posts
    277
    Well, before assuming the worst, she might wanna monitor the activity of the 12 yr old.
    maybe install a site blocker. If some outsider set up her internet connection and account and she thinks that they are using her account, tell her to change her password.
    This goes without saying, but make sure you kill that trojan.
    Difficult takes a day, Impossible takes a week~Kthln01!

  5. #5
    AO's MMA Fanatic! Computernerd22's Avatar
    Join Date
    Mar 2003
    Location
    Miami, FL
    Posts
    795
    but noticed one of files was trojan and when i did netstat-a to see the conection there were some very strange lettters there.
    Is their anyway you can cut and paste the output of netstat -A? If this is an XP machine you should try netstat -ano check out what PID it's using then use this command tasklist /svc and match the PID to the 'image name' it's a start.
    I would also recommend installing some AV software on this machine with AV definiations fully updated. Then do a full system scan and see what it detects.

    if somone broke to her computer and use it to surf the net or to do whatever he/she wants connection for any reason does everywhere he goes and
    does is visible on my friend pc or its on attacker pc.
    If this PC has been breached then yes the attacker could see what the remote user is doing on her PC for sure. Trojans Like Sub7 Back orifice do such things etc...

    how did all that crap come to her pc>
    Not to be rude or anything like that but a lot of times customers do this to themselves and don't realize it. Heres an example, customer is online at walmart.com just shopping, surfing the net etc... then all of a sudden while looking at walmart.com a pop up comes up "2 for 1 price at applebees" customer clicks on it, then BAM, all these unwanted ads and pop ups appear while they are just trying to surf the net. Customer is mad about this sort of thing because the pop ups wont stop (I never got pop ups on AOL they state) and they call and get hostile, very nasty, short with you and start cussing @ customer support because we didn't *protect their computers* from this. Even though they're the ones who infect themselves and BTW Yes this is a true story.

  6. #6
    In And Above Man Black Cluster's Avatar
    Join Date
    Feb 2005
    Posts
    912
    It is even ridiculous to think that someone gained access to that PC to surf porn sites .... this makes no sense whatsoever .... I prone to believe that the computer has been used physically by someone to surf porn .... If you said that some one installed a links to porn websites by adding them into the Favorites, I would say that someone could plant a malware or a trojan is playing behind the scene ..... am ought with thoughts ...

    But if you are still baranoid .... use the magic command ... C:\Format ...

    Cheers
    \"The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards - and even then I have my doubts\".....Spaf
    Everytime I learn a new thing, I discover how ignorant I am.- ... Black Cluster

  7. #7
    Senior Member
    Join Date
    Mar 2004
    Posts
    510
    After it is cleaned or reloaded make sure they change all their passwords in case they were scooped.
    \"You got a mouth like an outboard motor..all the time putt putt putt\" - Foghorn Leghorn

  8. #8
    AOs Resident Troll
    Join Date
    Nov 2003
    Posts
    3,152
    It could be anyone....that has physical access to the computer IMHO

    I have 3x11 year olds....(twins plus partners kid)...and they make me blush with some of the things they are saying.

    The way I curbed it was stop fixing their computer....til they whined so much that it was too slow blah blah blah...

    I then showed them that I know what sites they were at...even if they clear thier cookies\history. (a little tool I found on this site)....talk about blushing...and I am not just talking about the kids


    What I am saying...is teach them.....not just the kids...and show them that you can tell where and when and what they were doing....and explain how it compromises your computer ...and privacy

    Create seperate accounts for everyone...and dont give them admin rights

    Just some thoughts...

    MLF
    How people treat you is their karma- how you react is yours-Wayne Dyer

  9. #9
    Senior Member
    Join Date
    Jul 2005
    Posts
    277
    MLF, about that tool....
    Difficult takes a day, Impossible takes a week~Kthln01!

  10. #10
    AO's MMA Fanatic! Computernerd22's Avatar
    Join Date
    Mar 2003
    Location
    Miami, FL
    Posts
    795
    I then showed them that I know what sites they were at...even if they clear thier cookies\history. (a little tool I found on this site)....talk about blushing...and I am not just talking about the kids
    What tool is that? Sounds very interesting.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •