Possibly Hacked?

[strandedthinker]

All programs are up to date with definitions. The scans were antivirus and adaware. Going to test firewall now.

[Shrekkie]

I always let a scan me, and then get the results...

Choose someone who can NMAP you. Thats the best scanner IMO.
I'll nmap you if you want , get up on irc ( irc.shrekkie.com).

Cheers,

[strandedthinker]

Solicited TCP Packets: RECEIVED (FAILED) — As detailed in the port report below, one or more of your system's ports actively responded to our deliberate attempts to establish a connection. It is generally possible to increase your system's security by hiding it from the probes of potentially hostile hackers. Please see the details presented by the specific port links below, as well as the various resources on this site, and in our extremely helpful and active user community.



Unsolicited Packets: PASSED — No Internet packets of any sort were received from your system as a side-effect of our attempts to elicit some response from any of the ports listed above. Some questionable personal security systems expose their users by attempting to "counter-probe the prober", thus revealing themselves. But your system remained wisely silent. (Except for the fact that not all of its ports are completely stealthed as shown below.)



Ping Reply: RECEIVED (FAILED) — Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation.

[Inferno9402]

Ad-aware is a great program i use it alot if all else fails make sure if your using the newer version to customize your settings there are a couple tweaks that help me find alot of more spyware just an idea.....there is also a free version of kazaa if you use it named kazzalite which doesnt have the spyware.

[nihil]

hi strandedthinker,

you are in what I would describe as "semi-promiscuous mode" at the moment...........and before any of my fellow AO perverts get too excited...........I mean that you are visible on the net, and open to all sorts of attacks. You need to tune your firewall not to respond to probes.

I do not know what you have, but even the free ZoneAlarm set to high security will make a better job.

You must do your AV and malware scans after booting in SafeMode........the malware can "defend itself" these days.

Keep us posted

Cheers

[Shrekkie]

nihil is right,

First turn off your ping replies, cause lots of people out there do large ping sweeps, and select those nicely, lively machines like yours to do some more deep scans.
Letting your box drop ping request is the first step to a more secure system.

Greetz,

[strandedthinker]

how? lol

[groovicus]

Reading through these posts again, I noticed you never said what OS you are using. Techniques vary, depending on what you run on your box.

In general (with your firewall), it is best to block everything , then allow things as you need them. I'm not familiar with Blackice, but it seems to me (from other users) that it is not the most user friendly.

A note about your logs....depending on how you have them set, you'll probably see a lot of traffic...I would wager that 99% is probably normal.

Also, did you run a second antivirus scan? Adaware and Spybot DO NOT remove worms and trojans. Nihil had a link for an Australian company that has a nice trojan scanner, and a registry protector. Search through links he has been avtive in, and I wager you will find the link.

Cheers