Has my Vista been Hacked!?

V

via007

New Member
Hello,

this is my first post, to what seams to be a great forum, so let me start by saying: hats off to the members that keep this such an active medium in replying to threads and helping us that are less knowledgeable.. very nice community here indeed

Now Here´s my dilemma, I work for a design company, I have fragile information on my external HD that I only plug in when loading and saving work files, this is valuable info linked to our design. My worries are that my PC has been hacked into and info has been leaked.

The motive for my worries is based on the fact that there is another company with a huge budget that has the exact same mission statement..., this company popped up two months after we presented our ideology.

The reason why I think My PC has been hacked is based on how my PC behaved two nights in a row, and strangely work files that I had never deleted popped up in the recycle bin.. ??

I did cut and copy a folder with allot of these files on the external HD so one of my questions is could this be some format of ghost files that where placed to the recycle bin due to the fact that I cut their original path?


Now the scenario leading to why I think my system was hacked is:

First night my computer stayed online after I logged off and I lost control over the system, I could not copy files or even create new folders, I was unable to open up the network menu to see what network I was connected to, I tried shutting down and the only thing that happen was that my screen went completely black... so now my PC was online and I had no control!... I thought this could have been just a bug, or something similar, so I didn't think much of it

...but

The 2nd night, when I connected I plugged my external HD did some work etc and went online to upload some files, I was online for 15minuts or so.. when I went off line I realized that my previously empty recycle bin was full of work files that I had only stored on the external HD and 95% of these files where files I had never deleted!! ... the fact that these where all files linked to the design and not just random files make me very paranoid to that my system was/has been hacked..

Also there where two files in the recycle bin that where not related to my work and where on my local HD C: and had not been edited or modified at the same time or date as these work files and only about 25 files out of 100 from that cut/copied folder appeared in the previously empty recycle bin, ... so my the idea of these being some kind of ghost path files from my cut/copied action is based on a daft case..

I quickly remove my battery (thinking my system is being hacked tight now), and power on my pc in an non network area, a little later .. my recycle bin was now empty and no signs of these files, no option to restore either !?

Another Q is: if my system was hacked: why recycle bin? to cover up tracks?, or is it possibly being used as a gateway to copy files from my system?

if it was hacked they did it through a 3rd party modem which my Wi-Fi picks up..

I´ve already prepared a police report but I´m deeply hoping some of you experts can talk some sense to me and shine a light on the possibilities concerning my situation.

All the Best from Iceland!
Regards
Ari
 

My Computer

System One

My Computer

System One

  • Manufacturer/Model
    Fumz' Flux-Capacitor
    CPU
    E8400
    Motherboard
    DFI LP DK P35-T2RS
    Memory
    4GB G.Skill PC-1066
    Graphics Card(s)
    eVGA 8800 GTS
    Sound Card
    X-Fi XtremeGamer
    Monitor(s) Displays
    Samsung 226BW
    Screen Resolution
    1680x1050
    Hard Drives
    500GB W.D. RE2 Primary
    1TB W.D. Caviar GP WD10EACS
    PSU
    PC Power & Cooling Silencer 610
    Case
    Lian Li Lancool K62
    Cooling
    Thermalright Ultima-90/S-Flex 120mm
    Keyboard
    MS Natural Elite 4000 Ergonomic
    Mouse
    Logitech G5
    Internet Speed
    2.5MB/430
    Other Info
    D-Link DGL 4500
Thank you so much for your reply Fumz,

so the fact that these files are popping up in my recycle bin is un-natural?

there is no way Vista would do this automatically under any situation?

and this softwhare will tell me if other computers have accessed my pc? even if it was done by a pro hacker?...

again thanks for the links..
 

My Computer

System One

I can't really answer your questions definitively. Is it possible that Vista dumped a file in the recycle bin on its own? Sure, anythings possible. Is it likely? I can't say. What I can say is that in this situation, it's probably better to be safe than sorry?

If your work related product is being tampered with and you're sure you didn't put the files in the recycle, then whether or not it's some corporate hacker looking to steal secrets, some upstairs neighbor just hijacking your Wi-Fi or a virus, it really doesn't matter; the activity needs to be stopped. If it were me, and I had the same suspicions you do, which certainly seem like valid concerns, I'd be doing anything I could to secure the machine.

First I'd get some IDS software and run it. I can't recommend one over another, so if you have an IT guy at work, ask him. He's a much better resource than me. I'd also get some good anti-virus software, like EST NOD32 and run it. A really good firewall would also be high on my to-get list, Outpost Firewall Pro 2009 is the highest rated: Results and comments - matousec.com

Other things you could do would be to enable WPA instead of WEP on your wireless, start using passwords at least 16 characters long wherever passwords can be used, get the IDS software, don't use airport free Wi-Fi and maintain a running dialog with your IT guy until this is under control.

If I thought I was hacked I'd zero out the drive to assure myself the hacker left no traces of himself behind, but you may not be able to do that if you don't have the Vista installation DVD?

Does your router have NAT and SPI? If it does, then enable them.
 

My Computer

System One

  • Manufacturer/Model
    Fumz' Flux-Capacitor
    CPU
    E8400
    Motherboard
    DFI LP DK P35-T2RS
    Memory
    4GB G.Skill PC-1066
    Graphics Card(s)
    eVGA 8800 GTS
    Sound Card
    X-Fi XtremeGamer
    Monitor(s) Displays
    Samsung 226BW
    Screen Resolution
    1680x1050
    Hard Drives
    500GB W.D. RE2 Primary
    1TB W.D. Caviar GP WD10EACS
    PSU
    PC Power & Cooling Silencer 610
    Case
    Lian Li Lancool K62
    Cooling
    Thermalright Ultima-90/S-Flex 120mm
    Keyboard
    MS Natural Elite 4000 Ergonomic
    Mouse
    Logitech G5
    Internet Speed
    2.5MB/430
    Other Info
    D-Link DGL 4500
OK, here is something you need to talk to your company IT folks about.

You stated that when you went online you saw all these deleted files, and yet when you rebooted later in a non network area, there was nothing in your recycle bin.

If you have a network drive that is associated with your login account, and you log into your network, that network drive is ***not on your machine*** - and if anyone else went through and started deleting files ***from that network drive*** they would show in the recycle bin - and next time you connected you'll see them in the recycle bin.

Furthermore, if you moved a bunch of files from the network drive to your external drive, this might have caused the same behavior.

Finally, if you think you have been hacked you should *already8 have been talking to your company IT folks, not *us*. I understand that we can be helpful at times, but if the data is of a sensitive nature, you should not be waiting for however many days it has been - you should be talking to them *immediately* - for they are the ones that can stop any intrusion like that, and better than you - IT is what they do, not what *you* do.
 

My Computers

System One System Two

  • Operating System
    Windows 10 Pro X64 Insider Preview (Skip Ahead) latest build
    Manufacturer/Model
    The Beast Model V (homebrew)
    CPU
    Intel Core i7 965 EE @ 3.6 GHz
    Motherboard
    eVGA X58 Classified 3 (141-GT-E770-A1)
    Memory
    3 * Mushkin 998981 Redline Enhanced triple channel DDR3 4 GB CL7 DDR3 1600 MHz (PC3-12800)
    Graphics Card(s)
    eVGA GeForce GTX 970 SSC ACX 2.0 (04G-P4-3979-KB)
    Sound Card
    Realtek HD Audio (onboard)
    Monitor(s) Displays
    2 * Lenovo LT2323pwA Widescreeen
    Screen Resolution
    2 * 1920 x 1080
    Hard Drives
    SanDisk Ultra SDSSDHII-960G-G25 960 GB SATA III SSD (System)
    Crucial MX100 CT256MX100SSD1 256GB SATA III SSD (User Tree)
    2 * Seagate Barracuda 7200.12 ST31000528AS 1TB 7200 RPM SATA II Mech. HD
    Seagate ST1500DL001-9VT15L Barracuda 7200.12 1.5 TB S
    PSU
    Thermaltake Black Widow TX TR2 850W 80+ Bronze Semi-Mod ATX
    Case
    ThermalTake Level 10 GT (Black)
    Cooling
    Corsair H100 (CPU, dual 140 mm fans on radiator) + Air (2 *
    Keyboard
    Logitech G15 (gen 2)
    Mouse
    Logitech MX Master (shared)
    Internet Speed
    AT&T Lightspeed Gigabit duplex
  • Operating System
    Sabayon Linux (current, weekly updates, 5.1.x kernel)
    Manufacturer/Model
    Lenovo ThinkPad E545
    CPU
    AMD A6-5350M APU
    Motherboard
    Lenovo
    Memory
    8 GB
    Graphics card(s)
    Radeon HD (Embedded)
    Sound Card
    Conextant 20671 SmartAudio HD
    Monitor(s) Displays
    Lenovo 15" Matte
    Screen Resolution
    1680 * 1050
    Hard Drives
    INTEL Cherryvill 520 Series SSDSC2CW180A 180 GB SSD
    PSU
    Lenovo
    Case
    Lenovo
    Cooling
    Lenovo
    Mouse
    Logitech MX Master (shared) | Synaptics TouchPad
    Keyboard
    Lenovo
    Internet Speed
    AT&T LightSpeed Gigabit Duplex
Hey Johngalt, thanks for the reply ... indeed I think your right about the drives.. sorry if I came to the wrong place for this, but you and fumz have been most helpfull, and I work for a small/ new comp that does not have an any IT folks, I´m not a expert in anyway.. so this forum seamed to be a place to clear up my senario..

again thanks for the help!!

... and I must add you guys have the coolest profile images around ...

just a bit off topic but Fumz did you animate the little samuari animation yourself.. its kicking kool ass.. to put it in the right words..
 

My Computer

System One

Did figuring out if this was an issue of a missing network drive or not? If your firm has no IT guy, then you really need to tell your firm to hire one... seriously, like today. If your work product is, and we don't know anything yet, perhaps being compromised, it isn't the guys at this, or any forum who will be missing meals... it's you and your firm. How good are you with the boss?

lol, and no, I didn't animate this myself... if I made my sig it would be a few slashes with mspaint.
 

My Computer

System One

  • Manufacturer/Model
    Fumz' Flux-Capacitor
    CPU
    E8400
    Motherboard
    DFI LP DK P35-T2RS
    Memory
    4GB G.Skill PC-1066
    Graphics Card(s)
    eVGA 8800 GTS
    Sound Card
    X-Fi XtremeGamer
    Monitor(s) Displays
    Samsung 226BW
    Screen Resolution
    1680x1050
    Hard Drives
    500GB W.D. RE2 Primary
    1TB W.D. Caviar GP WD10EACS
    PSU
    PC Power & Cooling Silencer 610
    Case
    Lian Li Lancool K62
    Cooling
    Thermalright Ultima-90/S-Flex 120mm
    Keyboard
    MS Natural Elite 4000 Ergonomic
    Mouse
    Logitech G5
    Internet Speed
    2.5MB/430
    Other Info
    D-Link DGL 4500
You must log in or register to reply here.
Back
Top