locked work station. - Page 2 - GM Forum - Buick, Cadillac, Chev, Olds, GMC & Pontiac chat


Lounge For casual talk about things unrelated to General Motors. In other words, off-topic stuff. And anything else that does not fit Section Description.

Reply
 
 
 
Thread Tools Search this Thread
Old 02-27-2006, 09:03 PM   #11
Senior Member
True Car Nut
 
Join Date: Jan 2006
Location: NEBF:06,07 | NYBF:06,07 | ONBF:06,07 | CNBF:06 & more............
Posts: 8,029
Thanks: 0
Thanked 0 Times in 0 Posts
bandit is on a distinguished road
Default

do you have any virus protection on there?, if not get AVG or something as good or better then it.

also you might want to run..

Adaware
Spybot
Spysweeper
Pest Patrol

on there just to make shure everything is gone..
yes run as many as you can / can get, cuz one doesn't always get all the spyware
bandit is offline   Reply With Quote
Old 02-27-2006, 09:19 PM   #12
Junior Member
Thread Starter
 
Join Date: Aug 2002
Posts: 0
Thanks: 0
Thanked 0 Times in 0 Posts
Custom88 is on a distinguished road
Default

A little more info. I checked the DMZ on my router, and yep, as much of a moron I am, I had it enabled to the IP address of my computer. I have now disabled it. I also checked my modem log and found that there were these incoming requests.
Source IP Destination Port Number
72.14.205.83 1966
70.84.40.148 43200
57.9.41.208 80

I also checked my bandwidth monitor and my computer has uploaded 80 MB of data today, and downloaded a total of 23MB. I just started using the computer tonight, so it looks like they took some data whoever they were.

I have Norton/symantec antivirus and I use adaware and spybot. None of them showed anything as being wrong when I ran virus/spyware, etc scans. wierd.

I did a reverse search on those IP addresses. One was google, one was to a site www.theplanet.com that I've never been to before, and another was for a home computer located in SWITZERLAND.
Custom88 is offline   Reply With Quote
Old 02-27-2006, 09:28 PM   #13
Senior Member
True Car Nut
 
Join Date: Jul 2004
Location: Twin Falls, Idaho
Posts: 7,545
Thanks: 0
Thanked 1 Time in 1 Post
Hans is on a distinguished road
Default

Quote:
Originally Posted by BLACK94SSEi
Someone probably got access to your PC. You can run a software firewall, but it becomes a nuisance when it asks you every time, based on your settings if you want to allow your computer to connect to the requested site.
Thats why I like sygate (which was recently bought out)

I believe zone alarm still exists but have not used it lately.

Software firewalls allow applications you use to go out to the outside world. and it is a one a time type thing...you need to use mozilla to get out to the net and send and receive packets at port 80..no problem...set it once and forget.

It has NOTHING TO DO with the site, just the inbound and outbound ports.

Either way this type of attack would have been prevented if proper security was in place on the box.
Hans is offline   Reply With Quote
Old 02-27-2006, 09:29 PM   #14
Senior Member
True Car Nut
 
Join Date: Jan 2006
Location: NEBF:06,07 | NYBF:06,07 | ONBF:06,07 | CNBF:06 & more............
Posts: 8,029
Thanks: 0
Thanked 0 Times in 0 Posts
bandit is on a distinguished road
Default

sounds like you got Hacked..
bandit is offline   Reply With Quote
Old 02-27-2006, 09:33 PM   #15
Senior Member
True Car Nut
 
Join Date: Jan 2006
Location: NEBF:06,07 | NYBF:06,07 | ONBF:06,07 | CNBF:06 & more............
Posts: 8,029
Thanks: 0
Thanked 0 Times in 0 Posts
bandit is on a distinguished road
Default

Quote:
Originally Posted by Hans
Thats why I like sygate (which was recently bought out)

I believe zone alarm still exists but have not used it lately.

Software firewalls allow applications you use to go out to the outside world. and it is a one a time type thing...you need to use mozilla to get out to the net and send and receive packets at port 80..no problem...set it once and forget.

It has NOTHING TO DO with the site, just the inbound and outbound ports.

Either way this type of attack would have been prevented if proper security was in place on the box.
Yup Zone Alarm is still out there, and its still one of the best...
http://www.zonelabs.com/store/content/home.jsp

the one thing i dont like about software firewalls is sometimes they dont let you know when they block something, Like TurboTax, iv run it to that problem lots of times..
bandit is offline   Reply With Quote
Old 02-27-2006, 09:42 PM   #16
Senior Member
True Car Nut
 
Join Date: Jan 2005
Location: Montevideo, MN MWBF '05, '06, '07 WCBF '06 '07 survivor
Posts: 3,882
Thanks: 0
Thanked 0 Times in 0 Posts
sonoma_zr2 is on a distinguished road
Default

http://home.eunet.no/~pnordahl/ntpasswd/cd050303.zip

go here and get this bin image, burn to cd, boot computer, and change admin password. One trick, don't change to "blank" password. It usually doesn't work then. Set an actual password and you'll have no problems
sonoma_zr2 is offline   Reply With Quote
Old 02-27-2006, 10:05 PM   #17
Senior Member
True Car Nut
 
Join Date: Jul 2004
Location: Twin Falls, Idaho
Posts: 7,545
Thanks: 0
Thanked 1 Time in 1 Post
Hans is on a distinguished road
Default

Quote:
Originally Posted by bandit
sounds like you got Hacked..
Never personally but thats how I got my last job...(previous guy as an idiot, lots of confidential customer information was stolen off the multiple workstations due to a gaping hole in the way the network was set up.....there was a hw firewall on the network protecting the servers but the workstatins were wide open)


You are correct when it comes to turbotax becuase some users (who should not be on a PC) will click NO during the intial turbotax install/launch when the zone/sygate/norton dialog box comes up and from then on it will block the program without ever letting the user know it is being blocked unless you look in the firewall software to unblock it...but they should not be using turbotax and going to H&R block
Hans is offline   Reply With Quote
Old 02-27-2006, 10:12 PM   #18
Senior Member
True Car Nut
 
Join Date: Jan 2006
Location: NEBF:06,07 | NYBF:06,07 | ONBF:06,07 | CNBF:06 & more............
Posts: 8,029
Thanks: 0
Thanked 0 Times in 0 Posts
bandit is on a distinguished road
Default

Quote:
Originally Posted by Hans
Quote:
Originally Posted by bandit
sounds like you got Hacked..
Never personally but thats how I got my last job...(previous guy as an idiot, lots of confidential customer information was stolen off the multiple workstations due to a gaping hole in the way the network was set up.....there was a hw firewall on the network protecting the servers but the workstatins were wide open)


You are correct when it comes to turbotax becuase some users (who should not be on a PC) will click NO during the intial turbotax install/launch when the zone/sygate/norton dialog box comes up and from then on it will block the program without ever letting the user know it is being blocked unless you look in the firewall software to unblock it...but they should not be using turbotax and going to H&R block
i ment for Custom88,

but yeah thats what stupid people do they block it and forget, but im not aloud to uninstall or change a person firewall setting they have to do it on there own...

i also hate that AOL 9.0 security edition, i blocks everything turbotax trys to do....
i wish AOL would blow up...

AOL
bandit is offline   Reply With Quote
Old 02-27-2006, 10:25 PM   #19
Senior Member
Posts like a Northstar
 
Join Date: Nov 2002
Location: Va Beach VA, Where ever I may Roam!
Posts: 773
Thanks: 0
Thanked 0 Times in 0 Posts
Rosco the Iroc is on a distinguished road
Default

Ok this may sound dumb, but did YOU lock it when you left? If not someone just got on there. Firewalls are no help if you leave it open.
Rosco the Iroc is offline   Reply With Quote
Old 02-27-2006, 10:35 PM   #20
Junior Member
Thread Starter
 
Join Date: Aug 2002
Posts: 0
Thanks: 0
Thanked 0 Times in 0 Posts
Custom88 is on a distinguished road
Default

definately didn't lock it myself because I don't even know how to do that from the welcome screen. lol. You can lock it by using ctrl alt del if you don't use fast user switching, but if you DO use it, I'm not exactly sure how you lock a workstation. I have zone alarm installed now too. Hopefully this doesn't happen again, I have no idea what information they got off of here.. My documents folder is 80MB though.
Custom88 is offline   Reply With Quote
 
 
Reply

Related Topics
Thread Thread Starter Forum Replies Last Post
Best Gas Station? Strangelove General GM Chat 24 08-15-2004 05:38 PM
Bonneville Station Wagon 95SLE General GM Chat 16 07-06-2004 05:55 AM
Gas Station pumps ssesc93 Lounge 12 03-31-2004 03:56 AM
Need Help with Grand Safari Station Wagon Interchange razorback Classics (Star Chief and 1957 to 1986) 1 03-19-2004 10:07 PM
SIGNS IT'S TIME TO ABANDON YOUR SPACE STATION BadTA00 Lounge 1 12-28-2003 02:25 PM


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



All times are GMT -4. The time now is 02:50 AM.


We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.