- Dec 17, 2007
- 74
- 0
- 66
i'm pretty sure hackers access my computer constantly.
I had some issue with a particular IP address, forgot exactly what it was, but the firewall was seeing that it was accessing the computer even though it was supposed to be specifically blocked by the firewall. so I got a packet sniffer to see what was going on, it caught any other traffic *except* from that address.
sometimes I close IE, but the DUN icon keeps going. nothing else should be running. automatic updates turned off, haven't used a program that would be calling home looking for updates like they always want to do.
sometimes I open programs, they'll open up with a non-fullscreen window even though I always use them fullscreen, did last time and closed them that way last time. IE, outlook and excel do that fairly often.
I have the security policy set to log anything, but nothing unusual shows up.
last but not least, I'd be off doing something else and the computer makes the noise it does when a removable device is unplugged. that's happened 3 times.
yes, I have already reinstalled windows. several times.
I'm sure it's possible to remotely connect to a computer and get around the firewall, avoid detection by the security policy, and connect and disconnect remote devices such as a virtual drive.
but how can I find out who does it, what they're doing or getting, how they're doing it and when they do it?
I had some issue with a particular IP address, forgot exactly what it was, but the firewall was seeing that it was accessing the computer even though it was supposed to be specifically blocked by the firewall. so I got a packet sniffer to see what was going on, it caught any other traffic *except* from that address.
sometimes I close IE, but the DUN icon keeps going. nothing else should be running. automatic updates turned off, haven't used a program that would be calling home looking for updates like they always want to do.
sometimes I open programs, they'll open up with a non-fullscreen window even though I always use them fullscreen, did last time and closed them that way last time. IE, outlook and excel do that fairly often.
I have the security policy set to log anything, but nothing unusual shows up.
last but not least, I'd be off doing something else and the computer makes the noise it does when a removable device is unplugged. that's happened 3 times.
yes, I have already reinstalled windows. several times.
I'm sure it's possible to remotely connect to a computer and get around the firewall, avoid detection by the security policy, and connect and disconnect remote devices such as a virtual drive.
but how can I find out who does it, what they're doing or getting, how they're doing it and when they do it?
