675,865 reviews,
402 today

ipsa · 11-07-2003, 03:42 PM

I have been told that someone has been hacking into the network that I utilize and been reading web based materials and internet sites for security leaks. (Ex-spouse employee of IT director)

I have my personal computer logged into this network that I rent from. I am not an employee of this company network. I know it is not the most secure, so I have to be suspicious. No privacy policy.

I believe I am being hacked by someone on this network, and it is most likely software based. I do not let anyone have access or install anything on this computer without my permission. I am confident that there has not been anyone accessing my cpu directly. (So are there employee spyware software out there that can be installed remotely)

Here is what I suspect. I think a Spector or like key logger may be on my system and have tried all the free-ware to get it off. (I suspect spector because I heard our IT had it) I have not had too much luck in identifying any "funny" processes in task manager. (I am a beginner at registry stuff) I am linked to the internet over a "internet gateway" that was not always there, and this gateway always seem to be sending and receiving bytes (is this OK) and in addition, when viewing my task manager networking graph it is always moving, never higher than .1%, but it looks like a constant seepage.

Also, I have access and am authorized to use all computers and servers since I provide them with consultation on accounting services, and want to know what to look fore if I do get a chance to see what computer programs are installed.

I want to know software that will detect spector pro or a procedure to locate a spector on my computer, and then after detection and removal, would a wireless connection prevent anyone from being able to get onto my web history and key logging and emails.

Thank you ahead of time

noprob · 11-07-2003, 04:00 PM

I'm certain you will get a better reply soon.
all I can say is I use Zonealarm(software based firewall) and I use Ad-Aware,also another program called Spybot-search&destroy.
These programs are all free for personal use and work very well for me.
also it may help assist others in this were you to state your operating system used.
Good Luck & Welcome to TechIMO!

P.S. the programs are linked on my www page

John Prophet · 11-07-2003, 04:07 PM

Welcome to the forum!

Not my area of expertise either.

But there are a few things Id do first.

Go to www.symantec.com and do their virus check...or www.antivirus.com

Download and install "ad aware"..its free and it checks for "spyware"

Do a google search for "Spector"

John Prophet · 11-07-2003, 04:08 PM

Wireless is LESS secure, lol. With wireless a kid riding around on his bike near your house can tell what brand of toothpaste your gerbil uses.....

John Prophet · 11-07-2003, 04:12 PM

http://securityresponse.symantec.com...c.spector.html

ipsa · 11-10-2003, 09:25 AM

thanks for the help and fast reply. does not look like spector is on my system, but what if something else is?

FYI i run Windows XP sp1.

anyone know where i can post my processes so that an expert may review and identify anything suspect. I can show all of the4m using sentinal.

I keep looling at my network connection and see that on a reboot and system just sitting idle i have bytes in the mega range going here and there, but if i do the same at home, there is no activity.

puk · 11-10-2003, 09:39 AM

Quote:

Originally posted by ipsa

anyone know where i can post my processes so that an expert may review and identify anything suspect. I can show all of the4m using sentinal.

post them right here!
take a screen shot and post it!

puk

Chuckiechan · 11-10-2003, 09:39 AM

Simply put, you are trying to remove a program. Keep it simple. Since you own the computer you don't have to be sneaky...

I would try a file search under "spectator.*" and see what turns up. See if there is an unistaller, if not, delete the .exe file, (or the whole folder). Or the .dat file (it may operate bur won't collect data).

Next I would try a registry search.:

start/run/regedit

If you find something, make a backup copy of your registry (export to _____). Read up on how to import a registry from a set of floppies or a CD. (Bootable?)

Then delete the line in the registry. Do note the line may be a red herring and it may be hidden else where under another name.

MY .02 but there are many people on this board who know much more than me!

PS: We love good detective stories!

Galaxy_EGS · 11-18-2003, 01:28 PM

Here's a link you can also try:

http://www-tcsn.experts-exchange.com

Good luck

675,865 reviews, 402 today

675,865 reviews,
402 today