I've been hacked!

My home comp has been hacked, I'm pretty sure. I look under "connections" in the Norton program and lately http80 has been actively connecting to remote computers. Someone has taken over the computer and is going to www.walmartdownloads.com, napster.com and several others including realprogrammers.com which I found out is a hacker site. Over 1,000,000 bytes of info have been received on my computer from these sites. Does anyone know exactly what is going on and what I can do about it?

Something like "Ad Aware" which is free and will zap spyware might rid your computer of this.

Get ZoneAlarm Firewall.
Also, AdAware SE Personal, and Spybot Search & Destroy
All are available at www.download.com

Start with those and clean up your PC. If problems persist, check out the Computer group here at DU. More powerful tools exist, but not certain you need them yet.

big difference, it finds, and gets rid of a lot more stuff then using it as a user..

clean yer stuff, THEN get back on.

If you can still use the computer, go to these sites:





These are worm, spyware, and trojan detecting programs.

You should also either enable the Microsoft built-in firewall (if available), or go to to get a copy of their free personal-use firewall program.

Finally, get thy butt on over to McAfee or Symantec and use one of their free virus scanning programs. Install and run it.

Once you have these downloaded, installed, and registered, run them.

I'd also recommend that you be sure to visit the Windows Update site and make sure your system is fully patched.

Good luck.

and converted into a pirate warez ftp site. There were about 10gb of warez hidden in a subfolder in the windows directory- the folder was hidden by being named like a dll file.

His machine had slowed down to a crawl because it was open to the world, and the world was downloading from it constantly.

So yes, this crap does happen. You need to firewall your computer, do a virus scan with an uncompromised scanner, and keep an eye open for excess cpu usage and unaccounted-for network usage.

The best way to firewall it is to put a good router on your network, even if you have only one computer. They all come with good hardware firewalls, and it basically hides your computer from the world. I do not like the Windoze native firewall-- I simply don't trust it to be as virgin-pure and invincible as they claim it is. And although Zone Alarm is pretty good (I use it myself), it can be a major pain if you accidentally block the wrong thing. You may suddenly find yourself unable to browse the web, for instance. And if you block port 80, you will most definitely be unable to browse, as that's the default for web browsers.

And I run Spybot, Adware and Norton on a regular basis and they come up with nothing. But the computer is definitely being connected to sites.

Here, about 3/4 way down the page: http://www.spywareinfo.com/downloads.php
Simplest is to download it, run it, and Google anything mysterious-sounding that turns up along with "HijackThis log" and check it against one of the many help desk inquiries that you find among the search results.
And thanks for reminding me: there's something funny on my computer, too, that I need to check on.
Off topic, but you probably have the best screenname on DU.

get yourself a Netgear or Linksys gateway router to use along with your software security. And please, change all defaults on the router when you configure it. You would be amazed at how many people in my area using WiFi just plug the things into their PC and walk away. I've hacked into my neighbors Linksys and an SMC router because the owners haven't changed the default logins or passwords.

A 'gateway router' isn't really a firewall at all. It just uses NAT to separate internal network addresses from external ones.

Better than nothing, but to call a gateway router a firewall is a bit of a misnomer.

but it does serve as another line of defense for someone who can't afford to go out and buy a PIX.

http://www.grc.com/default.htm

not so frequently with the reloads and the check disk repairs and the writing 0s to the hard drive since I started closing shit up that I won't be using.

I'm pretty rock solid secure, but that has some handy utilities.

a trojan or backdoor allowing access. Norton is solid at trojans, but not as good as Kaspersky AV, which I use. You can download an evaluation of Kaspersky at www.kaspersky.com. Also try online checks like McAfee's and Trend Micro's HouseCall.

If you are clean, then it's a concern, because usually script kiddies can't bypass your software firewall. In that case, I'd do a format of the computer, and get an NAT router with good password protection.

they use your computer as a server. It is in the fine print. Zone Alarm kept asking me if I wanted my computer used as a server by coolsavingsandcoupons.com. I thought What to fuck ? That's what it was.