For the second time within a month!
And the owner of the IP address, according to netstat at the time, 10.0.0.7 is to blame! Of course, seeing as how that's a private IP address, there is no doubt the guy spoofed it.
ZoneAlarm never detected a thing, but I sure did.
I noticed the tone of my computer's fan droning had changed, indicating a load shift. I checked Task Manager, and there was an odd process with no name (a space) eating up 80% CPU. So when I went to right click and kill it, my mouse pointer moved away from the task manager window! I immediately closed all my windows, ripped the phone cord out of the modem, and TADA, the process no longer took 80% CPU. I killed it with extreme prejudice.
It appears that they have screwed up my Explorer settings, for I do not see a boot.ini, ntldr, or ntdetect.com in C:\ when I browse with explorer, however they are there when viewing through cmd.exe.
They were pretty much pros at erasing their tracks, because I don't have an Event Viewer section under System Tools (My Computer\Manage...), and the files for AppEvent, SecurityEvent, SysEvent are all 0 bytes.
I did however, have a user account with a login, name, and description all reading "fury" who was a member of the following groups: Administrators, Backup Operators, Power Users, Replicator, User.
Now, I don't even recall adding a user account for fury (I log in as Administrator all the time), let alone do I lack as much common sense as to add myself to every group when I know very well just being in Administrators covers them all.
I have had all Service Pack, Critical Update, Intensive Care Update, Rollup, Rolldown, Rollingonthefloorlaughing, and Stopdropandroll packages installed that I could find for Win2k, so apparently there's still issues MS doesn't know about.
I cannot get to symantec.com, mcafee.com, networksolutions.com (they all resolve to the IP address 10.0.0.7
) but I did manage to get to PCPitstop.com but, expectedly, it did not find a thing, as it never does when I actually need it!
I checked services and found nothing out of the ordinary.
What else is there to check? Not that there'll be much point to it, since I'm going to install Linux as soon as I get a hardware modem... screw this being hacked all the time!
And the owner of the IP address, according to netstat at the time, 10.0.0.7 is to blame! Of course, seeing as how that's a private IP address, there is no doubt the guy spoofed it.
ZoneAlarm never detected a thing, but I sure did.
I noticed the tone of my computer's fan droning had changed, indicating a load shift. I checked Task Manager, and there was an odd process with no name (a space) eating up 80% CPU. So when I went to right click and kill it, my mouse pointer moved away from the task manager window! I immediately closed all my windows, ripped the phone cord out of the modem, and TADA, the process no longer took 80% CPU. I killed it with extreme prejudice.
It appears that they have screwed up my Explorer settings, for I do not see a boot.ini, ntldr, or ntdetect.com in C:\ when I browse with explorer, however they are there when viewing through cmd.exe.
They were pretty much pros at erasing their tracks, because I don't have an Event Viewer section under System Tools (My Computer\Manage...), and the files for AppEvent, SecurityEvent, SysEvent are all 0 bytes.
I did however, have a user account with a login, name, and description all reading "fury" who was a member of the following groups: Administrators, Backup Operators, Power Users, Replicator, User.
Now, I don't even recall adding a user account for fury (I log in as Administrator all the time), let alone do I lack as much common sense as to add myself to every group when I know very well just being in Administrators covers them all.
I have had all Service Pack, Critical Update, Intensive Care Update, Rollup, Rolldown, Rollingonthefloorlaughing, and Stopdropandroll packages installed that I could find for Win2k, so apparently there's still issues MS doesn't know about.
I cannot get to symantec.com, mcafee.com, networksolutions.com (they all resolve to the IP address 10.0.0.7
) but I did manage to get to PCPitstop.com but, expectedly, it did not find a thing, as it never does when I actually need it!I checked services and found nothing out of the ordinary.
What else is there to check? Not that there'll be much point to it, since I'm going to install Linux as soon as I get a hardware modem... screw this being hacked all the time!
Well theres a downer in my day, Bring Back Napster.