While I was typing an message in mail, someone took over and within a few seconds had typed into the body of my message some unix commands and the phrase "you have been owned or you are owned" When I saw what was going on, I immediately did a save draft with the subject line reading the phase they had typed. I then went back to my message finished it and sent it.
When I went to find the draft copy of the hack, it was not in my "drafts" folder on Mail and I really got nervous.
I am at your mercy to give me some advice on how to proceed.
I have check my router Linksys WRT54GS and cut all port forward I had on off to my System. I had these ports open for various purposes:
8000,8001,22,3283,5900,and 80.
I made sure that remote management of router was not turned on.
I then cut off the UPnP feature as it was on to allow me to see my screen remotely.
I then looked at my Systems Firewall and turned off allow incoming connections and selected only essential services.
I am on an Model Name: Mac Pro
Model Identifier: MacPro4,1
Processor Name: Quad-Core Intel Xeon
Processor Speed: 2.66 GHz
Using 10.5.8
I have mobile me and use it for my email server.
I do have one more email account on Gmail.
My ISP is Clear as I just dropped ATT DSL last month.
I can't think of what else would be vital to tell you right now but please give me some advice.
Is there a log the system keeps that would allow me to look to see where he got into my system and if he is still connected some how?
I also changed the default password for my Router, just in case he was able to hack in there some how.
Since he was typing on my screen, he must have gotten into my LAN.
I have many computers on this LAN, three of which are being used by a family that are totally clueless to security. They have three elementary age kids who use the network also.
I feel like I been hit by a thief!
When I went to find the draft copy of the hack, it was not in my "drafts" folder on Mail and I really got nervous.
I am at your mercy to give me some advice on how to proceed.
I have check my router Linksys WRT54GS and cut all port forward I had on off to my System. I had these ports open for various purposes:
8000,8001,22,3283,5900,and 80.
I made sure that remote management of router was not turned on.
I then cut off the UPnP feature as it was on to allow me to see my screen remotely.
I then looked at my Systems Firewall and turned off allow incoming connections and selected only essential services.
I am on an Model Name: Mac Pro
Model Identifier: MacPro4,1
Processor Name: Quad-Core Intel Xeon
Processor Speed: 2.66 GHz
Using 10.5.8
I have mobile me and use it for my email server.
I do have one more email account on Gmail.
My ISP is Clear as I just dropped ATT DSL last month.
I can't think of what else would be vital to tell you right now but please give me some advice.
Is there a log the system keeps that would allow me to look to see where he got into my system and if he is still connected some how?
I also changed the default password for my Router, just in case he was able to hack in there some how.
Since he was typing on my screen, he must have gotten into my LAN.
I have many computers on this LAN, three of which are being used by a family that are totally clueless to security. They have three elementary age kids who use the network also.
I feel like I been hit by a thief!
Now the question is... did you leave your door wide open for him?