Suspicious activity on my mac
I have a friend here at school who is majoring in computer engineering. I use the term losely because its more of a social friendship. We drink and socialize at college. At the begining of the year, maybe about 6 days after i got a new computer, He called me up over the phone and wanted me to build a website with me. Told me I can be an admin for a fraternal social networking site he wanted to start. Thusly I agreed and made an admin account using my password thats used for everything. After getting back to school for this semester, he invited me out to lunch to just talk and get back in touch. We mulled over ideas for the site, but it ended up going no where.
Recently I have been experience several hour long lag spikes. I am talking about 48 kbs internet through a wired connection with a Dlink router. I assumed it was my room mate downloading music. I then accessed the router using 192.168.1.1 and blocked all websites with the name torrent bit isohunt and such. The problem didn't resolve. I then proceeded to block access from his computer to the router, so his internet wouldn't work. The problem didn't stop. I then disconnected the router, and directly connected to my computer and then ran a bandwidth test. It showed a speed of 700 kbs.
Then I went and downloaded Little Snatch, a program used to check outgoing data. I had it running in the back round.
After doing that, I created a membership here and started typing away. From about 4 in the morning to 6, I had been doing Due Diligence about hacking and OSX. I learned to look for files that looked out of place. I found one.
In the documents folder
A folder called Microsoft User Data
In this folder was an Entourage folder that was dated before I bought my mac.
In the Entourage folder were files I could click on as read the script.
There were also files in the Automator.
Also, is this activity in my library/prefernces suspicious?
At the point I thought i was being hacked, and thought the hacker was looking at my computer, it was 6:30am...after two hours of Due Diligence.
I typed into a text document..
YOU HACKER I KNOW YOUR LOOKING AT THIS RIGHT NOW. YOU THINK YOU CAN STOP ME. I AM ABOUT TO FIND OUT WHO YOU ARE.
...and started writing this article.
Now the first time I tried typing this in, My browser froze half way through the article. At this point, I had kept disconnecting and reconnecting my computer to the router because I was paranoid. Then, at one point i just decided to connect directly to the router. When i went back to the web, my internet jumped from 48 kbs on the bandwidth site to 400 kbs. I was then asked by an unknown source with an IP in columbus ohio (I'm located 2 hours away from columbus) to access my computer. A notification send by Little Snitch. I kept the message up while writting down its ip, and while writting this article for the second time. My internet web browser soon froze. It was in the middle of looking up the Ip and typing this.
The third time around i blocked everything accessing my computer.
Little snitches connection history shows
dns-cac-lb-02.rr.com
dns-cac-lb-0a.rr.com
10.24.17.107
10.24.17.102
At the point I thought i was being hacked, and thought the hacker was looking at my computer, it was 6:30am...after two hours of Due Diligence.
I typed into a text document..
Another suspicious thing. Before I got all paranoid and started blocking connections through Little Snitch.....I was observing the Activity Monitor and saw constant and blinking usage form MDworker. It was only flickering at around 1 percent, and stopped doing this as soon as I started managing Little Snitch.
Im constantly looking for more stuff. Let me know if I'm paranoid of if I'm on to something here. Im deeply worried.
I have a friend here at school who is majoring in computer engineering. I use the term losely because its more of a social friendship. We drink and socialize at college. At the begining of the year, maybe about 6 days after i got a new computer, He called me up over the phone and wanted me to build a website with me. Told me I can be an admin for a fraternal social networking site he wanted to start. Thusly I agreed and made an admin account using my password thats used for everything. After getting back to school for this semester, he invited me out to lunch to just talk and get back in touch. We mulled over ideas for the site, but it ended up going no where.
Recently I have been experience several hour long lag spikes. I am talking about 48 kbs internet through a wired connection with a Dlink router. I assumed it was my room mate downloading music. I then accessed the router using 192.168.1.1 and blocked all websites with the name torrent bit isohunt and such. The problem didn't resolve. I then proceeded to block access from his computer to the router, so his internet wouldn't work. The problem didn't stop. I then disconnected the router, and directly connected to my computer and then ran a bandwidth test. It showed a speed of 700 kbs.
Then I went and downloaded Little Snatch, a program used to check outgoing data. I had it running in the back round.
After doing that, I created a membership here and started typing away. From about 4 in the morning to 6, I had been doing Due Diligence about hacking and OSX. I learned to look for files that looked out of place. I found one.
In the documents folder
A folder called Microsoft User Data
In this folder was an Entourage folder that was dated before I bought my mac.
In the Entourage folder were files I could click on as read the script.
There were also files in the Automator.
Also, is this activity in my library/prefernces suspicious?
At the point I thought i was being hacked, and thought the hacker was looking at my computer, it was 6:30am...after two hours of Due Diligence.
I typed into a text document..
YOU HACKER I KNOW YOUR LOOKING AT THIS RIGHT NOW. YOU THINK YOU CAN STOP ME. I AM ABOUT TO FIND OUT WHO YOU ARE.
...and started writing this article.
Now the first time I tried typing this in, My browser froze half way through the article. At this point, I had kept disconnecting and reconnecting my computer to the router because I was paranoid. Then, at one point i just decided to connect directly to the router. When i went back to the web, my internet jumped from 48 kbs on the bandwidth site to 400 kbs. I was then asked by an unknown source with an IP in columbus ohio (I'm located 2 hours away from columbus) to access my computer. A notification send by Little Snitch. I kept the message up while writting down its ip, and while writting this article for the second time. My internet web browser soon froze. It was in the middle of looking up the Ip and typing this.
The third time around i blocked everything accessing my computer.
Little snitches connection history shows
dns-cac-lb-02.rr.com
dns-cac-lb-0a.rr.com
10.24.17.107
10.24.17.102
At the point I thought i was being hacked, and thought the hacker was looking at my computer, it was 6:30am...after two hours of Due Diligence.
I typed into a text document..
Another suspicious thing. Before I got all paranoid and started blocking connections through Little Snitch.....I was observing the Activity Monitor and saw constant and blinking usage form MDworker. It was only flickering at around 1 percent, and stopped doing this as soon as I started managing Little Snitch.
Im constantly looking for more stuff. Let me know if I'm paranoid of if I'm on to something here. Im deeply worried.