Can anyone tell me what this is? Recently been hacked.

AlphaDawg · 16 Nov 2017 at 17:00

Problem Solved Thanks

Malevolence · 16 Nov 2017 at 17:06

No idea, but did you really use a camera to take a photo of your screen rather than just taking a screenshot? :confused:

Deleted member 77746 · 16 Nov 2017 at 17:06

They are users on a Domain Network in a LAB environment called WIN-SRV-16-LAB.

Someones playing with you.

#Chri5# · 16 Nov 2017 at 17:07

What are we commenting on? The membership of an Active Directory group called HR?

skaif · 16 Nov 2017 at 17:09

I think he means that he found that image on his desktop?

Mynight · 16 Nov 2017 at 17:10

Reinstall PC.

I assume you've upset someone.

AlphaDawg · 16 Nov 2017 at 17:13

What is it though I'm totally puzzled?

AlphaDawg · 16 Nov 2017 at 17:14

mrbell1984 said:
They are users on a Domain Network in a LAB environment called WIN-SRV-16-LAB.

Someones playing with you.

I don't have a clue what that means can you kindly help me out?

Deleted member 77746 · 16 Nov 2017 at 17:16

AlphaDawg said:
I don't have a clue what that means can you kindly help me out?

Someone has a lab probably in a virtual machine and added you as a user of their network then dumped a screenshot on your desktop remotely probably. You should format your PC and make sure you change your passwords for everything.

AlphaDawg · 16 Nov 2017 at 17:20

mrbell1984 said:
Someone has a lab probably in a virtual machine and added you as a user of their network then dumped a screenshot on your desktop remotely probably. You should format your PC and make sure you change your passwords for everything.

Ok I shall format. What damage can be done by adding me as a user to a lab in a virtual machine?

#Chri5# · 16 Nov 2017 at 17:24

Near impossible to say - do any of the names on the screen mean anything to do? Work related? abc.l.com?

Deleted member 77746 · 16 Nov 2017 at 17:24

AlphaDawg said:
Ok I shall format. What damage can be done by adding me as a user to a lab in a virtual machine?

Not a single thing. I highly doubt this is related to your Paypal/eBay unless the computer network you are on now is called abc.l.com ? Then they could run group policies and run all sorts.

Make sure you change all your passwords for all sites and 100% sure to format.

AlphaDawg · 16 Nov 2017 at 17:25

#Chri5# said:
Near impossible to say - do any of the names on the screen mean anything to do? Work related? abc.l.com?

No I have one friend who is studying Networking at Uni and uses virtual machines. He's abit of a prankster but I doubt he'd do this?

AlphaDawg · 16 Nov 2017 at 17:26

mrbell1984 said:
Not a single thing. I highly doubt this is related to your Paypal/eBay unless the computer network you are on now is called abc.l.com ? Then they could run group policies and run all sorts.

Make sure you change all your passwords for all sites and 100% sure to format.

Ok thankyou I appreciate your help. What would be the point of adding my name to a user on a virtual machine? Strange. I will fully format later.

Mynight · 16 Nov 2017 at 17:28

Surely if they've got the ability to drop files on his desktop they could have pulled files as well? I.e. the browser password store?

Seems a really weird thing to do though. I could understand breaking into the paypal but to tell the victim you've done it just seems weird.

Deleted member 77746 · 16 Nov 2017 at 17:29

AlphaDawg said:
Ok thankyou I appreciate your help. What would be the point of adding my name to a user on a virtual machine? Strange. I will fully format later.

Just to scare you, It's probably done to mess about with you so it 'appears' to have done something but really in a lab it wouldn't be anything to worry about.

Go to command prompt (CMD) and see if you can "ping abc.l.com" just out of curiosity. If you get "Ping request could not find host abc.l.com. Please check the name and try again." you are perfectly fine. If you get a "reply" then I would be a little bit more concerned.

Nasher · 16 Nov 2017 at 17:29

Theres not enough context to say what it is. Just users in a security group.

Deleted member 77746 · 16 Nov 2017 at 17:30

Mynight said:
Surely if they've got the ability to drop files on his desktop they could have pulled files as well? I.e. the browser password store?

Seems a really weird thing to do though. I could understand breaking into the paypal but to tell the victim you've done it just seems weird.

Agreed, could be anything though without actually diving into the machine to see what else is lurking about.

AlphaDawg · 16 Nov 2017 at 17:32

mrbell1984 said:
Just to scare you, It's probably done to mess about with you so it 'appears' to have done something but really in a lab it wouldn't be anything to worry about.

Go to command prompt (CMD) and see if you can "ping abc.l.com" just out of curiosity. If you get "Ping request could not find host abc.l.com. Please check the name and try again." you are perfectly fine. If you get a "reply" then I would be a little bit more concerned.

Nothing found in CMD. What is a lab? and what is it used for? Fingers crossed nothing else happens.

Deleted member 77746 · 16 Nov 2017 at 17:33

AlphaDawg said:
Nothing found in CMD. What is a lab? and what is it used for? Fingers crossed nothing else happens.

A lab is just another way to "test" network environments and to learn.