1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Solved: How Do I Get IP Address of Virus Sender

Discussion in 'General Security' started by LadeeSarah, Dec 24, 2012.

Thread Status:
Not open for further replies.
Advertisement
  1. LadeeSarah

    LadeeSarah Thread Starter

    Joined:
    Dec 24, 2012
    Messages:
    4
    I was hit with a virus, my computer collapsed which resulted in hundreds of lost research and files. I was informed that I could take my computer into a computer tech/repair guy and he can find the IP address of the [virus] sender. I had a likely suspect, but was careful not to point fingers. I let the suspect know that I learned how an IP address can be retrieved from the hard drive and gave him a verbal warning, if I find he is responsible for sending me the virus, felony charges will be brought against him. I suspect the IP address would have proven to be valuable b/c a few days later, my computer is hit with a 2nd virus, I suspect from a different IP address. Note, my computer was not on when the 2nd virus came through.

    My questions are:

    Can I see both IP addresses on the hard drive where the viruses came from?

    What is the process and steps that allows me see the IP addresses on my hard drive of the person/s who sent my computer both viruses?

    Thank you!
     
  2. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    115,911
    First Name:
    Karen
    If you suspect it came by e-mail then you can look at the header but that information can be faked so it's not really that reliable. You generally would have to click on something to execute the virus. If that's not the case then how do you suspect it was sent to you?
     
  3. LadeeSarah

    LadeeSarah Thread Starter

    Joined:
    Dec 24, 2012
    Messages:
    4
    I believe the virus came via cable. The 1st time, I was on Facebook or Twitter when my computer collapsed. A reinstall of factory default programs was performed and then Windows, etc. The 2nd virus was known after I logged onto the computer and the same process took place. Note: I now have Norton Virus 360 Premium w/FireWall settings active and I hope Norton will protect and block my computer from a possible 3rd virus.

    My on-line activity is under 24/7 day surveillance. I suspect it's through Black Market activity. I will take any suggestions and strategies that prevent on-line monitoring cameras from tracking my online activity. Thank you.
     
  4. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    115,911
    First Name:
    Karen
    A virus can't just come in unless there is a weakness somewhere or you visit a site that's been compromised, clicked on something etc.

    Why was a factory reset done without first retrieving information that would be lost? It's important to keep backups of important data on some external media for just this type of situation so nothing gets lost.

    What anti-virus protection were you using before?

    Are you connecting through a router or just a simple modem?
     
  5. LadeeSarah

    LadeeSarah Thread Starter

    Joined:
    Dec 24, 2012
    Messages:
    4
    Norton Virus, unknowingly, the computer was on a Norton Virus trial and not the actual Norton Virus 360 Premium.

    Q: Are you connecting through a router or just a simple modem?

    A: I have a box that connects to the phone line and a separate one to the computer, so I have both a router and a modem.
     
  6. lunarlander

    lunarlander

    Joined:
    Sep 21, 2007
    Messages:
    11,882
    Well, you have reloaded Windows, and I assume you have reformatted the hard drive in doing so. So any evidence of where the virus came from is gone. If you wish to pursue legal action, you need to give your PC to a forensics investigator, immediately after being hit with a virus, and not touch that PC.
     
  7. LadeeSarah

    LadeeSarah Thread Starter

    Joined:
    Dec 24, 2012
    Messages:
    4
    I am not as angry about being hit with the virus as I was when it happened, so it's water under the bridge. I am very happy that I was able to reformat and reload Windows. Knowing what to do in case a virus hits my computer again may prove to be invaluable. I was under the impression that I could still retrieve the files I lost. Thank you and Merry Christmas to you!
     
  8. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    115,911
    First Name:
    Karen
    All of your important files should be backed up reguarly to external media. After a reformat, the best way to back up is using imaging software such as Acronis True Image. It's not free but well worth it. An image is taken of the drive and then updated in increments on a regular schedule and if something like this happens or the hard drive fails you can reimage the drive as it was before in a matter of minutes without having to reinstall the operating system, drivers and programs. But if you don't want to do that you should at least copy your documents, photos, music and anything else important to an external drive or CDs and update it frequently so they won't be lost.

    Depending on how the format was done there is software that may retrieve some data such as Easus Data Recovery:

    http://www.easeus.com/landing/format-recovery.htm?gclid=CLqQtqv2tbQCFQ-e4AodMjEAyA

    But every time time you turn it on since the reformat areas of the drive are getting overwritten, making the chances of recovery slimmer.
     
  9. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1082209

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice