HACKED! I am 90% sure I have a hacker on my machine (keylogging, keylogger)

Similar Messages

• Is My apache http file okay? Could have been hacked?????Why would 12.34.56.78:80 be the listening address I don't have any AT&T Services12

  I believe my apache server could have been hacked.  Is there a member of the community that could take a look at the paste of my http.conf file.  Thanks so much
  # Mac OS X / Mac OS X Server
  # The <IfDefine> blocks segregate server-specific directives
  # and also directives that only apply when Web Sharing or
  # server Web Service (as opposed to other services that need Apache) is on.
  # The launchd plist sets appropriate Define parameters.
  # Generally, desktop has no vhosts and server does; server has added modules,
  # custom virtual hosts are only activated when Web Service is on, and
  # default document root and personal web sites at ~username are only
  # activated when Web Sharing is on.
  # This is the main Apache HTTP server configuration file.  It contains the
  # configuration directives that give the server its instructions.
  # See <URL:http://httpd.apache.org/docs/2.2> for detailed information.
  # In particular, see
  # <URL:http://httpd.apache.org/docs/2.2/mod/directives.html>
  # for a discussion of each configuration directive.
  # Do NOT simply read the instructions in here without understanding
  # what they do.  They're here only as hints or reminders.  If you are unsure
  # consult the online docs. You have been warned. 
  # Configuration and logfile names: If the filenames you specify for many
  # of the server's control files begin with "/" (or "drive:/" for Win32), the
  # server will use that explicit path.  If the filenames do *not* begin
  # with "/", the value of ServerRoot is prepended -- so "log/foo_log"
  # with ServerRoot set to "/usr" will be interpreted by the
  # server as "/usr/log/foo_log".
  # ServerRoot: The top of the directory tree under which the server's
  # configuration, error, and log files are kept.
  # Do not add a slash at the end of the directory path.  If you point
  # ServerRoot at a non-local disk, be sure to point the LockFile directive
  # at a local disk.  If you wish to share the same ServerRoot for multiple
  # httpd daemons, you will need to change at least LockFile and PidFile.
  ServerRoot "/usr"
  # Listen: Allows you to bind Apache to specific IP addresses and/or
  # ports, instead of the default. See also the <VirtualHost>
  # directive.
  # Change this to Listen on specific IP addresses as shown below to
  # prevent Apache from glomming onto all bound IP addresses.
  #Listen 12.34.56.78:80
  <IfDefine !MACOSXSERVER>
  Listen 80
  </IfDefine>
  # Dynamic Shared Object (DSO) Support
  # To be able to use the functionality of a module which was built as a DSO you
  # have to place corresponding `LoadModule' lines at this location so the
  # directives contained in it are actually available _before_ they are used.
  # Statically compiled modules (those listed by `httpd -l') do not need
  # to be loaded here.
  # Example:
  # LoadModule foo_module modules/mod_foo.so
  LoadModule authn_file_module libexec/apache2/mod_authn_file.so
  LoadModule authz_host_module libexec/apache2/mod_authz_host.so
  LoadModule cache_module libexec/apache2/mod_cache.so
  LoadModule disk_cache_module libexec/apache2/mod_disk_cache.so
  LoadModule dumpio_module libexec/apache2/mod_dumpio.so
  LoadModule reqtimeout_module libexec/apache2/mod_reqtimeout.so
  LoadModule ext_filter_module libexec/apache2/mod_ext_filter.so
  LoadModule include_module libexec/apache2/mod_include.so
  LoadModule filter_module libexec/apache2/mod_filter.so
  LoadModule substitute_module libexec/apache2/mod_substitute.so
  LoadModule deflate_module libexec/apache2/mod_deflate.so
  LoadModule log_config_module libexec/apache2/mod_log_config.so
  LoadModule log_forensic_module libexec/apache2/mod_log_forensic.so
  LoadModule logio_module libexec/apache2/mod_logio.so
  LoadModule env_module libexec/apache2/mod_env.so
  LoadModule mime_magic_module libexec/apache2/mod_mime_magic.so
  LoadModule cern_meta_module libexec/apache2/mod_cern_meta.so
  LoadModule expires_module libexec/apache2/mod_expires.so
  LoadModule headers_module libexec/apache2/mod_headers.so
  LoadModule ident_module libexec/apache2/mod_ident.so
  LoadModule usertrack_module libexec/apache2/mod_usertrack.so
  #LoadModule unique_id_module libexec/apache2/mod_unique_id.so
  LoadModule setenvif_module libexec/apache2/mod_setenvif.so
  LoadModule version_module libexec/apache2/mod_version.so
  LoadModule proxy_module libexec/apache2/mod_proxy.so
  LoadModule proxy_http_module libexec/apache2/mod_proxy_http.so
  LoadModule proxy_scgi_module libexec/apache2/mod_proxy_scgi.so
  LoadModule proxy_balancer_module libexec/apache2/mod_proxy_balancer.so
  LoadModule ssl_module libexec/apache2/mod_ssl.so
  LoadModule mime_module libexec/apache2/mod_mime.so
  LoadModule dav_module libexec/apache2/mod_dav.so
  LoadModule autoindex_module libexec/apache2/mod_autoindex.so
  LoadModule asis_module libexec/apache2/mod_asis.so
  LoadModule info_module libexec/apache2/mod_info.so
  LoadModule cgi_module libexec/apache2/mod_cgi.so
  LoadModule dav_fs_module libexec/apache2/mod_dav_fs.so
  LoadModule vhost_alias_module libexec/apache2/mod_vhost_alias.so
  LoadModule negotiation_module libexec/apache2/mod_negotiation.so
  LoadModule dir_module libexec/apache2/mod_dir.so
  LoadModule imagemap_module libexec/apache2/mod_imagemap.so
  LoadModule actions_module libexec/apache2/mod_actions.so
  LoadModule speling_module libexec/apache2/mod_speling.so
  LoadModule alias_module libexec/apache2/mod_alias.so
  LoadModule rewrite_module libexec/apache2/mod_rewrite.so
  LoadModule php5_module libexec/apache2/libphp5.so
  #Apple specific modules
  LoadModule apple_userdir_module libexec/apache2/mod_userdir_apple.so
  LoadModule bonjour_module libexec/apache2/mod_bonjour.so
  <IfDefine !MACOSXSERVER>
  LoadModule authn_dbm_module libexec/apache2/mod_authn_dbm.so
  LoadModule authn_anon_module libexec/apache2/mod_authn_anon.so
  LoadModule authn_dbd_module libexec/apache2/mod_authn_dbd.so
  LoadModule authn_default_module libexec/apache2/mod_authn_default.so
  LoadModule auth_basic_module libexec/apache2/mod_auth_basic.so
  LoadModule auth_digest_module libexec/apache2/mod_auth_digest.so
  LoadModule authz_groupfile_module libexec/apache2/mod_authz_groupfile.so
  LoadModule authz_user_module libexec/apache2/mod_authz_user.so
  LoadModule authz_dbm_module libexec/apache2/mod_authz_dbm.so
  LoadModule authz_owner_module libexec/apache2/mod_authz_owner.so
  LoadModule authz_default_module libexec/apache2/mod_authz_default.so
  LoadModule mem_cache_module libexec/apache2/mod_mem_cache.so
  LoadModule dbd_module libexec/apache2/mod_dbd.so
  LoadModule proxy_connect_module libexec/apache2/mod_proxy_connect.so
  LoadModule proxy_ftp_module libexec/apache2/mod_proxy_ftp.so
  LoadModule proxy_ajp_module libexec/apache2/mod_proxy_ajp.so
  LoadModule status_module libexec/apache2/mod_status.so
  </IfDefine>
  <IfDefine MACOSXSERVER>
  LoadModule hfs_apple_module libexec/apache2/mod_hfs_apple.so
  #LoadModule auth_digest_apple_module libexec/apache2/mod_auth_digest_apple.so
  #LoadModule encoding_module libexec/apache2/mod_encoding.so
  #LoadModule jk_module libexec/apache2/mod_jk.so
  LoadModule apple_auth_module libexec/apache2/mod_auth_apple.so
  LoadModule spnego_auth_module libexec/apache2/mod_spnego_apple.so
  LoadModule apple_digest_module libexec/apache2/mod_digest_apple.so
  #LoadModule python_module libexec/apache2/mod_python.so
  LoadModule xsendfile_module libexec/apache2/mod_xsendfile.so
  LoadModule apple_status_module libexec/apache2/mod_status_apple.so
  </IfDefine>
  # If you wish httpd to run as a different user or group, you must run
  # httpd as root initially and it will switch. 
  # User/Group: The name (or #number) of the user/group to run httpd as.
  # It is usually good practice to create a dedicated user and group for
  # running httpd, as with most system services.
  User _www
  Group _www
  # 'Main' server configuration
  # The directives in this section set up the values used by the 'main'
  # server, which responds to any requests that aren't handled by a
  # <VirtualHost> definition.  These values also provide defaults for
  # any <VirtualHost> containers you may define later in the file.
  # All of these directives may appear inside <VirtualHost> containers,
  # in which case these default settings will be overridden for the
  # virtual host being defined.
  # ServerAdmin: Your address, where problems with the server should be
  # e-mailed.  This address appears on some server-generated pages, such
  # as error documents.  e.g. [email protected]
  ServerAdmin [email protected]
  # ServerName gives the name and port that the server uses to identify itself.
  # This can often be determined automatically, but we recommend you specify
  # it explicitly to prevent problems during startup.
  # If your host doesn't have a registered DNS name, enter its IP address here.
  #ServerName www.example.com:80
  <IfDefine MACOSXSERVER>
  DocumentRoot /var/empty
  <IfModule mod_auth_digest_apple.c>
          BrowserMatch "MSIE" AuthDigestEnableQueryStringHack=On
  </IfModule>
  <IfModule mod_headers.c>
          Header add MS-Author-Via "DAV"
          RequestHeader set X_FORWARDED_PROTO 'https' env=https
          RequestHeader set X_FORWARDED_PROTO 'http' env=!https
  </IfModule>
  <IfModule mod_encoding.c>
          EncodingEngine on
          NormalizeUsername on
          DefaultClientEncoding UTF-8
  # Windows XP?
          AddClientEncoding "Microsoft-WebDAV-MiniRedir/" MSUTF-8
  # Windows 2K SP2 with .NET
          AddClientEncoding "(Microsoft .* DAV\$)" MSUTF-8
  # Windows 2K SP2/Windows XP
          AddClientEncoding "(Microsoft .* DAV 1.1)" CP932
  # Windows XP?
          AddClientEncoding "Microsoft-WebDAV*" CP932
  # RealPlayer
          AddClientEncoding "RMA/*" CP932
  # MacOS X webdavfs
          AddClientEncoding "WebDAVFS" UTF-8
  # cadaver
          AddClientEncoding "cadaver/" EUC-JP
  </IfModule>
  <Directory /usr/share/web>
      AllowOverride None
      Options MultiViews FollowSymlinks
      Order allow,deny
      Allow from all
      Header Set Cache-Control no-cache
  </Directory>
  Alias /webmail /usr/share/web/webmail.html
  Alias /changepassword /usr/share/web/changepassword.html
  Alias /profilemanager /usr/share/web/profilemanager.html
  Alias /webcal /usr/share/web/webcal.html
  </IfDefine>
  <IfDefine !MACOSXSERVER>
  <IfDefine WEBSHARING_ON>
  # DocumentRoot: The directory out of which you will serve your
  # documents. By default, all requests are taken from this directory, but
  # symbolic links and aliases may be used to point to other locations.
  DocumentRoot "/Library/WebServer/Documents"
  # Each directory to which Apache has access can be configured with respect
  # to which services and features are allowed and/or disabled in that
  # directory (and its subdirectories).
  # First, we configure the "default" to be a very restrictive set of
  # features. 
  <Directory />
      Options FollowSymLinks
      AllowOverride None
      Order deny,allow
      Deny from all
  </Directory>
  # Note that from this point forward you must specifically allow
  # particular features to be enabled - so if something's not working as
  # you might expect, make sure that you have specifically enabled it
  # below.
  # This should be changed to whatever you set DocumentRoot to.
  <Directory "/Library/WebServer/Documents">
      # Possible values for the Options directive are "None", "All",
      # or any combination of:
      #   Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
      # Note that "MultiViews" must be named *explicitly* --- "Options All"
      # doesn't give it to you.
      # The Options directive is both complicated and important.  Please see
      # http://httpd.apache.org/docs/2.2/mod/core.html#options
      # for more information.
      Options Indexes FollowSymLinks MultiViews
      # AllowOverride controls what directives may be placed in .htaccess files.
      # It can be "All", "None", or any combination of the keywords:
      #   Options FileInfo AuthConfig Limit
      AllowOverride None
      # Controls who can get stuff from this server.
      Order allow,deny
      Allow from all
  </Directory>
  # DirectoryIndex: sets the file that Apache will serve if a directory
  # is requested.
  <IfModule dir_module>
      DirectoryIndex index.html
  </IfModule>
  </IfDefine>
  </IfDefine>
  # The following lines prevent .htaccess and .htpasswd files from being
  # viewed by Web clients.
  <FilesMatch "^\.([Hh][Tt]|[Dd][Ss]_[Ss])">
      Order allow,deny
      Deny from all
      Satisfy All
  </FilesMatch>
  # Apple specific filesystem protection.
  <Files "rsrc">
      Order allow,deny
      Deny from all
      Satisfy All
  </Files>
  <DirectoryMatch ".*\.\.namedfork">
      Order allow,deny
      Deny from all
      Satisfy All
  </DirectoryMatch>
  # ErrorLog: The location of the error log file.
  # If you do not specify an ErrorLog directive within a <VirtualHost>
  # container, error messages relating to that virtual host will be
  # logged here.  If you *do* define an error logfile for a <VirtualHost>
  # container, that host's errors will be logged there and not here.
  ErrorLog "/private/var/log/apache2/error_log"
  # LogLevel: Control the number of messages logged to the error_log.
  # Possible values include: debug, info, notice, warn, error, crit,
  # alert, emerg.
  LogLevel warn
  <IfModule log_config_module>
      # The following directives define some format nicknames for use with
      # a CustomLog directive (see below).
      LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
      LogFormat "%v %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combinedvhost
      LogFormat "%h %l %u %t \"%r\" %>s %b" common
      LogFormat "%v %h %l %u %t \"%r\" %>s %b" commonvhost
      <IfModule logio_module>
        # You need to enable mod_logio.c to use %I and %O
        LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
        LogFormat "%v %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinediovhost
      </IfModule>
      # The location and format of the access logfile (Common Logfile Format).
      # If you do not define any access logfiles within a <VirtualHost>
      # container, they will be logged here.  Contrariwise, if you *do*
      # define per-<VirtualHost> access logfiles, transactions will be
      # logged therein and *not* in this file.
      CustomLog "/private/var/log/apache2/access_log" common
      # If you prefer a logfile with access, agent, and referer information
      # (Combined Logfile Format) you can use the following directive.
      #CustomLog "/private/var/log/apache2/access_log" combined
  </IfModule>
  <IfModule alias_module>
      # Redirect: Allows you to tell clients about documents that used to
      # exist in your server's namespace, but do not anymore. The client
      # will make a new request for the document at its new location.
      # Example:
      # Redirect permanent /foo http://www.example.com/bar
      # Alias: Maps web paths into filesystem paths and is used to
      # access content that does not live under the DocumentRoot.
      # Example:
      # Alias /webpath /full/filesystem/path
      # If you include a trailing / on /webpath then the server will
      # require it to be present in the URL.  You will also likely
      # need to provide a <Directory> section to allow access to
      # the filesystem path.
      # ScriptAlias: This controls which directories contain server scripts.
      # ScriptAliases are essentially the same as Aliases, except that
      # documents in the target directory are treated as applications and
      # run by the server when requested rather than as documents sent to the
      # client.  The same rules about trailing "/" apply to ScriptAlias
      # directives as to Alias.
      ScriptAliasMatch ^/cgi-bin/((?!(?i:webobjects)).*$) "/Library/WebServer/CGI-Executables/$1"
  </IfModule>
  <IfModule cgid_module>
      # ScriptSock: On threaded servers, designate the path to the UNIX
      # socket used to communicate with the CGI daemon of mod_cgid.
      #Scriptsock /private/var/run/cgisock
  </IfModule>
  # "/Library/WebServer/CGI-Executables" should be changed to whatever your ScriptAliased
  # CGI directory exists, if you have that configured.
  <Directory "/Library/WebServer/CGI-Executables">
      AllowOverride None
      Options None
      Order allow,deny
      Allow from all
  </Directory>
  # DefaultType: the default MIME type the server will use for a document
  # if it cannot otherwise determine one, such as from filename extensions.
  # If your server contains mostly text or HTML documents, "text/plain" is
  # a good value.  If most of your content is binary, such as applications
  # or images, you may want to use "application/octet-stream" instead to
  # keep browsers from trying to display binary files as though they are
  # text.
  DefaultType text/plain
  <IfModule mime_module>
      # TypesConfig points to the file containing the list of mappings from
      # filename extension to MIME-type.
      TypesConfig /private/etc/apache2/mime.types
      # AddType allows you to add to or override the MIME configuration
      # file specified in TypesConfig for specific file types.
      #AddType application/x-gzip .tgz
      # AddEncoding allows you to have certain browsers uncompress
      # information on the fly. Note: Not all browsers support this.
      #AddEncoding x-compress .Z
      #AddEncoding x-gzip .gz .tgz
      # If the AddEncoding directives above are commented-out, then you
      # probably should define those extensions to indicate media types:
      AddType application/x-compress .Z
      AddType application/x-gzip .gz .tgz
      # AddHandler allows you to map certain file extensions to "handlers":
      # actions unrelated to filetype. These can be either built into the server
      # or added with the Action directive (see below)
      # To use CGI scripts outside of ScriptAliased directories:
      # (You will also need to add "ExecCGI" to the "Options" directive.)
      #AddHandler cgi-script .cgi
      # For type maps (negotiated resources):
      #AddHandler type-map var
      # Filters allow you to process content before it is sent to the client.
      # To parse .shtml files for server-side includes (SSI):
      # (You will also need to add "Includes" to the "Options" directive.)
      #AddType text/html .shtml
      #AddOutputFilter INCLUDES .shtml
  </IfModule>
  # The mod_mime_magic module allows the server to use various hints from the
  # contents of the file itself to determine its type.  The MIMEMagicFile
  # directive tells the module where the hint definitions are located.
  #MIMEMagicFile /private/etc/apache2/magic
  # Customizable error responses come in three flavors:
  # 1) plain text 2) local redirects 3) external redirects
  # Some examples:
  #ErrorDocument 500 "The server made a boo boo."
  #ErrorDocument 404 /missing.html
  #ErrorDocument 404 "/cgi-bin/missing_handler.pl"
  #ErrorDocument 402 http://www.example.com/subscription_info.html
  # EnableMMAP and EnableSendfile: On systems that support it,
  # memory-mapping or the sendfile syscall is used to deliver
  # files.  This usually improves server performance, but must
  # be turned off when serving from networked-mounted
  # filesystems or if support for these functions is otherwise
  # broken on your system.
  #EnableMMAP off
  #EnableSendfile off
  TraceEnable off
  # Supplemental configuration
  # The configuration files in the /private/etc/apache2/extra/ directory can be
  # included to add extra features or to modify the default configuration of
  # the server, or you may simply copy their contents here and change as
  # necessary.
  # Server-pool management (MPM prefork specific)
  StartServers 1
  MinSpareServers 1
  MaxSpareServers 1
  # ServerLimit and MaxClients support n% syntax which sets them to a
  # fraction of the current RLIMIT_NPROC limit.
  ServerLimit 50%
  MaxClients 50%
  ListenBackLog 512
  MaxRequestsPerChild 100000
  # Timeout: The number of seconds before receives and sends time out.
  Timeout 300
  # KeepAlive: Whether or not to allow persistent connections (more than
  # one request per connection). Set to "Off" to deactivate.
  KeepAlive On
  # KeepAliveTimeout: Number of seconds to wait for the next request from the
  # same client on the same connection.
  KeepAliveTimeout 15
  # MaxKeepAliveRequests: The maximum number of requests to allow
  # during a persistent connection. Set to 0 to allow an unlimited amount.
  # We recommend you leave this number high, for maximum performance.
  MaxKeepAliveRequests 100
  # UseCanonicalName: Determines how Apache constructs self-referencing
  # URLs and the SERVER_NAME and SERVER_PORT variables.
  # When set "Off", Apache will use the Hostname and Port supplied
  # by the client.  When set "On", Apache will use the value of the
  # ServerName directive.
  UseCanonicalName Off
  # AccessFileName: The name of the file to look for in each directory
  # for additional configuration directives.  See also the AllowOverride
  # directive.
  AccessFileName .htaccess
  # ServerTokens
  # This directive configures what you return as the Server HTTP response
  # Header. The default is 'Full' which sends information about the OS-Type
  # and compiled in modules.
  # Set to one of:  Full | OS | Minor | Minimal | Major | Prod
  # where Full conveys the most information, and Prod the least.
  ServerTokens Full
  # Optionally add a line containing the server version and virtual host
  # name to server-generated pages (internal error documents, FTP directory
  # listings, mod_status and mod_info output etc., but not CGI generated
  # documents or custom error documents).
  # Set to "EMail" to also include a mailto: link to the ServerAdmin.
  # Set to one of:  On | Off | EMail
  ServerSignature On
  # HostnameLookups: Log the names of clients or just their IP addresses
  # e.g., www.apache.org (on) or 204.62.129.132 (off).
  # The default is off because it'd be overall better for the net if people
  # had to knowingly turn this feature on, since enabling it means that
  # each client request will result in AT LEAST one lookup request to the
  # nameserver.
  HostnameLookups Off
  # PidFile: The file in which the server should record its process
  # identification number when it starts.
  PidFile /var/run/httpd.pid
  # The accept serialization lock file MUST BE STORED ON A LOCAL DISK.
  LockFile "/private/var/log/apache2/accept.lock"
  <IfModule mod_rewrite.c>
      RewriteLock /var/log/apache2/rewrite.lock
  </IfModule>
  # Language settings
  Include /private/etc/apache2/extra/httpd-languages.conf
  <IfDefine WEBSHARING_ON>
  # Multi    -language error messages
  #Include /private/etc/apache2/extra/httpd-multilang-errordoc.conf
  # Fancy directory listings
  Include /private/etc/apache2/extra/httpd-autoindex.conf
  # User home directories
  Include /private/etc/apache2/extra/httpd-userdir.conf
  # Real-time info on requests and configuration
  #Include /private/etc/apache2/extra/httpd-info.conf
  # Virtual hosts
  #Include /private/etc/apache2/extra/httpd-vhosts.conf
  # Local access to the Apache HTTP Server Manual
  Include /private/etc/apache2/extra/httpd-manual.conf
  # Distributed authoring and versioning (WebDAV)
  #Include /private/etc/apache2/extra/httpd-dav.conf
  </IfDefine>
  # Secure (SSL/TLS) connections
  <IfDefine !MACOSXSERVER>
  #Include /private/etc/apache2/extra/httpd-ssl.conf
  </IfDefine>
  <IfDefine MACOSXSERVER>
  <IfModule mod_ssl.c>
          SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
          SSLPassPhraseDialog exec:/etc/apache2/getsslpassphrase
          SSLSessionCache shmcb:/var/run/ssl_scache(512000)
          SSLSessionCacheTimeout 300
          SSLMutex file:/var/run/ssl_mutex
          SSLRandomSeed startup builtin
          SSLRandomSeed connect builtin
          AddType application/x-x509-ca-cert crt
          AddType application/x-pkcs7-crl crl
  </IfModule>
  </IfDefine>
  <IfModule mod_jk.c>
          JKWorkersFile /etc/apache2/workers.properties
          JKLogFile /var/log/apache2/mod_jk.log
          JkShmFile /var/log/apache2/jk-runtime-status
  </IfModule>
  <IfModule php5_module>
      AddType application/x-httpd-php .php
      AddType application/x-httpd-php-source .phps
      <IfModule dir_module>
          DirectoryIndex index.html index.php
      </IfModule>
  </IfModule>
  <IfDefine !MACOSXSERVER>
      Include /etc/apache2/other/*.conf
  </IfDefine>
  <IfDefine MACOSXSERVER>
      <IfDefine WEBSERVICE_ON>
          Include /etc/apache2/sites/*.conf
      </IfDefine>
      <IfDefine !WEBSERVICE_ON>
          Include /etc/apache2/sites/virtual_host_global.conf
          Include /etc/apache2/sites/*_.conf
          Include /etc/apache2/sites/*__shadow.conf
      </IfDefine>
  </IfDefine>

  That's a comment in the file. It has no effect at all.

• I have a "hacker" PC showing up under the "Shared" section of the Finder

  Today I noticed a PC computer icon showing up under the "Shared" section of the finder. The computer name was brn_921bc1. I immediately went into System Preferences and turned off file sharing. Is it really that easy for a PC hacker to come into my computer? Please help, as this seems to be a huge security threat.
  Thanks!!

  polishedstaple wrote:
  Today I noticed a PC computer icon showing up under the "Shared" section of the finder. The computer name was brn_921bc1. I immediately went into System Preferences and turned off file sharing. Is it really that easy for a PC hacker to come into my computer? Please help, as this seems to be a huge security threat.
  Thanks!!
  I doubt this is a hacker but you do seem to have an insecure setup. If you have your computer connected directly to a cable modem then you are essentially on a shared subnet with lots of other people Most of them aren't hackers -- probably none of them are. But this situation does leave you vulnerable which is why many people prefer to place a router in between their cable modem and their computer even if they are only connecting a single mac or pc to the internet.
  My first suggestion is that you turn on your Mac's firewall immediately. Open your System Preferences and type "firewall" in the search box. Hit return. When the firewall screen opens select "Allow only essential services". You should do this before you finish reading this thread.
  My next suggestion is to buy what's called a NAT router and stick it in between your cable modem and your mac as soon as practical. This will give you a far more secure setup than you can get with a software firewall alone. If you need help setting it up, come back here and I'm sure you can find the advice you need.

• With Firefox 11 I have a new item on the right click menu called Volcano. Does this mean I have been hacked or this a feature I can't find and info on?

  With Firefox 11 it looks like I have been hacked but I can't tell for sure. With a right click in the browser menu there is a Volcano option at the top. I can't find and help information of this menu option. I don't dare click on it.
  Is this something new that was added?

  No feature I have heard of?
  Does the item still appear if you start Firefox in Safe Mode? http://support.mozilla.com/en-US/kb/Safe+Mode
  How about with a new, empty profile? http://support.mozilla.com/en-US/kb/Basic%20Troubleshooting#w_8-make-a-new-profile

• I may have been hacked. How do I reinstall operating system of my imac 4

  I may have been hacked. How do I reinstall operating system of my imac version 10.7.5

  Install or Reinstall Lion/Mountain Lion from Scratch
  Be sure you backup your files to an external drive or second internal drive because the following procedure will remove everything from the hard drive.
  Boot to the Recovery HD:
  Restart the computer and after the chime press and hold down the COMMAND and R keys until the menu screen appears. Alternatively, restart the computer and after the chime press and hold down the OPTION key until the boot manager screen appears. Select the Recovery HD and click on the downward pointing arrow button.
  Erase the hard drive:
    1. Select Disk Utility from the main menu and click on the Continue button.
    2. After DU loads select your startup volume (usually Macintosh HD) from the
        left side list. Click on the Erase tab in the DU main window.
    3. Set the format type to Mac OS Extended (Journaled.) Optionally, click on
          the Security button and set the Zero Data option to one-pass. Click on
        the Erase button and wait until the process has completed.
    4. Quit DU and return to the main menu.
  Reinstall Lion/Mountain Lion: Select Reinstall Lion/Mountain Lion and click on the Install button.
  Note: You will need an active Internet connection. I suggest using Ethernet if possible
              because it is three times faster than wireless.

• I have been hacked, and can not contact Skype

  My acount have been hacked on 7th May.I discoverd it a week ago, since then i am filling the support forms with my correct email address  every day and i didn't receive an answer.Every time I had finished filling the form i can see the following: -----------------------------------------------------------------------------------------Looks like we’ve got everything we need Currently you can expect a response within 72 hoursSometimes emails can get caught up in a world of spam. Learn more about making sure our emails get through.The details you’ve sent to usSupport Request Number:1296572871 Your detailsCountry or region: IsraelPreferred language: EnglishOn which device are you running this application?NoneYour first name:XXXXYour last name:XXXXYour email address: [email protected] Skype name(s): XXXX----------------------------------------------------------------------------------------- Beside that i don't receive any confirmation to my Email addrerss and no one answer for me for a week. I've check my gmail settings and i don't block any Email from skype. Please help me!!! 100$ dollar stolen from me! Netenel

  From what I can see, there is no call forwarding set up for your account. No phone number is specified for Skype calls to be forwarded to, nor is there any order in our system for Skype Call Forwarding. So in terms of money, you have not been charged.
  What this person seems to have activated in your account is Voice Messaging. He took over your account and recorded a message for Skype users to hear when they try to call your account but you are not available. You can easily deactivate this feature, or just change your personal message, if you follow the steps of this FAQ:
  https://support.skype.com/en/faq/FA10473/setting-up-and-listening-to-voice-messaging-windows-desktop
  Hope that helped, good luck!

• TS3899 I can only pick up e mails in Trash, wondering if I have been hacked. Any ideas?

  I can only pick up e mails in Trash, wondering if I have been hacked. Any ideas?

  is this a shared i map account?  where somebody else is looking at the e mails on a diffeent device, and trashing them?  Are you deleting them from a different device on the same mail account.
  A hack of the pad is not the problem, but it sure sounds like somebody else is participating in your mail service.  
  (you might want to change your mail password)
  Last choice - is you ISP sending these to trash because it thinks they are junk mail or spam?

• Might my eMac have been hacked?

  I really doubt it...
  Something tells me that after over 5 years of faithful service this isn't the case but here's the story...
  My eMac simply crashed. I was putting clips in iMovie for a project and suddenly it said that there was an error or that one of the files had an error. So I restarted... I started trying to import the clips again and this black screen took over my Mac.
  Then it wouldn't start up, well, the farthest I could get was the first screen with the Apple and the spinning lines under it.
  So after much debate I did a clean 10.3 install and things seemed to be working fine. I did a slew of software updates. Then as I tried to reinstall old software (maybe I should have tried reinstalling the software before the software updates?), some installed, while iLife 2004 wouldn't. Also, I tried to install NeoOffice and that wouldn't install either.
  So I ended up logging out and I saw that there was an extra user titled OTHER... listed on the logout screen. I didn't create this user. Also, when I logged back in my dock went back to normal (how it was when I reinstalled 10.3) yet programs that I had downloaded were still in my applications folder.
  I checked FILE SHARING in my preferences and my computer listed it as off.
  Under the SECURITY listing it says that a MASTER PASSWORD isn't set for my computer (yet, it always asks me for one when it comes time to download things). Also, it says that FILE PROTECTION is off my account.
  So basically, I am trying to figure out what the problem might be. I was planning on getting a new iMac so this isn't too terrible, but I am wondering if, should my computer have been hacked, what all this means?
  Could it have gotten a virus? I know those are rare...
  Any help would be great,
  Evan Jacobs

  The 'other' at logon indicates that the root user account is active:
  About the root User and How to Enable It
  If you did a clean install, there would be no accounts carried over; are you sure you didn't do an Archive and Install instead?
  Who else has had physical access to the Mac? There have been exploits that lure unwary users to install trojan horse software over the net (this is the just most recent), but an administrative user password is still required from the user before those work. With physical access to a computer and a disc with appropriate software, any computer is vulnerable.
  'Master Password' refers to an Open Firmware password; that's a separate item from an administrative user password. Refer to Open Firmware Password settings. Any download/install should be asking for an administrative user password.
  You may want to refer to Corsaire: Securing Mac OS X (not sure if the host website still has the older Panther OS X 10.3 version online). Other resources are Mac OS X Security and NSA Security Configuration Guides.

• Hi Apple support, my name is Derek Turner and I have been hacked through a friend's email account and I wish to know if 1. I can clean my email list of names and account with software and 2. How is it possible to delete emails that are still coming back

  Hi! My name is Derek Turner and I have been hacked through a friend's email message to me which I opened unsuspecting any danger.  Initially, he sent me an 'attention' or warning email with a link which I tried to open but it could not be opened, so I left it not knowing what it was all about at the time.  Later, I received another email from him (probably the hacker) and opened a 'not very pleasant' web site.  It did not twig with me at the time as I am a bit new to this type of thing but when I mentioned it to my wife she immediately said that I had been 'hacked'.  By this time it was too late, and it infected all my email addresses!  I would be grateful if you may know if there is software that I can use to clean up my email account and if there is anything for iPad minis that can prevent this happening in future? (Malware, Firewall?).  I am also getting emails back that relate to the hacker and I cannot 'delete' them from my iPad, only on my PC!  Any suggestions?
  Thank you for your time regarding this matter,
  Derek Turner,( a very new iPad mini user!)

  Hi,
  I don't think that can be solved by any advice the regular posters could post here.
  I would go back to Apple and explain the situation (again).
  I would also consider closing the account (Apple rarely seem to do this as accounts are never deleted but just closed).
  I understand this may cause issues for things purchased in iTunes and the App Store which my include Restoring the OS at some point.
  8:20 pm      Tuesday; September 16, 2014
  ​  iMac 2.5Ghz i5 2011 (Mavericks 10.9)
   G4/1GhzDual MDD (Leopard 10.5.8)
   MacBookPro 2Gb (Snow Leopard 10.6.8)
   Mac OS X (10.6.8),
   Couple of iPhones and an iPad

• How do I get firefox to display images clearly? I've got Windows 2000 Pro and Firefox 3.6.6. Internet Explorer shows images clearly, so I'm sure I have the correct graphics driver. Do I need a plugin or add-on of some sort? When I go to "updates", it

  When I use Firefox the images and logos don't show up clearly/correctly. I'm using Windows 2000 Pro. and just installed Firefox 3.6.6. I'm sure I have the right graphics driver as I'm able to see the images and logos clearly in Internet Explorer. I only have the "default plugin 1.0.0.15" installed. I'm thinking that I'm missing a plugin or add-on of some sort, but I'm not sure which one(s). When I go to "updates" it says there were no updates available. When I go to "Add-ons" it gives a list of Add-ons but I'm not sure which would help my issue. Any help would be appreciated.:)
  == This happened ==
  Every time Firefox opened
  == I decided to Download and Use Firefox on this computer. I was using IE before, and it works fine. ==
  == User Agent ==
  Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/533.4 (KHTML, like Gecko) Chrome/5.0.375.99 Safari/533.4

  Firefox works fine on Windows 2000 SP4 for me.
  Any chance you have a dial-up connection that uses a web accelerator to speed the loading of content?

• My imessages have been hacked and recovery email changed and I can't delete it! (with pic)

  My iMessages have been hacked and the hacker entered his email as the recovery email with security questions I can't answer. I contacted Apple support and went through the 24 hour process of changing my info so that I could get into the account, but his email address is still the recovery address and it does not give me the option to delete it. I've added alternate emails that can be deleted, but it will not let me change or delete the recovery email. I can change phones and passwords a million times, but if he can just recover my password what am I supposed to do? I have turned iMessage off on my phone (as well as the gps) but I would really like help in deleting that recovery email if anyone has any bright ideas! The pic below shows the only place in all of the settings that his email address shows up anywhere! Any help is very very very appreciated.

  Hi,
  I don't think that can be solved by any advice the regular posters could post here.
  I would go back to Apple and explain the situation (again).
  I would also consider closing the account (Apple rarely seem to do this as accounts are never deleted but just closed).
  I understand this may cause issues for things purchased in iTunes and the App Store which my include Restoring the OS at some point.
  8:20 pm      Tuesday; September 16, 2014
  ​  iMac 2.5Ghz i5 2011 (Mavericks 10.9)
   G4/1GhzDual MDD (Leopard 10.5.8)
   MacBookPro 2Gb (Snow Leopard 10.6.8)
   Mac OS X (10.6.8),
   Couple of iPhones and an iPad

• I have a new iPhone 6 plus and all is OK. But the mail shows more than 400 'unread' messages whereas there are none in the mailbox or trash or anywhere else I have looked. I can send and receive with no problem. I'm sure I have no unread messages.

  I have a new iPhone 6 plus and all is OK. But the mail shows more than 400 'unread' messages whereas there are none in the mailbox or trash or anywhere else I have looked. I can send and receive with no problem. I'm sure I have no unread messages.

      jsavage9621,
  It pains me to hear about your experience with the Home Phone Connect.  This device usually works seamlessly and is a great alternative to a landline phone.  It sounds like we've done our fair share of work on your account here.  I'm going to go ahead and send you a Private Message so that we can access your account and review any open tickets for you.  I look forward to speaking with you.
  TrevorC_VZW
  Follow us on Twitter @VZWSupport

• I am a new mac user and tried to update my firefox but now i have multiple foxes and a half fox fix something? how do i get it all together in one and be sure i have current version on only?

  i am a new mac user and tried to update my firefox but now i have multiple foxes and a half fox fix something? how do i get it all together in one and be sure i have current version on only?

  Hi there
  I think in this case, you may be best to speak with Microsoft about this, as it does seem like an issue with Office, and not your Mac.
  Follow this link, to find your local Microsoft Support contact number.
  Or perhaps create a new topic in the Microsoft Support Communities
  Good luck

• My iPhone 5c appears to have been hacked - what should I do?

  My iphone 5c appears to have been hacked and has been doing some weird things recently. I have iOS 7 installed.
  It deleted all my notes.
  It deletes text message streams from various random contacts. I have resorted to taking screenshots of my messages to prove this as it is still happening.
  It deleted a few of my contacts so that only their numbers showed on the top of text message conversations.
  The weridest thing though is that for the remaining contacts it seemed to add an additional random mobile number to each one so that each contact had two numbers.
  Furthermore, for one of my contacts, when I opened the contact there was some French profile wording and a picture of an African man I have no idea who he his (the contact is an asian lady from anerica). I took a screenshot of the contact page and emailed it to her to see if this was something she'd setup by accident but she simply replied that she had no idea why I had that contact stored under her name on my phone.
  I live in the UK and do not know any French people!
  I'm really worried as it feels like my phone has been hacked/tampered with remotely as this is extremely weird.
  How do I find out if my phone has been hacked/tampered with and is there anything Apple or the police can do?
  Will restoring the phone clear the issues? I'm reluctant to do this though as I have no faith that important info added to my phone since these happenings (such as my text message screenshots) will not be simply lost forever.
  If I can show the issues at the Apple store will they replace the handset? Does it seem like a hardware/software issue or is it obvious that the phone is being tampered with?
  Please help!

  First, try to reset the phone by holding the sleep and home button for about 10sec, until the Apple logo comes back again. You will not lose data by resetting.
  If this does not help, set it up as new device, explained here:
  How to erase your iOS device and then set it up as a new device or restore it from backups
  If still no luck, get it checked by visiting an Authorized Apple Service Provider or contact Apple Support to get it serviced:
  iPhone - Contact Support - Apple Support

• Error while writing to file: C: \ Program Files (x86) \ iTunes \ iTunes.Resources \ el.Iproj \ iTunesExtrasDownload.png. Make sure you have access to this directory.

  When i try to install iTunes in my Windows 7, this error message apear "Error while writing to file: C: \ Program Files (x86) \ iTunes \ iTunes.Resources \ el.Iproj \ iTunesExtrasDownload.png. Make sure you have access to this directory." Someone help me!!

  That one's consistent with disk/file damage. The first thing I'd try with that is running a disk check (chkdsk) over your C drive.
  XP instructions in the following document: How to perform disk error checking in Windows XP
  Vista instructions in the following document: Check your hard disk for errors
  Windows 7 instructions in the following document: How to use CHKDSK (Check Disk)
  Select both Automatically fix file system errors and Scan for and attempt recovery of bad sectors, or use chkdsk /r (depending on which way you decide to go about doing this). You'll almost certainly have to schedule the chkdsk to run on startup. The scan should take quite a while ... if it quits after a few minutes or seconds, something's interfering with the scan.
  Does the chkdsk find/repair any damage? If so, can you get an install to go through properly afterwards?