Firewall basic question

i trust those who access my computer physically


so i'm sure it came over the INTERNET

any way i'm going to do what you said

i will wipe the computers clean

and a fresh install with a Good security setup

is there anything i can do for now beside these ?




i tried TCP View nothing suspicious came out

 

Nothing here particularly points the the attack comes from the internet. You could have a backdoor created by malware which would then send information back at the attacker, but, it seems unlikely. Hackers don't invest too much resources on one regular home computer.

Maybe you could try atleast ruling out the possibility of someone doing this by accessing your computer? Take notes on how much they know about computers, and lock their profiles down accordingly after the full reformat.

Is the computer running Windows XP? In the Home Edition, there is a pretty easy way to bypass everything - in the Safe Mode, you can login as Administrator, without any passwords.

 

i looked and talked with my family

no one did it

i also Found out
that my mobile phone Got hacked too

and the same hacker Told me that he knows my Phone book

which was true he told me the numbers in it
" the mobile Phone was connected to the router Via wifi"
which at that moment it was secure with a wpa2

i tried to find out who he is he said and i quote " I know you from a long time and i was testing your strength "

that shocked me as i don't know anyone could do this and even so
i don't have enemies

i don't remember running any strange executable

I'm sure that the hack came over the internet Or a backdoor
or a spy ware logger


i did a disinfection at Bleeping computer which the helper
Found nothing " i really appreciate her help"

so i don't know how or what is he doing but he is skilled and furious

and also with all of those stuff he did
he make a Facebook page mocking me
i reported the page but it still there
I'm not angry at the book page but I'm angry because i have no privacy
i'm really thinking to go offline and say good by to internet

" for know i know that he :
hacked the desktop computer ( he was able to tell what i'm doing on it and what keyboard stroke i'm typing)
hacked the laptops connected to the network and was able to tell what is happening in the home
he hacked my mobile phone
he hacked my facebook page

the spyware that he used was able to bypass
all security software and on demand scanners

including :hitman.mbam.prevex.mse.and Combofix



the solution i did till know :
1- changed all passwords from a DRweb live disk
2- Disabled wifi
3- Formated the desktop and reinstalled all security software
4-i'm not opening internet from the laptops anymore or the mobile phone


is there anything else i can do beside throwing the Router from the window ??

and also cops in here can't help me

 

It is important you understand this: If you are infected, treat EVERY storage device in your whole network as infected. This means all your hard drives in the laptops and the desktop, your USB-drives, your memory stick in the phone, even your CD/DVD-disks. Keep everything apart and don't connect anything before you know it's been disinfected. This could very well mean that you have to lose some if not all your files, backup them to something like online drive if you have to, if you don't have to, nuke them.

Reformat any devices which connect to the network, in this case you have to reformat the laptop(s), and if the desktop is compromised again because you have connected that to the network, that too, again. The main idea is that you have to make sure that none of the computers in your network are infected before connecting them. Reformat and install your Windows with the network cable unplugged. Enable FIREWALLS before connecting.

If this doesn't seem to be working, you could try the same but after running DBAN (http://www.dban.org/) on all the drives on all the computers.

I have hard time to imagine how he would hack your mobile phone, but reinstall that too. Modern phones usually have an option to wipe everything clean. Make sure to also wipe the memory card if you have one connected. After that, disable the bluetooth and wi-fi features of your phone, do not use the internet mode.

After that, you could try to reduce the impact of the privacy breach. First, change your password in the email which controls your Facebook account to a strong one (like 14 or more characters with numbers, capitals, normal letters and special characters), do NOT write it down on the computers, write it down on traditional paper and keep it in your wallet or something.

Then do the same to your Facebook-account. Use a different password here. The reason why you should do it this way is that the attacker can't find out your new password if you shut him off from your email first.

Keep your wireless network unoperational. That should limit the attack surface.

I don't know if this has been suggested before, but also try to reset your router and if you have one, the ADSL-modem too. There could be a small possibility that they have been hacked. Use strong passwords in those too, and disable things like remote usage, UPnP and such. Enable firewalls, atleast in the router.

 

low level format all your things with disk manager and reinstall

second

how hacker communicate with you how he told you ?

 

Random places

Like chat rooms

MSN chat rooms

 

Sorry to say, but this thread smells of a crock of you-know-what. Nothing but unsubstantiated claims.

 

If he contacts you by MSN, I think you know him then already.

I agree with wat0114, there are many things I don't understand in this thread. Things like why police doesn't help (I think OP doesn't want them to help), why the machines get infected again and again, why the attacker has you so profiled he has access to your phone and knows when you dine... It's like some intelligence agency is trying to hack you, but, really.

Posts in this thread by very experienced inviduals should already have gotten him/her free of the attack. Machines just don't get infected. They don't get hacked. It's the user who allows it.

 

+1 it happens only in the movies

 

It is possible the OP is making up the whole thing but if he is he is sure working hard typing up posts!

I like to take people at face value until they DO something bad.

Anyway like the last few posts I don't understand why the police can't help.

I have given the best practical advice I could to the original post but now with this new business the OP seems to be moving the goal posts again with the iPhone thingy. It is too much.

I need some evidence that anything here that anything actually happened. Where are the jpg images showing evidence.

Where is the list of actions the OP has taken on ALL the advice offered here not just mine but everybody's?

Where is the report of status on each action taken by OP?

If no action on certain steps WHY is that?

I want a detailed report not new issues or more questions until OP does some work.

How the h.ll does he log in here? On a hacked PC?

Is he off Facebook yet? Has he done anything?

Fax is right, it is sounding like a movie.

Last chance!

 

here the police are retarded they even don't know what Linux is
and they will laugh at me if i said I'm being hacked and probably will say
install an anti virus

i will post detailed stuff when i have time
and i will answer all of your questions
i sawer everything i said is 100% true

I'm sorry for the lack of the feed back
i was physically unable to post in the forum in the last five days i can't say more sorry



the hack that happened to me

i think it's from old friend
or something


i will post a further advanced post answering all of you question

thanks for the help

 

i sware i'm not making anything everything i said it's true

i did all on demand scanners nothing works
i did reformat the computer
waiting on the laptop

using discrete computer for security

sorry my mobile isn't iPHONE it's LG
and yes i also don't use it for internet

i don't know what to document

as i tried TCP view also Microsoft network monitor


The original issue that i didn't detect the hack neither the firewall
or tcp view or network monitor

that's why i was asking in the first POST that

if it's possible to hack extremely remote without an internet network infection

so if i format the hacker won't get access again without my permission




but let me guess if
the combofix and other stuff like hitman didn't detect the infection
let's say it's a Rootkit

anyways

thanks for the help

if there is no further help
i don't mind if the topic got closed



thanks again

 

Did the problem go away with format? Do you feel that the supposed hacker still has access to your computer/phone? Has there been further contact by the hacker?

 

i hope so

the hacker didn't contact me yet and i hope he never does

the laptops i didn't planning on doing that soon

i feel theres something with the laptops
logs didn't show it
but as i said it still a feeling

and as i said no contact yet



thanks again for the help


i was wondering and thinking about the hack
if it's undetected by hitmanpro then it's a new Rootkit isn't that right

i was doing some search on x64 rootkit
and i found something like MBR root kit and windows loader

that infect the system before it runs

i'm afraid of something that the Rootkit might survive the format



thanks for the help again

 

I don't think that rootkits survive formatting. I remember only few which were somehow connected to MBR or such, but I don't think your computers were infected with something like that. More experienced may be able to tell you more about it.

If you still have problems, you are of course free to ask here for more help. But I have to say - It's really hard to help someone if the person helping can't find any information which may tell what the situation really is. If you ask for more help, you have to be honest, and tell everything. For example, if the attacker was supposed to be an old friend, you would need to verify that. And provide screenshots whenever you can. And tell all the symptons of the supposed infection, not just "I feel that I'm hacked".

 

hi i Got some Logs form the laptop

this from the Laptop


i also have logs from the main desktop after format

i will post them here after i sort them