Saving Favorites?

[setishock]

I really don't think you'd have a problem out of a hacker for 2 years. I find that hard to believe. In my opinion, you're doing it to your self.
I'm thinking you're running some sort of program that's cleaning out your fav list and blowing out your passwords.

But if in fact some one is dinking with you then that says you don't have a firewall. ESET has a hardened firewall as part of its security suite. For the money, it's cheap insurance.
You can set it to alert you about traffic on your system. You see something that is not routine, you can block it.
ZoneAlarm is another good firewall. You have to teach it what is allowed and what is not. Again you can see the traffic going in and out and if it's not routine, block it.

Get up with your ISP and insist on a new IP address. Just powering down the router/modem will not always give you a new IP. Most of the time doing a power cycle will net you the same IP.

Get that firewall in place and see what is coming and going.

 

[carnageX]

Get up with your ISP and insist on a new IP address. Just powering down the router/modem will not always give you a new IP. Most of the time doing a power cycle will net you the same IP.

Depends on the ISP, but every ISP I've had, power down the modem for some amount of time will get you a new public IP. Just depends on how long, like I said. Could be 30 seconds, could be 30 minutes, could even be a full 24 hours.

Get that firewall in place and see what is coming and going.

Hardware firewall would be a better investment.

 

[NoCoolNames]

Again, and you have evidence that somebody is doing this how exactly?

1. Ensure you have strong passwords that can't be brute forced. Passphrases made up of normal words are best, and even better than "mixed" passwords (because they're more easily remembered). If you keep resetting your password to something that can be easily guessed, then you'll keep having problems.

2. Ensure your system is clean from malware. This should be common knowledge.

2.1. Don't open any attachments from people you don't know; even then, confirm with said person to make sure they did indeed actually send you an attachment or link to something.

3. If you do indeed think somebody is still getting into your system via a backdoor, then you'll want to reset your public IP by unplugging your modem from the power source. Varies by length of time to do this - could be 30 seconds, could be 30 minutes. You can verify by checking your public IP before and after power cycling your modem by visiting a site such as IPChicken.

Just trust me I know...they pretty much came out and said it in emails, from fake accounts of course. Secondly they also exposed themselves by getting into my bank site and trying to purchase something using my info sent to their address. So the bank most likely has their info,though of course they won't divulge the info to me...

As far as the passwords,we've pretty much changed/unplugged everything and the mthrfker STILL got back in! So once they get a keylogger on there they can see any password we type...and I'm not so foolish as to open anything strange so I have no idea how they keep getting back in. Even tried one of those IP changer things but it was effing up our system too much...

 

[carnageX]

Just trust me I know...they pretty much came out and said it in emails, from fake accounts of course. Secondly they also exposed themselves by getting into my bank site and trying to purchase something using my info sent to their address. So the bank most likely has their info,though of course they won't divulge the info to me...

I still highly doubt it.

As far as the passwords,we've pretty much changed/unplugged everything and the mthrfker STILL got back in! So once they get a keylogger on there they can see any password we type...and I'm not so foolish as to open anything strange so I have no idea how they keep getting back in. Even tried one of those IP changer things but it was effing up our system too much...

If you have a keylogger on your system then you need to run malware scans...or just reinstall the OS on your systems in your house, change your passwords / account info, and be done with it...

What I'm confused about, is all this is supposedly going on (bank account, thinking you're getting hacked, etc.)...and you're worried about your favorites being deleted. That just casts more shadow of doubt on your situation.

 

[NoCoolNames]

I really don't think you'd have a problem out of a hacker for 2 years. I find that hard to believe. In my opinion, you're doing it to your self.
I'm thinking you're running some sort of program that's cleaning out your fav list and blowing out your passwords.

Now that *I* find hard to believe...you guys don't know the entire story of this nearly 2 year saga,it's someone we know and they know exactly which things to delete etc...they're fking with us plain and simple and if I could catch a ride to where they live/work I would definitely put a hurting on them.

But if in fact some one is dinking with you then that says you don't have a firewall. ESET has a hardened firewall as part of its security suite. For the money, it's cheap insurance.
You can set it to alert you about traffic on your system. You see something that is not routine, you can block it.
ZoneAlarm is another good firewall. You have to teach it what is allowed and what is not. Again you can see the traffic going in and out and if it's not routine, block it.

Get up with your ISP and insist on a new IP address. Just powering down the router/modem will not always give you a new IP. Most of the time doing a power cycle will net you the same IP.

Get that firewall in place and see what is coming and going.

We have plenty of firewall,anti-malware etc. I also don't believe those things will give me a new IP,as far as I understand that's with the computer or network itself. But I am trying anything/everything to stop this once and for all. One thing that did keep them out of my email was the 2-step verification thing...

 

[NoCoolNames]

I still highly doubt it.



If you have a keylogger on your system then you need to run malware scans...or just reinstall the OS on your systems in your house, change your passwords / account info, and be done with it...

What I'm confused about, is all this is supposedly going on (bank account, thinking you're getting hacked, etc.)...and you're worried about your favorites being deleted. That just casts more shadow of doubt on your situation.

So are you constantly just in a state of doubt? How much more proof do you need than actual messages from the person themselves?? I've talked with people who apparently know a bit more than yourself and they've stated that they can get into systems without being detected by anti malware. So taking the time to keep reinstalling the OS and passwords would be a waste of time,since they can just find a way to get back in. Hell I thought we were surely done with this,since the last computer was getting kind of old anyway we got a whole new one and it still happened!

As far as what they're getting into,whether it's favorites or not...one of which happens to be a job folder which took me much time to compile...they're just showing they can fck with me and get into whatever they want.

 

[setishock]

It just sounds so weird that they would hang in there for 2 years.
The getting in to your bank account is because you do online banking. You really should get off your duff and go in to a branch and do your business. What they did is bank fraud. A felony crime. You should harass your bank in to pressing charges. What ever company they bought from should return your money.
I got my card info stolen a while back. The company that they made a purchase gave back the money. Took a sec but they came through. I have a copy of the receipt with the jerk's name and address. I had him pissing in his pants. But as for charges, I let the state he resided in handle that.

I'll make this assumption based on what's in your posts. It's some one you know. Seriously.
Some one knows you and your habits. Maybe some one at your ISP, your bank, members of your family, some one at work. Get a different IP address.

Wait a minute here. Do you do any P2P, torrenting? Have you run any port checks to see if an odd port or two are standing open?

 

[NoCoolNames]

The getting in to your bank account is because you do online banking. You really should get off your duff and go in to a branch and do your business. What they did is bank fraud. A felony crime. You should harass your bank in to pressing charges. What ever company they bought from should return your money.
I got my card info stolen a while back. The company that they made a purchase gave back the money. Took a sec but they came through. I have a copy of the receipt with the jerk's name and address. I had him pissing in his pants. But as for charges, I let the state he resided in handle that.

I'll make this assumption based on what's in your posts. It's some one you know. Seriously.
Some one knows you and your habits. Maybe some one at your ISP, your bank, members of your family, some one at work. Get a different IP address.

Wait a minute here. Do you do any P2P, torrenting? Have you run any port checks to see if an odd port or two are standing open?

Alot of assumptions here,I have been off my 'duff' plenty to the bank...am I not allowed to participate in technology and look at my stuff online instead of driving into the ghetto everytime I want to check my balance? Actually it wasn't even my bank account they got into but they got my card number and shopped with that. Not sure what the statute of limitations is but that happened over a year ago and the bank did recover my funds as well as reverse one of the purchases. One was Walmart online and whatever address they had for them they kept,but they did refer me to the local police who of course wrote up a report and also did nothing...

I doubt I have any open ports,I don't to P2P or torrenting...nope not even porn sites so rule that out. Nothing out of the ordinary that anyone could get into.

 

[carnageX]

So are you constantly just in a state of doubt?

Constantly? No - but I have to deal with people who are full of **** on a lot of things, so I cast doubt often until sufficient evidence saying otherwise has been provided. Call it being cynical if you want - I call it a product of working IT for so long.

How much more proof do you need than actual messages from the person themselves?? I've talked with people who apparently know a bit more than yourself and they've stated that they can get into systems without being detected by anti malware.

You're making assumptions yourself about what knowledge I may or may not have. If you think other people may be more knowledgeable, then by all means, contact them instead.

Yes, those kinds of exploits do exist, however if you keep your systems up to date with WIndows Update & security patches, as well as all of the various pieces of software that you use (a few of which being the most common attack vectors are Java, Flash, or any browser you use), those holes get closed up.

Firewalls will mitigate a lot of the risk, and antimalware should be a backup solution, because it anti-malware software detects it, that means it already got into your system somehow.

My recommendation? Buy or setup a hardware firewall (can make one from an old PC and pfSense OS, a free Linux OS), and put that in front of your router so that anything incoming will get filtered even before it touches your router, and thus avoids your network entirely altogether.

Incoming wiring to your house -> Modem -> HW Firewall -> Router -> Computers/devices

Yes, a lot of routers do come with firewalls...but they're nowhere near as hearty as a dedicated HW firewall.

So taking the time to keep reinstalling the OS and passwords would be a waste of time,since they can just find a way to get back in. Hell I thought we were surely done with this,since the last computer was getting kind of old anyway we got a whole new one and it still happened!

Then you need to make sure your IP isn't staying the same. Do as I suggested and try to reset your IP your self. If it doesn't reset, contact your ISP and ask if you can get your public IP reset because you think you may be being targeted online via your IP.

As for reinstalling OS's...that should only be necessary if you can't remove malware that your system is infected with. As for passwords...you should really enable 2-factor authentication on any and all services that support it. That way you have to have a physical device with you in order to log into the service, and you'd be notified right away if somebody/something was getting into one of your accounts.

 

[NoCoolNames]

Constantly? No - but I have to deal with people who are full of **** on a lot of things, so I cast doubt often until sufficient evidence saying otherwise has been provided. Call it being cynical if you want - I call it a product of working IT for so long.

Well I'm not full of sh so no need to direct that towards me,I wouldn't take the time to finally summarize it on a forum otherwise.

I shall try as many of these solutions as I can and hopefully it will keep them at bay eventually.