Solved hacked

[Infinite]

I can't see any remote programs in the applications you posted.

 

[M1GU31]

i would also advices to open up services and disable remote registry so they cant edit your registry over the network, i have it disable for security reasons

I could change my registry from run computer to another from TeamViewer with that Disabled. Maybe because they're on the same network.

Nice points there guys

ye good point i would make sure team viewer is uninstalled if its installed, i was assuming he was being hacked on a different network that's why i suggested to disable remote registry,

 

[Infinite]

Actually since your computers presumably a HP do you have a Recovery Partition in Disk Management?

Go to Start, Right Click Computer and Manage. Use the snipping tool, save it as an image to your desktop. Right click and click Send To and chose .zip, upload the .zip here for us to examine.

You could try booting from the Recovery Manager on Boot:

I would backup all your files to an external drive or somewhere safe and restore to it's factory settings using HP Recovery.

 

[comptourist]

remote registry an remote assistance-disabled....sweet!
gotta figure out the upload tomorrow...thanks all

 

[comptourist]

what if the registry is already been tampered with prior to me disabling

 

[Infinite]

also discovered a short cut on her comp to my email.

IP address
Gateway
subnet
i'm behind a wired modem with wireless capabilities.
what do i need to do to resecure my computer and life.

If you still have access to her house :sarc:

Can't you just use a tool that deletes a file and is impossible to recover to delete those files?
http://www.pcworld.com/article/209418/how_do_i_permanently_delete_files_from_my_hard_disk.html

what if the registry is already been tampered with prior to me disabling

Run a Malwarebytes and MSE Scan.

Re-run the scan everytime it finds and deletes a file until it ends up finding nothing.

 

[comptourist]

infinite-yes it's hp. bought new with vista installed, but the bundle came with the windows 7 upgrade apon release

 

[Infinite]

On bootup, tap F11 simultaneosly to open HP Recovery Manager:

Click System Recovery:

More information here;
Recover Windows 7 Operating System Using HP Recovery HP Pavilion Notebook PCs - HP Customer Care (United States - English)

 

[comptourist]

infinite-like your thinkin...she's got multiple user logon. an rarely logs on to her logon while i'm there.... wish i could... she's a covert one..very saavy...maybe calls for more beers...lol
na...i'm no good at this comp stuff..but learnin thanks to you all
will look into hp recover..but i gotta desktop

 

[comptourist]

tried a google search for the blue hacked cd, hoping someone would know something about it, if they seen it...but came up with nothin..
will finish with these matters tomorrow..thanks

 

[tom982]

Just make sure u use wpa2. And create a password with a space. U cant crack a password from a password list if it contains a space. Just a little bit of geez wiz knowledge.

It makes it harder, not impossible. Crunch can handle passwords with spaces.

Well if ur nervous just disconnect for an hour and hopefully u will get a new ip address on your modem. However, just because she has your ip dosent mean she can hack your computer. If u nmap a ip address u will notice almost everyone's except If u port forward has Their firewall preset to filter all ports. You can't break in with filtered ports unless the router is exploitable and that's pretty rare. As long as you don't fileshare u should be alright. If she is familiar with backtrack and u get emails with links its a good chance she is trying to hack ur computer. Other than that u seem pretty secure unless u purposely open ports for someone to get in with. Bad advice removed

Creating RAT packages and sending them to people? I don't think this is appropriate advice to be giving people.

tried a google search for the blue hacked cd, hoping someone would know something about it, if they seen it...but came up with nothin..
will finish with these matters tomorrow..thanks

My guess would be that it's a cracked copy of Windows, not a hacking tool. But you never know

You mentioned that she has been accessing your emails, have you changed your email password?

Tom

 

[emaraszek]

Women.......

Anyway, if I were you I would change every password I have on websites, user accounts, WiFi, etc. Odds are she has one of your passwords and that you have used this password for multiple things. My next step would be to search for malware, but you said you've already done this. Next, power cycle your modem from your ISP. This will cause it to obtain a new external IP for itself (in most cases). Now see if she is still on your case.

If it were me, I'd prefer revenge to justice so if I still had access to her house I'd do something nasty like wipe her hard drive. However, I cannot condone such behavior, the best payback in your case is justice. I would contact the authorities and let them catch her in the act.

 

[comptourist]

tom-email and router passwords have been changed

emaraszek-wifi is now shut off (wifi is called radio on isp site), i don't use duplicate passwords, power cycle?= unpluging it for a while..did that. no malware detected(lately). would like to wipe her hard drive...but won't...like the idea though.

how can i tell if she has set up a user account on my comp...allowing a backdoor access for her?
thanks for the help..rep points on the way

 

[comptourist]

romeoz13-which is the better approach...system recovery or formating?
will i lose all my programs with either of these methods?
thanks for everyones time and help

 

[profdlp]

Format and it's all gone. System Recovery will put the computer back like the day you bought it, including any preinstalled programs the manufacturer had on there. Either way, if your data is on the C: partition it will need to be backed up or you will lose it. (If the only partition you have is C: then you'll need an external drive or something similar.)

 

[comptourist]

profdlp- thanks for your help...i don't have a external drive...can i save the partition on a cd or dvd-r disc?

 

[profdlp]

If the drive is big enough you can.

Backing up an entire partition by imaging would defeat the purpose, though, since it would save everything - including any nonsense your ex may have put on there. The safest way is to backup just your data (pictures, documents, movies, saved games, etc) and format the drive. Keep in mind that you will need your Windows disc (or HP Recovery discs) and that you will also have to reinstall all your programs.

If you decide to do that, be sure and ask any questions you might have before you do it. Once the format is done it's too late to change your mind.

(And for all the experts out there, yes, I know there are Unformat utilities, but we wouldn't want to count on them to save our data.)

 

[comptourist]

profdlp- would the system recovery to factory specs, be a suitable solution to take care of any rouge spyware possibly installed?
thanks again for the help

 

[profdlp]

Yes it would. Not to be a Johnny-One-Note, but keep in mind that every last thing you have added since you got the computer needs to be backed up or it will be gone for good. I would recommend you make a list of what you want to keep and post it here before you start. That way, if anyone else notices that you may have forgotten something important we can remind you to check. It's also a good idea to make sure you have all the discs and keys for any software you have added since the day you bought it. Most keys can be fished out of the registry - before the format and reinstall, that is.

 

[comptourist]

profdlp-got it, thanks for your time an knowledge.
a big thanks, for everyone that helped with this issue.