Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisoned tr

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by ak47, Nov 14, 2007.

  1. ak47

    ak47 Private E-2

    This hacker is an internet security expert, a neighbor with a psychotic hatred of me. She was on the same node on the pole, and I think was using a packet sniffer, and sent me an attachment to begin the infection. There has been a constant email based attack. Also, my norton is showing strange behavior, such as asking to register when it is already registered, and the panda scan came up in spanish at the report: documentos textivos, and it seemed to read clear. Bd scan came up clear. Panda came up clear. But there is still a hacker on my pc. I think it came through on outlook configure, and through an infected word file from my old pc. Lots of other symptoms, such as someone trying to create a new id on outlook over and over again, the name of my computer was changed, msconfig is disabled, etc. I need help bad. My email passwords get changed, my log in security password prevention seal is deleted, and the cops won't help. My mother in law's tire was slashed and it caught fire on highway 1 and she almost went over the cliff. I've had 15 tires slashed, and two cats poisoned, and two trees poisoned, and my craigslist ads are flagged and removed every day. It's a vendetta. Recently, norton found adware.systemprocess, and trojan hunter 5 found adware.vx2.111. The scans come up clean, but there are too many signs of hacking for it to be clean.
     

    Attached Files:

    ak47, Nov 14, 2007
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    Per step 0 of the READ ME, you must not use MSconfig. Correct this now. You also need to attach the other logs requested in the READ ME:
    - CounterSpy
    - BitDefender
    - PandaActiveScan


    You also need to attach a new HijackThis log after properly renaming it as requested in the READ ME. You don't need to rename the HijackThis folder. You need to rename the program. You have this:

    C:\Program Files\anayse.exe\HijackThis.exe

    And it should be this:

    C:\Program Files\HijackThis\analyse.exe

    I believe we have gone thru this once before with you in the below thread and the result was that you did not have any malware which may still be the case:

    http://forums.majorgeeks.com/showthread.php?t=107407

    I also requested that you install a software firewall and it appears that you did not follow that advice. Does your Norton software include a firewall?
     
    chaslang, Nov 14, 2007
    #2
  3. ak47

    ak47 Private E-2

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    I have agnitum outpost firewall. Norton has a firewall also. My router is a 2wiregateway, provided by att/yahoo, and it has a firewall. No one has access to my pc or my passwords but me. No wireless connection at all. Msconfig does not work at all on my pc and is a sign of hacking. Counter spy, bid defender, and panda scan came up clean, although the logs have disappeared off my pc. They were saved in my doc. file. My msconfig will not work at all in the start/run box, a message just comes up saying that ms word cannot find msconfig.
     
    ak47, Nov 14, 2007
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    Sorry I missed Outpost. You must only use one software firewall. So you must uninstall one of these if Norton truly has a firewall.

    Not true! It could be a sign of a broken Windows OS.

    Click Start, Run and enter cmd and click OK.
    • Does a command prompt Window open?
      • If yes, now at the command prompt type msconfig.exe and then hit the Enter key.
      • What happens?
    If CounterSpy, BitDefender and Panda all came up clean then you are clean since your other logs show no problems but since you did not properly rename HijackThis we still cannot totally trust your HijackThis log.
     
    chaslang, Nov 14, 2007
    #4
  5. ak47

    ak47 Private E-2

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    I will try it again.
    I do not know how to rename hjt properly. I just clicked on it out of explore, and renamed it by typing into the name box.
     
    Last edited: Nov 14, 2007
    ak47, Nov 14, 2007
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    Yes you rename HijackThis.exe by right clicking on it from Windows Explorer and select Rename. Then just change HijackThis.exe to analyse.exe

    At anyrate, I doubt that doing this is going to reveal anything else. Your logs show no malware. Did you ever run the rootkit scan I asked you to run a year ago?

    What malware problems/symptoms do you currently have right now?
     
    chaslang, Nov 14, 2007
    #6
  7. ak47

    ak47 Private E-2

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    I cannot post on craigslist, three times today, and someone is trying to create a new identity profile in outlook. Box comes up saying: Failed to create new identity in outlook. I removed outlook previously. My password seal disappears on my sbc log in box. Some of my emails don't go through to clients. My ip address has been blacklisted at sorb, although I don't spam and have had it for three months. Adware.systemprocess was found by norton. Adware.vx2.111 was found by trojan hunter several days ago. Outpost keeps blocking some windword.exe function outgoing to the net. Comcast keeps pinging me every time I log on, and every few minutes at random intervals, all day. Norton keeps asking to be registered, although it is current. I believe the system is infected via winword/svchost and outlook as I configured it several weeks ago, and ever since the symptoms are getting worse, so I removed it but too late, I think. Is it possible for the hacker to hide from all these scans and get by the security via winword if there was an infected file winword? Msconfig does not work, nor does it come up in the cmd prompt box if I type in msconfig.exe. Windows says it does not exist and can't find it. My craigslist ads are also flagged immed. as soon as I post them, and removed, which takes 5 ip addresses to do, and sometimes happens within seconds. Like I say, there is a network pro trying to do me in.
     
    ak47, Nov 14, 2007
    #7
  8. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    You still did not answer my question about running the rootkit scan. Are you going to run it or not?

    Not malware problems!

    I don't know what you are referring too but I doubt it is malware.

    Not malware!

    This still does not mean you have malware. You may need to speak to someone about getting your IP address removed from the blacklist or perhaps you should just get your ISP to change your IP.

    You did not give me any logs that show these problems and nothing that you have posted shows any malware to support a possible infection.

    Not malware. winword is Microsoft Word for windows. If you don't want it to have internet access then permanently block it from having access. The same is true for anything else your firewall asks about. You have to learn how to use your firewall software and decide what to block and what to allow.

    Not malware! ComCast is your ISP.

    Not a malware issue. Try the uninstalling it rebooting and then reinstalling. If that does not work, talk to Symantec.

    What symptoms????? Also Winword is a valid process as stated above. And svchost.exe if running from C:\windows\system32 is normal.


    You have shown no prove a year ago or now that you have a hacker issue.

    According to your newfiles.txt log you have the below which is correct.

    C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe

    Navigate to the above in Windows Explorer and try running it. Does it work?

    I don't know what you are referring to but this is not a malware issue. You need to talk to craiglist to find out why this is happening or get your IP address changed to see if it is a blacklist issue as you have stated.

    I doubt it. Perhaps you should just reinstall your OS from scratch and add proper protection from the get go.
     
    chaslang, Nov 15, 2007
    #8
  9. ak47

    ak47 Private E-2

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    I have reinstalled the os many times, and keep getting attacked over and over again.
     

    Attached Files:

    ak47, Nov 15, 2007
    #9
  10. ak47

    ak47 Private E-2

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    HEre is a scan result of rootkitreveal from sysinternals. The sophos root kit crashed.
     

    Attached Files:

    ak47, Nov 15, 2007
    #10
  11. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Hacker has been attacking me for a year now, slashed tires, poisoned cat, poisone

    The rootkit scan is also clean just like your other scan.

    All I can say is that your logs show no signs of any malware and that the only thing I can suggest is reinstalling your OS and follow ALL of the instructions in the below link to protect your system:

    How to Protect yourself from malware!


    You may also want to consider deleting all your internet type accounts and getting new ones with different user names and different passwords.
     
    chaslang, Nov 15, 2007
    #11

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds