email password

[fredrick]

Hello,
Im not a very savy computer user,but I wanted to ask a question.
I looked into facebook to look up people that I knew,so i created an account on facebook.I found some people on there.I found out that this person that I looked up is a corporate credit manager,he started posting personell info about me on his facebook.I finally caught on that he was hacking into my compupter,and he has a huge dislike for me telling me that he so high powered that he could do want he wants.Does this have anything to do with my email and password,mayby remote desktop, console session?If anyone could please mayby give me a link to a site about this.I did also put my email address on facebook.I had my email changed ,and my password changedI think really ,my password to my isp was hacked somehow.Any advise would be appreciated,thankyou

 

[Lorien]

You need to discuss this with your ISP in terms of increasing security or changing passwords and secret hints and such things. If you both feel changing accounts is appropriate, then do so. I'm not sure you need to go so far as to change the iSP since the other actions should be enough, but that's your decision. But if he's already got all the information, it's a bit like locking the barn door after all the cows have left.

You need to check your Windows Firewall and remove any exceptions which you are not using (which is otherwise a hole into your system). The default permits quite a few exceptions that most people never use. Keep those you need but remove those you don't. If uncertain about one, it's probably best to leave it alone (or post here and we'll try to identify what it is used for so you can decide).

He can't get in by Remote Desktop, even if you have it enabled, without you knowing about it as the fact that it is happening shows clearly on the screen (unless you're not there when it occurs). You can set it up so that your approval is required before the connection can be made (though if he hacked your system, he could have overridden that). Do you need Remote Desktop activated? If not, just turn it off and that will remove that possibility. Do you actually use Console Sessions (even I don't)? If not, turn off the port in your Firewall and that will be the end of that.

You may be infected with malware which continues to provide him with information or does other unwanted things. Try to run anti-malware programs (in safe mode with networking if necessary). To fix this problem (if it is a problem) download, install, and run the following two programs: http://www.malwarebytes.org/mbam.php and http://www.safer-networking.org/en/index.html. You may also want to try the new, free Microsoft Security Essentials http://www.softpedia.com/progDownload/Microsoft-Security-Essentials-Download-131683.html (with the caveat that only ONE AV program can be installed and running on your system at any one time). Use removal tools when appropriate http://www.raymond.cc/blog/archives/2009/05/05/comprehensive-list-of-uninstallers-or-removal-tools-for-antivirus-software/. You may also want to try the free Avira at: http://www.free-av.com/ and Avast at: http://www.avast.com/index. Reboot after completing all the scans. You may also want to try the free OneCare at http://onecare.live.com/site/en-us/center/whatsnew.htm and let it run all the options (except the registry cleaner) because that’s good maintenance (it will take some time to complete but can be done in the background). Though to be safe you should do as many of these as you have time to do and can stand, the first one (MBAM) is the best at this type of thing. Make sure you update them all first and run the most full scan they offer. If MBAM finds anything at all, please attach a copy of the log to your next post. If any of the others find anything, please attach either logs or screenshots of the results as well - even if it says it cleaned the problem because some threats are not so easily handled and can leave behind remnants and traces and changes which simple removal does not resolve - so let us know what you find so we can determine if that particular malware requires further action.

You should also report this to the authorities (the police) so they can try to track down this activity and they may be able to get it to stop (or possibly even take action against this individual if they can discover proof of him doing anything illegal and if he's using a company computer to do it, the police may be able to seize it even without his OK if the OK is given by someone in authority at the company and with enough evidence on Facebook to strongly suggest he has accessed your computer or your personal information, they may well do that). At the very least, a report of this will be on record in case further action is necessary or occurs. But gather up everything you can before reporting so they may have enough to both believe you and maybe do something about it. They will want some type of proof - but in the end, give them whatever you have (you can always add more later if more becomes available).

I would also report it to Customer Service and/or Technical Support on Facebook as I'm certain the information he is posting is most likely in violation of the Rules of Conduct and Terms of Agreement in using the account. If you have time to read those rules of conduct and terms and conditions and can find ANYTHING he's posted in violation, you will be on stronger grounds when you report it and it may result in them removing his account (or at least the information concerning you). I would not let his position of power allow him to abuse me like this - even if it put my job at risk (which it shouldn't). In fact, I suspect the use of Facebook on company computers (and especially on company time if that can be proven) is either forbidden or at least discouraged.

You may even consider sending a copy of what he has posted about you to his superiors if you can verify it was done on the company computer (perhaps by using posting times or, if Facebook will cooperate, the TCP/IP address of the person who posted the entry - which will surely place it on a company computer at least and possibly even his though that's a bit harder). But consider what you do carefully because you could be accused of false accusation or other things even if you feel you are on firm ground. It might be wise to consult a lawyer about this (all of this in fact except the parts on how to protect your computer and your account) before doing anything - but that's your decision and your risk.

You may also report this to the internet crime complaint center if necessary
http://www.ic3.gov/complaint/default.aspx

Here's a suggestion on what to do next if you're concerned this may result in some form of identity theft (perhaps through revealing enough information about you so others can do it even if he isn't doing it directly himself): http://www.microsoft.com/athome/security/bank/PhishingVictim.mspx

I hope this helps.

Good luck!

P.S. I am not a lawyer or expert on these things nor am I recommending any actions other than those involving how to protect your computer. Anything else (reporting anything to anyone) is a purely personal opinion and option to consider and should not be viewed as a suggestion or taken as the opinion of anyone who knows anything about such things (because I don't and I am not qualified to provide such advice). For those things, you should first consult an attorney or some other expert in those matters before doing anything.

 

[fredrick]

It was an odd situation,he acted like I broke some code of conduct looking him up on facebook.He did a background check on me, hacked into my comp and used my email and password to my email, to create a account on classmates.He bought a gold account with his computer,and used my email address to share a gold account on classmates.I called my isp to change my email address,password.I found out later doin a google search that his facebook is no longer displayed.I feel like I was made out to be a stalker,really disturbing behavior,disturbing insults, borderline disturbed.,.Could have said hey,I dont want to see you again and not invited me in the first place.I know the guy a little,but I wound not take any action,unless it was really bad.He posted things about me in double meanings on classmates with a fake name of course. I really was interested in how they got into my computer.I took notice to some links on his face book that didnt do anything.I will try to post my scan results,today.im using MSE for a firewall,my mcafee subcripion ran out awhile back, not reall sure about the ports setting,ill have to lookinto that .I will try disable some stuff that I dont use.

 

[Lorien]

MSE is security software which is different. I'm talking about Windows Firewall (Start / Control Panel / Security Center / Windows Firewall / Change Settings / Exceptions Tab) in terms of blocking unused ports.

Maybe the Facebook moderators noticed his page and found it in violation and deleted it - who knows.

Not sure about the Classmates thing - I suspect a quick note to the webmaster there would clear things up quickly (but that's your decision to make - there's nothing I can do to help you with that problem and I'm offering no suggestions as that is beyond the scope of this forum).

And don't forget that one malware scan even by something as good as MSE isn't enough to be sure. You need to try a few (especially Malwarebytes). Try to work that somewhere into your schedule.

I'm not going to post what I would do in your situation since it is quite a bit extreme (to put it mildly) and I don't want to even hint at suggesting such things - but it would probably resolve the problem once and for all.

If you need any more help or have any other questions, don't hesitate to post.

Good luck!