Replacing a hard drive would be a big event for me but if it stopped the goings on then I would have it done.
I have a static IP address, does that make a difference? There's definitely nothing on my computers that has any value to bank info hackers and I cannot think of anyone around me that would do this sort of trick. You're right it has been on going for a long time and I cannot see what anyone is gaining from it. I thought at first my computer might have been turned into a botnet but all the checks I've done would surely rule that out. I've been thinking about buying a new computer but am unsure if that would solve the problem.

Caley.

I've had very few problems with UNO, in fact can say anything that was wrong they sorted it very quickly. I have wireless switched on as I have a tablet, laptop, Amazon Firestick and Smart TV that feeds from the wireless setup so switching it off would be felt. As I said before the router has a 24 character password which I had hoped would be safe.

Caley.

'If' 'they' have access to your internal network and can for instance initiate RDP, then any autostored passwords are not 'safe'. In the first instance, I would request a new I.P address or request dynamic I.P. unless there's good reason for a fixed I.P. - are there any internet facing services hosted within your LAN?
As I said before, consider every networked device an attack vector, secure them one at a time, disconnected from the other devices preferably, I really do think you should consider some sort of traffic analysis and try and identify any known capable acquaintances or (ex) colleagues as the source. Note that 'smart' TV's can also be an attack vector, especially with a fixed I.P.
Edited to add:-
When you got the laptop & tablet, were they from retailers? Did anyone 'help you to set them up'? Have you ever had anyone request that you install Teamviewer or similar to help resolve any issues? Most security issues are due to behavioural weaknesses allowing 'social engineering' attacks - not saying you're weak, it's very hard to change natural human behaviour and teach people to not have implicit trust in each other.

Edited by deleted (Mon 20-Jun-16 23:26:35)

In reply to a post by caley:

Thanks for responding. I have a 24 character password which I have changed numerous times over the past 18 months but still this goes on.

Caley.

Is WPS enabled though? Also is it WPA2-PSK?

You crack WPS, it gives you the password, if I had a 63 digit password, I could break WPS in 30 minutes and have the 63 digit password. It does not matter.

I am telling you, WiFi is compromised over WPS in 90% of cases.

I think you need to run a scan of your computer that doesn't depend on booting into Windows 7.

If you do have malware installed, it may very well be able to evade detection by other Windows programmes.

Have a look at ESET Sysrescue for a start.

Norton's bootable recovery tool is at https://security.symantec.com/nbrt/nbrt.aspx

Running within Windows but designed to find and delete threats which many antivirus products can't is Norton's Power Eraser.

All these tools are free to use.

You need to make sure you are using the WPA2-PSK AES security method for your WiFi.

You have Malwarebytes, look in the MBAM folder in your start menu, find CHAMELEON and run that.

It uses different methods to find malware , infections can't hide from it.

I don't know what WPS is. There doesn't seem to be a security option selected, at least I can't see a selection but I'm not a computer expert. There's definitely something odd happening here, had adwcleaner installed yesterday today it's nowhere to be found. Checked everywhere. Think the answer is either get my new computer now or format the hard drive. Could anything be stored surreptitiously in my router or modem? Don't know if there are storage spaces in them that something could be uploaded to.

Caley.

WPS = Wi-Fi Protected Setup.

ADW Cleaner is an executable , it does not install in your system so you won't see it anywhere. It runs only when you execute the file you downloaded.

It is possible you have a hidden rootkit on your PC which is why I said you should run Malwarebytes Cameleon , it is designed to deal with situations like this.

NETGEAR ROUTER MANUAL

WiFi security page 35

WPS settings page 26

Edited by deleted (Tue 21-Jun-16 09:49:50)

Just format the laptop. What make and model is it, often they have the option to set it to factory settings built right in, and it often takes around only 30 minutes!

What router do you have, chances are it will have WPS, most home routers do. Using WPS and not using WPA2 is basically making you open, even with a long password as you mentioned.

WPS is basically the push button setup, you press a button on the router, then press a button on say a Sky TV box, and boom your Sky TV box is now on the WiFi without typing a password. Whilst it makes setup of things like Sky boxes, Smart TVs etc easy, it is very weak security.

There are even 15 minute tutorials on youtube of how to break into a network using WPS.

Sorry but 'scattergun' tactics won't work. Many modern spyware and malware installations (if indeed that is the source of the issues) will survive a 'wipe and reinstall'. You really do need to determine the source of the problem before deciding on the best course of action. If you have been 'socially engineered', then no amount of reinstalling with the same files, programmes and username / password combinations will resolve anything. Try and logically secure, clean and verify each device, one at a time - ideally offline, keeping it offline until you can be sure that your network is no longer compromised. Remember, the only way to measure the effect of something is to change only one variable at a time, doing half a job and then going back online 'just to see' will resolve nothing and only put you back to the beginning.