Security Breach on Win Vista???

wandl · 06-23-08, 07:46 AM

So I'm using Win Vista Premium on my Dell desktop- I post an item on Ebay....an hour later, I check my email via Outlook and Ebay sends me an email stating they suspect someone has accessed my account without my authorization to list items online, and they have taken the steps to remove the auctions....

Great...so I log on to Ebay to see what's going on and my password doesn't work. To reset the password (this is dumb) ebay wants me to type in my CURRENT password (which doesn't work) before they can reset it...

then about another 10 minutes, my Outlook Email account's password is changed, so I no longer have access to that.

I didn't have a firewall installed (my fault) checked virus and spyware and found nothing out of question.

What are my next steps? What exactly happeneD? i'm on a laptop not the desktop in question, hoping the hacker hasn't gotten to this one...
Those are the only two accounts compromised thus far, Ebay and my main email via Outlook....

How do I fix it - reformat and use Dell's recovery console to get my desktop up and running? or any software you all recommend to rid of this...issue? or did my email just change out of nowhere....

PLEASE HELP! I've turned the desktop off until further action....

medo145 · 06-23-08, 08:22 AM

Did anyone have physical access to your desktop by any chance?

CreePinG_DeatH · 06-23-08, 08:42 AM

Quote:

Originally Posted by medo145

Did anyone have physical access to your desktop by any chance?

Were you wired to a router or using wireless? If wireless, were you at home or in public? If at home, is your network protected (WEP, WPA, WPA2, etc.)?

wandl · 06-23-08, 09:23 AM

no one had physical access to my computer, just my 2 year old and 1 year old, my wife was out all day today.

It is on a router, I have it wired directly to the router. It does have WEP security.

Here's the scary part, my email account on Outlook the password has changed, but I have NOT typed the password in....so for osmeone to have changed it, they would have to have guessed it (it is different from my Ebay password that was also compromised....but in that case, I did type the Ebay password in).

I haven't downloaded anything but a few MP3's and my brother downloaded a few AVI's a few days back for school (something about engineering).

medo145 · 06-23-08, 10:33 AM

is it possible to retrieve your ebay pass through email recovery? if so maybe the person got to your email first and then your ebay account. did you use your email account on someone else's computer?

conway · 06-23-08, 01:05 PM

Did you "log on to ebay" via a link in the email? Are you sure it was a genuine ebay message? A lot of those phishing email can look damn good, and the only way to know for sure is to note the link the actual message before you click it.

noxqzs · 06-23-08, 02:38 PM

Just as Conway suggested, it was proabably a phishing attack.

Did you input your old e-bay password into the request form and send it with an e-mail?

This doesn't explain how they accessed your normal Outlook account. The latter was most proabably some sort of keylogger. If it is a normal ISP e-mail account, call them and have them reset it for you. Non-isp e-mail accounts can have this done as well, but the wait on the phone will proabably be much longer.

El<(')>Maxi · 06-23-08, 04:09 PM

Quote:

Originally Posted by conway

Did you "log on to ebay" via a link in the email? Are you sure it was a genuine ebay message?

/\

No firewall is not a real good idea either, at least enable the built-in FW in Vista.

wolfy1220 · 06-23-08, 04:13 PM

If it was a legit ebay message you would probably only receive it on ebay. I have not received any emails from ebay in years and I sell stuff all the time. the only emails i get from them are notification of auction ending/starting, questions from other ebay members about items and thats it. If ebay needs to contact me they send me a message on ebay.

06-23-08, 07:46 AM	Thread Starter #1
wandl Member Join Date: Jan 2003 Location: west virginia	Security Breach on Win Vista??? So I'm using Win Vista Premium on my Dell desktop- I post an item on Ebay....an hour later, I check my email via Outlook and Ebay sends me an email stating they suspect someone has accessed my account without my authorization to list items online, and they have taken the steps to remove the auctions.... Great...so I log on to Ebay to see what's going on and my password doesn't work. To reset the password (this is dumb) ebay wants me to type in my CURRENT password (which doesn't work) before they can reset it... then about another 10 minutes, my Outlook Email account's password is changed, so I no longer have access to that. I didn't have a firewall installed (my fault) checked virus and spyware and found nothing out of question. What are my next steps? What exactly happeneD? i'm on a laptop not the desktop in question, hoping the hacker hasn't gotten to this one... Those are the only two accounts compromised thus far, Ebay and my main email via Outlook.... How do I fix it - reformat and use Dell's recovery console to get my desktop up and running? or any software you all recommend to rid of this...issue? or did my email just change out of nowhere.... PLEASE HELP! I've turned the desktop off until further action....
	QUOTE Thanks

06-23-08, 08:22 AM	#2
medo145 Member Join Date: Jun 2004 Location: Massachusetts, USA	Did anyone have physical access to your desktop by any chance? __________________ \|ASUS P8Z68 DELUXE/GEN3\|i72600K 3.4GHz @ 4.5GHz(100x45)\|EVGA GTX670 FTW+ 4GB @ 1006/6008\|EVGA GTX460 FTW 1GB @ 850/4000\| \|4x4GB G.Skill DDR3 1600 PC2 12800\|LianLi(PC-A70B)\|Corsair HX 620W(CMPSU-620HX)\|ASUS Xonar Essence STX\| \|Samsung 840 Pro 256GB (OS)\|3x1TB (WD Black) 0+5 Intel Matrix Raid\| MOBO:Asus PC-DL rev 1.05 CPU:Dual Xeons 2.4GHz @ 3.5GHz (233x15) VGA:PowerColor X800Pro Vivo @ X800 XT PE RAM:2x512MB Mushkin 222 Special PC3200 @ 2-2-2-5 (BH6) 2x512MB Mushkin LV II PC3200 @ 2-2-2-5 (BH5) Case:XaserV PSU:Antec 550W (TRUE550 EPS12V) HDD:3x320GB WD + 500GB WD + 74GB WD Raptor Media:DVD±RW/±R & DVD±RW/±R DL Sound Card:SB Audigy2 ZS Mods:vCore 1.5v->1.68v & VIO 1.55v->1.9v & vDimm 2.5v->3.3v & softmod X800Pro->X800XT PE
	QUOTE Thanks

06-23-08, 09:23 AM	Thread Starter #4
wandl Member Join Date: Jan 2003 Location: west virginia	no one had physical access to my computer, just my 2 year old and 1 year old, my wife was out all day today. It is on a router, I have it wired directly to the router. It does have WEP security. Here's the scary part, my email account on Outlook the password has changed, but I have NOT typed the password in....so for osmeone to have changed it, they would have to have guessed it (it is different from my Ebay password that was also compromised....but in that case, I did type the Ebay password in). I haven't downloaded anything but a few MP3's and my brother downloaded a few AVI's a few days back for school (something about engineering).
	QUOTE Thanks

06-23-08, 10:33 AM	#5
medo145 Member Join Date: Jun 2004 Location: Massachusetts, USA	is it possible to retrieve your ebay pass through email recovery? if so maybe the person got to your email first and then your ebay account. did you use your email account on someone else's computer? __________________ \|ASUS P8Z68 DELUXE/GEN3\|i72600K 3.4GHz @ 4.5GHz(100x45)\|EVGA GTX670 FTW+ 4GB @ 1006/6008\|EVGA GTX460 FTW 1GB @ 850/4000\| \|4x4GB G.Skill DDR3 1600 PC2 12800\|LianLi(PC-A70B)\|Corsair HX 620W(CMPSU-620HX)\|ASUS Xonar Essence STX\| \|Samsung 840 Pro 256GB (OS)\|3x1TB (WD Black) 0+5 Intel Matrix Raid\| MOBO:Asus PC-DL rev 1.05 CPU:Dual Xeons 2.4GHz @ 3.5GHz (233x15) VGA:PowerColor X800Pro Vivo @ X800 XT PE RAM:2x512MB Mushkin 222 Special PC3200 @ 2-2-2-5 (BH6) 2x512MB Mushkin LV II PC3200 @ 2-2-2-5 (BH5) Case:XaserV PSU:Antec 550W (TRUE550 EPS12V) HDD:3x320GB WD + 500GB WD + 74GB WD Raptor Media:DVD±RW/±R & DVD±RW/±R DL Sound Card:SB Audigy2 ZS Mods:vCore 1.5v->1.68v & VIO 1.55v->1.9v & vDimm 2.5v->3.3v & softmod X800Pro->X800XT PE
	QUOTE Thanks

06-23-08, 01:05 PM	#6
conway Join Date: Aug 2007	Did you "log on to ebay" via a link in the email? Are you sure it was a genuine ebay message? A lot of those phishing email can look damn good, and the only way to know for sure is to note the link the actual message before you click it. __________________ cpu - Phenom II x4 810 @ 3640 motherboard - Asus M3A32-MVP Deluxe ram - 8gb Kingston Hyperx 1066 video - GTX 560 ti storage - 750 gb Seagate junker psu - Silverstone ST56ZF
	QUOTE Thanks

Security Breach on Win Vista???

Internet Services

Website Development

Tech Hardware

06-23-08, 02:38 PM	#7
noxqzs Member Join Date: Feb 2005 Location: Boston, MA	Just as Conway suggested, it was proabably a phishing attack. Did you input your old e-bay password into the request form and send it with an e-mail? This doesn't explain how they accessed your normal Outlook account. The latter was most proabably some sort of keylogger. If it is a normal ISP e-mail account, call them and have them reset it for you. Non-isp e-mail accounts can have this done as well, but the wait on the phone will proabably be much longer. __________________ ___________________________________________ I7 980x, R3E, HX1000, Corsair 6x2GB, Areca 1880i, Corsair GT240, 4xF120, 680GTX, 3007fpw-HC
	QUOTE Thanks

06-23-08, 04:13 PM	#9
wolfy1220 Member Join Date: Mar 2008 Location: Lincoln, Nebraska	If it was a legit ebay message you would probably only receive it on ebay. I have not received any emails from ebay in years and I sell stuff all the time. the only emails i get from them are notification of auction ending/starting, questions from other ebay members about items and thats it. If ebay needs to contact me they send me a message on ebay. __________________ MOBO ------ Asrock z77 Extreme4 CPU -------- Intel i5-3570K- RAM -------- 8GB G. Skills Ripjaws X Dual Channel HDD -------- Intel 520 Cherryville SATA-III SSD Video ------- EVGA GTX 660 FTW PSU -------- Corsair HX750 Display ----- ViewSonic VA2026w Heat Ware
	QUOTE Thanks

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search