Notices

Overclockers Forums > Software > Microsoft Operating Systems
Microsoft Operating Systems Microsoft Operating Systems and Applications
Forum Jump

Security Breach on Win Vista???

Post Reply New Thread Subscribe Search this Thread
 
 
Thread Tools
Old 06-23-08, 07:46 AM Thread Starter   #1
wandl
Member

 
wandl's Avatar 

Join Date: Jan 2003
Location: west virginia

 
Unhappy Security Breach on Win Vista???


So I'm using Win Vista Premium on my Dell desktop- I post an item on Ebay....an hour later, I check my email via Outlook and Ebay sends me an email stating they suspect someone has accessed my account without my authorization to list items online, and they have taken the steps to remove the auctions....

Great...so I log on to Ebay to see what's going on and my password doesn't work. To reset the password (this is dumb) ebay wants me to type in my CURRENT password (which doesn't work) before they can reset it...

then about another 10 minutes, my Outlook Email account's password is changed, so I no longer have access to that.

I didn't have a firewall installed (my fault) checked virus and spyware and found nothing out of question.

What are my next steps? What exactly happeneD? i'm on a laptop not the desktop in question, hoping the hacker hasn't gotten to this one...
Those are the only two accounts compromised thus far, Ebay and my main email via Outlook....

How do I fix it - reformat and use Dell's recovery console to get my desktop up and running? or any software you all recommend to rid of this...issue? or did my email just change out of nowhere....

PLEASE HELP! I've turned the desktop off until further action....

__________________
I got heatware!
wandl is offline   QUOTE Thanks
Old 06-23-08, 08:22 AM   #2
medo145
Member

 
medo145's Avatar 

Join Date: Jun 2004
Location: Massachusetts, USA

 
Did anyone have physical access to your desktop by any chance?

__________________
|ASUS P8Z68 DELUXE/GEN3|i72600K 3.4GHz @ 4.5GHz(100x45)|EVGA GTX670 FTW+ 4GB @ 1006/6008|EVGA GTX460 FTW 1GB @ 850/4000|
|4x4GB G.Skill DDR3 1600 PC2 12800|LianLi(PC-A70B)|Corsair HX750|ASUS Xonar Essence STX|
|Samsung 840 Pro 256GB (OS)|3x1TB (WD Black) 0+5 Intel Matrix Raid|

MOBO:Asus PC-DL rev 1.05 CPU:Dual Xeons 2.4GHz @ 3.5GHz (233x15) VGA:PowerColor X800Pro Vivo @ X800 XT PE
RAM:2x512MB Mushkin 222 Special PC3200 @ 2-2-2-5 (BH6) 2x512MB Mushkin LV II PC3200 @ 2-2-2-5 (BH5) Case:XaserV
PSU:Antec 550W (TRUE550 EPS12V) HDD:3x320GB WD + 500GB WD + 74GB WD Raptor Media:DVDRW/R & DVDRW/R DL
Sound Card:SB Audigy2 ZS Mods:vCore 1.5v->1.68v & VIO 1.55v->1.9v & vDimm 2.5v->3.3v & softmod X800Pro->X800XT PE
medo145 is offline   QUOTE Thanks
Old 06-23-08, 08:42 AM   #3
CreePinG_DeatH
Member

 
CreePinG_DeatH's Avatar 

Join Date: Aug 2001
Location: Chicago

10 Year Badge
 
Quote:
Originally Posted by medo145 View Post
Did anyone have physical access to your desktop by any chance?
Were you wired to a router or using wireless? If wireless, were you at home or in public? If at home, is your network protected (WEP, WPA, WPA2, etc.)?

__________________
Intel i5-3570k
ASRock z77 Extreme4
2 x 4GB DDR3-1600 Samsung
XFX AMD 7850 1GB / EVGA 8800 GTS 640MB
Samsung 830 240gb Boot Windows 7 x64 Pro
2 x WD 640GB Black's in Raid 1
2 x Misc Sata2 HDD's for storage



My Heatware
CreePinG_DeatH is offline   QUOTE Thanks
Old 06-23-08, 09:23 AM Thread Starter   #4
wandl
Member

 
wandl's Avatar 

Join Date: Jan 2003
Location: west virginia

 
no one had physical access to my computer, just my 2 year old and 1 year old, my wife was out all day today.

It is on a router, I have it wired directly to the router. It does have WEP security.

Here's the scary part, my email account on Outlook the password has changed, but I have NOT typed the password in....so for osmeone to have changed it, they would have to have guessed it (it is different from my Ebay password that was also compromised....but in that case, I did type the Ebay password in).

I haven't downloaded anything but a few MP3's and my brother downloaded a few AVI's a few days back for school (something about engineering).

__________________
I got heatware!
wandl is offline   QUOTE Thanks
Old 06-23-08, 10:33 AM   #5
medo145
Member

 
medo145's Avatar 

Join Date: Jun 2004
Location: Massachusetts, USA

 
is it possible to retrieve your ebay pass through email recovery? if so maybe the person got to your email first and then your ebay account. did you use your email account on someone else's computer?

__________________
|ASUS P8Z68 DELUXE/GEN3|i72600K 3.4GHz @ 4.5GHz(100x45)|EVGA GTX670 FTW+ 4GB @ 1006/6008|EVGA GTX460 FTW 1GB @ 850/4000|
|4x4GB G.Skill DDR3 1600 PC2 12800|LianLi(PC-A70B)|Corsair HX750|ASUS Xonar Essence STX|
|Samsung 840 Pro 256GB (OS)|3x1TB (WD Black) 0+5 Intel Matrix Raid|

MOBO:Asus PC-DL rev 1.05 CPU:Dual Xeons 2.4GHz @ 3.5GHz (233x15) VGA:PowerColor X800Pro Vivo @ X800 XT PE
RAM:2x512MB Mushkin 222 Special PC3200 @ 2-2-2-5 (BH6) 2x512MB Mushkin LV II PC3200 @ 2-2-2-5 (BH5) Case:XaserV
PSU:Antec 550W (TRUE550 EPS12V) HDD:3x320GB WD + 500GB WD + 74GB WD Raptor Media:DVDRW/R & DVDRW/R DL
Sound Card:SB Audigy2 ZS Mods:vCore 1.5v->1.68v & VIO 1.55v->1.9v & vDimm 2.5v->3.3v & softmod X800Pro->X800XT PE
medo145 is offline   QUOTE Thanks
Old 06-23-08, 01:05 PM   #6
conway

 
conway's Avatar 

Join Date: Aug 2007

 
Did you "log on to ebay" via a link in the email? Are you sure it was a genuine ebay message? A lot of those phishing email can look damn good, and the only way to know for sure is to note the link the actual message before you click it.

__________________
cpu - Phenom II x4 810 @ 3640
motherboard - Asus M3A32-MVP Deluxe
ram - 8gb Kingston Hyperx 1066
video - GTX 560 ti
storage - 750 gb Seagate junker
psu - Silverstone ST56ZF
conway is offline   QUOTE Thanks
Old 06-23-08, 02:38 PM   #7
noxqzs
Member



Join Date: Feb 2005
Location: Boston, MA

 
Just as Conway suggested, it was proabably a phishing attack.

Did you input your old e-bay password into the request form and send it with an e-mail?

This doesn't explain how they accessed your normal Outlook account. The latter was most proabably some sort of keylogger. If it is a normal ISP e-mail account, call them and have them reset it for you. Non-isp e-mail accounts can have this done as well, but the wait on the phone will proabably be much longer.

__________________
___________________________________________
2560x1600
noxqzs is offline Heatware Profile   QUOTE Thanks
Old 06-23-08, 04:09 PM   #8
El<(')>Maxi
Blank Senior Member

 
El<(')>Maxi's Avatar 

Join Date: May 2003
Location: Seattle

 
Quote:
Originally Posted by conway View Post
Did you "log on to ebay" via a link in the email? Are you sure it was a genuine ebay message?
/\

No firewall is not a real good idea either, at least enable the built-in FW in Vista.

__________________
rdrash - 'I'm gonna intentionally try to kill this CPU with more volts'
El<(')>Maxi is offline Author Profile   QUOTE Thanks
Old 06-23-08, 04:13 PM   #9
wolfy1220
Member

 
wolfy1220's Avatar 

Join Date: Mar 2008
Location: Lincoln, Nebraska

 
If it was a legit ebay message you would probably only receive it on ebay. I have not received any emails from ebay in years and I sell stuff all the time. the only emails i get from them are notification of auction ending/starting, questions from other ebay members about items and thats it. If ebay needs to contact me they send me a message on ebay.

__________________
MOBO ------ Asrock z77 Extreme4
CPU -------- Intel i5-3570K-
RAM -------- 8GB G. Skills Ripjaws X Dual Channel
HDD -------- Intel 520 Cherryville SATA-III SSD
Video ------- EVGA GTX 660 FTW
PSU -------- Corsair HX750
Display ----- ViewSonic VA2026w


Heat Ware
wolfy1220 is offline   QUOTE Thanks

Post Reply New Thread Subscribe


Overclockers Forums > Software > Microsoft Operating Systems
Microsoft Operating Systems Microsoft Operating Systems and Applications
Forum Jump

Thread Tools Search this Thread
Search this Thread:

Advanced Search


Mobile Skin
All times are GMT -5. The time now is 01:54 AM.
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.
You can add these icons by updating your profile information to include your Heatware ID, Benching Profile ID or your Folding/SETI profile ID. Edit your profile!
X

Welcome to Overclockers.com

Create your username to jump into the discussion!

New members like you have made this the best community on the Internet since 1998!


(4 digit year)

Why Join Us?

  • Share experience
  • Max out your hardware
  • Best forum members anywhere
  • Customized forum experience

Already a member?