|
Harry_Ba11sach
cannoisseur
Registered: 04/20/08
Posts: 11,753
Loc: Nepal
|
my paypal just got hacked
#244545 - 06/30/09 08:05 AM (15 years, 5 months ago) |
|
|
anyone good enough with computers to help me out? they've hacked into my email account too.... it says it's active in one other location: 76.116.85.60
I don't know what to do, I'm freaking out
--------------------
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
|
lemme see what i can find
if they are any good, they are using a proxy
-------------------- Let the faggots have it all. Keep the shit.
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244547 - 06/30/09 08:07 AM (15 years, 5 months ago) |
|
|
looks like someone from New Jersey who uses comcast
-------------------- Let the faggots have it all. Keep the shit.
|
Harry_Ba11sach
cannoisseur
Registered: 04/20/08
Posts: 11,753
Loc: Nepal
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244548 - 06/30/09 08:07 AM (15 years, 5 months ago) |
|
|
yeah, I tracked it that far, but I need to know how the fuck they got my password in the first place
--------------------
|
Harry_Ba11sach
cannoisseur
Registered: 04/20/08
Posts: 11,753
Loc: Nepal
|
|
I changed my email password, but is there a way to kick them off the account? they're still signed in on a different computer
--------------------
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244550 - 06/30/09 08:09 AM (15 years, 5 months ago) |
|
|
NEW JERSEY WILLINGBORO COMCAST CABLE COMMUNICATIONS INC
hmmm...
well, was your password a secure one? have you been a victim of phishing? i.e. going to a fake paypal page or something to log in?
if you changed the password, they should no longer be logged in.
-------------------- Let the faggots have it all. Keep the shit.
|
Harry_Ba11sach
cannoisseur
Registered: 04/20/08
Posts: 11,753
Loc: Nepal
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244551 - 06/30/09 08:11 AM (15 years, 5 months ago) |
|
|
I pretty much haven't used paypal since like march, and when I did I got what I paid for so I'm assuming it was a legit paypal account. If they were phishing for my info then the payment wouldn't have gone through right? My password was less than secure, but it worked well for the last like 6 years for me.....
it still says that someone else is signed in to my gmail account
--------------------
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
|
hmmmm
you should contact google support if you haven't already.
you don't know anyone from jersey? would it be possible for someone to guess your password based on your hint and whatnot?
-------------------- Let the faggots have it all. Keep the shit.
|
Harry_Ba11sach
cannoisseur
Registered: 04/20/08
Posts: 11,753
Loc: Nepal
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244555 - 06/30/09 08:46 AM (15 years, 5 months ago) |
|
|
I know like 2 people from jersey, but I barely ever talk to them, and these false transactions were for a gamer site, ISK2U.com which none of my jersey friends would ever be caught dead on.
--------------------
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
|
hmmm
contact their support for now
i'd say gmail first, cuz they likely got into there and then into your paypal account.
then they probably sent out scam emails asking all of your addy book contacts for money.
thats what this says anyway
http://www.hmtweb.com/blog/2009/04/hacked-gmail-accounts-what-to-do-if.html
dont know what to tell you man, other than contact google!
-------------------- Let the faggots have it all. Keep the shit.
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244558 - 06/30/09 08:53 AM (15 years, 5 months ago) |
|
|
also, i hope you get it figured out. try making all of your passwords with not just letters but numbers
for instance
1qwerty456x
obviously not that, but a more random password with a little bit of a phrase to it, you know, a fake word with numbers and more letters...
-------------------- Let the faggots have it all. Keep the shit.
|
Harry_Ba11sach
cannoisseur
Registered: 04/20/08
Posts: 11,753
Loc: Nepal
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244559 - 06/30/09 08:55 AM (15 years, 5 months ago) |
|
|
yeah it was all letters, and complete words at that.... I made the password back when that kinda shit was still safe and haven't gotten around to changing it. You bet I will now though!
I just drove to the bank and put a lock on my account as well as all my credit cards, so there will be NO money moving from any of my accounts for a little while. Kind of a pain in the ass, but it'll shut these fuckers down.
Thanks for all your help hemo!
--------------------
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
|
np
-------------------- Let the faggots have it all. Keep the shit.
|
SpaceMonkey
Mind Pilot
Registered: 02/09/09
Posts: 3,471
Loc: Hawaiian Islands
Last seen: 4 years, 4 months
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244607 - 06/30/09 12:29 PM (15 years, 5 months ago) |
|
|
If they have access to your paypal, First thing would be to contact paypal inform them. Chances are thats where they got your email. Do you use the hijacked email for paypal?
Its good that you froze all your accounts. Now you may want to contact a credit reporting company and see if these hackers did anymore damage.
Emails are a common way that these kids get paypal accounts. They send you an email with fake links to paypal stating that your account needs to be updated or something to that effect. Which if you just click the link, it takes you to their site. Their site is set up to look like the real paypal website and once your there and do what it is they are asked your screwed! Copy and paste links to your browser instead of clicking them. Also ebay accounts are popular with the hacking community, same kinda scams.
good luck with the accounts!
--------------------
Don't Mistake My Kindness For Weakness
|
mhbound
Ballin out at all cost
Registered: 09/22/08
Posts: 8,144
Loc: High
|
Re: my paypal just got hacked [Re: SpaceMonkey]
#244642 - 06/30/09 02:31 PM (15 years, 5 months ago) |
|
|
Check your accounts to make sure they didn't make your secondary email their email that way its a pretty inconspicuous way to keep access to your account without you k nowing.
Change any password that is associated with that email because they could easily go to paypal and request your password and delete the evidence and never change the password if they were to do this.
I used to be in to this shit when I was a little script kiddie. If you use internet explorer get away from it now. Do not store your passwords especially in internet explorer.
Download and run hijack this and post what it finds here and I'll tell you if I see any processes you don't want in the background.
I assume you have a good up to date virus scanner and run it and the spyware...If you need any serials or the software for that matter then I'll send it. I recommend Avast. It doesn't use hardly any system resources and works very very very good. It's extremely efficient.
Lemme know if I can help I know a thing or two.
-------------------- Suck my balls America
|
Triptonic
Registered: 06/13/08
Posts: 15,581
Loc:
|
Re: my paypal just got hacked [Re: mhbound]
#244712 - 06/30/09 06:02 PM (15 years, 5 months ago) |
|
|
Find out where they live and then kill them.
|
tlc
medicated
Registered: 05/06/09
Posts: 584
Loc: Washington
Last seen: 11 years, 11 months
|
Re: my paypal just got hacked [Re: Triptonic]
#244899 - 07/01/09 10:02 AM (15 years, 5 months ago) |
|
|
so this is a little off topic but I tried to shut the computer down the other night and a small window popped up said "another user is logged in to this computer" it went on saying something like "shutting down will interfere with data" but I can't be sure about that last part. I have seen this before on a very old computer years ago but never knew if I should be concerned as I don't have any online accounts-things of that nature but have always wondered what the heck this means..... computer error? freaky man..
--------------------
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
Re: my paypal just got hacked [Re: tlc]
#244900 - 07/01/09 10:05 AM (15 years, 5 months ago) |
|
|
that just means someone else was logged in to windoze.
like, do you have a guest account or does someone else in your household? they probably forgot to log off.
-------------------- Let the faggots have it all. Keep the shit.
|
tlc
medicated
Registered: 05/06/09
Posts: 584
Loc: Washington
Last seen: 11 years, 11 months
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244904 - 07/01/09 10:11 AM (15 years, 5 months ago) |
|
|
only one computer and we never use the guest. that's why I don't get it.
--------------------
|
Harry_Ba11sach
cannoisseur
Registered: 04/20/08
Posts: 11,753
Loc: Nepal
|
Re: my paypal just got hacked [Re: mhbound]
#244905 - 07/01/09 10:12 AM (15 years, 5 months ago) |
|
|
alright, I ran hijack this, let me know what you think
Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:11:32 AM, on 7/1/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal
Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\ehome\ehtray.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Dell\QuickSet\quickset.exe C:\WINDOWS\system32\WLTRAY.exe C:\Program Files\Apoint\Apoint.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtmon.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Pure Networks\Network Magic\nmapp.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\DNA\btdna.exe C:\Program Files\AIM6\aim6.exe C:\Program Files\ComcastUI\Universal Installer\uinstaller.exe C:\Program Files\ComcastUI\Universal Installer\uinstaller.exe C:\Program Files\Apoint\Apntex.exe C:\Program Files\Apoint\HidFind.exe C:\Program Files\AIM6\aolsoftware.exe C:\Documents and Settings\smokey the bear\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe C:\WINDOWS\system32\dlbtcoms.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe C:\Program Files\Pure Networks\Network Magic\nmsrvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\eHome\ehmsas.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\smokey the bear\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\smokey the bear\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [DLBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [dlbtmon.exe] "C:\Program Files\Dell Photo AIO Printer 922\dlbtmon.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\smokey the bear\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp O4 - HKCU\..\Run: [Universal Installer] "C:\Program Files\ComcastUI\Universal Installer\uinstaller.exe" /fromrun /starthidden O4 - HKCU\..\Run: [Desktop Software] "C:\Program Files\ComcastUI\Universal Installer\uinstaller.exe" /ini "uinstaller.ini" /fromrun /starthidden O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1220428380203 O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe O23 - Service: dlbt_device - - C:\WINDOWS\system32\dlbtcoms.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe O23 - Service: Pure Networks Net2Go Service (nmraapache) - Pure Networks, Inc. - C:\Program Files\Pure Networks\Network Magic\WebServer\bin\nmraapache.exe O23 - Service: Pure Networks Network Magic Service (nmservice) - Pure Networks, Inc. - C:\Program Files\Pure Networks\Network Magic\nmsrvc.exe O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
-- End of file - 6574 bytes
--------------------
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
|
looks pretty clean to me. i may have missed something though, i havent even used Hijack this since TrendMicro bought it up. Haven't had to, i just keep my shit on lock. But really, i didn't see anything serious in there, a few things I have never heard of but none the less, thats likely nothing. wait for what MHbound has to say though, obviously
-------------------- Let the faggots have it all. Keep the shit.
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#244912 - 07/01/09 10:19 AM (15 years, 5 months ago) |
|
|
its hard to tell without actually using the pc too, see cuz trojans will infect stuff like "C:\WINDOWS\system32\wuauclt.exe" which is normally Windows Update AutoUpdate Client, but could be a trojan in disguise. I have had issues with that one specifically before.
I doubt thats your issue though. your password was likely stolen via other means. check your email anywhere other than your OWN pc lately?
-------------------- Let the faggots have it all. Keep the shit.
|
tlc
medicated
Registered: 05/06/09
Posts: 584
Loc: Washington
Last seen: 11 years, 11 months
|
|
hmm
alright, I don't think I am going to give it much worry- but if some funky stuff starts happening, it's good to know some people on here can be really helpful. thanks and right on.
--------------------
|
mhbound
Ballin out at all cost
Registered: 09/22/08
Posts: 8,144
Loc: High
|
Re: my paypal just got hacked [Re: tlc]
#244970 - 07/01/09 01:07 PM (15 years, 5 months ago) |
|
|
You have several users on your computer that you don't know about...Some for handling the .Net files etc. It's likely one of those was in use. It's not supposed to stay logged in or even show up for that matter but you're dealing with windows so remember that...It happens but obviously if this continues to happen then I'd check in to it farther. But if this happens with mine or someone elses I just make sure to secure the computer pretty tight and see if it happens again...If it does I look in to it more if not I start running the computer as it was before.
Without being in front of it and not knowing what kind of virus software etc that you run I can't really say too much other than that. Now if you need more help I'll see what I can do.
Harry balls:
At first glance I don't see anything, but as you know some software can attach itself to another or what have you. If you have AIM or something like that I want to send you something. It's called Ashampoo winoptimizer...I can send it to you with the keygen.
I want to know some more about your PC...How old is it? What operating system? What virus scanner and what anti spyware etc?
I would recommend you get Avast I will also send it to you with the keygen. It has a script blocker to keep from those little fucking scripts that I'm looking for on your computer from running. It's really a good addition. Avast also hardly uses any system resources.
Last thing...Do you run disk refrag and disk cleanup and all that shit.
The reason I ask all of this is because your computer hasn't been formatted since you bought it if I'm not mistaken.
-------------------- Suck my balls America
Edited by mhbound (07/01/09 01:59 PM)
|
GetTheFuckOut
Long Gone.
Registered: 04/21/08
Posts: 8,388
|
Re: my paypal just got hacked [Re: mhbound]
#244987 - 07/01/09 01:33 PM (15 years, 5 months ago) |
|
|
mel?
-------------------- Let the faggots have it all. Keep the shit.
|
mhbound
Ballin out at all cost
Registered: 09/22/08
Posts: 8,144
Loc: High
|
Re: my paypal just got hacked [Re: GetTheFuckOut]
#245002 - 07/01/09 01:58 PM (15 years, 5 months ago) |
|
|
Harry nutsack...I thought it was Mel. Guess not. I'll edit that out.
-------------------- Suck my balls America
|
|