HELP! I may have messed up...

K

Kyle

Guest
OK, I'm still a bit confused as to what happened, so hopefully all this makes sense. Basically, I was browsing a few websites a few minutes ago. I was looking on here, eBay, and a couple other sites at the same time. I wasn't paying close attention to what was going on, I was going back and forth between different pages, but somehow a page opened which looked like the ebay sign-up page. I don't know how that page got there, but I signed in thinking it was my ebay account. After I hit "enter" a page popped up saying
The eBay page you are looking for can't be found. It may have moved, or it may no longer be available. Please try one of the options below...
Click to expand...

The site was vresaiseuncc.net.ms/, and its close to the ebay sign in page, but has some different fonts and isn't all the same (WARNING, I DON'T KNOW WHAT HAPPENS IF YOU VIEW THAT PAGE).

At that point I realized something was up, I quickly changed my ebay password (in fact, there's a chance I didn't even enter my correct password when I "logged in" as I use many different passwords for email, forums, etc, I). I don't know if I'm freaking out for no reason, or if I've compromised anything, but if anyone has any advice as to what I should do from here, I'd like to hear them. I really just do not want to get burned, and need some advice.
 
Hopefully you changed your password in time. I'd now change it again, just to make sure...and then again and again. 😀
 
This may not be as bad as you fear; particularly since you changed p-words.

I agree with Frank - change it again a couple of more times - preferably from a different computer in case you're being "phished" on the current one.

If you have CC info with eBay (for billing purposes) you may want to cancel that.

My feeling is - better you go "off line" for a while with any vendor/bank/site etc. than risk a "phishing" expedition.

Good luck!
 
Is there any chance that just by going to that site something was downloaded to my computer which tracks my online movements (and even more importantly, my keystrokes, which lead to passwords, etc)? Will it help if I have the hard drives on the computers erased, change all my passwords again, etc? You can never be too safe...
 
As a follow-up on the CC info with eBay - cancel the card now. Call the CC company and cancel it. Tell them your last "legit" charge so they can record that. They'll send you a new one w/in a day or two.

The CC companies are very "hip" to 'net scams" and will cut a card off in seconds IF you notify them!
 
kyle said:
Is there any chance that just by going to that site something was downloaded to my computer which tracks my online movements (and even more importantly, my keystrokes, which lead to passwords, etc)? Will it help if I have the hard drives on the computers erased, change all my passwords again, etc? You can never be too safe...
Click to expand...

Yes there is. Get rid of cookies - run your virus program diagnostic etc. Go to full "lock down" now - get off line!
 
kyle said:
Is there any chance that just by going to that site something was downloaded to my computer which tracks my online movements (and even more importantly, my keystrokes, which lead to passwords, etc)? Will it help if I have the hard drives on the computers erased, change all my passwords again, etc? You can never be too safe...
Click to expand...

Kyle, you can do a free online virus and spyware scan here:
http://www.trendmicro.com/home/default.asp
Trendmicro is legit.

R.J.
 
RJBender said:
Kyle,

I typed in www.vresaiseuncc.net.ms and it redirected me to http://www.cydots.com/

It looks like cydots is trying to sell http://www.Your-Name.net.ms

R.J.
Click to expand...

I got redirected to that cydots site as well when I messed with the original URL that I posted. Does this information change anything, or does this make it just as sketchy?

I'm on a different computer, I ran Norton Anti-Virus and Microsoft AV on this one, the Micro Trend site is scanning the other computer (the one I was on). I've changed passwords, haven't done the card yet as its linked to a debit card with a checking acct, I think I might have to go to the bank tomorrow to do that. After I run the virus scan, can I assume I'm in the clear? Are there any further steps I need to take? Change more passwords? Cancel all credit card that could be in the computer in any way? Should I go so far as to completely delete the entire hard drives of both home computers?
 
kyle said:
I got redirected to that cydots site as well when I messed with the original URL that I posted. Does this information change anything, or does this make it just as sketchy?

I'm on a different computer, I ran Norton Anti-Virus and Microsoft AV on this one, the Micro Trend site is scanning the other computer (the one I was on). I've changed passwords, haven't done the card yet as its linked to a debit card with a checking acct, I think I might have to go to the bank tomorrow to do that. After I run the virus scan, can I assume I'm in the clear? Are there any further steps I need to take? Change more passwords? Cancel all credit card that could be in the computer in any way? Should I go so far as to completely delete the entire hard drives of both home computers?
Click to expand...

Kyle,

You can change your credit card used for eBay fees on eBay's site. I doesn't hurt to change all your passwords again including the one you use to get your email. You might want to set up Windoze so that it doesn't save your passwords for you. Call your credit card companies now and see if there have been any other charges made to your accounts. I wouldn't reformat your hard drives. Download Ad-aware and run it every week to remove spyware: http://www.lavasoftusa.com/software/adaware/

DO NOT PANIC!

R.J.
 
kyle said:
Are there any further steps I need to take? Change more passwords? Cancel all credit card that could be in the computer in any way? Should I go so far as to completely delete the entire hard drives of both home computers?
Click to expand...


From your other computer you should periodically check to see if you can sign in to eBay. If you cannot and you suspect your account has been hijacked then contact eBay via their Live help link or email them immediately.

Instructions for securing account

Don't forget to clear your saved cookies and run Ad-Aware.
 
kyle said:
I got redirected to that cydots site as well when I messed with the original URL that I posted. Does this information change anything, or does this make it just as sketchy?
I'm on a different computer, I ran Norton Anti-Virus and Microsoft AV on this one, the Micro Trend site is scanning the other computer (the one I was on). I've changed passwords, haven't done the card yet as its linked to a debit card with a checking acct, I think I might have to go to the bank tomorrow to do that. After I run the virus scan, can I assume I'm in the clear? Are there any further steps I need to take? Change more passwords? Cancel all credit card that could be in the computer in any way? Should I go so far as to completely delete the entire hard drives of both home computers?
Click to expand...

Kyle, when I visited that site it didn't set off any alarms in my computer.

R.J.
 
Not to scare you, but there are many bad things that can happen on the 'net. It looks like you may simply have fallen victim to a phishing attack, and given up you ebay password. Since you were able to change it, likely there has been no harm done. However, it might be worth while to contact ebay about it.

However, since there are bad things that can be done, you indeed should consider changing CC cards, runnng Root Kit Revealer, and using something a little better than Adaware. I use both Norton and Spy Sweeper. Now I don't know about the purchased versions of Adaware or Spybot, but the free versions, while better than nothing, will leave some things uncaught. In fact, each will find things the other has missed. At least that was true the last time I used them. I don't use them any more. I also check periodically with Root Kit Revealer, and every once in a while, I do the old classic of running a directory from windows and linux, then comparing them.

You just can't be too sure. And there is no certainty I am completely free even then. Bad guys are thinking up new attacks all the time. Hopefully, as I said, you were only phished and caught you problem in time.
 
Last edited:
oftheherd said:
Not to scare you, but there are many bad things that can happen on the 'net. It looks like you may simply have fallen victim to a phishing attack, and given up you ebay password. Since you were able to change it, likely there has been no harm done. However, it might be worth while to contact ebay about it.

However, since there are bad things that can be done, you indeed should consider changing CC cards, runnng Root Kit Revealer, and using something a little better than Adaware. I use both Norton and Spy Sweeper. Now I don't know about the purchased versions of Adaware or Spybot, but the free versions, while better than nothing, will leave some things uncaught. In fact, each will find things the other has missed. At least that was true the last time I used them. I don't use them any more. I also check periodically with Root Kit Revealer, and every once in a while, I do the old classic of running a directory from windows and linux, then comparing them.

You just can't be too sure. And there is no certainty I am completely free even then. Bad guys are thinking up new attacks all the time. Hopefully, as I said, you were only phished and caught you problem in time.
Click to expand...

Use the "custom scanning options" button. The "smart system scan" is very basic.

R.J.
 
Flyfisher Tom said:
Kyle, how did you end up on the suspect page in the first place?
Click to expand...

I have absolutely no idea. I was looking on RFF, eBay, and another forum. I was going back and forth between the sites that I really can't remember.
 
RJBender said:
Use the "custom scanning options" button. The "smart system scan" is very basic.

R.J.
Click to expand...

I am not sure what that will do or if I used that previously or not. No matter, I personally still trust Spy Sweeper and Norton more in my experience. I don't trust any of them to be all that good agains root kits. Just me.
 
Get a good firewall, too, Kyle. It will tell you when an application is trying to connect to the Internet.

R.J.
 
I can recommend Panda Titanium Anti Virus. In theory it would have tried to stop that web page from sending information out. It would have caught and deleted any undesirable cookies. This Panda stops several intrusions per day on my computer. You can read up on it at pandasoftware.com. I also run the free Ad-aware and spybot.
Panda really found a lot more for me than Norton ever did. Just my opinion though. Good luck. 🙂
 
You must log in or register to reply here.

Similar threads

D
I chickened out, NKT 8.5cm f2 Nikkor in LTM
2
Replies
28
Views
1K
dexdog
D
Y
Any info. on CRR, UK?
Replies
15
Views
416
bucs
bucs
Rob-F
Olive Repainted Leicas on eBay: How good is the paint job?
Replies
9
Views
520
NIKON KIU
NIKON KIU
wrs1145
Please help me with some advice.
Replies
7
Views
1K
Glenn2
G
lxforrest
Rewindpix camera - First camera + App testing video out and one more thing!
Replies
1
Views
264
lxforrest
lxforrest
Back
Top Bottom