ok if you read my last post you will understand what happened leading up to this, iam really shook now. the same ip adress tried to connect again yesterday but was blocked however! this is the scary shit. i got an email from one of the porno sites i subscribe to.
WTF! now im super scared i use online banking, please help guys?
It's difficult to advise really. It could be that their or another website has been hacked and peoples' details stolen, or it could simply be a hoax.
Unfortunately porn sites are prime targets/sources for/of malware.
I would run Hijackthis and post its log on one of the following websites with your thoughts on the matter.
Do not post Hijackthis logs here, we can't help with those!
Post the logs at a specialist Forum:
Be sure to read all the sticky announcements/instructions at the top of each malware forum!
Meanwhile someone advised you on your other thread to run Malwarebytes free version to check for malware, which is a very good idea. Update it before running.
By the way, it's always best to use the Edit Discussion button at the top right or Edit Post button rather than replying to your own posts, as that removes it from our unanswered posts list and makes it harder for us to spot.Message was edited by: Ex_Brit on 16/07/11 11:38:39 EDT AM
thank you for your respone, i also today just realized my windows need alot of updates, and just brought it up yo date. could this have been the problem, also i have run multiple full & quick scans w/ mcafee as well as malwarebytes, all of which came up empty handed. made sure mcafee and malwarebytes were both up to date aswell. would changing my browser to chrome or firefox help? also if it isnt malware what could it be? do you think my online banking is safe?
What is your operating system and service pack (right-click Computer or My Computer if XP and select Properties) and what version of Internet Explorer (Help/About) do you have installed?
bigmoney, it's time to move from Damage Limitation to Damage Quantification. If you followed the advice I gave you in the other thread your basic security should have been tightened, although there is more you can do. I see that you were some way behind on updating Windows - did you check for updates for all your other programs? Program updates are issued to fix security holes, and if you don't apply the updates as soon as they become available you're running a severe risk of exploitation by malware writers - they always go looking for systems that aren't running current versions of software.
The operators of this site have emailed you to notify you of a problem with logins from "... various IP subnets ... using your login information". That site looks reasonably legitimate, and they've behaved correctly in alerting you to a potential problem.
It looks as if someone has got hold of your login details, including (obviously) your password. These could have been stolen from your PC, although with all scans coming back clean that is now somewhat less likely (although still possible). There are alternative explanations, one of which is that one of their site servers has been hacked and your details obtained in that way. Your password has been changed for you, and unless whoever it is doing this has access to your PC or your network traffic that particular access episode should now be over.
However - if this is a pay site, and someone is logging in using your details, then presumably you should be concerned that that someone might also be paying for content with your credit card ....
I suggest you email the site using the contact address they gave you and ask them to supply you with details, going back to the time when they first became aware of these multiple log-ins, of the dates and times of the log-in attempts, also whether they were successful and the IP addresses from where the log-ins were being made. Then contact your credit card company and ask for details of all transactions going back to that start date.
And I hope you've changed all your online passwords, just in case.
thank you guys agian so much for your help and advise. this has really been stressing me out. but have you guys here to talk to has really helped me get by. i checked and updated every thing, changed my paswords. im hoping and praying that it was there website that was hacked and not my pc. i will update you guys and let you know if anything new happens
i also switched browsers from IE9 to chrome, i dont know if that will make a diffrence, cuz when the ip adress has been trying to connect the past few days , when netguard poped up it said it was trying to connect via internet explorer, so i blocked IE in mcafee, and im now useing chrome
Okay, let us know if there are any developments.
Now you've got Chrome it will update itself to the latest version automatically, and also any installed plug-ins will also automatically update. You can hurry the process along (for Chrome itself) by clicking on the wrench and selecting "About Google Chrome".
You should also go into Options, select 'Under the Hood', and make sure Privacy and HTTPS/SSL settings are checked (use HTTPS for internet connections whenever possible). Then go into Content Settings and review what's in there; most of the options can be left on their recommended settings.
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.
Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership: