I play online poker and use a Moneybookers online wallet to deposit and withdraw.
Tonight I wake up at 3:30 am (neighbors woke me) and check my e-mail. An hour ago I have gotten a message from Moneybookers saying I have a failed login.
Now, I may have had a failed login earlier during the day but an hour ago I was soundly sleeping.
Something's up. I try to login to Moneybookers and it fails. Now, maybe I have forgotten my password, but I think not. I go through the "change password" deal and get a link to change the password at. I change the password. My money is still there.
Suddenly my Gmail acts up a bit, not refreshing correctly and the earlier e-mail telling of the failed login disappears. Hmmm, I didn't delete it as far as I remember. And it's not in trash. I change my Gmail password wondering if it will do me any good.
I try logging in to Moneybookers. It fails again. I try to change the password again through the "failed login" option. It fails this time as it says it sent me the link and it didn't in the end.
I feel like more of the Moneybookers notifications from Gmail have disappeared, but since I didn't take screenshots and was pretty frantic I don't know how many. Either way the first one has definitely disappeared and it was there, I had even a draft of a reply that hadn't disappeared and when I sent it then it started a new thread so the old one's gone.
I get my primary poker account locked. I e-mail MB as they have no phone number for such cases.
I run AVG Free (nothing), Ad-Aware (nothing), MBAB (nothing), SAS (nothing), HijackThis (nothing wrong I can see). I check "netstat -a" and see nothing I can identify as immediately wrong. My router/firewall seems fine but I don't know where OpenWRT keeps logs.
My gf's desktop computer's AVG Free had been reporting some strange Trojan in the strangest places that I felt must be false positives; repeat scans revealed nothing. Nothing reported at any point on my laptop where this was happening. I doubt I've used the MB account from that computer in the last few weeks, but I have certainly used the Gmail account a few days ago.
Now, my Gmail password is a very old one and it is saved in my Firefox password store (which was probably not a good idea). That doesn't give one an easy way to guess at my Moneybookers password (which also wasn't a very complex one but still). So what could be going on?
a) Someone has a keylogger with me and has logged both MB and Gmail (and probably other) passwords. He mistypes the MB one once and forgets to remove the e-mail from Gmail. But he changes the MB password. Then before he can steal the funds, when I change it back he decides to remove selective e-mails from Gmail (parallel sessions with me so glitches appear for me) and change the MB password again.
This makes very little sense but is the best explanation so far.
b ) Moneybookers software glitches and sends me a notification late. I get it late and imagine it was a hacking account. In my panic I forget the password. I change it and in my panic delete some e-mails from Gmail. In my panic I forget the MB password again. Gmail glitches for no good reason.
c) I'm a raving lunatic with paranoia and am starting to imagine things due to minor sleep deprivation.
Any ideas will be appreciated.
Edited by Jurrr, 31 July 2008 - 01:09 AM.