Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Yahoo Email Hacked on XP Machine


  • Please log in to reply
114 replies to this topic

#1 pcpunk

pcpunk

  • Members
  • 5,992 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:05:53 AM

Posted 25 June 2014 - 08:37 PM

I tried creating an account at TigerDirect today and could not because someone tried making an account with my email but they were shut down by Tiger.  While we were on the phone I checked my Amazon account and could not log on there either, and we came to the conclusion that I got hacked.  I called my bank to notify.  I then called Amazon and changed my password and also changed my yahoo password.  I have an address for the offender but it is probably not real?

I am very concerned and not sure what to do.  I have had this email for so many years I can't remember and would hate to get rid of it.  If I do get rid of it how the heck will I do this securely, do I need to contact yahoo?  Any help would be greatly appreciated.  

I am using Linux now but was in the process of switching over as this happened today.


sBCcBvM.png

Created by Mike_Walsh

 

KDE, Ruler of all Distro's

eps2.4_m4ster-s1ave.aes_pcpunk_leavemehere

 


BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,260 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:04:53 AM

Posted 25 June 2014 - 09:11 PM

Be sure to change your secret answers for your email account(s).

You should scan for keyloggers....unless you intend not to use XP again....replace with a Linux distro.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 pcpunk

pcpunk
  • Topic Starter

  • Members
  • 5,992 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:05:53 AM

Posted 25 June 2014 - 09:20 PM

I will change my secret answers, but, I thought they could not be seen?  Thanks so much.  Okay guys I changed everything lol. hope it works.


Edited by pcpunk, 25 June 2014 - 09:35 PM.

sBCcBvM.png

Created by Mike_Walsh

 

KDE, Ruler of all Distro's

eps2.4_m4ster-s1ave.aes_pcpunk_leavemehere

 


#4 cat1092

cat1092

    Bleeping Cat


  • BC Advisor
  • 7,018 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina, USA
  • Local time:05:53 AM

Posted 25 June 2014 - 11:50 PM

Like buddy215 posted above... :thumbup2:

 

Plus, there's almost as much of a chance that the infection, breach, or whatever, came from Yahoo's end. I'll own up to having a Yahoo email account, but only use it for when having to give an email address to get a freebie software & then access it on a Linux OS. 

 

There has been several reports of many malicious links on the Yahoo site as of late. Doesn't come as a surprise, considering three-fourths that's in my inbox is spam, plus everything in the Spam folder as well. When the last CEO took over, for a couple of months, things appeared to be improving. At the moment, it looks as though they're as deep in the gutter than ever. The financial status & long term outlook for Yahoo are dim at best, with that in mind, they're strapped for cash & probably don't screen ads like the rest. They're likely taking most all who will pay for ad space, 

 

I would suggest that maybe it's time to change providers, there's many no-cost options. Google gives a generous 15GB of space, twice that of a MS (Outlook.com) account. 

 

Cat


Performing full disc images weekly and keeping important data off of the 'C' drive as generated can be the best defence against Malware/Ransomware attacks, as well as a wide range of other issues. 


#5 jimbotoo

jimbotoo

  • Banned
  • 297 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:53 AM

Posted 26 June 2014 - 03:37 AM

Like buddy215 posted above... :thumbup2:

 

Plus, there's almost as much of a chance that the infection, breach, or whatever, came from Yahoo's end. I'll own up to having a Yahoo email account, but only use it for when having to give an email address to get a freebie software & then access it on a Linux OS. 

 

There has been several reports of many malicious links on the Yahoo site as of late. Doesn't come as a surprise, considering three-fourths that's in my inbox is spam, plus everything in the Spam folder as well. When the last CEO took over, for a couple of months, things appeared to be improving. At the moment, it looks as though they're as deep in the gutter than ever. The financial status & long term outlook for Yahoo are dim at best, with that in mind, they're strapped for cash & probably don't screen ads like the rest. They're likely taking most all who will pay for ad space, 

 

I would suggest that maybe it's time to change providers, there's many no-cost options. Google gives a generous 15GB of space, twice that of a MS (Outlook.com) account. 

 

Cat

 

Hello folks

 

Changing providers is very extremely hard and expensive for many.

 

and exporting address's with yahoo, means letting some company obviously run by some abused brat, read your mail and sell for the deal, as the fine print says,,,, i believe their hi mb mail sender service is about the same type of price, we do you a favor, we look thru your desk.

 

I have a web site with yahoo. my back door was hacked, a guy posted me as an affiliate on a bogus site, while in my site builder back door i clicked to see what this "friendly" site promoting me was, click bang raided, i pulled the plug on my machine in 1 and 1/2 seconds, as i have split my power cord with a switched wire shut off, nice device, i should market it.

 

I called my yahoo rep, told them a million passwords card numbers, cause i was "off" power, off my mail site back door key site and all, Etc. told them the affiliate name/address, they transferred it to a dummy computer, cleared it off my back door site listing page some how.

 

rep, with me on phone clicks and her computer is raided, but this comp. wants the raid, and collects data about raid, I know no one reading this will believe me, but she does a lot of very quick research, tracks site to a phone number for a porno hosting service and gets guy on phone with me listening, this 21 century criminal mushroom grown under florescent lights, who sounds like he has long nails and never shaved or seen day light, and had the strangest voice, answers, she says he is running an illegal site, this guy hiss's as he speaks denying everything, mean while he is punching the key board fast. he disappears off her sacrifice computer.

 

Tells her to %^& herself--hangs up.

 

sends her/me an e-mail that says -show me where i have hacked anything.

 

I turn my comp on, run umpteen scan and virus checks., it works fine

 

I said to yahoo rep, still on phone 1 and 1/2 hours into all this, what are you gonna do as a yahoo company security person, she says, that (me) I have to call several mars and uranus organizations, maybe f bee eye, some other gov. groups too.

 

mostly told me i was on my own.

 

with in hours, this web site builder " your affiliates page" was yanked like it never existed. I presume across all yahoo back door web owner site builder pages.

 

they realized this help page for owners was cheese cake for hackers who list phoney sites as affiliates.

 

A few times after that they demanded my phone # to get in to my site, which i almost refused to do.

 

Look, you have to think hard, some folks make hard stuff like shoes, laundry baskets, there’s a whole false face wearing life they never have to take on and they are healthier for it.

 

except for many programers, admin Etc, this business is about invisible con artistry, many times by folks who have never been shown in their own lives the sacred value of honoring others personal space,

 

I don't mean for being honest to others so one can say i am honest,

thats only half the joy,

 

but so they can become full autonomous adult humans who do not have to prey on others for a living,

to just be free of having to slightly miss led others to get by,

to know being free of having to false face the world.

IE. a world that would give them tons of riches back, if they just where not in a "racket" and had to cancel so many sweet interpersonal events, cause they are in dressed to kill market mode,

 

Yahoo is, Google, MSN, are all folks who lost their most valuable possession, to be able feel good about life, cause they can't eat except at the loss of others personal space, even if you gave them the right, you can not give that personal space right away

 

you can only possess it, it can't be given, yet they think they own it.

 

Yahoo does care about you getting hacked, but in the very end it is cause they need to silently hack you themselves to survive.

 

 

Since the begining of the world, some toil growing the wheat, take it to market and sell it and then sleep like babys

 

While others stay up late thinking of ways to inflate a price on something that they did not even create but now own%^#$@^

 

The most expensive beaches in the world fill with the latter every summer

 

jimbotoo :hug:


Edited by jimbotoo, 26 June 2014 - 04:13 AM.


#6 pcpunk

pcpunk
  • Topic Starter

  • Members
  • 5,992 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:05:53 AM

Posted 26 June 2014 - 09:26 AM

Thanks guys, I do love my Yahoo though, I tried Google and it was not as good for me.  Last time I tried to loging to google I could not even get in.  Yahoo just has better function and interface for my taste.  I think some of this is my own doing considering how dangerous the www is.  I am sill learning.  


sBCcBvM.png

Created by Mike_Walsh

 

KDE, Ruler of all Distro's

eps2.4_m4ster-s1ave.aes_pcpunk_leavemehere

 


#7 buddy215

buddy215

  • Moderator
  • 13,260 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:04:53 AM

Posted 26 June 2014 - 10:59 AM

pcpunk....when creating new accounts at forums, etc., create a new email account. Keep the one account you use

for communicating with known friends, family, etc. for just that use.

Never post anywhere online your email address such as in forums or sites like Craig's List.

 

After creating a regular account, Outlook allows the creation of 'alias accounts'.....easy to create and easy to remove. Helps in

preventing spam and protects your major account.

 

Yahoo is having more problems this morning. I just had an email sent to one Yahoo email address and it is received but

I can't open it or access my profile. I have often in the past months have seen similar problems as they are continuously monkeying

with their software. But they seem to eventually get the errors I see fixed....eventually.

At one time you could send text messages using Yahoo.....not anymore....I miss that more than their other services.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#8 jimbotoo

jimbotoo

  • Banned
  • 297 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:53 AM

Posted 26 June 2014 - 02:02 PM

HELLO buddy215

 

Always tinkering is exactly right, and often now they have taken a plan to do that tweaking while you are right in the middle of using yahoo.

 

I watch their link insert button change 3 times in 2 days. now the tough and gruff can say, "well jimbotoo can't you run down the field with that, stay on top, are you a wimp?" no I am not a wimp, i am a human and need to live my life -off and far away from a merry go round making me dizzy with new junk to learn while trying to get it across to my sweetie that -I love her.

 

yahoo's claim to fame once, was they started with a very intuitive program, that was mostly the same program all the time, so my time and my life had a stable work base to go out to the world with.

 

Every new marketeer admin, has to make their mark changing things, higher profits Etc. yahoo has become like a huffington post page, over worked and jammed too tight with junk pic/clicks to play amusement park with, cause each pic/click has another ad space, again another example of the “tail wagging the dog”

 

Yahoo has become like a walk though an Egyptian tomb, trying to get a message to my grand ma.

 

With our “Hi how are ya, glad to see ya “emotional supply and replenishment system” completely blow to Hades with daily violence, they just become one more bump in the road, with one less flower, and with five more pot holes.

 

And every single piece of all that over built crap is a hackers dream, they should change their name from “Yahoo” to “Oh my god!

 

All with an invisible banner over head that says- if some one does not write you back, don't assume they read your mail and don't care-cause that mail you sent may not get there for days, which happens at least once a month to me sometimes.

 

Other free mail, most of what I have seen has a graphic presentation of a psychiatric chart.

Yahoo was the original eye friendly web site, that’s what gave them fame with so many.

 

In the final analysis, yahoo was best when “Less was more”

 

Jimbotoo :bubbles:


Edited by jimbotoo, 26 June 2014 - 02:04 PM.


#9 pcpunk

pcpunk
  • Topic Starter

  • Members
  • 5,992 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:05:53 AM

Posted 26 June 2014 - 02:18 PM

O wow! thanks guys I will have to change things around a bit.  I am just in the middle of trying to go over to Linux, malware removal, RAM upgrade etc. and it is all just a but much for me.  I am forced to use LuPu because my pc won't run anything else from usb and the LiveCD that I am on right now is so slow and does not save any work, or anything else really that I know of.

 

I also want to disenfect a usb that I just bought and used to back up my xp system.  bloopie sent me a link to a Disenfector that is for windows, but I want to do it in LucidPuppy because I am paranoid about downloading anything from www on xp.


sBCcBvM.png

Created by Mike_Walsh

 

KDE, Ruler of all Distro's

eps2.4_m4ster-s1ave.aes_pcpunk_leavemehere

 


#10 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:05:53 AM

Posted 26 June 2014 - 08:18 PM

Any questions related to malware removal, including disenfecting a usb should go through bloopie who is still assisting you in the Virus, Trojan, Spyware, and Malware Removal Logs forum.

Until bloopie has finished you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by him...nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show in the log(s) you already posted. Further, any modifications you make on your own may cause confusion and could complicate the malware removal process or make things worst which would extend the time it takes to clean your computer.


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#11 Guest_Kaosu_*

Guest_Kaosu_*

  • Guests
  • OFFLINE
  •  

Posted 26 June 2014 - 09:10 PM

You're using Windows XP and it has lost its security support from Microsoft, so expect more situations like this to happen more frequently as each day passes. It was no secret that malicious communities were holding on to several different vulnerabilities that target Windows XP and they will only be patched if you pay Microsoft for enterprise-level desktop support, which isn't possible for the home user.

 

Before doing anything else, you should replace Windows XP. Until you replace your unsupported operating system, cleaning up any current infections will be completely pointless. There are a lot of user-friendly GNU/Linux distributions that run well on older computers and still have great security support. Replacing Windows XP can be a fairly painless experience with the right help, but keeping it will give you nothing but headaches.

 

I would recommend Xubuntu, because it is lightweight, modern and easy to use. However, browse around and find something that suites your personal needs. If the thought of using GNU/Linux does not interest you, then you should upgrade to another version of Windows that still has its security support.


Edited by Kaosu, 26 June 2014 - 09:11 PM.


#12 cat1092

cat1092

    Bleeping Cat


  • BC Advisor
  • 7,018 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina, USA

Posted 27 June 2014 - 01:12 AM

You're using Windows XP and it has lost its security support from Microsoft, so expect more situations like this to happen more frequently as each day passes. It was no secret that malicious communities were holding on to several different vulnerabilities that target Windows XP and they will only be patched if you pay Microsoft for enterprise-level desktop support, which isn't possible for the home user.

 

Before doing anything else, you should replace Windows XP. Until you replace your unsupported operating system, cleaning up any current infections will be completely pointless. There are a lot of user-friendly GNU/Linux distributions that run well on older computers and still have great security support. Replacing Windows XP can be a fairly painless experience with the right help, but keeping it will give you nothing but headaches.

 

I would recommend Xubuntu, because it is lightweight, modern and easy to use. However, browse around and find something that suites your personal needs. If the thought of using GNU/Linux does not interest you, then you should upgrade to another version of Windows that still has its security support.

+1! :)

 

XP in unskilled hands is dangerous indeed. I agree with most of what you're saying. 

 

Though the OP is in the middle of choosing a Linux distro & still learning. 

 

As for me, though I have both Windows 7 & 8.1 at my disposal, have been using Linux Mint for 5 years now, for the most part is my default OS. The cool thing is that malware & other infections targeted towards Windows computers are useless against Linux OS's. However, that is not meant to imply it can't happen, it's just that it would require a lot more effort to distribute a Linux malware. Unlike with Windows, the Linux user by default doesn't run as root, anything other than what's installed has to be to execute. Even the Update Manager. 

 

 

 

cleaning up any current infections will be completely pointless

I can see where a lot would feel this way. However, if these computers are online (& many are) and infected with malware & who knows what, those presents a danger to the entire Internet community. As Vista, Windows 7, 8 & 8.1 shares much of the same code. Until end of support for XP, many of the updates for the OS were the same as for the rest. There are some older apps that requires .NET Framework 2.0 & 3.5, which are available for 8 & 8.1 by an add or remove Windows components option. 

 

So that explains why & we really don't want infected computers online, no more than most of don't want drunken or drugged drivers on the highways, it's a danger to everyone. 

 

Cat


Edited by cat1092, 27 June 2014 - 01:14 AM.

Performing full disc images weekly and keeping important data off of the 'C' drive as generated can be the best defence against Malware/Ransomware attacks, as well as a wide range of other issues. 


#13 pcpunk

pcpunk
  • Topic Starter

  • Members
  • 5,992 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:05:53 AM

Posted 27 June 2014 - 08:47 AM

Any questions related to malware removal, including disenfecting a usb should go through bloopie who is still assisting you in the Virus, Trojan, Spyware, and Malware Removal Logs forum.

Until bloopie has finished you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by him...nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show in the log(s) you already posted. Further, any modifications you make on your own may cause confusion and could complicate the malware removal process or make things worst which would extend the time it takes to clean your computer.

Thank you quietman7, I know this and we are done.


sBCcBvM.png

Created by Mike_Walsh

 

KDE, Ruler of all Distro's

eps2.4_m4ster-s1ave.aes_pcpunk_leavemehere

 


#14 pcpunk

pcpunk
  • Topic Starter

  • Members
  • 5,992 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:05:53 AM

Posted 27 June 2014 - 08:54 AM

Before doing anything else, you should replace Windows XP. Until you replace your unsupported operating system, cleaning up any current infections will be completely pointless. 

I disagree as I want to have the system to use offline-and this is making it easier for me to switch over to Linux.  I have had a hard time going to linux so please be patient.  I hated the LiveCD and the USB would not work unless I used Lupu.  Thanks for participating though.


sBCcBvM.png

Created by Mike_Walsh

 

KDE, Ruler of all Distro's

eps2.4_m4ster-s1ave.aes_pcpunk_leavemehere

 


#15 pcpunk

pcpunk
  • Topic Starter

  • Members
  • 5,992 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:05:53 AM

Posted 27 June 2014 - 08:57 AM

Another Newbie question, not long before I was hacked I was choosing the "Keep me Logged in" choice in yahoo.mail, this is probably not a good choice?

 

Also, is it not a good idea to link to forums like this from email account? via "Notifications".


sBCcBvM.png

Created by Mike_Walsh

 

KDE, Ruler of all Distro's

eps2.4_m4ster-s1ave.aes_pcpunk_leavemehere

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users