Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Someone hacked my email? Windows 7 home
New Posts  All Forums:Forum Nav:

Someone hacked my email? Windows 7 home

post #1 of 8
Thread Starter 
Just got a message from Mailer-Daemon of a failed message, it says that I tried to send a message to a email address I never heard of.. It seems that someone has hacked my email and are sending messages to other emails

Here is the message form Mailer-Daemon

Sorry, we were unable to deliver your message to the following address.

:
Remote host said: 554 delivery error: dd Sorry your message to anthonylizardo5957@yahoo.com cannot be delivered. This account has been disabled or discontinued [#102]. - mta1582.mail.ne1.yahoo.com [BODY]

--- Below this line is a copy of the message.

Received: from [98.137.12.189] by nm39.bullet.mail.gq1.yahoo.com with NNFMP; 05 Jun 2013 22:55:58 -0000
Received: from [98.137.12.249] by tm10.bullet.mail.gq1.yahoo.com with NNFMP; 05 Jun 2013 22:55:58 -0000
Received: from [127.0.0.1] by omp1057.mail.gq1.yahoo.com with NNFMP; 05 Jun 2013 22:55:58 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 102266.90198.bm@omp1057.mail.gq1.yahoo.com
Received: (qmail 20452 invoked by uid 60001); 5 Jun 2013 22:55:58 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1370472958; bh=YuAl+WnbBBBPZO6Alh+ljeEvGf/+AFZnD2bFDsBmSKU=; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:Message-ID:Date:From:Reply-To:To:MIME-Version:Content-Type; b=gVRYcW0h09PhUYKdc0Ztgf3eKltbVc28SYjVKwE5V4l/dcpqFCh72VnVVdYBle2flQBhKW+MP2Fu/pNsI9bTcoHpsUnIlqOk29gG0TMtolHQfuzfntA112FrM2CINatM2oITEDFt0xuUDNlSWUEBVLXLZJRfQrNVIFZ2IKXsrAg=
DomainKey-Signature:a=rsa-sha1; q=dns; c=nofws;
 s=s1024; d=yahoo.com;
 h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:Message-ID:Date:From:Reply-To:To:MIME-Version:Content-Type;
 b=4kgwzMnuS4P762ZNXmNEL1ATEEjVPLc7BKLWzDe2l9Rbt/LnTqFCQ5Ui6RFUinZf05/z+ff6NJjrRdWnucnKLvs3fj9HC21mK/a3bZu5FcC0HYdantOGe5FEA3GKQnKghOnarIUXKh/jzKvqRejnB6LLPTFbqJBl2iIp9fDDSaQ=;
X-YMail-OSG: Ilw0axoVM1lNnexmpkyqtMUs8tprTmWbdvpYy3oKTEZ1mU.
eovw7Fn0kfG0fYStfTA3r
Received: from [139.192.82.213] by web163505.mail.gq1.yahoo.com via HTTP; Wed, 05 Jun 2013 15:55:57 PDT
X-Rocket-MIMEInfo: 002.001,IGh0dHA6Ly93d3cubXltdmguY29tL3diaWZmdG1uL2V2dmoucGhwCgoKATABAQEB
X-Mailer: YahooMailWebService/0.8.145.547
Message-ID: <1370472957.18896.YahooMailNeo@web163505.mail.gq1.yahoo.com>
Date: Wed, 5 Jun 2013 15:55:57 -0700 (PDT)
From: jayson harvey
Reply-To: jayson harvey
To: jasmine harvey17 ,
 jvillaronga , djharvey77 ,
 Kassidy Chow ,
 Joe Sacchetti
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="-1735974723-887277229-1370472957=:18896"

---1735974723-887277229-1370472957=:18896
Content-Type: text/plain; charset=us-ascii

---1735974723-887277229-1370472957=:18896
Content-Type: text/html; charset=us-ascii


---1735974723-887277229-1370472957=:18896--

Anything in there that seems odd??
post #2 of 8
    That e-mail originated from a PC in Jakarta Raya, Indonesia.
    Scan your PC for malware (Malwarebytes Anti-Malware is a good first choice) and viruses.  I would also be leery of unnecessary browser "toolbars" (they can steal login passwords too), and recommend that you uninstall each one that you're not using or don't need.
    After you are sure that there is no malware in your computer(s), change the password on your e-mail account.  Make sure to check your password reset questions, and also make sure that the "Reply-to" field is empty in your e-mail address setup.
 
Edited by Techie007 - 6/6/13 at 5:28am
My desktop PC
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7-3770K Gigabyte P67A-D3-B3 NVIDIA GeForce 8400 GS  1x Corsair 8 GB 
Hard DriveHard DriveHard DriveOS
Kingston SV300S3 WesternDigital WD10EZEX Samsung HD154UI Windows 7 Ultimate SP1 x64 
MonitorMonitorKeyboardPower
Daewoo L947BK Gateway FPD1530 HTK-2001 Dynex DX-400WPS 
MouseAudio
Kensington K72400 Realtek ALC889 
  hide details  
Reply
My desktop PC
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7-3770K Gigabyte P67A-D3-B3 NVIDIA GeForce 8400 GS  1x Corsair 8 GB 
Hard DriveHard DriveHard DriveOS
Kingston SV300S3 WesternDigital WD10EZEX Samsung HD154UI Windows 7 Ultimate SP1 x64 
MonitorMonitorKeyboardPower
Daewoo L947BK Gateway FPD1530 HTK-2001 Dynex DX-400WPS 
MouseAudio
Kensington K72400 Realtek ALC889 
  hide details  
Reply
post #3 of 8
I also highly recommend you migrate off of Yahoo email if you can, their security is a bit of a bad joke.
post #4 of 8
Check to see if anything weird is installed in "Add/Remove programs" or "Programs and features". Then like Techie007 run malware bytes and I like to also run Spybot Search and Destroy. That should hopefully find something and put a name to it. From there you can research that specific piece of malware for the removal process. Or you could do what I feel most comfortable doing, wipe and reinstall Windows. thumb.gif
Ananke
(9 items)
 
   
CPUMotherboardGraphicsRAM
5930k Asus Rampage V Extreme GTX 780 SLI G.SKILL TridentZ Series 64GB (F4-3200C14Q-64GTZ) 
Hard DriveCoolingOSPower
Samsung 950 Pro Custom water Windows 10 EVGA SuperNOVA 1300 G2 
Case
Case Labs MAGNUM STH10 
CPUMotherboardGraphicsRAM
i7 3930K Asus Rampage IV Extreme EVGA 780 Classified 32 GB GSkill Trident X 2400MHz 
Hard DriveCoolingOSMonitor
Samsung 840 Pro 256 Custom Water Windows 8 Pro x64 CatLeap 27" IPS 
PowerCase
Corsair HX750 Corsair 800D 
  hide details  
Reply
Ananke
(9 items)
 
   
CPUMotherboardGraphicsRAM
5930k Asus Rampage V Extreme GTX 780 SLI G.SKILL TridentZ Series 64GB (F4-3200C14Q-64GTZ) 
Hard DriveCoolingOSPower
Samsung 950 Pro Custom water Windows 10 EVGA SuperNOVA 1300 G2 
Case
Case Labs MAGNUM STH10 
CPUMotherboardGraphicsRAM
i7 3930K Asus Rampage IV Extreme EVGA 780 Classified 32 GB GSkill Trident X 2400MHz 
Hard DriveCoolingOSMonitor
Samsung 840 Pro 256 Custom Water Windows 8 Pro x64 CatLeap 27" IPS 
PowerCase
Corsair HX750 Corsair 800D 
  hide details  
Reply
post #5 of 8
Thread Starter 
im going to run spybot search and destroy and see what it catches, ill report back what i find
post #6 of 8
Thread Starter 
Cleared my password and did a clean install of windows, bye bye virus
post #7 of 8
I had this happen to my hotmail once, never quite figured out how they did it. Changing my password fixed it, my PC never had a virus. Maybe I forgot I logged in somewhere, who knows.

Make sure to let people know any message they may have gotten in the past few days might not have been you, and not to click any links.
SUPERPWN
(12 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 4670K Asus z87-Pro MSI GTX 1080 Aero 32GB DDR3 Gskill Ripjaws 
Hard DriveOSMonitorMonitor
4TB Seagate Windows 8 x64 Overlord x270 OC HP ZR27 
MonitorKeyboardPowerAudio
LG34UM94 G-Tune Topre Realforce 800w Yulong D100 DAC with Denon D7000 headphones 
  hide details  
Reply
SUPERPWN
(12 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 4670K Asus z87-Pro MSI GTX 1080 Aero 32GB DDR3 Gskill Ripjaws 
Hard DriveOSMonitorMonitor
4TB Seagate Windows 8 x64 Overlord x270 OC HP ZR27 
MonitorKeyboardPowerAudio
LG34UM94 G-Tune Topre Realforce 800w Yulong D100 DAC with Denon D7000 headphones 
  hide details  
Reply
post #8 of 8
happened to my email (hotmail) too.

i deleted my contacts changed the password and made a fake contact to see if i ever had a return message again...


so far so good.
Gaming Rig
(17 items)
 
File Server
(13 items)
 
 
CPUMotherboardGraphicsGraphics
Core i7 4790K ASUS Z97-WS Gigabyte GeForce GTX 980 Gigabyte GeForce GTX 980 
RAMHard DriveHard DriveCooling
16 Gb's Mushkin DDR3 @ 1600 MHz Crucial M500 SSD 240gb 4 Seagate Cheetah 15.7 15k rpm 300Gb Drives in... Coolit ECO C240 
OSMonitorMonitorPower
Windows 7 Ultimate ASUS PB287Q 4K Monitor HTC Vive Coolermaster Silent Pro M 1000W 
CaseMouseMouse PadAudio
Rosewill Blackhawk Ultra Razer Deathadder 2013 Steelseries Qck Mass Super Thick Cloth Mouse Pad Genius SW-G2.1 1250 4PC Gaming Speakers 
Other
Dell PERC H310 
CPUMotherboardRAMHard Drive
Core i3 2120 Supermicro X9SCM-F 4 Gb Kingston 1600mhz DDR3 ECC 12 Segate 2tb drives (RAID 6) 
Hard DriveHard DriveOSPower
ADATA SP600 SSD 24 Toshiba DT01ACA200 drives (2 RAID 6's) Windows 7 Ultimate 64 bit. OCZ ZT750 Supermicro PWS-665-PQ 
CaseOtherOtherOther
Norco 4020 and Norco 4224 LSI 9260-4i Raid Card Intel RES2SV240 20 port Expander. HP SAS 24 por... Voltaire 410Ex Hca Infiniband HBA 
  hide details  
Reply
Gaming Rig
(17 items)
 
File Server
(13 items)
 
 
CPUMotherboardGraphicsGraphics
Core i7 4790K ASUS Z97-WS Gigabyte GeForce GTX 980 Gigabyte GeForce GTX 980 
RAMHard DriveHard DriveCooling
16 Gb's Mushkin DDR3 @ 1600 MHz Crucial M500 SSD 240gb 4 Seagate Cheetah 15.7 15k rpm 300Gb Drives in... Coolit ECO C240 
OSMonitorMonitorPower
Windows 7 Ultimate ASUS PB287Q 4K Monitor HTC Vive Coolermaster Silent Pro M 1000W 
CaseMouseMouse PadAudio
Rosewill Blackhawk Ultra Razer Deathadder 2013 Steelseries Qck Mass Super Thick Cloth Mouse Pad Genius SW-G2.1 1250 4PC Gaming Speakers 
Other
Dell PERC H310 
CPUMotherboardRAMHard Drive
Core i3 2120 Supermicro X9SCM-F 4 Gb Kingston 1600mhz DDR3 ECC 12 Segate 2tb drives (RAID 6) 
Hard DriveHard DriveOSPower
ADATA SP600 SSD 24 Toshiba DT01ACA200 drives (2 RAID 6's) Windows 7 Ultimate 64 bit. OCZ ZT750 Supermicro PWS-665-PQ 
CaseOtherOtherOther
Norco 4020 and Norco 4224 LSI 9260-4i Raid Card Intel RES2SV240 20 port Expander. HP SAS 24 por... Voltaire 410Ex Hca Infiniband HBA 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Windows
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Someone hacked my email? Windows 7 home