1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Email Hijacked - AMR Email Accts

Discussion in 'Black Hat SEO Tools' started by SEOhopeful, May 20, 2011.

  1. SEOhopeful

    SEOhopeful Newbie

    Joined:
    Feb 14, 2011
    Messages:
    35
    Likes Received:
    3
    Just wanted to make a post that one of my emails was hijacked and sent out a few hundred spam emails yesterday.

    My computer is secure:malwarebytes, spybot, and active protection virtual firewall.

    The email accounts were specifically setup for AMR blasts. NO OTHER USE. Never even sent one email myself just used the accounts for sign-up and confirmation.

    I have only done 3 runs on these two accounts. Each around 600 successful submissions, heavily spun, well written unique content, blah blah.

    Any ideas how this password/email information could have been hacked? Are AMR's servers secure and safe?
     
  2. thetrader

    thetrader Newbie

    Joined:
    May 20, 2011
    Messages:
    1
    Likes Received:
    0
    most ppl use the same passwords when they sign up to forums. if any forum u signed up for gets hacked then ur pass will become known.
    or
    Bots/malware can be crypted to be FUD(undetectable) by all annti virus so ur computer might be infected.
     
  3. oxonbeef

    oxonbeef BANNED BANNED

    Joined:
    Jan 4, 2009
    Messages:
    2,242
    Likes Received:
    7,872
    Don't fool yourself into a false sense of security. Could well of been an exploit
    stole the cashed passwords from your browser.
     
    • Thanks Thanks x 1
  4. GreenGoblin

    GreenGoblin BANNED BANNED

    Joined:
    Jul 17, 2008
    Messages:
    1,493
    Likes Received:
    2,564
    This is the internet NOTHING! is secure and safe
     
  5. SEOhopeful

    SEOhopeful Newbie

    Joined:
    Feb 14, 2011
    Messages:
    35
    Likes Received:
    3
    I understand all that. But I never even logged into the email account, only used for AMR.. It was the only thing that knew that specific password/email.

    Shrug,, could be a number of things I agree. Just a bit scary.
     
  6. roamer

    roamer Power Member

    Joined:
    Dec 2, 2008
    Messages:
    500
    Likes Received:
    479
    Occupation:
    Gfx designer, vfx and mgfx
    Location:
    plɹoʍ ǝɥʇ punoɹɐ ƃuıɯɐoɹ
    There's always a chance that a public proxy is setup in such a way that the owner can sniff data and hijack whatever he finds of use. Just a reminder, as I have no way of knowing if that's the case.
     
  7. 2 4 k

    2 4 k Junior Member

    Joined:
    Jul 31, 2008
    Messages:
    166
    Likes Received:
    89
    I guess if you use your own POP accounts and have AMR simply read emails from the server then it minimize chance of your primary email accounts getting touched.

    However, I doubt its got anything to do with AMR as I have never had anything like that happen, bad luck though hope your all sorted now.
     
  8. theironlemming

    theironlemming Junior Member

    Joined:
    May 6, 2010
    Messages:
    148
    Likes Received:
    40
    Hey I had the same problem... Hostgator sent me an email saying there was about 5k worth of emails sent out of my pop3 account that was only used by AMR.

    Ran a deep scan with AVG and found the virus: Downloader.Istbar.9.BA reported by AVG in \AppData\Roaming\Article Marketing Robot\results\ folder

    I guess the safest thing to do is to run AMR on a virtual machine, setup your pop3 account to verify.. when thats done disable it.

    And setup weekly scans.
     
    Last edited: May 21, 2011
  9. Sniper

    Sniper Jr. VIP Jr. VIP Premium Member

    Joined:
    Dec 30, 2008
    Messages:
    471
    Likes Received:
    213
    Location:
    Torrent Assault
    Home Page:
    My best guess would be that you're using the same password for your author account as your email address. I wouldn't doubt that someone out there has set up a "directory" so that you can sign up to it, and if you used the same password for your email account, it will be accessible to that person. Keep your AA password and your email passwords different and you should be fine.. (again, this is my best guess)

    BTW POP is a protocol to receive email, SMTP is the protocol to send email.
     
    Last edited: May 21, 2011
  10. SEOhopeful

    SEOhopeful Newbie

    Joined:
    Feb 14, 2011
    Messages:
    35
    Likes Received:
    3
    "My best guess would be that you're using the same password for your author account as your email address. I wouldn't doubt that someone out there has set up a "directory" so that you can sign up to it, and if you used the same password for your email account, it will be accessible to that person. Keep your AA password and your email passwords different and you should be fine.. (again, this is my best guess)"

    Thanks for the response sniper, and I will double check this and make sure that isn't the case. I think from now on I'm just going to change the email PW's right after sign-up and confirmations are complete, that way I won't have to worry bout it.