Google question

Hello. I have a problem when I was in google email page.

"You have been signed out of this account.

This may have happened automatically because another user signed in from the same browser. To continue using this account, you will need to sign in again. This is done to protect your account and to ensure the privacy of  your information."

But I have never got out of the google email. Does this mean my google account was hacked?
portal123Asked:
Who is Participating?
 
nwgservicesCommented:
Hi Portal,

As explained here , these are Potentially Unwanted Changes.
This means that it is not Spyware that is causing these changes, but perhaps you do not want these changes.
I would say, ignore that since its not malicious.

Kind regards,

NWGServices
0
 
eXpeLLeD_4RM_heLLCommented:
I have seen Yahoo and hotmail accounts being compromised but have not had any issue with google.
But there are chances that it can happen

If you have the suspicion that your account has been compromised, start by changing your login password.
0
 
nwgservicesCommented:
Hey Portal123,

First off, change your password.
Next, when you logon to gmail, in the bottom right there is an option you can click called details :
 Details
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
nwgservicesCommented:
oops.. adding to my previous post :

If you click the details link, you will get a list detailing the last 10 IP addresses, their method of accessing Gmail and the date and time.
This should give you insight in how your account is being accessed.

Kind regards,

NWGServices
0
 
portal123Author Commented:
Hello. Thank you guys for your advices. I have checked up the last 10 IPs, but all IP are the same and those are my IP address. But if a hacker knew my IP address, are there any possibilities that the hacker can get into my account disguising my IP address?? Sincerely, portal123
0
 
nwgservicesCommented:
Hey Portal123

No, the hacker would have needed to hack your pc and proxy/vpn through your connection to do that.
Chances that some one would go through the trouble to do that or some elaborate ip-spoofing scheme are non-existent (unless you have state secrets in your gmail box and the hacker is the Chinese government.)

Change your password, scan your PC for malware (MBAM is a great scanner)

You should be safe

Kind regards,

NWGServices
0
 
portal123Author Commented:
Hello. I have run MBAM on my PC and The following thing has been detected.

Vendor "pum.hijack.startmenu"
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\StartMenuLogoff

What is this? Should I remove it?

Sincerely, portal123

0
 
eXpeLLeD_4RM_heLLCommented:
The following forum will explain your entry :
http://forums.malwarebytes.org/index.php?showtopic=70713 
0
 
keyuCommented:
Regarding your registery entry:

http://forums.malwarebytes.org/index.php?showtopic=69664

=======================================================================

Solution Might help you:

1) Delete all your temp files and remove browser history and cookies.

2) now using forgot password option first change your password and try to login using different browser

3) Login using some another account and press logout it will remove all your gmaill session and cookies and than relogin with your credentials.

0
 
portal123Author Commented:
Oops. I gave miss info. Not "StartMenuLogoff" But "Start_ShowControlPanel" as follows:

Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowControlPanel (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.
0
 
portal123Author Commented:
This is my all log as follows: Thank you, portal123

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8016

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

2011/10/25 22:28:14
mbam-log-2011-10-25 (22-28-05).txt

Scan type: Full scan (C:\|)
Objects scanned: 259210
Time elapsed: 1 hour(s), 14 minute(s), 37 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowControlPanel (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
0
 
nwgservicesCommented:
Hi Portal,

Would it be extremely forward of me to ask you to close the question and award the points ?
My expert account is about to expire and i could use some points :)

Thanks in advance.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.