I need help here... The other day I went to ebay.com I typed in my name and password. It took me to a screen that told me I needed to verify my info. It asked for my name, password, social security #, c.c. I thought to myself "this doesn't sound like ebay??" so I looked up in my URL box, and it had a legit looking ebay address up there. Anything I would hover my mouse over showed a legit ebay address at the bottom, so therefore, I thought it was legit, and stupid me entered the info and it let me in. That was the ONLY way I could get into MyEbay. I was thinking that maybe it asked me all the info because right before that was the first time I cleared my cookies/temp inet files for months, so it kinda made sense in a way. Everything seemed normal, I was doing my normal ebay stuff, and I closed up. Later on, I went back in to ebay.com, and it asked for my name and password. Normally I would always be logged in, or it would just ask for my password. So I put both in, and it took me to the same screen again that asked me for all my info. At that point I thought, "Man, I'm stupid" I tried to go to ebays "LiveHelp" and it wouldn't let me in. I went on my laptop and everything worked fine and let me right in to ebay, and right into live chat. The dude really had no idea what I was talking about and recomended that I d/l ebay toolbar so I did, which has errors left and right. I am wondering two things: 1) How did the person do that? Meaning, how did everyhting SAY ebay.com in the address's if it wasn't really ebay??? 2) Is it worth me contacting the Social Security office and filing identity theft? I already cancelled my debit card that I had entered and got a new one today. Maybe I shouldn't worry at all about giving up my info?? From the techy aspect though, I am really wondering HOW they did it. I could run hijackthis and post the log, but it didn't looked like I saw anything suspicious in it. Any help would be greatly appreciated. Thanks

Yes, I would contact SS office IMMEDIATELY, That was a phishing scam and they now HAVE all your credentials and have probably sold it many times over or used it. Ebay will NEVER ask you for personal information by email or otherwise. Looks like a bad case of identity theft. Hopefully my advice will help you...Please post back with your results....thanks

I occasionally get those spoof e-mails from both E-bay, and also a few claiming to be from PayPal. Not sure about E-bay, but if you were to recieve any communication from PayPal, it will always, always adress you by your full name (not "Dear PayPal user".) Looks like you unfortunately took the bait...now let's hope it's not too late. I agree with the above poster... get in touch with Social Security at once and report that you might have become a victim of identity theft. What I do, is never, never click any link in those fake e-mails. I only click the "forward" button in my Yahoo e-mail; then send the fake e-mails in their entirety back to E-bay and PayPal; so their security / fraud can hopefully trace where they are coming from. You'll always recieve a e-mail reply from (the legit) E-bay or PayPal, saying..."We can confirm that the e-mail you recieved was NOT sent by PayPal". Whether it does any good or not, I don't know. But I always forward those fakes to PayPal and E-bay hoping that their security dept can trace them. Oops.. I almost forgot... If you do forward the fakes to E-bay or PayPal, send them to... spoof@paypal.com -and- spoof@ebay.com

Check your host file for a Ebay redirect, that is one way it could be done.

Host file? not sure how to do that???

For Win XP, look in the folowing directory: C:\WINDOWS\System32\drivers\etc. You can use the Search feature in your Start menu, and when you find the file name hosts in the above directory, double-click the file icon, and when you are prompted for the program to use to open the file, choose Notepad. Once opened, you will see a bunch of lines with a pound-sign (#) in the left margin, and you should see one line below those lines that reads: 127.0.0.1 localhost. Normally you won't see anything below this line. If you do see anything that refers to eBay (per Response # 3), that could explain how you were hijacked. If you don't see such a line in the hosts file, then it had to have happened some other way. 1 Cor. 15:1-5

Nope, no hosts file, I don't even have a "System32" folder under windows, and I DO have XP. This is messed up...I need to reformat and start fresh. I'm too busy re-doing customers computers, and mine runs like crap....just like an auto-mechanic...they always drive junkers...