Gmail account accessed from another location?

[Stocks_go_Up]

I just got a flag on my gmail account that it had been accessed from another location, which was not me...

Unknown Poland (tpnet.pl:95.48.71.253) 2:09 pm (8 hours ago)
No idea how this has happened, my password is pretty strong and I am behind a router and running nod32. I changed my password to the account but I'm paranoid they might have taken more information from my gmail account or have access to my computer somehow. Anything I can do

http://whois.domaintools.com/95.48.71.253

Shows some more information about the piece of crap. I have emailed the ISP to try find out some more details. In the mean time I have changed my pw, secret question and recovery email address.

 

[budget]

hi there, not sure what you can do but get out of it and get another mail server,i got scammed not long ago (there did not get anything) and they too wanted me to set up a g mail account.interesting that you mentioned poland because that was what tipped me off as well the dick heads couldnt even speak the language properly.anyway glad you have woken up as well .

 

[ManWithNoName]

Have you been using any proxy servers lately? I do sometimes and anytime I go onto my gmail whilst using the proxy, the next time I log on without it Gmail yells at me about someone logging on from another location when I know it was just me.

 

[Borgsta]

Go to mail settings > Forwarding and POP/IMAP > Make sure there is nothing in the forwarding field! (unless of course you set it up)

 

[Stocks_go_Up]

Looks to be ok there Borgsta. Fingers crossed he didn't dump my whole email account. Hasn't been accessed since I changed the pw, hopefully everything is ok. Still no idea how he found out my password...

 

[prankmonkey]

i got done last year from somewhere in china
they accessed mt account and spammed everyone on my contacts list. change of password fixed it

 

[Conan Troutman]

Is your password used at any other sites? If some random site you've registered at has been hacked, they may have got your password from there perhaps?

I've had one of my passwords (which I used at quite a few sites) found out when someone hacked a website I were a member at, and then released the decrypted passwords on a popular torrent site (I downloaded the torrent myself to check if I was in there). Google warned me that someone had attempted to login, but luckily I had a different password for Gmail. My facebook account used the hacked password, but facebook had blocked access because someone from outside Australia had tried to login.

Anyway, if that is a chance, it could be worth using unique passwords at important sites. I use Last Pass now myself, so I can use a unique pass at every site (400+) without having to keep track of them - except banking, I don't store that one anywhere.

 

[Gibbsy]

LastPass sounds like it could be alright, but how does it go mobile-wise? Like if I want to log into Facebook on my phone, can that be done or does the password change to something random and ridiculously hard to remember every time you log on?

 

[J_Moore]

I got done from Lithuania around the start of June. Someone had done something with IMAP, so I disabled it and change the password. No problems since.

Weird, though, since my g-mail password was only used on supposedly secure sites (like netbank, etc). I used a different one for facebook, twitter, message boards etc.

Anyway, G-Mail has a unique password now.

 

[SBI]

I once got done from China. They just sent out some spam and deleted a month's worth of emails, but no serious damage done. They actually cleared out all those Facebook emails, so saved me some time.

Thanks China!