.eu domain hi jack attempt

[zehrila]

Wierd to see that i got an email from eurid stating i applied for change of registrar have a look

[email protected]
to 4givem3
More options 12:22 pm (5 hours ago)
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit


Hello,

This is the automated domain registration system of EURid.eu
We received a demand for the transfer of your domain
"xxx.eu" from
registrar "xxxxxxxxxxxxxxxxxxxx" to
registrar "COMBELL GROUP NV".

We received following data from your new registrar:
Companyname:
Your name: xxxxx
Your address: xxxxxxx

Along with that they sent a link to click on and confirm the transfer. I just checked website combell.com who initiated this procedure and they look legit by their website.Some one can tell me what is going on and how to and where to report this issue.

 

[khuldun]

Better contact your registrar and the other party as well so as to check if any fraudulent acitivty was being done. Also do check if the email was real, check the headers just to make sure.

 

[Damion]

I would if i where you change the password of your account(s) immediately!!

And do a format of your computer! do not rely on AV and such just do a format!

It can very well be that your system has been compromised with a trojan being it rootkit based or not.
I find it very strange that such an attempt is being made if they don't have access to your email account.

Change the Passwords NOW! ASAP!
Better be sure, you could be walking on a very thin thread as of right now. If they have access to your email account they can switch the ownership any time now...

Act fast!

 

[zehrila]

Thanks for tipping of for a possible virus/trojan infection i just scanned my system and found nothing, checked netstat and thats normal too and taskmanager has no suspicious exe running.Any ways i just called the registrar www.combell.com who initiated this transfer and here is what they said first of all he tried to back up his customer by saying that his customer may be did not know that domain is registered WOW then on enquiry that how did your customer got my contact details my name my address my fone number then combell.com rep said that they gained it by whois.eu i further told them that on whois.eu they have my email address only there and then he tried to make up a story and tried to convience me that eurid has my details "when i got email from eurid with confirmation code i logged in to reject the transfer i found that combell.com who initiated domain transfer had my contact details and put it like that i initiated the transfer may be they wanted to look it like the same registrant is trying to transfer domain from one registrar to another" Further i asked them to give me contact details of their customer which they did not and still trying to back him up with saying that this all was mistake but i forced on that it is a scam and you should follow it up or give me their details so that i can take serious action but they did not bother and finally i dont know why but he said that this domain name is a tv channel in Belgium.End of the story they did not bothered much may be they scamed it them self.
Please suggest what to do in this case and how to report them and their customer if any.Help would be highly appreciated.
Thanks

 

[Damion]

Like i said you should not trust your AV software and change your email password that you have used to register the domain immediately.
I don't think you have done that yet from what i have read in your reply.

DO IT!
Don't trust your AV since the possibility exists you are infected with a sophisticated trojan/keylogger that can NOT be detected by ANY anti-virus/trojan/keylogger software.

Yes they do exist! So be sure and format your whole system to be sure you're clean.
Just a possibililty.

Other possibility:
Their story is correct since it would only need a client request for transfer to inniate the transfer process and you will recieve a email with a confirmation request as a fail safe and authentication it's you that also approves the request.


Two possibilities from which possibility A should be taken actions immediately in the form of a total format for your system and changing the password for email account(s) and all other stuff that needs passwords.

For B there is nothing you can do since this can happen at any time and is not a real threat unless someone has your password to your email account used for the registration for the domain.

 

[mole]

I would if i where you change the password of your account(s) immediately!!

And do a format of your computer! do not rely on AV and such just do a format!

It can very well be that your system has been compromised with a trojan being it rootkit based or not.
I find it very strange that such an attempt is being made if they don't have access to your email account.

Change the Passwords NOW! ASAP!
Better be sure, you could be walking on a very thin thread as of right now. If they have access to your email account they can switch the ownership any time now...

Act fast!

Format your hard disk now! :sold:

 

[America First]

Sorry to see this hope it goes well, Great name, Really great,:tu:
good luck!