online banking,fraudlent transfers £450 and 200

foolishme

hii discovered this morning that my on;ine banking had two internal transfers made, not by me.when i contacted bank they put a block on online banking and asked me to perform anti-virus and anti-spyware.i have already on my pc the following-avg anti-virus,ccleanner,super anti virus,spybot and comodo firewall.i have updated these and ran scans and cleaned anything that came.heres my query-the bank also asked to perform a scann with paretologic anti spyware. although all the others are showing clean this is still saying 38 severe threats, its $29.99 to regisiter and im not sure if i should or not.im also feeling really hesitant at using online banking again, but i do use this regularly.what do i do???

superscaper

Not heard of that antispyware before. I'd make sure you pc is clean by going through the malware removal guide posts 1 to 4. Some of these lesser know AS apps give false positives to encourage you to buy the software so I wouldn't bother if I was you. Also is it possible for you to have given your details away in a phishing scam? That's the most common method for gaining entry to online bank accounts etc.

Alfonso_Skinarelli

Paretologic anti spyware aka Xoftspy is well known for it's false positives. That said, it's probably just picking up cookies which you can remove yourself by clearing your cookie cache.

foolishme

thanks button not working!!i have performed the above 4 steps and all seems okay, heres the link to the ones nationwide suggestedhttp://www.nationwide.co.uk/security/useful-links/antivirus.htmits also called f-secure.nationwide are still investigating, the only unusual thing that i remember happening is on the sign on page i was asked to give my 6 number password in full instead of random 3 numbers, i didnt think it unusual as it was on main nationwide page.

sicker

A lesson to be learned here, NEVER, NEVER NEVER give your full password under any circumstances. All finacial sites will advise you the same.

John.

albertross_2

foolishme wrote: »

the only unusual thing that i remember happening is on the sign on page i was asked to give my 6 number password in full instead of random 3 numbers,

That sounds like a phishing site to me..

How did you get to the main page?

Have you anything unusual in your hosts file

c:\windows\system32\drivers\etc\hosts

GoofyGAT

foolishme wrote: »

....the only unusual thing that i remember happening is on the sign on page i was asked to give my 6 number password in full instead of random 3 numbers, i didnt think it unusual as it was on main nationwide page.

As the others suspect, it probably wasn't on the 'official' Nationwide login page. Go through your browsing history for that day (if you can remember it), click on the links & see if any of them go to the dodgy page. G

MarkyMarkD

Heaven knows why Nationwide are recommending all that anti-spyware rubbish when the most common scam is phishing.

The FIRST thing they should have asked you to do is to review the websites you visited recently.

Did they not ask if you'd had an e-mail from Nationwide which you'd clicked through to "their" website?

Inactive

foolishme wrote: »

the only unusual thing that i remember happening is on the sign on page i was asked to give my 6 number password in full instead of random 3 numbers, i didnt think it unusual as it was on main nationwide page.

It isn't possible to enter your 6 digit number on the Official NW Site, you have obviously clicked through on a link, probably via a dodgy e mail to a scam site.

It says clearly on the NW Log In Page;

Nationwide will never ask you for your memorable data or Passnumber in an e-mail. Never disclose this information to anyone.

The same page has a huge warning sign stating;

We are currently being phished

Sorry, but I honestly think you have been the cause of your own problems.

foolishme

in reply to the abovei went to the nationwide main page by entering the address, i recieved no email nor did i click onto any other link to get there.when first using online banking with nationwide the process to sign on was to enter your 6 digit passnumber, so when this was asked i was not that surprised. also my password was not given just my passnumber.i dont feel that this is a cause of my own problems, i am aware of fraudlant emails and am lucky never have to recieved one.i think lessons do need to be learned tho, when asked for this 6 number it was weeks after that the transfer was made. also we are all it seems highly aware of scam emails and links but this was neither. it was on the home page.i think this was why nationwide hav gon down the route of trojan/virus on my computer.in relation to this, when checking when/where this transfer was made, nationwide could see that it was not made form my pc, does this mean that they can trace the ip address to the actual computer that made the transaction?

GoofyGAT

foolishme wrote: »

....when first using online banking with nationwide the process to sign on was to enter your 6 digit passnumber?

Are you sure about this? When I visit their sign-on page it asks me for the Customer Number, Memorable Data & only 3 digits of the Passnumber.

foolishme wrote: »

....in relation to this, when checking when/where this transfer was made, nationwide could see that it was not made form my pc...

It could've been you from another computer (it's just a possibility - I'm not accusing you of anything!)

And I read somewhere that IP addresses can change in certain situations (even if you connect from the same computer), so this may not hold much ground either. Unless you can irrevocably prove your whereabouts & activity on the day & time it happened(?). They probably won't press you on these though, so don't worry. I'm no expert at these things - it could be absolute nonsense for all we know!

foolishme wrote: »

....does this mean that they can trace the ip address to the actual computer that made the transaction?

I'm not sure about the 'actual computer', but tracing location of fraud shouldn't be a problem I think. G