Solved

E-Mail Contacts - Virus?

Posted on 2011-02-26
6
450 Views
Last Modified: 2013-12-09
I have a friend that uses web based e-mail and they told me that a number of people received e-mail from her that she never sent.  Apparently it was picked up as a virus.  Does anyone know how this could happen? She also has Symantec Antivirus installed on her computer and the definition dates were up to date.
0
Comment
Question by:iNetSystem
6 Comments
 
LVL 38

Accepted Solution

by:
younghv earned 250 total points
ID: 34987810
It is probably spoofing/spamming from some moron that got her email address.

Real email addresses can be harvested from any number of sources (ever look at some of those 'joke' emails you get), then substituted by 'Spam-Bots'.

A real PITA, but probably not virus related.

If she has updated and scanned her computer, it is probably not virus related.

She could try HitManPro for a second opinion:

32bit
http://dl.surfright.nl/HitmanPro35.exe
http://download.cnet.com/Hitman-Pro-3/3000-2239_4-10895604.html

0
 
LVL 5

Assisted Solution

by:Ultra_Master
Ultra_Master earned 250 total points
ID: 34987849
Tell her to change the password. Usually the password is  found by various methods like fishing, spoofing, keylogging, etc and then the attacker is using a certaing devised application in order to connect to the exploited account using those credentials that were acquired previously. The application can reside on her computer or on another remote one.
If it is residing on her computer she must remove it first before changing the password or else the new password will be found as well.
If Symantec doesn't detect any threat, tell her to try Kaspersky or BitDefender.

Good luck,
UltrMaster
0
 
LVL 25

Expert Comment

by:Tony Giangreco
ID: 34989735
I agree with the suggestiuons above. I also suggest checking to see if she is running Symantec Endpoint 11.0.6 or Symantec Corporate AV or Norton's Av (consumer verson). We use the latest vwersion of Endpoint in our corporate network and it does a good job.

On any pc that does get effected, I restart it in safemode with networking, download and install Malwarebutes and SuperantiSpyware.

Make sure all updates have been applied and run all three back to back. I normally run them over night. This should clen up most problems.

Hitman is a good additional app to run.
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 38

Expert Comment

by:younghv
ID: 34991007
@TG-TIS -
You have been told several times that "Safe Mode" for Malwarebytes is not recommended by the actual developers.
Read what they say here:
http://forums.malwarebytes.org/index.php?showtopic=17334&hl=

Every time I see you give this bad advice I am going to warn the other Members that you are wrong, so you might as well quit doing it.
0
 
LVL 25

Expert Comment

by:Tony Giangreco
ID: 34991912
Hi younghv,

I just provide suggestions based on what works for me. I'm sorry if anyone disagrees with this. I'm not trying to put anyone in danger.

I will not post any other suggested solutions for AV related issues.
0
 

Expert Comment

by:dexmach
ID: 35020100

I like to get Malwarebytes from ninite.com (and other software in a jam). This allows me to create a executable that is not detected by the virus. Also, some of the software (MS Sec Ess) installs without reboot or validation. This has gotten me out of a pinch when I cannot install the usual msi.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Secure/Block uploads to ftp server 8 113
Possibility of Outlook running on Linux 6 116
Endpoint security products 4 51
Protecting a SKY 4.0 (Android) devise 15 103
I recently had to create a utility which aim is to update McAfee's Virusscan and that had to be launched from a command line. I thought I’d share my experience with you. Why is it useful to be able to update an Antivirus from the command line?…
There are many reasons malware will stay around and continue to grow as a business.  The biggest reason is the expanding customer base.  More than 40% of people who are infected with ransomware, pay the ransom.  That makes ransomware a multi-million…
This Micro Tutorial will teach you how to censor certain areas of your screen. The example in this video will show a little boy's face being blurred. This will be demonstrated using Adobe Premiere Pro CS6.
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now