My email keep sending out virus

In summary, the user is having an issue with their email account sending out virus-infected emails to others. They have changed their password multiple times and have Norton 360, but the issue persists. It is unclear if their email account has been hacked or if their computer is infected. The user's stepson received a suspicious email from the user after they changed their password. The virus may be lying dormant in the system and can propagate through email without needing the password. Changing the password will not fix the issue and a good anti-virus program is needed to scan the system. The user's email account is not on their computer and comparing sent emails to the suspicious ones may help determine if they are legitimate. The user has Norton 360 and two
  • #36
Thanks everyone for helping. I sure learn a lot.

Where do you get all these informations, is there any books or trusted link that you can suggest? I would like to learn more about internet security.

Thanks
 
Computer science news on Phys.org
  • #37
I'm not sure exactly where I learned this from, just IT experience and google I think, probably mostly google what something was and read.

Like what the message-id field in an email is
Google 'messageid email' and see what turns up.
 
  • Like
Likes 1 person
  • #38
I think my computer or server is infected. I just received another email from our insurance company that we sent them a suspicious email and it's from: juangalli@fibertel.com.ar

What can I do to fix this?

Thanks

Alan
 
  • #39
yungman said:
I think my computer or server is infected. I just received another email from our insurance company that we sent them a suspicious email and it's from: juangalli@fibertel.com.ar

What can I do to fix this?

Thanks

Alan
At this point, I would recommend installing a firewall and think twice before letting any program have internet access of any kind. Until you're used to it, don't give blanket access to any program. It will be annoying at first because the firewall will pop up continuously asking if it should let programs connect to the internet. When the firewall pops up, google the program to see what it is before you accept it. If the first set of hits says it's a virus, it probably is. Once you know what virus you have, you can work on getting rid of it.

You will be surprised by how many programs try to connect all the time even though most of them don't need to get to the internet to run. Usually, they're just connecting to see if they should update themselves. I've been using a free version of ZoneAlarm for years and it has served me well. It never ceases to amaze me how often programs will try multiple ways of getting internet access.
 
  • #40
Borg said:
At this point, I would recommend installing a firewall and think twice before letting any program have internet access of any kind. Until you're used to it, don't give blanket access to any program. It will be annoying at first because the firewall will pop up continuously asking if it should let programs connect to the internet. When the firewall pops up, google the program to see what it is before you accept it. If the first set of hits says it's a virus, it probably is. Once you know what virus you have, you can work on getting rid of it.

You will be surprised by how many programs try to connect all the time even though most of them don't need to get to the internet to run. Usually, they're just connecting to see if they should update themselves. I've been using a free version of ZoneAlarm for years and it has served me well. It never ceases to amaze me how often programs will try multiple ways of getting internet access.

Thanks for the reply.

I have Norton 360 security suit with firewall. I was asked all the time to allow to connect to outside by any program.

I tried to install MS Security Essential but it said I have it already in Win 8!

What can I do to find the virus? I have 3 computers using this email and is a business email. So can it be in anyone of them?

This problem is not confined to just this email address, the problem in the original post is from another email account. So can I assume this is from the computer, not the server?
 
  • #41
yungman said:
Thanks for the reply.

I have Norton 360 security suit with firewall. I was asked all the time to allow to connect to outside by any program.
Since you used the word 'was', can I assume that the firewalls don't ask to allow programs to connect anymore? What did you do when the firewall asked to let the programs connect? Did you tell it something like "yes" and "remember my decision"?
yungman said:
I tried to install MS Security Essential but it said I have it already in Win 8!
You just need one virus scanner and one firewall. Installing more than one of either will cause other problems.
yungman said:
What can I do to find the virus? I have 3 computers using this email and is a business email. So can it be in anyone of them?
Yes.
yungman said:
This problem is not confined to just this email address, the problem in the original post is from another email account. So can I assume this is from the computer, not the server?
You can't assume anything. If multiple people in your contact list are getting similar spam emails that appear to be coming from you, then it is probable. But, you can't assume that it is true. Solving these things requires careful examination of your system(s).

One question that I have is how do you access your email? Do you use a program like Outlook or are you using a web-based program like Yahoo mail?
 
  • Like
Likes 1 person
  • #42
Thanks for your answer.

1) The computers still ask me whether to let the program to change anything when I install program.

2) The computers never ask whether programs can send anything out.

3) I never use Outlook. Always use Yahoo and then go to "mail" to access all my emails.

Thanks for your help.
 
  • #43
yungman said:
Thanks for your answer.

1) The computers still ask me whether to let the program to change anything when I install program.

2) The computers never ask whether programs can send anything out.

3) I never use Outlook. Always use Yahoo and then go to "mail" to access all my emails.

Thanks for your help.
#1 has nothing to do with your firewall.
#2 is what a firewall will do. It doesn't sound like you have a firewall installed or it's turned off.
 
  • #44
Borg said:
#1 has nothing to do with your firewall.
#2 is what a firewall will do. It doesn't sound like you have a firewall installed or it's turned off.

It said the firewall is on! I just checked. Norton always have firewall on.
 
  • #45
yungman said:
It said the firewall is on! I just checked. Norton always have firewall on.
I'm not familiar with Norton's firewall so, I did a quick Google for how to configure Norton and it looks like it tries to do everything for you. I use a ZoneAlarm firewall and it doesn't assume anything. I have to tell it what to do for every program - with the option of remembering my decision. But, I like having that kind of control over my computers. :biggrin:
 
  • #46
yungman said:
It said the firewall is on! I just checked. Norton always have firewall on.

... unless the virus (if you have one) turned it off, and produced a fake message when you asked Norton.

If a "successful" virus gets on to your PC somehow, it is probably going to mess with your antivirus protection software, whatever that is. That's why you usually need to boot the PC from a known virus-free disk (for example a read-only DVD) to clean it up.
 
  • Like
Likes 1 person
  • #47
You need to isolate the source. Each computer should have a unique IP address.
 
  • #48
yungman said:
I think my computer or server is infected. I just received another email from our insurance company that we sent them a suspicious email and it's from: juangalli@fibertel.com.ar

What can I do to fix this?

Thanks

Alan

Okay, let's assume this system is infected and sending out spam. It needs cleaning.
This is how I suggest you start, we'll start doing the easy stuff first. If that doesn't work you can decide if you want to try using the more advanced tools or just wipe your system.

First, let's blow out norton from the system. It's fantastic when your system is clean but once an infection occurs, it's your worst enemy.
Norton Removal tool - http://goo.gl/uOYmWX
Make sure you have a digital copy or a disk to reinstall it, IF you want to keep using it after.

Next download the following:
Malwarebytes (Free version) - https://www.malwarebytes.org/antimalware/
Spybot Search and Destroy (Free version) - http://www.safer-networking.org/dl/

Any one of:
Avast - http://www.avast.com/en-ca/index
AVG - http://free.avg.com/ca-en/free-antivirus-download
MS Security Essentials - http://windows.microsoft.com/en-CA/windows/security-essentials-download
Those 3 antivirus programs were popular on our PF Poll
https://www.physicsforums.com/showthread.php?t=758839

Next reboot your system to safemode with networking
http://goo.gl/zXwZEE

Once in safemode
Install and update malwarebytes, then scan the system with it. Clean whatever it finds.
Repeat with Spybot Search and Destroy. Install, Update, Immunize, Clean.
Do not scan with both at the same time, use one of them, wait till you're done, then close the program before starting the next one.

After scanning once with both in safemode, reboot your computer and come back into normal mode. Do the scans again to see if the two programs see anything. If they do, clean again and reboot to normal mode again.

Then install one of the antivirus programs you selected (Avast/AVG/MSSE)
Again, update and scan. If anything comes up, clean/quarantine it.

Finally, reset your browser settings (it's like brushing your teeth every morning, just good form)
IE - http://support.microsoft.com/kb/923737
Firefox - https://support.mozilla.org/en-US/k...vcd0BQA.0&utm_referrer=https://www.google.ca/
Chrome - https://support.google.com/chrome/answer/3296214?hl=en

You can now remove all the programs we installed and go back to using Norton if you so desire. But make sure you remove the other things we installed and reboot before installing Norton.
Norton WILL go batshitcrazy on you if it thinks you cheated on it by using another antivirus program. It's a very jealous lover, so best to keep the affair with malwarebytes/spybot/avg/etc. a secret.

Now that you are done, it's time to play the waiting game. See if you get any more alerts from other ppl saying you're still spamming.

If it doesn't work, then we'll be spending more time in safemode and working with tools like
Autoruns - http://technet.microsoft.com/en-ca/sysinternals/bb963902.aspx
Hijackthis - http://sourceforge.net/projects/hjt/
Both these tools give you a detailed look at all the programs that are in your computer's startup routine. Basically, you'll need to go through the list (sometimes very large numbering hundreds of items) and figure out if there is anything malicious that is starting up when your computer runs.
Essentially, you take the filename and it's location and find out if it's legit.
This can be a very time consuming process and often, you can come across a program/dll that google doesn't tell you very much about, you may be forced to make educated guesses and if you turn off/disable the wrong entry, you can potentially kill windows.

Using those tools does require a fairly high level of familiarity with how the windows OS works and the things it does in the background, what's required, what's optional, stuff the average user never sees.
If you're not that familiar, then I very strongly suggest simply backing up important data from the system and wiping it clean. Because if something bad happens while using those tools there's a good chance you're going to be forced to wipe it anyway so save yourself the headache.
 
  • Like
Likes 1 person
<h2>1. Why does my email keep sending out viruses?</h2><p>There could be a few reasons for this. One possibility is that your email account has been hacked and someone is using it to send out viruses. Another possibility is that your computer has been infected with a virus that is automatically sending out emails from your account. It's also possible that you are unknowingly clicking on links or attachments in suspicious emails that contain viruses, which are then being sent out to others.</p><h2>2. How can I stop my email from sending out viruses?</h2><p>The first step is to change your email account password immediately. This will prevent any further unauthorized access to your account. Next, run a full virus scan on your computer to remove any malware that may be causing the issue. Be sure to also delete any suspicious emails or attachments that may be causing the virus to spread. It's also important to be cautious when opening emails from unknown senders and to avoid clicking on any suspicious links or attachments.</p><h2>3. Can I prevent my email from being hacked and used to send out viruses?</h2><p>While there is no foolproof way to prevent hacking, there are steps you can take to make it more difficult for hackers to access your account. These include regularly changing your password, using a strong and unique password, and enabling two-factor authentication. It's also important to be cautious when using public Wi-Fi networks and to avoid clicking on suspicious links or emails.</p><h2>4. How can I protect my computer from sending out viruses through my email?</h2><p>The best way to protect your computer is to have a reliable and up-to-date antivirus software installed. This will help detect and remove any viruses that may be causing your email to send out viruses. It's also important to regularly update your operating system and software, as these updates often include security patches that can prevent viruses from infecting your computer.</p><h2>5. What should I do if my email has sent out viruses to others?</h2><p>If your email has sent out viruses to others, it's important to take immediate action. First, apologize to those who may have received the virus from you and inform them that your account has been compromised. Next, follow the steps mentioned above to change your password, run a virus scan, and delete any suspicious emails or attachments. It's also a good idea to contact your email provider for further assistance in securing your account.</p>

1. Why does my email keep sending out viruses?

There could be a few reasons for this. One possibility is that your email account has been hacked and someone is using it to send out viruses. Another possibility is that your computer has been infected with a virus that is automatically sending out emails from your account. It's also possible that you are unknowingly clicking on links or attachments in suspicious emails that contain viruses, which are then being sent out to others.

2. How can I stop my email from sending out viruses?

The first step is to change your email account password immediately. This will prevent any further unauthorized access to your account. Next, run a full virus scan on your computer to remove any malware that may be causing the issue. Be sure to also delete any suspicious emails or attachments that may be causing the virus to spread. It's also important to be cautious when opening emails from unknown senders and to avoid clicking on any suspicious links or attachments.

3. Can I prevent my email from being hacked and used to send out viruses?

While there is no foolproof way to prevent hacking, there are steps you can take to make it more difficult for hackers to access your account. These include regularly changing your password, using a strong and unique password, and enabling two-factor authentication. It's also important to be cautious when using public Wi-Fi networks and to avoid clicking on suspicious links or emails.

4. How can I protect my computer from sending out viruses through my email?

The best way to protect your computer is to have a reliable and up-to-date antivirus software installed. This will help detect and remove any viruses that may be causing your email to send out viruses. It's also important to regularly update your operating system and software, as these updates often include security patches that can prevent viruses from infecting your computer.

5. What should I do if my email has sent out viruses to others?

If your email has sent out viruses to others, it's important to take immediate action. First, apologize to those who may have received the virus from you and inform them that your account has been compromised. Next, follow the steps mentioned above to change your password, run a virus scan, and delete any suspicious emails or attachments. It's also a good idea to contact your email provider for further assistance in securing your account.

Similar threads

  • Computing and Technology
Replies
3
Views
3K
  • Computing and Technology
Replies
32
Views
3K
  • Computing and Technology
2
Replies
67
Views
6K
Replies
3
Views
979
  • Computing and Technology
2
Replies
37
Views
3K
Replies
21
Views
3K
  • Computing and Technology
Replies
28
Views
2K
  • Computing and Technology
Replies
3
Views
2K
Replies
17
Views
646
  • Computing and Technology
Replies
15
Views
999
Back
Top