Thus do we growl that our big toes have, at this moment, been thrown up from below!
In addition to running your regular virus scan, I highly recommend installing and running Malwarebytes regularly as well. I was hacked last year, ran my virus scan, picked up things, changed my password, etc. and it still continued sending out spam. After running malwarebytes it cleaned things up.
That's what happened to me, but I didn't realize what was going on until somebody replied to "my" email and included "my" original email, which I had not sent.
So can I fix this by changing my email password on a different computer, since I'm not near my own computer right now?
And is there any way to tell where I picked up this bug, so I know not to go back to that site?
Yes, you can change your password for the account on any machine. Make sure you run a virus scan and have updated your virus protection. If it has expired, it may explain how someone was able to get to your system.
I don't believe there is a way to detect where the malware came from, but I could be wrong.
Happened to me this fall....probably from those "pass along to 10 of your best friends" things that one gal sends me all the time (I've suggested she not do this as they are almost always some kind of phishing expedition). Changed passwords and security questions and it stopped. Now change passwords about every 60 days and make them fairly complicated (symbols, numbers, letters/caps/lowercase).
Changing your password won't necessarily do any good. The best "zombie" software already knows you'll try to do that and is so deep in your system that it will track the change. Actually, the best software goes undetected and is incredibly hard to remove if you can find it at all.
I will bet money your virus scan won't find it. And you have no real way of verifying that it's really "dead", except for a great deal of sleuthing. Botnets are a very serious problem. My suggestion is just to reformat your harddrive and start over.
These bugs are delivered mostly through bobby-trapped websites, emails and ads that stream into a website. Use AdBlock, use your Hosts file, use NoScript. Stop using old operating systems and old browsers.
"The nice thing about memories is the good ones are stronger and linger longer than the bad and we sure have some incredibly good memories." - EverythingButWings
Mine got "spoofed" once and sent a bunch of Viagra spam to everyone in my e-mail address book. Including church friends.
An excellent reason why you should ALWAYS keep business and personal e-mail separate. I used to occasionally use my personal e-mail account when I was trying to subtly find out about certain government regs and didn't want my company e-mail address to send out red flags (all above-board, but sometimes you don't want to alert the Planning departments to the fact that you maybe, possibly, sometime in the future might be thinking about putting a cell tower somewhere in their jurisdiction).