Posted 27 June 2012 - 10:10 PM
This Monday AM I noticed my yahoo email account was sending spam mail to my entire contact list.
The emails appeared in my sent items folder, and had a link to businesslenews15.net/jobs/?alert=86255. I did not click on the link. A few of the people that got the email did.
The full header for the email looks fairly legit, except the from IP is in Warsaw, Poland. I am in the US.
I checked the login history from yahoo for my account. I did not see anything that looked like it was not me.
Here is what I did:
+ I changed my yahoo password. (as well as other critical pwds)
+ I checked that my password recovery email addresses were not changed.
+ I sent a mail to my contacts list telling them to delete the email and not click on the link.
+ I deleted all my contacts from yahoo.
+ I scanned my home pc using AVAST, Windows Defender and MalwareBytes (quick, then full scans). Nothing significant was found.
The home pc mentioned above has been running it's fan a little more than previously over the last month, but performance-wise it seems fine. Whenever the fan goes on, I check the processes running and they all seem to be something I kicked off.
I can think of one other PC I logged onto yahoo from since I last changed my pwd 6 months ago, and he ran a scan and found no issues (Norton). Of course, he also clicked the link in the email, so draw your own conclusions about that. He also had his yahoo email hijacked in a similar manner ~1 yr ago, but he changed his pwd and it stopped.
Here are my home PC particulars:
+ Core 2 Quad 9300, 8GB RAM
+ Windows Vista SP2 64bit
+ AVAST Free AV 7.0.1426
+ Windows Defender is on
+ Windows Firewall is on
I'd like some help to confirm my home pc does not have a keylogger, or just some recommended next steps, please.