[Janisum]

I had answered to a spam message by giving my credentials, including my password. Why I did this is a long and stupid story so won't go there.

Anyway.. since then I've ran Malaware to check but nothing shows up. I've read that "Windows Event Viewer" security can be very useful by examining the ones w/ the task catagory login. When I look at the logins I don't understand how to tell which ones were not created by myself. Does anyone know anything about this?

Also, "command prompt' > netstat _ano is said to be of some use. Another one is start > run > cmd _ ok.

I'm wanting to examine and understand how to tell what log ins could have been by a hacker. Also, should my "link" light be flashing orange rapidly? I have a wireless router.

This is alot to ask and I regret taking anyone's time but I really am stressed about this. I need to create recovery disks but I want the system clean before I do. I am having symptoms of malware by getting spam emails from my account and a couple other people in my contacts.

Help would be deeply appreciated. Thanks so much

[LiveBrianD]

Netstat tells you what websites your PC is currently connected to. Generally, the only way you can get the history of what the account was logged into from is if the site offers a function like that. (facebook and I think gmail do)

I would change the passwords NOW (chances are the spam is being sent elsewhere, seeing as you responded to an email rather than downloading something). If you didn't download anything, you're probably not infected.

This post has been edited by LiveBrianD: 17 February 2013 - 03:07 PM

[Janisum]

LiveBrianD, on 17 February 2013 - 03:07 PM, said:

Netstat tells you what websites your PC is currently connected to. Generally, the only way you can get the history of what the account was logged into from is if the site offers a function like that. (facebook and I think gmail do)

I would change the passwords NOW (chances are the spam is being sent elsewhere, seeing as you responded to an email rather than downloading something). If you didn't download anything, you're probably not infected.

Once again.. thanks for your post. I did change my password a couple days after finding out I'd answered a spam email.
I'd read on a website if one R/clicks on "computer" > manage > Window logs > security, it brings up all the log ons and to examine the ones with task catagory log in and that will tell if anyone other than myself has logged on or tried to. It was interesting when I did this troubleshooting but I was lost when I got in there. Always something new to learn, for myself anyway..

Thanks again

[LiveBrianD]

Yep, that won't work - how would your computer know if some scammer elsewhere was signed into your email account? They're not connected to your computer, only the email server.

[Janisum]

LiveBrianD, on 17 February 2013 - 06:21 PM, said:

Yep, that won't work - how would your computer know if some scammer elsewhere was signed into your email account? They're not connected to your computer, only the email server.

Would this check for the mail server?

[LiveBrianD]

The Event Viewer? That only applies to your local machine, not the mail server.

[Janisum]

LiveBrianD, on 17 February 2013 - 08:40 PM, said:

The Event Viewer? That only applies to your local machine, not the mail server.

The article was wrong. Maybe I should comment on it. Thanks again..

[LiveBrianD]

Well, here's the thing - if you install malware, it could be sending spam through your account using your computer. That's not the case here though, seeing as the spammer has your password instead.