Well there could be a Local Infection
The best bet is to scan the system in Safe Mode with both an AV Product then things like Spy Bot S&
and Malware Bytes
http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?tag=mncol&cdlPid=10878968
http://www.safer-networking.org/en/download/index.html
Of course this is assuming that your Fiend is running some form of Windows which may be dangerous.
However if they are install the above apps if they are not already installed Update them and the AV Product loaded and then reboot the system into Safe Mode and run scans on the system.
If it shows anything being deleted rescan with that Application till it's either clean or it's not possible to remove the infection. Then move to another Scanner.
I always start with an AV Product then use Spy Bot and finally Malware Bytes, but that's my Personal Preference.
In severe cases or if Windows isn't involved you may need to use a Rescue Disc like those mentioned here
http://blogs.techrepublic.com.com/security/?p=3803&tag=content;leftCol
Col
Those Nix Based Rescue Disc's
Where designed to run and clean up Windows Systems that is their sole point to life and I use them all of the time.
Though yesterday they let me down but that was with a Dell NB that has a strange Chip Set as none that I threw at the unit could find the HDD. Actually for that matter none of the Live Linux's could load either but I'll admit to not trying too hard.
Most times however they are the only way to clean the system.
As for the rest you have to first rule out an Infection on the users system before you can even begin to do anything else and relying on just an AV Product isn't a legitimate way to prove that the system has no infections. AV Products work well most times to prevent Virus Infections but most times that's all that they stop. They are next to useless for anything else and Virus's are just one of the many things specifically written to Infect Windows Systems.
While he may be busy if his system does have any infections he could very quickly find himself being Black Listed and no E-Mail that he sends out getting accepted by any people at all as their ISP's will block them. Depending on how Educated that user is their system may be clean but then I suppose the obvious thing to ask would be how was his E-Mail Address Spoofed? He had to be doing something wrong to let that out to the Dark Side of the Web so it's just as likely that he did something wrong and infected his system into the bargain.
Col
I'd second this - might have a spam bot infection.
Undelivered email to wrong address
Somebody somehow has got his email address and is using it to spam other people? What could be the source of the problem? Could it indicate there is spyware in his computer system? How can we prevent this from happening and how can we stop it now?
This conversation is currently closed to new comments.