Hi: My Insight Cable service stopped my internet access because they say my account was used to send 64,000 Spams. They say I have a BotNet. My ZoneAlarm firewall and AntiVirus/SpyWare did not alert me to a problem. My scan today, on desktop and laptop, did not report a problem. They (cable people) questioned my wireless router, but it is password protected on both ends. They say it's still possible, and that it's entirely possible the firewall and antivirus won't detect a problem, because it may be in my registry. They say I need to take the computer(s) to a repair facility or reformat/reinstall. They say to change all my passwords. I assume they mean I should do that *after* killing the botnet. They restored my service, but I'm using Earthlink dial-up, hopefully to stall an attack. The odd thing is, that before they restored my service, I rebooted and unplugged modem and router, and rebooted some more, and the dial-up didn't work... Very odd, because it's a different service and vendor in this case.
I don't do Facebook or MySpace or any other "social networking" business, I don't click on suspicious e-mails, in general I practice "safe-surfing." Is there no tool I can use to identify and remove the botnet? Can I figure out how long it's been active? That would save me hours of work. Otherwise, I'll reformat/reinstall.
All my sensitive information is in encrypted files. They say that's not good enough. I assume because my keystrokes have been monitored for a period of time - is that correct?
Thanks very much!
Operating System:Windows XP Pro
Product Name:ZoneAlarm Internet Security Suite