Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

A problem with Skype (Jen+Lova virus thingy)


  • Please log in to reply
7 replies to this topic

#1 Offlinee

Offlinee

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:11:15 AM

Posted 05 March 2013 - 07:47 PM

So hello. For some reason every time I log in on skype, there's a stranger in my contact list, whose name is "Jen+Lova" and I have no idea who that is. for some reason I can't block him in Skype and all I can do is remove him from my list. but he keeps coming back every time I log in. all he does is write few lines. I can see that his e-mail seems to be: john@mcleodhauser.com and his "mood" or whatever is: "hangin out on my cam (address -> DO NOT CLICK 't.co/xvKdb0vu0a')" - so basically it's: "hangin out on my cam [address]".

 

I'm using an Hotmail account to log in to Skype and he seems to be on Messenger. however, if I use WLM to log in, he doesn't appear. And when I log on Skype, using my Skype username and pw, I've got no problems. So basically, if I use Skype to log in to my Microsoft account, which has both my MSN and Skype account, the problem occurs. And I've asked my friends if I've sent something unusual etc, and they've said "no". So.. I'm wondering if I'm infected or what the hell is up? I've scanned my computer with MBAM and SAS and nothing occured (by the way, I'm using Win7). Google search doesn't really pick up anything relevant:

http://megansquared.blogspot.com/2012/08/that-one-time-when-particularly.html - here someone's making fun of it, that she's talking with a robot/bot, but for me it's annoying.

 

And if you're asking if I've made something unusual in the past days, then no. So I'm wondering where the hell did this guy come from?

 

 

By the way, if this is posted in the wrong place, then please just move it =)

 

 

Thanks for helping and replying,

Offlinee



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:15 AM

Posted 05 March 2013 - 10:18 PM

Are you using a router?

 

Lets run a couple more tools.

Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 

>>>

 

Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

 

Now I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Offlinee

Offlinee
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:11:15 AM

Posted 06 March 2013 - 02:32 PM

Are you using a router?

Well, I'm using school hostel's WiFi - there's 2 of them - one is more private, which is made for only a few users and the public one is made for all the house. And I don't have access to the router.


Here's the MiniToolBox log:

MiniToolBox by Farbar  Version:05-03-2013
Ran by John (administrator) on 06-03-2013 at 17:43:16
Running from "C:\Users\John\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ============================== 

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ============================== 


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= IP Configuration: ================================

Atheros AR9485WB-EG Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : John-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : wifi

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 22-08-CA-F7-BB-1B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : wifi
   Description . . . . . . . . . . . : Atheros AR9485WB-EG Wireless Network Adapter
   Physical Address. . . . . . . . . : 00-08-CA-F7-BB-1B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::4584:23ea:f243:b70(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.8.15(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 6. March 2013. a. 17:35:59
   Lease Expires . . . . . . . . . . : 6. March 2013. a. 18:35:59
   Default Gateway . . . . . . . . . : 192.168.8.1
   DHCP Server . . . . . . . . . . . : 192.168.8.1
   DHCPv6 IAID . . . . . . . . . . . : 201328842
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-64-18-5A-30-85-A9-01-12-A8
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 30-85-A9-01-12-A8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.lan:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {1EFEA41D-E5CA-4EB0-AB46-FE3DB2753C0C}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:3cc7:19c9:af14:edc1(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::3cc7:19c9:af14:edc1(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.wifi:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : wifi
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    google.com
Addresses:  2a00:1450:4013:c00::8a
	  173.194.65.100
	  173.194.65.138
	  173.194.65.102
	  173.194.65.101
	  173.194.65.113
	  173.194.65.139


Pinging google.com [173.194.65.100] with 32 bytes of data:
Reply from 173.194.65.100: bytes=32 time=47ms TTL=49
Reply from 173.194.65.100: bytes=32 time=48ms TTL=49

Ping statistics for 173.194.65.100:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 47ms, Maximum = 48ms, Average = 47ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    yahoo.com
Addresses:  98.139.183.24
	  98.138.253.109
	  206.190.36.45


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=467ms TTL=48
Reply from 98.139.183.24: bytes=32 time=823ms TTL=48

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 467ms, Maximum = 823ms, Average = 645ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 17...22 08 ca f7 bb 1b ......Microsoft Virtual WiFi Miniport Adapter
 16...00 08 ca f7 bb 1b ......Atheros AR9485WB-EG Wireless Network Adapter
 11...30 85 a9 01 12 a8 ......Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.8.1     192.168.8.15     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.8.0    255.255.255.0         On-link      192.168.8.15    281
     192.168.8.15  255.255.255.255         On-link      192.168.8.15    281
    192.168.8.255  255.255.255.255         On-link      192.168.8.15    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.8.15    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.8.15    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 18     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 18     58 2001::/32                On-link
 18    306 2001:0:9d38:953c:3cc7:19c9:af14:edc1/128
                                    On-link
 16    281 fe80::/64                On-link
 18    306 fe80::/64                On-link
 18    306 fe80::3cc7:19c9:af14:edc1/128
                                    On-link
 16    281 fe80::4584:23ea:f243:b70/128
                                    On-link
  1    306 ff00::/8                 On-link
 18    306 ff00::/8                 On-link
 16    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/05/2013 10:04:19 PM) (Source: Application Error) (User: )
Description: Faulting application name: photorec_win.exe, version: 6.14.0.0, time stamp: 0x5131d31e
Faulting module name: pdcurses.dll, version: 0.0.0.0, time stamp: 0x5009dd30
Exception code: 0xc0000005
Fault offset: 0x0000000000003675
Faulting process id: 0x388c
Faulting application start time: 0xphotorec_win.exe0
Faulting application path: photorec_win.exe1
Faulting module path: photorec_win.exe2
Report Id: photorec_win.exe3

Error: (03/05/2013 10:04:13 PM) (Source: Application Error) (User: )
Description: Faulting application name: photorec_win.exe, version: 6.14.0.0, time stamp: 0x5131d31e
Faulting module name: pdcurses.dll, version: 0.0.0.0, time stamp: 0x5009dd30
Exception code: 0xc0000005
Fault offset: 0x0000000000003675
Faulting process id: 0x39c4
Faulting application start time: 0xphotorec_win.exe0
Faulting application path: photorec_win.exe1
Faulting module path: photorec_win.exe2
Report Id: photorec_win.exe3

Error: (03/05/2013 00:18:47 AM) (Source: Application Hang) (User: )
Description: The program WinSCP.exe version 4.3.9.1817 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1150

Start Time: 01ce1926194c50af

Termination Time: 0

Application Path: C:\Program Files (x86)\WinSCP\WinSCP.exe

Report Id: 7a005e77-8519-11e2-b7a9-0008caf87e6b

Error: (02/25/2013 01:31:11 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.

Error: (02/24/2013 07:37:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.

Error: (02/18/2013 01:15:06 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.

Error: (02/10/2013 06:25:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.

Error: (02/10/2013 04:06:31 AM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe_FontCache, version: 6.1.7600.16385, time stamp: 0x4a5bc3c1
Faulting module name: fntcache.dll, version: 6.1.7601.17563, time stamp: 0x4d5faf0d
Exception code: 0x40000015
Fault offset: 0x000000000003d6fa
Faulting process id: 0x74c
Faulting application start time: 0xsvchost.exe_FontCache0
Faulting application path: svchost.exe_FontCache1
Faulting module path: svchost.exe_FontCache2
Report Id: svchost.exe_FontCache3

Error: (02/09/2013 08:56:26 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.

Error: (02/03/2013 06:29:00 PM) (Source: Application Hang) (User: )
Description: The program SopCast.exe version 3.5.0.309 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 56c

Start Time: 01ce022aeb9bf9e4

Termination Time: 10

Application Path: C:\Program Files (x86)\SopCast\SopCast.exe

Report Id: ced9fcdb-6e1e-11e2-b35e-0008caf87e6b


System errors:
=============
Error: (03/06/2013 05:36:14 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (03/06/2013 00:07:37 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (03/05/2013 04:07:30 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (03/01/2013 10:01:35 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (03/01/2013 09:13:35 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (03/01/2013 06:16:30 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (03/01/2013 02:40:48 AM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (02/28/2013 11:43:55 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (02/28/2013 08:37:16 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (02/28/2013 06:45:44 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

µTorrent (Version: 2.2.1)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
AC3Filter 2.5b (Version: 2.5b)
Adobe Acrobat X Pro - English, Franēais, Deutsch (Version: 10.1.5)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 10 ActiveX (Version: 10.1.85.3)
Adobe Flash Player 11 Plugin (Version: 11.5.502.135)
Adobe Help Manager (Version: 4.0.244)
Adobe Widget Browser (Version: 2.0 Build 348)
Adobe Widget Browser (Version: 2.0.348)
Alcor Micro USB Card Reader (Version: 1.2.0142.68441)
Anki
Arctic Combat (Version: 1.0.0.1)
ASUS AI Recovery (Version: 1.0.23)
ASUS FaceLogon (Version: 1.0.0014)
ASUS Instant Key (Version: 1.0.5)
ASUS LifeFrame3 (Version: 3.0.30)
ASUS Live Update (Version: 3.1.7)
ASUS Music Maker (Version: 17.0.2.22)
ASUS Photo Designer (Version: 7.0.1.2)
ASUS Photo Manager (Version: 8.0.3.217)
ASUS Power4Gear Hybrid (Version: 1.2.1)
ASUS Splendid Video Enhancement Technology (Version: 1.02.0041)
ASUS USB Charger Plus (Version: 2.0.9)
ASUS WebStorage (Version: 3.0.108.222)
ASUS Video Magic (Version: 6.0.4710)
ASUS Virtual Camera (Version: 1.0.25)
ASUS Virtual Touch (Version: 1.0.9)
ASUSDVD (Version: 10.0.3622.52)
AsusScr_N6 Series_ENG (Version: 1.0.0002)
AsusVibe2.0 (Version: 2.0.9.157)
Atheros Bluetooth Suite (64) (Version: 7.4.0.103)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (Version: 2.0.12.13)
ATK Package (Version: 1.0.0020)
Audacity 2.0.2 (Version: 2.0.2)
Avidemux 2.6 (Version: 2.6.0.8179)
BlazeHDTV 6.0
Bubbletown
CamStudio OSS Desktop Recorder (Version: 2.6 Beta r294)
CCleaner (Version: 3.22)
Cisco Packet Tracer 5.2.1
CodeBlocks (Version: 10.05)
CPUID HWMonitor 1.20
CyberLink LabelPrint (Version: 2.5.3624)
CyberLink MediaEspresso (Version: 6.5.2128_41515)
CyberLink Power2Go (Version: 7.0.0.1126)
CyberLink PowerDirector (Version: 8.0.4702a)
DAEMON Tools Lite (Version: 4.45.4.0316)
Desktop Icon Position Saver (64-bit)
DVBViewer Pro DEMO (Version: 4.8.1)
ESET Smart Security (Version: 5.2.9.1)
ETDWare PS/2-X64 10.5.9.0 (Version: 10.5.9.0)
Everything 1.2.1.371
F.lux
Firebird SQL Server - MAGIX Edition (Version: 2.1.31.0)
Fraps (remove only)
Galapago
Game Park Console (Version: 1.2.4.431)
GamersFirst LIVE!
GNU Privacy Guard (Version: 1.4.3)
GOM Player (Version: 2.1.47.5133)
Google Chrome (Version: 25.0.1364.152)
Google Cloud Connect for Microsoft Office (Version: 2.0.2662.0553)
Google Update Helper (Version: 1.3.21.135)
Greenshot 1.0.6.2228 (Version: 1.0.6.2228)
HandBrake 0.9.8 (Version: 0.9.8)
HashTab 4.0.0.2 (Version: 4.0.0.2)
InstantOn for NB (Version: 2.2.0)
Intel PROSet Wireless
Intel(R) Manageability Engine Firmware Recovery Agent (Version: 1.0.0.35342)
Intel(R) Management Engine Components (Version: 8.0.3.1427)
Intel(R) OpenCL CPU Runtime
Intel(R) Processor Graphics (Version: 8.15.10.2653)
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (Version: 15.0.0.0083)
Intel(R) Turbo Boost Technology Monitor 2.5 (Version: 2.5.1.0)
Intel(R) USB 3.0 eXtensible Host Controller Driver (Version: 1.0.3.214)
Intel® PROSet/Wireless WiFi Software (Version: 15.00.0000.0708)
Intel® Trusted Connect Service Client (Version: 1.23.605.1)
IrfanView (remove only) (Version: 4.32)
Java 7 Update 11 (64-bit) (Version: 7.0.110)
Java SE Development Kit 7 Update 11 (64-bit) (Version: 1.7.0.110)
League of Legends (Version: 1.3)
LibreOffice 3.6 (Version: 3.6.2.2)
Logitech Gaming Software (Version: 8.35.18)
Logitech Gaming Software 8.35 (Version: 8.35.18)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MediaCoder 0.8.17 (Version: 0.8.17)
MediaInfo 0.7.60 (Version: 0.7.60)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Mouse and Keyboard Center (Version: 1.1.500.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Professional Plus 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
MozBackup 1.5.1
Mozilla Firefox 19.0 (x86 en-US) (Version: 19.0)
Mozilla Maintenance Service (Version: 19.0)
Mozilla Thunderbird 17.0.2 (x86 en-US) (Version: 17.0.2)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MySQL Server 5.1 (Version: 5.1.38)
Nexon Game Manager
Notepad++ (Version: 6.1.6)
NVIDIA 3D Vision Driver 310.90 (Version: 310.90)
NVIDIA Control Panel 310.90 (Version: 310.90)
NVIDIA Graphics Driver 310.90 (Version: 310.90)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.95.599)
NVIDIA Optimus 1.11.3 (Version: 1.11.3)
NVIDIA PhysX (Version: 9.12.1031)
NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1090)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
Octoshape Streaming Services
Opera 12.02 (Version: 12.02.1578)
P2PFilter 3.0.5 (Version: 3.0.5)
Pale Moon 15.0-x64 (x64 en-US) (Version: 15.0-x64)
Pando Media Booster (Version: 2.6.0.8)
PC Wizard 2012.2.11
PDF Settings CS6 (Version: 11.0)
Pidgin (Version: 2.10.7)
PowerMenu 1.51 (Version: 1.51)
Prio (Version: 2.0.0.2751)
Python 3.2.3 (64-bit) (Version: 3.2.3150)
Qualcomm Atheros WiFi Driver Installation (Version: 3.0)
Realtek High Definition Audio Driver (Version: 6.0.1.6586)
RISE Editor (Version: 4.5.0.12)
RocketDock 1.3.5
SimpLite-MSN 2.5 (Version: 02.05.0003)
Skype™ 6.1 (Version: 6.1.129)
SopCast 3.5.0 (Version: 3.5.0)
SpiderOak
Stickies 7.1e
StreamTransport version: 1.0.2.2171
SumatraPDF (Version: 2.2.1)
SUPERAntiSpyware (Version: 5.5.1012)
TeamSpeak 3 Client (Version: 3.0.9.2)
TeamViewer 8 (Version: 8.0.16447)
Torrent Stream 2.0.7.3 (Version: 2.0.7.3)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760586) 32-Bit Edition
Update for Office 2007 (KB934391)
URL Snooper v2.30.01
War Inc Battlezone
WarRock
Windows Driver Package - Intel (NETwLv64) net  (10/07/2010 13.4.0.139) (Version: 10/07/2010 13.4.0.139)
Windows Driver Package - Intel (NETwNs64) net  (01/22/2012 14.3.2.1) (Version: 01/22/2012 14.3.2.1)
Windows Driver Package - Intel (NETwNs64) net  (03/12/2012 15.1.1.1) (Version: 03/12/2012 15.1.1.1)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinFlash (Version: 2.41.0)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinSCP 4.3.9 (Version: 4.3.9)
Wireless Console 3 (Version: 3.0.25)
Wireshark 1.8.5 (64-bit) (Version: 1.8.5)
VLC media player 2.0.5 (Version: 2.0.5)
World of Goo
Xfire (remove only)

========================= Memory info: ===================================

Percentage of memory in use: 27%
Total physical RAM: 8077.83 MB
Available physical RAM: 5891.22 MB
Total Pagefile: 16153.85 MB
Available Pagefile: 13792.56 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.12 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:279.45 GB) (Free:136.04 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:393.86 GB) (Free:361.05 GB) NTFS

========================= Users: ========================================

User accounts for \\John-PC

Administrator            Guest                    John                    
UpdatusUser              


**** End of log ****


 
 

And here's the AdwCleaner log:

# AdwCleaner v2.114 - Logfile created 03/06/2013 at 17:53:00
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : John - John-PC
# Boot Mode : Normal
# Running from : C:\Users\John\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0 (en-US)

File : C:\Users\John\AppData\Roaming\Mozilla\Firefox\Profiles\8yria6me.Puhas\prefs.js

[OK] File is clean.

File : C:\Users\John\AppData\Roaming\Mozilla\Firefox\Profiles\owggq3bv.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v25.0.1364.152

File : C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

-\\ Opera v12.2.1578.0

File : C:\Users\John\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] File is clean.

*************************

AdwCleaner[S2].txt - [1099 octets] - [06/03/2013 17:53:00]

########## EOF - C:\AdwCleaner[S2].txt - [1159 octets] ##########

 
And here's the ESET OnlineScan log. I must say that it really took a while - over 3 hours:

C:\Program Files (x86)\WarRock\Warrock EU\system\WarRock.exe    a variant of Win32/Packed.Themida application    cleaned by deleting - quarantined
C:\Users\John\Desktop\Crap\Programs\cpu-z_1.61-setup-en.exe    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
C:\Users\John\Desktop\Crap\Programs\unlocker-setup.exe    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined

It seems that these three are somewhat safe I guess. I'm pretty certain about the first one, since I've reviewed that on the game's forums and it's been said over and over, that it's not a virus, it's false positive.
 
 
By the way, I tested to logging in to my Microsoft account on Skype at school and there was the same problem. So I guess it doesn't have to do with my computer.. I guess?
 
But yeah, three logs here as you requested.
 
 
Offlinee



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:15 AM

Posted 06 March 2013 - 09:43 PM

I felt it is a Router infected/hacked issue.. Is this somethong you can  bring up thru the school? If not then I think we need to start over with a new topic and a DDS log for a deeper look.

Please follow this Preparation Guide and post in a new topic.
Let me know if all went well.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Offlinee

Offlinee
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:11:15 AM

Posted 07 March 2013 - 08:33 AM

Is this somethong you can  bring up thru the school?

 

Yep, as I wrote, the same thing happened in school. Let me just clear this up once more:

- When I log in to MSN, using Windows Live Messenger and Hotmail account, everything is cool.

- When I log in to Skype, using Skype's username and password, everything is cool.

- But when I log in to my Microsoft account (that's the Hotmail one), using Skype, then that's when the problem occurs.

 

So I think that can't be my connection's / computer's issue, as the same thing happened at school with a different computer and different network. I guess..

 

 

Offlinee



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:15 AM

Posted 07 March 2013 - 09:31 PM

I think we should get a deeper look. Start a new topic with the info in the above post. We need some stronger tools..

 

Please follow this Preparation Guide and post in a new topic.
Let me know if all went well.
 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Offlinee

Offlinee
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:11:15 AM

Posted 09 March 2013 - 11:47 AM

Here's the new topic you told me to create:

http://www.bleepingcomputer.com/forums/t/488012/a-problem-with-skype-jenlova-virus-thingy/



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:15 AM

Posted 09 March 2013 - 05:08 PM

Thank you!!

 

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 2 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users