Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Found an Injector, cleaned but still making question after your suggestion


  • Please log in to reply
9 replies to this topic

#1 Lyssis

Lyssis

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:26 PM

Posted 08 April 2013 - 04:54 PM

Hello to everyone.

So today i switched on my pc and opened skype as always, a guy sended me a link multiple times, i was just awake so i clicked on it, it leaded me to firefox and asked my permission to further processing... well at that point i realised was probably some malicius link.

So even if i think this didn't effected me at all i did a cuple of verification!

First i runned an Avast full scan  = nothing was track

2nd i runned a Eset scan= i found this: injector.AEYM trojan, i followed the Eset guide and removed it.

3rd i runned a MalwareBytes full scan = nothing was track

So my question is shall i run more verification or u think i am good? and my Pc is safe again?

(running windows 7 64bit)

Ty


Edited by hamluis, 08 April 2013 - 06:12 PM.
Moved from Win 7 to Am I infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:12:26 AM

Posted 08 April 2013 - 05:16 PM

2nd i runned a Eset scan= i found this: injector.AEYM trojan, i followed the Eset guide and removed it. <<

The ESET scan seems to have found an Injector that was most likely the main problem -

 

I would Re-run the scan again, as often items can be missed, but you did the right things and it seems like they were quick enough to prevent the problem from spreading -

Warch for ANY problems over the next few days, and you should be OK

 

Thank You -



#3 Lyssis

Lyssis
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:26 PM

Posted 08 April 2013 - 05:18 PM

thank to you! in case i find something in next days ill repost! =)



#4 Lyssis

Lyssis
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:26 PM

Posted 09 April 2013 - 07:42 AM

Bump

Another question, how do i know if this Injector dropped something into my machine? is ESET, MByte,Avast enough to know?

ty for your time!



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:26 AM

Posted 09 April 2013 - 12:10 PM

In my opinion.. If I found an Injector infection...

Due to the nature of these I would do this to be sure,,,,

Get a deeper look. Please follow this Preparation Guide and post in a new topic.

Let me know if all went well.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Lyssis

Lyssis
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:26 PM

Posted 09 April 2013 - 12:50 PM

ty for your response ill follow and make u know!



#7 Lyssis

Lyssis
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:26 PM

Posted 09 April 2013 - 01:16 PM

Nevermind formatted the pc sorry for the useless topic


Edited by Lyssis, 09 April 2013 - 02:58 PM.


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:26 AM

Posted 09 April 2013 - 09:58 PM

Merged posts.. Not  a useless topic as to me and perhaps a others.. It would be the choice i'd make.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 Lyssis

Lyssis
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:26 PM

Posted 10 April 2013 - 05:37 AM

As i said i formatted the Pc. anyway in the first scan even before the Format of the pc in the ESET scan there was 2 file called : Win32/hiddenstart.A application

 

now just finish the format i was courius and i runned another ESET scan and those 2 files pop up again during the scan.

are those False-negative?

Ty again for your support!

 

I belive they are linked to Alienrespawn system of Alienware Pc since they are under AlienRespawn folder.


Edited by Lyssis, 10 April 2013 - 05:39 AM.


#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:26 AM

Posted 10 April 2013 - 03:11 PM

Can you submit the 2 files for a second opinion??
 
Please visit the online Jotti Virus Scanner virus.gif<--link
  • Browse to the following filepath:

    ---------put the filepath here -------
  • Click on the Clipboard021.jpg button.
    The scanner will check the file with various AV companies.
  • Copy and paste the results box into a reply to this thread.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users