Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Backdoor Questions


  • Please log in to reply
5 replies to this topic

#1 EffectiveBones484

EffectiveBones484

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Howling Abyss
  • Local time:12:09 PM

Posted 01 August 2014 - 10:56 PM

I am on the verge of a dilemma.

I am spending the night at my grandparents' house. I left my Steam account logged in from a few weeks ago. I found out today they got a backdoor trojan from "Spider Solitare". I am a little concerned that my Steam account may be stolen. I first noticed a bunch of ads through the desktop, then I scanned the SpiderSolitare.exe on VirusTotal, and SuperAntiSpyware identified it as a backdoor trojan. I did not open Steam, but my account information was still saved. I would like to change my password, but I can't until I get home. I also left my e-mail account logged in. I had some OCD problems when I set up my accounts, so I don't know my security questions and answers. My questions are, even though I didn't open Steam, will they still be able to steal my account? Same goes for e-mail. The computer is off and unplugged right now, but they are going to call Geek Squad tomorrow morning. Will even turning on the computer give the hackers my account information?

Thanks in advance for any input.

Edited by EffectiveBones484, 01 August 2014 - 10:58 PM.


BC AdBot (Login to Remove)

 


#2 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,753 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:09 PM

Posted 02 August 2014 - 04:49 AM

Can you post the link to the VirusTotal report for this malware?

 

What software did you use to read your e-mail on this computer?


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#3 EffectiveBones484

EffectiveBones484
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Howling Abyss
  • Local time:12:09 PM

Posted 02 August 2014 - 09:04 AM

Unfortunately, I do not have access to the computer right now, so I can't get to the VirusTotal. I read my e-mail on Firefox.

#4 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,753 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:09 PM

Posted 02 August 2014 - 12:53 PM

And do you let Firefox remember your password? And if you do, do you use a master password?


Edited by Didier Stevens, 02 August 2014 - 12:53 PM.

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#5 EffectiveBones484

EffectiveBones484
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Howling Abyss
  • Local time:12:09 PM

Posted 02 August 2014 - 01:57 PM

I don't allow any of my browsers to remember any of my passwords, but I don't recall logging out last time I checked my E-mail. I successfully changed my paswords to both Steam and my E-mail, so I don't have any more worries there. However, will the backdoor affect the whole network, or just that computer? I changed my E-mail password over the same network, but I called my father to change the Steam password from home.

Edited by EffectiveBones484, 02 August 2014 - 01:57 PM.


#6 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,753 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:09 PM

Posted 02 August 2014 - 03:14 PM

There's no way of telling without knowing what it is. We'll have more info once you posted the link to the VT report.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users