Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

got infected through skype


  • This topic is locked This topic is locked
11 replies to this topic

#1 anniyan

anniyan

  • Members
  • 222 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Under your bed, mwahahahahaha!
  • Local time:06:29 AM

Posted 28 October 2016 - 11:48 AM

my laptop specs:

hp pavilion dv6 running single boot windows 7 home premium genuine x64

 

a. i have these security products 

1. free AV (qihoo 360 total security with built-in bitdefender and avira engines)

2. windows firewall enabled by default

3. MBAE

4. ad-muncher

5. MBAM

the following is disabled all the time unless needed :-

6. bot-revolt free

 

honestly, before this incident, i did not have the idea that i can be possibly infected through skype. i was chatting in a public chatroom, when i saw a public message from a girl that invited people for a look at her photos. i chatted with her in skype like others. she organised a group chat where she uploaded her photos. like others, i downloaded those pictures for seeing. and then she sent (youtu.be) links to 2 recently uploaded youtube videos. i downloaded those videos and watched them, but they did not cause me any suspicion, coz at that time, little did i know that malware could be embedded inside JPG and MP4 files. only when i finished playing the 2nd MP4 file did i realise that there was a repeated 'dong' sound from my laptop speakers. so i immediately smelt something fishy and disconnected from the internet and exit-ed skype, but the sound lasted some 1 minute after that. after which my laptop is behaving strange. whenever i boot into windows, it freezes for about 2 minutes and then becomes normal. google-chrome cannot open links which open in the same tab [but able to open links in new tab]. in both chrome and cyberfox(x64) every page i open does not display immediately, instead it shows server not found message [i dont know how to upload the screenshot here]. i ran a full scan with each of my AV, MBAM, herdprotect, hitmanpro(free trial), but nothing picked up. and since i had an urgent collegework, i had to connect my 3 external hard drives (each of 1TB) at various points of time after the possible infection, leading to my doubt that they could be infected too [i had no other choice, it was urgent]. i created rescue USB disks with bitdefender iso and kaspersky iso downloaded from their official websites but the bitdefender one freezes at the "welcome to grub!" message and the kaspersky one displays some kind of error message and wont boot into. i doubt some kind of boot sector infection, but i am not sure. to be on the safer side i copied my entire internal HDD to a folder in one of my external HDDs using an ubuntu USB stick. now how am i to proceed? any expert help would be much appreciated. thanks in advance :)
ps. i checked the 2 MP4 files in virustotal, but no detections. i had deleted the 2 JPG files in haste and alarm.

 

 

EDIT: as per 'device manager' a new yellow icon is next to MICROSOFT ISATAP ADAPTER #2 saying that the device is not working properly because Windows cannot load the drivers required for this device. (Code 31). could this be the result of malware infection?


Edited by anniyan, 29 October 2016 - 07:30 AM.


Become a BleepingComputer fan on Facebook
Have you seen.....Select Real Security

BC AdBot (Login to Remove)

 


#2 kaljukass

kaljukass

  • Banned
  • 291 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:59 PM

Posted 28 October 2016 - 11:59 AM

First of all clean up any cache, if have not done yet. Most probably this is the reason, why websites are slow to open or don't open at all.



#3 anniyan

anniyan
  • Topic Starter

  • Members
  • 222 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Under your bed, mwahahahahaha!
  • Local time:06:29 AM

Posted 29 October 2016 - 07:42 AM

@kaljukass: thank you, but i suspect the presence of some malware. not sure though :( waiting for the anti-malware team to respond :(


Edited by anniyan, 29 October 2016 - 07:43 AM.


Become a BleepingComputer fan on Facebook
Have you seen.....Select Real Security

#4 hamluis

hamluis

    Moderator


  • Moderator
  • 55,550 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:07:59 PM

Posted 30 October 2016 - 11:32 AM

Please...be patient, someone will assist you soon.

 

Louis



#5 anniyan

anniyan
  • Topic Starter

  • Members
  • 222 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Under your bed, mwahahahahaha!
  • Local time:06:29 AM

Posted 30 October 2016 - 11:59 AM

ok sir, i will do the same. thank you :)



Become a BleepingComputer fan on Facebook
Have you seen.....Select Real Security

#6 dhjohns

dhjohns

  • Members
  • 159 posts
  • OFFLINE
  •  
  • Local time:01:59 AM

Posted 30 October 2016 - 01:11 PM

You say you have malwarebytes anti-malware installed.  Boot in to safe mode, and do a scan.  Take recommended actions.  Repeat.  You should now be good to go.



#7 anniyan

anniyan
  • Topic Starter

  • Members
  • 222 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Under your bed, mwahahahahaha!
  • Local time:06:29 AM

Posted 31 October 2016 - 07:44 AM

@dhjohns: Booted in to safe mode, and did a scan using MBAM and took recommended actions. nothing serious found except a few PUPs which were removed. but problems remain.

EDIT: i note 2 processes of cmd.exe (32bit) running whenever i run google chrome.

 

waiting for the anti-malware team to respond.



Become a BleepingComputer fan on Facebook
Have you seen.....Select Real Security

#8 Jo*

Jo*

  • Malware Response Team
  • 3,319 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:02:59 AM

Posted 02 November 2016 - 12:06 PM


It seems that your pc has a problem or could be infected with malware which is going to take some more work and a deeper look. No sense running a bunch of tools here.
Please follow this Preparation Guide. If have already done a step or you cannot complete a step, skip it and continue.
Pease include a link to this thread.

Let me know if all went well.

Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#9 anniyan

anniyan
  • Topic Starter

  • Members
  • 222 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Under your bed, mwahahahahaha!
  • Local time:06:29 AM

Posted 02 November 2016 - 12:28 PM

ok, i will do it exactly as you say, thank you :)



Become a BleepingComputer fan on Facebook
Have you seen.....Select Real Security

#10 Jo*

Jo*

  • Malware Response Team
  • 3,319 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:02:59 AM

Posted 03 November 2016 - 08:51 AM

ok, but I could not see that you followed intructions and started a new Topic at
http://www.bleepingcomputer.com/forums/index.php?app=forums&module=post&section=post&do=new_post&f=22
The post should include Farbar Recovery Scan Tool (FRST) logs.

Therefor You should follow steps 6 and 7 of the preperation guide:
http://www.bleepingcomputer.com/forums/t/34773/preparation-guide-for-use-before-using-malware-removal-tools-and-requesting-help/

Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#11 anniyan

anniyan
  • Topic Starter

  • Members
  • 222 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Under your bed, mwahahahahaha!
  • Local time:06:29 AM

Posted 03 November 2016 - 10:50 AM

@ Jo*
 
http://www.bleepingcomputer.com/forums/t/631260/logs-got-infected-through-skype/

thank you :)

Edited by anniyan, 03 November 2016 - 02:16 PM.


Become a BleepingComputer fan on Facebook
Have you seen.....Select Real Security

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:59 PM

Posted 04 November 2016 - 08:12 AM

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.
The current wait time is 1 - 3 days and ALL logs are answered.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users