Hello, I downloaded shady exe, and without thinking twice provided it administrator privilege. Shame on me. In my defense - scan with freeware antivirus was done before and after installation, nothing found. Application is not working, and content of directory looks suspicious. I would like you to spent minute or two and take a look at file provided below. I don't know programming, not to mention windows kernel, people like me are probably not too welcome here, but well, stumbled upon this forum some time ago and here is my best chance for peace of mind. Maybe this is totally innocent, or maybe it's blatantly malicious, I can't tell, hope you can.
peek at directory: http://imgur.com/swbuyWq
paste of suspicious file, all 41KB .dat files are the same (binary and some cleartext): http://pastebin.com/718cGDP8
upload of suspicious file, same one as paste above: http://s000.tinyupload.com/index.php?fi ... 2235091403
While writing this post i recalled virustotal web utility. I used it to scan one of 41kb dat files. Nothing found.
Then i scanned 41kb .exe file from same directory. Here is file hXXp://s000.tinyupload.com/index.php?file_id=00193757740048565417
And here is its vt scan: https://www.virustotal.com/en/file/22e2 ... /analysis/
I can only cheat myself that it might be false positive, i dont use this tool often (at all).
Here is where it all begun: *removed*
Allright, hope i provided necessary information. Now, every word of help and opinion is appreciated. Most crucial thing for me is of course 'am i infected'. Next I'd like to know what to do to get clean; some soft for removal will be enough, or should i do format, or maybe even this wont be enough? Bash me for being dumbass, but at least tell if pc (win 7 x64) is nasty and throw some keywords so i can do research. Please and thank you.
peek at directory: http://imgur.com/swbuyWq
paste of suspicious file, all 41KB .dat files are the same (binary and some cleartext): http://pastebin.com/718cGDP8
upload of suspicious file, same one as paste above: http://s000.tinyupload.com/index.php?fi ... 2235091403
While writing this post i recalled virustotal web utility. I used it to scan one of 41kb dat files. Nothing found.
Then i scanned 41kb .exe file from same directory. Here is file hXXp://s000.tinyupload.com/index.php?file_id=00193757740048565417
And here is its vt scan: https://www.virustotal.com/en/file/22e2 ... /analysis/
I can only cheat myself that it might be false positive, i dont use this tool often (at all).
Here is where it all begun: *removed*
Allright, hope i provided necessary information. Now, every word of help and opinion is appreciated. Most crucial thing for me is of course 'am i infected'. Next I'd like to know what to do to get clean; some soft for removal will be enough, or should i do format, or maybe even this wont be enough? Bash me for being dumbass, but at least tell if pc (win 7 x64) is nasty and throw some keywords so i can do research. Please and thank you.
Last edited by Xylitol on Tue Sep 15, 2015 6:43 am, edited 1 time in total.
Reason: no warez link thanks.
