Jump to content

Skype.dat Virus Removal help required


Recommended Posts

Hi,

 

My system has apparently been infected with the skype.dat virus, and despite my multiple attempts over the last 2 weeks, I am unable to get rid of it :(

 

Anti Malware Bytes detects it every time I run the scan, says it has quarantined the items, asks me to reboot, but when I run the scan again, the same viruses, at the same file locations are being detected repeatedly.

 

I am of course unable to find the files in the specified location - i.e c:\Users\Aditya-Home\AppData\Roaming\skype.dat

 

This is the log file of the last scan I have run, Please help me to clean my system as it will be working fine for some time, before it randomly stops responding!

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 23-09-2014
Scan Time: 19:33:34
Logfile: 23.09.2014 - Antimalwarebytes log.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.09.23.05
Rootkit Database: v2014.09.19.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Aditya-Home
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 355270
Time Elapsed: 16 min, 0 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 4
Trojan.Agent, c:\Users\Aditya-Home\AppData\Roaming\skype.dat, , [265f8c63bebd171f9f626fc3cc38b64a], 
Trojan.Agent, c:\Users\Default\AppData\Roaming\skype.dat, , [1b6a21ce314a9e98e31e003237cd9769], 
Trojan.Agent, c:\Users\UpdatusUser\AppData\Roaming\skype.dat, , [4342d31ce596b383ce3380b254b0827e], 
PUP.Optional.Speedial.A, C:\Users\Aditya-Home\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: (      "startup_urls": [ ""https://www.google.co.in/", "http://www.google.com/ig/redirectdomain?brand=OCTZ&bmod=OCTZ", "http://speedial.com/?f=1&a=spd_file_14_22_ch&cd=2XzuyEtN2Y1L1QzuyByE0EyDyEtAzytB0B0DyDyEtDtB0B0DtN0D0Tzu0SzzzztDtN1L2XzutBtFtBtDtFtCzytFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCzytByEtD0FtA0DtG0F0E0F0FtG0E0C0CtCtGtC0ByCyBtGtAtBzyyB0CtB0A0ByCyDyC0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0D0B0AyBtAtC0EtGzytC0E0FtGyEzz0EtBtGyC0F0DyBtGyE0C0CzyyC0A0F0CtAyCtDtB2Q&cr=192655761&ir=" ],), ,[4c39a44be89367cf598ba894f80d5fa1]
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
Link to post
Share on other sites

Hi & :welcome:
My name is Jürgen and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully. :excl:

  • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
  • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.

P2P/Piracy Warning:
  • If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.
  • Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.
  • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now and read the policy on Piracy.


Step 1

Please run a FRST scan. This will help us diagnose your problem.

frst.pngfrstscan.png
Please download Farbar Recovery Scan Tool and save it to your Desktop.
(If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)

  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.

Link to post
Share on other sites

  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.