Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › *** I think I got a virus?
New Posts  All Forums:Forum Nav:

*** I think I got a virus?

post #1 of 8
Thread Starter 
Here is what happened today... At around 7:23 am (I'm sleeping), about 5-6 messages were sent under my email account to multiple people on my contacts list. They're all something like...

"Dude! You will be delighted! It’s the best shop I’ve ever seen! http://cosalco.com.ar/friend_invite.php?enlinkFriend=97uk4"

Clicking the link just redirects you to some pharmaceutical site that is selling selling things like Viagra.

Problem is that I had a desktop, iPad and a laptop, and I don't know which device is infected. Even though my desktop and laptop is turned off at the time of the email I don't think I can rule them out.I guess it is possible for any malware to send my email info to their server side and have the messages sent there?

If it helps, on my desktop (system in sig) everything in terms of software (windows 7, MS office, games) is 100% legit, I only torrent audio and video "stuff". My iPad is jailbroken with many cracked apps. I doubt it is my laptop because I've hardly ever used it for the last few month.

Any suggestions for how to approach from here? Already changed my PW, scanning desktop with MSE, plan to restore my ipad...
My First Build
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 2500K GA-Z68A-D3H-B3 EVGA GTX 570 G.Skill Ripjaws 2x4GB 
Hard DriveOptical DriveOSMonitor
Crucial M4 128 GB, 2x Samsung Spinpoint 1TB ASUS DRW-24B1ST 24X Windows 7 Professional Dell U2410 + ASUS VW246H 
PowerCase
Silverstone Strider 750W CM HAF X 
  hide details  
Reply
My First Build
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 2500K GA-Z68A-D3H-B3 EVGA GTX 570 G.Skill Ripjaws 2x4GB 
Hard DriveOptical DriveOSMonitor
Crucial M4 128 GB, 2x Samsung Spinpoint 1TB ASUS DRW-24B1ST 24X Windows 7 Professional Dell U2410 + ASUS VW246H 
PowerCase
Silverstone Strider 750W CM HAF X 
  hide details  
Reply
post #2 of 8
It could be very harmless if it is just a webmail account.

This happened to me with one of my old Comcast e-mail addresses. The e-mail that got sent was sent to everyone I had in that account's address book (so nothing would have been sent if I had no one in that address book). I only had a small handful of people in that address book, and luckily for me every e-mail came back as non-deliverable.

The way I found out was I had just randomly decided to go through and do some cleaning of my Comcast account. So I logged into each account to check each the e-mail of each account, and to my surprise my oldest account had all of these non-deliverable spam e-mails in the inbox. This is purely webmail so it was completely harmless to me.
It's a computer!
(19 items)
 
  
CPUMotherboardGraphicsRAM
i5-2500K @ 4.5GHz (1.368-1.384V fixed voltage) ASUS P8P67 EVO B3 (UEFI ver. 1850) GTX 780 ASUS DirectCU II (1228 / 6300, 1.180V) G.SKILL Ripjaws X 8GB (2 x 4GB) 1866MHz, CL9 
Hard DriveHard DriveHard DriveOptical Drive
250 GB Samsung 840 EVO (C:\) 250 GB Samsung 840 EVO (D:\) 150 GB WD VelociRaptor Samsung SH-S243N 24x DVD Burner 
Optical DriveCoolingOSMonitor
Samsung SH-S203N 20X DVD Burner Thermaltake Frio Win 7 Home Premium x64 SP1 Retail AOC G2460PG (24" 1920 x 1080 144Hz G-SYNC) 
KeyboardPowerCaseMouse
Filco Majestouch 104-key Cherry MX Blues w/NKRO Corsair HX650 (Bronze, ordered on 12-12-2009) CM 690 Intellimouse Optical (1.1A) 1000Hz polling rate 
Mouse PadAudioAudio
Basic, but premium round X-Fi Titanium HD Klipsch ProMedia 2.1 (with 16 AWG Monster Cable... 
  hide details  
Reply
It's a computer!
(19 items)
 
  
CPUMotherboardGraphicsRAM
i5-2500K @ 4.5GHz (1.368-1.384V fixed voltage) ASUS P8P67 EVO B3 (UEFI ver. 1850) GTX 780 ASUS DirectCU II (1228 / 6300, 1.180V) G.SKILL Ripjaws X 8GB (2 x 4GB) 1866MHz, CL9 
Hard DriveHard DriveHard DriveOptical Drive
250 GB Samsung 840 EVO (C:\) 250 GB Samsung 840 EVO (D:\) 150 GB WD VelociRaptor Samsung SH-S243N 24x DVD Burner 
Optical DriveCoolingOSMonitor
Samsung SH-S203N 20X DVD Burner Thermaltake Frio Win 7 Home Premium x64 SP1 Retail AOC G2460PG (24" 1920 x 1080 144Hz G-SYNC) 
KeyboardPowerCaseMouse
Filco Majestouch 104-key Cherry MX Blues w/NKRO Corsair HX650 (Bronze, ordered on 12-12-2009) CM 690 Intellimouse Optical (1.1A) 1000Hz polling rate 
Mouse PadAudioAudio
Basic, but premium round X-Fi Titanium HD Klipsch ProMedia 2.1 (with 16 AWG Monster Cable... 
  hide details  
Reply
post #3 of 8
Thread Starter 
Yeah, it is webmail (my hotmail account), but I also use it as my main email address, so I'm kind of worried in terms of how they even got access to it in the first place... and if they can still gain access to it.
My First Build
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 2500K GA-Z68A-D3H-B3 EVGA GTX 570 G.Skill Ripjaws 2x4GB 
Hard DriveOptical DriveOSMonitor
Crucial M4 128 GB, 2x Samsung Spinpoint 1TB ASUS DRW-24B1ST 24X Windows 7 Professional Dell U2410 + ASUS VW246H 
PowerCase
Silverstone Strider 750W CM HAF X 
  hide details  
Reply
My First Build
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 2500K GA-Z68A-D3H-B3 EVGA GTX 570 G.Skill Ripjaws 2x4GB 
Hard DriveOptical DriveOSMonitor
Crucial M4 128 GB, 2x Samsung Spinpoint 1TB ASUS DRW-24B1ST 24X Windows 7 Professional Dell U2410 + ASUS VW246H 
PowerCase
Silverstone Strider 750W CM HAF X 
  hide details  
Reply
post #4 of 8
This happened to me on my Gmail account recently. I don't know if you can in Hotmail (I don't think you can), but in Gmail there's a way to see where you account has been accessed from recently.

I ran a bunch of scans (all negative) and changed my password and so far it hasn't happened again.

I would just run a virus and/or malware scan, and change your password. EDIT. Which you said you've already done
Karnak
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II x2 550 @ 3.7Ghz Gigabyte MA-770T-UD3P Gigabyte 6850 1GB G.Skill 4GB DDR3 @ 1333 
Hard DriveOSMonitorPower
WDC 640GB Windows 7 Ultimate 64bit Acer X223Wbd Antec 650W 
CaseMouse
Antec 300 Logitech MX Revolution 
  hide details  
Reply
Karnak
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II x2 550 @ 3.7Ghz Gigabyte MA-770T-UD3P Gigabyte 6850 1GB G.Skill 4GB DDR3 @ 1333 
Hard DriveOSMonitorPower
WDC 640GB Windows 7 Ultimate 64bit Acer X223Wbd Antec 650W 
CaseMouse
Antec 300 Logitech MX Revolution 
  hide details  
Reply
post #5 of 8
Quote:
Originally Posted by ronaldmcdonald View Post
Yeah, it is webmail (my hotmail account), but I also use it as my main email address, so I'm kind of worried in terms of how they even got access to it in the first place... and if they can still gain access to it.
I think that all you can do is change the password (I mean, I know you did, so I'm just saying...). Mine was hacked over 2 months ago, but I change the password that same day and it's been untouched ever since. I also deleted every entry in that address book just in case.

Although, I think it's just a random attack.

I know one thing is for sure, though: your system is not compromised. It's all out on the e-mail server. I mean it has to be: it's webmail just like mine was.
It's a computer!
(19 items)
 
  
CPUMotherboardGraphicsRAM
i5-2500K @ 4.5GHz (1.368-1.384V fixed voltage) ASUS P8P67 EVO B3 (UEFI ver. 1850) GTX 780 ASUS DirectCU II (1228 / 6300, 1.180V) G.SKILL Ripjaws X 8GB (2 x 4GB) 1866MHz, CL9 
Hard DriveHard DriveHard DriveOptical Drive
250 GB Samsung 840 EVO (C:\) 250 GB Samsung 840 EVO (D:\) 150 GB WD VelociRaptor Samsung SH-S243N 24x DVD Burner 
Optical DriveCoolingOSMonitor
Samsung SH-S203N 20X DVD Burner Thermaltake Frio Win 7 Home Premium x64 SP1 Retail AOC G2460PG (24" 1920 x 1080 144Hz G-SYNC) 
KeyboardPowerCaseMouse
Filco Majestouch 104-key Cherry MX Blues w/NKRO Corsair HX650 (Bronze, ordered on 12-12-2009) CM 690 Intellimouse Optical (1.1A) 1000Hz polling rate 
Mouse PadAudioAudio
Basic, but premium round X-Fi Titanium HD Klipsch ProMedia 2.1 (with 16 AWG Monster Cable... 
  hide details  
Reply
It's a computer!
(19 items)
 
  
CPUMotherboardGraphicsRAM
i5-2500K @ 4.5GHz (1.368-1.384V fixed voltage) ASUS P8P67 EVO B3 (UEFI ver. 1850) GTX 780 ASUS DirectCU II (1228 / 6300, 1.180V) G.SKILL Ripjaws X 8GB (2 x 4GB) 1866MHz, CL9 
Hard DriveHard DriveHard DriveOptical Drive
250 GB Samsung 840 EVO (C:\) 250 GB Samsung 840 EVO (D:\) 150 GB WD VelociRaptor Samsung SH-S243N 24x DVD Burner 
Optical DriveCoolingOSMonitor
Samsung SH-S203N 20X DVD Burner Thermaltake Frio Win 7 Home Premium x64 SP1 Retail AOC G2460PG (24" 1920 x 1080 144Hz G-SYNC) 
KeyboardPowerCaseMouse
Filco Majestouch 104-key Cherry MX Blues w/NKRO Corsair HX650 (Bronze, ordered on 12-12-2009) CM 690 Intellimouse Optical (1.1A) 1000Hz polling rate 
Mouse PadAudioAudio
Basic, but premium round X-Fi Titanium HD Klipsch ProMedia 2.1 (with 16 AWG Monster Cable... 
  hide details  
Reply
post #6 of 8
Change your password and you're good to go.

This happened to one of my Y! accounts...
IntelAsylum R2.1
(14 items)
 
M11xR2
(13 items)
 
 
CPUMotherboardGraphicsRAM
i5 2500k ASRock Z77 Extreme6 MSI GTX 970 GAMING 4G 16GB Ripjaw X 
Hard DriveHard DriveOptical DriveOS
R0: 2x1TB WD Se Samsung 840 EVO LG UH12LS28 BDD Windows 7 Ultimate x64 
MonitorKeyboardPowerCase
Dell E2414H x2 M$ Sidewinder x4 Seasonic 600W CM HAF 932A 
MouseMouse Pad
Logitec M705 MouseMat 
CPUGraphicsRAMHard Drive
i7 GT335m 1gb 4gb ddr3 Sandisk 128GB SSD 
OS
Windows/Linux/Depends 
  hide details  
Reply
IntelAsylum R2.1
(14 items)
 
M11xR2
(13 items)
 
 
CPUMotherboardGraphicsRAM
i5 2500k ASRock Z77 Extreme6 MSI GTX 970 GAMING 4G 16GB Ripjaw X 
Hard DriveHard DriveOptical DriveOS
R0: 2x1TB WD Se Samsung 840 EVO LG UH12LS28 BDD Windows 7 Ultimate x64 
MonitorKeyboardPowerCase
Dell E2414H x2 M$ Sidewinder x4 Seasonic 600W CM HAF 932A 
MouseMouse Pad
Logitec M705 MouseMat 
CPUGraphicsRAMHard Drive
i7 GT335m 1gb 4gb ddr3 Sandisk 128GB SSD 
OS
Windows/Linux/Depends 
  hide details  
Reply
post #7 of 8
Quote:
Originally Posted by ronaldmcdonald View Post
Here is what happened today... At around 7:23 am (I'm sleeping), about 5-6 messages were sent under my email account to multiple people on my contacts list. They're all something like...

"Dude! You will be delighted! It’s the best shop I’ve ever seen! http://cosalco.com.ar/friend_invite.php?enlinkFriend=97uk4"

Clicking the link just redirects you to some pharmaceutical site that is selling selling things like Viagra.

Problem is that I had a desktop, iPad and a laptop, and I don't know which device is infected. Even though my desktop and laptop is turned off at the time of the email I don't think I can rule them out.I guess it is possible for any malware to send my email info to their server side and have the messages sent there?

If it helps, on my desktop (system in sig) everything in terms of software (windows 7, MS office, games) is 100% legit, I only torrent audio and video "stuff". My iPad is jailbroken with many cracked apps. I doubt it is my laptop because I've hardly ever used it for the last few month.

Any suggestions for how to approach from here? Already changed my PW, scanning desktop with MSE, plan to restore my ipad...
The same thing happened to my Hotmail account today. I'm pretty sure it has something to do with the Security breach of hotmail a few weeks back.

My friend commented on my Facebook and told me my email spammed him. I was like "lol, wut?"

Then I check my sent mail and the emails were sent about 5 or 6 times to various contacts in my account. I deleted all of them and changed my password.

Problem solved. This has NOTHING to do with a virus on your end.
BlueRaven
(13 items)
 
Dead BIOS
(9 items)
 
 
CPUMotherboardGraphicsRAM
Intel Core i7 G74Sx NVIDIA GeForce GTX 560M  Samsung  
RAMRAMHard DriveHard Drive
Samsung  Samsung  Momentus 7200.4 Scorpio Blue 
Mouse
Logitech G700 
  hide details  
Reply
BlueRaven
(13 items)
 
Dead BIOS
(9 items)
 
 
CPUMotherboardGraphicsRAM
Intel Core i7 G74Sx NVIDIA GeForce GTX 560M  Samsung  
RAMRAMHard DriveHard Drive
Samsung  Samsung  Momentus 7200.4 Scorpio Blue 
Mouse
Logitech G700 
  hide details  
Reply
post #8 of 8
Thread Starter 
Thanks guys, I guess I'll just sit tight and hopefully it doesn't happen again.
My First Build
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 2500K GA-Z68A-D3H-B3 EVGA GTX 570 G.Skill Ripjaws 2x4GB 
Hard DriveOptical DriveOSMonitor
Crucial M4 128 GB, 2x Samsung Spinpoint 1TB ASUS DRW-24B1ST 24X Windows 7 Professional Dell U2410 + ASUS VW246H 
PowerCase
Silverstone Strider 750W CM HAF X 
  hide details  
Reply
My First Build
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 2500K GA-Z68A-D3H-B3 EVGA GTX 570 G.Skill Ripjaws 2x4GB 
Hard DriveOptical DriveOSMonitor
Crucial M4 128 GB, 2x Samsung Spinpoint 1TB ASUS DRW-24B1ST 24X Windows 7 Professional Dell U2410 + ASUS VW246H 
PowerCase
Silverstone Strider 750W CM HAF X 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Windows
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › *** I think I got a virus?