Malicious Software was detected on my computer

2048Megabytes

Active Member
I ran SuperAntiSpyware and malicious software was detected on my computer. I then ran all the security scans as suggested. I ran Malwarebytes in Windows 7 Safe Mode. I ran two scans. Is my system clean? Here are the two logs:

Database version: v2014.02.24.01

Windows 7 Service Pack 1 x64 NTFS (Safe Mode)
Internet Explorer 9.0.8112.16421

2/23/2014 10:26:40 PM
mbam-log-2014-02-23 (22-26-40).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 408709
Time elapsed: 35 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 1
C:\Program Files (x86)\SavingsBull (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.

Files Detected: 10
C:\Program Files (x86)\SavingsBull\CustomActionInstall (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SavingsBull\CustomActionUninstall (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SavingsBull\icon128.png (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SavingsBull\icon16.png (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SavingsBull\icon32.png (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SavingsBull\icon48.png (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SavingsBull\icon64.png (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SavingsBull\icon8.png (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SavingsBull\manifest.json (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SavingsBull\Microsoft.Deployment.WindowsInstaller.xml (PUP.Optional.SavingsBull.A) -> Quarantined and deleted successfully.

(end)

HERE IS THE 2nd LOG:

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.02.25.01

Windows 7 Service Pack 1 x64 NTFS (Safe Mode)
Internet Explorer 9.0.8112.16421

2/24/2014 6:43:16 PM
mbam-log-2014-02-24 (18-43-16).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 408991
Time elapsed: 34 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 
Basically you have adware. Do the following.

1.

Please download AdwCleaner by Xplode onto your Desktop.



•Please close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Scan.
•After the scan you will need to click on clean for it to delete the adware.
•Your computer will be rebooted automatically. A text file will open after the restart.
•Please post the content of that logfile in your reply.
•You can find the logfile at C:\AdwCleaner[Sn].txt as well - n is the order number.

2.

Please download Junkware Removal Tool to your desktop.

•Shutdown your antivirus to avoid any conflicts.
•Very important that you run the tool in this manner:
Right-mouse click JRT.exe and select Run as administrator
Do NOT just double-click it.
•The tool will open and start scanning your system.
•Please be patient as this can take a while to complete.
•On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
•Post the contents of JRT.txt in your next message.
 
Thanks for the help JohnB35. I got sick of fighting with it. I got the Windows 7 Key using the program "Magic Jellybean Key Finder." I then made a master clone image on another hard drive which took me several hours to create. I wiped the drive with malicious software and then cloned my master hard drive using the program "Norton Ghost version 15."

This is how you wipe out malicious software for sure.
 
Back
Top