Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Need assistance cleaning pc of a virus...thank you


  • Please log in to reply
2 replies to this topic

#1 Yankees1

Yankees1

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:01:13 PM

Posted 11 August 2013 - 07:45 AM

Thank you in advance for helping...

I ran malwarebytes on my external drive and 6 objects where detected.  I want to make sure I successfully clean the external hard drive as well as make certain the internal drives on my pc are clean.  I am posting the log from my G:\ drive which is the external drive.  I am currently running a scan on my internal drives which I will post when it is completed.

 

 

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.08.10.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
pc1 :: TRADE1 [administrator]

8/10/2013 8:03:04 AM
MBAM-log-2013-08-11 (08-26-44).txt

Scan type: Full scan (G:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Heuristics/Extra | P2P
Objects scanned: 3451228
Time elapsed: 12 hour(s), 3 minute(s), 36 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 6
G:\BUData\TRADE1-64FA1B77_00000000\20121006030002\Chg\00\Users\pc1\AppData\Local\Temp\nsl60F7.tmp\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121116030002\Chg\00\Users\pc1\AppData\Local\AOL\AIM\update\install.exe (PUP.Optional.OpenCandy) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121117030001\Chg\00\ProgramData\WeCareReminder\ReminderHelper.exe (PUP.Optional.WeCare.A) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121117030001\Chg\00\ProgramData\WeCareReminder\WCAutoUpdate.exe (PUP.Optional.WeCare.A) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121117030001\Chg\00\Users\pc1\AppData\Local\Temp\nszA799.tmp\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121117030001\Chg\00\Users\pc1\AppData\Roaming\OpenCandy\04B6309DCC084BED9B56FB0D0285F33B\SliderASPCAv4.1.19.1_20121012.msi

(PUP.Optional.WeCare.A) -> No action taken.

(end)

 



BC AdBot (Login to Remove)

 


#2 Yankees1

Yankees1
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:01:13 PM

Posted 11 August 2013 - 10:14 AM

Ran scan on internal drives:

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.08.10.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
pc1 :: TRADE1 [administrator]

8/11/2013 8:33:03 AM
mbam-log-2013-08-11 (08-33-03).txt

Scan type: Full scan (B:\|C:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Heuristics/Extra | P2P
Objects scanned: 223150
Time elapsed: 1 hour(s), 16 minute(s), 5 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



#3 Yankees1

Yankees1
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:01:13 PM

Posted 12 August 2013 - 08:06 AM

Ran again...tried to remove all 6 objects found and received error of illegal operation and malewarebytes closed....here is the log that for what I just ran.

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.08.11.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
pc1 :: TRADE1 [administrator]

8/11/2013 9:25:53 PM
MBAM-log-2013-08-12 (09-01-24).txt

Scan type: Full scan (G:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Heuristics/Extra | P2P
Objects scanned: 3465587
Time elapsed: 11 hour(s), 35 minute(s), 2 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 6
G:\BUData\TRADE1-64FA1B77_00000000\20121006030002\Chg\00\Users\pc1\AppData\Local\Temp\nsl60F7.tmp\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121116030002\Chg\00\Users\pc1\AppData\Local\AOL\AIM\update\install.exe (PUP.Optional.OpenCandy) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121117030001\Chg\00\ProgramData\WeCareReminder\ReminderHelper.exe (PUP.Optional.WeCare.A) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121117030001\Chg\00\ProgramData\WeCareReminder\WCAutoUpdate.exe (PUP.Optional.WeCare.A) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121117030001\Chg\00\Users\pc1\AppData\Local\Temp\nszA799.tmp\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> No action taken.
G:\BUData\TRADE1-64FA1B77_00000000\20121117030001\Chg\00\Users\pc1\AppData\Roaming\OpenCandy\04B6309DCC084BED9B56FB0D0285F33B\SliderASPCAv4.1.19.1_20121012.msi

(PUP.Optional.WeCare.A) -> No action taken.

(end)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users