Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with mixidj, conduit, lyrics monkey, and toparcade hits


  • Please log in to reply
9 replies to this topic

#1 daisiesinbloom

daisiesinbloom

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:20 PM

Posted 31 July 2013 - 01:40 PM

Really looking for some help! I tried to download a pdf to word conversion tool from cnet and got stuck with a bunch of viruses!

 

I've already run the following programs:

MBAM

Hitman Pro

Revo Uninstaller (searched for things that may have come bundled on the date of download)

Rogue Killer

Rootkill

CCleaner

JRT

Combofix

 

I've tried uninstalling and reinstalling my browsers as well as searching in the registry and hidden files for the virus keywords.

 

Every time I think I am in the clear this virus manages to come back! What else can I do? Please help!

 

Thank you!!!



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:20 AM

Posted 31 July 2013 - 01:42 PM

Post the MBAM log. 
 

ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 daisiesinbloom

daisiesinbloom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:20 PM

Posted 31 July 2013 - 01:54 PM

 

Thank you so much for your quick response! Ran a fresh MBAM scan and it didn't find anything. This is the log

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.07.29.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
Anna :: FLUFFY [administrator]

7/31/2013 2:47:42 PM
mbam-log-2013-07-31 (14-47-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 220871
Time elapsed: 4 minute(s), 29 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

 

I will run the scan you suggested and post the results. Thank you very much for your help!!



#4 daisiesinbloom

daisiesinbloom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:20 PM

Posted 31 July 2013 - 04:40 PM

Hi,

 

These are the threats it found when it scanned my computer.

 

C:\Users\Anna\Downloads\cnet2_DTLite4454-0314_exe.exe a variant of Win32/InstallCore.D application
C:\Users\Anna\Downloads\cnet_jflashtrial_zip.exe a variant of Win32/InstallCore.D application
C:\Users\Anna\Downloads\CuteWriter (1).exe a variant of Win32/Bundled.Toolbar.Ask application
C:\Users\Anna\Downloads\CuteWriter (2).exe a variant of Win32/Bundled.Toolbar.Ask application
C:\Users\Anna\Downloads\CuteWriter (3).exe a variant of Win32/Bundled.Toolbar.Ask application
C:\Users\Anna\Downloads\CuteWriter.exe a variant of Win32/Bundled.Toolbar.Ask application
C:\Users\Anna\Downloads\DTLite4454-0314.exe Win32/OpenCandy application
C:\Users\Anna\Downloads\FLVPlayerSetup.exe a variant of Win32/InstallCore.BP application

 

Thanks!!!
 



#5 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:20 AM

Posted 01 August 2013 - 02:22 AM

Remove the files by deleting them and then clean the recycle bin.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#6 daisiesinbloom

daisiesinbloom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:20 PM

Posted 01 August 2013 - 11:58 AM

Thank you very much for your help! I deleted what I could find and then ran the ESET scanner again. I had it delete the files I wasn't able to locate.

 

Hopefully I'm in the clear! Is there a way to know for sure?



#7 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:20 AM

Posted 01 August 2013 - 12:50 PM

Normally if you don't have any signs anymore and Eset has picked up some other toolbar related, then I think your clean. Also you run a lot of tools before that are also used to address this issues.

 

:step1: My advice is to keep your computer up to date with Windows Updates, Java and Adobe Reader and Flash Player.

 

:step2: Use WOT to inspect sites if they are safe or not :http://www.mywot.com/

 

:step3: A good working AntiVirus is also important. I personally advice Avast free or Avira. MSE it's detection is not so great.

 

:step4: Let's check how good your security is:

 

Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#8 daisiesinbloom

daisiesinbloom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:20 PM

Posted 01 August 2013 - 01:05 PM

Thank you! These are the results of the scan...

 

Results of screen317's Security Check version 0.99.71  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
AVG Anti-Virus Free Edition 2012   
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java™ 6 Update 31  
 Java version out of Date! 
 Adobe Flash Player 11.7.700.224  
 Adobe Reader 10.1.7 Adobe Reader out of Date!  
 Google Chrome 28.0.1500.95  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 AVG avgwdsvc.exe 
 AVG avgtray.exe 
 Malwarebytes' Anti-Malware mbamscheduler.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 1% 
````````````````````End of Log`````````````````````` 


#9 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:20 AM

Posted 01 August 2013 - 01:09 PM

:step1: Remove your old Java Version, then install new version: https://www.java.com

 

:step2: Update Adobe Reader: http://get.adobe.com/reader

 

:thumbup2: The rest is perfect.


Edited by GodfatherKing, 01 August 2013 - 01:10 PM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#10 daisiesinbloom

daisiesinbloom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:20 PM

Posted 01 August 2013 - 01:11 PM

Thanks so much for taking the time to help me! I feel so accomplished that we defeated those viruses!  :bounce:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users