Malware Found; Issues Raised

Beseech · Aug 19, 2013

Hi.

A few weeks ago I performed the malware removal guide process. I downloaded and ran the programs exactly as instructed.

Two of the programs (maybe 3?) found malware. However, according to the instructions, I am NOT supposed to delete the malware that was detected. How then, is my computer safe, if the malware are still intact in my computer?

This is important, because I want to know which of the anti-malware programs I am supposed to delete now that I have completed the scans; and which programs do I keep?

[Please note that this new thread is NOT a continuation of the thread I started several months ago; this is a different computer I'm currently working on.]

One more thing: I also completed the "How to Protect yourself from malware" thread on this forum, and when I downloaded the Comodo Personal Firewall, it said that it was incompatible with MalwareBytes Program. What should I do, because I want to use MalwareBytes as an "after the fact" scanning tool?

Thank you very much.
Beseech

Beseech · Aug 19, 2013

Hey, here are the logs from the scans. Note that today, I ran another MalwareBytes scan. It detected another 177 files. I did NOT delete them; I am awaiting instructions from you. I don't want to make the situation worse.

All 177 files were PUP.optional.Pricegong.A or PUP.Optional.Babylon.A

Please help.

Kestrel13! · Aug 20, 2013

Before we continue I would like for you to use MSConfig to put this machine back into normal start up mode

All 177 files were PUP.optional.Pricegong.A or PUP.Optional.Babylon.A
Click to expand...

- Then yes... have it delete them. (We only say do not delete things on your own until you have consulted with a malware removal expert. Something may go wrong otherwise.)

Re run Hitman and have it delete Potential Unwanted Programs.

Also delete this if it shows:
C:\Documents and Settings\Angela\Local Settings\Application Data\Babylon

http://imageshack.us/a/img841/7292/thisisujrt.gif Please download Junkware Removal Tool to your desktop.

Shut down your protection software now to avoid potential conflicts.

Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.

The tool will open and start scanning your system.

Please be patient as this can take a while to complete depending on your system's specifications.

On completion, a log (JRT.txt) is saved to your desktop and will automatically open.

Attach JRT.txt to your next message.

Now run the C:\MGtools\GetLogs.bat file by double clicking on it. (Right click and run as admin if using Vista, Windows7 or Win8) Then attach the new C:\MGlogs.zip file that will be created by running this.

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now!

Beseech · Aug 20, 2013

Kestrel13! said: ↑

Before we continue I would like for you to use MSConfig to put this machine back into normal start up mode

- Then yes... have it delete them. (We only say do not delete things on your own until you have consulted with a malware removal expert. Something may go wrong otherwise.
Click to expand...

Done. They are now deleted.

Rerun Hitman and have it delete Potential Unwanted Programs.
Click to expand...

Done. There were over 7 malicious programs and over 800 other malicious files that it detected. I removed them.

Also delete this if it shows:
C:\Documents and Settings\Angela\Local Settings\Application Data\Babylon
Click to expand...

Done.

http://imageshack.us/a/img841/7292/thisisujrt.gif Please download Junkware Removal Tool to your desktop.

Shut down your protection software now to avoid potential conflicts.

Click to expand...

Unfortunately, this was impossible for me to complete. I spent much time and effort and was met with myriad obstacles. However, most may be of no importance. I did manage to download the program.

I shut down my Avira anti-virus and Comodo firewall.
I downloaded the program, but when I click to run it, either nothing happens, or it gives a blank cmd.exe window; and nothing happens after that.

So to successfully launch it, I must click "Run in Comodo Sandbox". (Comodo is my firewall, which is supposedly disabled at this point.)
The program begins, but can't get past the first step; namely, creating a registry backup. It says that "access is denied."

It then tries to go to the next step; namely, creating startup. Sometimes it stops here, with going to the next step. Other times, it goes farther, "creating" different things, but has never gotten past "checking registry."

So what do I do now?

[*]Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
[*]The tool will open and start scanning your system.
[*]Please be patient as this can take a while to complete depending on your system's specifications.
[*]On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
[*]Attach JRT.txt to your next message.
Click to expand...

Now run the C:\MGtools\GetLogs.bat file by double clicking on it. (Right click and run as admin if using Vista, Windows7 or Win8) Then attach the new C:\MGlogs.zip file that will be created by running this.

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now!
Click to expand...

This last step I did not do yet; I am waiting to run JRT first, but I will do another MGT scan right away if you want me to.

Thank you.

Kestrel13! · Aug 21, 2013

See if you can scan with JRT in safe mode. Comodo is very aggressive.

Log in or Sign up

Malware Found; Issues Raised

Beseech Private E-2

Beseech Private E-2

Attached Files:

RKreport[0]_S_07022013_142439.txt

mbam-log-2013-07-02 (14-33-58).txt

MGlogs.zip

TDSSKiller.2.8.16.0_02.07.2013_14.50.08_log.txt

HitmanPro_20130702_1502.log

Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

Beseech Private E-2

Kestrel13! Super Malware Fighter - Major Dilemma Staff Member