Viruses & Malware Found

More viruses and malware found - have suspicion as to where these problems are arising.

Been problems with this computer ever since another person in the household started playing that Candy Crush game on facebook. I asked them to stop but apparently they haven’t. Hopefully someone can confirm whether my suspicions are correct.

First noticeable effect is the computer is extremely slow - it takes AGES for firefox to start up etc.

Attached malware log. Avast also found a few viruses - one which it couldn’t quarantine nor delete:

C:\WINDOWS\system32\drivers\mbamswissarmy.sys (rootkit)

The others were all webcakes (Adw).

AdwCleaner report (this didn’t clean the adware like usual though I don’t think) - should I click clean?.

Mbamswissarmy is malwarebytes

But if you want a check you find the how to guide above your pist

Thanks pondus, so it appears its just adware then - one of which is called OpenCandy (points to what I was saying about Candy Crush?)

OTL scan.

Asw scan.

whatever AdwCleaner and Malwarebytes find you can remove…
you can always restore it from quarantine if you miss it. :wink:

OpenCandy info
http://www.microsoft.com/security/portal/threat/encyclopedia/entry.aspx?Name=Adware%3AWin32%2FOpenCandy

Please download zoek.zip and save it to your desktop.

[*] Close any open browsers.

[*] Temporarily disable your AntiVirus program. (If necessary)
If you are unsure how to do this please read this or this Instruction.

[*] Double click on zoek.exe to run the tool .
Please wait while the tool does not start…

[*] Copy the text present inside the code box below and paste it into the large window in the zoek tool:



filesrcm;
startupall;
skipfix-iedefaults;
firefoxlook;
chromelook;


[*] Click on
http://www.mcshield.net/personal/magna86/Images/Run%20Script%20by%20zoek.png
button
Please wait until a logreport will open (this can be after reboot)

[*] Save notepad to your Desktop and attach here zoek-results.log

Note: It will also create a log in the C:\ directory named “zoek-results.log

Thanks both.

Zoek log.

[*] Close any open browsers.

[*] Temporarily disable your AntiVirus program. (If necessary)
If you are unsure how to do this please read this or this Instruction.

[*] Double click on zoek.exe to run the tool .
Please wait while the tool does not start…

[*] Copy the text present inside the code box below and paste it into the large window in the zoek tool:



emptyclsid;
shortcutfix;
C:\Documents and Settings\HP_Administrator\Application Data\Web Cake;fs
ochbjojkpcmlfeagbaahkofepalngihg;chr
[-HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4739148C-E27F-4322-8E7B-3BAEA801EC1F}];r
emptyalltemp;
autoclean;



[*] Click on
http://www.mcshield.net/personal/magna86/Images/Run%20Script%20by%20zoek.png
button
Please wait until a logreport will open (this can be after reboot)

[*] Save notepad to your Desktop and attach here zoek-results.log

Note: It will also create a log in the C:\ directory named “zoek-results.log

When running the adw cleaner it rebooted then it ran checkdisk and deleted a load of stuff. When it went back in it just froze so I had to unplug. It then said system is corrupt or missing and I’ve had to run system recovery. I believe I will now have lost my desktop.

Not only my desktop, its lost everything. Is there any quick way to get my additional hardware running again (printer, webcam etc)? I presume to get other things back like mbam and avast I’ll have to reinstall?

You can try a system restore.

Have you checked the condition of the hard drive, whether it has bad sectors?

I did a system restore. It lost everything, took computer back to factory settings. Is there any way of quickly setting up my additional hardware and downloading the programs I use regularly? I don’t have the old disks that came with the printer and webcam. Also is there a quick way to do the necessary updates (the computer is old so there will be a lot)?

It is impossible to AdwC remove the drivers.
How to look your desktop, attach here screenshot.

http://www.drivereasy.com/

Driver Easy is a free program for downloading drivers, you can try.

Thanks about drivereasy.

No, what happened was adwcleaner ran, restarted the computer, computer froze so I had to unplug, it told me system32 was missing or corrupt and I had to run recovery program, ran it and it restored factory settings.

I’m not particularly upset as important photos etc are backed up but its just any quick way to reinstall webcams etc will be handy. With other programs I can download them as I’m going along.

Tell what you did.

I did above?

When you finish downloading drivers, then tell how PC works.