Malware Found - Concerned As One Is A Password Stealer

[REDACTED]

MBAM found three pieces of malware. I'm particularly concerned as one is a password stealer. Any help would be gratefully received.

[REDACTED]

More files.

[Pondus]

I'm particularly concerned as one is a password stealer

Change all your passwords, something you should do on a regular basis anyway

Password Generator: https://identitysafe.norton.com/password-generator



somone will soon check your logs   

[REDACTED]

Thanks. SuperAntiSpyware has found something else that MBAM didn't pick up so I'll post that log when it completes.

[REDACTED]

This is what Super Anti Spyware found.

Is there any point changing my passwords until this problem has been resolved? I imagine if I were to change them and this thing is able to steal them then it would just take the new ones anyway.

[dbrisendine]

Do not run this inside Sandboxie; put this on the un-sandboxed system and run it.  Thanks.

Download CKScanner from here

Important : Save it to your desktop.

• Doubleclick CKScanner.exe and click Search For Files.
  
• After a very short time, when the cursor hourglass disappears, click Save List To File.
  
• A message box will verify that the file is saved.
• Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply.
  

[REDACTED]

When I try to run it it goes into "not responding".

[REDACTED]

It ran in the end:

CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.RP.11.LMAAL0
 ----- EOF -----

[dbrisendine]

Thanks for the extra logs.  Interesting collection of files you have there.

Fix with Farbar Recovery Scan Tool

This fix was created for this user for use on that particular machine.
Running it on another one may cause damage and render the system unstable.

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

• Right-click on icon and select Run as Administrator to start the tool.
  (XP users click run after receipt of Windows Security Warning - Open File).
• Press the Fix button just once and wait.
• If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
• When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.

[REDACTED]

Thanks.

All done.

Were they anything dangerous?

[dbrisendine]

No; they were just remains from past malware (so it seems). 

Junkware Removal Tool
Please download JRT from here to your desktop.

Note: Temporarily disable/shut down your protection software now to avoid potential conflicts, how to do so can be read here.

Double click the JRT.exe file to run the application.

The application will open an Command Prompt window and run from there (this is normal for this program, so not to be alarmed).

When it is asked, press any key to allow the program to continue / run.

This will create a log on the desktop; please copy and paste the JRT.txt log text in your next post.

Note: After the log file is created, please enable your protection software / reboot your system and verify your protection software is enabled.

[REDACTED]

Thanks.

[Eddy]

https://www.virustotal.com/en-gb/domain/fullstuff.net/information/

Good way to get a system infected.
Stop using illegal software.

[REDACTED]

https://www.virustotal.com/en-gb/domain/fullstuff.net/information/

Good way to get a system infected.
Stop using illegal software.

What? What illegal software? I'm not the only one who uses this computer.

[Pondus]

C:\SANDBOX\MYPC\DEFAULTBOX\USER\CURRENT\APPDATA\LOCAL\TEMP\SBIE_TEMP\1D1E04DC36CB46F\MALWAREBYTES ANTI-MALWARE PREMIUM ACTIVATOR- [FULLSTUFF.NET].EXE