Search the Community
Showing results for tags 'pgq.exe'.
Good afternoon, A co-worker has been experiencing some strange behavior and sluggish performance on our shared work PC for the past two weeks. When he showed me the problem, I observed strange behavior: IE8 windows would close before ever loading the page, and twice, the browser was redirected to AOL Mail, where I watched as it created an account and signed in in a matter of seconds before closing on its own. When this happened, a program titled xkadf.exe had over 80% CPU usage according to the task manager. I ran a full Malwarebytes scan and found three instances: Trojan.Ransom.REL, Backdoor.Bot, and Trojan.FakeAlert. All three were in the same folder as xkadf.exe, along with two other large, suspicious .exe files over 40mb each, which I deleted. Here is the log: I rebooted the computer and noticed immediately that it was running sluggishly. Also, a window kept popping up for a split-second before closing again; it had a distorted image and was titled "nachwinterlicher." Eventually the CPU usage was so high that the window stopped responding, after which Windows told me that "Ausströmt has stopped responding." The task manager showed that two dozen randomly-titled .exes were taking up all of my processing power. I rebooted the PC, and since then, none of these symptoms have re-occurred. However, I ran another Malwarebytes scan, and each one of them was discovered in a temp folder. I cleaned the infection, but here is the log: I have not seen any other symptoms of this attack, but I'm concerned that this PC may have been permanently compromised. Google searches have left me without any answers, so I was wondering if anybody was familiar with any of this and could give me some advice. I don't want to reformat the drive if I don't have to. Here is the dds.txt: Thank you in advance for any help you can offer -- I really appreciate it. Regards, John