Jump to content

Trojan! Too scared to do anything without help


Recommended Posts

Hey guys. Downloaded and ran Malwarebytes a day or so ago and as it was scanning, my Avast antivirus was popping up and quarantining Trojans (did this a couple times) saw the results of my Malwarebytes scan and panicked. I messaged a really computer savvy friend on facebook with some questions but still need some help as he does not have the time to walk me through how to handle it. According to him, a video driver is compromised as is my plug and play? I scanned my USB flash drive with Avast and got nothing.

Here is my log:

Malwarebytes' Anti-Malware 1.51.1.1800

www.malwarebytes.org

Database version: 7332

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

7/30/2011 6:49:38 PM

mbam-log-2011-07-30 (18-49-25).txt

Scan type: Quick scan

Objects scanned: 186826

Time elapsed: 9 minute(s), 24 second(s)

Memory Processes Infected: 2

Memory Modules Infected: 0

Registry Keys Infected: 2

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 5

Memory Processes Infected:

c:\windows\system32\pxafs32.exe (Trojan.Agent) -> 1564 -> No action taken.

c:\windows\system32\ati2edxx32.exe (Trojan.Agent) -> 1820 -> No action taken.

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PlugPlay32 (Trojan.Agent) -> No action taken.

HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> No action taken.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

c:\windows\system32\pxafs32.exe (Trojan.Agent) -> No action taken.

c:\windows\system32\ati2edxx32.exe (Trojan.Agent) -> No action taken.

c:\windows\system32\trz36b.tmp (Trojan.Agent) -> No action taken.

c:\windows\system32\trz36c.tmp (Trojan.Agent) -> No action taken.

c:\documents and settings\owner.lindsay\local settings\temp\tmph7936443582749916217.tmp (Trojan.Agent) -> No action taken.

I'm afraid to do anything until I receive help as there are registry keys involved. I don't want to kill my computer :)

Any help would be soooo appreciated!!

Link to post
Share on other sites

I also forgot to mention that I am getting some firefox browser redirect but only when I click on links from a google search. It will take me to ad sites rather than my search query.

Hey guys. Downloaded and ran Malwarebytes a day or so ago and as it was scanning, my Avast antivirus was popping up and quarantining Trojans (did this a couple times) saw the results of my Malwarebytes scan and panicked. I messaged a really computer savvy friend on facebook with some questions but still need some help as he does not have the time to walk me through how to handle it. According to him, a video driver is compromised as is my plug and play? I scanned my USB flash drive with Avast and got nothing.

Here is my log:

Malwarebytes' Anti-Malware 1.51.1.1800

www.malwarebytes.org

Database version: 7332

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

7/30/2011 6:49:38 PM

mbam-log-2011-07-30 (18-49-25).txt

Scan type: Quick scan

Objects scanned: 186826

Time elapsed: 9 minute(s), 24 second(s)

Memory Processes Infected: 2

Memory Modules Infected: 0

Registry Keys Infected: 2

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 5

Memory Processes Infected:

c:\windows\system32\pxafs32.exe (Trojan.Agent) -> 1564 -> No action taken.

c:\windows\system32\ati2edxx32.exe (Trojan.Agent) -> 1820 -> No action taken.

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PlugPlay32 (Trojan.Agent) -> No action taken.

HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> No action taken.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

c:\windows\system32\pxafs32.exe (Trojan.Agent) -> No action taken.

c:\windows\system32\ati2edxx32.exe (Trojan.Agent) -> No action taken.

c:\windows\system32\trz36b.tmp (Trojan.Agent) -> No action taken.

c:\windows\system32\trz36c.tmp (Trojan.Agent) -> No action taken.

c:\documents and settings\owner.lindsay\local settings\temp\tmph7936443582749916217.tmp (Trojan.Agent) -> No action taken.

I'm afraid to do anything until I receive help as there are registry keys involved. I don't want to kill my computer :)

Any help would be soooo appreciated!!

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Nothing appears to be compromised. Malware often uses names similar to legitimate things to avoid detection.

Please update MBAM, run a Quick Scan, and post its log.

Next, download DDS by sUBs and save it to your Desktop.

Double-click on the DDS icon and let the scan run. When it has run two logs will be produced, please post only DDS.txt directly into your reply.

Link to post
Share on other sites

  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.