Hello!
So, after nearly tearing my hair out, I figured I should start looking for help.
For some reasons, in the last week or so, my computer has dissolved in a bunch of problems, the likes of which I have never experienced before. I feel way out of my league!
I am using a HP desktop model a1730n with Vista SP2.
A few days ago, I had a BSoD that took me over 3 hours to fix. I ran Avast in Safe Mode, then again in normal mode, and the following items were moved to the chest:
Virus: Win32:Malwar-gen found in C:\Users\Marie\AppData\Local\Temp
PUP: KillIt.exe found in C:\hp\bin
Virus: Win32:Kryptik-BDL (Tri) found in C:\Users\Marie\AppData\Local\Temp
Virus: JS: Pdfka-gen (Expl) found in C:\Users\Marie\AppData\Local\Temp\plugtmp-33
A day later, it started acting up again, closing my web browser and just acting funky. Avast came clear, but Spybot found Click.GiftLoad. It was successfully removed. Things started working fine again.
Today I got something called Vista Total Security 2011 as I watched a video. I was able to stop the process and ran Malwarebytes’ Anti-Malware. I have pasted the log down bellow, in case. I’m not sure doing the scan was enough though…
Considering this sudden onslaught of problems, I’m wondering if there might be an underlying cause, like a breach created in my system by another deeper rooted program, or something.
Any help in this matter would be very appreciated!
Psych Chick
Malwarebytes’ Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 6280
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18928
2011-04-05 15:36:35
mbam-log-2011-04-05 (15-36-35).txt
Scan type: Quick scan
Objects scanned: 157268
Time elapsed: 11 minute , 20 second
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 3
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 5
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{1A26F07F-0D60-4835-91CF-1E1766A0EC56} (Trojan.Agent) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{37B85A29-692B-4205-9CAD-2626E4993404} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} (Rogue.WinAntiVirus) → Quarantined and deleted successfully.
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\Users\Marie\AppData\Local\Temp\0.718423249291581.exe (Trojan.Agent) → Quarantined and deleted successfully.
c:\Users\Marie\AppData\Local\Temp\0.8090568037286583.exe (Trojan.Agent) → Quarantined and deleted successfully.
c:\Users\Marie\local settings\application data\bfb.exe (Trojan.Agent) → Quarantined and deleted successfully.
c:\Users\Marie\local settings\application data\nxk.exe (Trojan.Agent) → Quarantined and deleted successfully.
c:\Users\Marie\local settings\application data\Update.exe (Trojan.Agent) → Quarantined and deleted successfully.