Support (Read Only) > Help
I hear things that arn't there O.o
Ἆxule:
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Database version: 8165
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
11/15/2011 6:56:28 AM
mbam-log-2011-11-15 (06-56-28).txt
Scan type: Full scan (C:\|Q:\|)
Objects scanned: 601090
Time elapsed: 4 hour(s), 13 minute(s), 10 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 3
Registry Keys Infected: 5
Registry Values Infected: 4
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 16
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
c:\Users\Nate's\AppData\Local\servicesys32.dll (Trojan.SHarpro.Gen) -> Delete on reboot.
c:\programdata\mouseprofileupdate.dll (Trojan.SHarpro.PGen) -> Delete on reboot.
c:\Users\Nate's\AppData\Local\Google\googleupdate\Googleup.dll (Trojan.SHarpro.PGen) -> Delete on reboot.
Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{0EAB238E-497A-4884-AFA7-AAA599F601Fb} (Trojan.SHarpro.Gen) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0EAB238E-497A-4884-AFA7-AAA599F601FB} (Trojan.SHarpro.Gen) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{0EAB238E-497A-4884-AFA7-AAA599F601FB} (Trojan.SHarpro.Gen) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{0EAB238E-497A-4884-AFA7-AAA599F601FB} (Trojan.SHarpro.Gen) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> Quarantined and deleted successfully.
Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MouseProfileUpdate (Trojan.SHarpro.PGen) -> Value: MouseProfileUpdate -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Oberon Update (Trojan.SHarpro.PGen) -> Value: Oberon Update -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Trolltech Update (Trojan.SHarpro.PGen) -> Value: Trolltech Update -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WinRAR Update (Trojan.SHarpro.PGen) -> Value: WinRAR Update -> Quarantined and deleted successfully.
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\Users\Nate's\AppData\Local\Temp\thpm3062737837039021031.tmp (Trojan.Exploit.Drop.THPM) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\thpm377124260971730934.tmp (Trojan.Exploit.Drop.THPM) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nsc1DE0.tmp\msintl1a.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nsc1DE0.tmp\msintl1c.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nsc1DE0.tmp\msintl1e.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nshF251.tmp\tzdworf1.png (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nshF251.tmp\tzdworf2.png (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nshF251.tmp\tzdworf3.png (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nsn9993.tmp\001.jgg (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nsn9993.tmp\002.jgg (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nsn9993.tmp\003.jgg (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Temp\nsqBACC.tmp\errpoid2.xx (Trojan.Tracur.VGen) -> Quarantined and deleted successfully.
c:\Users\Nate's\local settings\application data\servicesys32.dll (Trojan.SHarpro.Gen) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\servicesys32.dll (Trojan.SHarpro.Gen) -> Quarantined and deleted successfully.
c:\programdata\mouseprofileupdate.dll (Trojan.SHarpro.PGen) -> Quarantined and deleted successfully.
c:\Users\Nate's\AppData\Local\Google\googleupdate\Googleup.dll (Trojan.SHarpro.PGen) -> Quarantined and deleted successfully.
Deacon:
holy shitfuck
enjoy dem trojans
Ἆxule:
I'm not sure where they came from.
They should be gone now though.
Loke:
--- Quote from: Ἆxule on November 15, 2011, 08:58:55 AM ---
Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MouseProfileUpdate (Trojan.SHarpro.PGen) -> Value: MouseProfileUpdate -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Oberon Update (Trojan.SHarpro.PGen) -> Value: Oberon Update -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Trolltech Update (Trojan.SHarpro.PGen) -> Value: Trolltech Update -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WinRAR Update (Trojan.SHarpro.PGen) -> Value: WinRAR Update -> Quarantined and deleted successfully.
Just had to.
--- End quote ---
Hotgreensoldier:
OHGOD I LOL'D AT THE TROLLTECH
So everything is working naow?
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version