Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Trojan.Agent/Gen-Faldesc

30 Jun 2013   #1
7user78

win7 x64
 
 
Trojan.Agent/Gen-Faldesc

Hello there guys,
In a few words, I just try to find if this kind of malware/virus is it still in a PC.
The SUPERAntiSpyware has found an .exe/.pf file and successfully removed ,but I was wonder if this thread can be somwhere in background running also in different kind of file extensions (not so detectable). Does anyone knows what can do "good" for us this Trojan more exactly ?

Attached are a few logs if it helps.The PC was scanned with Hijackthis, Malwarebytes Anti-Malware ,GMER and it looks clean (?!).

Any advice will be much appreciated.
Thanks,




Attached Files
File Type: log GMER 2.1.19163 log.log (795 Bytes, 7 views)
File Type: log hijackthis.log (6.5 KB, 7 views)
File Type: txt MBAM-log-2013-06-30 (13-13-13).txt (2.0 KB, 9 views)
My System SpecsSystem Spec
.
30 Jun 2013   #2
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

You need to have MBam quarantine and delete this object:
Files Detected: 1
C:\ProgramData\dsgsdgdsgdsgw.pad (Exploit.Drop.GSA) -> No action taken.


Next ... download Rkill by Grinler and save it to your desktop.
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator[/url].
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
Do not reboot the computer, you will need to run the application again.
My System SpecsSystem Spec
30 Jun 2013   #3
7user78

win7 x64
 
 

Thank you for your feedback

1.dsgsdgdsgdsgw.pad - deleted.
2.please find attached logfile .

Not so sure about the interpretation :
Checking Registry for malware related settings:
* Explorer Policy Removed: NoActiveDesktopChanges [HKLM] - this is ok ?

how about the * HOSTS file entries found ?
thanks,


Attached Files
File Type: txt Rkill.txt (4.3 KB, 13 views)
My System SpecsSystem Spec
.

30 Jun 2013   #4
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

Did you add those yourself ? That by passes the activation for Adobe software .
My System SpecsSystem Spec
30 Jun 2013   #5
7user78

win7 x64
 
 

never knew.I forgot to menion , this is not my PC , I need to talk with Deea about this
I promise.

Now, except those adobe entries found, is there a problem related with this Trojan.Agent/Gen-Faldesc ?
Back to HOSTS, Should I try to remove those entries ? these are malware or just act against the law and the scan engine treating these as a potentially harmful malware or virus ?
thanks,
My System SpecsSystem Spec
30 Jun 2013   #6
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

Click here DDS

Click on Download Now button

When the download is complete . Drag the DDS program from the Downloads folder to your Desktop

Double click the DDS icon on the Desktop then click the Run button to run the tool.

Place a check next to attact.txt and click Start . When done, DDS will open two logs
  • DDS.txt
  • Attach.txt

Save two logs onto your desktop and upload them with your reply
My System SpecsSystem Spec
30 Jun 2013   #7
7user78

win7 x64
 
 

Hello again,
First of all thank you for your support, Deea just send you a couple of kisses
Please find attached logfiles.

thanks,


Attached Files
File Type: zip attach.zip (2.6 KB, 7 views)
File Type: txt dds.txt (11.7 KB, 10 views)
My System SpecsSystem Spec
30 Jun 2013   #8
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

I am not seeing anything suspicious . Either that or I am still half asleep.
My System SpecsSystem Spec
30 Jun 2013   #9
7user78

win7 x64
 
 

lol, nice conclusion
the case is still open ,the same as it is when we go to see a doctor, a second oppinion will be as well appreciated .
My System SpecsSystem Spec
30 Jun 2013   #10
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

Run an ESET Online Scanner and see what it finds .
My System SpecsSystem Spec
Reply

 Trojan.Agent/Gen-Faldesc




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Trojan called 'Trojan.Generic.2582177' on my system
Hi, I have Window7 Ultimate 64 bit on my system. I use Bitfender as my antivirus software. This morning it informed me that it has found a file infected with a virus called 'Trojan.Generic.2582177' which it cannot clean. I've contacted Bitfender to see if they know what I should do but haven't...
System Security
Trojan.Agent/Gen-FakeAlert
Within the past few days my computer has been freezing which is something that has never happened before. The only solution to the issue was to reboot. Today I decided to do some virus scans. I used avast, then malwarebytes, then superantispyware. Only superantispyware turned up any results. Here's...
System Security
Need help removing trojan.agent.cn
Help please. I'm using Malware Bytes and every restart it quarantines this trojan as svchost.exe How can I remove it completely?
System Security
Can't delete reg trojan.agent (Malwarebytes)
Hello, I ran a full system scan with malwarebytes and found this: Registry Keys Detected: 1 HKCU\Software\Microsoft\Windows\CurrentVersion\Run (Trojan.Agent) -> Quarantined and deleted successfully. malwarebytes then prompted me to restart my computer, so I did. I ran the scan after...
System Security
Trojan.Agent
Hi Everyone - Cannot belive this! Just did a MBam quick scan and found a new item. Can anyone identify it? I removed both items and the computer needed to reboot and now I am unsure how to retrieve the log for your review. Thanks, Sally
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 00:05.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App