Computer going incredibly slow... HJT inside
-
Computer going incredibly slow... HJT inside
Hi, I'm somewhat computer illiterate but I hear this is a good place to get things fixed. i took your advice and ran both adaware and spyware programs but neither have seemed to fix the problem. My computer is going PAINFULLY slow. I'm hoping you can help, it would be greatly appreciated. Thanks in advance.
HiJackThis Log:
Logfile of HijackThis v1.99.1
Scan saved at 7:54:13 PM, on 11/01/2007
Platform: Windows ME (Win9x 4.90.3000)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.nhl.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=w...bbGJUCGFTdQ42l
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 6.0\READER\ACTIVEX\ACROIEHELPER.DLL
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\PROGRAM FILES\SPYWAREGUARD\DLPROTECT.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\PROGRAM FILES\MSN APPS\MSN TOOLBAR\01.02.5000.1021\EN-US\MSNTB.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRAM FILES\YAHOO!\COMPANION\INSTALLS\CPN\YT.DLL
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.03.0000.1005\en-ca\msnappau.exe"
O4 - HKLM\..\Run: [KodakCCS] C:\WINDOWS\System32\Drivers\KodakCCS.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [LVComs] C:\WINDOWS\SYSTEM\LVComS.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMON.EXE /Consumer
O4 - HKLM\..\Run: [IEXPLORE.EXE] C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
O4 - HKLM\..\Run: [SDKAA.EXE] C:\WINDOWS\SDKAA.EXE
O4 - HKLM\..\Run: [HP Lamp] "C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [syswin] C:\WINDOWS\TEMP\V5.EXE
O4 - HKLM\..\Run: [Intel Driver] CSRS.EXE
O4 - HKLM\..\Run: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - HKLM\..\RunServices: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKLM\..\RunServices: [ccEvtMgr] "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"
O4 - HKLM\..\RunServices: [ScriptBlocking] "C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe" -reg
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [KB891711] C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE
O4 - HKLM\..\RunServices: [ALU Scheduler Service] C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O4 - HKLM\..\RunServices: [Intel Driver] CSRS.EXE
O4 - HKLM\..\RunServices: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE" /background
O4 - HKCU\..\Run: [WinFixer2005] "C:\PROGRAM FILES\WINFIXER 2005\UWFX5.EXE" /min
O4 - HKCU\..\Run: [shell] "C:\WINDOWS\SYSTEM\ibm00003.exe"
O4 - HKCU\..\Run: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmwordtrans.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmcache.html
O8 - Extra context menu item: Similar Pages - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsimilar.html
O8 - Extra context menu item: Backward Links - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmbacklinks.html
O8 - Extra context menu item: Translate Page into English - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmtrans.html
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} (iTunesDetector Class) - http://ax.phobos.apple.com.edgesuite...ITDetector.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www5.incredimail.com/contents...r/imloader.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/Ms...Downloader.cab
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/instal...sinstaller.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://ashtraybabyface.spaces.live.c...d/MsnPUpld.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=48835
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/...ampx_en_dl.cab
O16 - DPF: {70522FA0-4656-11D5-B0E9-0050DAC24E8F} - http://cc.iwon.com/ct/pm3/iwonpm_12_1,0,2,5.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary...n.cab31267.cab
O16 - DPF: {68A2C3BD-7809-11D3-8ACF-0050046F2F9A} (AXELPlayer Class) - http://www.mindavenue.com/Downloads/...erAX_Win32.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Zang...37be6df24bdae2
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/...toUploader.cab
-
Heavily infected for sure,
Go here for a trojan scanner:
http://www.emsisoft.com/en/software/free/
Go here BitDefender and run an online scan with BitDefender (you will need to use Internet Explorer for this scan). When the ActiveX Control has loaded, click on "Click here to scan" and grab a coffee.
When BitDefender completes the scan, select the "Detected Problems" tab. Click on "Click here to export scan". Save the file as an HTML to your Desktop. Then click on the saved file and allow it to open with your browser. Go to Edit - Select All then copy/paste that log back here. Post back and let us know what it found (post the log).
And post a new HJT log also..
-
Okay here are my BitDefender and HiJackThis Logs
BitDefender:
BitDefender Online Scanner
Scan report generated at: Tue, Jan 16, 2007 - 12:26:29
Scan path: A:\;C:\;D:\;E:\;
Statistics
Time
13:55:43
Files
211461
Folders
3014
Boot Sectors
2
Archives
2546
Packed Files
6760
Results
Identified Viruses
26
Infected Files
66
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
54
Engines Info
Virus Definitions
370398
Engine build
AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)
Scan plugins
14
Archive plugins
38
Unpack plugins
5
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\_RESTORE\TEMP\AHADP.0
Infected with: Trojan.Multidropper.NB
C:\_RESTORE\TEMP\AHADP.0
Disinfection failed
C:\_RESTORE\TEMP\AHADP.0
Delete failed
C:\_RESTORE\TEMP\SAHAGENT.0
Detected with: Adware.Sahagent.A
C:\_RESTORE\TEMP\SAHAGENT.0
Disinfection failed
C:\_RESTORE\TEMP\SAHAGENT.0
Delete failed
C:\_RESTORE\TEMP\ZIMRM.0
Infected with: Trojan.Downloader.TSUpdate.K
C:\_RESTORE\TEMP\ZIMRM.0
Disinfection failed
C:\_RESTORE\TEMP\ZIMRM.0
Delete failed
C:\_RESTORE\TEMP\ZIMRA.0
Infected with: Trojan.Downloader.TSUpdate.L
C:\_RESTORE\TEMP\ZIMRA.0
Disinfection failed
C:\_RESTORE\TEMP\ZIMRA.0
Delete failed
C:\_RESTORE\TEMP\TBPS.0
Detected with: Adware.Tbbar.A
C:\_RESTORE\TEMP\TBPS.0
Disinfection failed
C:\_RESTORE\TEMP\TBPS.0
Delete failed
C:\_RESTORE\TEMP\A~NSISU_.17
Infected with: Backdoor.Genlot.E
C:\_RESTORE\TEMP\A~NSISU_.17
Disinfection failed
C:\_RESTORE\TEMP\A~NSISU_.17
Delete failed
C:\_RESTORE\TEMP\TOOLBAR.0
Detected with: Application.Adware.WebSearch.1211
C:\_RESTORE\TEMP\TOOLBAR.0
Disinfection failed
C:\_RESTORE\TEMP\TOOLBAR.0
Delete failed
C:\_RESTORE\TEMP\UNINST~1.0
Detected with: Application.Adware.NewDotNet.C
C:\_RESTORE\TEMP\UNINST~1.0
Disinfection failed
C:\_RESTORE\TEMP\UNINST~1.0
Delete failed
C:\_RESTORE\TEMP\NEWDOT~1.0
Detected with: Application.Adware.NewDotNet.A
C:\_RESTORE\TEMP\NEWDOT~1.0
Disinfection failed
C:\_RESTORE\TEMP\NEWDOT~1.0
Delete failed
C:\WINDOWS\SYSTEM32\srshost.exe
Infected with: Trojan.Dropper.Small.AN
C:\WINDOWS\SYSTEM32\srshost.exe
Disinfection failed
C:\WINDOWS\SYSTEM32\srshost.exe
Delete failed
C:\WINDOWS\v6.exe
Infected with: Trojan.Downloader.ACR
C:\WINDOWS\v6.exe
Disinfection failed
C:\WINDOWS\v6.exe
Delete failed
C:\WINDOWS\sdkaa.exe
Infected with: Trojan.Downloader.Agent.BQ
C:\WINDOWS\sdkaa.exe
Disinfection failed
C:\WINDOWS\sdkaa.exe
Delete failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Infected with: Java.Trojan.OpenConnection.F
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Infected with: Trojan.Downloader.Keenval.F
C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Infected with: Trojan.LowZones.CG
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify.C
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Infected with: Java.Trojan.Exploit.Bytverify.C
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Infected with: Trojan.Downloader.Zlob.AFB
C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)
Update failed
C:\Program Files\DeskAd Service\DeskAdServ.exe
Infected with: Trojan.Winad.I
C:\Program Files\DeskAd Service\DeskAdServ.exe
Disinfection failed
C:\Program Files\DeskAd Service\DeskAdServ.exe
Deleted
C:\NULL
Infected with: Trojan.Dloader.GZ
C:\NULL
Disinfection failed
C:\NULL
Deleted
C:\tt_reco_before.exe
Infected with: Trojan.BettInet.A
C:\tt_reco_before.exe
Disinfection failed
C:\tt_reco_before.exe
Deleted
C:\temp\sahagent.exe
Infected with: MemScan:Trojan.SillyDl.44032
C:\temp\sahagent.exe
Disinfection failed
C:\temp\sahagent.exe
Deleted
C:\backups\backup-20050616-095120-699.dll
Infected with: Trojan.Downloader.Agent.BC
C:\backups\backup-20050616-095120-699.dll
Disinfection failed
C:\backups\backup-20050616-095120-699.dll
Deleted
HijackThis:
BitDefender Online Scanner
Scan report generated at: Tue, Jan 16, 2007 - 12:26:29
Scan path: A:\;C:\;D:\;E:\;
Statistics
Time
13:55:43
Files
211461
Folders
3014
Boot Sectors
2
Archives
2546
Packed Files
6760
Results
Identified Viruses
26
Infected Files
66
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
54
Engines Info
Virus Definitions
370398
Engine build
AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)
Scan plugins
14
Archive plugins
38
Unpack plugins
5
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\_RESTORE\TEMP\AHADP.0
Infected with: Trojan.Multidropper.NB
C:\_RESTORE\TEMP\AHADP.0
Disinfection failed
C:\_RESTORE\TEMP\AHADP.0
Delete failed
C:\_RESTORE\TEMP\SAHAGENT.0
Detected with: Adware.Sahagent.A
C:\_RESTORE\TEMP\SAHAGENT.0
Disinfection failed
C:\_RESTORE\TEMP\SAHAGENT.0
Delete failed
C:\_RESTORE\TEMP\ZIMRM.0
Infected with: Trojan.Downloader.TSUpdate.K
C:\_RESTORE\TEMP\ZIMRM.0
Disinfection failed
C:\_RESTORE\TEMP\ZIMRM.0
Delete failed
C:\_RESTORE\TEMP\ZIMRA.0
Infected with: Trojan.Downloader.TSUpdate.L
C:\_RESTORE\TEMP\ZIMRA.0
Disinfection failed
C:\_RESTORE\TEMP\ZIMRA.0
Delete failed
C:\_RESTORE\TEMP\TBPS.0
Detected with: Adware.Tbbar.A
C:\_RESTORE\TEMP\TBPS.0
Disinfection failed
C:\_RESTORE\TEMP\TBPS.0
Delete failed
C:\_RESTORE\TEMP\A~NSISU_.17
Infected with: Backdoor.Genlot.E
C:\_RESTORE\TEMP\A~NSISU_.17
Disinfection failed
C:\_RESTORE\TEMP\A~NSISU_.17
Delete failed
C:\_RESTORE\TEMP\TOOLBAR.0
Detected with: Application.Adware.WebSearch.1211
C:\_RESTORE\TEMP\TOOLBAR.0
Disinfection failed
C:\_RESTORE\TEMP\TOOLBAR.0
Delete failed
C:\_RESTORE\TEMP\UNINST~1.0
Detected with: Application.Adware.NewDotNet.C
C:\_RESTORE\TEMP\UNINST~1.0
Disinfection failed
C:\_RESTORE\TEMP\UNINST~1.0
Delete failed
C:\_RESTORE\TEMP\NEWDOT~1.0
Detected with: Application.Adware.NewDotNet.A
C:\_RESTORE\TEMP\NEWDOT~1.0
Disinfection failed
C:\_RESTORE\TEMP\NEWDOT~1.0
Delete failed
C:\WINDOWS\SYSTEM32\srshost.exe
Infected with: Trojan.Dropper.Small.AN
C:\WINDOWS\SYSTEM32\srshost.exe
Disinfection failed
C:\WINDOWS\SYSTEM32\srshost.exe
Delete failed
C:\WINDOWS\v6.exe
Infected with: Trojan.Downloader.ACR
C:\WINDOWS\v6.exe
Disinfection failed
C:\WINDOWS\v6.exe
Delete failed
C:\WINDOWS\sdkaa.exe
Infected with: Trojan.Downloader.Agent.BQ
C:\WINDOWS\sdkaa.exe
Disinfection failed
C:\WINDOWS\sdkaa.exe
Delete failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Infected with: Java.Trojan.OpenConnection.F
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Infected with: Trojan.Downloader.Keenval.F
C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Infected with: Trojan.LowZones.CG
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify.C
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Infected with: Java.Trojan.Exploit.Bytverify.C
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated
C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Infected with: Trojan.Downloader.Zlob.AFB
C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)
Update failed
C:\Program Files\DeskAd Service\DeskAdServ.exe
Infected with: Trojan.Winad.I
C:\Program Files\DeskAd Service\DeskAdServ.exe
Disinfection failed
C:\Program Files\DeskAd Service\DeskAdServ.exe
Deleted
C:\NULL
Infected with: Trojan.Dloader.GZ
C:\NULL
Disinfection failed
C:\NULL
Deleted
C:\tt_reco_before.exe
Infected with: Trojan.BettInet.A
C:\tt_reco_before.exe
Disinfection failed
C:\tt_reco_before.exe
Deleted
C:\temp\sahagent.exe
Infected with: MemScan:Trojan.SillyDl.44032
C:\temp\sahagent.exe
Disinfection failed
C:\temp\sahagent.exe
Deleted
C:\backups\backup-20050616-095120-699.dll
Infected with: Trojan.Downloader.Agent.BC
C:\backups\backup-20050616-095120-699.dll
Disinfection failed
C:\backups\backup-20050616-095120-699.dll
Deleted
Hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 5:18:39 PM, on 16/01/2007
Platform: Windows ME (Win9x 4.90.3000)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.nhl.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=w...bbGJUCGFTdQ42l
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 6.0\READER\ACTIVEX\ACROIEHELPER.DLL
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\PROGRAM FILES\SPYWAREGUARD\DLPROTECT.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\PROGRAM FILES\MSN APPS\MSN TOOLBAR\01.02.5000.1021\EN-US\MSNTB.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRAM FILES\YAHOO!\COMPANION\INSTALLS\CPN\YT.DLL
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.03.0000.1005\en-ca\msnappau.exe"
O4 - HKLM\..\Run: [KodakCCS] C:\WINDOWS\System32\Drivers\KodakCCS.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [LVComs] C:\WINDOWS\SYSTEM\LVComS.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMON.EXE /Consumer
O4 - HKLM\..\Run: [IEXPLORE.EXE] C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
O4 - HKLM\..\Run: [SDKAA.EXE] C:\WINDOWS\SDKAA.EXE
O4 - HKLM\..\Run: [HP Lamp] "C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [syswin] C:\WINDOWS\V6.EXE
O4 - HKLM\..\Run: [Intel Driver] CSRS.EXE
O4 - HKLM\..\Run: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\RunServices: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKLM\..\RunServices: [ccEvtMgr] "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"
O4 - HKLM\..\RunServices: [ScriptBlocking] "C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe" -reg
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [KB891711] C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE
O4 - HKLM\..\RunServices: [ALU Scheduler Service] C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O4 - HKLM\..\RunServices: [Intel Driver] CSRS.EXE
O4 - HKLM\..\RunServices: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE" /background
O4 - HKCU\..\Run: [WinFixer2005] "C:\PROGRAM FILES\WINFIXER 2005\UWFX5.EXE" /min
O4 - HKCU\..\Run: [shell] "C:\WINDOWS\SYSTEM\ibm00003.exe"
O4 - HKCU\..\Run: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmwordtrans.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmcache.html
O8 - Extra context menu item: Similar Pages - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsimilar.html
O8 - Extra context menu item: Backward Links - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmbacklinks.html
O8 - Extra context menu item: Translate Page into English - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmtrans.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} (iTunesDetector Class) - http://ax.phobos.apple.com.edgesuite...ITDetector.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www5.incredimail.com/contents...r/imloader.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/Ms...Downloader.cab
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/instal...sinstaller.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://ashtraybabyface.spaces.live.c...d/MsnPUpld.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=48835
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/...ampx_en_dl.cab
O16 - DPF: {70522FA0-4656-11D5-B0E9-0050DAC24E8F} - http://cc.iwon.com/ct/pm3/iwonpm_12_1,0,2,5.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary...n.cab31267.cab
O16 - DPF: {68A2C3BD-7809-11D3-8ACF-0050046F2F9A} (AXELPlayer Class) - http://www.mindavenue.com/Downloads/...erAX_Win32.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Zang...37be6df24bdae2
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/...toUploader.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/reso...an8/oscan8.cab
-
O4 - HKCU\..\Run: [SHELL] "C:\WINDOWS\SYSTEM\ibm00003.exe" http://www.processlibrary.com/directory/files/ibm00001/
Name: [Shell]
Status: X
File: ibm0000*.exe (* = digit)
Added by the Troj/Torpig-C http://www.sophos.com/virusinfo/anal...ojtorpigc.html and Troj/Torpig-J http://www.sophos.com/virusinfo/anal...ojtorpigj.html TROJANS! - Filenames spotted include ibm00001.exe ibm00002.exe ibm00005.exe and so on.
http://www.castlecops.com/startuplist-11220.html
---------------------------------------------------------------
I'm afraid I have unpleasant news for you. You have a very dangerous infection on this machine. With a serious infection like this, I would recommend that you seriously consider a reformat and reinstall.
Unfortunately, 'ME' is fast getting left behind and 'VISTA' is almost upon us. Consider moving to XP if that is feasable for your system (that may not be an available option fairly shortly). Furhtermore, the tools available to cleanup an ME PC are getting very weak as time goes on.
If you do not want to do this, do not ever use the computer for anything confidential. Let us know how you wish to proceed.
The infection installs itself primarily in machines that have not had all the Win XP updates installed. It allows outsiders COMPLETE access to every keystroke, account, and password you use while on this machine, and complete access to anything else present...
My best recommendation is to Disconnect from internet, backup critical user files, Re-Format the entire drive and re-install your Operating system and Applications.
We can likely clean the infected files off the computer but we cannot be sure that the files involved didn't do anything to your system to reduce overall system security. Even after removal of the infection, you could be vulnerable to another attack or takeover as soon as you connect to the net again.
You are strongly advised to do the following immediately:
1. Disconnect infected computer from the Internet and from any networked computers until the computer can be cleaned.
2. If you have ever used this computer for shopping, banking, or any transactions relating to your financial well being:
Call all of your banks, credit card companies, financial institutions and inform them that you may be a victim of identity theft and to put a watch on your accounts and/or change all your account numbers.
3. From a clean computer, change *ALL* your online passwords -- for ISP login, email, banks, financial accounts, PayPal, eBay, online companies, any online forums or groups you belong to.
Do NOT change passwords or do any transactions while using the infected computer because the attacker will get the new passwords and transaction information.
Also take any other steps appropriate for an attempted identity theft.
