Thread: recent trouble- programs slow to start
View Single Post
Old 08-07-2007, 10:00 AM   #11 (permalink)
sidewaysup
Registered User
 
Join Date: Aug 2007
Posts: 21
OS: xp home


Re: recent trouble- programs slow to start
I couldn't get anything to zip, here it is as a word doc, let me know if that works.


KASPERSKY ONLINE SCANNER REPORT
Tuesday, August 07, 2007 5:55:32 AM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 7/08/2007
Kaspersky Anti-Virus database records: 353080
Scan Settings
Scan using the following antivirus database standard
Scan Archives true
Scan Mail Bases true
Scan Target My Computer
A:\
C:\
D:\
E:\
F:\
G:\
I:\
J:\
K:\
L:\
N:\
O:\
P:\
Scan Statistics
Total number of scanned objects 306437
Number of viruses found 11
Number of infected objects 31 / 0
Number of suspicious objects 4
Duration of the scan process 02:37:22
Infected Object Name Virus Name Last Action
C:\Documents and Settings\All Users\Application Data\Grisoft\Avg7Data\avg7log.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Grisoft\Avg7Data\avg7log.log.lck Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\YazzleSudoku.zip/Yazzle1281OinUninstaller.exe Suspicious: Password-protected-EXE skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\YazzleSudoku.zip ZIP: suspicious - 1 skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\archive1213.jar-53e56fc7-1d36df45.zip.bac_a00516/BlackBox.class Infected: Trojan.Java.ClassLoader.ak skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\archive1213.jar-53e56fc7-1d36df45.zip.bac_a00516/VB.class Infected: Trojan.Java.ClassLoader.ak skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\archive1213.jar-53e56fc7-1d36df45.zip.bac_a00516/Beyond.class Infected: Trojan-Downloader.Java.OpenConnection.ah skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\archive1213.jar-53e56fc7-1d36df45.zip.bac_a00516 ZIP: infected - 3 skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\archive1213.jar-53e56fc7-1d36df45.zip.bac_a00516 CryptFF.b: infected - 3 skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\ie0502b.jar-963ccf0-6d9549de.zip.bac_a00516/GetAccess.class Infected: Trojan-Downloader.Java.OpenConnection.ae skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\ie0502b.jar-963ccf0-6d9549de.zip.bac_a00516/Installer.class Infected: Trojan-Downloader.Java.OpenConnection.ae skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\ie0502b.jar-963ccf0-6d9549de.zip.bac_a00516 ZIP: infected - 2 skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\ie0502b.jar-963ccf0-6d9549de.zip.bac_a00516 CryptFF.b: infected - 2 skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\jar.jar-53a63dd5-6f92f45c.zip.bac_a04072/Counter.class Infected: Trojan.Java.Femad skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\jar.jar-53a63dd5-6f92f45c.zip.bac_a04072/VerifierBug.class Infected: Trojan.Java.Femad skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\jar.jar-53a63dd5-6f92f45c.zip.bac_a04072/web.exe Infected: Trojan.Win32.Small.ev skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\jar.jar-53a63dd5-6f92f45c.zip.bac_a04072/Worker.class Infected: Trojan.Java.Femad skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\jar.jar-53a63dd5-6f92f45c.zip.bac_a04072/Xeyond.class Infected: Trojan.Java.Femad skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\jar.jar-53a63dd5-6f92f45c.zip.bac_a04072 ZIP: infected - 5 skipped
C:\Documents and Settings\Owner\.housecall\Quarantine\jar.jar-53a63dd5-6f92f45c.zip.bac_a04072 CryptFF.b: infected - 5 skipped
C:\Documents and Settings\Owner\Application Data\$_hpcst$.hpc Object is locked skipped
C:\Documents and Settings\Owner\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "BB&T" <refid-num9962424494ib bbt.com>][Date Tue, 3 Apr 2007 00:41:16 -0400]/UNNAMED/html Infected: Trojan-Spy.HTML.Bankfraud.ra skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "BB&T" <refid-num9962424494ib bbt.com>][Date Tue, 3 Apr 2007 00:41:16 -0400]/UNNAMED/cider.gif Infected: Trojan-Spy.HTML.Bankfraud.ri skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "BB&T" <refid-num9962424494ib bbt.com>][Date Tue, 3 Apr 2007 00:41:16 -0400]/UNNAMED Infected: Trojan-Spy.HTML.Bankfraud.ri skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "Schwartz A. Kirsten" <aw-confirm chase.com>][Date Mon, 02 Apr 2007 03:24:09 +0000]/UNNAMED/UNNAMED/UNNAMED/html Infected: Trojan-Spy.HTML.Chasfraud.u skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "Schwartz A. Kirsten" <aw-confirm chase.com>][Date Mon, 02 Apr 2007 03:24:09 +0000]/UNNAMED/UNNAMED/UNNAMED Infected: Trojan-Spy.HTML.Chasfraud.u skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "Schwartz A. Kirsten" <aw-confirm chase.com>][Date Mon, 02 Apr 2007 03:24:09 +0000]/UNNAMED/UNNAMED Infected: Trojan-Spy.HTML.Chasfraud.u skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "Schwartz A. Kirsten" <aw-confirm chase.com>][Date Mon, 02 Apr 2007 03:24:09 +0000]/UNNAMED Infected: Trojan-Spy.HTML.Chasfraud.u skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "Branch Banking and Trust" <investigation-id459372ib bbt.com>][Date Fri, 23 Mar 2007 13:54:53 -0400]/UNNAMED/html Infected: Trojan-Spy.HTML.Bankfraud.ra skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "Branch Banking and Trust" <investigation-id459372ib bbt.com>][Date Fri, 23 Mar 2007 13:54:53 -0400]/UNNAMED/alien.gif Infected: Trojan-Spy.HTML.Bankfraud.ri skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx/[From "Branch Banking and Trust" <investigation-id459372ib bbt.com>][Date Fri, 23 Mar 2007 13:54:53 -0400]/UNNAMED Infected: Trojan-Spy.HTML.Bankfraud.ri skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{E38B60C8-F3E6-41BF-A165-7E8BABF840C9}\Microsoft\Outlook Express\Deleted Items.dbx Mail MS Outlook 5: infected - 10 skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\MSHist012007080720070808\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WCESLog.log Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\~DF5904.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\ntuser.dat Object is locked skipped
C:\Documents and Settings\Owner\ntuser.dat.LOG Object is locked skipped
C:\Program Files\crap\hijackthis\backup-20060816-225750-579 Suspicious: Exploit.HTML.Mht skipped
C:\Program Files\crap\hijackthis\backup-20060816-225752-327 Suspicious: Exploit.HTML.Mht skipped
C:\Program Files\crap\hijackthis\backup-20060816-225920-691 Infected: Exploit.HTML.Mht skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{CD53596A-5812-49DB-AF84-A72B9BECDE4F}\RP683\A0136334.exe Object is locked skipped
C:\System Volume Information\_restore{CD53596A-5812-49DB-AF84-A72B9BECDE4F}\RP683\A0136359.exe Object is locked skipped
C:\System Volume Information\_restore{CD53596A-5812-49DB-AF84-A72B9BECDE4F}\RP688\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\gmfrg.dll Infected: Trojan.Win32.Agent.rw skipped
C:\WINDOWS\Internet Logs\fwdbglog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\fwpktlog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\IAMDB.RDB Object is locked skipped
C:\WINDOWS\Internet Logs\PEZZ.ldb Object is locked skipped
C:\WINDOWS\Internet Logs\tvDebug.log Object is locked skipped
C:\WINDOWS\MEMORY.DMP Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{E23D6D53-95FE-4EB7-AB78-820A8841A954}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{FB4932AC-FD6C-4087-A528-76FCE0FB050C}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\ACEEvent.evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\drivers\dtscsi.sys Object is locked skipped
C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped
C:\WINDOWS\system32\drivers\sptd4861.sys Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\temp\Perflib_Perfdata_5a8.dat Object is locked skipped
C:\WINDOWS\temp\ZLT02d1d.TMP Object is locked skipped
C:\WINDOWS\temp\ZLT02d30.TMP Object is locked skipped
C:\WINDOWS\vkmpf.dll Infected: Trojan.Win32.Agent.rw skipped
C:\WINDOWS\vub.dll Infected: Trojan.Win32.Agent.rw skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
D:\System Volume Information\_restore{CD53596A-5812-49DB-AF84-A72B9BECDE4F}\RP688\change.log Object is locked skipped
I:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
J:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
K:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
K:\System Volume Information\_restore{CD53596A-5812-49DB-AF84-A72B9BECDE4F}\RP688\change.log Object is locked skipped
N:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
Scan process completed.
Attached Files
File Type: doc kapersky log.doc (148.0 KB, 1 views)
Last edited by sUBs; 08-07-2007 at 10:06 AM.
sidewaysup is offline