Tech Support Forum - View Single Post

BadmoJoe · 12-06-2005, 12:31 PM

That worked, here is the Kaspersky Log...

-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Tuesday, December 06, 2005 11:28:39
Operating System: Microsoft Windows XP Professional, Service Pack 1 (Build 2600)
Kaspersky On-line Scanner version: 5.0.67.0
Kaspersky Anti-Virus database last update: 6/12/2005
Kaspersky Anti-Virus database records: 153777
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: standard
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\

Scan Statistics:
Total number of scanned objects: 46705
Number of viruses found: 21
Number of infected objects: 44
Number of suspicious objects: 2
Duration of the scan process: 2320 sec

Infected Object Name - Virus Name
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\DyFuCAInternetOptimizer3.zip/install.exe Suspicious: Password-protected-EXE
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\DyFuCAInternetOptimizer3.zip Suspicious: Password-protected-EXE
C:\Documents and Settings\Lauren Kelley\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-24659d1d-2a5405f2.zip/A.class Infected: Exploit.Java.Bytverify
C:\Documents and Settings\Lauren Kelley\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-24659d1d-2a5405f2.zip Infected: Exploit.Java.Bytverify
C:\Documents and Settings\Lauren Kelley\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-3e7298f0-55d73068.zip/A.class Infected: Exploit.Java.Bytverify
C:\Documents and Settings\Lauren Kelley\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-3e7298f0-55d73068.zip Infected: Exploit.Java.Bytverify
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0ED102B8.exe/WISE0010.BIN Infected: Trojan-Downloader.Win32.TSUpdate.k
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0ED102B8.exe/WISE0011.BIN Infected: Trojan-Downloader.Win32.TSUpdate.j
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0ED102B8.exe/WISE0012.BIN Infected: Trojan-Downloader.Win32.TSUpdate.l
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0ED102B8.exe Infected: Trojan-Downloader.Win32.TSUpdate.l
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1B2D2AC5.exe Infected: Trojan-Downloader.Win32.Adload.a
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2F7234F4.exe Infected: Trojan-Downloader.Win32.Agent.oa
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3DDE5EC1.exe Infected: Trojan-Downloader.Win32.Dyfuca.ep
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\434A16B6.tmp Infected: Exploit.Java.Bytverify
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\58A52336.exe Infected: Trojan-Dropper.Win32.Agent.lu
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5F033585.exe Infected: Trojan-Downloader.Win32.Small.akz
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\60291CB6.exe Infected: Trojan.Win32.Small.cy
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\674937D1.tmp Infected: Exploit.Java.Bytverify
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6BFF2B3B.exe Infected: Trojan-Downloader.Win32.Apropo.ab
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C107D29.EXE/WISE0001.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C107D29.EXE/WISE0007.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C107D29.EXE Infected: Trojan-Downloader.Win32.TSUpdate.f
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C2A4D0C.exe Infected: Trojan.Win32.Pakes
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C302105.exe Infected: Trojan.Win32.Pakes
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C3774FE.exe Infected: Trojan-Downloader.Win32.TSUpdate.l
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C3A1EFA.exe Infected: Trojan-Downloader.Win32.TSUpdate.j
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C3D48F7.exe Infected: Trojan-Downloader.Win32.VB.eu
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C546EDE.exe/WISE0001.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C546EDE.exe/WISE0007.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C546EDE.exe Infected: Trojan-Downloader.Win32.TSUpdate.f
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C5E6CD3.exe Infected: Trojan-Downloader.Win32.Wintool.f
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\78D74A7D.exe Infected: Trojan-Downloader.Win32.Wintool.f
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044067.exe Infected: Trojan-Downloader.Win32.Delf.zw
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044336.exe Infected: Trojan-Downloader.Win32.Delf.zw
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044398.exe Infected: Trojan-Downloader.Win32.Delf.zw
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044408.exe Infected: Trojan-Downloader.Win32.Delf.zw
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044416.exe Infected: Trojan-Downloader.Win32.Delf.zw
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044456.exe Infected: Trojan-Downloader.Win32.Delf.zw
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061398.exe Infected: Trojan-Downloader.Win32.Agent.jq
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061465.exe Infected: Trojan-Dropper.Win32.Delf.ev
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061467.sys Infected: Trojan.Win32.Kolweb.g
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061468.sys Infected: Trojan.Win32.Kolweb.g
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061469.exe Infected: Trojan-Downloader.Win32.Lastad.r
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061470.exe Infected: Trojan.Win32.Kolweb.g
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061471.exe Infected: Trojan.Win32.Kolweb.g
C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP400\A0061535.exe Infected: Trojan-Downloader.Win32.Delf.zw

Scan process completed.

12-06-2005, 12:31 PM	#9 (permalink)
BadmoJoe Registered User Join Date: Nov 2005 Posts: 15 OS: XP	That worked, here is the Kaspersky Log... ------------------------------------------------------------------------------- KASPERSKY ON-LINE SCANNER REPORT Tuesday, December 06, 2005 11:28:39 Operating System: Microsoft Windows XP Professional, Service Pack 1 (Build 2600) Kaspersky On-line Scanner version: 5.0.67.0 Kaspersky Anti-Virus database last update: 6/12/2005 Kaspersky Anti-Virus database records: 153777 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: standard Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: C:\ D:\ Scan Statistics: Total number of scanned objects: 46705 Number of viruses found: 21 Number of infected objects: 44 Number of suspicious objects: 2 Duration of the scan process: 2320 sec Infected Object Name - Virus Name C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\DyFuCAInternetOptimizer3.zip/install.exe Suspicious: Password-protected-EXE C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\DyFuCAInternetOptimizer3.zip Suspicious: Password-protected-EXE C:\Documents and Settings\Lauren Kelley\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-24659d1d-2a5405f2.zip/A.class Infected: Exploit.Java.Bytverify C:\Documents and Settings\Lauren Kelley\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-24659d1d-2a5405f2.zip Infected: Exploit.Java.Bytverify C:\Documents and Settings\Lauren Kelley\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-3e7298f0-55d73068.zip/A.class Infected: Exploit.Java.Bytverify C:\Documents and Settings\Lauren Kelley\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-3e7298f0-55d73068.zip Infected: Exploit.Java.Bytverify C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0ED102B8.exe/WISE0010.BIN Infected: Trojan-Downloader.Win32.TSUpdate.k C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0ED102B8.exe/WISE0011.BIN Infected: Trojan-Downloader.Win32.TSUpdate.j C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0ED102B8.exe/WISE0012.BIN Infected: Trojan-Downloader.Win32.TSUpdate.l C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0ED102B8.exe Infected: Trojan-Downloader.Win32.TSUpdate.l C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1B2D2AC5.exe Infected: Trojan-Downloader.Win32.Adload.a C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2F7234F4.exe Infected: Trojan-Downloader.Win32.Agent.oa C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3DDE5EC1.exe Infected: Trojan-Downloader.Win32.Dyfuca.ep C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\434A16B6.tmp Infected: Exploit.Java.Bytverify C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\58A52336.exe Infected: Trojan-Dropper.Win32.Agent.lu C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5F033585.exe Infected: Trojan-Downloader.Win32.Small.akz C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\60291CB6.exe Infected: Trojan.Win32.Small.cy C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\674937D1.tmp Infected: Exploit.Java.Bytverify C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6BFF2B3B.exe Infected: Trojan-Downloader.Win32.Apropo.ab C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C107D29.EXE/WISE0001.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C107D29.EXE/WISE0007.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C107D29.EXE Infected: Trojan-Downloader.Win32.TSUpdate.f C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C2A4D0C.exe Infected: Trojan.Win32.Pakes C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C302105.exe Infected: Trojan.Win32.Pakes C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C3774FE.exe Infected: Trojan-Downloader.Win32.TSUpdate.l C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C3A1EFA.exe Infected: Trojan-Downloader.Win32.TSUpdate.j C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C3D48F7.exe Infected: Trojan-Downloader.Win32.VB.eu C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C546EDE.exe/WISE0001.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C546EDE.exe/WISE0007.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C546EDE.exe Infected: Trojan-Downloader.Win32.TSUpdate.f C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6C5E6CD3.exe Infected: Trojan-Downloader.Win32.Wintool.f C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\78D74A7D.exe Infected: Trojan-Downloader.Win32.Wintool.f C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044067.exe Infected: Trojan-Downloader.Win32.Delf.zw C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044336.exe Infected: Trojan-Downloader.Win32.Delf.zw C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044398.exe Infected: Trojan-Downloader.Win32.Delf.zw C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044408.exe Infected: Trojan-Downloader.Win32.Delf.zw C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044416.exe Infected: Trojan-Downloader.Win32.Delf.zw C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP384\A0044456.exe Infected: Trojan-Downloader.Win32.Delf.zw C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061398.exe Infected: Trojan-Downloader.Win32.Agent.jq C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061465.exe Infected: Trojan-Dropper.Win32.Delf.ev C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061467.sys Infected: Trojan.Win32.Kolweb.g C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061468.sys Infected: Trojan.Win32.Kolweb.g C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061469.exe Infected: Trojan-Downloader.Win32.Lastad.r C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061470.exe Infected: Trojan.Win32.Kolweb.g C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP399\A0061471.exe Infected: Trojan.Win32.Kolweb.g C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP400\A0061535.exe Infected: Trojan-Downloader.Win32.Delf.zw Scan process completed.