Welcome to Tech Support Forum home to more then 136,000 problems solved. Issues have included: Spyware, Malware, Virus Issues, Windows, Microsoft, Linux, Networking, Security, Hardware, and Gaming Getting your problem solved is as easy as:
1. Registering for a free account
2. Asking your question
3. Receiving an answer

Registered members:
* Get free support
* Communicate privately with other members (PM).
* Removal of this message
* See fewer ads.
* And much more..

 


Want to know how to post a question? click here Having problems with spyware and pop-ups? First Steps
Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help > Resolved HJT Threads
Reload this Page help i´ve got problem with a virus!!
User Name
Password
Site Map Register Donate Rules Blogs Mark Forums Read


Resolved HJT Threads Resolved spyware and popup issues.

 
 
LinkBack Thread Tools
Old 01-06-2006, 02:45 PM   #1 (permalink)
Registered User
 
Join Date: Jan 2006
Posts: 4
OS: windows XP


help i´ve got problem with a virus!!
Logfile of HijackThis v1.99.1
Scan saved at 22:37:00, on 2006-01-06
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program\Delade filer\Symantec Shared\ccSetMgr.exe
C:\Program\Delade filer\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program\Delade filer\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program\Delade filer\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program\Norton AntiVirus\navapsvc.exe
C:\Program\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program\Norton AntiVirus\AdvTools\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program\Delade filer\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program\Winamp\winampa.exe
C:\Program\Delade filer\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program\ICQLite\ICQLite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program\Messenger\msmsgs.exe
C:\Program\Skype\Phone\Skype.exe
C:\WINDOWS\System32\svchost.exe
C:\hijack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program\Norton AntiVirus\NavShExt.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\Program\FlashFXP\IEFlash.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WinampAgent] C:\Program\Winamp\winampa.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program\Delade filer\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Advanced Tools Check] C:\Program\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\Program\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [ICQ Lite] C:\Program\ICQLite\ICQLite.exe -minimize
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Program\ICQLite\ICQLite.exe -trayboot
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1135459245530
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1135460052748
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program\Delade filer\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program\Delade filer\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program\Delade filer\Symantec Shared\ccSetMgr.exe
O23 - Service: Norton AntiVirus Auto Protect-tjänst (navapsvc) - Symantec Corporation - C:\Program\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program\Norton AntiVirus\AdvTools\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\Program\DELADE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program\Delade filer\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program\Delade filer\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program\Delade filer\Symantec Shared\CCPD-LC\symlcsvc.exe




i got instructions to send this with the forumpost i don´t know how to remove the virus so help will be appreciated.

thanks!
cccp is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Important Information
Join the #1 Tech Support Forum Today - It's Totally Free!

TechSupportForum.com is a leading support website for your computer needs. We offer free, friendly and personalized computer support. Why pay to have your computer fixed when you can do it for free.

Join TechSupportforum.com Today - Click Here

Old 01-06-2006, 04:21 PM   #2 (permalink)
Asst Manager Security, Expert Analyst, Moderator, Security Team; Rangemaster, Moderator, TSF Academy
 
sUBs's Avatar
 
Join Date: May 2005
Posts: 24,333
OS: N/A


Quote:
help i´ve got problem with a virus!!
That does not give us much to go by. You'll have to be more descriptive about your problem.

Please perform an online scan with Internet Explorer at Kaspersky Online Scanner

Answer Yes, when prompted to install an ActiveX component.
  • The program will then begin downloading the latest definition files.
  • Once the files have been downloaded click on NEXT
  • Locate the Scan Settings button & configure to:
    • Scan using the following Anti-Virus database:
      • Extended
    • Scan Options:
      • Scan Archives
      • Scan Mail Bases
  • Click OK & have it scan My Computer
  • Once the scan is complete, it will display if your system has been infected. It does not provide an option to clean/disinfect. We only require a report from it.
  • Click the Save as Text button to save the file to your desktop so that you may post it in your next reply
* Turn off the real time scanner of any existing antivirus program while performing the online scan
__________________

Question - what have you done for the community today?
sUBs is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 01-07-2006, 08:01 AM   #3 (permalink)
Registered User
 
Join Date: Jan 2006
Posts: 4
OS: windows XP


-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Saturday, January 07, 2006 15:59:17
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version: 5.0.67.0
Kaspersky Anti-Virus database last update: 7/01/2006
Kaspersky Anti-Virus database records: 159291
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: standard
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\
F:\
G:\
H:\
I:\

Scan Statistics:
Total number of scanned objects: 73217
Number of viruses found: 5
Number of infected objects: 186
Number of suspicious objects: 0
Duration of the scan process: 8142 sec

Infected Object Name - Virus Name
C:\Documents and Settings\sami2100\Lokala inställningar\Temporary Internet Files\Content.IE5\AVXOUQ0T\prompt[1].htm Infected: Trojan-Downloader.JS.IstBar.j
C:\Program\Norton AntiVirus\Quarantine\0B9D3557.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0BA7334C.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0BB13141.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0BCB0125.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0C0674E4.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0C1646D2.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0C2A42BC.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0C3340B2.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0C570E8A.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0C715E6D.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0C7E065F.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0C880454.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0C920249.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D0E3DC1.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D2239AB.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D320B99.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D493180.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D532F75.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D5D2D6B.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D662B60.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D735351.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D8A7938.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0D94772E.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0DD214E9.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0E2E2C85.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0E372A7A.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0E41286F.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0E4E5061.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0E624C4B.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0E754836.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0E7F462B.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0E894420.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0E934215.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0EA63E00.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0EC00DE3.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0ECE35D5.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0ED733CA.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0EE805B8.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0EF103AD.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F057F97.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F0F7D8D.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F262374.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F302169.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F407357.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F536F41.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F611733.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F6E3F24.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F84650B.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0F8E6301.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0FAC5CE0.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0FD354B5.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\0FEA7A9C.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10044A7F.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\101E1A62.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\102B4254.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\105C381E.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10663613.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10760801.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10832FF3.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\109D7FD6.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10AE51C4.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10B74FB9.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10CB4BA4.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10DF478E.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10EC6F80.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\10F56D75.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\114A3118.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\11575909.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\117552E9.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\11884ED3.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\119F74BA.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\11AC1CAC.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\11B61AA1.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\11D06A84.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\11DD1276.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\11F10E61.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\120B5E44.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\121B3032.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\12285823.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\128E6DB4.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\12BF637E.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\12CF356C.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\12E33157.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\12F62D41.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\13142721.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\131D2516.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\132E7704.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\13451CEB.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\13556ED9.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\136540C7.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\137C66AE.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\13C72C5B.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\143D13DA.eXe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\144D65C8.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\145763BD.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\14640BAF.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\14745D9D.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\148E2D80.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\14C67743.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\14D64931.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\15DB6811.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\15E81003.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\16E430EE.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\16F158E0.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\16FE00D1.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\17127CBC.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\172922A3.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\173C1E8D.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1AD80894.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1AF60274.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1B3A7428.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1B54440C.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1B5E4201.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1B723DEB.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1B8C0DCF.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1B9F09B9.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1BBD0399.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1BDE2775.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1BF1235F.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1C084946.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1C1C4530.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1C5064F7.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1C5A62EC.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1C6D5ED7.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1CD61E64.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1CE91A4E.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1CFD1638.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1D0A3E2A.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1D3135FF.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1D582DD4.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1D6555C5.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1D6F53BB.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1D932193.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1DAA477A.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1DBE4364.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1DD81348.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1DF2632B.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1DF83724.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1E163103.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1E2602F1.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1E3654DF.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1E4726CD.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1E5E4CB4.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1E6B74A6.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1E74729B.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1EAF665A.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\1EBC0E4C.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\3F092E3C.htm Infected: Trojan-Downloader.JS.IstBar.z
C:\Program\Norton AntiVirus\Quarantine\49AE76E3.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\50B60B97.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\50F42953.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\51227520.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\515D68E0.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\518460B5.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\51A50491.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\51C5286D.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\51E64C49.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\524163E4.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\527C57A4.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\52A34F78.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\52D86F3F.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\539F7064.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\53D3102A.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\540405F4.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\544223B0.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\547A6D73.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\55995C37.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\569E7B17.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\56B27702.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\56F33EBA.EXE Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\572E3279.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\58092F88.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\58FA527E.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\59281E4C.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\5FA61927.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\5FA94323.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\5FD13AF8.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\606D1A4C.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\60714448.exe Infected: Virus.Win32.Tenga.a
C:\Program\Norton AntiVirus\Quarantine\6797683D.exe Infected: Virus.Win32.Tenga.a
F:\deg\bilder\Hangover.exe Infected: not-virus:BadJoke.Win16.Aloap
F:\deg\bilder\win98.exe Infected: not-virus:BadJoke.Win16.Aloap
F:\supernova\program\!Winamp.Pro.v5.05.Incl.Keygen-CORE.rar/keygen_winamp.exe Infected: Trojan-Dropper.Win32.Delf.fd
F:\supernova\program\!Winamp.Pro.v5.05.Incl.Keygen-CORE.rar Infected: Trojan-Dropper.Win32.Delf.fd
F:\supernova\WinRAR.v3.41.Final.Incl.Working.Key\WRAR341.EXE Infected: Trojan-Dropper.Win32.Delf.fd

Scan process completed.
ah what sud i do
cccp is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 01-07-2006, 08:13 AM   #4 (permalink)
Asst Manager Security, Expert Analyst, Moderator, Security Team; Rangemaster, Moderator, TSF Academy
 
sUBs's Avatar
 
Join Date: May 2005
Posts: 24,333
OS: N/A


Hello and Welcome. Please subscribe to this thread to get immediate notification of replies as soon as they are posted.

Please read this post completely before begining the fix. If there's anything that you do not understand, kindly ask your questions before proceeding. Please ensure that there aren't any any opened browsers when you are carrying out the procedures below. Save the following instructions in Notepad as this webpage would not be available when you're carrying out the fix.


* * * * * * ADDITIONAL DOWNLOADS * * * * * * * * * * * * * *


Download & install - CleanUp.exe (not recommended for WinXP64)

Right click on this & choose "Save As..." DelO15Domains.inf - DelO15Domains.inf
Right click on DelO15Domains.inf and choose Install. It will run immediately (you won't be able to see anything happen). You may delete the file afterwards.

Host.zip - From within Host.zip, double click on MVPS.bat & allow it to run.

Right click on this & select 'Save As' - DNSManual.bat
Doubleclick on DNSManual.bat & allow it to run.

SpywareBlaster 3.5.1
Install & update SpywareBlaster with the latest definitions.
After you have updated, click the button - enable protection for all unprotected items

IE-SpyAD - Extract the contents to a new folder
From within the folder, double-click install.bat
Select Option #2 - Install the new IE-SPYAD list.
Then return to the main menu.
Select option #4 - Add the old porn sites domain

'UNPLUG'/DISCONNECT your computer from the Internet when you have finished downlaoding.
It is IMPORTANT that you don't miss a step & perform everything in the correct order.


* * * * * * DELETING FILES/FOLDERS * * * * * * * * * * * * * * *


If you have not done so already, please enable the viewing of Hidden files
From Windows Explorer, go to Tools -> Folder Options -> View tab.
  • Tick - 'Show hidden files and folder'
  • Untick - 'Hide file extensions for known types'
  • Untick - 'Hide protected operating system files'
  • Click Yes to confirm & then click OK
Locate and delete the following files/folders: (let me know if you fail to find/delete any)
  • F:\deg\bilder\Hangover.exe
    F:\deg\bilder\win98.exe
    F:\supernova\program\!Winamp.Pro.v5.05.Incl.Keygen-CORE.rar
    F:\supernova\WinRAR.v3.41.Final.Incl.Working.Key\WRAR341.EXE

Delete the contents of the folder, leaving it empty

C:\Program\Norton AntiVirus\Quarantine\


* * * * * * PURGING TEMP FOLDERS * * * * * * * * * * * * * * *


Run Cleanup! using the following configuration:

1. Click Options...
2. Set the slider initially to Standard CleanUp!
3. Uncheck the following:
  • Delete Newsgroup cache
  • Delete Newsgroup Subscriptions
  • Scan local drives for temporary files
4. Click OK
5. Press the CleanUp! button to start the program.
6. Do NOT reboot/logoff if prompted.

* CleanUp! will not create any backups!!


In your next reply, please post a fresh HiJackThis log & update us on how the computer behaves now
__________________

Question - what have you done for the community today?
sUBs is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 01-07-2006, 04:27 PM   #5 (permalink)
Registered User
 
Join Date: Jan 2006
Posts: 4
OS: windows XP


the virus is still there. i have norton but he take not care of the virus
cccp is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 01-08-2006, 02:05 AM   #6 (permalink)
Asst Manager Security, Expert Analyst, Moderator, Security Team; Rangemaster, Moderator, TSF Academy
 
sUBs's Avatar
 
Join Date: May 2005
Posts: 24,333
OS: N/A


Quote:
Originally Posted by cccp
the virus is still there. i have norton but he take not care of the virus
Please elaborate. Tell me what Norton is finding

Also post the HJT log I requested earlier
__________________

Question - what have you done for the community today?
sUBs is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 01-08-2006, 10:22 AM   #7 (permalink)
Registered User
 
Join Date: Jan 2006
Posts: 4
OS: windows XP


i throw away norton. and put in kaspersky insted now the machine is clean thanks a lot for the help
cccp is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
 

« Previous Thread | Next Thread »

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



All times are GMT -7. The time now is 03:17 PM.

Contact Us - Tech Support Forum - Archive - Privacy Statement - Top


Copyright 2001 - 2009, Tech Support Forum
Home Tips Plus | Outdoor Basecamp | Automotive Support Forum

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85