Home   News  Product reviews  Website reviews  Forums   Competitions  Subscribe 
Search
You are not logged in.
Login | New user registration 		Main Index | Search | Active Topics | Who's Online | FAQ / HELP

Security >> HijackThis logs help and analysis
Previous thread Previous   View all threads Index   Next thread Next   Flat Mode Flat  

 |  Print Thread
arnie70
regular


Reg'd: Sat
Posts: 44
Re: Pop-ups - Vundo?
      Mon Mar 31 2008 12:09 PM
Reply to this post Reply   Reply to this post Quote  

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Monday, March 31, 2008 12:06:50 PM
Operating System: Microsoft Windows XP Home Edition, Service Pack 3, v.3300 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 31/03/2008
Kaspersky Anti-Virus database records: 674175
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\
F:\
G:\
H:\
I:\
J:\

Scan Statistics:
Total number of scanned objects: 100699
Number of viruses found: 6
Number of infected objects: 18
Number of suspicious objects: 0
Duration of the scan process: 01:15:20

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Support\MPLog-03292008-102649.log Object is locked skipped
C:\Documents and Settings\Dad\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\Application Data\Microsoft\Windows Defender\FileTracker\{A1CFD46A-8281-4865-A9AE-7A638476020F} Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\History\History.IE5\MSHist012008033120080401\index.dat Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\Temp\~DF6042.tmp Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\Temp\~DF60C3.tmp Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\Temp\~DFCEFA.tmp Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\Temp\~DFCF05.tmp Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\Temporary Internet Files\Content.IE5\GVTDOZ9E\BurstingInteractionsPipe[2].htm Object is locked skipped
C:\Documents and Settings\Dad\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Dad\My Documents\Ticket Applications.xlsx Object is locked skipped
C:\Documents and Settings\Dad\My Documents\~$Ticket Applications.xlsx Object is locked skipped
C:\Documents and Settings\Dad\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Dad\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\log\log_main.txt Object is locked skipped
C:\Program Files\ESET\cache\CACHE.NDB Object is locked skipped
C:\Program Files\ESET\logs\virlog.dat Object is locked skipped
C:\Program Files\ESET\logs\warnlog.dat Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{A90404E0-6CDB-4045-9EFB-0C5E7812F581}\RP138\A0030231.EXE/data0000.cab/is152061.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{A90404E0-6CDB-4045-9EFB-0C5E7812F581}\RP138\A0030231.EXE/data0000.cab Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{A90404E0-6CDB-4045-9EFB-0C5E7812F581}\RP138\A0030231.EXE Rsrc-Package: infected - 2 skipped
C:\System Volume Information\_restore{A90404E0-6CDB-4045-9EFB-0C5E7812F581}\RP140\A0030330.old Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{A90404E0-6CDB-4045-9EFB-0C5E7812F581}\RP140\A0030343.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.lry skipped
C:\System Volume Information\_restore{A90404E0-6CDB-4045-9EFB-0C5E7812F581}\RP140\A0030346.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.lsa skipped
C:\System Volume Information\_restore{A90404E0-6CDB-4045-9EFB-0C5E7812F581}\RP140\A0030348.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.lrz skipped
C:\System Volume Information\_restore{A90404E0-6CDB-4045-9EFB-0C5E7812F581}\RP141\change.log Object is locked skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\IRC\MIRC.v6.3.Incl.KeyMaker.and.AuthPatch-DVT\dv8b1mi1.zip/d-000mi.rar/DVT.rar/Setup/mirc63.exe/stream/data0001/stream/data0014 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\IRC\MIRC.v6.3.Incl.KeyMaker.and.AuthPatch-DVT\dv8b1mi1.zip/d-000mi.rar/DVT.rar/Setup/mirc63.exe/stream/data0001/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\IRC\MIRC.v6.3.Incl.KeyMaker.and.AuthPatch-DVT\dv8b1mi1.zip/d-000mi.rar/DVT.rar/Setup/mirc63.exe/stream/data0001 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\IRC\MIRC.v6.3.Incl.KeyMaker.and.AuthPatch-DVT\dv8b1mi1.zip/d-000mi.rar/DVT.rar/Setup/mirc63.exe/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\IRC\MIRC.v6.3.Incl.KeyMaker.and.AuthPatch-DVT\dv8b1mi1.zip/d-000mi.rar/DVT.rar/Setup/mirc63.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\IRC\MIRC.v6.3.Incl.KeyMaker.and.AuthPatch-DVT\dv8b1mi1.zip/d-000mi.rar/DVT.rar Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\IRC\MIRC.v6.3.Incl.KeyMaker.and.AuthPatch-DVT\dv8b1mi1.zip/d-000mi.rar Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\IRC\MIRC.v6.3.Incl.KeyMaker.and.AuthPatch-DVT\dv8b1mi1.zip ZIP: infected - 7 skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\Ripping\freeripmp3.exe/file27 Infected: not-a-virus:AdTool.Win32.MyWebSearch.br skipped
C:\Torrent Downloads\What.CD Toolbox - Windows 2.0\Ripping\freeripmp3.exe Inno: infected - 1 skipped
C:\VundoFix Backups\rqRHxwVL.dll.bad Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\S0EC62360.tmp Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\ODiag.evt Object is locked skipped
C:\WINDOWS\system32\config\OSession.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped

Scan process completed.

Post Extras Print Post   Remind Me!     Notify Moderator
Rate this thread

Jump to


Entire topic
Subject Posted by Posted on
* Pop-ups - Vundo? arnie70 Sat Mar 29 2008 10:24 AM
. * * Re: Pop-ups - Vundo? ourwilly   Sat Mar 29 2008 07:35 PM
. * * Re: Pop-ups - Vundo? arnie70   Sun Mar 30 2008 09:47 AM
. * * Re: Pop-ups - Vundo? ourwilly   Sun Mar 30 2008 11:06 AM
. * * Re: Pop-ups - Vundo? arnie70   Sun Mar 30 2008 01:59 PM
. * * Re: Pop-ups - Vundo? ourwilly   Sun Mar 30 2008 09:49 PM
. * * Re: Pop-ups - Vundo? arnie70   Mon Mar 31 2008 12:09 PM
. * * Re: Pop-ups - Vundo? ourwilly   Mon Mar 31 2008 04:28 PM
. * * Re: Pop-ups - Vundo? arnie70   Mon Mar 31 2008 05:48 PM
. * * Re: Pop-ups - Vundo? ourwilly   Mon Mar 31 2008 06:43 PM
. * * Re: Pop-ups - Vundo? arnie70   Mon Mar 31 2008 07:36 PM

Extra information
1 registered and 21 anonymous users are browsing this forum.

Moderator:  putasolutions, greysts, bricat, AndrewC, Joe_London, John_McKenna, Mouse, Hello_There, TheFatControlleR, Nanook, Noviciate 


Print Thread
Forum Permissions
      You cannot start new topics
      You cannot reply to topics
      HTML is disabled
      Mark-up is enabled

Rating:
Thread views: 0

Contact Us | Privacy statement Main website
Hitwise Top 10 Award Winner - Jan-Mar 2005

About us | Contact us | Link to us | Terms & Conditions | Privacy Policy
© Copyright IPC Media Limited, All rights reserved