PDA

View Full Version : Kaspersky found 10 viruses and 47 infections, please help



rawley3
2008-03-20, 09:11
Hi, I ran HJT and then Kaspersky itfound 10 viruses and 47 infections, my wireless on my laptop and AVG antivirus has stopped working, could someone please help to fix, log attached
KASPERSKY ONLINE SCANNER REPORT
Thursday, March 20, 2008 7:00:31 AM
Operating System: Microsoft Windows Vista Home Edition, (Build 6000)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 19/03/2008
Kaspersky Anti-Virus database records: 641582
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\
E:\
F:\

Scan Statistics:
Total number of scanned objects: 160407
Number of viruses found: 10
Number of infected objects: 47
Number of suspicious objects: 0
Duration of the scan process: 01:36:23

Infected Object Name / Virus Name / Last Action
C:\boot\bcd Object is locked skipped
C:\boot\BCD.LOG Object is locked skipped
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe Infected: Trojan-Downloader.Win32.Bagle.lc skipped
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c3b4c8c47e02a4b2bdd6048a73dc665b_722ea92b-97c8-4fc8-84d6-258354261fc3 Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\Users\Blackjack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ABKXBPNR\b64_1[1].jpg Infected: Trojan.Win32.Pakes.ciw skipped
C:\Users\Blackjack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ABKXBPNR\b64_2[1].jpg Infected: Email-Worm.Win32.Bagle.sz skipped
C:\Users\Blackjack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DFPEJBB2\b64_1[1].jpg Infected: Trojan.Win32.Pakes.ciw skipped
C:\Users\Blackjack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DFPEJBB2\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Blackjack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DFPEJBB2\b64_31[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Users\Blackjack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DLKXMN6G\b64_2[1].jpg Infected: Email-Worm.Win32.Bagle.sz skipped
C:\Users\Blackjack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWNOHA9I\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Blackjack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWNOHA9I\b64_31[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Users\Blackjack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VOC9CXLJ\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Blackjack\AppData\Local\Temp\bisE7FD.exe Infected: Trojan.Win32.Obfuscated.en skipped
C:\Users\Blackjack\AppData\Local\Temp\temp_01.exe Infected: Trojan.Win32.Agent.ftz skipped
C:\Windows\bthservsdp.dat Object is locked skipped
C:\Windows\Debug\PASSWD.LOG Object is locked skipped
C:\Windows\Debug\sam.log Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\ntuser.dat Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1 Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG2 Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT{3a539869-6a70-11db-887c-d362bd253390}.TM.blf Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT{3a539869-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT{3a539869-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1 Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG2 Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{3a539865-6a70-11db-887c-d362bd253390}.TM.blf Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{3a539865-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{3a539865-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped
C:\Windows\System32\catroot2\edb.log Object is locked skipped
C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb Object is locked skipped
C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb Object is locked skipped
C:\Windows\System32\config\components Object is locked skipped
C:\Windows\System32\config\COMPONENTS.LOG1 Object is locked skipped
C:\Windows\System32\config\COMPONENTS.LOG2 Object is locked skipped
C:\Windows\System32\config\default Object is locked skipped
C:\Windows\System32\config\DEFAULT.LOG1 Object is locked skipped
C:\Windows\System32\config\DEFAULT.LOG2 Object is locked skipped
C:\Windows\System32\config\RegBack\COMPONENTS Object is locked skipped
C:\Windows\System32\config\RegBack\DEFAULT Object is locked skipped
C:\Windows\System32\config\RegBack\SAM Object is locked skipped
C:\Windows\System32\config\RegBack\SECURITY Object is locked skipped
C:\Windows\System32\config\RegBack\SOFTWARE Object is locked skipped
C:\Windows\System32\config\RegBack\SYSTEM Object is locked skipped
C:\Windows\System32\config\sam Object is locked skipped
C:\Windows\System32\config\SAM.LOG1 Object is locked skipped
C:\Windows\System32\config\SAM.LOG2 Object is locked skipped
C:\Windows\System32\config\security Object is locked skipped
C:\Windows\System32\config\SECURITY.LOG1 Object is locked skipped
C:\Windows\System32\config\SECURITY.LOG2 Object is locked skipped
C:\Windows\System32\config\software Object is locked skipped
C:\Windows\System32\config\SOFTWARE.LOG1 Object is locked skipped
C:\Windows\System32\config\SOFTWARE.LOG2 Object is locked skipped
C:\Windows\System32\config\system Object is locked skipped
C:\Windows\System32\config\SYSTEM.LOG1 Object is locked skipped
C:\Windows\System32\config\SYSTEM.LOG2 Object is locked skipped
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\MSIMGSIZ.DAT Object is locked skipped
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat Object is locked skipped
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012008031920080320\index.dat Object is locked skipped
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat Object is locked skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TM.blf Object is locked skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped
C:\Windows\System32\drivers\down\101619.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\108171.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\115003.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\1225855.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\127421.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\128404.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\128825.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\15033738.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\151305.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\153723.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\160883.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\161164.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\177404.exe Infected: Trojan.Win32.Pakes.bwy skipped
C:\Windows\System32\drivers\down\182380.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\2290141.exe Infected: Trojan-PSW.Win32.Agent.xd skipped
C:\Windows\System32\drivers\down\2305304.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\29974484.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\29994811.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\309849.exe Infected: Trojan-PSW.Win32.Agent.xd skipped
C:\Windows\System32\drivers\down\328054.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\44579360.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\448892.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\464071.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\648433.exe Infected: Trojan-PSW.Win32.Agent.xd skipped
C:\Windows\System32\drivers\down\661818.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\679197.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\743032.exe Infected: Trojan.Win32.Pakes.ciw skipped
C:\Windows\System32\drivers\down\763063.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\954523.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\drivers\down\961574.exe Infected: Trojan.Win32.Pakes.bwy skipped
C:\Windows\System32\drivers\hldrrr.exe Infected: Trojan-Downloader.Win32.Bagle.lc skipped
C:\Windows\System32\drivers\srosa.sys Infected: Trojan-Downloader.Win32.Bagle.ky skipped
C:\Windows\System32\LogFiles\Scm\SCM.EVM Object is locked skipped
C:\Windows\System32\mdelk.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\Windows\System32\wbem\Logs\WMITracing.log Object is locked skipped
C:\Windows\System32\wbem\repository\INDEX.BTR Object is locked skipped
C:\Windows\System32\wbem\repository\MAPPING1.MAP Object is locked skipped
C:\Windows\System32\wbem\repository\MAPPING2.MAP Object is locked skipped
C:\Windows\System32\wbem\repository\OBJECTS.DATA Object is locked skipped
C:\Windows\System32\WDI\LogFiles\WdiContextLog.etl.002 Object is locked skipped
C:\Windows\System32\wfp\wfpdiag.etl Object is locked skipped
C:\Windows\System32\winevt\Logs\Application.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\DFS Replication.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\HardwareEvents.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Internet Explorer.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Key Management Service.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Media Center.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DriverFrameworks-UserMode%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkAccessProtection%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Security.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\System.evtx Object is locked skipped
C:\Windows\System32\WinSecure.exe Infected: P2P-Worm.Win32.Archivarius.a skipped
C:\Windows\System32\wintems.exe Infected: Email-Worm.Win32.Bagle.of skipped
D:\System Volume Information\Desktop.ini Object is locked skipped
D:\System Volume Information\Folder.htt Object is locked skipped
D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
D:\System Volume Information\Protect.ed Object is locked skipped

Scan process completed.

__RiP_ChAiN_
2008-03-30, 03:36
Hello rawley3,

Sorry for the delay in replying to you.

Could you please post the HijackThis log, as well?

__RiP_ChAiN_
2008-04-05, 02:53
Due to inactivity, this thread will now be closed.

Note:If it has been five days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread.

If it has been less than five days since your last response and you need the thread re-opened, please send me a private message (pm). A valid, working link to the closed topic is required.