PS. The drive D was my old hard drive, which I only read the media file from it sometimes. So maybe we don't need to care about it?:spider:
-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Saturday, December 16, 2006 11:22:53 AM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 16/12/2006
Kaspersky Anti-Virus database records: 251262
-------------------------------------------------------------------------------
Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true
Scan Target - My Computer:
A:\
C:\
D:\
E:\
Scan Statistics:
Total number of scanned objects: 149815
Number of viruses found: 16
Number of infected objects: 49 / 0
Number of suspicious objects: 0
Duration of the scan process: 02:32:03
Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Network Associates\BOPDATA\_Date-20061216_Time-072737828_EnterceptExceptions.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Network Associates\BOPDATA\_Date-20061216_Time-072737828_EnterceptRules.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Network Associates\Common Framework\Db\Agent_CHIANG.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Network Associates\Common Framework\Db\PrdMgr_CHIANG.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Network Associates\VirusScan\AccessProtectionLog.txt Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Network Associates\VirusScan\BufferOverflowProtectionLog.txt Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Network Associates\VirusScan\OnAccessScanLog.txt Object is locked skipped
C:\Documents and Settings\Chiang\Application Data\Microsoft\Templates\Normal.dot Object is locked skipped
C:\Documents and Settings\Chiang\Application Data\Microsoft\Word\AutoRecovery save of Toms Revision of Jons Portfolio Changes Accepted.asd Object is locked skipped
C:\Documents and Settings\Chiang\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\cert8.db Object is locked skipped
C:\Documents and Settings\Chiang\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\formhistory.dat Object is locked skipped
C:\Documents and Settings\Chiang\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\history.dat Object is locked skipped
C:\Documents and Settings\Chiang\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\key3.db Object is locked skipped
C:\Documents and Settings\Chiang\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\parent.lock Object is locked skipped
C:\Documents and Settings\Chiang\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\search.sqlite Object is locked skipped
C:\Documents and Settings\Chiang\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\urlclassifier2.sqlite Object is locked skipped
C:\Documents and Settings\Chiang\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Chiang\Desktop\Antispyware\SmitfraudFix\SmitfraudFix\Reboot.exe Infected: not-a-virus:RiskTool.Win32.Reboot.f skipped
C:\Documents and Settings\Chiang\Desktop\Document\Software\SmitfraudFix.zip/SmitfraudFix/Reboot.exe Infected: not-a-virus:RiskTool.Win32.Reboot.f skipped
C:\Documents and Settings\Chiang\Desktop\Document\Software\SmitfraudFix.zip ZIP: infected - 1 skipped
C:\Documents and Settings\Chiang\Desktop\Personal statement.doc Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\Cache\_CACHE_001_ Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\Cache\_CACHE_002_ Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\Cache\_CACHE_003_ Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Application Data\Mozilla\Firefox\Profiles\o62pk7pl.default\Cache\_CACHE_MAP_ Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temp\~DF216A.tmp Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temp\~DF58E5.tmp Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temp\~DF6FAD.tmp Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temp\~DFA01.tmp Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temp\~DFDF5D.tmp Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temp\~WRF0000.tmp Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temp\~WRS0001.tmp Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temporary Internet Files\Content.IE5\7PNHN2NC\Toms Revision of Jons Portfolio Changes Accepted.doc Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temporary Internet Files\Content.IE5\7PNHN2NC\Toms Revision of Jons Portfolio.doc Object is locked skipped
C:\Documents and Settings\Chiang\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Chiang\ntuser.dat Object is locked skipped
C:\Documents and Settings\Chiang\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Mozilla Firefox\plugins\NPMyGlSh.dll Infected: not-a-virus:AdTool.Win32.MyWebSearch.i skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP310\A0093453.exe/data0015 Infected: not-a-virus:AdTool.Win32.MyWebSearch.ak skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP310\A0093453.exe/data0016 Infected: not-a-virus:AdTool.Win32.WhenU.a skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP310\A0093453.exe NSIS: infected - 2 skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP313\A0097655.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.l skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP313\A0097656.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.i skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP313\A0098523.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.ak skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP313\A0098570.dll Infected: not-a-virus:AdTool.Win32.MyWebSearch.ak skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP339\A0107939.exe Infected: Backdoor.Win32.Rbot.bry skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP339\A0107941.exe Infected: Backdoor.Win32.Rbot.bry skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP339\A0107970.exe/WISE0019.BIN/DAPShred.exe Infected: Backdoor.Win32.Rbot.bry skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP339\A0107970.exe/WISE0019.BIN/DAPTraceCleaner.exe Infected: Backdoor.Win32.Rbot.bry skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP339\A0107970.exe/WISE0019.BIN Infected: Backdoor.Win32.Rbot.bry skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP339\A0107970.exe WiseSFX: infected - 3 skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP339\A0107970.exe WiseSFX Dropper: infected - 3 skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP339\A0107986.exe Infected: Backdoor.Win32.Rbot.bry skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP339\A0107987.exe Infected: Backdoor.Win32.Rbot.bry skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP340\A0112563.dll Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP341\A0113653.dll Infected: Trojan.Win32.BHO.g skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP344\A0115134.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\System Volume Information\_restore{64E3B9E7-AAAC-4D02-A47B-0020DF6F05EE}\RP345\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{2D1B0674-8EAC-4FEC-B4BB-C159D3FCC4D7}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
C:\WINDOWS\{00000001-00000000-00000007-00001102-00000004-20021102}.CDF Object is locked skipped
D:\WINDOWS\$NtUninstallKB828741$\mtxoci.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB828741$\ole32.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB828741$\rpcrt4.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB828741$\rpcss.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB828741$\txflog.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\browser.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\callcont.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\cmdevtgprov.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\evtgprov.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\gdi32.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\h323.tsp Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\h323msp.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\helpctr.exe Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\ipnathlp.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\lsasrv.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\mf3216.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\msasn1.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\msgina.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\mst120.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\netapi32.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\nmcom.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\rtcdll.dll Object is locked skipped
D:\WINDOWS\$NtUninstallKB835732$\schannel.dll Object is locked skipped
You don't seem to a firewall running, you must install one firewall. NOTE: If you're using Windows XP firewall, I recommend that you install a better firewall. Windows firewall doesn't really provide enough protection.
Disable Windows firewall after installing a new firewall.
Stand Up and Be Counted !
The site offers people who have been (or are) victims of malware the opportunity to document their story and, in that way, launch a complaint against the malware and the makers of the malware.
As the problem appears to be resolved this topic has been archived.
If you need it re-opened please send a private message (pm) to a forum staff member and provide a link to the thread; this applies only to the original topic starter.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.
: