Content Top
DAL Computer Help » Internet Security Help » Spyware, Adware, Viruses and HijackThis Logs » Help, How to I get rid of these viruses???

Recommended Fix

Click here to fix Windows Errors and Optimize Windows Performance

Need Computer Help?
Register Now for FREE

Help, How to I get rid of these viruses???

Reply
Thread Tools
Spyware, Adware, Viruses and HijackThis Logs
  #1 (permalink)  
Old 19-08-2006, 12:26 AM
Newbie
D-A-L Newbie
  
Join Date: Aug 2006
Posts: 2
mjlopinto1 Is a beginner here at D-A-L
Exclamation Help, How to I get rid of these viruses???
I completed a BitDefender scan and these viruses were found. How do I delete them??



Scanned File
Status

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C6F6C78.htm=>(Quarantine-2)
Infected with: JS.Trojan.Downloader.IstBar.M

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C6F6C78.htm=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C6F6C78.htm=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1ACF4520.dll=>(Quarantine-2)
Infected with: Trojan.Downloader.Keenval.E

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1ACF4520.dll=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1ACF4520.dll=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6AEF78FD.htm=>(Quarantine-2)
Infected with: JS.Trojan.Downloader.IstBar.M

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6AEF78FD.htm=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6AEF78FD.htm=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6AEF78FD.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.IstBar.JA

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6AEF78FD.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe=>wise0014
Infected with: Trojan.Dloader.HK

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe=>wise0014
Disinfection failed

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe=>wise0014
Deleted

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe
Update failed

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe=>wise0015
Infected with: Dropped:Application.Adware.NewDotNet.A

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe=>wise0015
Disinfection failed

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe=>wise0015
Deleted

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe
Update failed

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe=>wise0016
Infected with: Trojan.Dropper.Small.JH

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe=>wise0016
Disinfection failed

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe=>wise0016
Deleted

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe
Update failed
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 19-08-2006, 05:11 AM
VopThis's Avatar
Senior Member (Canada)
  
Join Date: Nov 2005
Posts: 3,439
VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!
Re: Help, How to I get rid of these viruses???
Are you certain that the items of interest weren't properly addressed or deleted? Do you have any of those items that have returned? If they have, please post a HijackThis log that may help to identify reinfection agents, etc.

Note that Bitdefender is quite verbose in its feedback - it normally takes 3 lines as follows to 1) list an infection item, 2) state whether disinfection or other action took place, and 3) state any alternate action that was taken as a last attempt such as item deletion and/or whether an updated clean version was obtainable (extractable from a ZIP file, for example):
Quote:
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C6F6C78.htm=>(Quarantine-2)
Infected with: JS.Trojan.Downloader.IstBar.M

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C6F6C78.htm=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C6F6C78.htm=>(Quarantine-2)
Deleted
__________________
Vincent P

MALWARE: READ FIRST Procedures:
|_ SpyBot V1.5 _|_ HijackThis LOG __V2.0.2 _|

__
ASAP: promoting a high standard and quality of security support no matter where you seek help.

Quote:
SAFER SURFING TOOLS (IE/FF **FREE** browser addons):
Linkscanner + WOT (Web of Trust) + SiteAdvisor (suggest at least two but not necessarily all)
Quote:
Tell me and I forget; show me and I remember; involve me and I understand.
There are no foolish questions, the only thing foolish is not asking if you're unsure of something.
Never ASSUME any detail because it can make an ASS out of U and ME... (ASS/U/ME ).
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 19-08-2006, 08:38 PM
Newbie
D-A-L Newbie
  
Join Date: Aug 2006
Posts: 2
mjlopinto1 Is a beginner here at D-A-L
Re: Help, How to I get rid of these viruses???
They all keep coming up in scans.

Quote:
Originally Posted by VopThis
Are you certain that the items of interest weren't properly addressed or deleted? Do you have any of those items that have returned? If they have, please post a HijackThis log that may help to identify reinfection agents, etc.

Note that Bitdefender is quite verbose in its feedback - it normally takes 3 lines as follows to 1) list an infection item, 2) state whether disinfection or other action took place, and 3) state any alternate action that was taken as a last attempt such as item deletion and/or whether an updated clean version was obtainable (extractable from a ZIP file, for example):
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #4 (permalink)  
Old 20-08-2006, 03:46 PM
VopThis's Avatar
Senior Member (Canada)
  
Join Date: Nov 2005
Posts: 3,439
VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!
Re: Help, How to I get rid of these viruses???
Clean out your Norton quarantine area.


Run the following tool in SAFE MODE when requested below:

Quote:
Clean out TEMPORARY FILES:
To clean your temp folder, recycle bin, etc..please download this free tool:

CCleaner http://www.ccleaner.com/downloadbuilds.asp

Install Options:
  • Don't install any Toolbars, or other programs, should it ask you!
  • Just uncheck the option of installing the Yahoo toolbar.

It will put a shortcut on your Desktop.

Select the ‘Cleaner’ BUTTON option (top LEFT), if not already selected. Use the ’Windows’ TAB up front by default.
  • Uncheck ‘Cookies’ option (advisable)
  • Optionally, Uncheck ‘Recently Typed URLs’ option (potentially still useful)
  • Click the ‘Analyse’ button.
  • Thereafter, click ‘Run Cleaner’ after you have reviewed what it proposes to clean.


HIDDEN FILES: To make sure you can see all hidden files, please follow the directions here

SAFEMODE: Boot into safe mode by tapping the F8 key at restart and choosing 'safe mode' menu option (explained here if needed).



Run CCleaner, now.




Navigate to these files or folders using Windows Explorer (OR Start -> Search) and delete (if present):


DELETE FILES:

C:\Documents and Settings\Owner\My Documents\Download\ffviitheme.exe




POST A HIJACKTHIS LOG for review:
See the following link for guidance, if needed:
Read This First - IMPORTANT Instructions

Reboot and post a HijackThis log with any feedback as appropriate - how things are now behaving: any new or remaining apparent issues.
__________________
Vincent P

MALWARE: READ FIRST Procedures:
|_ SpyBot V1.5 _|_ HijackThis LOG __V2.0.2 _|

__
ASAP: promoting a high standard and quality of security support no matter where you seek help.

Quote:
SAFER SURFING TOOLS (IE/FF **FREE** browser addons):
Linkscanner + WOT (Web of Trust) + SiteAdvisor (suggest at least two but not necessarily all)
Quote:
Tell me and I forget; show me and I remember; involve me and I understand.
There are no foolish questions, the only thing foolish is not asking if you're unsure of something.
Never ASSUME any detail because it can make an ASS out of U and ME... (ASS/U/ME ).
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

« Previous Thread | Next Thread »

Thread Tools

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
I think I may have some viruses please look norman Spyware, Adware, Viruses and HijackThis Logs 6 07-10-2008 04:30 AM
Help! Got three viruses (new ones)! zeal Spyware, Adware, Viruses and HijackThis Logs 11 26-12-2006 09:05 PM
viruses..need help yuj Windows XP Help 1 28-11-2006 12:54 AM
I have viruses, help ME! devpeck1 Windows XP Help 1 11-08-2006 03:08 AM
need help to remove viruses trisha2 Spyware, Adware, Viruses and HijackThis Logs 1 28-03-2006 05:08 PM


All times are GMT +1. The time now is 12:09 AM.
Member Login
Remember me ?
Forgot password?
Ads

Want to Advertise? Click Here
Help Categories
Desktop / Server Apps
Drivers
Firewalls and Networks
Games
General Internet Issues
Hardware
Linux
MAC OS
Modding / Overclocking
Search Engines
Spyware and Security
Web Development
Windows 2000
Windows 7
Windows 98
Windows ME
Windows Vista
Windows XP

Computer Repair Companies
Bottom Corner Bottom Nav