Content Top
DAL Computer Help » Internet Security Help » Spyware, Adware, Viruses and HijackThis Logs » Computer going incredibly slow... HJT inside

Recommended Fix

Click here to fix Windows Errors and Optimize Windows Performance

Need Computer Help?
Register Now for FREE

Computer going incredibly slow... HJT inside

Reply
Thread Tools
Spyware, Adware, Viruses and HijackThis Logs
  #1 (permalink)  
Old 12-01-2007, 05:01 AM
Newbie
D-A-L Newbie
  
Join Date: Jun 2005
Posts: 8
rollerdisco Is a beginner here at D-A-L
Computer going incredibly slow... HJT inside
Hi, I'm somewhat computer illiterate but I hear this is a good place to get things fixed. i took your advice and ran both adaware and spyware programs but neither have seemed to fix the problem. My computer is going PAINFULLY slow. I'm hoping you can help, it would be greatly appreciated. Thanks in advance.

HiJackThis Log:

Logfile of HijackThis v1.99.1
Scan saved at 7:54:13 PM, on 11/01/2007
Platform: Windows ME (Win9x 4.90.3000)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.nhl.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=w...bbGJUCGFTdQ42l
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 6.0\READER\ACTIVEX\ACROIEHELPER.DLL
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\PROGRAM FILES\SPYWAREGUARD\DLPROTECT.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\PROGRAM FILES\MSN APPS\MSN TOOLBAR\01.02.5000.1021\EN-US\MSNTB.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRAM FILES\YAHOO!\COMPANION\INSTALLS\CPN\YT.DLL
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.03.0000.1005\en-ca\msnappau.exe"
O4 - HKLM\..\Run: [KodakCCS] C:\WINDOWS\System32\Drivers\KodakCCS.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [LVComs] C:\WINDOWS\SYSTEM\LVComS.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMON.EXE /Consumer
O4 - HKLM\..\Run: [IEXPLORE.EXE] C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
O4 - HKLM\..\Run: [SDKAA.EXE] C:\WINDOWS\SDKAA.EXE
O4 - HKLM\..\Run: [HP Lamp] "C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [syswin] C:\WINDOWS\TEMP\V5.EXE
O4 - HKLM\..\Run: [Intel Driver] CSRS.EXE
O4 - HKLM\..\Run: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - HKLM\..\RunServices: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKLM\..\RunServices: [ccEvtMgr] "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"
O4 - HKLM\..\RunServices: [ScriptBlocking] "C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe" -reg
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [KB891711] C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE
O4 - HKLM\..\RunServices: [ALU Scheduler Service] C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O4 - HKLM\..\RunServices: [Intel Driver] CSRS.EXE
O4 - HKLM\..\RunServices: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE" /background
O4 - HKCU\..\Run: [WinFixer2005] "C:\PROGRAM FILES\WINFIXER 2005\UWFX5.EXE" /min
O4 - HKCU\..\Run: [shell] "C:\WINDOWS\SYSTEM\ibm00003.exe"
O4 - HKCU\..\Run: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmwordtrans.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmcache.html
O8 - Extra context menu item: Similar Pages - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsimilar.html
O8 - Extra context menu item: Backward Links - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmbacklinks.html
O8 - Extra context menu item: Translate Page into English - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmtrans.html
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} (iTunesDetector Class) - http://ax.phobos.apple.com.edgesuite...ITDetector.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www5.incredimail.com/contents...r/imloader.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/Ms...Downloader.cab
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/instal...sinstaller.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://ashtraybabyface.spaces.live.c...d/MsnPUpld.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=48835
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/...ampx_en_dl.cab
O16 - DPF: {70522FA0-4656-11D5-B0E9-0050DAC24E8F} - http://cc.iwon.com/ct/pm3/iwonpm_12_1,0,2,5.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary...n.cab31267.cab
O16 - DPF: {68A2C3BD-7809-11D3-8ACF-0050046F2F9A} (AXELPlayer Class) - http://www.mindavenue.com/Downloads/...erAX_Win32.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Zang...37be6df24bdae2
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/...toUploader.cab
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 13-01-2007, 09:16 PM
Neal's Avatar
Senior Member
  
Join Date: Sep 2005
Posts: 5,524
Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!
Re: Computer going incredibly slow... HJT inside
Heavily infected for sure,


Go here for a trojan scanner:

http://www.emsisoft.com/en/software/free/



Go here BitDefender and run an online scan with BitDefender (you will need to use Internet Explorer for this scan). When the ActiveX Control has loaded, click on "Click here to scan" and grab a coffee.

When BitDefender completes the scan, select the "Detected Problems" tab. Click on "Click here to export scan". Save the file as an HTML to your Desktop. Then click on the saved file and allow it to open with your browser. Go to Edit - Select All then copy/paste that log back here. Post back and let us know what it found (post the log).

And post a new HJT log also..
__________________
Stalking and killing Spyware

Have we helped you? Please consider a donation to help keep D-A-L free. Click on donate below



MALWARE: READ FIRST Procedures:
|_ SpyBot V1.5 _|_ HijackThis Log __V2.0.2 _|



ASAP: promoting a high standard and quality of security support no matter where you seek help.

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 17-01-2007, 02:38 AM
Newbie
D-A-L Newbie
  
Join Date: Jun 2005
Posts: 8
rollerdisco Is a beginner here at D-A-L
Re: Computer going incredibly slow... HJT inside
Okay here are my BitDefender and HiJackThis Logs

BitDefender:

BitDefender Online Scanner



Scan report generated at: Tue, Jan 16, 2007 - 12:26:29





Scan path: A:\;C:\;D:\;E:\;







Statistics

Time
13:55:43

Files
211461

Folders
3014

Boot Sectors
2

Archives
2546

Packed Files
6760




Results

Identified Viruses
26

Infected Files
66

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
54




Engines Info

Virus Definitions
370398

Engine build
AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)

Scan plugins
14

Archive plugins
38

Unpack plugins
5

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\_RESTORE\TEMP\AHADP.0
Infected with: Trojan.Multidropper.NB

C:\_RESTORE\TEMP\AHADP.0
Disinfection failed

C:\_RESTORE\TEMP\AHADP.0
Delete failed

C:\_RESTORE\TEMP\SAHAGENT.0
Detected with: Adware.Sahagent.A

C:\_RESTORE\TEMP\SAHAGENT.0
Disinfection failed

C:\_RESTORE\TEMP\SAHAGENT.0
Delete failed

C:\_RESTORE\TEMP\ZIMRM.0
Infected with: Trojan.Downloader.TSUpdate.K

C:\_RESTORE\TEMP\ZIMRM.0
Disinfection failed

C:\_RESTORE\TEMP\ZIMRM.0
Delete failed

C:\_RESTORE\TEMP\ZIMRA.0
Infected with: Trojan.Downloader.TSUpdate.L

C:\_RESTORE\TEMP\ZIMRA.0
Disinfection failed

C:\_RESTORE\TEMP\ZIMRA.0
Delete failed

C:\_RESTORE\TEMP\TBPS.0
Detected with: Adware.Tbbar.A

C:\_RESTORE\TEMP\TBPS.0
Disinfection failed

C:\_RESTORE\TEMP\TBPS.0
Delete failed

C:\_RESTORE\TEMP\A~NSISU_.17
Infected with: Backdoor.Genlot.E

C:\_RESTORE\TEMP\A~NSISU_.17
Disinfection failed

C:\_RESTORE\TEMP\A~NSISU_.17
Delete failed

C:\_RESTORE\TEMP\TOOLBAR.0
Detected with: Application.Adware.WebSearch.1211

C:\_RESTORE\TEMP\TOOLBAR.0
Disinfection failed

C:\_RESTORE\TEMP\TOOLBAR.0
Delete failed

C:\_RESTORE\TEMP\UNINST~1.0
Detected with: Application.Adware.NewDotNet.C

C:\_RESTORE\TEMP\UNINST~1.0
Disinfection failed

C:\_RESTORE\TEMP\UNINST~1.0
Delete failed

C:\_RESTORE\TEMP\NEWDOT~1.0
Detected with: Application.Adware.NewDotNet.A

C:\_RESTORE\TEMP\NEWDOT~1.0
Disinfection failed

C:\_RESTORE\TEMP\NEWDOT~1.0
Delete failed

C:\WINDOWS\SYSTEM32\srshost.exe
Infected with: Trojan.Dropper.Small.AN

C:\WINDOWS\SYSTEM32\srshost.exe
Disinfection failed

C:\WINDOWS\SYSTEM32\srshost.exe
Delete failed

C:\WINDOWS\v6.exe
Infected with: Trojan.Downloader.ACR

C:\WINDOWS\v6.exe
Disinfection failed

C:\WINDOWS\v6.exe
Delete failed

C:\WINDOWS\sdkaa.exe
Infected with: Trojan.Downloader.Agent.BQ

C:\WINDOWS\sdkaa.exe
Disinfection failed

C:\WINDOWS\sdkaa.exe
Delete failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Infected with: Java.Trojan.OpenConnection.F

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Infected with: Trojan.Downloader.Keenval.F

C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Infected with: Trojan.LowZones.CG

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify.C

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Infected with: Java.Trojan.Exploit.Bytverify.C

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Infected with: Trojan.Downloader.Zlob.AFB

C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)
Update failed

C:\Program Files\DeskAd Service\DeskAdServ.exe
Infected with: Trojan.Winad.I

C:\Program Files\DeskAd Service\DeskAdServ.exe
Disinfection failed

C:\Program Files\DeskAd Service\DeskAdServ.exe
Deleted

C:\NULL
Infected with: Trojan.Dloader.GZ

C:\NULL
Disinfection failed

C:\NULL
Deleted

C:\tt_reco_before.exe
Infected with: Trojan.BettInet.A

C:\tt_reco_before.exe
Disinfection failed

C:\tt_reco_before.exe
Deleted

C:\temp\sahagent.exe
Infected with: MemScan:Trojan.SillyDl.44032

C:\temp\sahagent.exe
Disinfection failed

C:\temp\sahagent.exe
Deleted

C:\backups\backup-20050616-095120-699.dll
Infected with: Trojan.Downloader.Agent.BC

C:\backups\backup-20050616-095120-699.dll
Disinfection failed

C:\backups\backup-20050616-095120-699.dll
Deleted


HijackThis:

BitDefender Online Scanner



Scan report generated at: Tue, Jan 16, 2007 - 12:26:29





Scan path: A:\;C:\;D:\;E:\;







Statistics

Time
13:55:43

Files
211461

Folders
3014

Boot Sectors
2

Archives
2546

Packed Files
6760




Results

Identified Viruses
26

Infected Files
66

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
54




Engines Info

Virus Definitions
370398

Engine build
AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)

Scan plugins
14

Archive plugins
38

Unpack plugins
5

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\_RESTORE\TEMP\AHADP.0
Infected with: Trojan.Multidropper.NB

C:\_RESTORE\TEMP\AHADP.0
Disinfection failed

C:\_RESTORE\TEMP\AHADP.0
Delete failed

C:\_RESTORE\TEMP\SAHAGENT.0
Detected with: Adware.Sahagent.A

C:\_RESTORE\TEMP\SAHAGENT.0
Disinfection failed

C:\_RESTORE\TEMP\SAHAGENT.0
Delete failed

C:\_RESTORE\TEMP\ZIMRM.0
Infected with: Trojan.Downloader.TSUpdate.K

C:\_RESTORE\TEMP\ZIMRM.0
Disinfection failed

C:\_RESTORE\TEMP\ZIMRM.0
Delete failed

C:\_RESTORE\TEMP\ZIMRA.0
Infected with: Trojan.Downloader.TSUpdate.L

C:\_RESTORE\TEMP\ZIMRA.0
Disinfection failed

C:\_RESTORE\TEMP\ZIMRA.0
Delete failed

C:\_RESTORE\TEMP\TBPS.0
Detected with: Adware.Tbbar.A

C:\_RESTORE\TEMP\TBPS.0
Disinfection failed

C:\_RESTORE\TEMP\TBPS.0
Delete failed

C:\_RESTORE\TEMP\A~NSISU_.17
Infected with: Backdoor.Genlot.E

C:\_RESTORE\TEMP\A~NSISU_.17
Disinfection failed

C:\_RESTORE\TEMP\A~NSISU_.17
Delete failed

C:\_RESTORE\TEMP\TOOLBAR.0
Detected with: Application.Adware.WebSearch.1211

C:\_RESTORE\TEMP\TOOLBAR.0
Disinfection failed

C:\_RESTORE\TEMP\TOOLBAR.0
Delete failed

C:\_RESTORE\TEMP\UNINST~1.0
Detected with: Application.Adware.NewDotNet.C

C:\_RESTORE\TEMP\UNINST~1.0
Disinfection failed

C:\_RESTORE\TEMP\UNINST~1.0
Delete failed

C:\_RESTORE\TEMP\NEWDOT~1.0
Detected with: Application.Adware.NewDotNet.A

C:\_RESTORE\TEMP\NEWDOT~1.0
Disinfection failed

C:\_RESTORE\TEMP\NEWDOT~1.0
Delete failed

C:\WINDOWS\SYSTEM32\srshost.exe
Infected with: Trojan.Dropper.Small.AN

C:\WINDOWS\SYSTEM32\srshost.exe
Disinfection failed

C:\WINDOWS\SYSTEM32\srshost.exe
Delete failed

C:\WINDOWS\v6.exe
Infected with: Trojan.Downloader.ACR

C:\WINDOWS\v6.exe
Disinfection failed

C:\WINDOWS\v6.exe
Delete failed

C:\WINDOWS\sdkaa.exe
Infected with: Trojan.Downloader.Agent.BQ

C:\WINDOWS\sdkaa.exe
Disinfection failed

C:\WINDOWS\sdkaa.exe
Delete failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>GetAccess.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>InsecureClassLoader.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Infected with: Java.Trojan.OpenConnection.F

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)=>Installer.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\76782EEB.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\045C6105.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\048602D7.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\147B2F47.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Infected with: Generic.Malware.SYd!.343CA0D8

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\149F7D1F.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>a.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\6B494E3A.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>a.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\11715A3E.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>a.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\50B05494.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Infected with: Trojan.Downloader.Keenval.F

C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)=>zlib_nsis0002
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\40FF0E71=>(Quarantine-2)=>(NSIS o)=>zlib_nsis0001=>(NSIS o)
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Counter.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Gummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Infected with: Trojan.LowZones.CG

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>web.exe
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Infected with: Java.Trojan.Femad.A

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Worker.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Infected with: Java.Trojan.Femad.B

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)=>Xeyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\7605483B.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>BlackBox.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify.C

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Infected with: Java.Trojan.Exploit.Bytverify.C

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)=>Beyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\0F4D2259.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Infected with: Trojan.Downloader.Zlob.AFB

C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)=>(NSIS o)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\2F8E1873.exe=>(Quarantine-2)
Update failed

C:\Program Files\DeskAd Service\DeskAdServ.exe
Infected with: Trojan.Winad.I

C:\Program Files\DeskAd Service\DeskAdServ.exe
Disinfection failed

C:\Program Files\DeskAd Service\DeskAdServ.exe
Deleted

C:\NULL
Infected with: Trojan.Dloader.GZ

C:\NULL
Disinfection failed

C:\NULL
Deleted

C:\tt_reco_before.exe
Infected with: Trojan.BettInet.A

C:\tt_reco_before.exe
Disinfection failed

C:\tt_reco_before.exe
Deleted

C:\temp\sahagent.exe
Infected with: MemScan:Trojan.SillyDl.44032

C:\temp\sahagent.exe
Disinfection failed

C:\temp\sahagent.exe
Deleted

C:\backups\backup-20050616-095120-699.dll
Infected with: Trojan.Downloader.Agent.BC

C:\backups\backup-20050616-095120-699.dll
Disinfection failed

C:\backups\backup-20050616-095120-699.dll
Deleted

Hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 5:18:39 PM, on 16/01/2007
Platform: Windows ME (Win9x 4.90.3000)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.nhl.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=w...bbGJUCGFTdQ42l
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 6.0\READER\ACTIVEX\ACROIEHELPER.DLL
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\PROGRAM FILES\SPYWAREGUARD\DLPROTECT.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\PROGRAM FILES\MSN APPS\MSN TOOLBAR\01.02.5000.1021\EN-US\MSNTB.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRAM FILES\YAHOO!\COMPANION\INSTALLS\CPN\YT.DLL
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.03.0000.1005\en-ca\msnappau.exe"
O4 - HKLM\..\Run: [KodakCCS] C:\WINDOWS\System32\Drivers\KodakCCS.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [LVComs] C:\WINDOWS\SYSTEM\LVComS.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMON.EXE /Consumer
O4 - HKLM\..\Run: [IEXPLORE.EXE] C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
O4 - HKLM\..\Run: [SDKAA.EXE] C:\WINDOWS\SDKAA.EXE
O4 - HKLM\..\Run: [HP Lamp] "C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [syswin] C:\WINDOWS\V6.EXE
O4 - HKLM\..\Run: [Intel Driver] CSRS.EXE
O4 - HKLM\..\Run: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\RunServices: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKLM\..\RunServices: [ccEvtMgr] "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"
O4 - HKLM\..\RunServices: [ScriptBlocking] "C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe" -reg
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [KB891711] C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE
O4 - HKLM\..\RunServices: [ALU Scheduler Service] C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O4 - HKLM\..\RunServices: [Intel Driver] CSRS.EXE
O4 - HKLM\..\RunServices: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE" /background
O4 - HKCU\..\Run: [WinFixer2005] "C:\PROGRAM FILES\WINFIXER 2005\UWFX5.EXE" /min
O4 - HKCU\..\Run: [shell] "C:\WINDOWS\SYSTEM\ibm00003.exe"
O4 - HKCU\..\Run: [Microsoft Windows Update] C:\WINDOWS\system32\srshost.exe
O4 - Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmwordtrans.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmcache.html
O8 - Extra context menu item: Similar Pages - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsimilar.html
O8 - Extra context menu item: Backward Links - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmbacklinks.html
O8 - Extra context menu item: Translate Page into English - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmtrans.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} (iTunesDetector Class) - http://ax.phobos.apple.com.edgesuite...ITDetector.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www5.incredimail.com/contents...r/imloader.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/Ms...Downloader.cab
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/instal...sinstaller.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://ashtraybabyface.spaces.live.c...d/MsnPUpld.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=48835
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/...ampx_en_dl.cab
O16 - DPF: {70522FA0-4656-11D5-B0E9-0050DAC24E8F} - http://cc.iwon.com/ct/pm3/iwonpm_12_1,0,2,5.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary...n.cab31267.cab
O16 - DPF: {68A2C3BD-7809-11D3-8ACF-0050046F2F9A} (AXELPlayer Class) - http://www.mindavenue.com/Downloads/...erAX_Win32.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Zang...37be6df24bdae2
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/...toUploader.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/reso...an8/oscan8.cab
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #4 (permalink)  
Old 20-01-2007, 10:15 PM
VopThis's Avatar
Senior Member (Canada)
  
Join Date: Nov 2005
Posts: 3,439
VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!
Re: Computer going incredibly slow... HJT inside
Quote:
O4 - HKCU\..\Run: [SHELL] "C:\WINDOWS\SYSTEM\ibm00003.exe"
http://www.processlibrary.com/directory/files/ibm00001/

Name: [Shell]
Status: X
File: ibm0000*.exe (* = digit)

Added by the Troj/Torpig-C http://www.sophos.com/virusinfo/anal...ojtorpigc.html and Troj/Torpig-J http://www.sophos.com/virusinfo/anal...ojtorpigj.html TROJANS! - Filenames spotted include ibm00001.exe ibm00002.exe ibm00005.exe and so on.
http://www.castlecops.com/startuplist-11220.html
---------------------------------------------------------------



I'm afraid I have unpleasant news for you. You have a very dangerous infection on this machine. With a serious infection like this, I would recommend that you seriously consider a reformat and reinstall.

Unfortunately, 'ME' is fast getting left behind and 'VISTA' is almost upon us. Consider moving to XP if that is feasable for your system (that may not be an available option fairly shortly). Furhtermore, the tools available to cleanup an ME PC are getting very weak as time goes on.

If you do not want to do this, do not ever use the computer for anything confidential. Let us know how you wish to proceed.


The infection installs itself primarily in machines that have not had all the Win XP updates installed. It allows outsiders COMPLETE access to every keystroke, account, and password you use while on this machine, and complete access to anything else present...

My best recommendation is to Disconnect from internet, backup critical user files, Re-Format the entire drive and re-install your Operating system and Applications.

We can likely clean the infected files off the computer but we cannot be sure that the files involved didn't do anything to your system to reduce overall system security. Even after removal of the infection, you could be vulnerable to another attack or takeover as soon as you connect to the net again.

You are strongly advised to do the following immediately:
1. Disconnect infected computer from the Internet and from any networked computers until the computer can be cleaned.

2. If you have ever used this computer for shopping, banking, or any transactions relating to your financial well being:
Call all of your banks, credit card companies, financial institutions and inform them that you may be a victim of identity theft and to put a watch on your accounts and/or change all your account numbers.

3. From a clean computer, change *ALL* your online passwords -- for ISP login, email, banks, financial accounts, PayPal, eBay, online companies, any online forums or groups you belong to.

Do NOT change passwords or do any transactions while using the infected computer because the attacker will get the new passwords and transaction information.

Also take any other steps appropriate for an attempted identity theft.
__________________
Vincent P

MALWARE: READ FIRST Procedures:
|_ SpyBot V1.5 _|_ HijackThis LOG __V2.0.2 _|

__
ASAP: promoting a high standard and quality of security support no matter where you seek help.

Quote:
SAFER SURFING TOOLS (IE/FF **FREE** browser addons):
Linkscanner + WOT (Web of Trust) + SiteAdvisor (suggest at least two but not necessarily all)
Quote:
Tell me and I forget; show me and I remember; involve me and I understand.
There are no foolish questions, the only thing foolish is not asking if you're unsure of something.
Never ASSUME any detail because it can make an ASS out of U and ME... (ASS/U/ME ).
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

« Previous Thread | Next Thread »

Thread Tools

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Wondering how i could upgrade my computer specs inside Doomy How to build or upgrade a PC 11 05-04-2009 03:47 AM
Back up on DVD-- Possibly an incredibly dumb question jlowe General Hardware Issues 3 26-02-2007 01:08 AM
My reformat has gone incredibly wrong HELP!!!!!!! jibwhips Windows 98/98SE Help 1 30-06-2005 04:41 AM
How do I wipe the computer clean (on the inside) for selling? jm2021 Windows XP Help 10 16-02-2005 05:42 AM
incredibly slow load times Shaggy305 Drivers 0 03-01-2005 04:18 PM


All times are GMT +1. The time now is 09:56 AM.
Member Login
Remember me ?
Forgot password?
Ads

Want to Advertise? Click Here
Help Categories
Desktop / Server Apps
Drivers
Firewalls and Networks
Games
General Internet Issues
Hardware
Linux
MAC OS
Modding / Overclocking
Search Engines
Spyware and Security
Web Development
Windows 2000
Windows 7
Windows 98
Windows ME
Windows Vista
Windows XP

Computer Repair Companies
Bottom Corner Bottom Nav