Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Trojans in system .-


  • Please log in to reply

#1
htmagallanes

htmagallanes

    Member

  • Member
  • PipPip
  • 40 posts
Hello again guys,
Today I did run the antivirus F-Secure (online scanner)....and it detected something called:

Trojan-Downloader.JS.IstBar.j

Could not be removed using that scanner.
I did run (trying to get this out of the computer) Kaspersky scanner, but to my surpise more trojans were detected....I don't know if I should save this report as HTML, or as TEXT....in order to send this to you so you guys can see.

Which steps shoud I take....????

The weird thing is that my system is running good....
:tazz:

Thanks.
  • 0

Advertisements


#2
htmagallanes

htmagallanes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 40 posts
Hi guys,
I can tell that everybody is pretty busy....I don't have a clue as how you guys take care of all of us....pretty amazing I may add.
By the way.....my computer is kind of slow today....whenever possible I moght need S.O.S.
Thanks.
  • 0

#3
htmagallanes

htmagallanes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 40 posts
Hi guys, today I tried to use Panda online scanner....but could not.
For some strange reason....I cannot use it.
(Adwatch is not active when I scan anyways.....just in case.)

Thanks in advance.

:tazz:
  • 0

#4
htmagallanes

htmagallanes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 40 posts
Hi guys,
when you get a chance....still need some help....
thanks.

:tazz:
  • 0

#5
htmagallanes

htmagallanes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 40 posts
Hi my friends.....just in case.....this is the Panda Log:
________________________________________________________________________


Incident Status Location

Adware:adware/delfinmedia No disinfected C:\keys.ini
Adware:adware/virtualbouncer No disinfected C:\WINDOWS\Downloaded Program Files\BundleOuter1132040204.EXE
Possible Virus. No disinfected C:\WINDOWS\Downloaded Program Files\pinstall.dll
Adware:adware/keenvalue No disinfected C:\WINDOWS\system32\drivers\etc\hosts.bho
___________________________________________________________________________________

This is the Kaspersky Log:


-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Saturday, August 13, 2005 09:07:41
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version: 5.0.67.0
Kaspersky Anti-Virus database last update: 13/08/2005
Kaspersky Anti-Virus database records: 134944
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: standard
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\
E:\
F:\

Scan Statistics:
Total number of scanned objects: 38604
Number of viruses found: 5
Number of infected objects: 18
Number of suspicious objects: 0
Duration of the scan process: 2722 sec

Infected Object Name - Virus Name
C:\Documents and Settings\Administrator\My Documents\Data\all_files4.exe/data0003 Infected: Trojan-Downloader.Win32.Agent.ec
C:\Documents and Settings\Administrator\My Documents\Data\all_files4.exe/data0006 Infected: Trojan-Downloader.Win32.Apropo.v
C:\Documents and Settings\Administrator\My Documents\Data\all_files4.exe/data0007 Infected: Backdoor.Win32.Ruledor.c
C:\Documents and Settings\Administrator\My Documents\Data\all_files4.exe Infected: Backdoor.Win32.Ruledor.c
C:\Documents and Settings\Administrator\My Documents\Data\Data\all_files4.exe/data0003 Infected: Trojan-Downloader.Win32.Agent.ec
C:\Documents and Settings\Administrator\My Documents\Data\Data\all_files4.exe/data0006 Infected: Trojan-Downloader.Win32.Apropo.v
C:\Documents and Settings\Administrator\My Documents\Data\Data\all_files4.exe/data0007 Infected: Backdoor.Win32.Ruledor.c
C:\Documents and Settings\Administrator\My Documents\Data\Data\all_files4.exe Infected: Backdoor.Win32.Ruledor.c
C:\Documents and Settings\Default User\My Documents\Data\all_files4.exe/data0003 Infected: Trojan-Downloader.Win32.Agent.ec
C:\Documents and Settings\Default User\My Documents\Data\all_files4.exe/data0006 Infected: Trojan-Downloader.Win32.Apropo.v
C:\Documents and Settings\Default User\My Documents\Data\all_files4.exe/data0007 Infected: Backdoor.Win32.Ruledor.c
C:\Documents and Settings\Default User\My Documents\Data\all_files4.exe Infected: Backdoor.Win32.Ruledor.c
C:\Documents and Settings\Default User\My Documents\Data\Data\all_files4.exe/data0003 Infected: Trojan-Downloader.Win32.Agent.ec
C:\Documents and Settings\Default User\My Documents\Data\Data\all_files4.exe/data0006 Infected: Trojan-Downloader.Win32.Apropo.v
C:\Documents and Settings\Default User\My Documents\Data\Data\all_files4.exe/data0007 Infected: Backdoor.Win32.Ruledor.c
C:\Documents and Settings\Default User\My Documents\Data\Data\all_files4.exe Infected: Backdoor.Win32.Ruledor.c
C:\WINDOWS\system32\LogFiles\DA7021900.so Infected: Trojan-Downloader.Win32.Small.baz
C:\WINDOWS\system32\LogFiles\Z7071900.so Infected: Trojan.Win32.LowZones.cd

Scan process completed.



_________________________________________________________________________________

:tazz:
  • 0

#6
htmagallanes

htmagallanes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 40 posts
:tazz: Hello my friends,
This is another LOG:
________________________________________________________________________



Incident Status Location

Adware:adware/virtualbouncer No disinfected C:\WINDOWS\DOWNLOADED PROGRAM FILES\BundleOuter1132040204.EXE
Adware:adware/keenvalue No disinfected C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts.bho
Adware:adware/delfinmedia No disinfected C:\keys.ini
Adware:adware/buddylinks No disinfected C:\PROGRAM FILES\COMMON FILES\PSD Tools
Adware:adware/sidesearch No disinfected C:\DOCUMENTS AND SETTINGS\TIFFANY MAGALLANES\APPLICATION DATA\Lycos
Adware:adware/funweb No disinfected Windows Registry
Possible Virus. No disinfected C:\WINDOWS\Downloaded Program Files\pinstall.dll
Possible Virus. No disinfected C:\WINDOWS\Temp\ASHeuristic\pinstall.dll.vir
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP