kaspersky from brothers pc

J

joediscus

New Member
my brother's computer we did quite a bit of cleaning on.. but it still doesnt seem right to him its a bit faster now that we extracted the so far found infected but still seems slower then it should.. here is a kaspersky log..
let me know if anyone can offer some advice.. thanks

Saturday, January 05, 2008 12:25:19 PM
Operating System: Microsoft Windows 2000 Professional, Service Pack 4 (Build 2195)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 5/01/2008
Kaspersky Anti-Virus database records: 503020


Scan Settings
Scan using the following antivirus database extended
Scan Archives true
Scan Mail Bases true

Scan Target My Computer
C:\
D:\

Scan Statistics
Total number of scanned objects 41511
Number of viruses found 4
Number of infected objects 4
Number of suspicious objects 2
Duration of the scan process 01:42:51

Infected Object Name Virus Name Last Action
C:\Documents and Settings\All Users\Application Data\Comodo\Personal Firewall\Logs\cpf.lock Object is locked skipped

C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Yazzle.zip/Yazzle1552OinUninstaller.exe Suspicious: Password-protected-EXE skipped

C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Yazzle.zip ZIP: suspicious - 1 skipped

C:\Documents and Settings\M\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\M\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\M\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\M\Local Settings\History\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\M\Local Settings\History\History.IE5\MSHist012008010520080106\index.dat Object is locked skipped

C:\Documents and Settings\M\Local Settings\temp\~DF2F98.tmp Object is locked skipped

C:\Documents and Settings\M\Local Settings\temp\~DFB568.tmp Object is locked skipped

C:\Documents and Settings\M\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\M\My Documents\My Pictures\setup.exe/file1 Infected: not-a-virus:FraudTool.Win32.SpywareBot.c skipped

C:\Documents and Settings\M\My Documents\My Pictures\setup.exe Inno: infected - 1 skipped

C:\Documents and Settings\M\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\M\ntuser.dat.LOG Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\integ\avast.int Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\report\Resident protection.txt Object is locked skipped

C:\Program Files\BroadJump\Client Foundation\CFD.exe Infected: Trojan.Win32.Patched.af skipped

C:\Program Files\Windows Media Player\progyrtajy.html Infected: Trojan-Clicker.HTML.IFrame.dn skipped

C:\WINNT\CSC\00000001 Object is locked skipped

C:\WINNT\Debug\ipsecpa.log Object is locked skipped

C:\WINNT\Debug\oakley.log Object is locked skipped

C:\WINNT\Debug\PASSWD.LOG Object is locked skipped

C:\WINNT\SchedLgU.Txt Object is locked skipped

C:\WINNT\SoftwareDistribution\DataStore\DataStore.edb Object is locked skipped

C:\WINNT\SoftwareDistribution\DataStore\Logs\edb.log Object is locked skipped

C:\WINNT\SoftwareDistribution\DataStore\Logs\tmp.edb Object is locked skipped

C:\WINNT\SoftwareDistribution\ReportingEvents.log Object is locked skipped

C:\WINNT\Sti_Trace.log Object is locked skipped

C:\WINNT\system32\config\Antivirus.Evt Object is locked skipped

C:\WINNT\system32\config\AppEvent.Evt Object is locked skipped

C:\WINNT\system32\config\default Object is locked skipped

C:\WINNT\system32\config\default.LOG Object is locked skipped

C:\WINNT\system32\config\SAM Object is locked skipped

C:\WINNT\system32\config\SAM.LOG Object is locked skipped

C:\WINNT\system32\config\SecEvent.Evt Object is locked skipped

C:\WINNT\system32\config\SECURITY Object is locked skipped

C:\WINNT\system32\config\SECURITY.LOG Object is locked skipped

C:\WINNT\system32\config\software Object is locked skipped

C:\WINNT\system32\config\software.LOG Object is locked skipped

C:\WINNT\system32\config\SysEvent.Evt Object is locked skipped

C:\WINNT\system32\config\system Object is locked skipped

C:\WINNT\system32\config\SYSTEM.ALT Object is locked skipped

C:\WINNT\system32\Perflib_Perfdata_228.dat Object is locked skipped

C:\WINNT\TEMP\_avast4_\Webshlock.txt Object is locked skipped

C:\WINNT\WindowsUpdate.log Object is locked skipped

Scan process completed.
 
Please download Combofix by sUBs from either here or here

IMPORTANT - Save Combofix.exe to your your Desktop.

  • Close any open Web browsers. (Firefox, Internet Explorer, etc)
  • Close/disable all anti virus and anti malware programs so they do not interfere with ComboFix. <-- IMPORTANT
  • Double click combofix.exe & follow the prompts.
  • From the keyboard select 1 and press Enter
  • When finished, it will produce a log for you.
  • Post that log in your next reply.

Do not mouseclick combofix's window while it's running. That may cause your computer to stall

Then run a hijackthis scan and save the log.

Next post please add
combofix log
New Hijackthis log
 
You must log in or register to reply here.
Back
Top