hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
GovernmentSecurity.org > System Security > Windows Systems
kingvandal
Nov 3 2004, 05:15 AM
CODE

Scan performed at: 11/2/2004 21:07:15 PM
Scanning Log
NOD32 version 1.915 (20041102) NT
Command line: \\Melinda\C
Operating memory - is OK

date: 2.11.2004  time: 21:07:49
Scanned disks, directories and files: \\Melinda\C\
\\Melinda\C\hiberfil.sys - error opening (file locked) [4]
\\Melinda\C\pagefile.sys - error opening (file locked) [4]
\\Melinda\C\Q250204.exe - Win32/TrojanDownloader.WinShow.R trojan
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\Patch252.exe - Win32/Spy.Agent.L trojan
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\susp.exe - Win32/TrojanDownloader.Stubby.A trojan
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\9KC2TZ01\fsc2k[1].htm - JScript/TrojanDownloader.Cobase.A trojan
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\9KC2TZ01\transactionID=108557246&apg=1728&adsize=336x280&pos=middle&site=webmd&brand=mywebmd&to=1728&network=consumer&uri=%2Fcontent%2Farticle%2F32%2F1728%5F79750[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\9KC2TZ01\transactionID=56871585&apg=1728&site=webmd&brand=mywebmd&to=1728&uri=%2Fcontent%2Farticle%2F15%2F1728%5F55627&pos=top&adsize=468x60&network=consumer[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\9KC2TZ01\Type=click&FlightID=26781&AdID=56554&TargetID=12048& amp;Segments=12,328,424,568,1612,1614,1911,1955,2007,2092,2120,2214,2221,2223,22
30,2271,2275,2277,2280,2282,2283,2284,2286,2[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\L9949HS4\transactionID=16843203&apg=1728&site=webmd&brand=mywebmd&to=1728&uri=%2Fcontent%2Farticle%2F32%2F1728%5F79750&pos=left&adsize=120x240&network=consumer[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\L9949HS4\transactionID=48585627&apg=1728&adsize=336x280&pos=middle&site=webmd&brand=mywebmd&to=1728&network=consumer&uri=%2Fcontent%2Farticle%2F15%2F1728%5F55627[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\S5R3MU2E\transactionID=56871585&apg=1728&site=webmd&brand=mywebmd&to=1728&uri=%2Fcontent%2Farticle%2F15%2F1728%5F55627&pos=left&adsize=120x240&network=consumer[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\Y40XB9VJ\transactionID=16843203&apg=1728&site=webmd&brand=mywebmd&to=1728&uri=%2Fcontent%2Farticle%2F32%2F1728%5F79750&pos=top&adsize=468x60&network=consumer[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\DBZ3LHKE\adsize=1x1&site=national&page=findacar__searchform__srl__detail&source=national&ord=1095741486692&zip=95969&state=CA&dma=CHICO-REDDING&region=CHICO&cat=auto&[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\DBZ3LHKE\adsize=468x60&site=national&page=findacar__searchform__srl__detail&source=national&ord=1095741486692&zip=95969&state=CA&dma=CHICO-REDDING&region=CHICO&cat=au[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\WV5RUYR9\adsize=120x600&site=national&page=findacar__searchform__srl__detail&source=national&ord=1095741486692&zip=95969&state=CA&dma=CHICO-REDDING&region=CHICO&cat=a[1].htm - error opening [4]
\\Melinda\C\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\Y1XERA5G\adsize=468x60&site=local&page=findacar__searchform__srl__detail&source=local&ord=1095741486692&zip=95969&state=CA&dma=CHICO-REDDING&region=CHICO&cat=auto&mak[1].htm - error opening [4]
\\Melinda\C\Program Files\ClearSearch\Loader.exe - Win32/Igetnet.A trojan
\\Melinda\C\Program Files\Submit\submithook.dll - Win32/TrojanDownloader.Agent.AZ trojan
\\Melinda\C\WINDOWS\adddg.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\adddr.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\addes.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\addgi.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\addjf.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\addlp32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\addqa32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\addql32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\addsa32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\addsx32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\addtd.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\addzg32.dll - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\addzg32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\apicw32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\apidi32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\apifp32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\apijt32.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\apikz32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\apilm.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\apimj.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\apiov32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\apirn32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\apiwi.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\appbj.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\appbw.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\appdi.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\appff.exe - Win32/TrojanDownloader.Agent.AN trojan
\\Melinda\C\WINDOWS\appgj32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\appgu32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\apphk.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\apppw32.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\appsy32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\appws32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\appxa32.dll - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\appxa32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\appxe32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atlba.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atlbn.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atlbw.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\atlcl.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\atljh.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atlju32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atlmo.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atlpe32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atlpi.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atltn32.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\atluy.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atlwf32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\atlyz32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\crdm32.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\cril32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\crlc.exe - Win32/TrojanDownloader.Agent.AN trojan
\\Melinda\C\WINDOWS\crmc.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\crqp.exe - Win32/TrojanDownloader.Agent.AN trojan
\\Melinda\C\WINDOWS\crss32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\cryy32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\d3ae32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\d3ao.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\d3bm32.dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3ed32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\d3fg32.dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3ip32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\d3jm32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\d3kl32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\d3lu32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\d3nd32(10).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(11).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(12).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(13).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(2).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(3).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(4).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(5).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(6).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(7).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(8).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32(9).dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3nd32.dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\d3oi.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\d3qh32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\d3rb.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\d3xg32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\d3ze32.dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\devudmr.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\hgnbg.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\hizce.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\hostprep.exe - Win32/KeyHost.A trojan
\\Melinda\C\WINDOWS\hxgkc.dll - Win32/TrojanDownloader.WinShow.U3 trojan
\\Melinda\C\WINDOWS\iecw32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\iehy.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ielo32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ienc32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\iepq.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\iesr.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\ietf32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ieuh.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\iewm.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\iezr.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\ipcm32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ipdq32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\iphq.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ipke32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ipzw.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ivnek.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\javaaq32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\javaqj.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\javaqn32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\javash.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\javast.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\javawm32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\javayl.dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\javazs.dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\kjwhv.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\lap.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\metqd.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\mfcdg.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\mfcgf.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\mfchh.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\mfcmj.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\mfcml.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\mfcow.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\mfctb32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\mfcux32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\mfcvh.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\msen.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\msnj32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\msrl32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\mswc.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\mszg32.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\mszw.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\netce32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\netfa32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\netic.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\netmf32.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\netzm.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\netzw32.exe - Win32/TrojanDownloader.Agent.AN trojan
\\Melinda\C\WINDOWS\ntcr.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\ntdf.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\ntfl32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\nthf32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ntpe.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\ntpq.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ntsm32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ntte32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\ntvq32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\ntwb.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\ntxp.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\NYFP.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\qnsir.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\realtime.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\rtpay.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\rundll16.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\sdkbq.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\sdkbx.exe - Win32/TrojanDownloader.Agent.NAE trojan
\\Melinda\C\WINDOWS\sdkda32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\sdklw.dll - Win32/TrojanDownloader.WinShow.NAD trojan
\\Melinda\C\WINDOWS\sdkol.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\sdktv.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\sdkyi32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\sysbq.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\syscb.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\sysgz.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\sysim32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\sysio32.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\sysjw32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\syslp.exe - Win32/TrojanDownloader.Agent.AN trojan
\\Melinda\C\WINDOWS\sysmm.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\syssd.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\sysupd.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\sysyp.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\uptodate.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\windz.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\wingf32.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\wingt32.exe - Win32/TrojanDownloader.Agent.AN trojan
\\Melinda\C\WINDOWS\winpg.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\winvi32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\winxk32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\winxo.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\wupdt.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\06wu29rd.exe - Win32/TrojanDropper.Small.GT trojan
\\Melinda\C\WINDOWS\SYSTEM32\addhr.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\addjr32.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\addpl.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\addqi32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\addrh.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\SYSTEM32\addsq.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\addtl32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\addxj.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\SYSTEM32\addxq32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\Ajopdm32.dll - Win32/Padodor.V trojan
\\Melinda\C\WINDOWS\SYSTEM32\akjqf.exe - Win32/Korgo.V worm
\\Melinda\C\WINDOWS\SYSTEM32\apicp.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\apiih.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\apijo32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\apijr32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\apirj32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\apisq.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\apitk.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\SYSTEM32\apiui32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\apixo32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\appbv32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\apphf32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\appiv.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\appkq32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\appom.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\apppt.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\appxf.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\SYSTEM32\atlhu.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\atlje32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\atllz32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\atlmj32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\atlrz.dll - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\atlsn.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\atlyp.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\bfcde.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\ckvkx.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\ClrSchP012.exe - Win32/Igetnet.A trojan
\\Melinda\C\WINDOWS\SYSTEM32\Cqkpoonm.exe - Win32/Spy.Qukart.NAA trojan
\\Melinda\C\WINDOWS\SYSTEM32\crat.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\crev32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\crgn.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\SYSTEM32\crkm.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\crlk32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\crlx32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\crme32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\crmy.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\crnd32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\crqj.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\cryg.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\d3fs32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\SYSTEM32\d3gg.exe - Win32/TrojanDownloader.Agent.AN trojan
\\Melinda\C\WINDOWS\SYSTEM32\d3ha32.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\SYSTEM32\d3lm32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\d3wb.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\d3xm32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ftpupd.exe - Win32/Korgo.U worm
\\Melinda\C\WINDOWS\SYSTEM32\gpspt.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\Hhklkglk.dll - Win32/Padodor.V trojan
\\Melinda\C\WINDOWS\SYSTEM32\hlkbq.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\hmfae.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\iehc32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ieih32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\iekf.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ienc.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ieoe32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ietx.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ieup32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\ievx.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\iexj32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\iexz.exe - Win32/TrojanDownloader.Agent.NAE trojan
\\Melinda\C\WINDOWS\SYSTEM32\ieyb32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ipbf.exe - Win32/TrojanDownloader.Agent.NAG trojan
\\Melinda\C\WINDOWS\SYSTEM32\ipel32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\iplb32.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\SYSTEM32\ipmx32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\ipqi32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ipri.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ipzm32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ivyth.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\javaad32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\SYSTEM32\javaad32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\javaal32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\javaaz.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\javabn32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\javadi.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\javafd.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\javall.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\javaqy32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\javarj.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\javavw.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\javaza32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\SYSTEM32\kcczwnikcr.exe - Win32/Bobax.B worm
\\Melinda\C\WINDOWS\SYSTEM32\ldr32b.exe - Win32/TrojanDownloader.Small.YN trojan
\\Melinda\C\WINDOWS\SYSTEM32\mfcfz32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\SYSTEM32\mfcjf32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\mfcju32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\mfcol32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\mfcrs32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\mfcyv.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\msao.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\msce.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\msfj.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\msgu32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\msip.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\msnu32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\mspy.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\msqm.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\msto32.dll - Win32/TrojanDownloader.Agent.NAM trojan
\\Melinda\C\WINDOWS\SYSTEM32\msxr32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\msxz32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\mvspfu.exe - Win32/Korgo.U worm
\\Melinda\C\WINDOWS\SYSTEM32\netbx.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\netcp32.dll - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\netcp32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\netct.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\netdj32.exe - Win32/TrojanDownloader.Agent.AL trojan
\\Melinda\C\WINDOWS\SYSTEM32\netfg.dll - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\netfg.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\nethk32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\netlz32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\netmz.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\netst32.exe - Win32/TrojanDownloader.Agent.AN trojan
\\Melinda\C\WINDOWS\SYSTEM32\ntet.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ntey32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ntfp32.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\ntgp32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\ntmb.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\ntpg32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ntvq.dll - error opening (access denied) [4]
\\Melinda\C\WINDOWS\SYSTEM32\ntvv.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\ntxx.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\Ojjciqcg.exe - Win32/Spy.Qukart.M trojan
\\Melinda\C\WINDOWS\SYSTEM32\Olpcnd32.dll - Win32/Spy.Qukart.NAA trojan
\\Melinda\C\WINDOWS\SYSTEM32\qlcgf.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\qriaa.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\roeuy.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdjjz.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdkdd32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdkgy32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdkhv32.exe - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdkjy.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdkkh32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdklj.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdkmk32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdkob32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\sdkul.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\sysaw32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\sysfz.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\syshq.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\syslb32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\syslh.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\sysnu.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\sysoq32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\syswm.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\syswm32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\ubkrt.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\winbb32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\wineo32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\winhi32.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\winik32.dll - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\winik32.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\winlj.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\winnw.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\winog.dll - Win32/TrojanDownloader.Agent.NAK trojan
\\Melinda\C\WINDOWS\SYSTEM32\winpj.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\winqk.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\winvq.exe - Win32/TrojanDownloader.Agent.BC trojan
\\Melinda\C\WINDOWS\SYSTEM32\winvy.exe - Win32/TrojanDownloader.Agent.CD trojan
\\Melinda\C\WINDOWS\SYSTEM32\wqctf.exe - Win32/Korgo.R worm
\\Melinda\C\WINDOWS\SYSTEM32\zmafv.dll - Win32/TrojanDownloader.WinShow.AK trojan
\\Melinda\C\WINDOWS\SYSTEM32\drivers\svchost.exe - Win32/Nachi.C worm
\\Melinda\C\WINDOWS\Temp\dllmgr.exe - Win32/TrojanDownloader.Small.YM trojan
\\Melinda\C\WINDOWS\Temp\felix.exe - Win32/Spy.Qukart.NAA trojan
\\Melinda\C\WINDOWS\winso\msiesh.dll - Win32/TrojanDownloader.WinShow.X trojan
\\Melinda\C\WINDOWS\winso\mssearch.dll - Win32/TrojanDownloader.WinShow.NAF trojan
\\Melinda\C\WINDOWS\winso\winso32.dll - Win32/TrojanDownloader.WinShow.NAC trojan
number of scanned files: 13283
number of viruses found: 351
time of completion: 21:17:13 total scanning time: 564 sec (00:09:24)

Notes:
[4] File cannot be open. It is being exclusively used by another application or operating system.




Had to post. I had to laugh. Feel bad for them but that what happens when you run no AV/FW/AntiSpy at all...

Rich
v1r05
Nov 3 2004, 07:18 AM
oh man that thing is loaded with crap !
andydis
Nov 3 2004, 12:12 PM
lol, we are trying to beat an ad-aware score of 1156 objects in our office :-)
[_-ViCiOuS-_]
Nov 3 2004, 01:42 PM
wow man
throw this think out of the windows biggrin.gif
or type the magic word FORMAT C biggrin.gif
kingvandal
Nov 3 2004, 04:44 PM
lol.. I love a challenge. And.. last night I found a rootkit on it to..
Xcaliber
Nov 3 2004, 10:13 PM
Lord!

Let me guess, it's a corporate user
nicolas9510
Nov 4 2004, 01:50 AM
DAMN
thats a shitload of virii ^^
sucks for you
_ET_
Nov 4 2004, 01:54 AM
Haha.. that like running Win2k SP0 on a 100Mbit .NL line and put a porn loving madguy behind it for some weeks biggrin.gif
FuzZyBeeR
Nov 4 2004, 08:55 AM
QUOTE(_ET_ @ Nov 4 2004, 01:54 AM)
Haha.. that like running Win2k SP0 on a 100Mbit .NL line and put a porn loving madguy behind it for some weeks  biggrin.gif
*



heh a few days would be enough biggrin.gif

Nice logging kingvandal
kingvandal
Nov 4 2004, 06:38 PM
got rid of everything and all browser bs, found the root of the root kit and killed it. Stopped all the TCPIP connections.. all 800,000 of them. This has been very intresting to fix. The viruses would update themselves as I would remove them. Found there resources and killed them all. Found dlls, lst, txt files and more that would block access to anti-virus sites so you could not connect to them and fix your computer..lol And they where all word lists. I noticed when I killed the main process that was working constant is when the rootkit came to life. Thats when all the tcp connection started happening. One fo the viruses changed the taskmgr so all you could do is view the open applications not the process tab etc.. I am still trying to figure out which files are associated with the taskmgr.exe in winXP home so I can fix the taskmgr. Found lots of reg entrys as I would kill them they would re-appear, and for future reference ( for me more then anyone eles here ) That spybot search and destroy does a dam good job of monitoring the registry in real time. Saved alot of time and hassels. Anyway I have narrowed the rootkit down to KORGO. I am going to open a sand box for that virus and see if that is the one.

Rich
kingvandal
Nov 8 2004, 05:23 AM
after 30 Hours of working on this computer I got it fixed. Runing like a champ! Yes it was a waist of time but I pride myself on NOT formating a system everytime a couple of problems occure. Would you have taken this long or would you have re-formated? Gonna charge her $100 for the job.

Rich
NW_DJW
Nov 8 2004, 04:16 PM
Format The Disks, Not only clean the stuff. Just put some files as a backup or print them. Clean them again and format the disks. Maybe some defragmentation is needed also.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.