What happened to the Messenger Plus! forums on msghelp.net?
Shoutbox » MsgHelp Archive » Skype & Technology » Tech Talk » I Need Help. (spyware or virus)

Pages: (2): « First [ 1 ] 2 » Last »
I Need Help. (spyware or virus)
Author: Message:
Lourix
Full Member
***

Avatar


Posts: 422
Reputation: 13
32 / Male / Flag
Joined: Aug 2006
O.P. I Need Help. (spyware or virus)
Well my Anti Virus picked up 4 spyware or virus it couldn't decide and it couldn't move them into quarrintine. Also this spyware/virus has gotten too one of my accounts on the computer therefore everytime I log in on that account it freezes :( Do you guys have any ideas?

Here is the report:








//-----------------------------------------------------------------
//
//    Product: BitDefender 9 Standard
//    Version: 9.5
//
//    Created on:    29/09/2006    17:50:54
//
//-----------------------------------------------------------------


Statistics

Scan path    : C:\
Folders    : 66
Files    :  458
Archives    : 27
Packed files    : 3
Identified viruses    : 4
Infected files    : 0
Warnings    : 0
Suspect files    : 0
Disinfected files    : 0
Deleted files    : 0
Copied files    : 0
Moved files    : 0
Renamed files    : 0
I/O errors    : 1
Scan time    : 00:01:09
Scan speed (files/sec)    : 6

Spyware Statistics

Memory processes scanned    : 16
Memory processes infected    : 0
Registry keys scanned        : 1643
Registry keys infected        : 18
Cookies scanned            : 0
Cookies infected        : 0
Spyware files infected            : 0
Spyware threats detected    : 4


Virus definitions    : 486994
Scan plugins    : 15
Archive plugins    : 41
Unpack plugins    : 6
Mail plugins    : 6
System plugins    : 5

Scan options

Detection
[X] Scan boot sectors
[X] Scan archives
[X] Scan packed files
[X] Scan email

File mask
[ ] Programs
[X] All files
[ ] User defined extensions:
[ ] Exclude extensions: ;

Action

Infected objects
[ ] Ignore
[X] Disinfect
[ ] Delete
[ ] Copy to quarantine
[ ] Move to quarantine
[ ] Rename
[ ] Prompt user

Second action
[ ] Ignore
[ ] Delete
[ ] Copy to quarantine
[X] Move to quarantine
[ ] Rename
[ ] Prompt user

Scan options
[X] Enable warnings
[X] Enable heuristics
[ ] Show all files in log
[X] Report file: C:\Program Files\Softwin\BitDefender9\Logs\vscan_1159545054.log

Spyware scan options

[X] Memory Processes
[X] Registry keys
[X] Cookies


Summary:

<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\MSAGENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\MSAGENT.EXE    Detected: Backdoor.Servu.AJ
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\MSAGENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\MSAGENT.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\MSAGENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\MSAGENT.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\MSAGENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Detected: Trojan.Pakes.1
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\MSAGENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\MSAGENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\NETCLIENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\NETCLIENT.EXE    Detected: Application.Tool.Netcat.A
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\NETCLIENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\NETCLIENT.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\NETCLIENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\NETCLIENT.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\NETCLIENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Detected: Trojan.Pakes.1
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\NETCLIENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\NETCLIENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSECURE\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\WINSECURE.EXE    Detected: Backdoor.Iroffer.1227.D
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSECURE\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\WINSECURE.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSECURE\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\WINSECURE.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSECURE\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Detected: Trojan.Pakes.1
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSECURE\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSECURE\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\MSAGENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\MSAGENT.EXE    Detected: Backdoor.Servu.AJ
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\MSAGENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\MSAGENT.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\MSAGENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\MSAGENT.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\MSAGENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Detected: Trojan.Pakes.1
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\MSAGENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\MSAGENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\NETCLIENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\NETCLIENT.EXE    Detected: Application.Tool.Netcat.A
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\NETCLIENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\NETCLIENT.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\NETCLIENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\NETCLIENT.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\NETCLIENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Detected: Trojan.Pakes.1
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\NETCLIENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\NETCLIENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WINSECURE\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\WINSECURE.EXE    Detected: Backdoor.Iroffer.1227.D
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WINSECURE\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\WINSECURE.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WINSECURE\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\WINSECURE.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WINSECURE\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Detected: Trojan.Pakes.1
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WINSECURE\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WINSECURE\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\MSAGENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\MSAGENT.EXE    Detected: Backdoor.Servu.AJ
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\MSAGENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\MSAGENT.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\MSAGENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\MSAGENT.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\MSAGENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Detected: Trojan.Pakes.1
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\MSAGENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\MSAGENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\NETCLIENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\NETCLIENT.EXE    Detected: Application.Tool.Netcat.A
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\NETCLIENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\NETCLIENT.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\NETCLIENT\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\NETCLIENT.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\NETCLIENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Detected: Trojan.Pakes.1
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\NETCLIENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\NETCLIENT\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\WINSECURE\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\WINSECURE.EXE    Detected: Backdoor.Iroffer.1227.D
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\WINSECURE\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\WINSECURE.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\WINSECURE\PARAMETERS\ServiceExe=>C:\WINDOWS\SECURITY\WINSECURE.EXE    Move failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\WINSECURE\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Detected: Trojan.Pakes.1
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\WINSECURE\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Disinfection failed
<System>=>HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\WINSECURE\ImagePath=>C:\WINDOWS\SECURITY\FIREDAEMON.EXE    Move failed

This post was edited on 09-29-2006 at 04:09 PM by WDZ.
[Image: 202180054.png]
09-29-2006 03:52 PM
Profile E-Mail PM Find Quote Report
MeEtc
Patchou's look-alike
*****

Avatar
In the Shadow Gallery once again

Posts: 2200
Reputation: 60
38 / Male / Flag
Joined: Nov 2004
Status: Away
RE: I Need Help.
boot in safe mode, then redo your virus scan. It should be able to pick it up and remove it then

when booting, before the Windows logo appears, hold down the F8 key. select Safe Mode when the list comes up.
[Image: signature/]     [Image: sharing.png]
I cannot hear you. There is a banana in my ear.
09-29-2006 03:55 PM
Profile PM Web Find Quote Report
Lourix
Full Member
***

Avatar


Posts: 422
Reputation: 13
32 / Male / Flag
Joined: Aug 2006
O.P. RE: I Need Help.
How would this make a difference?
[Image: 202180054.png]
09-29-2006 03:57 PM
Profile E-Mail PM Find Quote Report
MeEtc
Patchou's look-alike
*****

Avatar
In the Shadow Gallery once again

Posts: 2200
Reputation: 60
38 / Male / Flag
Joined: Nov 2004
Status: Away
RE: I Need Help.
the scanner probably cannot remove it because it is running. booting in safe mode will only enable the most basic things that windows needs to run, not including your spyware. you will then be able to remove it.
[Image: signature/]     [Image: sharing.png]
I cannot hear you. There is a banana in my ear.
09-29-2006 04:01 PM
Profile PM Web Find Quote Report
Lourix
Full Member
***

Avatar


Posts: 422
Reputation: 13
32 / Male / Flag
Joined: Aug 2006
O.P. RE: I Need Help.
Ok thanks I'll try it.
Edit:
Nope my Anti Virus won't load in safe mode and after I went back to normal mode My internet had to be shut down because it encountered a problem with Firedaemon. 

This post was edited on 09-29-2006 at 04:29 PM by Lourix.
[Image: 202180054.png]
09-29-2006 04:03 PM
Profile E-Mail PM Find Quote Report
Dr4g0n
Full Member
***

Avatar

Posts: 376
Reputation: 15
34 / Male / Flag
Joined: Nov 2003
RE: I Need Help. (spyware or virus)
Get a better anti-virus that does. That's the best advice I can give you.
09-29-2006 04:43 PM
Profile PM Web Find Quote Report
Lourix
Full Member
***

Avatar


Posts: 422
Reputation: 13
32 / Male / Flag
Joined: Aug 2006
O.P. RE: I Need Help. (spyware or virus)
It would be good advice if my computer wouldn't stop freezing on me. Also I can't install anything without it freezing and look at this:

It keeps popping up at start up :(

.jpg File Attachment: por.JPG (139.26 KB)
This file has been downloaded 236 time(s).
[Image: 202180054.png]
09-29-2006 04:53 PM
Profile E-Mail PM Find Quote Report
MeEtc
Patchou's look-alike
*****

Avatar
In the Shadow Gallery once again

Posts: 2200
Reputation: 60
38 / Male / Flag
Joined: Nov 2004
Status: Away
RE: I Need Help. (spyware or virus)
hmm, do a HijackThis log, and ATTACH it as a file
Get HijackThis
[Image: signature/]     [Image: sharing.png]
I cannot hear you. There is a banana in my ear.
09-29-2006 05:08 PM
Profile PM Web Find Quote Report
Chris4
Elite Member
*****

Avatar

Posts: 4461
Reputation: 84
33 / Male / Flag
Joined: Dec 2004
RE: I Need Help. (spyware or virus)
On 'Infected objects', select 'delete'.

But better advise would be to get AVG Anti-virus Free, update it and then search.

As for spyware, download Ad-Aware SE Personal Edition
Twitter: @ChrisLozeau
09-29-2006 06:17 PM
Profile PM Find Quote Report
Lourix
Full Member
***

Avatar


Posts: 422
Reputation: 13
32 / Male / Flag
Joined: Aug 2006
O.P. RE: I Need Help. (spyware or virus)
Well I updated AVG Anti-Virus scanned with it and it didn't pick anything so im trying that Ad-Adware thing.

This post was edited on 09-30-2006 at 06:49 AM by Lourix.
[Image: 202180054.png]
09-30-2006 06:46 AM
Profile E-Mail PM Find Quote Report
Pages: (2): « First [ 1 ] 2 » Last »
« Next Oldest Return to Top Next Newest »


Threaded Mode | Linear Mode
View a Printable Version
Send this Thread to a Friend
Subscribe | Add to Favorites
Rate This Thread:

Forum Jump:

Forum Rules:
You cannot post new threads
You cannot post replies
You cannot post attachments
You can edit your posts
HTML is Off
myCode is On
Smilies are On
[img] Code is On