Please Advise, No Idea What This

Fatimah
Fatimah
in Malware talk

Hey guys, someone please help. I've got a new laptop, about 2 weeks old and was reinstalling some stuff, has taken me a couple of days. I had installed some software that I had downloaded a while back and it said to reboot now or later, i chose now and then had a ' ending program' box come up. usually that happens if i want to shut down and a program isn't responding to the close command. It said Ending program ' do not show me' or something along those lines, can't remember what exactly.


After i saw that, the sytem shut down and rebooted. I ran a virus check the first time and this showed up: (my pc has been clean and i don't visit or download stuff that would normally endanger my pc eg warez sites etc. I had run a virus check on the software before i installed it but it came out clean.)


//-----------------------------------------------------------------


//


// Product: BitDefender 9 Internet Security


// Version: 9.0


//


// Created on: 04/10/2007 20:01:12


//


//-----------------------------------------------------------------


Virus Statistics


Scan path : C:\


D:\


E:\


C:\Documents and Settings\All Users\Documents


C:\Documents and Settings\KHADJA\My Documents


Folders : 8591


Files : 319012


Archives : 4209


Packed files : 29038


Identified viruses : 2


Infected files : 5


Warnings : 0


Suspect files : 0


Disinfected files : 0


Deleted files : 0


Copied files : 0


Moved files : 2


Renamed files : 0


I/O errors : 30


Scan time : 00:53:06


Scan speed (files/sec) : 100


Virus definitions : 898359


Scan plugins : 16


Archive plugins : 41


Unpack plugins : 7


Mail plugins : 6


System plugins : 5


Virus scan options


Detection


[X] Scan boot sectors


[X] Scan archives


[X] Scan packed files


[X] Scan email


File mask


[ ] Programs


[X] All files


[ ] User defined extensions:


[ ] Exclude extensions: ;


Action


Infected objects


[ ] Ignore


[X] Disinfect


[ ] Delete


[ ] Copy to quarantine


[ ] Move to quarantine


[ ] Rename


[ ] Prompt user


Second action


[ ] Ignore


[ ] Delete


[ ] Copy to quarantine


[X] Move to quarantine


[ ] Rename


[ ] Prompt user


Virus scan options


[X] Enable warnings


[X] Enable heuristics


[ ] Show all files in log


[X] Report file: C:\Program Files\Softwin\BitDefender9\Logs\vscan_1191520872.log


Summary:


C:\Program Files\VideoAccessCodec\Uninstall.exe=>(NSIS o)=>lzma_solid_nsis0000 Infected: Trojan.Downloader.Zlob.AAGR


C:\Program Files\VideoAccessCodec\Uninstall.exe=>(NSIS o)=>lzma_solid_nsis0000 Disinfection failed


C:\Program Files\VideoAccessCodec\Uninstall.exe=>(NSIS o)=>lzma_solid_nsis0000 Move failed


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc1.exe=>(ZIP Sfx o)=>crack.exe Infected: DeepScan:Generic.Zlob.7.F16D393E


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc1.exe=>(ZIP Sfx o)=>crack.exe Disinfection failed


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc2.zip\crack.exe Infected: DeepScan:Generic.Zlob.7.F16D393E


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc2.zip\crack.exe Disinfection failed


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc2.zip\crack.exe Moved


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc3.zip\crack.exe Infected: DeepScan:Generic.Zlob.7.F16D393E


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc3.zip\crack.exe Disinfection failed


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc3.zip\crack.exe Moved


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc4.exe=>(ZIP Sfx o)=>crack.exe Infected: DeepScan:Generic.Zlob.7.F16D393E


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc4.exe=>(ZIP Sfx o)=>crack.exe Disinfection failed



I went to the quarantine section and deleted whatever i found then ran the scan again:


//-----------------------------------------------------------------


//


// Product: BitDefender 9 Internet Security


// Version: 9.0


//


// Created on: 04/10/2007 20:55:53


//


//-----------------------------------------------------------------


Virus Statistics


Scan path : C:\


D:\


E:\


C:\Documents and Settings\All Users\Documents


C:\Documents and Settings\KHADJA\My Documents


Folders : 8590


Files : 319061


Archives : 4211


Packed files : 29040


Identified viruses : 2


Infected files : 3


Warnings : 0


Suspect files : 0


Disinfected files : 0


Deleted files : 0


Copied files : 0


Moved files : 0


Renamed files : 0


I/O errors : 31


Scan time : 00:52:55


Scan speed (files/sec) : 100


Virus definitions : 893350


Scan plugins : 16


Archive plugins : 41


Unpack plugins : 7


Mail plugins : 6


System plugins : 5


Virus scan options


Detection


[X] Scan boot sectors


[X] Scan archives


[X] Scan packed files


[X] Scan email


File mask


[ ] Programs


[X] All files


[ ] User defined extensions:


[ ] Exclude extensions: ;


Action


Infected objects


[ ] Ignore


[X] Disinfect


[ ] Delete


[ ] Copy to quarantine


[ ] Move to quarantine


[ ] Rename


[ ] Prompt user


Second action


[ ] Ignore


[ ] Delete


[ ] Copy to quarantine


[X] Move to quarantine


[ ] Rename


[ ] Prompt user


Virus scan options


[X] Enable warnings


[X] Enable heuristics


[ ] Show all files in log


[X] Report file: C:\Program Files\Softwin\BitDefender9\Logs\vscan_1191524153.log


Summary:


C:\Program Files\VideoAccessCodec\Uninstall.exe=>(NSIS o)=>lzma_solid_nsis0000 Infected: Trojan.Downloader.Zlob.AAGR


C:\Program Files\VideoAccessCodec\Uninstall.exe=>(NSIS o)=>lzma_solid_nsis0000 Disinfection failed


C:\Program Files\VideoAccessCodec\Uninstall.exe=>(NSIS o)=>lzma_solid_nsis0000 Move failed


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc1.exe=>(ZIP Sfx o)=>crack.exe Infected: DeepScan:Generic.Zlob.7.F16D393E


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc1.exe=>(ZIP Sfx o)=>crack.exe Disinfection failed


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc4.exe=>(ZIP Sfx o)=>crack.exe Infected: DeepScan:Generic.Zlob.7.F16D393E


C:\RECYCLER\S-1-5-21-789336058-796845957-725345543-1003\Dc4.exe=>(ZIP Sfx o)=>crack.exe Disinfection failed


I went to check quarantine again but found Bitdefender had somehow closed down so i opened it up and went to quarantine but found it empt, now what ?? Can someone suggest anything ? After i had installed that blasted program <img class=" /> , and rebooted system, my internet keep timing out or not connecting (on DSL line) and I'm worried that something ghastly is going to happen. Both laptops my sister and I had before crashed within 2 days of each other because the motherboard died, so now we have to share this and if something goes wrong with this, we both are in huge loads of trouble with work issues.


Many thanks :blink:


Fatimah

Comments

  • alexcrist
    alexcrist

    Hi Fatimah,


    Sorry for the late response.


    Please do this:

    1. Disable BD Realtime Protection
    2. Right click on your Recycle Bin (on your Desktop) and select Empty Recycle Bin
    3. Go to C:\Program Files\VideoAccessCodec and delete the file Uninstall.exe (then also delete it from Recycle Bin)
    4. Re-enable BD Realtime Protection
    5. Make another DeepScan of your system to assure the virus is gone


    Again, I'm sorry for the late response. Please post if this solved your problem.


    Cris.

All Time Leaders

Categories

Defenders of the month