Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

trojan virius

Options
  • 16-08-2010 12:13am
    #1
    elfdub
    Closed Accounts Posts: 7


    HELP!!!!

    Everytime I run avast it tells me I have a virus, win32:trojan-gen. Avast can't seem to move it to the chest or delete it. I've run avg, malwarebytes and trojan killer and they can't find anything. Is this a false positive? Do I need to be concerned?
    Tagged:


Comments

  • Options
    #2
    ASJ112
    Site Banned Posts: 1,167 ✭✭✭ASJ112


    got an avast log ?


  • Options
    #3
    elfdub
    Closed Accounts Posts: 7 elfdub


    eh yeah.enjoy

    18/10/2009 20:02:39 SYSTEM 1620 Sign of "HTML:Script-inf" has been found in "http://www.poetryamerica.com/read_poems.asp?id=402852&start=3" file.
    22/10/2009 23:36:51 SYSTEM 1688 AAVM - scanning warning: x_AavmCheckFileDirectEx [UNI]: C:\Windows\System32\msiltcfg.dll (C:\Windows\System32\msiltcfg.dll) returning error, 00000005.
    27/10/2009 20:44:14 SYSTEM 1764 Sign of "JS:ShellCode-AF [Expl]" has been found in "http://eftantom.com/\{gzip}" file.
    27/10/2009 21:14:01 SYSTEM 1764 Sign of "JS:Obfuscated-T [Trj]" has been found in "http://connectinchrist.org/t/blog/css.js" file.
    16/11/2009 20:19:50 SYSTEM 1732 Sign of "JS:FakeCodec-G [Trj]" has been found in "http://91.91.247.112/d=topfriends.co.za/0x3E8/f=be/view/console=yes/" file.
    11/12/2009 18:21:59 SYSTEM 1696 Sign of "Win32:Palevo-R [Wrm]" has been found in "http://lmageshack.biz/pic7020.pif" file.
    11/12/2009 18:22:13 SYSTEM 1696 Sign of "Win32:Palevo-R [Wrm]" has been found in "http://lmageshack.biz/pic7020.pif" file.
    11/12/2009 18:32:10 SYSTEM 1696 Sign of "HTML:Script-inf" has been found in "http://en.thinkexist.com/maillist/maillist_main.asp\{gzip}" file.
    11/12/2009 18:32:23 SYSTEM 1696 Sign of "HTML:Script-inf" has been found in "http://en.thinkexist.com/maillist/maillist_main.asp\{gzip}" file.
    27/12/2009 12:05:42 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:06:23 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:12:28 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:15:16 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:15:51 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:29:51 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:30:45 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:31:33 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:32:04 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:32:14 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:32:25 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:32:29 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:32:38 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:32:52 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:34:08 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:34:14 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:34:28 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:34:37 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:34:46 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:34:53 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:35:02 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:35:11 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:35:22 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:35:33 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:35:42 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:35:52 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:35:59 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:36:05 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:36:39 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:36:53 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:37:02 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:37:20 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 12:37:39 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 14:02:29 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 14:02:47 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 14:04:11 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 14:04:14 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 14:45:01 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 14:46:12 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 14:46:27 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 14:46:43 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    27/12/2009 14:47:14 SYSTEM 1744 Sign of "JS:ScriptIP-inf [Trj]" has been found in "http://cdn.at.atwola.com/_media/uac/tcode3.html\{gzip}" file.
    01/01/2010 22:23:39 SYSTEM 1760 Sign of "HTML:Script-inf" has been found in "http://www.actionfigurecustoms.com/favicon.ico\{gzip}" file.
    21/01/2010 16:41:18 owner 3384 Sign of "Win32:Spyware-gen [Spy]" has been found in "C:\Users\owner\AppData\Local\Temp\MGASetup.exe" file.
    29/01/2010 23:16:13 SYSTEM 1752 Sign of "HTML:IFrame-HV [Trj]" has been found in "http://www.dublinpubscene.com/entertainment/index.html" file.
    31/01/2010 21:18:30 SYSTEM 1752 Sign of "JS:Pdfka-OR [Expl]" has been found in "http://wholelifewholeworld.com/img/pdf.php?oneills&v=8.0" file.
    06/02/2010 01:33:18 SYSTEM 1764 Sign of "HTML:Iframe-inf" has been found in "http://profiles.lovingyou.com/library/poems.php" file.
    07/02/2010 21:34:45 SYSTEM 1732 AAVM - scanning warning: x_AavmCheckFileDirectEx [UNI]: C:\Windows\System32\conime.exe (C:\Windows\System32\conime.exe) returning error, 00000005.
    09/02/2010 19:02:10 SYSTEM 1788 Function setifaceUpdatePackages() has failed. Return code is 0x20000004, dwRes is 20000004.
    16/02/2010 04:13:32 SYSTEM 1752 Function setifaceUpdatePackages() has failed. Return code is 0xC0000142, dwRes is C0000142.
    28/02/2010 02:33:17 SYSTEM 1700 Sign of "HTML:Illiframe-C [Trj]" has been found in "http://www.galaxyglobaleatery.com/" file.
    21/03/2010 19:11:57 owner 5316 Sign of "Java:Agent-B [Trj]" has been found in "C:\Users\owner\AppData\Local\Temp\jar_cache4806870366693442971.tmp\myf\y\AppletX.class" file.
    21/03/2010 19:12:42 owner 5316 Sign of "Java:Agent-B [Trj]" has been found in "C:\Users\owner\AppData\Local\Temp\jar_cache4806870366693442971.tmp\myf\y\LoaderX.class" file.
    22/04/2010 19:56:34 SYSTEM 1648 Sign of "HTML:Iframe-inf" has been found in "http://www.google.ie/imgres?imgurl=http://i40.tinypic.com/121wg1u.jpg&imgrefurl=http://movie-rapid.com/2009/06/05/annie-1999.html&usg=__y-rDvKdvYGO6tYFTv6ZMXAsJC-I=&h=500&w=346&sz=214&hl=en&start=2&sig2=wWJ3ff2F8IDjQ8XRtqvMtA&itbs=1&tbnid=dCr_w9Hy0aqKsM:&t\{gzip}" file.
    27/04/2010 13:24:38 SYSTEM 1764 Sign of "JS:Illredir-AX [Trj]" has been found in "http://www.newlookcareers.co.uk/" file.
    27/04/2010 13:24:39 SYSTEM 1764 Sign of "JS:Illredir-AX [Trj]" has been found in "http://www.newlookcareers.co.uk/_assets/scripts/jquery.min.js" file.
    27/04/2010 13:24:47 SYSTEM 1764 Sign of "JS:Illredir-AX [Trj]" has been found in "http://www.newlookcareers.co.uk/_assets/scripts/jquery.twitter.js" file.
    27/04/2010 13:24:51 SYSTEM 1764 Sign of "JS:Illredir-AX [Trj]" has been found in "http://www.newlookcareers.co.uk/_assets/scripts/jquery.hoverIntent.js" file.
    27/04/2010 13:24:52 SYSTEM 1764 Sign of "JS:Illredir-AX [Trj]" has been found in "http://www.newlookcareers.co.uk/_assets/scripts/jquery.superfish.js" file.
    27/04/2010 21:34:58 SYSTEM 1764 Sign of "JS:Illredir-AX [Trj]" has been found in "http://www.newlookcareers.co.uk/_assets/scripts/jquery.min.js" file.
    15/05/2010 17:02:20 SYSTEM 1704 Function setifaceUpdatePackages() has failed. Return code is 0x20000004, dwRes is 20000004.
    23/05/2010 20:01:38 SYSTEM 1772 Function setifaceUpdatePackages() has failed. Return code is 0x20000011, dwRes is 20000011.
    28/05/2010 22:04:03 SYSTEM 1692 Sign of "JS:Illredir-CB [Trj]" has been found in "http://gleefansite.com/" file.
    28/05/2010 22:04:09 SYSTEM 1692 Sign of "JS:Illredir-CB [Trj]" has been found in "http://gleefansite.com/favicon.ico" file.
    09/06/2010 19:47:53 SYSTEM 1776 Sign of "VBS:Malware-gen" has been found in "http://www.ligo.ie/favicon.ico" file.
    11/08/2010 21:14:13 SYSTEM 1724 Function setifaceUpdateFiles() has failed. Return code is 0x20000011, dwRes is 20000011.
    11/08/2010 21:14:14 SYSTEM 1724 An error has occured while attempting to update. Please check the logs.
    15/08/2010 11:39:35 SYSTEM 1780 Sign of "Win32:Trojan-gen" has been found in "C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll" file.
    15/08/2010 11:43:20 SYSTEM 1772 Sign of "Win32:Trojan-gen" has been found in "C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll" file.
    15/08/2010 11:43:21 SYSTEM 1772 Sign of "Win32:Trojan-gen" has been found in "C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll" file.
    15/08/2010 12:07:02 SYSTEM 1772 Sign of "Win32:Trojan-gen" has been found in "C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll" file.
    15/08/2010 12:59:09 owner 3080 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll" file.
    15/08/2010 12:59:19 owner 3080 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll1" file.
    15/08/2010 12:59:35 owner 3080 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\dbaccess.dll" file.
    15/08/2010 12:59:38 owner 3080 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nox.dll" file.
    15/08/2010 12:59:39 owner 3080 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclds.dll" file.
    15/08/2010 12:59:39 owner 3080 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\ncllcif.dll" file.
    15/08/2010 12:59:40 owner 3080 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclpimaccess.dll" file.
    15/08/2010 12:59:41 owner 3080 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\secureplatformtoolkit.dll" file.
    15/08/2010 14:33:31 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll" file.
    15/08/2010 14:53:12 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll1" file.
    15/08/2010 14:53:23 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\dbaccess.dll" file.
    15/08/2010 14:53:26 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nox.dll" file.
    15/08/2010 14:53:26 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclds.dll" file.
    15/08/2010 14:53:27 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\ncllcif.dll" file.
    15/08/2010 14:53:28 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclpimaccess.dll" file.
    15/08/2010 14:53:28 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\secureplatformtoolkit.dll" file.
    15/08/2010 18:01:57 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll" file.
    15/08/2010 18:02:22 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll1" file.
    15/08/2010 18:03:00 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\dbaccess.dll" file.
    15/08/2010 18:03:03 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nox.dll" file.
    15/08/2010 18:03:04 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclds.dll" file.
    15/08/2010 18:03:06 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\ncllcif.dll" file.
    15/08/2010 18:03:07 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclpimaccess.dll" file.
    15/08/2010 18:03:08 owner 2964 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\secureplatformtoolkit.dll" file.
    15/08/2010 21:03:42 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll" file.
    15/08/2010 21:04:47 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll1" file.
    15/08/2010 21:04:59 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\dbaccess.dll" file.
    15/08/2010 21:05:01 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nox.dll" file.
    15/08/2010 21:06:09 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclds.dll" file.
    15/08/2010 21:06:17 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\ncllcif.dll" file.
    15/08/2010 21:06:19 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclpimaccess.dll" file.
    15/08/2010 21:06:23 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\secureplatformtoolkit.dll" file.
    15/08/2010 21:55:54 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll" file.
    15/08/2010 21:56:01 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll1" file.
    15/08/2010 21:56:11 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\dbaccess.dll" file.
    15/08/2010 21:56:47 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nox.dll" file.
    15/08/2010 21:56:49 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclds.dll" file.
    15/08/2010 21:56:50 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\ncllcif.dll" file.
    15/08/2010 21:56:57 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclpimaccess.dll" file.
    15/08/2010 21:56:57 owner 5708 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\secureplatformtoolkit.dll" file.
    15/08/2010 23:45:58 owner 7140 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll" file.
    15/08/2010 23:47:00 owner 7140 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\Nokia PC Suite\Nokia PC Suite.msi\Data1.cab\phonebrowser.dll1" file.
    15/08/2010 23:47:39 owner 7140 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\dbaccess.dll" file.
    15/08/2010 23:47:59 owner 7140 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nox.dll" file.
    15/08/2010 23:48:25 owner 7140 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclds.dll" file.
    15/08/2010 23:48:48 owner 7140 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\ncllcif.dll" file.
    15/08/2010 23:49:06 owner 7140 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\nclpimaccess.dll" file.
    15/08/2010 23:49:19 owner 7140 Sign of "Win32:Trojan-gen" has been found in "C:\ProgramData\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\PCCS\PCCS.msi\Data1.cab\secureplatformtoolkit.dll" file.


  • Options
    #4
    ASJ112
    Site Banned Posts: 1,167 ✭✭✭ASJ112


    best get a 2nd opinion

    Download TFC to your desktop
    • Open the file and close any other windows.
    • It will close all programs itself when run, make sure to let it run uninterrupted.
    • Click the Start button to begin the process. The program should not take long to finish its job
    • Once its finished it should reboot your machine, if not, do this yourself to ensure a complete clean




    Please download Malwarebytes' Anti-Malware from Here

    Double Click mbam-setup.exe to install the application.
    • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    • If an update is found, it will download and install the latest version.
    • Once the program has loaded, select "Perform Quick Scan", then click Scan.
    • The scan may take some time to finish,so please be patient.
    • When the scan is complete, click OK, then Show Results to view the results.
    • Make sure that everything is checked, and click Remove Selected.
    • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
    • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
    • Copy&Paste the entire report in your next reply.
    Extra Note:
    If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.






    Go to Kaspersky website and perform an online antivirus scan.
    1. Read through the requirements and privacy statement and click on Accept button.
    2. It will start downloading and installing the scanner and virus definitions. You will be prompted to install an application from Kaspersky. Click Run.
    3. When the downloads have finished, click on Settings.
    4. Make sure these boxes are checked (ticked). If they are not, please tick them and click on the Save button:
        Spyware, Adware, Dialers, and other potentially dangerous programs
        Archives
        Mail databases
      [*]Click on My Computer under Scan.
      [*]Once the scan is complete, it will display the results. Click on View Scan Report.
      [*]You will see a list of infected items there. Click on Save Report As....
      [*]Save this report to a convenient place. Change the Files of type to Text file (.txt) before clicking on the Save button. Then post it here.


    5. Options
      #5
      elfdub
      Closed Accounts Posts: 7 elfdub


      I've already tried malwarebytes and it found nothing...nor did any other antivirus programme i've run. I'll try the other two things u've suggested n see what happens


    6. Options
      #6
      bhickey
      Registered Users Posts: 1,340 ✭✭✭bhickey


      Smells like a false positive to me.

      Can you uninstall the Nokia PC Suite to see if that makes the warnings go away?


    7. Advertisement
    8. Options
      #7
      elfdub
      Closed Accounts Posts: 7 elfdub


      ok so reran malwarebytes. didnt find anything.here's the log anyway

      Malwarebytes' Anti-Malware 1.46
      www.malwarebytes.org

      Database version: 4432

      Windows 6.0.6002 Service Pack 2
      Internet Explorer 8.0.6001.18928

      16/08/2010 20:23:19
      mbam-log-2010-08-16 (20-23-19).txt

      Scan type: Quick scan
      Objects scanned: 165433
      Time elapsed: 12 minute(s), 23 second(s)

      Memory Processes Infected: 0
      Memory Modules Infected: 0
      Registry Keys Infected: 0
      Registry Values Infected: 0
      Registry Data Items Infected: 0
      Folders Infected: 0
      Files Infected: 0

      Memory Processes Infected:
      (No malicious items detected)

      Memory Modules Infected:
      (No malicious items detected)

      Registry Keys Infected:
      (No malicious items detected)

      Registry Values Infected:
      (No malicious items detected)

      Registry Data Items Infected:
      (No malicious items detected)

      Folders Infected:
      (No malicious items detected)

      Files Infected:
      (No malicious items detected)


    9. Options
      #8
      elfdub
      Closed Accounts Posts: 7 elfdub


      Uninstalling nokia pc seems to hve done the trick

      thanks everyone for you help:)


    Advertisement