Jump to content


Photo

Gen:variant.kazy.190


  • This topic is locked This topic is locked
19 replies to this topic

#1 natkat

natkat

    Newbie

  • Members
  • 2 posts

Posted 26 September 2010 - 01:52 AM

Hi all,

I am running Windows 7 and using BitDefender 2011. BD will not let me remove or quarantine the files for Gen:Variant.Kazy.190. Below is the scan log. Any suggestions?



BitDefender Log File


Product: BitDefender Internet Security 2010
Version: BitDefender Antivirus Scanner
Scanning task: System Scan
Log date: 16/09/2010 9:00:02 PM
Log path: C:\ProgramData\BitDefender\Desktop\Profiles\Logs\full_scan\1284692402_1_02.xml

Scan paths:
Path 0000: C:\

Scan Level:
Scan for viruses: Yes
Scan for adware: Yes
Scan for spyware: Yes
Scan for applications: Yes
Scan for dialers: Yes
Scan for rootkits: No
Scan for keyloggers: Yes

Virus Scanning Options:
Scan registry keys: Yes
Scan cookies: Yes
Scan boot sectors: Yes
Scan memory processes: Yes
Scan archives: No
Scan runtime packers: Yes
Scan e-mails: Yes
Scan all files: Yes
Heuristic Scan: Yes
Scanned extensions: not configured
Excluded extensions: not configured

Target Processing:
Default first action for infected objects: Disinfect
Default second action for infected objects: None
Default first action for suspect objects : None
Default second action for suspicious objects: None
Default action for hidden objects: None
Default first action for encrypted infected objects: Disinfect
Default second action for encrypted infected objects: None
Default first action for encrypted suspicious objects: None
Default second action for encrypted suspicious objects: None
Default action for password-protected objects: Log only

Scan Engines Summary
Virus signatures: 6384584
Archive plugins: 44
E-mail plugins: 6
Scan plugins: 14
System plugins: 5
Unpack plugins: 10

Basic
Scanned items: 190037
Infected items: 9
Suspect items: 0 (no suspected items have been detected)
Hidden items: 0 (the scan options do not include scanning for rootkits)
Resolved items: 3
Unresolved items: 6

Advanced
Scan time: 00:56:16
Files per second: 56
Skipped items: 120730
Password-protected items: 22
Over-compressed items: 0
Individual viruses found: 2
Scanned folders: 35446
Scanned boot sectors: 3
Scanned archives: 30
Input-output errors: 67
Scanned processes: 64
Infected processes: 6
Scanned registry keys: 2412
Infected registry keys: 1
Scanned cookies: 25
Infected cookies: 1

Remaining issues:Object Path Threat Name Final Status
<System>=>C:\Users\natster\AppData\Local\acuxehot.dll *32 [2796] (disk) Gen:Variant.Kazy.190 Disinfect failed (object was not found)
<System>=>C:\Users\natster\AppData\Local\acuxehot.dll *32 [3560] (disk) Gen:Variant.Kazy.190 Disinfect failed (object was not found)
<System>=>C:\Users\natster\AppData\Local\acuxehot.dll *32 [3620] (disk) Gen:Variant.Kazy.190 Disinfect failed (object was not found)
<System>=>C:\Users\natster\AppData\Local\acuxehot.dll *32 [3596] (disk) Gen:Variant.Kazy.190 Disinfect failed (object was not found)
<System>=>C:\Users\natster\AppData\Local\acuxehot.dll *32 [4920] (disk) Gen:Variant.Kazy.190 Disinfect failed (object was not found)
<System>=>C:\Users\natster\AppData\Local\acuxehot.dll *32 [2308] (disk) Gen:Variant.Kazy.190 Disinfect failed (object was not found)


Resolved issues:Object Path Threat Name Final Status
<System>=>C:\Users\natster2\AppData\Roaming\Microsoft\Windows\Cookies\natster2@doubleclick[1].txt Cookie.DoubleClick Deleted
<System>=>HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\Syabuluse=>C:\USERS\NATSTER\APPDATA\LOCAL\ACUXEHOT.DLL Gen:Variant.Kazy.190 Moved to Quarantine after reboot
C:\Users\natster\AppData\Local\acuxehot.dll



#2 Cristi

Cristi

    Technical Support

  • Technical Support
  • PipPipPipPipPip
  • 1,575 posts
  • Gender:Male
  • Location:BD HQ

Posted 30 September 2010 - 10:06 PM

Hi there,

The infected item was moved to quarantine after reboot.
Try to run a new scan to make sure the system is clean(a deep scan).

#3 natkat

natkat

    Newbie

  • Members
  • 2 posts

Posted 03 October 2010 - 08:32 AM

QUOTE (Cristi Raducu @ Sep 30 2010, 03:06 PM) <{POST_SNAPBACK}>
Hi there,

The infected item was moved to quarantine after reboot.
Try to run a new scan to make sure the system is clean(a deep scan).



Hi Cristi,

The file was actually not moved to quarantine. After it alerted me there was a problem the option was to fix it... The infected files are fixed. Then the option was to quarantine and that does not work. The only option left is to ignore. Obvisouly that does not fix the problem and the virus is still there.

I have since done a factory re-install and the Gen:variant.kazy.190 was there again.

Any suggestions?

Thanks.

#4 Cristi

Cristi

    Technical Support

  • Technical Support
  • PipPipPipPipPip
  • 1,575 posts
  • Gender:Male
  • Location:BD HQ

Posted 03 October 2010 - 10:26 AM

The scan you initially ran was not a deep scan but a full one.
By default a full scan will not scan for rootkits so it's recommended to run a deep scan this time and if the problem persists send me by PM a set of logs as described in this article.

http://www.bitdefend...s-infected.html


#5 josue

josue

    Newbie

  • Members
  • 1 posts

Posted 13 March 2011 - 09:59 AM

QUOTE (Cristi Raducu @ Oct 3 2010, 02:26 AM) <{POST_SNAPBACK}>
The scan you initially ran was not a deep scan but a full one.
By default a full scan will not scan for rootkits so it's recommended to run a deep scan this time and if the problem persists send me by PM a set of logs as described in this article.

http://www.bitdefend...s-infected.html





Hello there, im having a similar issue with my Vista 64bit.

Gen Variant Kazy 15430 ignored, not removed (limited rights) and the only option i have is to ignore it. Please help.

#6 nikki605

nikki605

    Veteran Poster

  • Regular Bitdefender Poster
  • PipPipPipPip
  • 1,308 posts
  • Gender:Male
  • Location:Tampa, FL USA

Posted 13 March 2011 - 04:26 PM

QUOTE (josue @ Mar 13 2011, 03:59 AM) <{POST_SNAPBACK}>
Hello there, im having a similar issue with my Vista 64bit.

Gen Variant Kazy 15430 ignored, not removed (limited rights) and the only option i have is to ignore it. Please help.

Please follow Cristi's instructions to @natkat - run a deep system scan and then send the scan logs to Cristi in a PM (Personal Message).

Regards,

#7 parak

parak

    Newbie

  • Members
  • 7 posts

Posted 23 September 2011 - 02:30 PM

hi..i have problem deleting variant.kazy.36888 or ignore or quarantine it...don't know what to do...my windows is vista..and i am worried about the problem it'll cause..please help me if you know how to fix it!
p.s. i ran the deep scan and the problem persist.

#8 Cristi

Cristi

    Technical Support

  • Technical Support
  • PipPipPipPipPip
  • 1,575 posts
  • Gender:Male
  • Location:BD HQ

Posted 23 September 2011 - 02:47 PM

Please post the deep system scan results.

#9 parak

parak

    Newbie

  • Members
  • 7 posts

Posted 23 September 2011 - 04:30 PM

QUOTE (Cristi Raducu @ Sep 23 2011, 03:47 PM) <{POST_SNAPBACK}>
Please post the deep system scan results.


Gen:variant.kazy.36888

<System>=>c:program files\common files\microsoft shared\information retrieval\msitss.dll [2836] (memory dump)

#10 Cristi

Cristi

    Technical Support

  • Technical Support
  • PipPipPipPipPip
  • 1,575 posts
  • Gender:Male
  • Location:BD HQ

Posted 23 September 2011 - 04:43 PM

Great.
Now, upload this file c:program files\common files\microsoft shared\information retrieval\msitss.dll to www.sendspace.com (or on any upload site of your choice) and post here the download link.

#11 parak

parak

    Newbie

  • Members
  • 7 posts

Posted 23 September 2011 - 06:13 PM

QUOTE (Cristi Raducu @ Sep 23 2011, 05:43 PM) <{POST_SNAPBACK}>
Great.
Now, upload this file c:program files\common files\microsoft shared\information retrieval\msitss.dll to www.sendspace.com (or on any upload site of your choice) and post here the download link.



download link:


http://www.sendspace.com/file/yp5xe3

#12 Cristi

Cristi

    Technical Support

  • Technical Support
  • PipPipPipPipPip
  • 1,575 posts
  • Gender:Male
  • Location:BD HQ

Posted 23 September 2011 - 07:42 PM

Thank you for the file.
The file is clean and in a few hours it will no longer be detected.

#13 parak

parak

    Newbie

  • Members
  • 7 posts

Posted 23 September 2011 - 08:03 PM

QUOTE (Cristi Raducu @ Sep 23 2011, 08:42 PM) <{POST_SNAPBACK}>
Thank you for the file.
The file is clean and in a few hours it will no longer be detected.



thanks...but what should i do? nothing...?

#14 Cristi

Cristi

    Technical Support

  • Technical Support
  • PipPipPipPipPip
  • 1,575 posts
  • Gender:Male
  • Location:BD HQ

Posted 23 September 2011 - 09:03 PM

Basically nothing,if you run a scan in a few hours it will no longer be detected.

#15 parak

parak

    Newbie

  • Members
  • 7 posts

Posted 23 September 2011 - 09:14 PM

QUOTE (Cristi Raducu @ Sep 23 2011, 10:03 PM) <{POST_SNAPBACK}>
Basically nothing,if you run a scan in a few hours it will no longer be detected.




really thanks for your help...

#16 parak

parak

    Newbie

  • Members
  • 7 posts

Posted 24 September 2011 - 10:47 AM

QUOTE (parak @ Sep 23 2011, 10:14 PM) <{POST_SNAPBACK}>
really thanks for your help...



no....no change...it is still there!

#17 neodidier

neodidier

    Newbie

  • Members
  • 1 posts

Posted 26 September 2011 - 05:20 PM

Dear All,

I have the same problem on my computer (windows XP)
But after the deep scan, the virus stays in the system!

Also, the internet connection seems to be not working since the virus got on my computer...


What to do?

Best regards,
neodidier

#18 Cristi

Cristi

    Technical Support

  • Technical Support
  • PipPipPipPipPip
  • 1,575 posts
  • Gender:Male
  • Location:BD HQ

Posted 29 September 2011 - 10:00 AM

The problem should be fixed by now.
Please make sure that your Bitdefender is up to date and confirm whether the situation persists.

#19 parak

parak

    Newbie

  • Members
  • 7 posts

Posted 04 October 2011 - 08:11 PM

YOOOOHOOOOOOOO!!!!


Now it is fix!!! i ran the deep scan and there was no weird thing in it....
thanks.....! happy.gif

#20 Cristi

Cristi

    Technical Support

  • Technical Support
  • PipPipPipPipPip
  • 1,575 posts
  • Gender:Male
  • Location:BD HQ

Posted 05 October 2011 - 05:46 PM

I am glad to hear about this.

Case closed. tongue.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users