SuperAntispyware scan

Tarnak · Aug 28, 2010

Just ran a scan, and still getting these Koob Face Fp's

I had reported these in June by email and PM to Nick. But, as can be seen from my latest scan below, nothing has changed.

P.S. I don't scan that often, because I have a number of snapshots, and I can't seem to be able to exclude the ones I don't want to scan....so takes forever!
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 08/28/2010 at 03:30 PM

Application Version : 4.41.1000

Core Rules Database Version : 5420
Trace Rules Database Version: 3232

Scan type : Quick Scan
Total Scan Time : 02:34:30

Memory items scanned : 514
Memory threats detected : 0
Registry items scanned : 1593
Registry threats detected : 2
File items scanned : 165228
File threats detected : 44

Security.HiJack[ImageFileExecutionOptions]
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TASKMGR.EXE
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TASKMGR.EXE#Debugger

Trojan.Agent/Gen-Koobface[Bonkers]
C:\PROGRAM FILES\FILEMAP BY BB V405\FILEMAP.EXE
C:\$ISR\1\DOCUMENTS AND SETTINGS\<My Name>\DESKTOP\FILEMAP BY BB.LNK
C:\$ISR\1\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\FILEMAP BY BB.LNK
C:\PROGRAM FILES\FILEMAP BY BB V405\UNINSTAL.EXE
C:\$ISR\1\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\UNINSTAL FILEMAP.LNK
C:\$ISR\1\PROGRAM FILES\FILEMAP BY BB V405\FILEMAP.EXE
C:\$ISR\1\PROGRAM FILES\FILEMAP BY BB V405\UNINSTAL.EXE
C:\$ISR\2\DOCUMENTS AND SETTINGS\<My Name>\DESKTOP\FILEMAP BY BB.LNK
C:\$ISR\2\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\FILEMAP BY BB.LNK
C:\$ISR\2\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\UNINSTAL FILEMAP.LNK
C:\$ISR\2\PROGRAM FILES\FILEMAP BY BB V405\FILEMAP.EXE
C:\$ISR\2\PROGRAM FILES\FILEMAP BY BB V405\UNINSTAL.EXE
C:\$ISR\3\DOCUMENTS AND SETTINGS\<My Name>\DESKTOP\FILEMAP BY BB.LNK
C:\$ISR\3\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\FILEMAP BY BB.LNK
C:\$ISR\3\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\UNINSTAL FILEMAP.LNK
C:\$ISR\3\PROGRAM FILES\FILEMAP BY BB V405\FILEMAP.EXE
C:\$ISR\3\PROGRAM FILES\FILEMAP BY BB V405\UNINSTAL.EXE
C:\$ISR\4\DOCUMENTS AND SETTINGS\<My Name>\DESKTOP\FILEMAP BY BB.LNK
C:\$ISR\4\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\FILEMAP BY BB.LNK
C:\$ISR\4\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\UNINSTAL FILEMAP.LNK
C:\$ISR\4\PROGRAM FILES\FILEMAP BY BB V405\FILEMAP.EXE
C:\$ISR\4\PROGRAM FILES\FILEMAP BY BB V405\UNINSTAL.EXE
C:\$ISR\5\DOCUMENTS AND SETTINGS\<My Name>\DESKTOP\FILEMAP BY BB.LNK
C:\$ISR\5\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\FILEMAP BY BB.LNK
C:\$ISR\5\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\UNINSTAL FILEMAP.LNK
C:\$ISR\5\PROGRAM FILES\FILEMAP BY BB V405\FILEMAP.EXE
C:\$ISR\5\PROGRAM FILES\FILEMAP BY BB V405\UNINSTAL.EXE
C:\$ISR\6\COPY OF EXTERNAL\TODAY 061207\BACKUPS\PROGRAM FILES\FILEMAP BY BB V404\FILEMAP.EXE
C:\$ISR\6\COPY OF EXTERNAL\TODAY 061207\BACKUPS\PROGRAM FILES\FILEMAP BY BB V404\UNINSTAL.EXE
C:\$ISR\6\DOCUMENTS AND SETTINGS\<My Name>\DESKTOP\FILEMAP BY BB.LNK
C:\$ISR\6\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\FILEMAP BY BB.LNK
C:\$ISR\6\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\UNINSTAL FILEMAP.LNK
C:\$ISR\6\PROGRAM FILES\FILEMAP BY BB V405\FILEMAP.EXE
C:\$ISR\6\PROGRAM FILES\FILEMAP BY BB V405\UNINSTAL.EXE
C:\$ISR\7\DOCUMENTS AND SETTINGS\<My Name>\DESKTOP\FILEMAP BY BB.LNK
C:\$ISR\7\DOCUMENTS AND SETTINGS\<My Name>\LOCAL SETTINGS\APPLICATION DATA\ANVIR\TRAY\FILEMAP BY BB.LNK
C:\$ISR\7\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\FILEMAP BY BB.LNK
C:\$ISR\7\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\UNINSTAL FILEMAP.LNK
C:\$ISR\7\PROGRAM FILES\FILEMAP BY BB V405\FILEMAP.EXE
C:\$ISR\7\PROGRAM FILES\FILEMAP BY BB V405\UNINSTAL.EXE
C:\DOCUMENTS AND SETTINGS\<My Name>\DESKTOP\FILEMAP BY BB.LNK
C:\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\FILEMAP BY BB.LNK
C:\DOCUMENTS AND SETTINGS\<My Name>\START MENU\PROGRAMS\FILEMAP BY BB VER 4.0.5\UNINSTAL FILEMAP.LNK

progress · Aug 28, 2010

SAS has become SUPERFalsePositiveWare - look here

I will never use it again

Tarnak · Aug 28, 2010

Yeah, I noticed that post...but because I hadn't upgraded to the latest version, I thought it inappropriate to post in that thread.

Your point is taken!

Kernelwars · Aug 28, 2010

It had to go from my system too..

Kernelwars · Aug 28, 2010

progress said:

SAS has become SUPERFalsePositiveWare - look here

I will never use it again
Click to expand...

indeed it used to be nice now its annoyance.

sg09 · Aug 28, 2010

Guys all of these have been fixed... I got no FP now...

Cudni · Aug 28, 2010

Lets keep it in one thread (as mentioned above) and the fp issue has been fixed anyway

Log in or Sign up

SuperAntispyware scan

Tarnak Registered Member

progress Guest

Tarnak Registered Member

Kernelwars Registered Member

Kernelwars Registered Member

sg09 Registered Member

Cudni Global Moderator

Log in or Sign up

SuperAntispyware scan

Tarnak Registered Member

progress Guest

Tarnak Registered Member

Kernelwars Registered Member

Kernelwars Registered Member

sg09 Registered Member

Cudni Global Moderator

Useful Searches