Jump to content
Seth

Malware prevented SAS installation.

By Seth, in General Questions

Recommended Posts

Seth   

Seth
Posted

I first tried to open SAS Pro Trial from the home site. This resulted in nothing but a tiny inactive download window. I then tried to Save SAS, but the download window would just close. Note: Other third party downloads were fine.

I also tried to install SAS from my USB flash drive to no avail. I ended up slaving the drive and running SAS on it. After that, I was able to install SAS and run a full scan. Here is the log from the slave scan:

SUPERAntiSpyware Scan Log

https://www.superantispyware.com

Generated 10/02/2007 at 07:12 PM

Application Version : 3.9.1008

Core Rules Database Version : 3317

Trace Rules Database Version: 1318

Scan type : Quick Scan

Total Scan Time : 00:30:24

Memory items scanned : 271

Memory threats detected : 0

Registry items scanned : 548

Registry threats detected : 0

File items scanned : 38716

File threats detected : 39

Malware.DriveCleaner

D:\PROGRAM FILES\DRIVECLEANER FREE\INSTHELP.EXE

D:\PROGRAM FILES\DRIVECLEANER FREE\UDC.EXE

Trojan.NewDotNet-Installer

D:\PROGRAM FILES\FILESUBMIT\TKCHRISHOMESSS.EXE\NNWDAC638.EXE

Adware.WhenU

D:\PROGRAM FILES\FILESUBMIT\TKCHRISHOMESSS.EXE\VVSNINST.EXE

Trojan.NewDotNet

D:\PROGRAM FILES\NEWDOTNET\NEWDOTNET7_48.DLL

D:\PROGRAM FILES\NEWDOTNET\UNINSTALL6_38.EXE

D:\PROGRAM FILES\NEWDOTNET\UNINSTALL7_48.EXE

D:\WINDOWS\NDNUNINSTALL6_38.EXE

D:\WINDOWS\NDNUNINSTALL7_22.EXE

D:\WINDOWS\NDNUNINSTALL7_48.EXE

Adware.HotBar/SpamBlockerUtility (Low Risk)

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\CML.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\CONTACT.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBCORESRV.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBGUARD.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBHOSTIE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBHOSTOE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBHOSTOL.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBINST.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBINSTIE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBOEADDON.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBSRV.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBTOOLBAR.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBWEATHERONTRAY.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\CML.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBCORESRV.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBGUARD.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBHOSTOE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBHOSTOL.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBINST.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBINSTIE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBOEADDON.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBSRV.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBTOOLBAR.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBWEATHERONTRAY.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\SBTV\SBTVHELPER.DLL

D:\WINDOWS\SYSTEM32\DKOYPKEY.EXE

Adware.Vundo Variant

D:\WINDOWS\SYSTEM32\AWVVV.DLL

D:\WINDOWS\SYSTEM32\PMNNN.DLL

D:\WINDOWS\SYSTEM32\SSQNOPN.DLL

Nick,

If you need to see the scan log after I was able to install SAS, then let please let me know.

Share this post

Link to post
Share on other sites

SUPERAntiSpy   

SUPERAntiSpy
Posted
I first tried to open SAS Pro Trial from the home site. This resulted in nothing but a tiny inactive download window. I then tried to Save SAS, but the download window would just close. Note: Other third party downloads were fine.

I also tried to install SAS from my USB flash drive to no avail. I ended up slaving the drive and running SAS on it. After that, I was able to install SAS and run a full scan. Here is the log from the slave scan:

SUPERAntiSpyware Scan Log

https://www.superantispyware.com

Generated 10/02/2007 at 07:12 PM

Application Version : 3.9.1008

Core Rules Database Version : 3317

Trace Rules Database Version: 1318

Scan type : Quick Scan

Total Scan Time : 00:30:24

Memory items scanned : 271

Memory threats detected : 0

Registry items scanned : 548

Registry threats detected : 0

File items scanned : 38716

File threats detected : 39

Malware.DriveCleaner

D:\PROGRAM FILES\DRIVECLEANER FREE\INSTHELP.EXE

D:\PROGRAM FILES\DRIVECLEANER FREE\UDC.EXE

Trojan.NewDotNet-Installer

D:\PROGRAM FILES\FILESUBMIT\TKCHRISHOMESSS.EXE\NNWDAC638.EXE

Adware.WhenU

D:\PROGRAM FILES\FILESUBMIT\TKCHRISHOMESSS.EXE\VVSNINST.EXE

Trojan.NewDotNet

D:\PROGRAM FILES\NEWDOTNET\NEWDOTNET7_48.DLL

D:\PROGRAM FILES\NEWDOTNET\UNINSTALL6_38.EXE

D:\PROGRAM FILES\NEWDOTNET\UNINSTALL7_48.EXE

D:\WINDOWS\NDNUNINSTALL6_38.EXE

D:\WINDOWS\NDNUNINSTALL7_22.EXE

D:\WINDOWS\NDNUNINSTALL7_48.EXE

Adware.HotBar/SpamBlockerUtility (Low Risk)

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\CML.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\CONTACT.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBCORESRV.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBGUARD.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBHOSTIE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBHOSTOE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBHOSTOL.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBINST.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBINSTIE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBOEADDON.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBSRV.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBTOOLBAR.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.0.0\SBWEATHERONTRAY.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\CML.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBCORESRV.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBGUARD.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBHOSTOE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBHOSTOL.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBINST.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBINSTIE.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBOEADDON.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBSRV.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBTOOLBAR.DLL

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\BIN\4.8.4.0\SBWEATHERONTRAY.EXE

D:\PROGRAM FILES\SPAMBLOCKERUTILITY\SBTV\SBTVHELPER.DLL

D:\WINDOWS\SYSTEM32\DKOYPKEY.EXE

Adware.Vundo Variant

D:\WINDOWS\SYSTEM32\AWVVV.DLL

D:\WINDOWS\SYSTEM32\PMNNN.DLL

D:\WINDOWS\SYSTEM32\SSQNOPN.DLL

Nick,

If you need to see the scan log after I was able to install SAS, then let please let me know.

Interesting. None of the above should have blocked us from installing.

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Go To Topic Listing General Questions
×