Vote for this Blog

If (Windows Lockup due to Antivirus scan – more on that later) you have not followed this series from day one start here: DAY ONE

My First Virus Alert

And now on to the reason for the title to this post. Last night, just before starting to play scrabble with the family, I decided to install some kind of Adblocking software for IE.

Off I go to the microsoft ieaddons.com to get a download from MS.

ieaddons.com is a portal that allows you to get a stack of addons for Internet Explorer, but beware – tharr be trojans about!

I downloaded Adscleaner, and the moment I clicked “Yes” to install Bitdefender manfully stood up and protected me from being infected. By three files.

  • The first Infected File: Adware.Generic.9560
  • The second Infected File: Trojan.Generic.677070
  • The third Infected File: another copy of Trojan.Generic.677070

Adscleaner comes in two parts, and the first part had two infected files included, and the second part had one.

And it is a “Trial Version”

Nice.

Addblock pro for Firefox is FREE and where Adscleaner was 3.something MB for the installer and who knows how much more MB’s that the installer downloaded – Addblock weighs in at under a meg for FF.

Also Adscleaner is now an installed program instead of just an IE addon.

About This Mornings Windows Lockup

This one I do not blame on Win7. This is Bitdefender doing it’s best to protect me from Viruses by doing a system scan every morning at 2am, but because I suspend my machine it needs to start/continue whenever I log in.

Yesterday was fine, but today it caused me to need to put down my laptop and wait fifteen minutes before I could use my mouse again.

I wonder if it is a combination of my laptop coming out out of sleep and BD running that has caused this? Probably.

The last time I had a lockup like this was in Linux while I installed Win7 in Virtualbox.

Maybe I should start logging lost productivity time due to things like this…

Those IE problems

Right, a friendly user pointed me to skype as a possible culprit for my constant IE lockup problems (fifty two yesterday) but the only addon I had until then wasBitDefender.

I will investigate this further today.

07:56

The BitDefender Scan finished, and again those two trojans showed up. Here is an excerpt from my scan log:

Overall scan summary

Scanned items : 65173
Infected items : 4
Suspicious items : 0
Resolved items : 4
Unresolved items : 8
Password-protected items : 8
Individual viruses found : 3
Scanned directories : 29700
Scanned boot sectors : 11
Scanned archives : 3
Input-output errors : 93
Scan time : 08:34:47
Files per second : 2
Here is detail on the infected items:
Object Name Threat Name Final Status
[System]=]C:\Users\Quintin\AppData\Roaming\Microsoft\Windows\Cookies\quintin@afrigator[1].txt Cookie.Gator Deleted
[System]=]C:\Users\Quintin\AppData\Roaming\Microsoft\Windows\Cookies\quintin@statcounter[1].txt Cookie.Statcounter Deleted
C:\Windows\SysWOW64\ci0-SiKernel.dll Trojan.Generic.677070 Deleted
C:\Windows\SysWOW64\SiKernel.dll Trojan.Generic.677070 Deleted
I see that BD notes cookies as infected files. Spybot notes Statcounter cookies as well…
Anyhow I will have to remove this nasty trojan from my computer if it rocks up in a scan again…
Back to those IE errors
I decided to track down at least some of my IE related issues for once. Event viewer logged these two errors every time that IE had a tab related crash.
Faulting application name: iexplore.exe, version: 8.0.7600.16385, time stamp: 0×4a5bca42

Faulting module name: ntdll.dll, version: 6.1.7600.16385, time stamp: 0×4a5be02b

Exception code: 0xc0000374

Fault offset: 0×00000000000c6cd2

Faulting process id: 0×82c

Faulting application start time: 0×01ca44cbf7217a0f

Faulting application path: C:\Program Files\Internet Explorer\iexplore.exe

Faulting module path: C:\Windows\SYSTEM32\ntdll.dll

Report Id: 85a53bdf-b0bf-11de-9e06-001377e3a18f

 

And

Faulting application name: iexplore.exe, version: 8.0.7600.16385, time stamp: 0×4a5bca42
Faulting module name: BTCommon.dll, version: 12.0.11.29, time stamp: 0×49146a48
Exception code: 0xc0000005

Fault offset: 0×0000000000006f2f

Faulting process id: 0×82c

Faulting application start time: 0×01ca44cbf7217a0f

Faulting application path: C:\Program Files\Internet Explorer\iexplore.exe

Faulting module path: C:\Program Files\BitDefender\BitDefender 2009\BTCommon.dll

Report Id: 856fac26-b0bf-11de-9e06-001377e3a18f

 

 

 

If I take the report from the second error it seems that BitDefender is the culprit here. Hmm…

Tooling through the system logs I find that BitDefender has caused severral problems. Kudos to those of you who suggested BD could be the issue! How to fix it? I could uninstall BD, but that would leave me without AV etc, so I will first look to update it. More on how that went later.

So I started planting flowers in the garden with my daughter and did not blog again for today. Reag on for DAY FIVE

No related posts.