Smart questions
Smart answers
Smart people
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Member Login




Remember Me
Forgot Password?
Join Us!

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips now!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

Join Tek-Tips
*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Donate Today!

Do you enjoy these
technical forums?
Donate Today! Click Here

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.
Jobs from Indeed

Link To This Forum!

Partner Button
Add Stickiness To Your Site By Linking To This Professionally Managed Technical Forum.
Just copy and paste the
code below into your site.

Python, Panther, Term Service and all Remotes running on my computer!!

JLHobby1 (TechnicalUser) (OP)
25 Nov 07 21:46
Hello to all....

I have been having some major issues with my computer, which seem to lead to the effect that there is an outside source collecting my info, docs, pics and video.  I have ran every spytool available and I have ran Trendmicro pro and Norton 360, which they all say my computer is fine??  However there are three programs I dont ever remember seeing as follows; Python, Panther and Twain/Twunk.  I will list my specs below, but I have researched all of these and it seems to me that Python and Panther are some pretty serious programs to have, but I have NO idea where they came from.  BTW I am going to attach my most recent scan from Kaspersky showing all of the locked items??  Thanks in advance!!

HP m8000n
ADM Athlon 64 x2
500 gb hd
2gb ram
Vista Home Premium

KASPERSKY ONLINE SCANNER REPORT
 Sunday, November 25, 2007 7:48:52 PM
 Operating System: Microsoft Windows Vista Home Edition,  (Build 6000)
 Kaspersky Online Scanner version: 5.0.98.0
 Kaspersky Anti-Virus database last update: 26/11/2007
 Kaspersky Anti-Virus database records: 465616
-------------------------------------------------------------------------------

Scan Settings:
    Scan using the following antivirus database: extended
    Scan Archives: true
    Scan Mail Bases: true

Scan Target - Critical Areas:
    C:\Windows
    C:\Users\JohnL\AppData\Local\Temp\Low\

Scan Statistics:
    Total number of scanned objects: 43035
    Number of viruses found: 0
    Number of infected objects: 0
    Number of suspicious objects: 0
    Duration of the scan process: 00:16:22

Infected Object Name / Virus Name / Last Action
C:\Windows\Debug\PASSWD.LOG    Object is locked    skipped
C:\Windows\Debug\sam.log    Object is locked    skipped
C:\Windows\Debug\WIA\wiatrace.log    Object is locked    skipped
C:\Windows\Logs\CBS\CBS.log    Object is locked    skipped
C:\Windows\Logs\DPX\setupact.log    Object is locked    skipped
C:\Windows\Logs\DPX\setuperr.log    Object is locked    skipped
C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe.config    Object is locked    skipped
C:\Windows\Panther\UnattendGC\diagerr.xml    Object is locked    skipped
C:\Windows\Panther\UnattendGC\diagwrn.xml    Object is locked    skipped
C:\Windows\Panther\UnattendGC\setupact.log    Object is locked    skipped
C:\Windows\Panther\UnattendGC\setuperr.log    Object is locked    skipped
C:\Windows\security\database\secedit.sdb    Object is locked    skipped
C:\Windows\SoftwareDistribution\ReportingEvents.log    Object is locked    skipped
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0    Object is locked    skipped
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0    Object is locked    skipped
C:\Windows\System32\catroot2\edb.log    Object is locked    skipped
C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb    Object is locked    skipped
C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb    Object is locked    skipped
C:\Windows\System32\config\COMPONENTS    Object is locked    skipped
C:\Windows\System32\config\COMPONENTS.LOG1    Object is locked    skipped
C:\Windows\System32\config\COMPONENTS.LOG2    Object is locked    skipped
C:\Windows\System32\config\DEFAULT    Object is locked    skipped
C:\Windows\System32\config\DEFAULT.LOG1    Object is locked    skipped
C:\Windows\System32\config\DEFAULT.LOG2    Object is locked    skipped
C:\Windows\System32\config\SAM    Object is locked    skipped
C:\Windows\System32\config\SAM.LOG1    Object is locked    skipped
C:\Windows\System32\config\SAM.LOG2    Object is locked    skipped
C:\Windows\System32\config\SECURITY    Object is locked    skipped
C:\Windows\System32\config\SECURITY.LOG1    Object is locked    skipped
C:\Windows\System32\config\SECURITY.LOG2    Object is locked    skipped
C:\Windows\System32\config\SOFTWARE    Object is locked    skipped
C:\Windows\System32\config\SOFTWARE.LOG1    Object is locked    skipped
C:\Windows\System32\config\SOFTWARE.LOG2    Object is locked    skipped
C:\Windows\System32\config\SYSTEM    Object is locked    skipped
C:\Windows\System32\config\SYSTEM.LOG1    Object is locked    skipped
C:\Windows\System32\config\SYSTEM.LOG2    Object is locked    skipped
C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.0.regtrans-ms    Object is locked    skipped
C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.1.regtrans-ms    Object is locked    skipped
C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.2.regtrans-ms    Object is locked    skipped
C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.blf    Object is locked    skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TM.blf    Object is locked    skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000001.regtrans-ms    Object is locked    skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000002.regtrans-ms    Object is locked    skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000003.regtrans-ms    Object is locked    skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000004.regtrans-ms    Object is locked    skipped
C:\Windows\System32\LogFiles\Scm\SCM.EVM    Object is locked    skipped
C:\Windows\System32\LogFiles\WUDF\WUDFTrace.etl    Object is locked    skipped
C:\Windows\System32\restore\MachineGuid.txt    Object is locked    skipped
C:\Windows\System32\spool\SpoolerETW.etl    Object is locked    skipped
C:\Windows\System32\sysprep\Panther\diagerr.xml    Object is locked    skipped
C:\Windows\System32\sysprep\Panther\diagwrn.xml    Object is locked    skipped
C:\Windows\System32\sysprep\Panther\setupact.log    Object is locked    skipped
C:\Windows\System32\sysprep\Panther\setuperr.log    Object is locked    skipped
C:\Windows\System32\wbem\AutoRecover\3460B7617E0429A960E481B197F238A3.mof    Object is locked    skipped
C:\Windows\System32\wbem\AutoRecover\E478A5DB75C9721E744C05D78DBACFD3.mof    Object is locked    skipped
C:\Windows\System32\wbem\Logs\WMITracing.log    Object is locked    skipped
C:\Windows\System32\wbem\Repository\INDEX.BTR    Object is locked    skipped
C:\Windows\System32\wbem\Repository\MAPPING1.MAP    Object is locked    skipped
C:\Windows\System32\wbem\Repository\MAPPING2.MAP    Object is locked    skipped
C:\Windows\System32\wbem\Repository\OBJECTS.DATA    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Application.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\DFS Replication.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\HardwareEvents.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Internet Explorer.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Key Management Service.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Media Center.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Networking%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnosticDataCollector%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DriverFrameworks-UserMode%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Help%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkAccessProtection%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ParentalControls%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility-Assistant%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReliabilityAnalysisComponent%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Leak-Diagnostic%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\ODiag.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\OSession.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Security.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\Setup.evtx    Object is locked    skipped
C:\Windows\System32\winevt\Logs\System.evtx    Object is locked    skipped
C:\Windows\Tasks\HPCeeScheduleForJohnL.job    Object is locked    skipped
C:\Windows\Tasks\SCHEDLGU.TXT    Object is locked    skipped
C:\Windows\WindowsUpdate.log    Object is locked    skipped
C:\Windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.16386_none_cef7ceb03914a67f\dnary.xsd    Object is locked    skipped

Scan process completed.

Addtional Items:

Device\HardDisk0\DR0, DR4, DR5
SystemVolumeInformation{031222bf-9b73-11dc-9117-001310be4886}{3808876b-c176-4e48-b7ae-04046e6cc7523}
C:\$MFT
C:\$Logfile




linney (TechnicalUser)
26 Nov 07 14:14
Why don't you run and post a "Hijack This" log, it might be more useful than the Kaspersky one?

Have you tried some of your scans from Safe Mode (at least those which can run from Safe Mode)?

Things like Twunk, Twain, and Panther maybe Vista related, not sure about Python, although it may be a legit third party program.

Is this Vista 64bit?  What problems are you seeing, you don't really say?
smah (MIS)
26 Nov 07 19:35
Python is a scripting language that comes intstalled on many OEM systems.  Several other applications use it.  You should find it in Add & Remove Programs if you want to uninstall it.  Twunk & Twain are usually used by scanner software.  I'm not sure about Panther, but it shouldn't be too hard to google for.  What makes you think that there's an outside source collecting pics & video?  What are the major issues that you're referring to?

----
Steve
Small Business Support in the Connecticut River Valley of VT and NH
FAQ219-2884: How Do I Get Great Answers To my Tek-Tips Questions?
MS Knowledgebase version: How to Ask

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close