podejrzewam wirusa o to logi ze scanu pandy
;***********************************************************************************************************************************************************************************
ANALYSIS: 2009-02-20 11:42:25
PROTECTIONS: 1
MALWARE: 3
SUSPECTS: 1
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Panda Antivirus 2007 2.01.00 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00027660 adware/savenow Adware No 0 Yes No HKEY_CLASSES_ROOT\Interface{c285d18d-43a2-4aef-83fb-bf280e660a97}
00027660 adware/savenow Adware No 0 Yes No hkey_classes_root\clsid{9f95f736-0f62-4214-a4b4-caa6738d4c07}
00027660 adware/savenow Adware No 0 Yes No hkey_local_machine\software\classes\runmsc.loader
00027660 adware/savenow Adware No 0 Yes No hkey_local_machine\software\classes\runmsc.loader.1
00027660 adware/savenow Adware No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID{9f95f736-0f62-4214-a4b4-caa6738d4c07}
00358465 application/myglobalsearch HackTools No 0 Yes No hkey_local_machine\software\myglobalsearch
00358465 application/myglobalsearch HackTools No 0 Yes No c:\program files\myglobalsearch
00593436 W32/Autorun.AQG.worm Virus/Worm No 1 No No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP57\A0011162.exe[32788R22FWJFW\List.bat]
00593436 W32/Autorun.AQG.worm Virus/Worm No 1 Yes No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP57\A0011289.bat
00593436 W32/Autorun.AQG.worm Virus/Worm No 1 Yes No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP57\A0011343.bat
00593436 W32/Autorun.AQG.worm Virus/Worm No 1 No No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP58\A0011438.exe[32788R22FWJFW\List.bat]
00593436 W32/Autorun.AQG.worm Virus/Worm No 1 Yes No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP57\A0011089.bat
;===================================================================================================================================================================================
SUSPECTS
Sent Location U
;===================================================================================================================================================================================
No C:\Documents and Settings\007\Moje dokumenty\Azureus Downloads\CorelDraw X4 + Keygen [blaze69]\CorelDraw X4 Keygen.exe
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description U
;===================================================================================================================================================================================
184380 MEDIUM MS08-002 U
184379 MEDIUM MS08-001 U
182048 HIGH MS07-069 U
182046 HIGH MS07-067 U
182043 HIGH MS07-064 U
179553 HIGH MS07-061 U
176382 HIGH MS07-057 U
176383 HIGH MS07-058 U
170911 HIGH MS07-050 U
170907 HIGH MS07-046 U
170906 HIGH MS07-045 U
170904 HIGH MS07-043 U
164915 HIGH MS07-035 U
164913 HIGH MS07-033 U
164911 HIGH MS07-031 U
160623 HIGH MS07-027 U
157262 HIGH MS07-022 U
157261 HIGH MS07-021 U
157260 HIGH MS07-020 U
157259 HIGH MS07-019 U
156477 HIGH MS07-017 U
150253 HIGH MS07-016 U
150249 HIGH MS07-013 U
150248 HIGH MS07-012 U
150247 HIGH MS07-011 U
150243 HIGH MS07-008 U
150242 HIGH MS07-007 U
150241 MEDIUM MS07-006 U
141034 HIGH MS06-076 U
141033 MEDIUM MS06-075 U
141030 HIGH MS06-072 U
137571 HIGH MS06-070 U
137568 HIGH MS06-067 U
133387 MEDIUM MS06-065 U
133386 MEDIUM MS06-064 U
133385 MEDIUM MS06-063 U
133379 HIGH MS06-057 U
131654 HIGH MS06-055 U
129977 MEDIUM MS06-053 U
129976 MEDIUM MS06-052 U
126093 HIGH MS06-051 U
126092 MEDIUM MS06-050 U
126087 HIGH MS06-046 U
126086 MEDIUM MS06-045 U
126083 HIGH MS06-042 U
126082 HIGH MS06-041 U
126081 HIGH MS06-040 U
123421 HIGH MS06-036 U
123420 HIGH MS06-035 U
120825 MEDIUM MS06-032 U
120823 MEDIUM MS06-030 U
120818 HIGH MS06-025 U
120815 HIGH MS06-022 U
120814 HIGH MS06-021 U
117384 MEDIUM MS06-018 U
114666 HIGH MS06-015 U
114664 HIGH MS06-013 U
108744 MEDIUM MS06-008 U
108743 MEDIUM MS06-007 U
108742 MEDIUM MS06-006 U
104567 HIGH MS06-002 U
104237 HIGH MS06-001 U
96574 HIGH MS05-053 U
93395 HIGH MS05-051 U
93394 HIGH MS05-050 U
93454 MEDIUM MS05-049 U
;===================================================================================================================================================================================
a to ze strony
Export to:
Threats with free disinfection (0)
Only available for registered users.
Register free - I’m registered
Threats disinfected with the paid version (3)
Medium danger level (1)
W32/Autorun.AQ… Virus
Latent
Hide + Info
Not disinfectable
-
C:\System Volume Information_restore{DE8408F…0011438.exe[32788R22FWJFW\List.bat]
-
C:\System Volume Information_restore{DE8408F…C7F-7B71D82878FE}\RP57\A0011343.bat
-
C:\System Volume Information_restore{DE8408F…C7F-7B71D82878FE}\RP57\A0011089.bat
-
C:\System Volume Information_restore{DE8408F…C7F-7B71D82878FE}\RP57\A0011289.bat
-
C:\System Volume Information_restore{DE8408F…0011162.exe[32788R22FWJFW\List.bat]
Low danger level (2)
application/my… Tracking Application
Latent
Hide + Info Disinfected
-
c:\program files\myglobalsearch
-
hkey_local_machine\software\myglobalsearch
adware/savenow Adware
Latent
Hide + Info Disinfected
-
hkey_local_machine\software\classes\runmsc.loader.1
-
hkey_local_machine\software\classes\runmsc.loader
-
HKEY_LOCAL_MACHINE\software\classes\CLSID{9f95f736-0f62-4214-a4b4-caa6738d4c07}
-
hkey_classes_root\clsid{9f95f736-0f62-4214-a4b4-caa6738d4c07}
-
HKEY_CLASSES_ROOT\Interface{c285d18d-43a2-4aef-83fb-bf280e660a97}
Only available in paid version.
Buy - I am a client
Suspicious files (1)
C:\Documents and Settings\007\Moje dokumenty…n [blaze69]\CorelDraw X4 Keygen.exe