Pandscan prosze sprawdzic logi


(Devilq3) #1

podejrzewam wirusa o to logi ze scanu pandy

;***********************************************************************************************************************************************************************************

ANALYSIS: 2009-02-20 11:42:25

PROTECTIONS: 1

MALWARE: 3

SUSPECTS: 1

;***********************************************************************************************************************************************************************************

PROTECTIONS

Description Version Active Updated

;===================================================================================================================================================================================

Panda Antivirus 2007 2.01.00 Yes Yes

;===================================================================================================================================================================================

MALWARE

Id Description Type Active Severity Disinfectable Disinfected Location

;===================================================================================================================================================================================

00027660 adware/savenow Adware No 0 Yes No HKEY_CLASSES_ROOT\Interface{c285d18d-43a2-4aef-83fb-bf280e660a97}

00027660 adware/savenow Adware No 0 Yes No hkey_classes_root\clsid{9f95f736-0f62-4214-a4b4-caa6738d4c07}

00027660 adware/savenow Adware No 0 Yes No hkey_local_machine\software\classes\runmsc.loader

00027660 adware/savenow Adware No 0 Yes No hkey_local_machine\software\classes\runmsc.loader.1

00027660 adware/savenow Adware No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID{9f95f736-0f62-4214-a4b4-caa6738d4c07}

00358465 application/myglobalsearch HackTools No 0 Yes No hkey_local_machine\software\myglobalsearch

00358465 application/myglobalsearch HackTools No 0 Yes No c:\program files\myglobalsearch

00593436 W32/Autorun.AQG.worm Virus/Worm No 1 No No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP57\A0011162.exe[32788R22FWJFW\List.bat]

00593436 W32/Autorun.AQG.worm Virus/Worm No 1 Yes No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP57\A0011289.bat

00593436 W32/Autorun.AQG.worm Virus/Worm No 1 Yes No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP57\A0011343.bat

00593436 W32/Autorun.AQG.worm Virus/Worm No 1 No No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP58\A0011438.exe[32788R22FWJFW\List.bat]

00593436 W32/Autorun.AQG.worm Virus/Worm No 1 Yes No C:\System Volume Information_restore{DE8408F6-6990-4F7B-9C7F-7B71D82878FE}\RP57\A0011089.bat

;===================================================================================================================================================================================

SUSPECTS

Sent Location U

;===================================================================================================================================================================================

No C:\Documents and Settings\007\Moje dokumenty\Azureus Downloads\CorelDraw X4 + Keygen [blaze69]\CorelDraw X4 Keygen.exe

;===================================================================================================================================================================================

VULNERABILITIES

Id Severity Description U

;===================================================================================================================================================================================

184380 MEDIUM MS08-002 U

184379 MEDIUM MS08-001 U

182048 HIGH MS07-069 U

182046 HIGH MS07-067 U

182043 HIGH MS07-064 U

179553 HIGH MS07-061 U

176382 HIGH MS07-057 U

176383 HIGH MS07-058 U

170911 HIGH MS07-050 U

170907 HIGH MS07-046 U

170906 HIGH MS07-045 U

170904 HIGH MS07-043 U

164915 HIGH MS07-035 U

164913 HIGH MS07-033 U

164911 HIGH MS07-031 U

160623 HIGH MS07-027 U

157262 HIGH MS07-022 U

157261 HIGH MS07-021 U

157260 HIGH MS07-020 U

157259 HIGH MS07-019 U

156477 HIGH MS07-017 U

150253 HIGH MS07-016 U

150249 HIGH MS07-013 U

150248 HIGH MS07-012 U

150247 HIGH MS07-011 U

150243 HIGH MS07-008 U

150242 HIGH MS07-007 U

150241 MEDIUM MS07-006 U

141034 HIGH MS06-076 U

141033 MEDIUM MS06-075 U

141030 HIGH MS06-072 U

137571 HIGH MS06-070 U

137568 HIGH MS06-067 U

133387 MEDIUM MS06-065 U

133386 MEDIUM MS06-064 U

133385 MEDIUM MS06-063 U

133379 HIGH MS06-057 U

131654 HIGH MS06-055 U

129977 MEDIUM MS06-053 U

129976 MEDIUM MS06-052 U

126093 HIGH MS06-051 U

126092 MEDIUM MS06-050 U

126087 HIGH MS06-046 U

126086 MEDIUM MS06-045 U

126083 HIGH MS06-042 U

126082 HIGH MS06-041 U

126081 HIGH MS06-040 U

123421 HIGH MS06-036 U

123420 HIGH MS06-035 U

120825 MEDIUM MS06-032 U

120823 MEDIUM MS06-030 U

120818 HIGH MS06-025 U

120815 HIGH MS06-022 U

120814 HIGH MS06-021 U

117384 MEDIUM MS06-018 U

114666 HIGH MS06-015 U

114664 HIGH MS06-013 U

108744 MEDIUM MS06-008 U

108743 MEDIUM MS06-007 U

108742 MEDIUM MS06-006 U

104567 HIGH MS06-002 U

104237 HIGH MS06-001 U

96574 HIGH MS05-053 U

93395 HIGH MS05-051 U

93394 HIGH MS05-050 U

93454 MEDIUM MS05-049 U

;===================================================================================================================================================================================

a to ze strony

Export to:

Threats with free disinfection (0)

Only available for registered users.

Register free - I'm registered

Threats disinfected with the paid version (3)

Medium danger level (1)

W32/Autorun.AQ... Virus

Latent

Hide + Info

Not disinfectable

  1. C:\System Volume Information_restore{DE8408F...0011438.exe[32788R22FWJFW\List.bat]

  2. C:\System Volume Information_restore{DE8408F...C7F-7B71D82878FE}\RP57\A0011343.bat

  3. C:\System Volume Information_restore{DE8408F...C7F-7B71D82878FE}\RP57\A0011089.bat

  4. C:\System Volume Information_restore{DE8408F...C7F-7B71D82878FE}\RP57\A0011289.bat

  5. C:\System Volume Information_restore{DE8408F...0011162.exe[32788R22FWJFW\List.bat]

Low danger level (2)

application/my... Tracking Application

Latent

Hide + Info Disinfected

  1. c:\program files\myglobalsearch

  2. hkey_local_machine\software\myglobalsearch

adware/savenow Adware

Latent

Hide + Info Disinfected

  1. hkey_local_machine\software\classes\runmsc.loader.1

  2. hkey_local_machine\software\classes\runmsc.loader

  3. HKEY_LOCAL_MACHINE\software\classes\CLSID{9f95f736-0f62-4214-a4b4-caa6738d4c07}

  4. hkey_classes_root\clsid{9f95f736-0f62-4214-a4b4-caa6738d4c07}

  5. HKEY_CLASSES_ROOT\Interface{c285d18d-43a2-4aef-83fb-bf280e660a97}

Only available in paid version.

Buy - I am a client

Suspicious files (1)

C:\Documents and Settings\007\Moje dokumenty...n [blaze69]\CorelDraw X4 Keygen.exe


(jessica) #2

Nie rozumiem, po co dałeś ten raport?

Przecież Panda pokazała, co trzeba usunąć.

jessi