Tech Support Forum - View Single Post

Tanmoy · 12-08-2007, 07:37 AM

Here are the reports of the new Panda scan:

.....................................................................................................................

Incident Status Location

Dialer:dialer.su Not disinfected hkey_local_machine\software\microsoft\windows\currentversion\uninstall\Switch
Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\WINDOWS\NirCmd.exe
Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Tanmoy\Local Settings\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\Cache\7ED6F4AAd01[nircmd.exe]
Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Tanmoy\Local Settings\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\Cache\7ED6F4AAd01[nircmd.cfexe]
Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Tanmoy\Desktop\ComboFix.exe[nircmd.exe]
Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Tanmoy\Desktop\ComboFix.exe[nircmd.cfexe]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.tribalfusion.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[ad.yieldmanager.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.atdmt.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.doubleclick.net/]
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.adtech.de/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.com.com/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.mediaplex.com/]
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.overture.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.serving-sys.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.questionmarket.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[server.iad.liveperson.net/]
Potentially unwanted tool:Application/SpywareStormer Not disinfected C:\Documents and Settings\Ekta\Desktop\DASKTOP\New Folder\clsReg.dll
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Ekta\Cookies\ekta@doubleclick[1].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Ekta\Cookies\ekta@ad.yieldmanager[2].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.doubleclick.net/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.atdmt.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[ad.yieldmanager.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.zedo.com/]
Spyware:Cookie/Clickbank Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.clickbank.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[server.iad.liveperson.net/hc/67227766]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[server.iad.liveperson.net/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.advertising.com/]
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.casalemedia.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.ads.pointroll.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[server.iad.liveperson.net/hc/73403369]
Spyware:Cookie/Hitslink Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[counter.hitslink.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.statcounter.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.tribalfusion.com/]
Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.bluestreak.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.apmebf.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.realmedia.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.questionmarket.com/]
Spyware:Cookie/Valueclick Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.valueclick.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.fastclick.net/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.atdmt.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[ad.yieldmanager.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.advertising.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.fastclick.net/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.zedo.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.questionmarket.com/]
Spyware:Cookie/DomainSponsor Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[landing.domainsponsor.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.revenue.net/]
Adware:Adware/Gator Not disinfected C:\Deckard\System Scanner\BACKUP\WINDOWS\Downloaded Program Files\HDPlugin1101.dll
Dialer:Dialer.YC Not disinfected D:\WINDOWS\INF\NSUPD9X.INF
Spyware:Cookie/Atlas DMT Not disinfected D:\WINDOWS\Cookies\tanmoy laskar@atdmt[1].txt
Dialer:Dialer.YC Not disinfected D:\WINDOWS\Downloaded Program Files\NSupd9x.inf
Adware:Adware/Dyfuca Not disinfected D:\WINDOWS\Downloaded Program Files\UniDist.inf
Potentially unwanted tool:Application/SpywareStormer Not disinfected F:\New Folder\New Folder\clsReg.dll

12-08-2007, 07:37 AM	#8 (permalink)
Tanmoy Registered User Join Date: Dec 2007 Posts: 7 OS: winXP	Re: Suspected Malware Here are the reports of the new Panda scan: ..................................................................................................................... Incident Status Location Dialer:dialer.su Not disinfected hkey_local_machine\software\microsoft\windows\currentversion\uninstall\Switch Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\WINDOWS\NirCmd.exe Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Tanmoy\Local Settings\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\Cache\7ED6F4AAd01[nircmd.exe] Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Tanmoy\Local Settings\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\Cache\7ED6F4AAd01[nircmd.cfexe] Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Tanmoy\Desktop\ComboFix.exe[nircmd.exe] Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Tanmoy\Desktop\ComboFix.exe[nircmd.cfexe] Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.tribalfusion.com/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.atdmt.com/] Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.doubleclick.net/] Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.adtech.de/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.com.com/] Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.mediaplex.com/] Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.overture.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.bs.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.serving-sys.com/] Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[.questionmarket.com/] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Tanmoy\Application Data\Mozilla\Firefox\Profiles\i68s2gg8.default\COOKIES.TXT[server.iad.liveperson.net/] Potentially unwanted tool:Application/SpywareStormer Not disinfected C:\Documents and Settings\Ekta\Desktop\DASKTOP\New Folder\clsReg.dll Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Ekta\Cookies\ekta@doubleclick[1].txt Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Ekta\Cookies\ekta@ad.yieldmanager[2].txt Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.doubleclick.net/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.atdmt.com/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.zedo.com/] Spyware:Cookie/Clickbank Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.clickbank.net/] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[server.iad.liveperson.net/hc/67227766] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[server.iad.liveperson.net/] Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.advertising.com/] Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.casalemedia.com/] Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.ads.pointroll.com/] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[server.iad.liveperson.net/hc/73403369] Spyware:Cookie/Hitslink Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[counter.hitslink.com/] Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.statcounter.com/] Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.tribalfusion.com/] Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.bluestreak.com/] Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.apmebf.com/] Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.realmedia.com/] Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.questionmarket.com/] Spyware:Cookie/Valueclick Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.valueclick.com/] Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Ekta\Application Data\Mozilla\Firefox\Profiles\te1xh4ux.default\COOKIES.TXT[.fastclick.net/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.atdmt.com/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.advertising.com/] Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.fastclick.net/] Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.zedo.com/] Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.questionmarket.com/] Spyware:Cookie/DomainSponsor Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[landing.domainsponsor.com/] Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Hemant.EKANT\Application Data\Mozilla\Firefox\Profiles\qvcoc4ue.default\COOKIES.TXT[.revenue.net/] Adware:Adware/Gator Not disinfected C:\Deckard\System Scanner\BACKUP\WINDOWS\Downloaded Program Files\HDPlugin1101.dll Dialer:Dialer.YC Not disinfected D:\WINDOWS\INF\NSUPD9X.INF Spyware:Cookie/Atlas DMT Not disinfected D:\WINDOWS\Cookies\tanmoy laskar@atdmt[1].txt Dialer:Dialer.YC Not disinfected D:\WINDOWS\Downloaded Program Files\NSupd9x.inf Adware:Adware/Dyfuca Not disinfected D:\WINDOWS\Downloaded Program Files\UniDist.inf Potentially unwanted tool:Application/SpywareStormer Not disinfected F:\New Folder\New Folder\clsReg.dll