Alright then... no more worries. I have followed all the new steps, adding the new registry and cleaning up the cookies using ATF Cleaner.
Quote:
Originally Posted by chemist
The files on your L: drive are likely false positives. Is drive L: a Western Digital drive?
|
Yes, a portable Western Digital drive. I was kind of shocked to find the autorun files being considered harmful after that last PandaScan. I had no idea how that happened, or how to deal with it.
I performed a new PandaScan just for extra precautions... fewer threats than last time were picked out. Here's the new scan log:
;***********************************************************************************************************************************************************************************
ANALYSIS: 2008-08-12 19:08:05
PROTECTIONS: 1
MALWARE: 19
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Kaspersky Anti-Virus 7.0 7.0.1.325 No Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00040735 adware/whenusearch Adware No 0 Yes No c:\program files\common files\whenu
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\00000215.bak
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001af.bak
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001f0.bak
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001ed.bak
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001de.bak
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001f3.bak
00145807 Cookie/Linksynergy TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001d7.bak
00145807 Cookie/Linksynergy TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\00000221.bak
00167642 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001db.bak
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001b3.bak
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001cc.bak
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\0000020d.bak
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001df.bak
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP7\PdmHist\9f4.C227C6EE01C8FC8F.history\000001a6.bak
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{A7A9D236-CB2F-4803-B6CE-B491DE0BE1F8}\RP313\A0066625.EXE
01895149 Malicious Packer SecRisk No 0 Yes No L:\WDSync.exe
01895149 Malicious Packer SecRisk No 0 Yes No L:\WDSync_v6_3_102.exe
01895149 Malicious Packer SecRisk No 0 Yes No L:\WDSync.zip[WDSync_v6_3_102.exe]
03467222 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{A7A9D236-CB2F-4803-B6CE-B491DE0BE1F8}\RP312\A0065397.dll
03467224 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{A7A9D236-CB2F-4803-B6CE-B491DE0BE1F8}\RP310\A0065253.dll
03468693 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{A7A9D236-CB2F-4803-B6CE-B491DE0BE1F8}\RP312\A0065396.dll
;===================================================================================================================================================================================
SUSPECTS
Sent Location U
;===================================================================================================================================================================================
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description U
;===================================================================================================================================================================================
;===================================================================================================================================================================================