Virus From Panda Active Scan???

Discussion in 'Malware Help (A Specialist Will Reply)' started by ANHEDONIC, Jun 3, 2005.

  1. ANHEDONIC

    ANHEDONIC Will Title For Food

    i decided to visit Pandasoftware.com to do the Panda Active Scan to check my pc... in the process of setting up Active Scan with Internet Explorer... i got a message from Internet Explorer SP2 asking me to allow an Active X cab file so that Panda Active scan would work... upon doing that, Avast Antivirus hit me with this virus message...

    not sure what's going on here:

    http://img.photobucket.com/albums/v180/ANHEDONIC/Panda.jpg
     
    ANHEDONIC, Jun 3, 2005
    #1
  2. ANHEDONIC

    ANHEDONIC Will Title For Food

    getting a mini anxiety attack here =]

    i'm guessing Avast's active scanner saw the phrase of the virus/worm name and determined it was a threat? If this is the case, would i just have to disable Avast's Web Shield to stop it from detecting this while i'm running the Panda Active Scan?
     
    ANHEDONIC, Jun 3, 2005
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    It's a false positive. I have seen this many times. Ignore it.
     
    chaslang, Jun 3, 2005
    #3
  4. ANHEDONIC

    ANHEDONIC Will Title For Food

    thanks for replying Chas..

    http://www.avast.com/eng/faq_panda.html

    (that's all the false positives that Avast finds with Panda)


    on a side note, Panda found 2 pieces of Adware and did not (or could not) disinfect...


    Incident Status Location

    Adware:Adware/MemoryWatcher No disinfected Windows Registry
    Adware:Adware/DelFinMedia No disinfected C:\keys.ini


    i'm experiencing no ill effects on my PC... I've got SpywareBlaster, Adaware, Spybot all installed and updated... I also recently ran a scan with Webroot's spysweeper... any idea on how I could eliminate these 2 pieces of Adware??? Thanks....
     
    ANHEDONIC, Jun 3, 2005
    #4
  5. ANHEDONIC

    ANHEDONIC Will Title For Food

    i looked up DelFin Media on Pest Patrol, and was unable to find any of the registry entries they list in the manual removal process...

    http://www.pestpatrol.com/zks/pestinfo/d/delfin_media_viewer.asp

    The Pest Patrol links for the Memory Watcher program do not work (Page Not Found)

    i don't see any unusual processes in my Task Manager, and again, no ill effects on my PC... but knowing that these 2 pieces of Adware are on my comp, i'd like to try to remove them...
     
    ANHEDONIC, Jun 3, 2005
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Did Panda supply you with the registry key for MemoryWatcher?

    Also for DelFin, you could just delete the keys.ini file. But you should make sure that this file is not for something else you use (could be a false positive too). Look at keys.ini in notepad. What's in it?
     
    chaslang, Jun 3, 2005
    #6
  7. ANHEDONIC

    ANHEDONIC Will Title For Food

    no key for Memory Watcher...


    the keys.ini file related to DelFin Media is a hidden file on my C drive, and opening up with notepad produces this jargon:

    âØá€* H@JB
    } éÆŸ*XQ—G¶‡1©ÓŠ2m75q75

    to my knowledge it is not used for any other program (i don't run a whole lot on my pc)...
     
    ANHEDONIC, Jun 3, 2005
    #7
  8. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    chaslang, Jun 3, 2005
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds