It won't do any harm to remove those in quarantine, it won't make any difference either. There are clearly elements of the trojan or worm still on your machine that is reinstalling itself once cleaned, therefore, we need to get rid of all of it. But, since it was fine for a while after cleaning with Ewido we know that malware is the cause ;)
Please perform an online virus scan with at least two of the sites below (more won't hurt):
BitDefender Free Online Virus Scanhttp://www.bitdefender.com/scan/licence.php
Make sure you tick AutoClean
under Scan Options
Make sure you tick Disinfect automatically
under Scan Options
Housecall at TrendMicroTrend Micro Anti-Spyware-scan
Click the Scan and Clean your PC
and save it to your desktop.
* Doubleclick tmas-web-scan.exe-icon
on your desktop
* Click agree to accept the terms of the license.
* After loading the definitions, click Start Scan
* When the scan is done, click Scan Results
* Check every item that was found (normally they are checked by default, so make sure they are all checked) and click Clean Threats Now
* A confirmation prompt will appear. Click OK
* Click Exit.Reboot your computer
After reboot, you'll see that the tmas-web-scan.exe-icon on your desktop will be gone, but there will be an Antispywarelog
instead. It's a textfile.
Copy and paste the entire content of it in your next reply.
eTrust Antivirus Web Scannerhttp://www3.ca.com/securityadvisor/virusinfo/scan.aspx
RAV Antivirus Online Scanhttp://www.ravantivirus.com/scan
Or, if using Firefox,TRENDMICRO-better for firefox
If you could make one of those scans by Panda and copy and paste in here the Panda log that would be great.
Please run full scans with Ad-Aware SE and Spybot-S&D as follows:
(If you already have Ad-Aware SE 1.06 and Spybot 1.4 installed, you can skip the installation steps. If you don't, please uninstall your old versions and install the new ones from the links below.)Full Ad-Aware Scan
Please download Ad-Aware SE from here:http://www.lavasoftusa.com/support/download/
Install Ad-Aware and run it. In the bottom-right hand corner, click "Check for updates now". Click "Connect" to download the newest reference file.
Now we will configure Ad-Aware to perform a full scan. In the Ad-Aware main window, click on the gear icon at the top of the screen to open the preferences window. In the "General" window, make sure the following options are selected:
1) Automatically save log-file
2) Automatically quarantine objects prior to removal
3) Safe Mode (always request confirmation)
Click the "Scanning" button on the left-hand side and make sure the following options are selected:
1) Scan within archives
2) Scan active processes
3) Scan registry
4) Deep scan registry
4) Scan my IE Favorites for banned URLs
5) Scan my Hosts file
Please also click on "Select drives & folders to scan" and select your hard drive(s). Then click the "Advanced" button on the left-hand side and make sure all the options under "Log-file Detail Level" are selected. Next, click the "Tweak" button on the left-hand side. Click on "Scanning Engine" and make sure the following options are selected:
1) Unload recognized processes & modules during scanning
2) Obtain command line of scanned processes
3) Scan registry for all users instead of current user only
Click on "Cleaning Engine" and make sure the following options are selected:
1) Always try to unload modules before deletion
2) During removal, unload Explorer and IE if necessary
3) Let Windows remove files in use at next reboot
4) Delete quarantined objects after restoring
Finally, click on "Safety Settings" and make sure the following options are selected:
1) Automatically select problematic objects in results lists
2) Write-protect system files after repair (Hosts file, etc)
Click on "Proceed" to save the preferences. Then please click the "Start" button on the bottom right side to begin a scan. Select "Use custom scanning options" and then click "Next". Ad-Aware will then scan for malware. When it is finished, make sure any objects listed in RED
are selected and click "Next" to remove the objects. Then please restart your computer.Spybot Full Scan
Next, please download Spybot-S&D 1.4 from here:http://www.safer-networking.org/en/mirrors/index.html
Install Spybot-S&D 1.4 and run it. Select "Search for updates" and then select all available updates. Click on the drop-down box in the top center to choose a download location nearest to you. Then click "Download updates". When all updates have downloaded, close Spybot-S&D, and then run it again. Click on "Check for problems". When the scan has finished, select any entries listed in red
and click "Fix selected problems". Then please restart your computer again.
Note: The Ad-aware and Spybot scans will yield better results if after updating them you run them in Safe Mode. Please post up anything that those two scanners find that are more serious then tracking cookies. If after those scans you want to run Ewido again that will help too, just update it first and running Ewido in safe mode will also yield better results.
Post up the Panda log and the other items requested and let me know if it has helped your problem