eluni,
Welcome to the forum.
The information provided by BanziBaby is essentially correct about Panda. Avast will give false positives since by not encrypting their signiture files, Panda files are considered viri since Avast cannot ok them.
However, the detection of the Thorin and Qozah files worry me since they ARE genuine viri.
W95/Thorin
Type
Windows 95 executable file virus.
Detected by Sophos Anti-Virus since November 1999.
Description On the 26th October, the virus will do one or more of the following: Drop a file so that on startup you will first have to answer a quiz, change the hard disk's name to THORIN, swap the mouse buttons over, display a message box, or launch a web browser to
www.microsoft.com.
W32/Qozah aka Quza
Virus Characteristics
This virus uses polymorphic encryption. The decryption code is randomly scattered in functions and intermingled with other code. Sections of host programs are stored in the encrypted body of virus. The virus contains the following message, which is never displayed:
"Unreal virus written by Qozah.So how are you going to clean this one, AV guys ?.It's your turn, to tell the people that buy your shit that you cannot disinfect this one without risking their data " Under test conditions this virus typically crashes under Windows 95 & 98. It has been around since 2000. Nasty little bugger!
Aliases Name
PE_QOZAH.A (Trend)
W32/Qozah-3365 (Sophos)
Win32.Qozah.3365 (AVP)
Creating a new swap file as BB instructed should take care of the W386 swap error message.
My recommendation would be to stop using Panda and install Avast.
I will check on the system requirements for Avast Home 4.1 which is the latest version, and get back to you.
Nice to have you on the Forum.
techie
