REPORTE OTMOVEIT Código:
< C:\Documents and Settings\Main User\Configuración local\Archivos temporales de Internet\Content.IE5\E02MAJ1A\skp20_5[1].jpg >
C:\Documents and Settings\Main User\Configuración local\Archivos temporales de Internet\Content.IE5\E02MAJ1A\skp20_5[1].jpg moved successfully.
C:\iud.exe moved successfully.
File move failed. C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\keygen.exe scheduled to be moved on reboot.
C:\WINDOWS\system32\wnms.exe moved successfully.
E:\Aplicaciones De Programas\protect-folders.exe moved successfully.
F:\Mis Documentos\Diego\DiegoM\Disco D\diego2.pst moved successfully.
F:\Mis Documentos\Diego\DiegoM\Disco D\Mis cosas\CD1\Programas\calipotelec\EMTP ATP\listsever\mail9705.txt moved successfully.
H:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\keygen.exe moved successfully.
H:\RECYCLER\autorun.exe moved successfully.
OTMoveIt2 by OldTimer - Version 1.0.4.1 log created on 05112008_100240
To:C:\Documents and Settings\Main User\Configuración local\Archivos temporales de Internet\Content.IE5\E02MAJ1A\skp20_5[1].jpg;From:E:\_OTMoveIt\MovedFiles\05112008_100240\Documents and Settings\Main User\Configuración local\Archivos temporales de Internet\Content.IE5\E02MAJ1A\skp20_5[1].jpg
To:C:\iud.exe;From:E:\_OTMoveIt\MovedFiles\05112008_100240\iud.exe
To:C:\\RECYCLER\\S-1-5-21-1482476501-1644491937-682003330-1013\\keygen.exe;From:E:\_OTMoveIt\MovedFiles\05112008_100240\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\E:\\_OTMoveIt\\MovedFiles\\05112008_100240\\RECYCLER\\S-1-5-21-1482476501-1644491937-682003330-1013\\keygen.exe
To:C:\WINDOWS\system32\wnms.exe;From:E:\_OTMoveIt\MovedFiles\05112008_100240\WINDOWS\system32\wnms.exe
To:E:\Aplicaciones De Programas\protect-folders.exe;From:E:\_OTMoveIt\MovedFiles\05112008_100240\Aplicaciones De Programas\protect-folders.exe
To:F:\Mis Documentos\Diego\DiegoM\Disco D\diego2.pst;From:E:\_OTMoveIt\MovedFiles\05112008_100240\Mis Documentos\Diego\DiegoM\Disco D\diego2.pst
To:F:\Mis Documentos\Diego\DiegoM\Disco D\Mis cosas\CD1\Programas\calipotelec\EMTP ATP\listsever\mail9705.txt;From:E:\_OTMoveIt\MovedFiles\05112008_100240\Mis Documentos\Diego\DiegoM\Disco D\Mis cosas\CD1\Programas\calipotelec\EMTP ATP\listsever\mail9705.txt
To:H:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\keygen.exe;From:E:\_OTMoveIt\MovedFiles\05112008_100240\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\keygen.exe
To:H:\RECYCLER\autorun.exe;From:E:\_OTMoveIt\MovedFiles\05112008_100240\RECYCLER\autorun.exe
REPORTE DE DRWEB
keygen.exe;c:\recycler\s-1-5-21-1482476501-1644491937-682003330-1013;Trojan.DownLoader.58784;Eliminado.;
iud.exe;C:\;Trojan.Packed.181;Eliminado.;
skp20_5[1].jpg;C:\Documents and Settings\Main User\Configuración local\Archivos temporales de Internet\Content.IE5\GD7DC31T;Trojan.Packed.181;El iminado.;
wnms.exe;C:\WINDOWS\system32;Trojan.Packed.181;Eli minado.;
Process.exe;E:\Programas\Arreglo\SDFIX\SDFix\apps; Tool.Prockill;;
main.js;E:\Programas\Msn Plus Live\Messenger Plus! Live\Scripts\Now Playing;probablemente SCRIPT.Virus;;
iud.exe;E:\_OTMoveIt\MovedFiles\05112008_100240;Tr ojan.Packed.181;Eliminado.;
skp20_5[1].jpg;E:\_OTMoveIt\MovedFiles\05112008_100240\Docum ents and Settings\Main User\Configuración local\Archivos temporales de Internet\Co;Trojan.Packed.181;Eliminado.;
autorun.exe;E:\_OTMoveIt\MovedFiles\05112008_10024 0\RECYCLER;Trojan.Clive;Eliminado.;
keygen.exe;E:\_OTMoveIt\MovedFiles\05112008_100240 \RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013;Trojan.DownLoader.58784;Eliminado.;
wnms.exe;E:\_OTMoveIt\MovedFiles\05112008_100240\W INDOWS\system32;Trojan.Packed.181;Eliminado.;
keygen.exe;H:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013;Trojan.DownLoader.58784;Eliminado.;
REPORTE DE SDFIX SDFix: Version 1.181
Run by Main User on 11/05/2008 at 05:59 p.m.
Microsoft Windows XP [Versi¢n 5.1.2600]
Running From: E:\PROGRA~1\Arreglo\SDFIX\SDFix
Checking Services :
Restoring Windows Registry Values
Restoring Windows Default Hosts File
REPORTE DE PANDA Código:
;***********************************************************************************************************************************************************************************
ANALYSIS: 2008-05-11 20:05:51
PROTECTIONS: 1
MALWARE: 7
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
McAfee VirusScan Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00002009 WM/Concept.A Virus No 0 Yes Yes E:\_OTMoveIt\MovedFiles\05112008_100240\Mis Documentos\Diego\DiegoM\Disco D\Mis cosas\CD1\Programas\calipotelec\EMTP ATP\listsever\mail9705.txt[Adres.doc]
00139535 Application/Processor HackTools No 0 No No E:\Aplicaciones De Programas\Arreglo\SDFix.exe[SDFix\apps\Process.exe]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Main User\Cookies\main_user@ad.yieldmanager[1].txt
00209423 Trj/Mitglieder.EW Virus/Trojan No 1 Yes Yes diego\ \new__price.zip[text.exe]
00400035 Adware/SaveNow Adware No 0 No No E:\Programas\BS Player\bsplayer216.945_clip.exe[BSplayer_WhenUSave_InstallerInst.exe]
00959593 Hacktool/BosonGetPass HackTools No 0 Yes No F:\Mis Documentos\Diego\DiegoM\Disco D\Información General\otros\Exam 640-607\boson\bos_pass.exe
02294441 Spyware/New Spyware No 0 Yes No F:\Mis Documentos\Diego\DiegoM\Disco D\Información General\ARES\ares_galaxy_fasterdownloads.exe
;===================================================================================================================================================================================
SUSPECTS
Sent Location !
;===================================================================================================================================================================================
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description !
;===================================================================================================================================================================================
;===================================================================================================================================================================================
Gracias por la ayuda