PDA

Ver la Versión Completa : Problema con ventana emergente

Gale0n
13/05/08, 15:37:20
Hola , entre en una pagina web donde se podia visualizar unos videos pero antes tenias que aceptar el ActiveX lo acepte y desde entonces me sale esta ventana
http://img180.imageshack.us/img180/3636/putovirushl2.jpg
si aceptas , se descarga un toyano si cancelas te sale constantemente la ventana , esta ventana solo sale cuando entro al Internet explorer o a mis unidades de hard disc
Supongo que es alguna clase de aplicacion .exe que se inicia con windows , como puedo quitarlo?
Gracias:biggrin:
Angel Doze
13/05/08, 17:05:31
Hola


Lee y realiza lo indicado aqui : Elimina: SpyAxe, AvGold SpySheriff, SmitFraud SpywareStrike, PSguard Virusburst, SpyTrooper (http://www.forospyware.com/t4239.html)



Nota 1 * Pega , aqui el reporte de Panda .
Nota 2 * No pegues aqui el reporte de Hijackthis


salu2!
M@co
13/05/08, 17:05:36
Edito:*******************
Gale0n
13/05/08, 18:21:14
Hola


Lee y realiza lo indicado aqui : Elimina: SpyAxe, AvGold SpySheriff, SmitFraud SpywareStrike, PSguard Virusburst, SpyTrooper (http://www.forospyware.com/t4239.html)



Nota 1 * Pega , aqui el reporte de Panda .
Nota 2 * No pegues aqui el reporte de Hijackthis


salu2!
QUE panda?uso el norton :S
Angel Doze
13/05/08, 18:48:37
Hola.

El reporte de Panda ActiveScan "Online" , al Decir Online , sognifica que este escaneo se hace desde la Red y no es necesario que desinstales tu Antivirus que en este Caso es el Norton ::mal:


Por Favor realiza lo que te comente
Aqui este el Manual de Panda ActiveScan Online (http://www.forospyware.com/t75446.html) , para que no tengas dudas.


salu2!
Gale0n
13/05/08, 19:01:59
Hola.

El reporte de Panda ActiveScan "Online" , al Decir Online , sognifica que este escaneo se hace desde la Red y no es necesario que desinstales tu Antivirus que en este Caso es el Norton ::mal:


Por Favor realiza lo que te comente
Aqui este el Manual de Panda ActiveScan Online (http://www.forospyware.com/t75446.html) , para que no tengas dudas.


salu2!
Vale ahora te lo paso , xD
Gale0n
14/05/08, 04:28:44
QUE panda?uso el norton :S

Aqui lo tienes
;************************************************* ************************************************** ************************************************** ******************************
ANALYSIS: 2008-05-14 09:06:58
PROTECTIONS: 1
MALWARE: 24
SUSPECTS: 1
;************************************************* ************************************************** ************************************************** ******************************
PROTECTIONS
Description Version Active Updated
;================================================= ================================================== ================================================== ==============================
Norton Internet Security 15.0.0.60 Yes Yes
;================================================= ================================================== ================================================== ==============================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;================================================= ================================================== ================================================== ==============================
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Cookies\galeon@doubleclick[2].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.doubleclick.net/]
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.atdmt.com/]
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Cookies\galeon@atdmt[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.tradedoubler.com/]
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.tradedoubler.com/]
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.tribalfusion.com/]
00147824 Cookie/Clickbank TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.clickbank.net/]
00160284 Cookie/Findwhat TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.findwhat.com/]
00167749 Cookie/Toplist TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.toplist.cz/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.statcounter.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[ad.yieldmanager.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Cookies\galeon@serving-sys[2].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Cookies\galeon@bs.serving-sys[2].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.advertising.com/]
00170304 Cookie/WebtrendsLive TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[statse.webtrendslive.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.ads.pointroll.com/]
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.questionmarket.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.zedo.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[.
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt[
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No D:\Documents and Settings\GaleOn\Datos de programa\Mozilla\Firefox\Profiles\thg7xojo.default \cookies.txt]
00234683 Application/PWDump.B HackTools No 0 Yes No D:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP127\A0058637.EXE
00254101 Flooder/MSNFlood.F HackTools No 0 Yes No D:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP154\A0078253.exe
01649548 Generic Malware Virus/Trojan No 0 Yes No D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Cain & GUIFI\Cain & Abel v2.5 b35 Cracked_OK_\Cain & Abel v2.5 b35 Cracked_OK_.exe
02090013 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP201\A0127626.exe
02931435 Trj/PiratHack Virus/Trojan No 1 Yes No D:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP163\A0087835.exe
02940764 Generic Malware Virus/Trojan No 0 Yes No D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Norton\Norton.A ntivirus.2005\CRACK\tmg-nav2k5.exe
02960479 Adware/BHO Adware No 0 Yes No D:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP201\A0122592.exe
;================================================= ================================================== ================================================== ==============================
SUSPECTS
Sent Location f
;================================================= ================================================== ================================================== ==============================
No D:\WINDOWS\IEBHO.DLL f
;================================================= ================================================== ================================================== ==============================
VULNERABILITIES
Id Severity Description f
;================================================= ================================================== ================================================== ==============================
;================================================= ================================================== ================================================== ==============================
Angel Doze
14/05/08, 04:44:59
Hola Gale0n ,

Nota * Por Favor , realiza lo que se te indica , no te saltes ni un paso , ni una indicaciones , ya que de lo contrario la desinfeccion , no podra llevarse acabo , todo lo que se te describe tiene un por que y para que ,asi que por favor ...



Apaga el Sistema de Restauracion (http://www.forospyware.com/t68195.html#post292280)



Busca y elimina

"D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Cain & GUIFI\Cain & Abel v2.5 b35 Cracked_OK_\Cain & Abel v2.5 b35 Cracked_OK_.exe"
"D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Norton\Norton.A ntivirus.2005\CRACK\tmg-nav2k5.exe"
"D:\WINDOWS\IEBHO.DLL f"

Usa el "FileASSASIN" (http://www.forospyware.com/attachments/forum14/884d1184556887-fileassassin_esp.zip), si es necesario



Descargar ATF Cleaner by Atribune (http://www.atribune.org/ccount/click.php?id=1)
Haga doble clic en ATF-Cleaner.exe para ejecutar el programa.
Haga clic en 'Select All' encontró en la parte inferior de la lista.
Haga clic en el 'Empty Selected'.
Si utiliza el navegador Firefox y Opera , realize el mismo procedimiento de arriba. (Click , pestaña de FireFox y de Opera.),


Salu2
Gale0n
14/05/08, 06:23:26
Hola Gale0n ,

Nota * Por Favor , realiza lo que se te indica , no te saltes ni un paso , ni una indicaciones , ya que de lo contrario la desinfeccion , no podra llevarse acabo , todo lo que se te describe tiene un por que y para que ,asi que por favor ...



Apaga el Sistema de Restauracion (http://www.forospyware.com/t68195.html#post292280)



Busca y elimina

"D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Cain & GUIFI\Cain & Abel v2.5 b35 Cracked_OK_\Cain & Abel v2.5 b35 Cracked_OK_.exe"
"D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Norton\Norton.A ntivirus.2005\CRACK\tmg-nav2k5.exe"
"D:\WINDOWS\IEBHO.DLL f"

Usa el "FileASSASIN" (http://www.forospyware.com/attachments/forum14/884d1184556887-fileassassin_esp.zip), si es necesario



Descargar ATF Cleaner by Atribune (http://www.atribune.org/ccount/click.php?id=1)
Haga doble clic en ATF-Cleaner.exe para ejecutar el programa.
Haga clic en 'Select All' encontró en la parte inferior de la lista.
Haga clic en el 'Empty Selected'.
Si utiliza el navegador Firefox y Opera , realize el mismo procedimiento de arriba. (Click , pestaña de FireFox y de Opera.),


Salu2

vale una pregunta y esto?
C:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP201\A0127626.exe
02931435 Trj/PiratHack Virus/Trojan No 1 Yes No D:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP163\A0087835.exe
02940764 Generic Malware Virus/Trojan No 0 Yes No D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Norton\Norton.A ntivirus.2005\CRACK\tmg-nav2k5.exe
02960479 Adware/BHO Adware No 0 Yes No D:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP201\A0122592.exe
Gale0n
14/05/08, 06:37:42
Hola Gale0n ,

Nota * Por Favor , realiza lo que se te indica , no te saltes ni un paso , ni una indicaciones , ya que de lo contrario la desinfeccion , no podra llevarse acabo , todo lo que se te describe tiene un por que y para que ,asi que por favor ...



Apaga el Sistema de Restauracion (http://www.forospyware.com/t68195.html#post292280)



Busca y elimina

"D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Cain & GUIFI\Cain & Abel v2.5 b35 Cracked_OK_\Cain & Abel v2.5 b35 Cracked_OK_.exe"
"D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Norton\Norton.A ntivirus.2005\CRACK\tmg-nav2k5.exe"
"D:\WINDOWS\IEBHO.DLL f"

Usa el "FileASSASIN" (http://www.forospyware.com/attachments/forum14/884d1184556887-fileassassin_esp.zip), si es necesario



Descargar ATF Cleaner by Atribune (http://www.atribune.org/ccount/click.php?id=1)
Haga doble clic en ATF-Cleaner.exe para ejecutar el programa.
Haga clic en 'Select All' encontró en la parte inferior de la lista.
Haga clic en el 'Empty Selected'.
Si utiliza el navegador Firefox y Opera , realize el mismo procedimiento de arriba. (Click , pestaña de FireFox y de Opera.),


Salu2

aun me sale la ventana no se que hacer YA He echo lo que me dijiste
Angel Doze
15/05/08, 01:00:30
Hola.

Esta indicacion :

Apaga el Sistema de Restauracion (http://www.forospyware.com/t68195.html#post292280)


Es para eliminar esto :

C:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP201\A0127626.exe
02931435 Trj/PiratHack Virus/Trojan No 1 Yes No D:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP163\A0087835.exe
02940764 Generic Malware Virus/Trojan No 0 Yes No D:\Documents and Settings\GaleOn\Escritorio\HD\SOFT\Norton\Norton.A ntivirus.2005\CRACK\tmg-nav2k5.exe
02960479 Adware/BHO Adware No 0 Yes No D:\System Volume Information\_restore{11004C15-AF22-48F2-8E34-D7383F80DD7D}\RP201\A0122592.exe


Por favor Vuelve a Ejecutar el DelPsGuard (http://www.forospyware.com/attachments/forum16/1220d1209149845-delpsguard.zip) y me pegas el reporte que te genere.

Tambien , por favor lee y desinstala cualquier codec que encuentres en : Listado de Codecs falsos (Actualizado al 14/4/08) (http://www.forospyware.com/t61051.html#post260569)

salu2!

© Copyright 2005 - 2008 InfoSpyware ® Todos los derechos reservados.
InfoSpyware Security Blog