holas tengo el windoXP en casa y el ad-aware em ha detectado un troyano y un malware , peor nos ecomo eliminarlos, tengo como antivirus el AVG, epro no se como usarlo,tampoc me ayuda en nada el registro del análisis del ad-aware es :d
ArchiveData(auto-quarantine- 2006-09-18 18-31-31.bckp)
Referencefile : SE1R123 12.09.2006
================================================== ====

MRU LIST
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[0]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\adobe\acrobat reader\6.0\avgeneral\crecentfiles\c1
obj[2]=MRU RegReference : software\microsoft\direct3d\mostrecentapplication name
obj[3]=MRU RegReference : software\microsoft\direct3d\mostrecentapplication name
obj[4]=MRU RegReference : software\microsoft\directdraw\mostrecentapplicatio n name
obj[5]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\directinput\mostrecentappl ication name
obj[6]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\directinput\mostrecentappl ication id
obj[7]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\mediaplayer\preferences lastplaylistindex
obj[8]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\mediaplayer\preferences lastplaylist
obj[9]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\windows\currentversion\exp lorer\comdlg32\opensavemru\*
obj[10]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\windows\currentversion\exp lorer\recentdocs\.jpg
obj[11]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\windows\currentversion\exp lorer\recentdocs\.pdf
obj[12]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\windows\currentversion\exp lorer\recentdocs\Folder
obj[14]=MRU RegReference : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\windows media\wmsdk\general computername

WIN32.TROJAN.AGENT
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[13]=Regkey : S-1-5-21-861567501-448539723-682003330-1003\software\microsoft\windows\currentversion\ext \stats\{b45ff030-4447-11d2-85de-00c04fa35c89}
TRACKING COOKIE
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[14]=IECache Entry : Cookie:anibal@tribalfusion.com/
obj[15]=IECache Entry : Cookie:anibal@mediaplex.com/
obj[16]=IECache Entry : Cookie:anibal@doubleclick.net/
obj[17]=IECache Entry : Cookie:anibal@fastclick.net/
obj[18]=IECache Entry : Cookie:anibal@atdmt.com/
obj[19]=IECache Entry : Cookie:anibal@as1.falkag.de/
obj[20]=IECache Entry : Cookie:anibal@revenue.net/





les agradeceria su ayuda

hola rajabroqueles

1.-Apaga Restaurar Sistema (http://www.forospyware.com/45-post2.html)

*Elimina todas las cuarentenas que tengas y vacia la papelera tambien.

2.-Escanea tu pc con 2 Antivirus Online (http://www.forospyware.com/foro-de-virus-y-spywares/aviso-7.html) (ewido y kaspersky).si hay algo que no te eliminen lo pones aquí con su ruta completa.

3.-pasa el RegSeeker (http://www.forospyware.com/t713.html) para Limpiar el registro pásalo hasta q no quede nada para eliminar.

salu2:adios:
Recuerda volver y contarnos los resultados

man le pasé el kaspersky y me salió esto XD
xq con el ewuido no em salió nada


KASPERSKY ONLINE SCANNER REPORT
Monday, September 18, 2006 10:19:01 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 19/09/2006
Kaspersky Anti-Virus database records: 211316


Scan Settings
Scan using the following antivirus database standard
Scan Archives true
Scan Mail Bases true

Scan Target Critical Areas
C:\WINDOWS
C:\DOCUME~1\anibal\CONFIG~1\Temp\

Scan Statistics
Total number of scanned objects 10556
Number of viruses found 0
Number of infected objects 0 / 0
Number of suspicious objects 0
Duration of the scan process 00:13:00

Infected Object Name Virus Name Last Action
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped

C:\WINDOWS\SchedLgU.Txt Object is locked skipped

C:\WINDOWS\SoftwareDistribution\ReportingEvents.lo g Object is locked skipped

C:\WINDOWS\Sti_Trace.log Object is locked skipped

C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped

C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped

C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\default Object is locked skipped

C:\WINDOWS\system32\config\default.LOG Object is locked skipped

C:\WINDOWS\system32\config\SAM Object is locked skipped

C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped

C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\SECURITY Object is locked skipped

C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped

C:\WINDOWS\system32\config\software Object is locked skipped

C:\WINDOWS\system32\config\software.LOG Object is locked skipped

C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\system Object is locked skipped

C:\WINDOWS\system32\config\system.LOG Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MA P Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MA P Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DAT A Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped

C:\WINDOWS\wiadebug.log Object is locked skipped

C:\WINDOWS\wiaservc.log Object is locked skipped

C:\WINDOWS\WindowsUpdate.log Object is locked skipped

C:\DOCUME~1\anibal\CONFIG~1\Temp\Perflib_Perfdata_ 470.dat Object is locked skipped

Scan process completed.

Holas. Bueno, el reporte del Kaspersky esta limpio :Bien: solo faltaria el reporte del Ewido On-Line (http://www.forospyware.com/foro-de-virus-y-spywares/aviso-7.html) para completar.

Esperamos tu respuesta

Salu2 ;)