Blog Registrarse Manuales Programas Glosario

Regresar   Foro de Spyware » Spyware - Adware - Hijackers - Malwares » Foro de Virus y Spywares
Actualizar ayuda please
 

Para evitar Virus, Spyware y otros Malwares, te recomendamos mantenerte informado en: InfoSpyware Blog


Foro de Virus y Spywares Ayuda con: Malwares - Virus - Spywares - Troyanos - Adwares - Worms - Hijackers - Dialers - Rootkits - Keylogger - etc.) Plantéanos tu problema en este sector.
No ponga su log de HijackThis aquí !!

Tema Cerrado
 
Enviar a: Herramientas
  post #1  
Antiguo 28/06/08, 11:01:17
Usuario
  
Registrado: jun 2008
Ubicación: santiago de chile
Mensajes: 12
ayuda please
hola
soy nuevo aki
le queria pedir ayuda con un troyano q me tiene los huevos
bastante hinchados
creo q son mas de uno
bueno yo tengo el nod32 3.0.563.0
uso el opera de explorador y el firefox
window xp sp2
y aki
estan los logs de los virus
Código:
28/06/2008 9:41:24	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
28/06/2008 9:41:12	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
28/06/2008 9:39:03	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
28/06/2008 9:34:37	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
27/06/2008 23:20:58	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 23:20:56	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 23:19:35	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
27/06/2008 23:11:44	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 23:11:43	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 23:10 :52	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 23:10 :50	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 23:07:41	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 23:07:40	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 22:51:38	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 22:51:36	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 22:48:15	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 22:43:31	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 22:43:29	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 22:28:46	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 22:28:41	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 22:11:53	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\MSN Messenger\msnmsgr.exe.
27/06/2008 22:00:13	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\MSN Messenger\msnmsgr.exe.
27/06/2008 21:55:48	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:54:22	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:54:15	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:54:07	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:53:52	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:53:29	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:53:19	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:53:11	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:52:14	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:52:09	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:51:45	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:51:31	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:51:26	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:51:18	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:51:03	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:50:00	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:48:44	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\MSN Messenger\msnmsgr.exe.
27/06/2008 21:32:28	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:31:56	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:31:32	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:31:26	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:31:12	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:31:02	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:30:41	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:29:50	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:29:47	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:29:36	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:29:32	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:28:39	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:28:33	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:28:31	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:28:29	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 21:28:26	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Mozilla Firefox\firefox.exe.
27/06/2008 18:51:26	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 18:51:24	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 18:43:35	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\MSN Messenger\msnmsgr.exe.
27/06/2008 18:43:12	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\MSN Messenger\msnmsgr.exe.
27/06/2008 18:43:11	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
27/06/2008 18:34:05	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 18:34:02	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 18:34:00	HTTP filter	file	http://mx.content-type.cn:443/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 18:34:00	Real-time file system protection	file	C:\Documents and Settings\D.Pinto ACCER\Configuración local\Datos de programa\Opera\Opera\profile\cache4\opr00671	JS/TrojanDownloader.Iframe.NAL trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred during an attempt to access the file by the application: C:\Archivos de programa\Opera\opera.exe.
27/06/2008 14:59:56	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:58:53	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:58:25	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:58:23	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:58:22	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:58:20	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:58:17	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:58:11	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:58:08	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:58:05	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:57:05	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:57:03	HTTP filter	file	http://mx.content-type.cn/day.js	JS/TrojanDownloader.Iframe.NAL trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 14:57:01	Real-time file system protection	file	C:\Documents and Settings\D.Pinto ACCER\Configuración local\Archivos temporales de Internet\Content.IE5\SVI85PXN\day[1].js	JS/TrojanDownloader.Iframe.NAL trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred during an attempt to access the file by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 12:58:06	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Microsoft Office\Office10\EXCEL.EXE.
27/06/2008 12:56:12	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	NT AUTHORITY\SYSTEM	Threat was detected upon access to web by the application: C:\WINDOWS\system32\svchost.exe.
27/06/2008 12:53:32	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
27/06/2008 12:10:44	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
27/06/2008 11:30:57	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	NT AUTHORITY\SYSTEM	Threat was detected upon access to web by the application: C:\WINDOWS\system32\svchost.exe.
27/06/2008 11:28:44	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
27/06/2008 11:14:02	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:13:41	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:13:39	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:13:04	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:12:58	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:10:35	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:10:00	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:09:58	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:09:56	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:09:52	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 11:09:36	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting	NT AUTHORITY\SYSTEM	Event occurred on a file modified by the application: C:\MicroSoft.pif.
27/06/2008 11:09:36	Real-time file system protection	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\MicroSoft.pif.
27/06/2008 10:55:45	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
27/06/2008 10:36:57	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	NT AUTHORITY\SYSTEM	Threat was detected upon access to web by the application: C:\WINDOWS\system32\svchost.exe.
27/06/2008 10:36:48	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
26/06/2008 21:20:29	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	NT AUTHORITY\SYSTEM	Threat was detected upon access to web by the application: C:\WINDOWS\system32\svchost.exe.
26/06/2008 18:18:27	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
26/06/2008 16:14:10	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\MSN Messenger\msnmsgr.exe.
26/06/2008 15:02:36	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
26/06/2008 13:18:09	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	NT AUTHORITY\SYSTEM	Threat was detected upon access to web by the application: C:\WINDOWS\system32\svchost.exe.
26/06/2008 13:18:06	HTTP filter	file	http://root.51113.com/root.gif	Win32/TrojanDownloader.Murlo.NN trojan	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\WINDOWS\explorer.exe.
26/06/2008 12:32:08	Startup scanner	file	C:\WINDOWS\AppPatch\AcXtrnel.dll	Win32/Agent.NVY trojan	cleaned by deleting (after the next restart) - quarantined		
26/06/2008 12:32:05	Startup scanner	file	C:\WINDOWS\Downloaded Program Files\ThunderAdvise.dll	Win32/Agent.QNW trojan	cleaned by deleting (after the next restart) - quarantined		
26/06/2008 12:32:04	Startup scanner	file	C:\WINDOWS\AppPatch\Jview.dll	Win32/Agent.NVY trojan	cleaned by deleting - quarantined		
26/06/2008 12:27:28	HTTP filter	file	http://soft.update999.cn/down.gif	Win32/Alman.NAD virus	connection terminated - quarantined	ACCER\D.Pinto ACCER	Threat was detected upon access to web by the application: C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE.
porfavor ayuda
se les agradece de antemano
Última edición por **nibaldo** fecha: 28/06/08 a las 11:06:18.
InfoSpyware

  post #2  
Antiguo 28/06/08, 13:53:37
Avatar de Anleg_30
Warrior
  
Registrado: dic 2007
Ubicación: B@rc3l0n@ - Venezuela
Mensajes: 5.736
Re: ayuda please
Que tal **nibaldo**,

A.-Descarga y actualiza Super antispyware <Leer_manual>
B.-Descarga y actualiza Malwarebytes' Anti-Malware<Leer_manual>
1.-Desactiva restaurar sistema
2.-Entra en modo seguro
  • Ejecuta super antispyware
  • Ejecuta Malwarebytes' Anti-Malware de la siguiente manera:
    • Realiza un examen completo
    • Elimina lo que consiga con la opcion de quitar todo lo seleccionado,
    • Reinicia el sistema (este paso es importante para eliminar lo que consiga)
    • Abre el programa y ubica el reporte en la pestańa "Registros" ("Logs" en ingles) abrelo y pegalo aqui
3.-Estando en modo normal ejecuta el ccleaner <Leer_manual>en su modo de limpiador y luego en la opcion de registro (realizando su respectiva copia de seguridad)

C-pasa el Ewido online <Leer_manual>y recuerda marcar Remove Infections si no elimina todo, guarda el reporte y peagalo aqui
D.-pasa el Kaspersky online <Leer_manual> si usas firefox instala IE Tab., pega el log que te genere el kaspersky aqui

Regresa con los reportes e indicame como esta el paciente para recomendarte las acciones a tomar
  post #3  
Antiguo 30/06/08, 19:47:20
Usuario
  
Registrado: jun 2008
Ubicación: china
Mensajes: 1
Re: ayuda please
yo he tenido el mismo problema, e hize lo dijeron, el primer dia se limpio todo y estaba todo normal, pero ahora me volvio a aparecer ese mismo spyware, y es muy molestoso, como puedo eliminar difitivamente? es muy tedioso estar coviviendo con ese bicho.

este es el logo de SDFix

Código HTML:
[b]SDFix: Version 1.199 [/b]
Run by david on 30/06/2008 at 05:02 p.m.

Microsoft Windows XP [Versi˘n 5.1.2600]
Running From: C:\SDFix

[b]Checking Services [/b]:


Restoring Default Security Values
Restoring Default Hosts File

Rebooting


[b]Checking Files [/b]: 

No Trojan Files Found






Removing Temp Files

[b]ADS Check [/b]:
 


                                 [b]Final Check [/b]:

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-30 17:09:22
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

scanning hidden registry entries ...

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Fonts]
"\xbe˙ç˙Ŕ˙ç˙P?O?P?Ă˙\xbc˙M?e?d? ?(?T?r?u?e?T?y?p?e?)?"="YPOP05.TTF"
"\xbe˙ç˙Ŕ˙ç˙\xb4˙ë˙\xb3˙Ş˙\xb9˙\xab˙Ă˙\xbc˙S?b?o?l?d? ?(?T?r?u?e?T?y?p?e?)?"="YDAE07.TTF"
"\xbe˙ç˙Ŕ˙ç˙\xb4˙Ů˙\xbf˙î˙Ç˙Ę˙\xb1˙â˙M?e?d? ?(?T?r?u?e?T?y?p?e?)?"="YDWP05.TTF"
"\xbe˙ç˙Ŕ˙ç˙Č˙Ć˙\xb9˙Î˙Ă˙\xbc˙M?e?d? ?(?T?r?u?e?T?y?p?e?)?"="YHUM05.TTF"
"\xbe˙ç˙Ŕ˙ç˙\xb3˙\xad˙Ă˙Ę˙Ă˙\xbc˙M?e?d? ?(?T?r?u?e?T?y?p?e?)?"="YNCH05.TTF"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Prefetcher]
"TracesProcessed"=dword:0000002f
"TracesSuccessful"=dword:00000003

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0


[b]Remaining Services [/b]:




Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Archivos de programa\\MSN Messenger\\msnmsgr.exe"="C:\\Archivos de programa\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Archivos de programa\\MSN Messenger\\livecall.exe"="C:\\Archivos de programa\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Archivos de programa\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Archivos de programa\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Archivos de programa\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Archivos de programa\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Archivos de programa\\CyberLink\\PowerDVD\\PowerDVD.exe"="C:\\Archivos de programa\\CyberLink\\PowerDVD\\PowerDVD.exe:*:Enabled:CyberLink PowerDVD"
"C:\\Archivos de programa\\Bonjour\\mDNSResponder.exe"="C:\\Archivos de programa\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\\Archivos de programa\\iTunes\\iTunes.exe"="C:\\Archivos de programa\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Archivos de programa\\ICQ6\\ICQ.exe"="C:\\Archivos de programa\\ICQ6\\ICQ.exe:*:Enabled:ICQ6"
"C:\\Archivos de programa\\Skype\\Phone\\Skype.exe"="C:\\Archivos de programa\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Archivos de programa\\MSN Messenger\\msnmsgr.exe"="C:\\Archivos de programa\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Archivos de programa\\MSN Messenger\\livecall.exe"="C:\\Archivos de programa\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[b]Remaining Files [/b]:



[b]Files with Hidden Attributes [/b]:

Fri  4 Apr 2008     6,104,632 A..H. --- "C:\Archivos de programa\Picasa2\setup.exe"
Tue  4 Mar 2008           848 A.SH. --- "C:\WINDOWS\system32\KGyGaAvL.sys"
Wed 19 Mar 2008         4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Sun 21 Jul 2002       418,816 ...HR --- "C:\WINDOWS\system32\Tools\All.exe"
Thu 18 Jul 2002       390,144 ...HR --- "C:\WINDOWS\system32\Tools\Change.exe"
Thu 18 Jul 2002       574,464 ...HR --- "C:\WINDOWS\system32\Tools\CheckPath.exe"
Mon 19 Aug 2002       430,592 ...HR --- "C:\WINDOWS\system32\Tools\Counter.exe"
Mon 22 Jul 2002       390,656 ...HR --- "C:\WINDOWS\system32\Tools\DelFolders.exe"
Thu 21 Nov 2002       399,872 ...HR --- "C:\WINDOWS\system32\Tools\DirectSetup.exe"
Thu 18 Jul 2002       388,096 ...HR --- "C:\WINDOWS\system32\Tools\RegClean.exe"
Thu 18 Jul 2002       388,608 ...HR --- "C:\WINDOWS\system32\Tools\Regexe.exe"
Sun  1 Dec 2002       431,616 ...HR --- "C:\WINDOWS\system32\Tools\Restart.exe"
Thu 18 Jul 2002       388,096 ...HR --- "C:\WINDOWS\system32\Tools\RunRegexe.exe"
Thu  8 May 2008           352 A..H. --- "C:\Documents and Settings\david\Configuraci˘n local\Temp\Free Download Manager\tic172.tmp"
Thu  8 May 2008           272 A..H. --- "C:\Documents and Settings\david\Configuraci˘n local\Temp\Free Download Manager\tic217.tmp"
Sat 22 Dec 2007           188 A..H. --- "C:\Documents and Settings\david\Configuraci˘n local\Temp\Free Download Manager\ticB89.tmp"
Mon 31 Mar 2008           165 A..H. --- "C:\Documents and Settings\david\Configuraci˘n local\Temp\Free Download Manager\ticF5B.tmp"
Wed 19 Mar 2008         4,348 ...H. --- "C:\Documents and Settings\david\Mis documentos\Mi mŁsica\Copia de seguridad de la licencia\drmv1key.bak"
Wed 19 Mar 2008            20 A..H. --- "C:\Documents and Settings\david\Mis documentos\Mi mŁsica\Copia de seguridad de la licencia\drmv1lic.bak"
Wed 19 Mar 2008         9,655 A.SH. --- "C:\Documents and Settings\david\Mis documentos\Mi mŁsica\Copia de seguridad de la licencia\drmv2key.bak"

[b]Finished![/b]
  post #4  
Antiguo 30/06/08, 22:37:29
Usuario
  
Registrado: jun 2008
Ubicación: Puno
Mensajes: 2
Triste Re: ayuda please
Hola...
yo tengo una compaq presario C752LA con windows Vista Starter Orifinal, disque
y estoy con este mismo troyano...

hize lo indicado en las lineas de arriba y nada
... sigue el bicho

Espero Pronta ayuda... ya q en este foro es el único lugar donde se trata un poco de este bicho ... que es un maldito...

ademas... el nod del 20080630...
disque tiene actualizacion contra este bichin... sera verdad?

Espero su HELP!!!!!
  post #5  
Antiguo 30/06/08, 22:45:20
Avatar de Salba
Moderador Gral
  
Registrado: ene 2005
Ubicación: Córdoba - Argentina-> Madrid
Mensajes: 8.068
Re: ayuda please
Viendo que el creador del tema no ha vuelto a responder, se cierra el tema.

christiancabala y maverickrz, abran sus propios temas para poder ser ayudados.

Políticas del Foro de InfoSpyware
Consejos para antes de publicar un nuevo mensaje

Como crear un nuevo tema

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
Tema Cerrado

« Tema Anterior | Próximo Tema »
Herramientas

Reglas del foro
No puedes crear nuevos temas
No puedes responder temas
No puedes subir adjuntos
No puedes editar tus mensajes
BB code is activado
Las caritas están activado
Código [IMG] está activado
Código HTML está desactivado
Trackbacks are desactivado
Pingbacks are activado
Refbacks are activado

Temas Similares
Tema Autor Foro Respuestas Último mensaje
Se quiere instalar antivirus Udefender y otros sin pedirlo (por favor ayuda!) RexyBlacky Foro Oficial de HijackThis en espańol 6 04/09/07 21:51:43
Se me paraliza el internet... XZeroAxl Foro de Virus y Spywares 7 03/08/07 22:33:53
Ayuda Con Virus (Solucionado) pinkymalabares Temas Solucionados 20 13/07/07 14:08:11
Ayuda con svchost.exe Mi_otro_yo Foro Oficial de HijackThis en espańol 1 09/09/05 03:11:17
Ayuda Porfavor!!! Ya No Me Funciona Ni El Explorer kreator Foro Oficial de HijackThis en espańol 1 13/07/05 12:07:43




Todas las horas son GMT -4. La hora es 12:01:28.

Sobre Infospyware - Contáctanos - Políticas del Foro - Staff - Archivo - Blog  

Powered by: InfoSpyware, Versión 3.8.4
Copyright © 2004 - 2009, ForoSpyware.com
© Copyright 2005 - 2009 InfoSpyware ® Todos los derechos reservados.
InfoSpyware es miembro de ASAP - Alliance of Security Analysis Professionals

 

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31