Hola a todos tengo un problema con el "Worm.Bagle.vr", "Bagle GI Trojan" o "Bagle IX Worm", el cual me está ocasionando cantidad de problemas:

- Internet y el PC muy lentos

- No lo consigo eliminar

- Al arrancar el ordenador me aparece una ventana "Select file to crack" ¿?

- Me bloquea los antivirus. El Nod32 que tengo como residente ahora me dice que no es una aplicación válida para win32. Al ejecutar el HijackThis ocurre lo mismo.

- Spybot, Superantispyware, Diskcleaner, CCleaner, ATF-Cleaner, Elistara o bien no arrancan o se bloquean a mitad (pantallazo azul)

- Solo puedo utilizar Ewido on line, XoftSpy SE y Ad-Adware. Y no lo eliminan

- Me ha aparecido en el ecritorio la carpeta "%SystemDrive%"

- No puedo reiniciar en modo a prueba de fallos o modo seguro.

- Tengo el log del "autoruns", ¿lo coloco aquí o tengo que cambiar de foro?


Ayuda por favor

Saludos

Hola Yowi227.

Realiza lo siguiente:

1. Apaga el Restaurar Sistema (solo en Win Me/XP y Vista).
   
   
2. Elimina los temporales de internet.
   • Dale clic en Inicio ==> Panel de control ==> Conexiones de red e Internet
   • Clic en: Opciones de Internet ==> General
   • En Historial de Exploracion pulsa en la opcion "Eliminar archivos".
   • Marca la opcion "Eliminar todo el contenido sin conexion".
   • En Archivos Temporales de Internet pulsa en "Eliminar archivos".
   • Pulsa en Aplicar ==> Aceptar.
   
   
3. Descarga, actualiza y ejecuta Malwarebytes' Anti-Malware.
   • Realiza un examen completo del PC y elimina las infecciones que este detecte.
   • El reporte queda guardado en la pestaña "Logs" o "Registros" en español, abres el reporte y copias el contenido para pegarlo en este tema.
   
   
4. Descarga y ejecuta Dr. Web Cure-It siguiendo las instrucciones de su manual.
   
   
5. Descarga y ejecuta Ccleaner.
   • Usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
   • Después usa su opción de "Registro" para limpiar todo el registro de Windows.
   
   
6. Realiza un análisis completo del Pc con:
   1. Eset (Nod32) Online Scanner.
      
      
   2. Kaspersky Online Scanner.

* Nota *
- Al terminar reactiva el "restaurar sistema".
- Pega los reportes de Malwarebytes' Anti-Malware, Dr. Web Cure-It, Eset y Kaspersky en este mismo tema.
- Para mayor comodidad imprime las indicaciones.
- Recuerda regresar y contarnos los resultados.

Saludos.

Hola.
He realizado todo lo que me comentasteis. Aquí están los resultados

Malwarebytes
Malwarebytes' Anti-Malware 1.23
Versión de la Base de Datos: 993
Windows 5.1.2600 Service Pack 3

14:14:25 26/07/2008
mbam-log-7-26-2008 (14-14-25).txt

Tipo de examen : Examen Completo (C:\|)
Objetos examinados: 142653
Tiempo transcurrido: 59 minute(s), 19 second(s)

Procesos en Memoria Infectados: 0
Módulos en Memoria Infectados: 0
Claves del Registro Infectadas: 1
Valores del Registro Infectados: 1
Elementos de Datos del Registro Infectados: 0
Carpetas Infectadas: 3
Ficheros Infectados: 204

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Claves del Registro Infectadas:
HKEY_CURRENT_USER\SOFTWARE\WakeNet (Trojan.Adware) -> Quarantined and deleted successfully.

Valores del Registro Infectados:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run\mule_st_key (Trojan.Agent) -> Delete on reboot.

Elementos de Datos del Registro Infectados:
(No se han detectado elementos maliciosos)

Carpetas Infectadas:
C:\WINDOWS\system32\drivers\downld (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m (Trojan.Agent) -> Delete on reboot.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared (Trojan.Agent) -> Quarantined and deleted successfully.

Ficheros Infectados:
C:\WINDOWS\system32\drivers\downld\100171.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\100453.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\100750.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\100921.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\102031.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\102468.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\103859.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\104859.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\105921.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\106390.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\106734.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\107234.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\108156.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\108937.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\108953.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\111546.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\112343.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\113343.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\114156.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\115859.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\753546.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\75546.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\75593.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\77359.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\78031.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\78765.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\79500.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\79656.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\79843.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\80265.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\80687.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\80828.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\81000.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\82781.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\85531.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\85781.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\85921.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\87406.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\177828.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\179187.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\186093.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\201296.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\204046.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\209078.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\213656.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\218468.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\226296.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\302390.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\309875.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\357015.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\364562.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\396750.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\404265.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\628984.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\635765.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\64062.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\64625.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\646968.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\649421.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\652781.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\653968.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\65593.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\658312.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\6630390.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\6657218.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\6659921.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\6667968.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\66687.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\673640.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\6873046.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\68734.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\6880484.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\689656.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\691328.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\697781.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\70546.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\711593.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\718718.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\72500.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\73890.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\74046.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\74156.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\746015.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\74875.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\121500.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\123109.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\125031.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\126281.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\133375.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\135000.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\135593.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\137421.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\139484.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\141343.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\143453.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\152750.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\156812.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\159062.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\159453.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\160421.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\160609.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\162031.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\166562.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\167687.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\169468.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\170328.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\170343.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\170390.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\88687.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\89968.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\90703.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\91234.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\91750.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\93953.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\94375.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\95312.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\95687.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\96125.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\96828.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\96921.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\98031.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\98250.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\98812.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\99015.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\99218.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\99359.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\99984.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\119187.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\177656.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\6639562.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\74921.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\88312.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\data.oct (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\flec006.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\list.oct (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\srvlist.oct (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebBounds 1.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebBrowse 4.0.4.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebBrowser4Widgets 1.0.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebBtnCreator 1.70.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebBudget XT 3.9.0.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebBuild 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebbyFiles (Java Edition) 1.0f.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCab Bonds (J2EE Edition) 2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCab Bonds for .NET 2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCab Bonds for Delphi 2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCab Functions (J2SE Edition) 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCab Functions for .NET 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCab Functions for Delphi 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCab Options for .NET 3.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCab Portfolio (J2SE Edition) 4.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam and Screen Recorder 4.4.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\webcam Bar toolbar for Firefox 1.0.1.30.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\webcam Bar toolbar for IE 4.5.126.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Capturix 7.05.901.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Companion 2.0.9.20.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Component 1.0.0.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Control Center 7.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Dashboard 2.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Diagnostics 1.07 Build 29.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Exposure 3.4.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Flix 3.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Helper.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Italia - Bergamo alta 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Live 3.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Looker 3.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Monitor 3.72.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Monitor 4.30.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WEBCAM Player 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Publisher 2.0 Beta 0014.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Recorder 2.15.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Saver 1.4.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Screen Saver 2.51.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Screensaver 2.50.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Simulator XP Edition 4.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Surveyor 1.7.5 Build 362.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Thingy 2.8.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Timershot 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Toolkit 3.06.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Tracker Live 1.33.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Tracker Live! 1.33.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebBoard 8.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCab Bonds (J2SE Edition) 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Broadcaster 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Nurburgring Nordschleife 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Uploader 2004 4.0.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webaroo Search Radar 2.0.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webassist 1.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebAsyst Contact Manager 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebAsyst Quick Pages 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebAsyst Suite 1.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webation Active 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webawy 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebBlinds 1.06.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Video Capture 3.9.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Video Plugin for Miranda 0.0.1.8.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Video Surveillance Motion Detect 2.0.6.0 Final.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\WebCam Viewer 4.2005.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Watcher 3.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sanchez\Datos de programa\m\shared\Webcam Zone Trigger 2.1.czip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mdelk.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wintems.exe (Trojan.Spammer) -> Delete on reboot.
C:\WINDOWS\system32\drivers\hldrrr.exe (Rootkit.Agent) -> Delete on reboot.
C:\WINDOWS\system32\drivers\srosa.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.

Me dice el programa que debo reiniciar para completar la eliminación.
Por lo tanto reinicio.

Dr. Web
FLEC006.EXE____C:\!Submit____Win32.HLLM.Beagle____ Eliminado.
HLDRRR.EXE____C:\!Submit____ Win32.HLLM.Beagle.227____ Eliminado.
SROSA.SYS____ C:\!Submit____ Win32.HLLM.Beagle.219____ Eliminado.
WINTEMS.EXE____ C:\!Submit____ Win32.HLLM.Beagle____ Eliminado.
adode photoshop cs3 v1.4.8.1 cracked.exe____ C:\Archivos de programa\eMule\Incoming____ Adware.Casino.54____ Eliminado.
mdelk.exe____ C:\WINDOWS\system32\drivers____ Win32.HLLM.Beagle.227____ Eliminado.

CCleaner
Ahora SÍ que puedo utilizarlo, en el primer post os dije que no me funcionaba.
Hago la limpieza según manual.

Eset Online Scanner
Ordenador "limpio"

Kaspersky Online Scanner
-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER INFORME
domingo, 27 de julio de 2008 23:38:18
Sistema operativo: Microsoft Windows XP Professional, Service Pack 3 (Build 2600)
Kaspersky Online Scanner versión: 5.0.84.1
Ultima actualización: 27/07/2008
Registros en la base antivirus: 1014904
-------------------------------------------------------------------------------

Configuración del análisis:
Analizar usando las siguientes bases: estendidas
Analizar archivos: verdadero
Analizar bases de correo: verdadero

Objetivo a analizar - Mi PC:
A:\
C:\
D:\

Estadísticas:
Número de objeros analizados: 112653
Virus encontrados: 1
Objetos infectados: 3 / 0
Objetos sospechosos: 0
Duración del análisis: 02:05:09

Bombre del objeto infectado / Nombre del virus / Última acción
C:\Archivos de programa\Archivos comunes\Ahead\AudioPlugins\msa.dll Object is locked saltado
C:\Archivos de programa\Deep Silver\Secret Files Tunguska\Tunguska.exe Object is locked saltado
C:\Archivos de programa\eMule\Incoming\Adobe_Photoshop_CS3_Activa tion_Keygen_By_XPRJ\Adobe Photoshop CS3 Activation Keygen By XPRJ.exe Object is locked saltado
C:\clio.log Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\Microsoft\Network\Downloader\qmgr0.dat Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\Microsoft\Network\Downloader\qmgr1.dat Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Historial\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Archivos temporales de Internet\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Datos de programa\ApplicationHistory\cli.exe.72313fbf.ini.i nuse Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Historial\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Temp\Perflib_Perfdata_6c0.dat Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Temp\Perflib_Perfdata_ba4.dat Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Temp\Perflib_Perfdata_bac.dat Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Temp\WCESLog.log Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Temp\~DF715A.tmp Object is locked saltado
C:\Documents and Settings\Sanchez\Configuración local\Temp\~DF715F.tmp Object is locked saltado
C:\Documents and Settings\Sanchez\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\Sanchez\Datos de programa\$_hpcst$.hpc Object is locked saltado
C:\Documents and Settings\Sanchez\Escritorio\remotescsi.exe/vnchooks.dll Infectados: not-a-virus:RemoteAdmin.Win32.WinVNC-based.c saltado
C:\Documents and Settings\Sanchez\Escritorio\remotescsi.exe 7-Zip: infectado - 1 saltado
C:\Documents and Settings\Sanchez\Escritorio\remotescsi.exe UPX: infectado - 1 saltado
C:\Documents and Settings\Sanchez\ntuser.dat Object is locked saltado
C:\Documents and Settings\Sanchez\ntuser.dat.LOG Object is locked saltado
C:\libRT.log Object is locked saltado
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked saltado
C:\WINDOWS\Debug\PASSWD.LOG Object is locked saltado
C:\WINDOWS\SchedLgU.Txt Object is locked saltado
C:\WINDOWS\Sti_Trace.log Object is locked saltado
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked saltado
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked saltado
C:\WINDOWS\system32\config\ACEEvent.evt Object is locked saltado
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\default Object is locked saltado
C:\WINDOWS\system32\config\default.LOG Object is locked saltado
C:\WINDOWS\system32\config\Internet.evt Object is locked saltado
C:\WINDOWS\system32\config\SAM Object is locked saltado
C:\WINDOWS\system32\config\SAM.LOG Object is locked saltado
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\SECURITY Object is locked saltado
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked saltado
C:\WINDOWS\system32\config\software Object is locked saltado
C:\WINDOWS\system32\config\software.LOG Object is locked saltado
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\system Object is locked saltado
C:\WINDOWS\system32\config\system.LOG Object is locked saltado
C:\WINDOWS\system32\h323log.txt Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MA P Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MA P Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DAT A Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked saltado
C:\WINDOWS\wiadebug.log Object is locked saltado
C:\WINDOWS\wiaservc.log Object is locked saltado

Análisis completado.

Éste me ha detectado otros virus

Activo la opción de "restaurar el sistema".

Bueno, ya me direis algo. ¿Vuelvo a pasar algo otra vez por si todavía está por ahí escondido el bichito?
Muchas Gracias

Hola.

Solo elimina ese archivo (en rojo):
C:\Documents and Settings\Sanchez\Escritorio\remotescsi.exe

Si se pone dificil ejecuta Malwarebytes´, pulsa en "Mas herramientas" y usa "Fileassassin" para eliminarlo.

Si ya desaparecieron los problemas, no es necesario ejecutar mas herramientas.

Dinos si se puede dar el tema como solucionado.

Saludos.

Buenos días,

- remotescsi.exe____ eliminado

- He vuelto a pasar el Dr. WEb y ha salido limpio.

- SpyBot, Hijackthis y Nod32 me siguen dando el error "no son aplicaciones válidas para win32"

- Internet y el PC van a velocidad normal

- Al arrancar el ordenador ya NO me aparece una ventana "Select file to crack"

- He borrado del ecritorio la carpeta "%SystemDrive%"

- SI puedo reiniciar en modo a prueba de fallos o modo seguro.

- Centro de Seguridad de Windows: Cuando entro me indica: CdS no está disponible porque el servicio CdS no se inició o se detuvo. Cierre esta ventana, reinicie el equipo (o inicie el servicio CdS) y abra el CdS de nuevo
Yo reinicio pero todo sigue igual

- Estos problemas que todavía tengo ¿pueden ser daños ocasionados por el bichito?. ¿Tienen solución?

- Por último os agradecería que me recomendarais un antivirus y un firewall de confianza, ya que el Nod32 me ha fallado

Muchas Gracias
Yowi227

Hola.


Realiza lo siguiente:

• Desactiva el Tea Timer del Spybot S & D (al terminar la desinfección lo puedes deshacer).
  
• Actualiza Malwarebytes' Anti-Malware.
  Nota: Si después de instalarlo el lenguaje esta en Ingles ve a la pestaña "Settings" y lo cambias a Español.

• Apaga el Restaurar Sistema (solo en Win Me y XP).
  
• Reinicia en Modo Seguro (a prueba de fallos).
  
  
  1. Ejecuta Malwarebytes' Anti-Malware;
     • Realiza un examen completo del PC y elimina las infecciones que este detecte.
     • El reporte queda guardado en la pestaña "Logs" o "Registros" en español, abres el reporte y copias el contenido para pegarlo en este tema.
  2. Ejecuta Ccleaner.
     • Usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
     • Despues usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).
  
  
• Reinicia en modo normal y realiza un analisis completo con Panda Active Scan 2.0.

*Nota*
- Pega los reportes de MalwareBytes y Panda en este tema.
- Al terminar reactiva el "restaurar sistema".
- Recuerda regresar y contarnos los resultados..

================================================== ========
Para reactivar el centro de seguridad:

• Ve a: Inicio > Ejecutar --> escribe: services.msc
• Busca "Centro de Seguridad".
• Haz clic sobre este con el boton derecho del mouse.
  • Selecciona: "Propiedades" > Pestaña "General".
    • En tipo de inicio selecciona "Automatico".
    • En estado del servicio marca "Iniciado".
    • Clic en: Aplicar > Aceptar.
• Reinicia el equipo.

================================================== ========
================================================== ========
Para mantener el Pc protejido, guiate por la opinion de los usuarios del foro.

• Herramientas de seguridad:
  • Mejor antivirus 2008
    
  • Mejor antivirus gratuito 2008
    
  • Mejor firewall 2008.
  
  Nota: Todos lo programas los puedes descargar desde INFOSPYWARE.com.

================================================== ========
Saludos.

Malas noticias:

- Ahora NO me funciona reiniciar a modo seguro. Se resetea. Cuando ayer SÍ que lo podía hacer. - No lo entiendo -

- Spybot, Hijackthis y el Nod 32 siguen aplicaciones NO validas para win32

- Con services.msc he activado el Centro de Seguridad.

- Desde el mismo servives.msc intento iniciar el Nod32 y entonces me da error 193:0xc1. Lo he buscado en el google, pero no entiendo las soluciones que dan algunas páginas. ¿Alguna ayuda?

- Desde el modo normal he ejecutado Ccleaner, Malwarebytes (todo limpio), Dr Web (todo limpio) y el Panda Active Scan (adjunto log al final).
"Parece que" el Bagle no está.

- Ahora creo que problema está en el modo seguro y en las aplicaciones no validas para win32

Saludos Yowi227

;************************************************* ************************************************** ************************************************** ******************************
ANALYSIS: 2008-07-29 20:28:31
PROTECTIONS: 1
MALWARE: 1
SUSPECTS: 1
;************************************************* ************************************************** ************************************************** ******************************
PROTECTIONS
Description Version Active Updated
;================================================= ================================================== ================================================== ==============================
AVG Anti-Virus Free 8.0 Yes No
;================================================= ================================================== ================================================== ==============================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;================================================= ================================================== ================================================== ==============================
02907323 Trj/Downloader.TAG Virus/Trojan No 0 Yes No C:\Documents and Settings\Sanchez\Escritorio\Nintendo DS\Image Viewer 0.6\misc\”j‘¹IPKƒtƒ@ƒCƒ‹�C•œƒc�[ƒ‹.exe
02907323 Trj/Downloader.TAG Virus/Trojan No 0 Yes No C:\Documents and Settings\Sanchez\Escritorio\Nintendo DS\20070106_imgview06.zip[20070106_imgview06/misc/öjæ╣IPKâtâ@âCâïÅCò£âcü[âï.exe]
;================================================= ================================================== ================================================== ==============================
SUSPECTS
Sent Location u
;================================================= ================================================== ================================================== ==============================
No C:\WINDOWS\Downloaded Installations\{945D0A02-3985-4251-AEDA-F2A9A377AD3E}\HDD Regenerator.msi[unk_0061][HDD_Regenerator.exe]
;================================================= ================================================== ================================================== ==============================
VULNERABILITIES
Id Severity Description u
;================================================= ================================================== ================================================== ==============================
;================================================= ================================================== ================================================== ==============================

Hola.

Haz esto:

1.- Busca y elimina los siguientes archivos (en rojo), si tienes problemas usa FILEASSASIN.
2.- Sube el (los) siguiente (s) archivo (s) a Virus Total; si te surgen dudas lee el manual.
Nota: Pega el (los) reporte (s) que se generen en este mismo tema.
Por otro lado, el bagle daño los ejecutables de los programas de seguridad, por lo que vas a tener que reinstalarlos.

1. Los desinstalas.
   
2. Borras las carpetas ubicadas por defecto en:
   C:\Archivos de Programas\<==
   C:\Document and Settings\All User\Program Files\<==
   
3. Ejecuta Ccleaner en sus dos opciones.
   
4. Descarga los programas desde Infospyware.com y los instalas.

================================================== =
Descarga y ejecuta: RegUnlocker.
Para ejecutar RegUnlocker:

• Pulsa en la pestaña "Restricciones" y señala las opciones:
  • Eliminar las restricciones del Sistema
• Pulsa en la pestaña "Reparadores" y señala las opciones:
  • Reparar el Modo Seguro (Modo a prueba de fallos)
• Dale clic en Aplicar para ejecutar la herramienta.
• Luego de su ejecución reinicias el Pc y compruebas.

================================================== =

- Recuerda regresar.

Saludos.

Hola maco1128,

Antes de ponerme a hacer todo esto quisiera comentarte unas cosillas.

- No puedo iniciar el AdobePhotoshop ---> No se ha podido configurar porque hay información de personalización no válida o no se encuentra

- No puedo iniciar el Corel Photo Paint ---> The update does not recognize this product. Version not registered with the agent

- Me he instalado el AVG Anti-virus Free Edition. He pasado un scan.
No me ha detectado ni infecciones ni spywares, pero eso sí, casi 400 warnings.
¿Los elimino?

Muchas Gracias


"Scan ""Scheduled scan"" was fini shed."
"Infections found:";"0"
"Infected objects removed or heal ed";"0"
"Not removed or healed.";"0"
"Spyware found:";"0"
"Spyware removed:";"0"
"Not removed:";"0"
"Warnings count:";"398"
"Information count:";"0"
"Scan started:";"miércoles, 30 de julio de 2008, 1 5:00:00"
"Total object scanned:";"929728"
"Time needed:";"1 hour(s) 57 minu te(s) 12 second(s ) "
"Errors encountered:";"0"

"Warnings"
"File";"Infection";"Result"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00000000-59D4-4008-9058-080011001200}";"Found Adware.TitanShieldAntispyware";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00000000-C1EC-0345-6EC2-4D0300000000}";"Found Adware.TitanShieldAntispyware";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00000000-F09C-02B4-6EC2-AD0300000000}";"Found Adware.TitanShieldAntispyware";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00000001-C003-4A2F-9142-7CB1D78DE6C1}";"Found Adware.InternetOptimizer";"Potentially dangerous obje ct"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00000049-8F91-4D9C-9573-F016E7626484}";"Found Adware.Isearch";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00000062-2E5F-4AF7-986E-5B64E0951A96}";"Found Adware.BetterInternet";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00110011-4B0B-44D5-9718-90C88817369B}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{002AF282-E42D-4B51-9F70-F1570C02FAAD}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00C9C6A4-1889-46BC-B73A-F4DDCC042735}";"Found Adware.Vundo";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00C9D850-244D-10E1-B3C1-10805E499D95}";"Found Adware.ContextuAd";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00C9D850-244D-10E1-B3C9-10805E499D95}";"Found Adware.ContextuAd";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00C9D850-244D-11E1-B3C9-10805E499D95}";"Found Adware.ContextuAd";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00CEAF8F-BF59-429B-A1D9-91C88CCFE94B}";"Found Adware.ABXToolbar";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{00DBDAC8-4691-4797-8E6A-7C6AB89BC441}";"Found Downloader.ConHook.l";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{01E69986-A054-4C52-ABE8-EF63DF1C5211}";"Found Adware.CramToolbar";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{01EB5130-FC0C-4d75-B9CE-4801B1B854F5}";"Found Adware.Begin2Search";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{037CE595-57CB-4EB5-9775-97BC112F3BB3}";"Found Trojan.Bomka";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{052B12F7-86FA-4921-8482-26C42316B522}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{05324ED1-05C0-4E3A-A34F-98BFC64426F5}";"Found Adware.ErrorSafe";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{06170642-FA65-4FB6-AC79-5F235CB99BC2}";"Found Adware.RogueSuspect";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{06849E9F-C8D7-4D59-B87D-784B7D6BE083}";"Found Logger.Agent.io";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{06EECACB-F7C6-4ab9-B6AE-2DC4ED4588BB}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{086AE192-23A6-48D6-96EC-715F53797E85}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{08A312BB-5409-49FC-9347-54BB7D069AC6}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{09F93072-DE5E-4B5A-B347-F80FD7CB7309}";"Found Adware.Doumi";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0A51FD8D-6835-4212-B796-AFC24F4D108A}";"Found Adware.CreatrixMedia";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0AD937E7-2F37-4873-A05E-548A67EF1D0E}";"Found Adware.FlashEnhancer";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0CB66BA8-5E1F-4963-93D1-E1D6B78FE9A2}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0D045BAA-4BD3-4C94-BE8B-21536BD6BD9F}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0D2DEF3A-F4F1-42EC-AC4F-132E7BA6E292}";"Found Adware.MWSearch";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0D4C7057-EAD2-44C6-AD18-9092905F28F1}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0E682909-858C-4EB4-9613-393F979CC518}";"Found Adware.KeenValue";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0EDC6C20-A31C-11DB-8AB9-0800200C9A66}";"Found Adware.RogueSuspect";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0F25878F-F8AE-5D5D-2BB7-31B5F803290D}";"Found Adware.RogueSuspect";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{11111111-2222-3333-4444-555555555555}";"Found Adware.Casino";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{11904CE8-632A-4856-A7CC-00B33FE71BD8}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{11A4CA8C-A8B9-49c2-A6D3-3F64C9EEBAE6}";"Found Adware.Shorty";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{11F09AFD-75AD-4E51-AB43-E09E9351CE16}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{13146842-6251-5625-3072-548536364311}";"Found Logger.Goldun.an";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{13589181-4F0D-4553-B9F8-B4B72172C139}";"Found Adware.Vundo";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1474CE44-8057-4AE3-8F3E-ED37C7C63D8A}";"Found Adware.MWSearch";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{150FA160-130D-451F-B863-B655061432BA}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1559C6FD-8BDE-476E-98C7-871E59193FCE}";"Found Adware.VipSearcher";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{159C2E51-9823-11D2-8DDC-D84A1B4ACD4D}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1640DE0E-75E4-4A83-B5D1-2492BC7EBA8F}";"Found Adware.RogueSuspect";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{16DF666F-BA95-4F41-B396-1381C2BA66F4}";"Found Adware.Virtumonde";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{17253725-2463-2796-3683-279268379362}";"Found Trojan.Goldun.u";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{17DA0C9E-4A27-4ac5-BB75-5D24B8CDB972}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{184B0A26-4C9C-4757-ABF5-4B6AF71F9A45}";"Found Adware.ErrorSafe";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{18A41B20-E519-47A1-B545-FFC200730E9B}";"Found Adware.ErrorSafe";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{18F57D30-EF36-4C0E-9343-7BFA6DF79B4A}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{192C5B4A-3EFD-40C7-9F99-C472DEB8EFC0}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{197B8CA4-E215-46DD-8F33-E0544A80E5C4}";"Found Adware.SafeSurfing";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1A1DDC19-5893-43AB-A73F-F41A0F34D115}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1A29A79A-B9C8-44A9-BEDF-7FADDE3CF33F}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1AC5C88A-DEA7-462B-A232-04AF5CA42E7E}";"Found Adware.RogueSuspect";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1ADBCCE8-CF84-441E-9B38-AFC7A19C06A4}";"Found Adware.ActivShopper";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1B68470C-2DEF-493B-8A4A-8E2D81BE4EA5}";"Found Downloader.Delf";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1B9CB0F8-118B-49C1-956D-B703E976F8E3}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1BB87441-6B7F-4B60-885C-B7AF9F9AFDE3}";"Found Adware.Affilred";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1C044AAD-7955-4CBD-8175-501A165C4E5D}";"Found Trojan.Conhook.b";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1C4DA27D-4D52-4465-A089-98E01BB725CA}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1C78AB3F-A857-482E-80C0-3A1E5238A565}";"Found Adware.Isearch";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1CA480CD-C0E5-4548-874E-B85B17905B3A}";"Found Trojan.Zlob.f";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1DC9D850-044D-11E1-B3C9-00805E499D93}";"Found Adware.ContextuAd";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1E6CE4CD-161B-4847-B8BF-E2EF72299D69}";"Found Logger.Sters";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1F48AA48-C53A-4E21-85E7-AC7CC6B5FFB1}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1F48AA48-C53A-4E21-85E7-AC7CC6B5FFB2}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1FF04B25-0A23-4A12-960C-73F8B9950436}";"Found Hijacker.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{202A961F-23AE-42B1-9505-FFE3C818D717}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{20929603-21DB-477C-BA6F-0B8E70B3C8A0}";"Found Adware.CramToolbar";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{20C9D850-244D-10E1-B3C1-20805E499D95}";"Found Adware.ContextuAd";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{20C9D850-244D-11E1-B3C9-10805E499D95}";"Found Adware.ContextuAd";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2136FD50-C11F-40CC-A714-F9412F91BD40}";"Found Adware.ContextuAd";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2178F3FB-2560-458f-BDEE-631E2FE0DFE4}";"Found Adware.WinAntiVirus";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2296428D-C133-4928-B76A-A200FF409572}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{22DFEAE8-9AD2-4FC6-9CBA-A6566CA3B6EB}";"Found Adware.Begin2search";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2305D8B7-B649-4C65-BA03-4C8B05213E1A}";"Found Adware.Virtumonde";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2353FCBC-012D-487B-8BF3-865C0929FBEB}";"Found Adware.Virtumonde";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{250D1063-5414-4FB0-86D5-AABB7A5D7DA7}";"Found Adware.ErrorSafe";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2513A321-CB50-4C5F-91C5-80342AFACFB1}";"Found Adware.TitanShieldAntispyware";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2527BEEF-1B3C-4D3B-98F0-7F3C1EB910A0}";"Found Adware.Virtumonde";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2559D0B1-AF60-4BD5-965D-0E51383A6367}";"Found Hijacker.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{25E1A054-1262-459F-9F14-BF06148F4253}";"Found Trojan.Bomka";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{27150F81-0877-42E9-AF13-55E5A3439A26}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{285B5CCD-C3F0-4EB6-9632-7D0A3C3AF824}";"Found Adware.iLookup";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{28DFFB3C-A6C2-481B-B8D7-AD205DECBA6E}";"Found Adware.Virtumonde";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2A7372BA-656A-409A-B76D-F2B2B2DC6B1F}";"Found Adware.Vundo";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2AB7292B-8F1B-4DC5-A584-280928B28FC9}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2B334C22-40CA-438F-913A-61A8105C4CCD}";"Found Adware.ErrorSafe";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2D38A51A-23C9-48a1-A33C-48675AA2B494}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2DC9D850-044D-11E1-B3C9-10805E499D93}";"Found Adware.ContextuAd";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2DC9D850-144D-11E1-B3C9-10805E499D93}";"Found Adware.ContextuAd";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2DEA8791-C2B7-48E1-8992-8E8E6A6FE789}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2E246FAE-8420-11D9-870D-000C2917DE7F}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{2E9CAFF6-30C7-4208-8807-E79D4EC6F806}";"Found Adware.Generic";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3050F4D8-6D62-11CE-AF61-013309406392}";"Found Trojan.BindFil.g";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3050F4D8-6D62-11CE-AF61-E13309406392}";"Found Trojan.ZMark.a";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{325338F0-AED0-45f6-A0DA-B5B09E6A07ED}";"Found Adware.SavingsHound";"Potentially dangerous object"
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Activ