 |
| |||||||
| Temas Solucionados Casos de HijackThis y Malwares resueltos. (Solo lectura) |
 |
| | Herramientas |
Publicidad en Firefox y IE (Solucionado)  | 
25/07/08, 10:55:14
|  |
| ||||
| Re: Publicidad en Firefox y IE Hola Isra77. Realiza lo señalado en este tutorial: Eliminar Adware Navipromo. *Nota* - Pega los reportes de Navilog1 y Panda Active Scan en este mismo tema. - Recuerda regresar y comentarnos los resultados. ================================================== ============== Pd 1: Para la proxima consulta; este tema debiste abrirlo en: Pd 2: Recuerda cerrar los temas que aun tengas abiertos, ya sea por que los solucionaste o por estar terminados. http://www.forospyware.com/search.php?searchid=1539755 ================================================== ================= Saludos. Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog * Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando. * Para evitar Virus y Spywares al navegar por internet, USE FIREFOX !! * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.      |
|
06/08/08, 07:24:54
| |
| ||||
| Re: Publicidad en Firefox y IE Hola tengo un problema.. he pasado el antispyware y lo que encuentra lo borro todo pero el navilog me da un error en la ultima pantarlla (cuando hay que pulsar 2 para que haga automatic cleaning) me sale esta pantalla:  Y al pulsar cualquier tecla, desaparece eso y no hace nada mas.. a que se debe eso? Muchas gracias y cuando pase el navilog pasaré el panda y te dejare los reportes. Gracias  |
|
06/08/08, 07:58:18
| |
| ||||
| Re: Publicidad en Firefox y IE Hola. La pantalla indica que antes de ejecutar la limpieza con la opcion 2 debes antes hacer una busqueda con la opcion1. Ejecuta navilog1;
Cuando tengas los reportes los pegas en este tema. Salu2!. Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog * Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando. * Para evitar Virus y Spywares al navegar por internet, USE FIREFOX !! * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro. |
|
06/08/08, 10:38:25
| |
| ||||
| Re: Publicidad en Firefox y IE Aqui te dejo los 3 reportes: Navilog (Opcion 1) Código: Search Navipromo version 3.6.1 began on 06/08/2008 at 12:26:25,18 !!! Warning, this report may include legitimate files/programs !!! !!! Post this report on the forum you are being helped !!! !!! Don't continue with removal unless instructed by an authorized helper !!! Fix running from C:\Archivos de programa\navilog1 Actual User Account : "iSraa" Updated on 19.07.2008 at 20h00 by IL-MAFIOSO Microsoft Windows XP [Versi¢n 5.1.2600] Version Internet Explorer : 7.0.5730.13 Filesystem type : NTFS Search done in normal mode *** Searching for installed Software *** *** Search folders in "C:\WINDOWS" *** *** Search folders in "C:\Archivos de programa" *** *** Search folders in "C:\Documents and Settings\All Users\menini~1\progra~1" *** *** Search folders in "C:\Documents and Settings\All Users\menini~1" *** *** Search folders in "c:\docume~1\alluse~1\datosd~1" *** *** Search folders in "C:\Documents and Settings\iSraa\datosd~1" *** *** Search folders in "C:\DOCUME~1\Invitado\datosd~1" *** *** Search folders in "C:\Documents and Settings\iSraa\config~1\datosd~1" *** *** Search folders in "C:\DOCUME~1\Invitado\config~1\datosd~1" *** *** Search folders in "C:\Documents and Settings\iSraa\menini~1\progra~1" *** *** Search folders in "C:\DOCUME~1\Invitado\menini~1\progra~1" *** *** Search with Catchme-rootkit/stealth malware detector by gmer *** for more info : http://www.gmer.net Hidden file(s) : C:\Documents and Settings\iSraa\Configuración local\Datos de programa\mwsyisa.dat C:\Documents and Settings\iSraa\Configuración local\Datos de programa\mwsyisa.exe C:\Documents and Settings\iSraa\Configuración local\Datos de programa\mwsyisa_nav.dat C:\Documents and Settings\iSraa\Configuración local\Datos de programa\mwsyisa_navps.dat *** Search with GenericNaviSearch *** !!! Possibility of legitimate files in the result !!! !!! Must always be checked before manually deleting !!! * Scan in "C:\WINDOWS\system32" * * Scan in "C:\Documents and Settings\iSraa\config~1\datosd~1" * Files found : mwsyisa.exe found ! * Scan in "C:\DOCUME~1\Invitado\config~1\datosd~1" * *** Search files *** *** Search specific Registry keys *** HKEY_CURRENT_USER\Software\Lanconfig found ! *** Complementary Search *** (Search specific files) 1)Search new Instant Access files : 2)Heuristic Search : * In "C:\WINDOWS\system32" : * In "C:\Documents and Settings\iSraa\config~1\datosd~1" : mwsyisa.dat found ! * In "C:\DOCUME~1\Invitado\config~1\datosd~1" : 3)Certificates Search : Egroup certificate found ! Electronic-Group certificate found ! OOO-Favorit certificate found ! Sunny-Day-Design-Ltd certificate not found ! 4)Search known files : *** Search completed on 06/08/2008 at 12:46:39,84 *** Código: Navipromo Removal version 3.6.1 started on 06/08/2008 at 13:06:16,17 Fix running from C:\Archivos de programa\navilog1 Actual User Account : "iSraa" Updated on 19.07.2008 at 20h00 by IL-MAFIOSO Microsoft Windows XP [Versi¢n 5.1.2600] Internet Explorer : 7.0.5730.13 Filesystem type : NTFS Automatic removal with Catchme and GNS results Cleanning stage done on Reboot *** Creating backups for files found by Catchme Copy to "C:\Archivos de programa\navilog1\Backupnavi" *** Deleting files found with Catchme *** ** Second pass with Catchme results ** * In "C:\WINDOWS\system32" * C:\WINDOWS\prefetch\mwsyisa*.pf found ! Copy C:\WINDOWS\prefetch\mwsyisa*.pf done ! C:\WINDOWS\prefetch\mwsyisa*.pf deleted ! * In "C:\Documents and Settings\iSraa\config~1\datosd~1" * mwsyisa.dat found ! Copy mwsyisa.dat done ! mwsyisa.dat deleted ! mwsyisa_nav.dat found ! Copy mwsyisa_nav.dat done ! mwsyisa_nav.dat deleted ! mwsyisa_navps.dat found ! Copy mwsyisa_navps.dat done ! mwsyisa_navps.dat deleted ! *** Deleting with Backups GenericNaviSearch results *** * Deletion in "C:\WINDOWS\System32" * * Deletion in "C:\Documents and Settings\iSraa\config~1\datosd~1" * * Deletion in "C:\DOCUME~1\Invitado\config~1\datosd~1" * *** Deleting folders in "C:\WINDOWS" *** *** Deleting folders in "C:\Archivos de programa" *** *** Deleting folders in "C:\Documents and Settings\All Users\menini~1\progra~1" *** *** Deleting folders in "C:\Documents and Settings\All Users\menini~1" *** *** Deleting folders in "c:\docume~1\alluse~1\datosd~1" *** *** Deleting folders in "C:\Documents and Settings\iSraa\datosd~1" *** *** Deleting folders in "C:\DOCUME~1\Invitado\datosd~1" *** *** Deleting folders in "C:\Documents and Settings\iSraa\config~1\datosd~1" *** *** Deleting folders in "C:\DOCUME~1\Invitado\config~1\datosd~1" *** *** Deleting folders in "C:\Documents and Settings\iSraa\menini~1\progra~1" *** *** Deleting folders in "C:\DOCUME~1\Invitado\menini~1\progra~1" *** *** Deleting files *** *** Deleting temporary files *** Cleaning of C:\WINDOWS\Temp done ! Cleaning of C:\Documents and Settings\iSraa\config~1\Temp done ! *** Complementary Search *** (Search specific files) 1)Deletion with backups new Instant Access files: 2)Heuristic search and deletion with backups : * In "C:\WINDOWS\system32" * * In "C:\Documents and Settings\iSraa\config~1\datosd~1" * * In "C:\DOCUME~1\Invitado\config~1\datosd~1" * *** Copy Registry to Safebackup folder *** Backing up Registry done ! *** Cleaning Registry *** Registry cleaned *** Certificates *** Egroup Certificate deleted ! Electronic-Group Certificate deleted ! OOO-Favorit Certificate deleted ! Sunny-Day-Design-Ltd Certificate not found ! *** Cleaning stage complete on 06/08/2008 at 13:08:41,87 *** Código: ;***********************************************************************************************************************************************************************************
ANALYSIS: 2008-08-06 14:14:27
PROTECTIONS: 0
MALWARE: 6
SUSPECTS: 1
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139535 Application/Processor HackTools No 0 Yes No C:\System Volume Information\_restore{19644888-F1E2-4B88-9EE3-B2AD6912709B}\RP103\A0037710.exe
00139535 Application/Processor HackTools No 0 Yes No C:\Archivos de programa\Navilog1\Process.exe
00139535 Application/Processor HackTools No 0 Yes No C:\System Volume Information\_restore{19644888-F1E2-4B88-9EE3-B2AD6912709B}\RP103\A0039726.exe
00271993 W32/Puce.E.worm Virus/Worm No 1 No No C:\Archivos de programa\eMule\Incoming\Discoteca Revival - FIESTA REMEMBER- 3 Sesiones - DJ LAURA - DJ JUSTO - DJ KUKI.mp3[setup.exe]
00271993 W32/Puce.E.worm Virus/Worm No 1 No No C:\Archivos de programa\eMule\Incoming\100% black vol 10 (2008).rar[setup.exe]
02197130 Trj/Rebooter.J Virus/Trojan No 1 Yes No C:\Archivos de programa\Navilog1\Reboot.exe
03295914 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{19644888-F1E2-4B88-9EE3-B2AD6912709B}\RP84\A0031297.exe
03295914 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{19644888-F1E2-4B88-9EE3-B2AD6912709B}\RP53\A0022126.exe
;===================================================================================================================================================================================
SUSPECTS
Sent Location
;===================================================================================================================================================================================
No C:\Documents and Settings\iSraa\Configuración local\Datos de programa\Mozilla\Firefox\Profiles\nkm1utpm.default\Cache(2)\FA4CCC3Fd01
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description
;===================================================================================================================================================================================
;===================================================================================================================================================================================
|
|
06/08/08, 10:48:05
| |
| ||||
| Re: Publicidad en Firefox y IE Hola. Haz esto:
- Al terminar reactiva el restaurar sistema. - Pega el reporte de OtMoveiT y luego borra C:\_OtmoVeIt (vacia la papelera de reciclaje). - Recuerda regresar y contarnos los resultados. Salu2!. Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog * Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando. * Para evitar Virus y Spywares al navegar por internet, USE FIREFOX !! * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro. |
|
06/08/08, 11:56:45
| |
| ||||
| Re: Publicidad en Firefox y IE Aqui te dejo el repote: Código: C:\System Volume Information\_restore{19644888-F1E2-4B88-9EE3-B2AD6912709B}\RP103\A0037710.exe moved successfully.
C:\System Volume Information\_restore{19644888-F1E2-4B88-9EE3-B2AD6912709B}\RP103\A0039726.exe moved successfully.
C:\Archivos de programa\eMule\Incoming\Discoteca Revival - FIESTA REMEMBER- 3 Sesiones - DJ LAURA - DJ JUSTO - DJ KUKI.mp3 moved successfully.
< C:\Archivos de programa\eMule\Incoming\100% black vol 10 (2008).rar >
C:\Archivos de programa\eMule\Incoming\100% black vol 10 (2008).rar moved successfully.
C:\System Volume Information\_restore{19644888-F1E2-4B88-9EE3-B2AD6912709B}\RP84\A0031297.exe moved successfully.
C:\System Volume Information\_restore{19644888-F1E2-4B88-9EE3-B2AD6912709B}\RP53\A0022126.exe moved successfully.
OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 08062008_154943
|
|
06/08/08, 12:00:34
| |
| ||||
| Re: Publicidad en Firefox y IE Hola. Me alegra que se haya solucionado el problema. Solo queda desinstalar navilog1 y borrar la carpeta de este en "Archivos de programas". Salu2!. Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog * Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando. * Para evitar Virus y Spywares al navegar por internet, USE FIREFOX !! * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro. Última edición por M@co fecha: 06/08/08 a las 12:03:30. |
|
06/08/08, 12:08:13
| |
| ||||
| Re: Publicidad en Firefox y IE Cita:
TEMA SOLUCIONADO |
|
« Tema Anterior
|
Próximo Tema »
| Herramientas | |
|
|
| 
Temas Similares | |
| Tema | Autor | Foro | Respuestas | Último mensaje |
| Mozilla Firefox 3.0 : "Servidor no encontrado". (Solucionado) | _irving_ | Foro de Software | 7 | 05/07/08 01:25:36 |
| Ventanas de publicidad, la mayoria de cid y ventanas desde firefox d windows security | anacr2284 | Foro Oficial de HijackThis en español | 9 | 21/03/08 17:02:47 |
| Publicidad Continuna en Explorador de Internet (Solucionado) | tarotista | Temas Solucionados | 4 | 18/03/08 17:37:38 |
| Eliminar ventanas publicidad? (Solucionado) | david_hbk | Temas Solucionados | 2 | 08/02/07 12:19:27 |
| Se abre el firefox a cada rato (solucionado) | radarcba | Temas Solucionados | 5 | 23/10/06 08:39:44 |
Todas las horas son GMT -4. La hora es 15:13:21.
