despues de analisis panda online q debo hacer.

Buscar

		Foro de Spyware » Spyware - Adware - Hijackers - Malwares » Foro de Virus y Spywares
despues de analisis panda online q debo hacer.

Para evitar Virus, Spyware y otros Malwares, te recomendamos mantenerte informado en: InfoSpyware Blog

Foro de Virus y Spywares Ayuda con: Malwares - Virus - Spywares - Troyanos - Adwares - Worms - Hijackers - Dialers - Rootkits - Keylogger - etc.) Plantéanos tu problema en este sector.
No ponga su log de HijackThis aquí !!

Página 1 de 2

Enviar a:

Herramientas

post #1

08/09/09, 01:01:48

pachopv

Usuario

Registrado: mar 2009

Ubicación: Peru

Mensajes: 39

despues de analisis panda online q debo hacer.

Hola a todos, bueno una vez mas con estos problemas, segui los procedimientos (11) para eliminar malwares, spywares, etc, ahora estoy en el de hacer un scan online, elegi el panda, y este fue el resultado:

Código:

***********************************************************************************************************************************************************************************
ANALYSIS: 2009-09-07 22:45:56
PROTECTIONS: 1
MALWARE: 11
SUSPECTS: 11
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description                                  Version                       Active    Updated
;===================================================================================================================================================================================
ESET NOD32 Antivirus 4.0                     4.0                           Yes       Yes
;===================================================================================================================================================================================
MALWARE
Id        Description                        Type                Active    Severity  Disinfectable  Disinfected Location
;===================================================================================================================================================================================
00366244  Application/NirCmd.A               HackTools           No        0         No             No           C:\Documents and Settings\ANDREI\Escritorio\Flash_Disinfector.exe[C:\Documents and Settings\ANDREI\Escritorio\Flash_Disinfector.exe][nircmd.exe]
01675488  W32/Lineage.KZK                    Virus               No        0         Yes            Yes          E:\TODOS\TRABAJOS 2009\~$actocas.doc
02214452  Trj/Lineage.BZE                    Virus/Trojan        No        1         Yes            Yes          C:\WINDOWS\system32\e8main1.dll
02345272  Trj/Lineage.BZE                    Virus/Trojan        No        1         Yes            Yes          C:\cv8j.exe
02345272  Trj/Lineage.BZE                    Virus/Trojan        No        1         Yes            Yes          D:\CV8J.EXE
02345272  Trj/Lineage.BZE                    Virus/Trojan        No        1         Yes            Yes          E:\CV8J.EXE
02345272  Trj/Lineage.BZE                    Virus/Trojan        No        1         Yes            Yes          F:\CV8J.EXE
02479230  W32/Lineage.KEF                    Virus               No        1         Yes            Yes          F:\KTLY.EXE
02479230  W32/Lineage.KEF                    Virus               No        1         Yes            Yes          D:\KTLY.EXE
02479230  W32/Lineage.KEF                    Virus               No        1         Yes            Yes          E:\KTLY.EXE
02547186  Trj/Lineage.BZE                    Virus/Trojan        No        1         Yes            Yes          D:\OIWJ.EXE
02547186  Trj/Lineage.BZE                    Virus/Trojan        No        1         Yes            Yes          C:\oiwj.exe
02547186  Trj/Lineage.BZE                    Virus/Trojan        No        1         Yes            Yes          E:\OIWJ.EXE
02547186  Trj/Lineage.BZE                    Virus/Trojan        No        1         Yes            Yes          F:\OIWJ.EXE
02592327  W32/Lineage.LBU                    Virus               No        0         Yes            Yes          E:\G8K.EXE
02592327  W32/Lineage.LBU                    Virus               No        0         Yes            Yes          D:\G8K.EXE
02592327  W32/Lineage.LBU                    Virus               No        0         Yes            Yes          C:\g8k.exe
02592327  W32/Lineage.LBU                    Virus               No        0         Yes            Yes          F:\G8K.EXE
02685294  Generic Worm                       Virus/Worm          No        0         Yes            Yes          C:\i0yva6.exe
02685294  Generic Worm                       Virus/Worm          No        0         Yes            Yes          D:\I0YVA6.EXE
02685294  Generic Worm                       Virus/Worm          No        0         Yes            Yes          E:\I0YVA6.EXE
02685294  Generic Worm                       Virus/Worm          No        0         Yes            Yes          F:\I0YVA6.EXE
02704023  Generic Worm                       Virus/Worm          No        0         Yes            Yes          D:\PKKWNG.EXE
02704023  Generic Worm                       Virus/Worm          No        0         Yes            Yes          F:\PKKWNG.EXE
02704023  Generic Worm                       Virus/Worm          No        0         Yes            Yes          C:\pkkwng.exe
02704023  Generic Worm                       Virus/Worm          No        0         Yes            Yes          E:\PKKWNG.EXE
02706898  Generic Worm                       Virus/Worm          No        0         Yes            Yes          F:\EWQIJ.BAT
02706898  Generic Worm                       Virus/Worm          No        0         Yes            Yes          E:\EWQIJ.BAT
02706898  Generic Worm                       Virus/Worm          No        0         Yes            Yes          D:\EWQIJ.BAT
02706898  Generic Worm                       Virus/Worm          No        0         Yes            Yes          C:\ewqij.bat
02734208  Generic Worm                       Virus/Worm          No        0         Yes            Yes          C:\y.bat
02734208  Generic Worm                       Virus/Worm          No        0         Yes            Yes          D:\Y.BAT
02734208  Generic Worm                       Virus/Worm          No        0         Yes            Yes          F:\Y.BAT
02734208  Generic Worm                       Virus/Worm          No        0         Yes            Yes          E:\Y.BAT
;===================================================================================================================================================================================
SUSPECTS
Sent      Location                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
;===================================================================================================================================================================================
No        C:\Archivos de programa\ESET\ESET NOD32 Antivirus\updater.dll                                                                                                                                                                                                                                                                                                                                                                                                                                                         
No        C:\3c.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
No        C:\Archivos de programa\ESET\ESET NOD32 Antivirus\eguiEmon.dll                                                                                                                                                                                                                                                                                                                                                                                                                                                        
No        C:\Archivos de programa\ESET\ESET NOD32 Antivirus\eguiEpfw.dll                                                                                                                                                                                                                                                                                                                                                                                                                                                        
No        D:\3C.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
No        D:\HERBALIFE\DESCARGAS HERBALIFE\REFLEXIONES PARA EL EXITO\4secretos.exe                                                                                                                                                                                                                                                                                                                                                                                                                                              
No        D:\M.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
No        E:\M.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
No        E:\3C.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
No        F:\M.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
No        F:\3C.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
;===================================================================================================================================================================================
VULNERABILITIES
Id        Severity   Description                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                
;===================================================================================================================================================================================
  211784  HIGH       MS09-032                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  211781  HIGH       MS09-029                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  210625  HIGH       MS09-026                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  210624  HIGH       MS09-025                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  210621  HIGH       MS09-022                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  210618  HIGH       MS09-019                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  208380  HIGH       MS09-015                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  208378  HIGH       MS09-013                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  208377  HIGH       MS09-012                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  206981  HIGH       MS09-007                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  206980  HIGH       MS09-006                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  204670  HIGH       MS09-001                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  203505  HIGH       MS08-071                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  202465  HIGH       MS08-068                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  201683  HIGH       MS08-067                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  201258  HIGH       MS08-066                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  201256  HIGH       MS08-064                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  201255  HIGH       MS08-063                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  201253  HIGH       MS08-061                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  209275  HIGH       MS08-049                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  191618  HIGH       MS08-025                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  191614  HIGH       MS08-021                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  191613  HIGH       MS08-020                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  187733  HIGH       MS08-008                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  184380  MEDIUM     MS08-002                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  182046  HIGH       MS07-067                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  179553  HIGH       MS07-061                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  176383  HIGH       MS07-058                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  170907  HIGH       MS07-046                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  170904  HIGH       MS07-043                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  164915  HIGH       MS07-035                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  164911  HIGH       MS07-031                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  157262  HIGH       MS07-022                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  157261  HIGH       MS07-021                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  157260  HIGH       MS07-020                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  157259  HIGH       MS07-019                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  156477  HIGH       MS07-017                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  150249  HIGH       MS07-013                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  150248  HIGH       MS07-012                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  150247  HIGH       MS07-011                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  150243  HIGH       MS07-008                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  150242  HIGH       MS07-007                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  150241  MEDIUM     MS07-006                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  141033  MEDIUM     MS06-075                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  137571  HIGH       MS06-070                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  133385  MEDIUM     MS06-063                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  133379  HIGH       MS06-057                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  129977  MEDIUM     MS06-053                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  129976  MEDIUM     MS06-052                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  126093  HIGH       MS06-051                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  126092  MEDIUM     MS06-050                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  126087  HIGH       MS06-046                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  108738  HIGH       MS06-004                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  126082  HIGH       MS06-041                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  126081  HIGH       MS06-040                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  123421  HIGH       MS06-036                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  123420  HIGH       MS06-035                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  120823  MEDIUM     MS06-030                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  120818  HIGH       MS06-025                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  120815  HIGH       MS06-022                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  117384  MEDIUM     MS06-018                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  114666  HIGH       MS06-015                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  108738  HIGH       MS06-004                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  108738  HIGH       MS06-004                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  104567  HIGH       MS06-002                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
  104237  HIGH       MS06-001                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
   96574  HIGH       MS05-053                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
   93395  HIGH       MS05-051                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
   93454  MEDIUM     MS05-049                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   
;===================================================================================================================================================================================

Bueno ese fue el resultado, q me d dio el panda, tambien me aparecio como archivos sospechosos estos:

F:\3C.EXE
F:\M.EXE
E:\3C.EXE
E:\M.EXE
D:\M.EXE
D:\HERBALIFE\DESCARGAS HERBALIFE\REFLEXIONES PARA EL EXITO\4secretos.exe
D:\3C.EXE
C:\Archivos de programa\ESET\ESET NOD32 Antivirus\eguiEpfw.dll
C:\Archivos de programa\ESET\ESET NOD32 Antivirus\eguiEmon.dll
C:\3c.exe
C:\Archivos de programa\ESET\ESET NOD32 Antivirus\updater.dll

Y tambien como vulnerabilidades lo siguiente:
MS07-058 Alta + Info
MS09-022 Alta + Info
MS06-002 Alta + Info
MS09-019 Alta + Info
MS09-032 Alta + Info
MS06-041 Alta + Info
MS07-013 Alta + Info
MS06-040 Alta + Info
MS07-012 Alta + Info
MS09-029 Alta + Info
MS08-002 Media + Info
MS07-011 Alta + Info
MS07-067 Alta + Info
MS07-061 Alta + Info
MS06-018 Media + Info
MS07-008 Alta + Info
MS07-007 Alta + Info
MS07-006 Media + Info
MS06-001 Alta + Info
MS08-071 Alta + Info
MS09-001 Alta + Info
MS09-015 Alta + Info
MS06-063 Media + Info
MS06-036 Alta + Info
MS06-070 Alta + Info
MS06-035 Alta + Info
MS06-030 Media + Info
MS07-046 Alta + Info
MS09-013 Alta + Info
MS06-004 Alta + Info
MS09-012 Alta + Info
MS07-043 Alta + Info
MS07-035 Alta + Info
MS08-049 Alta + Info
MS06-057 Alta + Info
MS06-025 Alta + Info
MS07-031 Alta + Info
MS06-022 Alta + Info
MS06-015 Alta + Info
MS08-025 Alta + Info
MS07-017 Alta + Info
MS06-053 Media + Info
MS06-052 Media + Info
MS08-021 Alta + Info
MS08-020 Alta + Info
MS08-067 Alta + Info
MS08-066 Alta + Info
MS09-007 Alta + Info
MS09-006 Alta + Info
MS08-064 Alta + Info
MS05-049 Media + Info
MS08-063 Alta + Info
MS08-061 Alta + Info
MS07-022 Alta + Info
MS07-021 Alta + Info
MS07-020 Alta + Info
MS05-051 Alta + Info
MS07-019 Alta + Info
MS05-053 Alta + Info
MS08-008 Alta + Info
MS06-051 Alta + Info
MS08-068 Alta + Info
MS06-050 Media + Info
MS09-026 Alta + Info
MS09-025 Alta + Info
MS06-075 Media + Info
MS06-046 Alta + Info

Bueno porfavor, quisiera que me indiquen q es lo q debo hacer acontinuacion para poder eliminar esas infecciones. Muchas gracias.

InfoSpyware

post #2

08/09/09, 01:08:31

Fer21021

Usuario Habitual

Registrado: abr 2008

Ubicación: Argentina

Mensajes: 2.722

Re: despues de analisis panda online q debo hacer.

Hola pachopv , Aparentemente panda desinfecto varios de esos archivos, Así que para comprobar realiza estos pasos, y luego si panda vuelve a detectar algo, ahí lo eliminaremos.

Por favor, sigue estos pasos, lee bien todas las indicaciones :

Si no puedes hacer algún paso, saltéalo y continuas con los demás.

1 »» Descarga lo siguiente: LOS INSTALAS Y ACTUALIZAS SEGUN SU MANUAL »»»» PERO NO LOS EJECUTES AUN.

»
CCLEANER. Lo instalas según Su Manual

»
DR WEB CURE-IT y su Manual

»
MALWAREBYTE´S. Lo instalas y actualizas según su manual.

2 »»
Inicia EN MODO A PRUEBA DE ERRORES MIRA AQUI

3 »» Ejecuta las herramientas de una en una y en este orden:

»
Ejecuta DR WEB, haciendo 1ero un chequeo express y luego un EXAMEN COMPLETO, eliminando todo lo que encuentre.

»
MALWAREBYTE. Selecciona hacer un "escaneo completo". Una vez finalizado, si detecta algo, eliges " quitar lo seleccionado ". Si te pide reiniciar, lo haces. En su "registros" quedará guardado el reporte que se genera, cópialo y pégalo en tu próxima respuesta.

»
CCLEANER. usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y archivos obsoletos, y luego usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).

4 »» Inicia en modo normal,

5 »» Realiza un scan online con

KASPERSKY ONLINE SCANER VERSIÓN INGLESA Mira su manual. Manual Kaspersky Online Scanner (Versión Inglesa)

O sino puedes con kas, utiliza Panda ActiveScan+Manual.

En tu próxima respuesta, debes pegar el reporte de MALWAREBYTES, Dr. Web y el de Panda online .

Espero esos reporte, tomate tu tiempo.

Salu2.

»» »» »».......Persevera y triunfarás........«« «« ««

Última edición por Fer21021 fecha: 08/09/09 a las 01:16:32.

post #3

08/09/09, 01:11:16

pachopv

Usuario

Registrado: mar 2009

Ubicación: Peru

Mensajes: 39

Re: despues de analisis panda online q debo hacer.

Gracias por la inmediata respuesta, ni bien tenga los resultados te los envio, gracias y hasta luego.

post #4

08/09/09, 01:12:47

Fer21021

Usuario Habitual

Registrado: abr 2008

Ubicación: Argentina

Mensajes: 2.722

Re: despues de analisis panda online q debo hacer.

Ok.

Tomate tu tiempo y lee bien las indicaciones y los manuales.

Con estos pasos nos daremos una buena idea de las infecciones que tienes en la Pc.

Saludos.

»» »» »».......Persevera y triunfarás........«« «« ««

post #5

08/09/09, 19:20:46

pachopv

Usuario

Registrado: mar 2009

Ubicación: Peru

Mensajes: 39

Re: despues de analisis panda online q debo hacer.

Hola Fer, bueno se me presento un problema, realice los analisis con drweb, malwarebites, ccleaner, y todo Ok, me limpio los bichos, ahora para hacer el scaner online con kasperski no lo puedo realizar debido a q me dice q tengo instalado un antivirus, bueno eso es cierto tengo el nod, pero ese antivirus esta desactualizado, ahora cuando quiero entrar a panel de control, agregar o quitar programas no aparece el nod,ya q quiero desinstalarlo, como elimino el nod si nisiquiera aparece en la lista de programas, pero si esta en Archivos de programas una carpeta ESET, q debo hacer. Gracias

post #6

08/09/09, 19:54:24

Fer21021

Usuario Habitual

Registrado: abr 2008

Ubicación: Argentina

Mensajes: 2.722

Re: despues de analisis panda online q debo hacer.

Hola,

Mira lo de desinstalar el nod32, lo dejamos para después.

Primero terminemos con la desinfección del Pc.

Pega los reportes que te pedí,

Debes usar el kas, usa el panda, este no debería darte problemas.

Realiza un scan online con : Panda ActiveScan+Manual.

Trae los reportes.

Saludos.

»» »» »».......Persevera y triunfarás........«« «« ««

post #7

09/09/09, 22:21:15

pachopv

Usuario

Registrado: mar 2009

Ubicación: Peru

Mensajes: 39

Re: despues de analisis panda online q debo hacer.

Hola Fer, aqui t envio los resultados del analisis de Malwarebites, y del scaneo online panda, espero porfavor me lo analices y me digas q su puede hacer. Gracias y hasta pronto.

Código:

Malwarebytes' Anti-Malware 1.40
Versión de la Base de Datos: 2754
Windows 5.1.2600 Service Pack 2 (Safe Mode)

07/09/2009 07:12:01 p.m.
mbam-log-2009-09-07 (19-12-01).txt

Tipo de examen : Examen Completo (C:\|D:\|E:\|F:\|)
Objetos examinados: 144682
Tiempo transcurrido: 39 minute(s), 43 second(s)

Procesos en Memoria Infectados: 0
Módulos en Memoria Infectados: 1
Claves del Registro Infectadas: 6
Valores del Registro Infectados: 2
Elementos de Datos del Registro Infectados: 0
Carpetas Infectadas: 0
Ficheros Infectados: 87

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos en Memoria Infectados:
C:\WINDOWS\system32\e8main0.dll (Spyware.OnlineGames) -> Delete on reboot.

Claves del Registro Infectadas:
HKEY_CLASSES_ROOT\CLSID\{bb4c402f-882a-4526-8c08-51278ea437c1} (Spyware.OnlineGames) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\MADOWN (Worm.Magania) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AutoRunKiller.exe (Security.Hijack) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Frameworkservice.exe (Security.Hijack) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KASARP.exe (Security.Hijack) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WOPTILITIES.exe (Security.Hijack) -> Quarantined and deleted successfully.

Valores del Registro Infectados:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{bb4c402f-882a-4526-8c08-51278ea437c1} (Spyware.OnlineGames) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\cdoosoft (Spyware.OnlineGames) -> Quarantined and deleted successfully.

Elementos de Datos del Registro Infectados:
(No se han detectado elementos maliciosos)

Carpetas Infectadas:
(No se han detectado elementos maliciosos)

Ficheros Infectados:
C:\WINDOWS\system32\e8main0.dll (Spyware.OnlineGames) -> Delete on reboot.
C:\9u.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\b.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\cj3k.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\hx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ikj0.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\lad.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\lcw.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\m1eqos3.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\mt2.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\o9bxu.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\p.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\t8s2x.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\w9hw8.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\wbj.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\xbvv6o.com (Trojan.Gamania) -> Quarantined and deleted successfully.
C:\y8.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\Documents and Settings\ANDREI\Configuración local\Temp\nmdfgds2.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds0.dll (Worm.Magania) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds2.dll (Worm.Magania) -> Quarantined and deleted successfully.
D:\p0ijj.bat (Worm.Magania) -> Quarantined and deleted successfully.
D:\xbvv6o.com (Trojan.Gamania) -> Quarantined and deleted successfully.
D:\lad.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
D:\p.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
D:\ikj0.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
D:\w9hw8.exe (Worm.Magania) -> Quarantined and deleted successfully.
D:\wbj.exe (Worm.Magania) -> Quarantined and deleted successfully.
D:\9u.exe (Worm.Magania) -> Quarantined and deleted successfully.
D:\y8.exe (Worm.Magania) -> Quarantined and deleted successfully.
D:\fsaht.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
D:\m1eqos3.exe (Worm.Magania) -> Quarantined and deleted successfully.
D:\lcw.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
D:\hx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
D:\t8s2x.exe (Worm.Magania) -> Quarantined and deleted successfully.
D:\b.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
D:\mt2.exe (Worm.Magania) -> Quarantined and deleted successfully.
D:\o9bxu.exe (Worm.Magania) -> Quarantined and deleted successfully.
D:\cj3k.exe (Worm.Magania) -> Quarantined and deleted successfully.
E:\xbvv6o.com (Trojan.Gamania) -> Quarantined and deleted successfully.
E:\p.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
E:\ikj0.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
E:\p0ijj.bat (Worm.Magania) -> Quarantined and deleted successfully.
E:\w9hw8.exe (Worm.Magania) -> Quarantined and deleted successfully.
E:\lad.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
E:\wbj.exe (Worm.Magania) -> Quarantined and deleted successfully.
E:\9u.exe (Worm.Magania) -> Quarantined and deleted successfully.
E:\y8.exe (Worm.Magania) -> Quarantined and deleted successfully.
E:\fsaht.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
E:\m1eqos3.exe (Worm.Magania) -> Quarantined and deleted successfully.
E:\lcw.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
E:\hx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
E:\t8s2x.exe (Worm.Magania) -> Quarantined and deleted successfully.
E:\b.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
E:\mt2.exe (Worm.Magania) -> Quarantined and deleted successfully.
E:\o9bxu.exe (Worm.Magania) -> Quarantined and deleted successfully.
E:\cj3k.exe (Worm.Magania) -> Quarantined and deleted successfully.
F:\p0ijj.bat (Worm.Magania) -> Quarantined and deleted successfully.
F:\xbvv6o.com (Trojan.Gamania) -> Quarantined and deleted successfully.
F:\ikj0.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
F:\lad.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
F:\p.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
F:\w9hw8.exe (Worm.Magania) -> Quarantined and deleted successfully.
F:\wbj.exe (Worm.Magania) -> Quarantined and deleted successfully.
F:\9u.exe (Worm.Magania) -> Quarantined and deleted successfully.
F:\y8.exe (Worm.Magania) -> Quarantined and deleted successfully.
F:\m1eqos3.exe (Worm.Magania) -> Quarantined and deleted successfully.
F:\lcw.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
F:\fsaht.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
F:\hx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
F:\t8s2x.exe (Worm.Magania) -> Quarantined and deleted successfully.
F:\b.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
F:\mt2.exe (Worm.Magania) -> Quarantined and deleted successfully.
F:\o9bxu.exe (Worm.Magania) -> Quarantined and deleted successfully.
F:\cj3k.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\m.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\autorun.inf (SuspectAutorun.Rootdrive.H) -> Quarantined and deleted successfully.
C:\ktly.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\m9ma.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\wqesvxa.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\xcisvxl.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\olhrwef.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds0.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Documents and Settings\ANDREI\Configuración local\Temp\herss.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\AhnRpta.exe (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\WINDOWS\expiorer.exe (Trojan.Rundis) -> Quarantined and deleted successfully.

Y DEL PANDA:

Código:

;***********************************************************************************************************************************************************************************
ANALYSIS: 2009-09-09 20:10:33
PROTECTIONS: 1
MALWARE: 8
SUSPECTS: 17
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description                                  Version                       Active    Updated
;===================================================================================================================================================================================
ESET NOD32 Antivirus 4.0                     4.0                           Yes       No
;===================================================================================================================================================================================
MALWARE
Id        Description                        Type                Active    Severity  Disinfectable  Disinfected Location
;===================================================================================================================================================================================
00167753  Cookie/Statcounter                 TrackingCookie      No        0         Yes            No           C:\Documents and Settings\ANDREI\Cookies\andrei@statcounter[2].txt
00168106  Cookie/Weborama                    TrackingCookie      No        0         Yes            No           C:\Documents and Settings\ANDREI\Cookies\andrei@weborama[1].txt
00286732  Cookie/Cgi-bin                     TrackingCookie      No        0         Yes            No           C:\Documents and Settings\ANDREI\Cookies\andrei@www3.addfreestats[1].txt
00366244  Application/NirCmd.A               HackTools           No        0         No             No           C:\Documents and Settings\ANDREI\DoctorWeb\Quarantine\Flash_Disinfector.exe[C:\Documents and Settings\ANDREI\DoctorWeb\Quarantine\Flash_Disinfector.exe][nircmd.exe]
00381179  trj/lineage.bze                    Virus/Trojan        No        1         Yes            No           hkey_current_user\software\microsoft\windows\currentversion\run\cdoosoft
00611227  w32/lineage.kot                    Virus/Trojan        No        0         Yes            No           hkey_classes_root\clsid\madown
02746890  Generic Worm                       Virus/Worm          No        0         Yes            No           F:\3C.EXE
02746890  Generic Worm                       Virus/Worm          No        0         Yes            No           D:\3C.EXE
02746890  Generic Worm                       Virus/Worm          No        0         Yes            No           E:\3C.EXE
02746890  Generic Worm                       Virus/Worm          No        0         Yes            No           C:\3c.exe
02769721  Generic Worm                       Virus/Worm          No        0         Yes            No           E:\10NB.EXE
02769721  Generic Worm                       Virus/Worm          No        0         Yes            No           D:\10NB.EXE
02769721  Generic Worm                       Virus/Worm          No        0         Yes            No           F:\10NB.EXE
02769721  Generic Worm                       Virus/Worm          No        0         Yes            No           C:\10nb.exe
;===================================================================================================================================================================================
SUSPECTS
Sent      Location                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              /
;===================================================================================================================================================================================
No        C:\Archivos de programa\ESET\ESET NOD32 Antivirus\updater.dll                                                                                                                                                                                                                                                                                                                                                                                                                                                         /
No        C:\DOCUME~1\ANDREI\CONFIG~1\Temp\cvasds0.dll                                                                                                                                                                                                                                                                                                                                                                                                                                                                          /
No        c:\docume~1\andrei\config~1\temp\herss.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                            /
No        C:\Archivos de programa\ESET\ESET NOD32 Antivirus\eguiEmon.dll                                                                                                                                                                                                                                                                                                                                                                                                                                                        /
No        C:\Archivos de programa\ESET\ESET NOD32 Antivirus\eguiEpfw.dll                                                                                                                                                                                                                                                                                                                                                                                                                                                        /
No        C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds0.dll                                                                                                                                                                                                                                                                                                                                                                                                                                                /
No        C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds1.dll                                                                                                                                                                                                                                                                                                                                                                                                                                                /
No        C:\Documents and Settings\ANDREI\Configuración local\Temp\herss.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                  /
No        C:\Documents and Settings\ANDREI\Configuración local\Temp\~DFA132.tmp                                                                                                                                                                                                                                                                                                                                                                                                                                                /
No        C:\etmt1.bat                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          /
No        D:\ETMT1.BAT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          /
No        D:\DOGYX90.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        /
No        E:\ETMT1.BAT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          /
No        E:\DOGYX90.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        /
No        D:\HERBALIFE\DESCARGAS HERBALIFE\REFLEXIONES PARA EL EXITO\4secretos.exe                                                                                                                                                                                                                                                                                                                                                                                                                                              /
No        F:\ETMT1.BAT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          /
No        F:\DOGYX90.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        /
;===================================================================================================================================================================================
VULNERABILITIES
Id        Severity   Description                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                /
;===================================================================================================================================================================================
  212494  HIGH       MS09-042                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  212493  HIGH       MS09-041                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  212490  HIGH       MS09-038                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  212530  HIGH       MS09-034                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  211784  HIGH       MS09-032                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  211781  HIGH       MS09-029                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  210625  HIGH       MS09-026                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  210624  HIGH       MS09-025                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  210621  HIGH       MS09-022                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  210618  HIGH       MS09-019                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  208380  HIGH       MS09-015                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  208378  HIGH       MS09-013                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  208377  HIGH       MS09-012                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  206981  HIGH       MS09-007                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  206980  HIGH       MS09-006                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  204670  HIGH       MS09-001                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  203505  HIGH       MS08-071                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  202465  HIGH       MS08-068                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  201683  HIGH       MS08-067                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  201258  HIGH       MS08-066                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  201256  HIGH       MS08-064                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  201255  HIGH       MS08-063                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  201253  HIGH       MS08-061                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  209275  HIGH       MS08-049                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  191618  HIGH       MS08-025                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  191614  HIGH       MS08-021                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  191613  HIGH       MS08-020                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  187733  HIGH       MS08-008                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  184380  MEDIUM     MS08-002                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  182046  HIGH       MS07-067                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  179553  HIGH       MS07-061                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  176383  HIGH       MS07-058                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  170907  HIGH       MS07-046                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  170904  HIGH       MS07-043                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  164915  HIGH       MS07-035                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  164911  HIGH       MS07-031                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  157262  HIGH       MS07-022                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  157261  HIGH       MS07-021                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  157260  HIGH       MS07-020                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  157259  HIGH       MS07-019                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  156477  HIGH       MS07-017                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  150249  HIGH       MS07-013                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  150248  HIGH       MS07-012                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  150247  HIGH       MS07-011                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  150243  HIGH       MS07-008                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  150242  HIGH       MS07-007                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  150241  MEDIUM     MS07-006                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  141033  MEDIUM     MS06-075                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  137571  HIGH       MS06-070                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  133385  MEDIUM     MS06-063                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  133379  HIGH       MS06-057                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  129977  MEDIUM     MS06-053                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  129976  MEDIUM     MS06-052                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  126093  HIGH       MS06-051                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  126092  MEDIUM     MS06-050                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  126087  HIGH       MS06-046                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  108738  HIGH       MS06-004                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  126082  HIGH       MS06-041                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  126081  HIGH       MS06-040                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  123421  HIGH       MS06-036                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  123420  HIGH       MS06-035                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  120823  MEDIUM     MS06-030                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  120818  HIGH       MS06-025                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  120815  HIGH       MS06-022                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  117384  MEDIUM     MS06-018                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  114666  HIGH       MS06-015                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  108738  HIGH       MS06-004                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  108738  HIGH       MS06-004                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  104567  HIGH       MS06-002                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
  104237  HIGH       MS06-001                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
   96574  HIGH       MS05-053                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
   93395  HIGH       MS05-051                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
   93454  MEDIUM     MS05-049                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   /
;===================================================================================================================================================================================

DEL CCLEANER SE EJECUTO Y LIMPIO, TAMBINE CON EL DR. WEB. ESO ES TODO GRACIAS Y ESPERO TU RESPUESTA, HASTA LUEGO.

post #8

09/09/09, 22:47:48

Fer21021

Usuario Habitual

Registrado: abr 2008

Ubicación: Argentina

Mensajes: 2.722

Re: despues de analisis panda online q debo hacer.

Realize lo siguiente:

Descarga OTM en el escritorio.
Haz doble clic sobre el icono OTM.exe para ejecutarlo
Asegúrate que esté marcada la casilla "Unregister Dll´s and Ocx´s".
Pega el siguiente script, que se encuentra dentro del recuadro de abajo, en el area "Paste Instructions for items to be Moved"

Código:

:files
C:\10nb.exe
C:\3c.exe
D:\10NB.EXE
D:\3C.EXE
E:\10NB.EXE
E:\3C.EXE
F:\10NB.EXE
F:\3C.EXE
C:\DOCUME~1\ANDREI\CONFIG~1\Temp\cvasds0.dll
c:\docume~1\andrei\config~1\temp\herss.exe
C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds0.dll
C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds1.dll
C:\Documents and Settings\ANDREI\Configuración local\Temp\herss.exe
C:\Documents and Settings\ANDREI\Configuración local\Temp\~DFA132.tmp
C:\etmt1.bat
D:\ETMT1.BAT
D:\DOGYX90.EXE
E:\ETMT1.BAT
E:\DOGYX90.EXE
D:\HERBALIFE\DESCARGAS HERBALIFE\REFLEXIONES PARA EL EXITO\4secretos.exe
F:\ETMT1.BAT
F:\DOGYX90.EXE

:reg
[-hkey_classes_root\clsid\madown]
[-hkey_current_user\software\microsoft\windows\currentversion\run\cdoosoft]



:commands
[emptytemp]
[purity]
[Reboot]

dar clic sobre el boton MoveIt!
Espere hasta cuando el resultado aparezca en el marco Results.
Simultáneamente se abrirá un aviso preguntando si deseamos reiniciar el PC, pulse sobre Yes para reiniciar.si no sale ese aviso lo reinicias manualmente,>>> Este reinicio es importante
En su proximo mensaje envie reporte de OTM situado sobre C: \ _ OTM\MovedFiles\***_***.log

regresas con el reporte de OTM

Luego, des-instala el nod32, Si lo tenias con Fix, también desinstalalo.

Desde el enlace de mas abajo ejecuta alguno de los desinstaladores que veras de acuerdo al antivirus que quieras eliminar , ya que una incorrecta desinstalacion de uno provoca que luego no puedas instalar otro:

Herramientas específicas de desinstalación de antivirus

Después descarga y ejecuta:

Ccleaner.
Usando primero su opción "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos, y luego usa su opción "Registro" para limpiar todo el Registro de Windows haciendo Copia de Seguridad.

Por ultimo en este enlace encontraras antivirus gratis para tu sistema:

Antivirus Gratis | InfoSpyware

Si, no lo puedes des instalar con la herramienta de arriba, utiliza el REVO UNINSTALLER.
Manual de Revo Uninstaller

Lee su manual y prueba las distintas funciones que tiene.

Vuelve con el reporte de otm y coméntanos, si pudiste des instalar el nod 32.

Saludos.

»» »» »».......Persevera y triunfarás........«« «« ««

Última edición por Fer21021 fecha: 11/09/09 a las 13:45:44.

post #9

10/09/09, 19:15:20

pachopv

Usuario

Registrado: mar 2009

Ubicación: Peru

Mensajes: 39

Re: despues de analisis panda online q debo hacer.

Hola Fer, bueno aqui te envio el reporte del OTM, espero noticias tuyas, hasta luego,

Código:

All processes killed
========== FILES ==========
C:\10nb.exe moved successfully.
C:\3c.exe moved successfully.
D:\10nb.exe moved successfully.
D:\3c.exe moved successfully.
E:\10nb.exe moved successfully.
E:\3c.exe moved successfully.
F:\10nb.exe moved successfully.
F:\3c.exe moved successfully.
DllUnregisterServer procedure not found in C:\DOCUME~1\ANDREI\CONFIG~1\Temp\cvasds0.dll
C:\DOCUME~1\ANDREI\CONFIG~1\Temp\cvasds0.dll NOT unregistered.
C:\DOCUME~1\ANDREI\CONFIG~1\Temp\cvasds0.dll moved successfully.
c:\docume~1\andrei\config~1\temp\herss.exe moved successfully.
File/Folder C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds0.dll not found.
DllUnregisterServer procedure not found in C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds1.dll
C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds1.dll NOT unregistered.
C:\Documents and Settings\ANDREI\Configuración local\Temp\cvasds1.dll moved successfully.
File/Folder C:\Documents and Settings\ANDREI\Configuración local\Temp\herss.exe not found.
File/Folder C:\Documents and Settings\ANDREI\Configuración local\Temp\~DFA132.tmp not found.
C:\etmt1.bat moved successfully.
D:\etmt1.bat moved successfully.
D:\dogyx90.exe moved successfully.
E:\etmt1.bat moved successfully.
E:\dogyx90.exe moved successfully.
D:\HERBALIFE\DESCARGAS HERBALIFE\REFLEXIONES PARA EL EXITO\4secretos.exe moved successfully.
F:\etmt1.bat moved successfully.
F:\dogyx90.exe moved successfully.
========== REGISTRY ==========
Registry key hkey_classes_root\clsid\madown\ not found.
Registry key hkey_current_user\software\microsoft\windows\currentversion\run\cdoosoft\ not found.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: ANDREI
->Temp folder emptied: 1310696016 bytes
File delete failed. C:\Documents and Settings\ANDREI\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 127400108 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 5800297 bytes
->Google Chrome cache emptied: 5885848 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
 
User: LocalService
->Temp folder emptied: 66016 bytes
File delete failed. C:\Documents and Settings\LocalService\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 1945486 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
 
%systemdrive% .tmp files removed: 0 bytes
C:\WINDOWS\32965C3709CB4391BC5C184C88CA3ACD.TMP folder deleted successfully.
%systemroot% .tmp files removed: 2499507 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
Windows Temp folder emptied: 39264254 bytes
RecycleBin emptied: 13602304 bytes
 
Total Files Cleaned = 1437.34 mb
 
 
OTM by OldTimer - Version 3.0.0.6 log created on 09102009_170436

Files moved on Reboot...

Registry entries deleted on Reboot...

post #10

10/09/09, 19:32:50

Fer21021

Usuario Habitual

Registrado: abr 2008

Ubicación: Argentina

Mensajes: 2.722

Re: despues de analisis panda online q debo hacer.

Hola realiza esto, para eliminar OTM.

»» Ejecuta OTM.exe
»» Asegúrate de estar conectado a Internet.
»» Presiona el botón CleanUp! .
»» Confirma el inicio del proceso de limpieza pulsando en "Yes" .
»» Aparecerá un listado de las herramientas usadas durante la desinfección.
»» OTM pedirá que reinicie el sistema, confírmelo pulsando en "Yes" .

Una vez que hayas des-instalado el nod 32, vuelve a realizar el scan online con Panda.

Y comenta como anda esa Pc.

Saludos.

»» »» »».......Persevera y triunfarás........«« «« ««

Página 1 de 2

« Tema Anterior | Próximo Tema »

Herramientas
Mostrar Versión Imprimible Enviar por Correo

Reglas del foro
No puedes crear nuevos temas No puedes responder temas No puedes subir adjuntos No puedes editar tus mensajes BB code is activado Las caritas están activado Código [IMG] está activado Código HTML está desactivado Trackbacks are desactivado Pingbacks are activado Refbacks are activado Políticas del foro

Temas Similares

Tema	Autor	Foro	Respuestas	Último mensaje
No se abre el windows media player 11. (Solucionado)	josele36	Temas Solucionados	47	07/09/09 14:15:57
Aparecen archivos rar desconocidos en mis dos particiones c yd	pepebueno	Foro de Virus y Spywares	10	15/08/09 20:56:51
Sin barra de tareas	verntallat	Ayuda General	17	20/01/09 17:46:37
Ayuda con Virus Trojan Downloader!	xrandyx	Foro de Virus y Spywares	2	16/01/09 21:55:09
No Puedi Hacer Analisis Con Antivirus Online	analogfeel	Foro de Virus y Spywares	1	22/06/08 04:40:46

Todas las horas son GMT -4. La hora es 05:28:48.

InfoSpyware es miembro de ASAP - Alliance of Security Analysis Professionals

Foro de InfoSpyware - Foro de Hijackthis - Foro de Virus