Foro de InfoSpyware - Foro de Hijackthis - Foro de Virus

Hola que tal,. tengo un problema con mi compu, últimamente se le mete un virus que hace que se alente cada vez que se inicie un programa (ya lo habia arreglado y volvio a aparecer) y mi explorer de internet cada que quiero abrir un programa se me cierra...

Gracias por su ayuda!!!

Hola,

es raro lo que te pasa. Veremos que infecciones tienes.


por favor trata de seguir estos pasos: (si no puedes con alguno, lo dejas y continuas con los demás).


1 »» - Descarga ,instala y actualiza las siguientes herramientas pero no las ejecutes aun:
»»

• Lop S & D por Eric_71
• Malwarebytes' Anti-Malware - Manual.

2 »» Reinicia en "Modo Seguro" (Si no puede iniciar en Modo Seguro, omite este paso).

3 »» ejecuta, las herramientas en el siguiente orden.


»»
Ejecuta Lop S & D

1. Haz doble clic en LopSD.exe
2. Elige el idioma escribiendo la letra correspondiente y pulsa en Enter.
3. Haz clic en "Aceptar (Ok)" en la ventana informativa.
4. Picas 2 para elegir la opción "2 (Fix + Hosts)" y a continuación pulsa en Enter.
5. Espera hasta el final de la exploración.
6. Se generará Un informe, pega el contenido del mismo en tu próxima respuesta.
7. (La copia del informe se puede encontrar en esta ubicación:% SystemDrive% \ lopR.txt, en la mayoría de los casos en C: \ lopR.txt).

»»
EJECUTA Malwarebytes' Anti-Malware. Seleccionas su opción de hacer un "escaneo completo". Cuando termine presiona la opción "quitar todo lo seleccionado".


4 »»
Realiza un scan online con KASPERSKY ONLINE SCANER VERSIÓN INGLESA Mira su manual. Manual Kaspersky Online Scanner (Versión Inglesa)




Trae el reporte de malwarebytes, LopSD, y Kas online.

Salu2.

Listo!!! Estos son mis reportes,...:


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Home Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T2330 @ 1.60GHz )
BIOS : Ver 1.00PARTTBL
USER : Carlos ( Administrator )
BOOT : Fail-safe boot
Antivirus : (Not Activated)
Firewall : Norton 360 2007 (Activated)
C:\ (Local Disk) - NTFS - Total:139 Go (Free:36 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 16/10/2009|11:04 )

[ UAC => 1 ]

--------------------\\ Lista de carpetas en Local

[28/07/2008|11:03] C:\Users\Carlos\AppData\Local\<DIR> ABBYY
[28/05/2009|12:23] C:\Users\Carlos\AppData\Local\<DIR> Adobe
[28/09/2008|01:53] C:\Users\Carlos\AppData\Local\<DIR> Apple
[28/12/2008|08:00] C:\Users\Carlos\AppData\Local\<DIR> Apple Computer
[30/07/2009|02:10] C:\Users\Carlos\AppData\Local\<DIR> Ares
[26/07/2009|01:54] C:\Users\Carlos\AppData\Local\1,356 d3d9caps.dat
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Datos de programa
[12/10/2009|08:10] C:\Users\Carlos\AppData\Local\30,720 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[01/10/2009|11:52] C:\Users\Carlos\AppData\Local\111,304 GDIPFONTCACHEV1.DAT
[19/05/2009|08:53] C:\Users\Carlos\AppData\Local\<DIR> Google
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Historial
[16/10/2009|10:54] C:\Users\Carlos\AppData\Local\1,868,632 IconCache.db
[01/10/2009|03:18] C:\Users\Carlos\AppData\Local\<DIR> Microsoft
[05/11/2008|01:02] C:\Users\Carlos\AppData\Local\<DIR> Microsoft Games
[01/08/2008|02:10] C:\Users\Carlos\AppData\Local\<DIR> Microsoft Help
[14/07/2008|03:13] C:\Users\Carlos\AppData\Local\<DIR> Mozilla
[18/09/2009|01:11] C:\Users\Carlos\AppData\Local\<DIR> PokerStars.NET
[16/10/2009|11:00] C:\Users\Carlos\AppData\Local\<DIR> Temp
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Temporary Internet Files
[02/05/2009|01:54] C:\Users\Carlos\AppData\Local\<DIR> TVU Networks
[14/07/2008|03:32] C:\Users\Carlos\AppData\Local\<DIR> VirtualStore
[30/09/2009|11:57] C:\Users\Carlos\AppData\Local\<DIR> Windows Live Writer
[07/12/2008|03:37] C:\Users\Carlos\AppData\Local\<DIR> Zylom Games
[4|archivos] C:\Users\Carlos\AppData\Local\bytes
[21|dirs] C:\Users\Carlos\AppData\Local\bytes libres

--------------------\\ Tareas programadas en C:\Windows\Tasks

[16/10/2009 10:54 a.m.][--a------] C:\Windows\tasks\Google Software Updater.job
[16/10/2009 10:52 a.m.][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{284E1667-DC20-4344-BC0A-6DBB7CF28DA4}.job
[16/10/2009 10:54 a.m.][--ah-----] C:\Windows\tasks\SA.DAT
[16/10/2009 10:54 a.m.][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Lista de carpetas en C:\ProgramData

[20/12/2007|02:11] C:\ProgramData\<DIR> {174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[19/11/2008|05:44] C:\ProgramData\<DIR> Adobe
[28/09/2008|01:53] C:\ProgramData\<DIR> Apple
[28/12/2008|07:58] C:\ProgramData\<DIR> Apple Computer
[22/07/2008|12:29] C:\ProgramData\<DIR> BitDefender
[23/03/2009|09:34] C:\ProgramData\<DIR> Bluetooth
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Datos de programa
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Documentos
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Escritorio
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Favoritos
[14/07/2008|06:15] C:\ProgramData\<DIR> FLEXnet
[14/07/2008|02:59] C:\ProgramData\<DIR> Google
[15/10/2009|11:56] C:\ProgramData\<DIR> Google Updater
[15/07/2008|02:01] C:\ProgramData\<DIR> Kaspersky Lab Setup Files
[22/07/2008|12:38] C:\ProgramData\<DIR> Lavasoft
[16/07/2008|06:57] C:\ProgramData\<DIR> McAfee.com
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Men£ Inicio
[14/07/2008|05:34] C:\ProgramData\<DIR> Messenger Plus!
[13/02/2009|07:35] C:\ProgramData\<DIR> Microsoft
[30/09/2009|06:14] C:\ProgramData\<DIR> Microsoft Help
[09/03/2009|08:43] C:\ProgramData\<DIR> Office Genuine Advantage
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Plantillas
[14/08/2009|04:22] C:\ProgramData\<DIR> Roxio
[13/07/2008|06:10] C:\ProgramData\<DIR> Sonic
[28/08/2008|11:36] C:\ProgramData\<DIR> Sony Corporation
[14/07/2008|10:54] C:\ProgramData\<DIR> Symantec
[02/05/2009|01:54] C:\ProgramData\<DIR> TVU Networks
[20/12/2007|02:21] C:\ProgramData\<DIR> VAIO Media Platform
[14/07/2008|03:19] C:\ProgramData\<DIR> WLInstaller
[04/08/2009|11:01] C:\ProgramData\<DIR> Yahoo! Companion
[0|archivos] C:\ProgramData\bytes
[32|dirs] C:\ProgramData\bytes libres

--------------------\\ Lista de carpetas en C:\Program Files

[20/12/2007|02:11] C:\Program Files\<DIR> Activation Assistant for the 2007 Microsoft Office suites
[19/11/2008|05:44] C:\Program Files\<DIR> Adobe
[28/11/2007|02:23] C:\Program Files\<DIR> Apoint
[28/09/2008|01:53] C:\Program Files\<DIR> Apple Software Update
[13/07/2008|03:33] C:\Program Files\<JUNCTION> Archivos comunes [C:\Program Files\Common Files]
[24/04/2009|11:20] C:\Program Files\<DIR> Ares
[30/03/2009|06:50] C:\Program Files\<DIR> Ask Search Assistant
[22/07/2008|12:29] C:\Program Files\<DIR> BitDefender
[22/07/2008|11:54] C:\Program Files\<DIR> BitDefender KeyGen + Updates Patch
[28/12/2008|08:14] C:\Program Files\<DIR> BitLord
[28/12/2008|07:57] C:\Program Files\<DIR> Bonjour
[24/03/2009|03:15] C:\Program Files\<DIR> CCleaner
[06/06/2009|05:22] C:\Program Files\<DIR> Common Files
[29/12/2008|04:16] C:\Program Files\<DIR> Conduit
[28/11/2007|02:23] C:\Program Files\<DIR> CONEXANT
[13/09/2008|04:27] C:\Program Files\<DIR> Disk Cleaner
[16/05/2009|07:50] C:\Program Files\<DIR> DivX
[28/07/2009|02:08] C:\Program Files\<DIR> FLV Player
[15/09/2008|04:49] C:\Program Files\<DIR> Google
[26/07/2009|01:34] C:\Program Files\<DIR> Hamachi
[03/07/2009|03:47] C:\Program Files\<DIR> InstallShield Installation Information
[28/11/2007|03:26] C:\Program Files\<DIR> intel
[26/08/2009|12:24] C:\Program Files\<DIR> Internet Explorer
[20/12/2007|02:28] C:\Program Files\<DIR> InterVideo
[23/03/2009|09:31] C:\Program Files\<DIR> IVT Corporation
[20/12/2007|02:19] C:\Program Files\<DIR> J River
[28/08/2009|06:16] C:\Program Files\<DIR> Java
[22/09/2008|09:54] C:\Program Files\<DIR> Lavasoft
[13/07/2009|06:59] C:\Program Files\<DIR> Messenger Plus! Live
[07/12/2008|03:58] C:\Program Files\<DIR> MessengerPlus! 3
[13/02/2009|07:36] C:\Program Files\<DIR> Microsoft
[14/07/2008|04:08] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[26/07/2009|02:13] C:\Program Files\<DIR> Microsoft Games
[13/07/2008|04:06] C:\Program Files\<DIR> Microsoft Office
[29/09/2009|01:20] C:\Program Files\<DIR> Microsoft Office Outlook Connector
[08/09/2009|07:47] C:\Program Files\<DIR> Microsoft Silverlight
[13/02/2009|07:33] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[13/02/2009|07:35] C:\Program Files\<DIR> Microsoft Sync Framework
[13/07/2008|04:07] C:\Program Files\<DIR> Microsoft Visual Studio
[13/07/2008|03:57] C:\Program Files\<DIR> Microsoft Visual Studio 8
[11/06/2009|11:15] C:\Program Files\<DIR> Microsoft Works
[20/12/2007|02:10] C:\Program Files\<DIR> Microsoft.NET
[20/07/2008|05:43] C:\Program Files\<DIR> Mjuice Media Player
[22/07/2008|02:34] C:\Program Files\<DIR> Movie Maker
[12/07/2009|11:25] C:\Program Files\<DIR> Mozilla Firefox
[13/07/2008|04:08] C:\Program Files\<DIR> MSBuild
[28/11/2007|02:59] C:\Program Files\<DIR> MSXML 4.0
[05/09/2009|06:28] C:\Program Files\<DIR> Panda Security
[04/08/2009|12:16] C:\Program Files\<DIR> PokerStars.NET
[28/09/2008|01:55] C:\Program Files\<DIR> QuickTime
[12/09/2008|06:42] C:\Program Files\<DIR> RamBooster 2.0
[18/08/2008|11:41] C:\Program Files\<DIR> Realtek
[02/11/2006|07:37] C:\Program Files\<DIR> Reference Assemblies
[09/06/2009|01:39] C:\Program Files\<DIR> RegCure
[28/11/2007|05:15] C:\Program Files\<DIR> Roxio
[20/12/2007|02:28] C:\Program Files\<DIR> Sony
[28/11/2007|05:19] C:\Program Files\<DIR> Sony Corporation
[06/12/2008|09:33] C:\Program Files\<DIR> SopCast
[28/08/2008|06:04] C:\Program Files\<DIR> Sun
[29/12/2008|04:16] C:\Program Files\<DIR> TorrentMan
[02/11/2006|08:01] C:\Program Files\<DIR> Uninstall Information
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Calendar
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Collaboration
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Defender
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Journal
[29/09/2009|01:20] C:\Program Files\<DIR> Windows Live
[13/02/2009|07:30] C:\Program Files\<DIR> Windows Live SkyDrive
[08/09/2009|07:48] C:\Program Files\<DIR> Windows Mail
[14/08/2009|02:34] C:\Program Files\<DIR> Windows Media Player
[13/07/2008|03:33] C:\Program Files\<DIR> Windows NT
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Photo Gallery
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Sidebar
[09/09/2008|03:27] C:\Program Files\<DIR> WinRAR
[04/08/2009|11:01] C:\Program Files\<DIR> Yahoo!
[0|archivos] C:\Program Files\bytes
[76|dirs] C:\Program Files\bytes libres

--------------------\\ Lista de carpetas en C:\Program Files\Common Files

[19/11/2008|05:44] C:\Program Files\Common Files\<DIR> Adobe
[28/12/2008|07:55] C:\Program Files\Common Files\<DIR> Apple
[22/07/2008|12:29] C:\Program Files\Common Files\<DIR> BitDefender
[20/12/2007|02:10] C:\Program Files\Common Files\<DIR> DESIGNER
[20/12/2007|02:21] C:\Program Files\Common Files\<DIR> InstallShield
[20/12/2007|02:28] C:\Program Files\Common Files\<DIR> InterVideo
[28/11/2007|05:12] C:\Program Files\Common Files\<DIR> Java
[20/12/2007|02:15] C:\Program Files\Common Files\<DIR> Macrovision Shared
[30/09/2009|06:07] C:\Program Files\Common Files\<DIR> microsoft shared
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> PX Storage Engine
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> Roxio Shared
[02/11/2006|06:18] C:\Program Files\Common Files\<DIR> Services
[22/07/2008|12:28] C:\Program Files\Common Files\<DIR> Softwin
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> Sonic Shared
[20/12/2007|02:21] C:\Program Files\Common Files\<DIR> Sony Shared
[02/11/2006|06:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[14/07/2008|10:48] C:\Program Files\Common Files\<DIR> Symantec Shared
[29/09/2009|01:20] C:\Program Files\Common Files\<DIR> System
[13/02/2009|07:12] C:\Program Files\Common Files\<DIR> Windows Live
[14/07/2008|03:29] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
[22/09/2008|09:52] C:\Program Files\Common Files\<DIR> Wise Installation Wizard
[0|archivos] C:\Program Files\Common Files\bytes
[23|dirs] C:\Program Files\Common Files\bytes libres

--------------------\\ Process

( 20 Processes )

... OK !

--------------------\\ Deteccion con S_Lop

¡ No se encontraron carpetas Lop !

--------------------\\ Deteccion de archivos y carpetas Lop

¡ No se encontraron carpetas Lop !

--------------------\\ Deteccion en el registro de windows

..... OK !

--------------------\\ Analizando el archivo Hosts

Archivo Hosts LIMPIO


--------------------\\ Deteccion de archivos invisibles con Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-16 11:04:25
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 31

--------------------\\ Deteccion de otras infecciones


¡ No se encontraron otras infecciones !

[F:30][D:6]-> C:\Users\Carlos\AppData\Local\Temp
[F:11][D:1]-> C:\Users\Carlos\AppData\Roaming\MICROS~1\Windows\C ookies
[F:22][D:5]-> C:\Users\Carlos\AppData\Local\MICROS~1\Windows\TEM POR~1\content.IE5
[F:7][D:6]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 16/10/2009|11:01 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 16/10/2009|11:05 - Option : [1]

--------------------\\ Analisis terminado a 11:05:49
[ UAC => 1 ]


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Home Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T2330 @ 1.60GHz )
BIOS : Ver 1.00PARTTBL
USER : Carlos ( Administrator )
BOOT : Fail-safe boot
Antivirus : (Not Activated)
Firewall : Norton 360 2007 (Activated)
C:\ (Local Disk) - NTFS - Total:139 Go (Free:36 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 16/10/2009|11:06 )

[ UAC => 1 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ ELIMINAR

-
[ Archivo Hosts ] .. Restaurado

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Lista de carpetas en Local

[28/07/2008|11:03] C:\Users\Carlos\AppData\Local\<DIR> ABBYY
[28/05/2009|12:23] C:\Users\Carlos\AppData\Local\<DIR> Adobe
[28/09/2008|01:53] C:\Users\Carlos\AppData\Local\<DIR> Apple
[28/12/2008|08:00] C:\Users\Carlos\AppData\Local\<DIR> Apple Computer
[30/07/2009|02:10] C:\Users\Carlos\AppData\Local\<DIR> Ares
[26/07/2009|01:54] C:\Users\Carlos\AppData\Local\1,356 d3d9caps.dat
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Datos de programa
[12/10/2009|08:10] C:\Users\Carlos\AppData\Local\30,720 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[01/10/2009|11:52] C:\Users\Carlos\AppData\Local\111,304 GDIPFONTCACHEV1.DAT
[19/05/2009|08:53] C:\Users\Carlos\AppData\Local\<DIR> Google
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Historial
[16/10/2009|10:54] C:\Users\Carlos\AppData\Local\1,868,632 IconCache.db
[01/10/2009|03:18] C:\Users\Carlos\AppData\Local\<DIR> Microsoft
[05/11/2008|01:02] C:\Users\Carlos\AppData\Local\<DIR> Microsoft Games
[01/08/2008|02:10] C:\Users\Carlos\AppData\Local\<DIR> Microsoft Help
[14/07/2008|03:13] C:\Users\Carlos\AppData\Local\<DIR> Mozilla
[18/09/2009|01:11] C:\Users\Carlos\AppData\Local\<DIR> PokerStars.NET
[16/10/2009|11:06] C:\Users\Carlos\AppData\Local\<DIR> Temp
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Temporary Internet Files
[02/05/2009|01:54] C:\Users\Carlos\AppData\Local\<DIR> TVU Networks
[14/07/2008|03:32] C:\Users\Carlos\AppData\Local\<DIR> VirtualStore
[30/09/2009|11:57] C:\Users\Carlos\AppData\Local\<DIR> Windows Live Writer
[07/12/2008|03:37] C:\Users\Carlos\AppData\Local\<DIR> Zylom Games
[4|archivos] C:\Users\Carlos\AppData\Local\bytes
[21|dirs] C:\Users\Carlos\AppData\Local\bytes libres

--------------------\\ Tareas programadas en C:\Windows\Tasks

[16/10/2009 10:54 a.m.][--a------] C:\Windows\tasks\Google Software Updater.job
[16/10/2009 10:52 a.m.][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{284E1667-DC20-4344-BC0A-6DBB7CF28DA4}.job
[16/10/2009 10:54 a.m.][--ah-----] C:\Windows\tasks\SA.DAT
[16/10/2009 10:54 a.m.][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Lista de carpetas en C:\ProgramData

[20/12/2007|02:11] C:\ProgramData\<DIR> {174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[19/11/2008|05:44] C:\ProgramData\<DIR> Adobe
[28/09/2008|01:53] C:\ProgramData\<DIR> Apple
[28/12/2008|07:58] C:\ProgramData\<DIR> Apple Computer
[22/07/2008|12:29] C:\ProgramData\<DIR> BitDefender
[23/03/2009|09:34] C:\ProgramData\<DIR> Bluetooth
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Datos de programa
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Documentos
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Escritorio
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Favoritos
[14/07/2008|06:15] C:\ProgramData\<DIR> FLEXnet
[14/07/2008|02:59] C:\ProgramData\<DIR> Google
[15/10/2009|11:56] C:\ProgramData\<DIR> Google Updater
[15/07/2008|02:01] C:\ProgramData\<DIR> Kaspersky Lab Setup Files
[22/07/2008|12:38] C:\ProgramData\<DIR> Lavasoft
[16/07/2008|06:57] C:\ProgramData\<DIR> McAfee.com
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Men£ Inicio
[14/07/2008|05:34] C:\ProgramData\<DIR> Messenger Plus!
[13/02/2009|07:35] C:\ProgramData\<DIR> Microsoft
[30/09/2009|06:14] C:\ProgramData\<DIR> Microsoft Help
[09/03/2009|08:43] C:\ProgramData\<DIR> Office Genuine Advantage
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Plantillas
[14/08/2009|04:22] C:\ProgramData\<DIR> Roxio
[13/07/2008|06:10] C:\ProgramData\<DIR> Sonic
[28/08/2008|11:36] C:\ProgramData\<DIR> Sony Corporation
[14/07/2008|10:54] C:\ProgramData\<DIR> Symantec
[02/05/2009|01:54] C:\ProgramData\<DIR> TVU Networks
[20/12/2007|02:21] C:\ProgramData\<DIR> VAIO Media Platform
[14/07/2008|03:19] C:\ProgramData\<DIR> WLInstaller
[04/08/2009|11:01] C:\ProgramData\<DIR> Yahoo! Companion
[0|archivos] C:\ProgramData\bytes
[32|dirs] C:\ProgramData\bytes libres

--------------------\\ Lista de carpetas en C:\Program Files

[20/12/2007|02:11] C:\Program Files\<DIR> Activation Assistant for the 2007 Microsoft Office suites
[19/11/2008|05:44] C:\Program Files\<DIR> Adobe
[28/11/2007|02:23] C:\Program Files\<DIR> Apoint
[28/09/2008|01:53] C:\Program Files\<DIR> Apple Software Update
[13/07/2008|03:33] C:\Program Files\<JUNCTION> Archivos comunes [C:\Program Files\Common Files]
[24/04/2009|11:20] C:\Program Files\<DIR> Ares
[30/03/2009|06:50] C:\Program Files\<DIR> Ask Search Assistant
[22/07/2008|12:29] C:\Program Files\<DIR> BitDefender
[22/07/2008|11:54] C:\Program Files\<DIR> BitDefender KeyGen + Updates Patch
[28/12/2008|08:14] C:\Program Files\<DIR> BitLord
[28/12/2008|07:57] C:\Program Files\<DIR> Bonjour
[24/03/2009|03:15] C:\Program Files\<DIR> CCleaner
[06/06/2009|05:22] C:\Program Files\<DIR> Common Files
[29/12/2008|04:16] C:\Program Files\<DIR> Conduit
[28/11/2007|02:23] C:\Program Files\<DIR> CONEXANT
[13/09/2008|04:27] C:\Program Files\<DIR> Disk Cleaner
[16/05/2009|07:50] C:\Program Files\<DIR> DivX
[28/07/2009|02:08] C:\Program Files\<DIR> FLV Player
[15/09/2008|04:49] C:\Program Files\<DIR> Google
[26/07/2009|01:34] C:\Program Files\<DIR> Hamachi
[03/07/2009|03:47] C:\Program Files\<DIR> InstallShield Installation Information
[28/11/2007|03:26] C:\Program Files\<DIR> intel
[26/08/2009|12:24] C:\Program Files\<DIR> Internet Explorer
[20/12/2007|02:28] C:\Program Files\<DIR> InterVideo
[23/03/2009|09:31] C:\Program Files\<DIR> IVT Corporation
[20/12/2007|02:19] C:\Program Files\<DIR> J River
[28/08/2009|06:16] C:\Program Files\<DIR> Java
[22/09/2008|09:54] C:\Program Files\<DIR> Lavasoft
[13/07/2009|06:59] C:\Program Files\<DIR> Messenger Plus! Live
[07/12/2008|03:58] C:\Program Files\<DIR> MessengerPlus! 3
[13/02/2009|07:36] C:\Program Files\<DIR> Microsoft
[14/07/2008|04:08] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[26/07/2009|02:13] C:\Program Files\<DIR> Microsoft Games
[13/07/2008|04:06] C:\Program Files\<DIR> Microsoft Office
[29/09/2009|01:20] C:\Program Files\<DIR> Microsoft Office Outlook Connector
[08/09/2009|07:47] C:\Program Files\<DIR> Microsoft Silverlight
[13/02/2009|07:33] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[13/02/2009|07:35] C:\Program Files\<DIR> Microsoft Sync Framework
[13/07/2008|04:07] C:\Program Files\<DIR> Microsoft Visual Studio
[13/07/2008|03:57] C:\Program Files\<DIR> Microsoft Visual Studio 8
[11/06/2009|11:15] C:\Program Files\<DIR> Microsoft Works
[20/12/2007|02:10] C:\Program Files\<DIR> Microsoft.NET
[20/07/2008|05:43] C:\Program Files\<DIR> Mjuice Media Player
[22/07/2008|02:34] C:\Program Files\<DIR> Movie Maker
[12/07/2009|11:25] C:\Program Files\<DIR> Mozilla Firefox
[13/07/2008|04:08] C:\Program Files\<DIR> MSBuild
[28/11/2007|02:59] C:\Program Files\<DIR> MSXML 4.0
[05/09/2009|06:28] C:\Program Files\<DIR> Panda Security
[04/08/2009|12:16] C:\Program Files\<DIR> PokerStars.NET
[28/09/2008|01:55] C:\Program Files\<DIR> QuickTime
[12/09/2008|06:42] C:\Program Files\<DIR> RamBooster 2.0
[18/08/2008|11:41] C:\Program Files\<DIR> Realtek
[02/11/2006|07:37] C:\Program Files\<DIR> Reference Assemblies
[09/06/2009|01:39] C:\Program Files\<DIR> RegCure
[28/11/2007|05:15] C:\Program Files\<DIR> Roxio
[20/12/2007|02:28] C:\Program Files\<DIR> Sony
[28/11/2007|05:19] C:\Program Files\<DIR> Sony Corporation
[06/12/2008|09:33] C:\Program Files\<DIR> SopCast
[28/08/2008|06:04] C:\Program Files\<DIR> Sun
[29/12/2008|04:16] C:\Program Files\<DIR> TorrentMan
[02/11/2006|08:01] C:\Program Files\<DIR> Uninstall Information
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Calendar
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Collaboration
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Defender
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Journal
[29/09/2009|01:20] C:\Program Files\<DIR> Windows Live
[13/02/2009|07:30] C:\Program Files\<DIR> Windows Live SkyDrive
[08/09/2009|07:48] C:\Program Files\<DIR> Windows Mail
[14/08/2009|02:34] C:\Program Files\<DIR> Windows Media Player
[13/07/2008|03:33] C:\Program Files\<DIR> Windows NT
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Photo Gallery
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Sidebar
[09/09/2008|03:27] C:\Program Files\<DIR> WinRAR
[04/08/2009|11:01] C:\Program Files\<DIR> Yahoo!
[0|archivos] C:\Program Files\bytes
[76|dirs] C:\Program Files\bytes libres

--------------------\\ Lista de carpetas en C:\Program Files\Common Files

[19/11/2008|05:44] C:\Program Files\Common Files\<DIR> Adobe
[28/12/2008|07:55] C:\Program Files\Common Files\<DIR> Apple
[22/07/2008|12:29] C:\Program Files\Common Files\<DIR> BitDefender
[20/12/2007|02:10] C:\Program Files\Common Files\<DIR> DESIGNER
[20/12/2007|02:21] C:\Program Files\Common Files\<DIR> InstallShield
[20/12/2007|02:28] C:\Program Files\Common Files\<DIR> InterVideo
[28/11/2007|05:12] C:\Program Files\Common Files\<DIR> Java
[20/12/2007|02:15] C:\Program Files\Common Files\<DIR> Macrovision Shared
[30/09/2009|06:07] C:\Program Files\Common Files\<DIR> microsoft shared
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> PX Storage Engine
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> Roxio Shared
[02/11/2006|06:18] C:\Program Files\Common Files\<DIR> Services
[22/07/2008|12:28] C:\Program Files\Common Files\<DIR> Softwin
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> Sonic Shared
[20/12/2007|02:21] C:\Program Files\Common Files\<DIR> Sony Shared
[02/11/2006|06:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[14/07/2008|10:48] C:\Program Files\Common Files\<DIR> Symantec Shared
[29/09/2009|01:20] C:\Program Files\Common Files\<DIR> System
[13/02/2009|07:12] C:\Program Files\Common Files\<DIR> Windows Live
[14/07/2008|03:29] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
[22/09/2008|09:52] C:\Program Files\Common Files\<DIR> Wise Installation Wizard
[0|archivos] C:\Program Files\Common Files\bytes
[23|dirs] C:\Program Files\Common Files\bytes libres

--------------------\\ Process

( 20 Processes )

... OK !

--------------------\\ Deteccion con S_Lop

¡ No se encontraron carpetas Lop !

--------------------\\ Deteccion de archivos y carpetas Lop

¡ No se encontraron carpetas Lop !

--------------------\\ Deteccion en el registro de windows

..... OK !

--------------------\\ Analizando el archivo Hosts

Archivo Hosts LIMPIO


--------------------\\ Deteccion de archivos invisibles con Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-16 11:06:40
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 31

--------------------\\ Deteccion de otras infecciones


¡ No se encontraron otras infecciones !

[F:30][D:6]-> C:\Users\Carlos\AppData\Local\Temp
[F:11][D:1]-> C:\Users\Carlos\AppData\Roaming\MICROS~1\Windows\C ookies
[F:22][D:5]-> C:\Users\Carlos\AppData\Local\MICROS~1\Windows\TEM POR~1\content.IE5
[F:7][D:6]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 16/10/2009|11:01 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 16/10/2009|11:05 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 16/10/2009|11:08 - Option : [2]

--------------------\\ Analisis terminado a 11:08:03
[ UAC => 1 ]


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Home Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T2330 @ 1.60GHz )
BIOS : Ver 1.00PARTTBL
USER : Carlos ( Administrator )
BOOT : Fail-safe boot
Antivirus : (Not Activated)
Firewall : Norton 360 2007 (Activated)
C:\ (Local Disk) - NTFS - Total:139 Go (Free:36 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [4] ( 16/10/2009|11:09 )

[ UAC => 1 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script



\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Lista de carpetas en Local

[28/07/2008|11:03] C:\Users\Carlos\AppData\Local\<DIR> ABBYY
[28/05/2009|12:23] C:\Users\Carlos\AppData\Local\<DIR> Adobe
[28/09/2008|01:53] C:\Users\Carlos\AppData\Local\<DIR> Apple
[28/12/2008|08:00] C:\Users\Carlos\AppData\Local\<DIR> Apple Computer
[30/07/2009|02:10] C:\Users\Carlos\AppData\Local\<DIR> Ares
[26/07/2009|01:54] C:\Users\Carlos\AppData\Local\1,356 d3d9caps.dat
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Datos de programa
[12/10/2009|08:10] C:\Users\Carlos\AppData\Local\30,720 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[01/10/2009|11:52] C:\Users\Carlos\AppData\Local\111,304 GDIPFONTCACHEV1.DAT
[19/05/2009|08:53] C:\Users\Carlos\AppData\Local\<DIR> Google
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Historial
[16/10/2009|10:54] C:\Users\Carlos\AppData\Local\1,868,632 IconCache.db
[01/10/2009|03:18] C:\Users\Carlos\AppData\Local\<DIR> Microsoft
[05/11/2008|01:02] C:\Users\Carlos\AppData\Local\<DIR> Microsoft Games
[01/08/2008|02:10] C:\Users\Carlos\AppData\Local\<DIR> Microsoft Help
[14/07/2008|03:13] C:\Users\Carlos\AppData\Local\<DIR> Mozilla
[18/09/2009|01:11] C:\Users\Carlos\AppData\Local\<DIR> PokerStars.NET
[16/10/2009|11:09] C:\Users\Carlos\AppData\Local\<DIR> Temp
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Temporary Internet Files
[02/05/2009|01:54] C:\Users\Carlos\AppData\Local\<DIR> TVU Networks
[14/07/2008|03:32] C:\Users\Carlos\AppData\Local\<DIR> VirtualStore
[30/09/2009|11:57] C:\Users\Carlos\AppData\Local\<DIR> Windows Live Writer
[07/12/2008|03:37] C:\Users\Carlos\AppData\Local\<DIR> Zylom Games
[4|archivos] C:\Users\Carlos\AppData\Local\bytes
[21|dirs] C:\Users\Carlos\AppData\Local\bytes libres

--------------------\\ Tareas programadas en C:\Windows\Tasks

[16/10/2009 10:54 a.m.][--a------] C:\Windows\tasks\Google Software Updater.job
[16/10/2009 10:52 a.m.][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{284E1667-DC20-4344-BC0A-6DBB7CF28DA4}.job
[16/10/2009 10:54 a.m.][--ah-----] C:\Windows\tasks\SA.DAT
[16/10/2009 10:54 a.m.][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Lista de carpetas en C:\ProgramData

[20/12/2007|02:11] C:\ProgramData\<DIR> {174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[19/11/2008|05:44] C:\ProgramData\<DIR> Adobe
[28/09/2008|01:53] C:\ProgramData\<DIR> Apple
[28/12/2008|07:58] C:\ProgramData\<DIR> Apple Computer
[22/07/2008|12:29] C:\ProgramData\<DIR> BitDefender
[23/03/2009|09:34] C:\ProgramData\<DIR> Bluetooth
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Datos de programa
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Documentos
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Escritorio
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Favoritos
[14/07/2008|06:15] C:\ProgramData\<DIR> FLEXnet
[14/07/2008|02:59] C:\ProgramData\<DIR> Google
[15/10/2009|11:56] C:\ProgramData\<DIR> Google Updater
[15/07/2008|02:01] C:\ProgramData\<DIR> Kaspersky Lab Setup Files
[22/07/2008|12:38] C:\ProgramData\<DIR> Lavasoft
[16/07/2008|06:57] C:\ProgramData\<DIR> McAfee.com
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Men£ Inicio
[14/07/2008|05:34] C:\ProgramData\<DIR> Messenger Plus!
[13/02/2009|07:35] C:\ProgramData\<DIR> Microsoft
[30/09/2009|06:14] C:\ProgramData\<DIR> Microsoft Help
[09/03/2009|08:43] C:\ProgramData\<DIR> Office Genuine Advantage
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Plantillas
[14/08/2009|04:22] C:\ProgramData\<DIR> Roxio
[13/07/2008|06:10] C:\ProgramData\<DIR> Sonic
[28/08/2008|11:36] C:\ProgramData\<DIR> Sony Corporation
[14/07/2008|10:54] C:\ProgramData\<DIR> Symantec
[02/05/2009|01:54] C:\ProgramData\<DIR> TVU Networks
[20/12/2007|02:21] C:\ProgramData\<DIR> VAIO Media Platform
[14/07/2008|03:19] C:\ProgramData\<DIR> WLInstaller
[04/08/2009|11:01] C:\ProgramData\<DIR> Yahoo! Companion
[0|archivos] C:\ProgramData\bytes
[32|dirs] C:\ProgramData\bytes libres

--------------------\\ Lista de carpetas en C:\Program Files

[20/12/2007|02:11] C:\Program Files\<DIR> Activation Assistant for the 2007 Microsoft Office suites
[19/11/2008|05:44] C:\Program Files\<DIR> Adobe
[28/11/2007|02:23] C:\Program Files\<DIR> Apoint
[28/09/2008|01:53] C:\Program Files\<DIR> Apple Software Update
[13/07/2008|03:33] C:\Program Files\<JUNCTION> Archivos comunes [C:\Program Files\Common Files]
[24/04/2009|11:20] C:\Program Files\<DIR> Ares
[30/03/2009|06:50] C:\Program Files\<DIR> Ask Search Assistant
[22/07/2008|12:29] C:\Program Files\<DIR> BitDefender
[22/07/2008|11:54] C:\Program Files\<DIR> BitDefender KeyGen + Updates Patch
[28/12/2008|08:14] C:\Program Files\<DIR> BitLord
[28/12/2008|07:57] C:\Program Files\<DIR> Bonjour
[24/03/2009|03:15] C:\Program Files\<DIR> CCleaner
[06/06/2009|05:22] C:\Program Files\<DIR> Common Files
[29/12/2008|04:16] C:\Program Files\<DIR> Conduit
[28/11/2007|02:23] C:\Program Files\<DIR> CONEXANT
[13/09/2008|04:27] C:\Program Files\<DIR> Disk Cleaner
[16/05/2009|07:50] C:\Program Files\<DIR> DivX
[28/07/2009|02:08] C:\Program Files\<DIR> FLV Player
[15/09/2008|04:49] C:\Program Files\<DIR> Google
[26/07/2009|01:34] C:\Program Files\<DIR> Hamachi
[03/07/2009|03:47] C:\Program Files\<DIR> InstallShield Installation Information
[28/11/2007|03:26] C:\Program Files\<DIR> intel
[26/08/2009|12:24] C:\Program Files\<DIR> Internet Explorer
[20/12/2007|02:28] C:\Program Files\<DIR> InterVideo
[23/03/2009|09:31] C:\Program Files\<DIR> IVT Corporation
[20/12/2007|02:19] C:\Program Files\<DIR> J River
[28/08/2009|06:16] C:\Program Files\<DIR> Java
[22/09/2008|09:54] C:\Program Files\<DIR> Lavasoft
[13/07/2009|06:59] C:\Program Files\<DIR> Messenger Plus! Live
[07/12/2008|03:58] C:\Program Files\<DIR> MessengerPlus! 3
[13/02/2009|07:36] C:\Program Files\<DIR> Microsoft
[14/07/2008|04:08] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[26/07/2009|02:13] C:\Program Files\<DIR> Microsoft Games
[13/07/2008|04:06] C:\Program Files\<DIR> Microsoft Office
[29/09/2009|01:20] C:\Program Files\<DIR> Microsoft Office Outlook Connector
[08/09/2009|07:47] C:\Program Files\<DIR> Microsoft Silverlight
[13/02/2009|07:33] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[13/02/2009|07:35] C:\Program Files\<DIR> Microsoft Sync Framework
[13/07/2008|04:07] C:\Program Files\<DIR> Microsoft Visual Studio
[13/07/2008|03:57] C:\Program Files\<DIR> Microsoft Visual Studio 8
[11/06/2009|11:15] C:\Program Files\<DIR> Microsoft Works
[20/12/2007|02:10] C:\Program Files\<DIR> Microsoft.NET
[20/07/2008|05:43] C:\Program Files\<DIR> Mjuice Media Player
[22/07/2008|02:34] C:\Program Files\<DIR> Movie Maker
[12/07/2009|11:25] C:\Program Files\<DIR> Mozilla Firefox
[13/07/2008|04:08] C:\Program Files\<DIR> MSBuild
[28/11/2007|02:59] C:\Program Files\<DIR> MSXML 4.0
[05/09/2009|06:28] C:\Program Files\<DIR> Panda Security
[04/08/2009|12:16] C:\Program Files\<DIR> PokerStars.NET
[28/09/2008|01:55] C:\Program Files\<DIR> QuickTime
[12/09/2008|06:42] C:\Program Files\<DIR> RamBooster 2.0
[18/08/2008|11:41] C:\Program Files\<DIR> Realtek
[02/11/2006|07:37] C:\Program Files\<DIR> Reference Assemblies
[09/06/2009|01:39] C:\Program Files\<DIR> RegCure
[28/11/2007|05:15] C:\Program Files\<DIR> Roxio
[20/12/2007|02:28] C:\Program Files\<DIR> Sony
[28/11/2007|05:19] C:\Program Files\<DIR> Sony Corporation
[06/12/2008|09:33] C:\Program Files\<DIR> SopCast
[28/08/2008|06:04] C:\Program Files\<DIR> Sun
[29/12/2008|04:16] C:\Program Files\<DIR> TorrentMan
[02/11/2006|08:01] C:\Program Files\<DIR> Uninstall Information
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Calendar
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Collaboration
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Defender
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Journal
[29/09/2009|01:20] C:\Program Files\<DIR> Windows Live
[13/02/2009|07:30] C:\Program Files\<DIR> Windows Live SkyDrive
[08/09/2009|07:48] C:\Program Files\<DIR> Windows Mail
[14/08/2009|02:34] C:\Program Files\<DIR> Windows Media Player
[13/07/2008|03:33] C:\Program Files\<DIR> Windows NT
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Photo Gallery
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Sidebar
[09/09/2008|03:27] C:\Program Files\<DIR> WinRAR
[04/08/2009|11:01] C:\Program Files\<DIR> Yahoo!
[0|archivos] C:\Program Files\bytes
[76|dirs] C:\Program Files\bytes libres

--------------------\\ Lista de carpetas en C:\Program Files\Common Files

[19/11/2008|05:44] C:\Program Files\Common Files\<DIR> Adobe
[28/12/2008|07:55] C:\Program Files\Common Files\<DIR> Apple
[22/07/2008|12:29] C:\Program Files\Common Files\<DIR> BitDefender
[20/12/2007|02:10] C:\Program Files\Common Files\<DIR> DESIGNER
[20/12/2007|02:21] C:\Program Files\Common Files\<DIR> InstallShield
[20/12/2007|02:28] C:\Program Files\Common Files\<DIR> InterVideo
[28/11/2007|05:12] C:\Program Files\Common Files\<DIR> Java
[20/12/2007|02:15] C:\Program Files\Common Files\<DIR> Macrovision Shared
[30/09/2009|06:07] C:\Program Files\Common Files\<DIR> microsoft shared
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> PX Storage Engine
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> Roxio Shared
[02/11/2006|06:18] C:\Program Files\Common Files\<DIR> Services
[22/07/2008|12:28] C:\Program Files\Common Files\<DIR> Softwin
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> Sonic Shared
[20/12/2007|02:21] C:\Program Files\Common Files\<DIR> Sony Shared
[02/11/2006|06:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[14/07/2008|10:48] C:\Program Files\Common Files\<DIR> Symantec Shared
[29/09/2009|01:20] C:\Program Files\Common Files\<DIR> System
[13/02/2009|07:12] C:\Program Files\Common Files\<DIR> Windows Live
[14/07/2008|03:29] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
[22/09/2008|09:52] C:\Program Files\Common Files\<DIR> Wise Installation Wizard
[0|archivos] C:\Program Files\Common Files\bytes
[23|dirs] C:\Program Files\Common Files\bytes libres

--------------------\\ Process

( 20 Processes )

... OK !

--------------------\\ Deteccion con S_Lop

¡ No se encontraron carpetas Lop !

--------------------\\ Deteccion de archivos y carpetas Lop

¡ No se encontraron carpetas Lop !

--------------------\\ Deteccion en el registro de windows

..... OK !

--------------------\\ Analizando el archivo Hosts

Archivo Hosts LIMPIO


--------------------\\ Deteccion de archivos invisibles con Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-16 11:09:37
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 31

--------------------\\ Deteccion de otras infecciones


¡ No se encontraron otras infecciones !

[F:30][D:6]-> C:\Users\Carlos\AppData\Local\Temp
[F:11][D:1]-> C:\Users\Carlos\AppData\Roaming\MICROS~1\Windows\C ookies
[F:22][D:5]-> C:\Users\Carlos\AppData\Local\MICROS~1\Windows\TEM POR~1\content.IE5
[F:7][D:6]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 16/10/2009|11:01 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 16/10/2009|11:05 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 16/10/2009|11:08 - Option : [2]
4 - "C:\Lop SD\LopR_4.txt" - 16/10/2009|11:11 - Option : [4]

--------------------\\ Analisis terminado a 11:11:00
[ UAC => 1 ]


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Home Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T2330 @ 1.60GHz )
BIOS : Ver 1.00PARTTBL
USER : Carlos ( Administrator )
BOOT : Fail-safe boot
Antivirus : (Not Activated)
Firewall : Norton 360 2007 (Activated)
C:\ (Local Disk) - NTFS - Total:139 Go (Free:36 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [4] ( 16/10/2009|11:12 )

[ UAC => 1 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script



\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Lista de carpetas en Local

[28/07/2008|11:03] C:\Users\Carlos\AppData\Local\<DIR> ABBYY
[28/05/2009|12:23] C:\Users\Carlos\AppData\Local\<DIR> Adobe
[28/09/2008|01:53] C:\Users\Carlos\AppData\Local\<DIR> Apple
[28/12/2008|08:00] C:\Users\Carlos\AppData\Local\<DIR> Apple Computer
[30/07/2009|02:10] C:\Users\Carlos\AppData\Local\<DIR> Ares
[26/07/2009|01:54] C:\Users\Carlos\AppData\Local\1,356 d3d9caps.dat
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Datos de programa
[12/10/2009|08:10] C:\Users\Carlos\AppData\Local\30,720 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[01/10/2009|11:52] C:\Users\Carlos\AppData\Local\111,304 GDIPFONTCACHEV1.DAT
[19/05/2009|08:53] C:\Users\Carlos\AppData\Local\<DIR> Google
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Historial
[16/10/2009|10:54] C:\Users\Carlos\AppData\Local\1,868,632 IconCache.db
[01/10/2009|03:18] C:\Users\Carlos\AppData\Local\<DIR> Microsoft
[05/11/2008|01:02] C:\Users\Carlos\AppData\Local\<DIR> Microsoft Games
[01/08/2008|02:10] C:\Users\Carlos\AppData\Local\<DIR> Microsoft Help
[14/07/2008|03:13] C:\Users\Carlos\AppData\Local\<DIR> Mozilla
[18/09/2009|01:11] C:\Users\Carlos\AppData\Local\<DIR> PokerStars.NET
[16/10/2009|11:12] C:\Users\Carlos\AppData\Local\<DIR> Temp
[13/07/2008|03:34] C:\Users\Carlos\AppData\Local\<JUNCTION> Temporary Internet Files
[02/05/2009|01:54] C:\Users\Carlos\AppData\Local\<DIR> TVU Networks
[14/07/2008|03:32] C:\Users\Carlos\AppData\Local\<DIR> VirtualStore
[30/09/2009|11:57] C:\Users\Carlos\AppData\Local\<DIR> Windows Live Writer
[07/12/2008|03:37] C:\Users\Carlos\AppData\Local\<DIR> Zylom Games
[4|archivos] C:\Users\Carlos\AppData\Local\bytes
[21|dirs] C:\Users\Carlos\AppData\Local\bytes libres

--------------------\\ Tareas programadas en C:\Windows\Tasks

[16/10/2009 10:54 a.m.][--a------] C:\Windows\tasks\Google Software Updater.job
[16/10/2009 10:52 a.m.][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{284E1667-DC20-4344-BC0A-6DBB7CF28DA4}.job
[16/10/2009 10:54 a.m.][--ah-----] C:\Windows\tasks\SA.DAT
[16/10/2009 10:54 a.m.][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Lista de carpetas en C:\ProgramData

[20/12/2007|02:11] C:\ProgramData\<DIR> {174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[19/11/2008|05:44] C:\ProgramData\<DIR> Adobe
[28/09/2008|01:53] C:\ProgramData\<DIR> Apple
[28/12/2008|07:58] C:\ProgramData\<DIR> Apple Computer
[22/07/2008|12:29] C:\ProgramData\<DIR> BitDefender
[23/03/2009|09:34] C:\ProgramData\<DIR> Bluetooth
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Datos de programa
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Documentos
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Escritorio
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Favoritos
[14/07/2008|06:15] C:\ProgramData\<DIR> FLEXnet
[14/07/2008|02:59] C:\ProgramData\<DIR> Google
[15/10/2009|11:56] C:\ProgramData\<DIR> Google Updater
[15/07/2008|02:01] C:\ProgramData\<DIR> Kaspersky Lab Setup Files
[22/07/2008|12:38] C:\ProgramData\<DIR> Lavasoft
[16/07/2008|06:57] C:\ProgramData\<DIR> McAfee.com
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Men£ Inicio
[14/07/2008|05:34] C:\ProgramData\<DIR> Messenger Plus!
[13/02/2009|07:35] C:\ProgramData\<DIR> Microsoft
[30/09/2009|06:14] C:\ProgramData\<DIR> Microsoft Help
[09/03/2009|08:43] C:\ProgramData\<DIR> Office Genuine Advantage
[13/07/2008|03:33] C:\ProgramData\<JUNCTION> Plantillas
[14/08/2009|04:22] C:\ProgramData\<DIR> Roxio
[13/07/2008|06:10] C:\ProgramData\<DIR> Sonic
[28/08/2008|11:36] C:\ProgramData\<DIR> Sony Corporation
[14/07/2008|10:54] C:\ProgramData\<DIR> Symantec
[02/05/2009|01:54] C:\ProgramData\<DIR> TVU Networks
[20/12/2007|02:21] C:\ProgramData\<DIR> VAIO Media Platform
[14/07/2008|03:19] C:\ProgramData\<DIR> WLInstaller
[04/08/2009|11:01] C:\ProgramData\<DIR> Yahoo! Companion
[0|archivos] C:\ProgramData\bytes
[32|dirs] C:\ProgramData\bytes libres

--------------------\\ Lista de carpetas en C:\Program Files

[20/12/2007|02:11] C:\Program Files\<DIR> Activation Assistant for the 2007 Microsoft Office suites
[19/11/2008|05:44] C:\Program Files\<DIR> Adobe
[28/11/2007|02:23] C:\Program Files\<DIR> Apoint
[28/09/2008|01:53] C:\Program Files\<DIR> Apple Software Update
[13/07/2008|03:33] C:\Program Files\<JUNCTION> Archivos comunes [C:\Program Files\Common Files]
[24/04/2009|11:20] C:\Program Files\<DIR> Ares
[30/03/2009|06:50] C:\Program Files\<DIR> Ask Search Assistant
[22/07/2008|12:29] C:\Program Files\<DIR> BitDefender
[22/07/2008|11:54] C:\Program Files\<DIR> BitDefender KeyGen + Updates Patch
[28/12/2008|08:14] C:\Program Files\<DIR> BitLord
[28/12/2008|07:57] C:\Program Files\<DIR> Bonjour
[24/03/2009|03:15] C:\Program Files\<DIR> CCleaner
[06/06/2009|05:22] C:\Program Files\<DIR> Common Files
[29/12/2008|04:16] C:\Program Files\<DIR> Conduit
[28/11/2007|02:23] C:\Program Files\<DIR> CONEXANT
[13/09/2008|04:27] C:\Program Files\<DIR> Disk Cleaner
[16/05/2009|07:50] C:\Program Files\<DIR> DivX
[28/07/2009|02:08] C:\Program Files\<DIR> FLV Player
[15/09/2008|04:49] C:\Program Files\<DIR> Google
[26/07/2009|01:34] C:\Program Files\<DIR> Hamachi
[03/07/2009|03:47] C:\Program Files\<DIR> InstallShield Installation Information
[28/11/2007|03:26] C:\Program Files\<DIR> intel
[26/08/2009|12:24] C:\Program Files\<DIR> Internet Explorer
[20/12/2007|02:28] C:\Program Files\<DIR> InterVideo
[23/03/2009|09:31] C:\Program Files\<DIR> IVT Corporation
[20/12/2007|02:19] C:\Program Files\<DIR> J River
[28/08/2009|06:16] C:\Program Files\<DIR> Java
[22/09/2008|09:54] C:\Program Files\<DIR> Lavasoft
[13/07/2009|06:59] C:\Program Files\<DIR> Messenger Plus! Live
[07/12/2008|03:58] C:\Program Files\<DIR> MessengerPlus! 3
[13/02/2009|07:36] C:\Program Files\<DIR> Microsoft
[14/07/2008|04:08] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[26/07/2009|02:13] C:\Program Files\<DIR> Microsoft Games
[13/07/2008|04:06] C:\Program Files\<DIR> Microsoft Office
[29/09/2009|01:20] C:\Program Files\<DIR> Microsoft Office Outlook Connector
[08/09/2009|07:47] C:\Program Files\<DIR> Microsoft Silverlight
[13/02/2009|07:33] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[13/02/2009|07:35] C:\Program Files\<DIR> Microsoft Sync Framework
[13/07/2008|04:07] C:\Program Files\<DIR> Microsoft Visual Studio
[13/07/2008|03:57] C:\Program Files\<DIR> Microsoft Visual Studio 8
[11/06/2009|11:15] C:\Program Files\<DIR> Microsoft Works
[20/12/2007|02:10] C:\Program Files\<DIR> Microsoft.NET
[20/07/2008|05:43] C:\Program Files\<DIR> Mjuice Media Player
[22/07/2008|02:34] C:\Program Files\<DIR> Movie Maker
[12/07/2009|11:25] C:\Program Files\<DIR> Mozilla Firefox
[13/07/2008|04:08] C:\Program Files\<DIR> MSBuild
[28/11/2007|02:59] C:\Program Files\<DIR> MSXML 4.0
[05/09/2009|06:28] C:\Program Files\<DIR> Panda Security
[04/08/2009|12:16] C:\Program Files\<DIR> PokerStars.NET
[28/09/2008|01:55] C:\Program Files\<DIR> QuickTime
[12/09/2008|06:42] C:\Program Files\<DIR> RamBooster 2.0
[18/08/2008|11:41] C:\Program Files\<DIR> Realtek
[02/11/2006|07:37] C:\Program Files\<DIR> Reference Assemblies
[09/06/2009|01:39] C:\Program Files\<DIR> RegCure
[28/11/2007|05:15] C:\Program Files\<DIR> Roxio
[20/12/2007|02:28] C:\Program Files\<DIR> Sony
[28/11/2007|05:19] C:\Program Files\<DIR> Sony Corporation
[06/12/2008|09:33] C:\Program Files\<DIR> SopCast
[28/08/2008|06:04] C:\Program Files\<DIR> Sun
[29/12/2008|04:16] C:\Program Files\<DIR> TorrentMan
[02/11/2006|08:01] C:\Program Files\<DIR> Uninstall Information
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Calendar
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Collaboration
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Defender
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Journal
[29/09/2009|01:20] C:\Program Files\<DIR> Windows Live
[13/02/2009|07:30] C:\Program Files\<DIR> Windows Live SkyDrive
[08/09/2009|07:48] C:\Program Files\<DIR> Windows Mail
[14/08/2009|02:34] C:\Program Files\<DIR> Windows Media Player
[13/07/2008|03:33] C:\Program Files\<DIR> Windows NT
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Photo Gallery
[22/07/2008|02:34] C:\Program Files\<DIR> Windows Sidebar
[09/09/2008|03:27] C:\Program Files\<DIR> WinRAR
[04/08/2009|11:01] C:\Program Files\<DIR> Yahoo!
[0|archivos] C:\Program Files\bytes
[76|dirs] C:\Program Files\bytes libres

--------------------\\ Lista de carpetas en C:\Program Files\Common Files

[19/11/2008|05:44] C:\Program Files\Common Files\<DIR> Adobe
[28/12/2008|07:55] C:\Program Files\Common Files\<DIR> Apple
[22/07/2008|12:29] C:\Program Files\Common Files\<DIR> BitDefender
[20/12/2007|02:10] C:\Program Files\Common Files\<DIR> DESIGNER
[20/12/2007|02:21] C:\Program Files\Common Files\<DIR> InstallShield
[20/12/2007|02:28] C:\Program Files\Common Files\<DIR> InterVideo
[28/11/2007|05:12] C:\Program Files\Common Files\<DIR> Java
[20/12/2007|02:15] C:\Program Files\Common Files\<DIR> Macrovision Shared
[30/09/2009|06:07] C:\Program Files\Common Files\<DIR> microsoft shared
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> PX Storage Engine
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> Roxio Shared
[02/11/2006|06:18] C:\Program Files\Common Files\<DIR> Services
[22/07/2008|12:28] C:\Program Files\Common Files\<DIR> Softwin
[28/11/2007|05:15] C:\Program Files\Common Files\<DIR> Sonic Shared
[20/12/2007|02:21] C:\Program Files\Common Files\<DIR> Sony Shared
[02/11/2006|06:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[14/07/2008|10:48] C:\Program Files\Common Files\<DIR> Symantec Shared
[29/09/2009|01:20] C:\Program Files\Common Files\<DIR> System
[13/02/2009|07:12] C:\Program Files\Common Files\<DIR> Windows Live
[14/07/2008|03:29] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
[22/09/2008|09:52] C:\Program Files\Common Files\<DIR> Wise Installation Wizard
[0|archivos] C:\Program Files\Common Files\bytes
[23|dirs] C:\Program Files\Common Files\bytes libres

--------------------\\ Process

( 20 Processes )

... OK !

--------------------\\ Deteccion con S_Lop

¡ No se encontraron carpetas Lop !

--------------------\\ Deteccion de archivos y carpetas Lop

¡ No se encontraron carpetas Lop !

--------------------\\ Deteccion en el registro de windows

..... OK !

--------------------\\ Analizando el archivo Hosts

Archivo Hosts LIMPIO


--------------------\\ Deteccion de archivos invisibles con Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-16 11:12:17
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 31

--------------------\\ Deteccion de otras infecciones


¡ No se encontraron otras infecciones !

[F:30][D:6]-> C:\Users\Carlos\AppData\Local\Temp
[F:11][D:1]-> C:\Users\Carlos\AppData\Roaming\MICROS~1\Windows\C ookies
[F:22][D:5]-> C:\Users\Carlos\AppData\Local\MICROS~1\Windows\TEM POR~1\content.IE5
[F:7][D:6]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 16/10/2009|11:01 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 16/10/2009|11:05 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 16/10/2009|11:08 - Option : [2]
4 - "C:\Lop SD\LopR_4.txt" - 16/10/2009|11:11 - Option : [4]
5 - "C:\Lop SD\LopR_5.txt" - 16/10/2009|11:13 - Option : [4]

--------------------\\ Analisis terminado a 11:13:43
[ UAC => 1 ]

Malwarebytes' Anti-Malware 1.41
Versión de la Base de Datos: 2775
Windows 6.0.6001 Service Pack 1 (Safe Mode)

16/10/2009 03:32:28 p.m.
mbam-log-2009-10-16 (15-32-23).txt

Tipo de examen : Examen Completo (C:\|F:\|)
Objetos examinados: 265425
Tiempo transcurrido: 1 hour(s), 0 minute(s), 35 second(s)

Procesos en Memoria Infectados: 0
Módulos en Memoria Infectados: 0
Claves del Registro Infectadas: 0
Valores del Registro Infectados: 1
Elementos de Datos del Registro Infectados: 0
Carpetas Infectadas: 0
Ficheros Infectados: 0

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Claves del Registro Infectadas:
(No se han detectado elementos maliciosos)

Valores del Registro Infectados:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\taskman (Trojan.Agent) -> No action taken.

Elementos de Datos del Registro Infectados:
(No se han detectado elementos maliciosos)

Carpetas Infectadas:
(No se han detectado elementos maliciosos)

Ficheros Infectados:
(No se han detectado elementos maliciosos)
Malwarebytes' Anti-Malware 1.41
Versión de la Base de Datos: 2775
Windows 6.0.6001 Service Pack 1 (Safe Mode)

16/10/2009 03:32:35 p.m.
mbam-log-2009-10-16 (15-32-35).txt

Tipo de examen : Examen Completo (C:\|F:\|)
Objetos examinados: 265425
Tiempo transcurrido: 1 hour(s), 0 minute(s), 35 second(s)

Procesos en Memoria Infectados: 0
Módulos en Memoria Infectados: 0
Claves del Registro Infectadas: 0
Valores del Registro Infectados: 1
Elementos de Datos del Registro Infectados: 0
Carpetas Infectadas: 0
Ficheros Infectados: 0

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Claves del Registro Infectadas:
(No se han detectado elementos maliciosos)

Valores del Registro Infectados:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\taskman (Trojan.Agent) -> Quarantined and deleted successfully.

Elementos de Datos del Registro Infectados:
(No se han detectado elementos maliciosos)

Carpetas Infectadas:
(No se han detectado elementos maliciosos)

Ficheros Infectados:
(No se han detectado elementos maliciosos)
--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7.0: scan report
Friday, October 16, 2009
Operating system: Microsoft Windows Vista Home Premium Edition, 32-bit Service Pack 1 (build 6001)
Kaspersky Online Scanner version: 7.0.26.13
Last database update: Saturday, October 17, 2009 00:20:34
Records in database: 3011544
--------------------------------------------------------------------------------

Scan settings:
scan using the following database: extended
Scan archives: yes
Scan e-mail databases: yes

Scan area - My Computer:
C:\
D:\
E:\
F:\

Scan statistics:
Objects scanned: 172671
Threats found: 1
Infected objects found: 1
Suspicious objects found: 0
Scan duration: 02:24:15


File name / Threat / Threats count
C:\RECYCLER\S-1-5-21-2512995355-3356791827-712795984-7182\windll.exe Infected: Packed.Win32.Krap.af 1

Selected area has been scanned.

Saludos!!!

Hola,

Paso 1 :

»»
Si, tienes esta toolbar en la Pc, desintala. (desde agregar o quitar programas).


Busca y elimina la carpeta ASK TBAR con su contenido.


C:\Archivos de programa\AskTBar\



Paso 2:

Realize lo siguiente:

• Descarga OTM en el escritorio.
• Haz doble clic sobre el icono OTM.exe para ejecutarlo
• Asegúrate que esté marcada la casilla "Unregister Dll´s and Ocx´s".
• Pega el siguiente script, que se encuentra dentro del recuadro de abajo, en el area "Paste Instructions for items to be Moved"

• dar clic sobre el boton MoveIt!
• Espere hasta cuando el resultado aparezca en el marco Results.
• Simultáneamente se abrirá un aviso preguntando si deseamos reiniciar el PC, pulse sobre Yes para reiniciar.si no sale ese aviso lo reinicias manualmente,>>> Este reinicio es importante
• En su proximo mensaje envie reporte de OTM situado sobre C: \ _ OTM\MovedFiles\***_***.log

regresas con el reporte de OTM



Paso 3:

Malwarebytes, lo pasastes sin actualizar.

Pasalo de nuevo, actualizado.




Espero los reportes de otm y malwarebytes.


Nos comentas como esta funcionando la PC.




Saludos.

listo,.. estos son mis reportes!!!

Malwarebytes' Anti-Malware 1.41
Versión de la Base de Datos: 2976
Windows 6.0.6001 Service Pack 1 (Safe Mode)

17/10/2009 03:56:06 p.m.
mbam-log-2009-10-17 (15-55-55).txt

Tipo de examen : Examen Completo (C:\|F:\|)
Objetos examinados: 271536
Tiempo transcurrido: 54 minute(s), 30 second(s)

Procesos en Memoria Infectados: 0
Módulos en Memoria Infectados: 0
Claves del Registro Infectadas: 0
Valores del Registro Infectados: 1
Elementos de Datos del Registro Infectados: 0
Carpetas Infectadas: 0
Ficheros Infectados: 0

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Claves del Registro Infectadas:
(No se han detectado elementos maliciosos)

Valores del Registro Infectados:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\taskman (Trojan.Agent) -> No action taken.

Elementos de Datos del Registro Infectados:
(No se han detectado elementos maliciosos)

Carpetas Infectadas:
(No se han detectado elementos maliciosos)

Ficheros Infectados:
(No se han detectado elementos maliciosos)
__________________________________________________ ____
Malwarebytes' Anti-Malware 1.41
Versión de la Base de Datos: 2976
Windows 6.0.6001 Service Pack 1 (Safe Mode)

17/10/2009 03:56:10 p.m.
mbam-log-2009-10-17 (15-56-10).txt

Tipo de examen : Examen Completo (C:\|F:\|)
Objetos examinados: 271536
Tiempo transcurrido: 54 minute(s), 30 second(s)

Procesos en Memoria Infectados: 0
Módulos en Memoria Infectados: 0
Claves del Registro Infectadas: 0
Valores del Registro Infectados: 1
Elementos de Datos del Registro Infectados: 0
Carpetas Infectadas: 0
Ficheros Infectados: 0

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Claves del Registro Infectadas:
(No se han detectado elementos maliciosos)

Valores del Registro Infectados:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\taskman (Trojan.Agent) -> Quarantined and deleted successfully.

Elementos de Datos del Registro Infectados:
(No se han detectado elementos maliciosos)

Carpetas Infectadas:
(No se han detectado elementos maliciosos)

Ficheros Infectados:
(No se han detectado elementos maliciosos)
______________________________________________

esta mejor la compu,.. ya esta más rápida!!!

Que sigue???

Hola,

Tu pc, parece estar limpia, por las dudas te dejo unos pasitos extras.

»
Has encontrado el programa que te dije que elimines ¿?.


Paso 1:


»
Por favor, sigue estos pasos, lee bien todas las indicaciones :

Si no puedes hacer algún paso, saltéalo y continuas con los demás.


1 »»
Descarga lo siguiente: LOS INSTALAS Y ACTUALIZAS SEGUN SU MANUAL »»»» PERO NO LOS EJECUTES AUN.


» » CCLEANER. Lo instalas según Su Manual

» »
DR WEB CURE-IT y su Manual


2 »»
Inicia EN MODO A PRUEBA DE ERRORES MIRA AQUI


3 »»
Ejecuta las herramientas de una en una y en este orden:


» »
Ejecuta DR WEB, haciendo 1ero un chequeo express y luego un EXAMEN COMPLETO, eliminando todo lo que encuentre.

» »
CCLEANER. usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y archivos obsoletos, y luego usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).


4 »»
Inicia en modo normal,


5 »»
Realiza un scan online con : Panda ActiveScan+Manual.

En tu próxima respuesta, debes pegar el reporte de Dr. Web y el de Panda online .


Paso 2:

Si tienes algun programa que aparecen en esta lista eliminalo.

Lista 1

Lista 2



Espero esos reporte, tomate tu tiempo.


Saludos y Suerte.

pues no me salio nada!!! aunque por bitdefender salio lo siguiente!!!

BitDefender - Archivo Log

Producto : BitDefender Free Edition 2009
Versión : BitDefender UIScanner v.12
Tarea de análisis : Análisis en Profundidad
Fecha del log : 25/10/2009 04:23:53 p.m.
Ruta del log : C:\ProgramData\Bitdefender\Desktop\Profiles\Logs\d eep_scan\1256509433_1_02.xml

Rutas de Análisis:Ruta 0000: C:\

Opciones de Análisis:Analizar en busca de virus : Sí
Analizar en busca de adware : Sí
Analizar en busca de spyware : Sí
Analizar en busca de aplicaciones : Sí
Analizar en busca de dialers : Sí
Analizar en busca de rootkits : Sí

Opciones de Selección del Objetivo:Analizar claves del registro : Sí
Analizar cookies : Sí
Analizar sectores de arranque : Sí
Analizar procesos en memoria : Sí
Analizar archivos comprimidos : Sí
Analizar runtime packers : Sí
Analizar emails : No
Analizar todos los archivos : Sí
Análisis Heurístico : Sí
Extensiones analizadas :
Extensiones excluidas :

Tratamiento del Objetivo:Acción predeterminada para objetos infectados : Desinfectar
Acción predeterminada para objetos sospechosos : Ninguno
Acción predeterminada para objetos ocultos : Ninguno
Acción predeterminada para objetos infectados cifrados : Ninguno
Acción predeterminada para objetos sospechosos cifrados : Ninguno
Acción predeterminada para objetos protegidos por contraseña : Registrar como no analizado

Resumen de los motores de análisisNúmero de firmas de virus : 4457539
Plugins de archivos comprimidos : 44
Plugins de correo : 6
Plugins del análisis : 13
Plugins del sistema : 5
Plugins de desempaquetado : 8

Resumen global del análisisElementos analizados : 285753
Elementos infectados : 1
Elementos sospechosos : 0
Elementos resueltos : 0
Elementos no resueltos : 4
Elementos protegidos por contraseña : 3
Elementos sobrecomprimidos : 0
Virus individuales encontrados : 1
Carpetas analizadas : 27292
Sectores de arranque analizados : 3
Archivos comprimidos analizados : 3193
Errores de entrada y salida : 56
Tiempo de análisis : 02:13:50
Archivos por segundo : 35

Resumen de los procesos analizadosAnalizados : 58
Infectados : 0

Resumen de claves del registro analizadasAnalizados : 1425
Infectados : 0

Resumen de cookies analizadasAnalizados : 9
Infectados : 0

Incidencias restantes:Nombre del Objeto Nombre de la amenaza Estado Final
C:\RECYCLER\S-1-5-21-9675437451-0527129374-685522582-4286\sysdate.exe Trojan.Packed.Palevo.Gen.1 Ninguna acción posible
______________
y este de activescan!!

;************************************************* ************************************************** ************************************************** ******************************
ANALYSIS: 2009-10-20 1755
PROTECTIONS: 1
MALWARE: 1
SUSPECTS: 0
;************************************************* ************************************************** ************************************************** ******************************
PROTECTIONS
Description Version Active Updated
;================================================= ================================================== ================================================== ==============================
No No
;================================================= ================================================== ================================================== ==============================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;================================================= ================================================== ================================================== ==============================
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Users\Carlos\AppData\Roaming\Microsoft\Windows\ Cookies\carlos@atdmt[2].txt
;================================================= ================================================== ================================================== ==============================
SUSPECTS
Sent Location
;================================================= ================================================== ================================================== ==============================
;================================================= ================================================== ================================================== ==============================
VULNERABILITIES
Id Severity Description
;================================================= ================================================== ================================================== ==============================
;================================================= ================================================== ================================================== ==============================
___________

a ver que pasa,. aunque ya funciona bien!!!

Hola, ya casi esta. te dejo dos pasitos.

Paso 1:


Realize lo siguiente:

• Descarga OTM en el escritorio.
• Haz doble clic sobre el icono OTM.exe para ejecutarlo
• Asegúrate que esté marcada la casilla "Unregister Dll´s and Ocx´s".
• Pega el siguiente script, que se encuentra dentro del recuadro de abajo, en el area "Paste Instructions for items to be Moved"

• dar clic sobre el boton MoveIt!
• Espere hasta cuando el resultado aparezca en el marco Results.
• Simultáneamente se abrirá un aviso preguntando si deseamos reiniciar el PC, pulse sobre Yes para reiniciar.si no sale ese aviso lo reinicias manualmente,>>> Este reinicio es importante
• En su proximo mensaje envie reporte de OTM situado sobre C: \ _ OTM\MovedFiles\***_***.log

regresas con el reporte de OTM


Paso 2 :

»
Descarga:
Flash_Disinfector [está al final de la pagina]

Ejecyta:[LIST=1][*]Flash_Disinfector;

• Con los dispositivos USB desconectados ejecuta Flash_Disinfector.
• Conecta tu dispositivo USB (Pen Drive, Móvil, MP3/4), y ejecuta Fash_Disinfector nuevamente.

Saludos, trae el reporte de OTM.

Listo!!! Este es mi nuevo reportes,.. quedo a las órdenes!!!

All processes killed
========== FILES ==========
File/Folder C:\RECYCLER\S-1-5-21-9675437451-0527129374-685522582-4286\sysdate.exe not found.
File/Folder C:\RECYCLER\S-1-5-21-2512995355-3356791827-712795984-7182\windll.exe not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Carlos
->Temp folder emptied: 60695177 bytes
File delete failed. C:\Users\Carlos\AppData\Local\Microsoft\Windows\Te mporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 57972035 bytes
->Java cache emptied: 25493450 bytes
->FireFox cache emptied: 39174258 bytes
->Google Chrome cache emptied: 0 bytes

User: Default
->Temp folder emptied: 0 bytes
File delete failed. C:\Users\Default\AppData\Local\Microsoft\Windows\T emporary Internet Files\Content.IE5\WNR0GZ0F\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default\AppData\Local\Microsoft\Windows\T emporary Internet Files\Content.IE5\DR40EN4D\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default\AppData\Local\Microsoft\Windows\T emporary Internet Files\Content.IE5\74723765\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default\AppData\Local\Microsoft\Windows\T emporary Internet Files\Content.IE5\4ZI5TEEE\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default\AppData\Local\Microsoft\Windows\T emporary Internet Files\Content.IE5\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default\AppData\Local\Microsoft\Windows\T emporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Users\Default\AppData\Local\Microsoft\Windows\T emporary Internet Files\desktop.ini scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
File delete failed. C:\Users\Default User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WNR0GZ0F\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DR40EN4D\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\74723765\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4ZI5TEEE\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini scheduled to be deleted on reboot.
File delete failed. C:\Users\Default User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Users\Default User\AppData\Local\Microsoft\Windows\Temporary Internet Files\desktop.ini scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 33170 bytes

User: Public

File delete failed. C:\WIMA0EF.tmp scheduled to be deleted on reboot.
%systemdrive% .tmp files removed: 9067520 bytes
Folder delete failed. C:\Windows\msdownld.tmp scheduled to be deleted on reboot.
%systemroot% .tmp files removed: 24 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
File delete failed. C:\Windows\temp\fwtsqmfile00.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile01.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile02.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile03.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile04.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile05.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile06.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile07.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile08.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile09.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile10.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile11.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile12.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile13.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile14.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile15.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile16.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile17.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile18.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile19.sqm scheduled to be deleted on reboot.
Windows Temp folder emptied: 216062548 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 389.61 mb


OTM by OldTimer - Version 3.0.0.6 log created on 10282009_104806