• Registrarse
  • Iniciar sesión


  • Página 3 de 3 PrimeroPrimero 123
    Resultados 21 al 28 de 28

    Problema con TR/ATRAPS.gen2

    Sisi sólo me apareció eso, lo hago otra vez?¿...

    1. #21
      Usuario Avatar de FraLavorano
      Registrado
      ene 2013
      Ubicación
      Argentina
      Mensajes
      20

      Re: Problema con TR/ATRAPS.gen2

      Sisi sólo me apareció eso, lo hago otra vez?¿

    2. #22
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Problema con TR/ATRAPS.gen2

      Hola,

      No, no lo hagas de nuevo...

      Descarga Gmer ARK (AntiRootKit) desde InfoSpyware.
      1. Descomprímelo en una carpeta especial o en tu Escritorio.
      2. Desconéctate de Internet y cierra todos los programas.
      3. Ahora, haz doble clic en Gmer.exe (o clic derecho y selecciona "Ejecutar como administrador").
        *NOTA* Si te da una advertencia sobre la parecencia de un rootkit y te pregunta si deseas ejecutar una exploración completa, hace clic en el botón de NO.
      4. Ahora vamos a desmarcar en el panel derecho, las opciones que no nos interesa que este escanee, las cuales son:
        • IAT/EAT
        • Drives/Partition - Marcar solo la unidad donde esta Windows (ej: C:\)
        • Show All
      5. Hacerle clic en el botón de 'Scan' y esperar que este termine.
      6. Cuando termine, darle clic en el botón [Save..], y guarda el archivo como "gmer.txt" en el escritorio.
      7. Para terminar, responde a este mismo tema dejándonos el contenido del reporte que guardaste en gmer.txt y déjanos analizarlo para continuar con el procedimiento.
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #23
      Usuario Avatar de FraLavorano
      Registrado
      ene 2013
      Ubicación
      Argentina
      Mensajes
      20

      Re: Problema con TR/ATRAPS.gen2

      GMER 1.0.15.15641 - GMER - Rootkit Detector and Remover
      Rootkit scan 2013-01-05 17:29:14
      Windows 6.1.7601 Service Pack 1
      Running: Gmer.exe


      ---- Registry - GMER 1.0.15 ----

      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\[email protected] 771343423
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\[email protected] 285507792
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\[email protected] 1
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\[email protected] 0x00 0x00 0x00 0x00 ...
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\[email protected] 0
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\[email protected] 0x4A 0xD8 0x45 0xF1 ...
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[email protected] 0x16 0xB5 0xA5 0x0B ...
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\[email protected] 0x35 0x33 0xBC 0x49 ...
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
      Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\[email protected] C:\Program Files (x86)\DAEMON Tools Lite\
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\[email protected] 0x00 0x00 0x00 0x00 ...
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\[email protected] 0
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\[email protected] 0x4A 0xD8 0x45 0xF1 ...
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[email protected] 0x16 0xB5 0xA5 0x0B ...
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\[email protected] 0x35 0x33 0xBC 0x49 ...
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
      Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\[email protected] C:\Program Files (x86)\DAEMON Tools Lite\
      Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\[email protected]:\Program Files (x86)\Electronic Arts\Harry Potter y el Misterio del Príncipe\x2122\Support\Harry Potter and the Half-Blood Prince_uninst.exe 1
      Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\[email protected]:\Program Files (x86)\Electronic Arts\Harry Potter y el Misterio del Príncipe\x2122\Support\Harry Potter and the Half-Blood Prince_code.exe 1

      ---- EOF - GMER 1.0.15 ----

    4. #24
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Problema con TR/ATRAPS.gen2

      Hola,

      En el reporte de Gmer no se ve nada anormal

      Puedes pegarme el informe de Avira donde muestra las detenciones por favor?
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #25
      Usuario Avatar de FraLavorano
      Registrado
      ene 2013
      Ubicación
      Argentina
      Mensajes
      20

      Re: Problema con TR/ATRAPS.gen2

      Avira Free Antivirus
      Report file date: sábado, 05 de enero de 2013 13:36

      Scanning for 4602774 virus strains and unwanted programs.

      The program is running as an unrestricted full version.
      Online services are available.

      Licensee : Avira Free Antivirus
      Serial number : 0000149996-ADJIE-0000001
      Platform : Windows 7 Professional
      Windows version : (Service Pack 1) [6.1.7601]
      Boot mode : Normally booted
      Username : SYSTEM
      Computer name : FRANCO-PC

      Version information:
      BUILD.DAT : 12.1.9.1236 40872 Bytes 11/10/2012 15:58:00
      AVSCAN.EXE : 12.3.0.48 468256 Bytes 15/11/2012 02:00:36
      AVSCAN.DLL : 12.3.0.15 54736 Bytes 02/05/2012 18:31:39
      LUKE.DLL : 12.3.0.15 68304 Bytes 02/05/2012 04:31:47
      AVSCPLR.DLL : 12.3.0.14 97032 Bytes 02/05/2012 03:13:36
      AVREG.DLL : 12.3.0.17 232200 Bytes 09/07/2012 13:15:04
      VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 23:18:34
      VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 04:23:21
      VBASE002.VDF : 7.11.19.170 14374912 Bytes 20/12/2011 04:32:24
      VBASE003.VDF : 7.11.21.238 4472832 Bytes 01/02/2012 14:58:50
      VBASE004.VDF : 7.11.26.44 4329472 Bytes 28/03/2012 15:43:53
      VBASE005.VDF : 7.11.34.116 4034048 Bytes 29/06/2012 13:13:56
      VBASE006.VDF : 7.11.41.250 4902400 Bytes 06/09/2012 16:34:06
      VBASE007.VDF : 7.11.50.230 3904512 Bytes 22/11/2012 13:12:49
      VBASE008.VDF : 7.11.55.142 2214912 Bytes 03/01/2013 16:32:01
      VBASE009.VDF : 7.11.55.143 2048 Bytes 03/01/2013 16:32:01
      VBASE010.VDF : 7.11.55.144 2048 Bytes 03/01/2013 16:32:02
      VBASE011.VDF : 7.11.55.145 2048 Bytes 03/01/2013 16:32:02
      VBASE012.VDF : 7.11.55.146 2048 Bytes 03/01/2013 16:32:03
      VBASE013.VDF : 7.11.55.196 260096 Bytes 04/01/2013 16:31:49
      VBASE014.VDF : 7.11.55.197 2048 Bytes 04/01/2013 16:31:49
      VBASE015.VDF : 7.11.55.198 2048 Bytes 04/01/2013 16:31:49
      VBASE016.VDF : 7.11.55.199 2048 Bytes 04/01/2013 16:31:49
      VBASE017.VDF : 7.11.55.200 2048 Bytes 04/01/2013 16:31:50
      VBASE018.VDF : 7.11.55.201 2048 Bytes 04/01/2013 16:31:50
      VBASE019.VDF : 7.11.55.202 2048 Bytes 04/01/2013 16:31:50
      VBASE020.VDF : 7.11.55.203 2048 Bytes 04/01/2013 16:31:50
      VBASE021.VDF : 7.11.55.204 2048 Bytes 04/01/2013 16:31:51
      VBASE022.VDF : 7.11.55.205 2048 Bytes 04/01/2013 16:31:51
      VBASE023.VDF : 7.11.55.206 2048 Bytes 04/01/2013 16:31:51
      VBASE024.VDF : 7.11.55.207 2048 Bytes 04/01/2013 16:31:52
      VBASE025.VDF : 7.11.55.208 2048 Bytes 04/01/2013 16:31:52
      VBASE026.VDF : 7.11.55.209 2048 Bytes 04/01/2013 16:31:52
      VBASE027.VDF : 7.11.55.210 2048 Bytes 04/01/2013 16:31:52
      VBASE028.VDF : 7.11.55.211 2048 Bytes 04/01/2013 16:31:53
      VBASE029.VDF : 7.11.55.212 2048 Bytes 04/01/2013 16:31:53
      VBASE030.VDF : 7.11.55.213 2048 Bytes 04/01/2013 16:31:53
      VBASE031.VDF : 7.11.55.250 86016 Bytes 05/01/2013 16:32:05
      Engine version : 8.2.10.224
      AEVDF.DLL : 8.1.2.10 102772 Bytes 10/07/2012 14:36:27
      AESCRIPT.DLL : 8.1.4.78 467323 Bytes 20/12/2012 14:14:53
      AESCN.DLL : 8.1.10.0 131445 Bytes 14/12/2012 07:18:07
      AESBX.DLL : 8.2.5.12 606578 Bytes 09/07/2012 13:15:02
      AERDL.DLL : 8.2.0.74 643445 Bytes 07/11/2012 15:16:32
      AEPACK.DLL : 8.3.1.2 819574 Bytes 20/12/2012 14:14:52
      AEOFFICE.DLL : 8.1.2.50 201084 Bytes 05/11/2012 15:16:47
      AEHEUR.DLL : 8.1.4.168 5628280 Bytes 20/12/2012 14:14:49
      AEHELP.DLL : 8.1.25.2 258423 Bytes 11/10/2012 13:49:41
      AEGEN.DLL : 8.1.6.12 434549 Bytes 14/12/2012 07:18:04
      AEEXP.DLL : 8.3.0.4 184692 Bytes 20/12/2012 14:14:54
      AEEMU.DLL : 8.1.3.2 393587 Bytes 10/07/2012 14:36:20
      AECORE.DLL : 8.1.30.0 201079 Bytes 14/12/2012 07:18:03
      AEBB.DLL : 8.1.1.4 53619 Bytes 05/11/2012 15:16:33
      AVWINLL.DLL : 12.3.0.15 27344 Bytes 02/05/2012 03:59:21
      AVPREF.DLL : 12.3.0.32 50720 Bytes 15/11/2012 02:00:35
      AVREP.DLL : 12.3.0.15 179208 Bytes 02/05/2012 03:13:35
      AVARKT.DLL : 12.3.0.33 209696 Bytes 15/11/2012 02:00:34
      AVEVTLOG.DLL : 12.3.0.15 169168 Bytes 02/05/2012 03:28:49
      SQLITE3.DLL : 3.7.0.1 398288 Bytes 17/04/2012 02:11:02
      AVSMTP.DLL : 12.3.0.32 63480 Bytes 09/08/2012 0255
      NETNT.DLL : 12.3.0.15 17104 Bytes 02/05/2012 04:33:29
      RCIMAGE.DLL : 12.3.0.31 4445944 Bytes 09/08/2012 02:09:57
      RCTEXT.DLL : 12.3.0.32 97056 Bytes 15/11/2012 02:00:29

      Configuration settings for the scan:
      Jobname.............................: Complete system scan
      Configuration file..................: C:\ProgramData\Avira\AntiVir Desktop\PROFILES\AVSCAN-20130105-132536-FD3DE495.avp
      Logging.............................: default
      Primary action......................: Interactive
      Secondary action....................: Ignore
      Scan master boot sector.............: on
      Scan boot sector....................: on
      Boot sectors........................: C:, D:,
      Process scan........................: on
      Extended process scan...............: on
      Scan registry.......................: on
      Search for rootkits.................: on
      Integrity checking of system files..: off
      Scan all files......................: All files
      Scan archives.......................: on
      Recursion depth.....................: 20
      Smart extensions....................: on
      Macro heuristic.....................: on
      File heuristic......................: extended

      Start of the scan: sábado, 05 de enero de 2013 13:36

      Starting master boot sector scan:
      Master boot sector HD0
      [INFO] No virus was found!

      Start scanning boot sectors:
      Boot sector 'C:\'
      [INFO] No virus was found!
      Boot sector 'D:\'
      [INFO] No virus was found!

      Starting search for hidden objects.
      Hidden driver
      [NOTE] A memory modification has been detected, which could potentially be used to hide file access attempts.

      The scan of running processes will be started
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '39' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '66' Module(s) have been scanned
      Scan process 'chrome.exe' - '51' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '65' Module(s) have been scanned
      Scan process 'chrome.exe' - '41' Module(s) have been scanned
      Scan process 'chrome.exe' - '99' Module(s) have been scanned
      Scan process 'ContinueToSave.exe' - '41' Module(s) have been scanned
      Scan process 'avscan.exe' - '89' Module(s) have been scanned
      Scan process 'CameraHelperShell.exe' - '75' Module(s) have been scanned
      Scan process 'LWS.exe' - '39' Module(s) have been scanned
      Scan process 'jusched.exe' - '25' Module(s) have been scanned
      Scan process 'avgnt.exe' - '83' Module(s) have been scanned
      Scan process 'IMBooster.exe' - '94' Module(s) have been scanned
      Scan process 'DivXUpdate.exe' - '63' Module(s) have been scanned
      Scan process 'SSScheduler.exe' - '22' Module(s) have been scanned
      Scan process 'mbamgui.exe' - '35' Module(s) have been scanned
      Scan process 'PanProcess.exe' - '56' Module(s) have been scanned
      Scan process 'PandoraService.exe' - '53' Module(s) have been scanned
      Scan process 'nisvcloc.exe' - '24' Module(s) have been scanned
      Scan process 'nidmsrv.exe' - '40' Module(s) have been scanned
      Scan process 'mbamservice.exe' - '41' Module(s) have been scanned
      Scan process 'mbamscheduler.exe' - '33' Module(s) have been scanned
      Scan process 'lktsrv.exe' - '42' Module(s) have been scanned
      Scan process 'lkads.exe' - '40' Module(s) have been scanned
      Scan process 'lkcitdl.exe' - '43' Module(s) have been scanned
      Scan process 'DTUpdate.exe' - '43' Module(s) have been scanned
      Scan process 'avguard.exe' - '66' Module(s) have been scanned
      Scan process 'sched.exe' - '41' Module(s) have been scanned
      Scan process 'nvSCPAPISvr.exe' - '30' Module(s) have been scanned

      Starting to scan executable files (registry).
      C:\Windows\Sysnative\drivers\sptd.sys
      [WARNING] The file could not be opened!
      The registry was scanned ( '1572' files ).


      Starting the file scan:

      Begin scan in 'C:\'
      C:\Users\Franco\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SHBARTTM\50e8509cc3956[1].exe
      [0] Archive type: 7-Zip SFX (self extracting)
      --> 50e8509cab41a.exe
      [DETECTION] Contains recognition pattern of the ADSPY/AdSpy.Gen adware or spyware
      C:\Users\Franco\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\f97d284-785c453a
      [0] Archive type: ZIP
      --> B.class
      [DETECTION] Contains recognition pattern of the EXP/JAVA.Likinowl.Gen exploit
      --> Flintta.class
      [DETECTION] Contains recognition pattern of the JAVA/Likinowl.C Java virus
      --> Zend.class
      [DETECTION] Contains recognition pattern of the EXP/JAVA.Likinowl.Gen exploit
      C:\Windows\assembly\GAC_32\Desktop.ini
      [DETECTION] Is the TR/ATRAPS.Gen2 Trojan
      C:\Windows\assembly\GAC_64\Desktop.ini
      [DETECTION] Is the TR/ATRAPS.Gen2 Trojan
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\n
      [DETECTION] Is the TR/Sirefef.AH Trojan
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\L\00000004.@
      [DETECTION] Is the TR/ZAccess.H Trojan
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\00000004.@
      [DETECTION] Is the TR/ZAccess.H Trojan
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\00000008.@
      [DETECTION] Is the TR/Cutwail.jhg Trojan
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\000000cb.@
      [DETECTION] Is the TR/Sirefef.abx Trojan
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\80000000.@
      [DETECTION] Is the TR/ATRAPS.Gen Trojan
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\80000032.@
      [DETECTION] Is the TR/ATRAPS.Gen2 Trojan
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\80000064.@
      [DETECTION] Is the TR/ATRAPS.Gen2 Trojan
      Begin scan in 'D:\'

      Beginning disinfection:
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\80000064.@
      [DETECTION] Is the TR/ATRAPS.Gen2 Trojan
      [NOTE] The file was moved to the quarantine directory under the name '57b9d6af.qua'.
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\80000032.@
      [DETECTION] Is the TR/ATRAPS.Gen2 Trojan
      [NOTE] The file was moved to the quarantine directory under the name '4f2ef908.qua'.
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\80000000.@
      [DETECTION] Is the TR/ATRAPS.Gen Trojan
      [NOTE] The file was moved to the quarantine directory under the name '1d71a3e0.qua'.
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\000000cb.@
      [DETECTION] Is the TR/Sirefef.abx Trojan
      [NOTE] The file was moved to the quarantine directory under the name '7b46ec22.qua'.
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\00000008.@
      [DETECTION] Is the TR/Cutwail.jhg Trojan
      [NOTE] The file was moved to the quarantine directory under the name '3ec2c11c.qua'.
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\U\00000004.@
      [DETECTION] Is the TR/ZAccess.H Trojan
      [NOTE] The file was moved to the quarantine directory under the name '41d9f37d.qua'.
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\L\00000004.@
      [DETECTION] Is the TR/ZAccess.H Trojan
      [NOTE] The file was moved to the quarantine directory under the name '0d61df37.qua'.
      C:\_OTM\MovedFiles\01052013_125335\C_$Recycle.Bin\S-1-5-18\$bfbebdfde0ffa45b007ddb5600234a59\n
      [DETECTION] Is the TR/Sirefef.AH Trojan
      [NOTE] The file was moved to the quarantine directory under the name '71409f7a.qua'.
      C:\Windows\assembly\GAC_64\Desktop.ini
      [DETECTION] Is the TR/ATRAPS.Gen2 Trojan
      [NOTE] The file was moved to the quarantine directory under the name '5c60891b.qua'.
      C:\Windows\assembly\GAC_32\Desktop.ini
      [DETECTION] Is the TR/ATRAPS.Gen2 Trojan
      [NOTE] The file was moved to the quarantine directory under the name '4508b286.qua'.
      C:\Users\Franco\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\f97d284-785c453a
      [DETECTION] Contains recognition pattern of the EXP/JAVA.Likinowl.Gen exploit
      [NOTE] The file was moved to the quarantine directory under the name '2910a793.qua'.
      C:\Users\Franco\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SHBARTTM\50e8509cc3956[1].exe
      [DETECTION] Contains recognition pattern of the ADSPY/AdSpy.Gen adware or spyware
      [NOTE] The file was moved to the quarantine directory under the name '58fb9e0f.qua'.


      End of the scan: sábado, 05 de enero de 2013 16:00
      Used time: 1:19:43 Hour(s)

      The scan has been done completely.

      29570 Scanned directories
      479241 Files were scanned
      14 Viruses and/or unwanted programs were found
      0 Files were classified as suspicious
      0 Files were deleted
      0 Viruses and unwanted programs were repaired
      12 Files were moved to quarantine
      0 Files were renamed
      1 Files cannot be scanned
      479226 Files not concerned
      4279 Archives were scanned
      1 Warnings
      13 Notes
      680085 Objects were scanned with rootkit scan
      1 Hidden objects were found

    6. #26
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Problema con TR/ATRAPS.gen2

      Hola,

      Los virus están en la cuarentena de OTM ...

      • Estando conectado a internet abrí OTM by Oltimer
      • Dale Clic al botón Cleaup! una veces
      • Te va a pedir reiniciar la pc y Aceptas
      • Nos comentas como va todo después de sacar OTM y todos sus rastros


      Ademas hace lo siguiente: Virus en la caché de Java
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #27
      Usuario Avatar de FraLavorano
      Registrado
      ene 2013
      Ubicación
      Argentina
      Mensajes
      20

      Re: Problema con TR/ATRAPS.gen2

      Por ahora va bien, no me volvió a aparecer el cartel de alerta ni nada. Lo único raro q cambió es que ahora Google Chrome se cierra repentinamente por un "bloqueo" del mismo, pero después todo normal. Estoy haciendo un último análisis con el antivirus a ver qué salta y lo pego acá.
      Muuuchiiisimas gracias!!!
      Última edición por FraLavorano fecha: 07/01/13 a las 15:05:09

    8. #28
      Ex-Colaborador Avatar de Superlucas
      Registrado
      sep 2011
      Ubicación
      Argentina
      Mensajes
      15.747

      Re: Problema con TR/ATRAPS.gen2

      Hola,

      Desistala Google Chroome con Revounistaller en modo avanzado, eliminando todo rastro y toda clave de registro que quede con revounistaller

      Reinicias la pc y lo volves a instalar
      Vas a correr o vas a pelear?- Muahy Thai

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 3 de 3 PrimeroPrimero 123