• Registrarse
  • Iniciar sesión


  • Página 2 de 3 PrimeroPrimero 123 ÚltimoÚltimo
    Resultados 11 al 20 de 30

    TrojanDownloader:Win32/Adload.DA

    Hola, Podrías traer una captura del mensaje que te da el Centro de Actividades de Windows? ¿Cómo subir imágenes al Foro? *TUTORIAL* Adicionalmente, realiza lo siguiente: Descarga >> AT-Destroyer 2.0 (Adwares/Toolbars-Destroyer 2.0) by @Infospyware. Desactiva ...

    1. #11
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: TrojanDownloader:Win32/Adload.DA

      Hola,

      Podrías traer una captura del mensaje que te da el Centro de Actividades de Windows?
      ¿Cómo subir imágenes al Foro? *TUTORIAL*

      Adicionalmente, realiza lo siguiente:

      • Descarga >> AT-Destroyer 2.0 (Adwares/Toolbars-Destroyer 2.0) by @Infospyware.
      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Ejecuta AT-Destroyer. (Si usas Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Aparecerá el Disclaimer, si estás de acuerdo, presiona SI para continuar.
      • Presiona sobre la opción Buscar y Destruir para comenzar el escaneo.
      • AT-Destroyer desconectará el escritorio momentáneamente, esto es normal.
      • Una vez terminado el escaneo, podrás volver a ver el escritorio y se te abrirá un reporte, que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.(También lo puedes encontrar en C:\AT-Destroyer.log)
      • Inmediatamente debes Reiniciar el equipo.


      Realiza un escaneo completo con Panda ActiveScan 2.0. Recuerda guardar el reporte presionando Exportar a al finalizar el análisis.

      Nos traes los reportes y las capturas, y nos comentas cómo funciona tu ordenador
      Saludos

    2. #12
      Usuario Avatar de Takkhisis
      Registrado
      ago 2011
      Ubicación
      España
      Mensajes
      25

      Re: TrojanDownloader:Win32/Adload.DA

      Como me parece un rollo lo de subir la imagen te escribo literal lo que pone:

      Quitar el virus de TrojanDownloader:Win32/Adload.DA

      Procedo a hacer lo que me indicas del AT-Destroyer y el Panda.

      Muchas gracias.

    3. #13
      Usuario Avatar de Takkhisis
      Registrado
      ago 2011
      Ubicación
      España
      Mensajes
      25

      Re: TrojanDownloader:Win32/Adload.DA

      Reporte de AT-Destroyer 2.0:

      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 01:43:47 \\\ 21/01/2013
      AT-Destroyer 2.1 By Infospyware ---> InfoSpyware
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:9.0.8112.16421
      Mozilla Firefox:18.0.1.4764
      Privilegios: Akkasha - Administrador
      Modo Actual: Modo Normal.
      Nombre del pc: AKKASHA-WHITE
      Información del sistema operativo:X64-WIN_7-Service Pack 1
      nombre del usuario:Akkasha
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<

      C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} 97
      C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Cache 97
      C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat 97
      C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.exe 97
      C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.ico 97
      C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setup.dll 97
      C:\ProgramData\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053} 97
      C:\ProgramData\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\Cache 97
      C:\ProgramData\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\Setup.dat 97
      C:\ProgramData\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\Setup.exe 97
      C:\ProgramData\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\Setup.ico 97
      C:\ProgramData\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\_Setup.dll 97
      C:\ProgramData\Tarma Installer 97


      >>>>>> Archivos <<<<<<



      >>>>>> Registro <<<<<<

      HKEY_CURRENT_USER\Software\Conduit
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit
      HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
      HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      >>>>>> Heurística <<<<<<

      C:\Users\Akkasha\Actualizacion_Renta2010_windows_1_20.exe (Heur malware.win32.generic)
      C:\Users\Akkasha\GoToAssistDownloadHelper.exe (Heur malware.win32.generic)


      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==C:\Windows\SysWOW64\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_Page_URL==http://go.microsoft.com/fwlink/?LinkId=69157


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_search_url==
      Default_Page_URL==


      HKEY_USERS\S-1-5-21-683386934-1516360831-2476427008-1000\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
      Default_search_url==
      Default_Page_URL==


      >>>>>> Firefox <<<<<<

      user_pref("browser.startup.homepage", "http://www.yahoo.es/");
      user_pref("browser.startup.homepage_override.buildID", "20130116073211");
      user_pref("browser.startup.homepage_override.mstone", "18.0.1");


      >>>>>> Extensiones Firefox <<<<<<


      C:\Program Files (x86)\{972ce4c6-7e08-4474-a285-3208198ce6fd}
      C:\Program Files (x86)\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
      C:\Program Files (x86)\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}
      C:\Program Files (x86)\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
      C:\Program Files (x86)\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}

      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@fxinteractive.com/fxplanet
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MVT
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/SAFFPlugin

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\1
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda

      ======== Listado ===========

      [ 23/09/2012 3:16] [ 27/08/2010 20:51] [DI] C:\Users\Akkasha\AppData\Roaming\Adobe
      [23/10/2010 23:48] [23/10/2010 23:48] [DI] C:\Users\Akkasha\AppData\Roaming\Aerohills
      [ 06/02/2011 1:28] [ 06/02/2011 1:28] [DI] C:\Users\Akkasha\AppData\Roaming\Anvate Games
      [07/12/2012 12:57] [21/11/2010 23:31] [DI] C:\Users\Akkasha\AppData\Roaming\Apple Computer
      [06/01/2011 23:23] [28/08/2010 14:21] [DI] C:\Users\Akkasha\AppData\Roaming\ArcSoft
      [24/09/2011 12:41] [24/09/2011 12:41] [DI] C:\Users\Akkasha\AppData\Roaming\Artifex Mundi
      [27/08/2010 17:04] [27/08/2010 17:04] [DI] C:\Users\Akkasha\AppData\Roaming\ATI
      [ 02/02/2011 0:54] [ 02/02/2011 0:42] [DI] C:\Users\Akkasha\AppData\Roaming\Audacity
      [15/10/2010 16:15] [27/09/2010 15:33] [DI] C:\Users\Akkasha\AppData\Roaming\Auslogics
      [ 11/11/2011 0:58] [ 30/10/2011 18:58] [DI] C:\Users\Akkasha\AppData\Roaming\AutoPlay Menu Designer
      [19/02/2011 21:50] [19/02/2011 21:49] [DI] C:\Users\Akkasha\AppData\Roaming\Bigfish 3 Days Zoo Mystery
      [ 06/01/2011 1:04] [ 06/01/2011 1:04] [DI] C:\Users\Akkasha\AppData\Roaming\Boolat Games
      [ 21/05/2011 2:41] [ 21/05/2011 2:41] [DI] C:\Users\Akkasha\AppData\Roaming\Boomzap
      [ 04/09/2011 5:00] [ 03/09/2010 15:01] [DI] C:\Users\Akkasha\AppData\Roaming\BSplayer
      [03/09/2010 15:01] [03/09/2010 15:01] [DI] C:\Users\Akkasha\AppData\Roaming\BSplayer Pro
      [ 05/02/2011 2:41] [ 05/02/2011 2:41] [DI] C:\Users\Akkasha\AppData\Roaming\Casual Arts
      [28/10/2010 13:37] [28/10/2010 13:37] [DI] C:\Users\Akkasha\AppData\Roaming\com.fox.simpsons.simpsonsgags.8DB2FB41E3AF9617470F9C3E78FDAAA51EF66383.1
      [09/01/2011 18:13] [09/01/2011 18:13] [DI] C:\Users\Akkasha\AppData\Roaming\Dekovir
      [ 04/02/2011 0:24] [ 04/02/2011 0:24] [DI] C:\Users\Akkasha\AppData\Roaming\DivoGames
      [20/01/2013 23:30] [15/07/2011 13:46] [DI] C:\Users\Akkasha\AppData\Roaming\Dropbox
      [ 19/02/2011 2:32] [ 14/02/2011 1:17] [DI] C:\Users\Akkasha\AppData\Roaming\Dying for Daylight
      [ 14/02/2011 1:17] [ 14/02/2011 1:17] [DI] C:\Users\Akkasha\AppData\Roaming\Dying for Daylight Shared
      [ 12/04/2011 1:12] [ 12/04/2011 1:12] [DI] C:\Users\Akkasha\AppData\Roaming\EmilyArcher
      [ 19/02/2011 4:10] [ 19/02/2011 4:10] [DI] C:\Users\Akkasha\AppData\Roaming\FBI
      [ 03/10/2010 1:01] [ 02/10/2010 17:52] [DI] C:\Users\Akkasha\AppData\Roaming\Flash
      [04/02/2011 14:07] [04/02/2011 14:07] [DI] C:\Users\Akkasha\AppData\Roaming\FlyWheelGames
      [18/03/2012 23:57] [18/03/2012 23:57] [DI] C:\Users\Akkasha\AppData\Roaming\FotoPrix
      [ 06/02/2011 1:57] [ 06/02/2011 1:57] [DI] C:\Users\Akkasha\AppData\Roaming\Friday's games
      [ 06/01/2011 1:37] [ 06/01/2011 1:37] [DI] C:\Users\Akkasha\AppData\Roaming\GamesCafe
      [20/02/2011 16:27] [20/02/2011 16:27] [DI] C:\Users\Akkasha\AppData\Roaming\Gogii
      [27/08/2010 20:50] [27/08/2010 20:50] [DI] C:\Users\Akkasha\AppData\Roaming\Google
      [22/10/2010 15:31] [22/10/2010 15:31] [DI] C:\Users\Akkasha\AppData\Roaming\GraveyardShift
      [23/01/2011 14:24] [23/01/2011 14:24] [DI] C:\Users\Akkasha\AppData\Roaming\Green Clover Games
      [ 24/09/2011 3:04] [ 03/02/2011 1:19] [DI] C:\Users\Akkasha\AppData\Roaming\HdO Adventure
      [ 12/05/2011 3:08] [ 02/10/2010 20:24] [DI] C:\Users\Akkasha\AppData\Roaming\HP
      [17/01/2013 14:52] [15/05/2012 13:24] [DI] C:\Users\Akkasha\AppData\Roaming\HpUpdate
      [27/08/2010 17:02] [27/08/2010 17:02] [DI] C:\Users\Akkasha\AppData\Roaming\Identities
      [28/08/2010 16:24] [28/08/2010 16:24] [DI] C:\Users\Akkasha\AppData\Roaming\InstallShield
      [27/08/2010 17:04] [27/08/2010 17:04] [DI] C:\Users\Akkasha\AppData\Roaming\Intel Corporation
      [29/11/2010 22:44] [29/11/2010 22:43] [DI] C:\Users\Akkasha\AppData\Roaming\JodieDrake
      [30/08/2010 15:24] [30/08/2010 15:24] [DI] C:\Users\Akkasha\AppData\Roaming\Leadertech
      [30/08/2010 15:20] [30/08/2010 15:19] [DI] C:\Users\Akkasha\AppData\Roaming\Logishrd
      [30/08/2010 15:24] [30/08/2010 15:19] [DI] C:\Users\Akkasha\AppData\Roaming\Logitech
      [ 10/10/2011 3:24] [ 10/10/2011 3:24] [DI] C:\Users\Akkasha\AppData\Roaming\LolClient
      [ 24/06/2012 3:18] [ 24/06/2012 3:18] [DI] C:\Users\Akkasha\AppData\Roaming\LolClient2
      [ 06/01/2011 0:57] [ 06/01/2011 0:57] [DI] C:\Users\Akkasha\AppData\Roaming\MA
      [ 01/02/2011 0:06] [ 01/02/2011 0:06] [DI] C:\Users\Akkasha\AppData\Roaming\MA2
      [ 11/09/2011 0:32] [ 27/08/2010 21:03] [DI] C:\Users\Akkasha\AppData\Roaming\Macromedia
      [29/11/2010 22:43] [29/11/2010 22:43] [DI] C:\Users\Akkasha\AppData\Roaming\MagicMatch
      [02/10/2010 21:30] [02/10/2010 21:30] [DI] C:\Users\Akkasha\AppData\Roaming\Malwarebytes
      C:\Users\Akkasha\AppData\Roaming\matrox_drv16.dat [HSAI] 229 bytes ( )
      [12/07/2012 13:34] [12/07/2012 13:34] [DI] C:\Users\Akkasha\AppData\Roaming\McAfee
      [ 20/05/2010 4:02] [ 27/08/2010 17:01] [DI] C:\Users\Akkasha\AppData\Roaming\Media Center Programs
      [12/06/2012 14:19] [27/08/2010 17:01] [SDI] C:\Users\Akkasha\AppData\Roaming\Microsoft
      [05/08/2011 14:35] [27/08/2010 20:55] [DI] C:\Users\Akkasha\AppData\Roaming\Mozilla
      [ 12/02/2011 2:18] [ 12/02/2011 2:17] [DI] C:\Users\Akkasha\AppData\Roaming\Muse
      [18/03/2011 23:12] [18/03/2011 23:12] [DI] C:\Users\Akkasha\AppData\Roaming\Nokia
      [18/03/2011 23:12] [18/03/2011 23:12] [DI] C:\Users\Akkasha\AppData\Roaming\Nokia Ovi Suite
      [19/03/2012 14:30] [19/03/2012 2:21] [DI] C:\Users\Akkasha\AppData\Roaming\ObviousIdea
      [18/03/2011 23:12] [18/03/2011 23:07] [DI] C:\Users\Akkasha\AppData\Roaming\PC Suite
      [06/08/2011 15:29] [16/07/2011 1:40] [DI] C:\Users\Akkasha\AppData\Roaming\PCToolsFirewallPlus
      [15/10/2010 20:40] [15/10/2010 20:40] [DI] C:\Users\Akkasha\AppData\Roaming\PlayFirst
      [ 06/10/2011 0:10] [ 02/02/2011 1:02] [DI] C:\Users\Akkasha\AppData\Roaming\Power Sound Editor Free
      [29/09/2010 19:27] [29/09/2010 19:27] [DI] C:\Users\Akkasha\AppData\Roaming\quickclick
      [27/08/2010 21:52] [27/08/2010 21:52] [DI] C:\Users\Akkasha\AppData\Roaming\Real
      [24/10/2010 18:46] [24/10/2010 18:46] [DI] C:\Users\Akkasha\AppData\Roaming\Roxio
      [29/11/2010 22:43] [29/11/2010 22:43] [DI] C:\Users\Akkasha\AppData\Roaming\Saqqarah
      [ 09/12/2010 2:18] [ 09/12/2010 2:18] [DI] C:\Users\Akkasha\AppData\Roaming\ScummVM
      [16/10/2010 22:35] [16/10/2010 22:35] [DI] C:\Users\Akkasha\AppData\Roaming\SecretIslandEspBF
      [ 11/02/2011 0:16] [ 11/02/2011 0:16] [DI] C:\Users\Akkasha\AppData\Roaming\Skunk Studios
      [ 19/01/2013 1:11] [ 06/01/2011 23:49] [DI] C:\Users\Akkasha\AppData\Roaming\Skype
      [ 24/10/2011 0:08] [ 07/01/2011 1:13] [DI] C:\Users\Akkasha\AppData\Roaming\skypePM
      [29/11/2010 22:44] [29/11/2010 22:44] [DI] C:\Users\Akkasha\AppData\Roaming\Sleepwalker Games
      [30/10/2011 19:01] [30/10/2011 19:01] [DI] C:\Users\Akkasha\AppData\Roaming\SoftLocalizer
      [09/01/2011 18:09] [09/01/2011 18:07] [DI] C:\Users\Akkasha\AppData\Roaming\Sony
      [28/08/2010 14:00] [27/08/2010 17:01] [DI] C:\Users\Akkasha\AppData\Roaming\Sony Corporation
      [03/09/2011 13:38] [03/09/2011 13:38] [DI] C:\Users\Akkasha\AppData\Roaming\Specialbit
      [06/02/2011 18:21] [24/10/2010 18:48] [DI] C:\Users\Akkasha\AppData\Roaming\SpinTop Games
      [12/10/2012 17:45] [31/12/2010 12:22] [DI] C:\Users\Akkasha\AppData\Roaming\Spotify
      [29/11/2010 22:43] [29/11/2010 22:43] [DI] C:\Users\Akkasha\AppData\Roaming\StoneLoops!
      [ 19/01/2013 1:11] [ 27/08/2010 21:05] [DI] C:\Users\Akkasha\AppData\Roaming\uTorrent
      [ 04/01/2011 1:37] [ 04/01/2011 1:37] [DI] C:\Users\Akkasha\AppData\Roaming\Virtual Prophecy
      [ 24/01/2011 3:12] [ 24/01/2011 3:12] [DI] C:\Users\Akkasha\AppData\Roaming\WhiteBirdsProductions
      [ 19/01/2013 1:11] [ 03/01/2011 13:09] [DI] C:\Users\Akkasha\AppData\Roaming\Winamp
      [29/09/2010 18:52] [29/09/2010 18:52] [DI] C:\Users\Akkasha\AppData\Roaming\WinRAR
      [21/10/2010 21:37] [21/10/2010 21:37] [DI] C:\Users\Akkasha\AppData\Roaming\Yahoo!
      [18/03/2012 18:12] [13/08/2010 13:44] [D] C:\Program Files (x86)\Adobe
      [27/10/2010 16:16] [27/10/2010 16:16] [D] C:\Program Files (x86)\Alcohol Soft
      [07/07/2011 12:51] [07/07/2011 12:51] [D] C:\Program Files (x86)\AMD APP
      [08/08/2011 23:27] [08/08/2011 23:27] [D] C:\Program Files (x86)\Apple Software Update
      [13/08/2010 14:19] [13/08/2010 13:48] [D] C:\Program Files (x86)\ArcSoft
      [07/07/2011 12:50] [07/07/2011 12:50] [D] C:\Program Files (x86)\ATI Technologies
      [12/10/2011 16:39] [21/11/2010 23:28] [D] C:\Program Files (x86)\Bonjour
      [15/07/2011 13:23] [15/07/2011 13:23] [D] C:\Program Files (x86)\Bradbury
      [12/07/2012 13:59] [12/07/2012 13:59] [D] C:\Program Files (x86)\Citrix
      [22/11/2012 17:52] [14/07/2009 5:20] [D] C:\Program Files (x86)\Common Files
      C:\Program Files (x86)\desktop.ini [HSA] 174 bytes( 0)
      [20/10/2011 1:25] [13/08/2010 13:46] [D] C:\Program Files (x86)\Downloaded Installations
      [27/08/2010 22:50] [27/08/2010 22:50] [D] C:\Program Files (x86)\Electronic Arts
      [19/01/2013 1:19] [19/01/2013 1:19] [D] C:\Program Files (x86)\ESET
      [13/08/2010 13:47] [13/08/2010 13:47] [D] C:\Program Files (x86)\Evernote
      [29/09/2010 22:18] [29/09/2010 22:18] [D] C:\Program Files (x86)\Flash
      [09/12/2012 16:29] [28/02/2012 0:00] [HD] C:\Program Files (x86)\FX Uninstall Information
      [18/11/2011 13:42] [13/08/2010 13:47] [D] C:\Program Files (x86)\Google
      [30/08/2011 1:47] [30/08/2011 1:47] [D] C:\Program Files (x86)\GPLGS
      [03/01/2013 15:00] [27/09/2011 3:40] [D] C:\Program Files (x86)\GstarCAD2011Professional
      [15/05/2012 13:36] [15/05/2012 13:36] [D] C:\Program Files (x86)\Hewlett-Packard
      [21/01/2011 14:14] [21/01/2011 14:14] [D] C:\Program Files (x86)\Hofmann
      [26/11/2012 16:00] [28/02/2012 0:00] [D] C:\Program Files (x86)\Hollywood Monsters
      [03/01/2013 15:04] [12/05/2011 2:58] [D] C:\Program Files (x86)\HP
      [01/12/2012 18:32] [19/05/2010 23:42] [HD] C:\Program Files (x86)\InstallShield Installation Information
      [24/10/2010 15:42] [19/05/2010 23:09] [D] C:\Program Files (x86)\Intel
      [12/12/2012 22:34] [14/07/2009 5:20] [D] C:\Program Files (x86)\Internet Explorer
      [25/12/2012 21:03] [25/12/2012 21:02] [D] C:\Program Files (x86)\iTunes
      [19/10/2012 14:59] [13/08/2010 14:09] [D] C:\Program Files (x86)\Java
      [15/07/2011 13:34] [15/07/2011 13:20] [D] C:\Program Files (x86)\Macromedia
      [16/01/2013 14:34] [02/10/2010 21:30] [D] C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [28/09/2012 14:48] [13/08/2010 13:49] [D] C:\Program Files (x86)\McAfee
      [23/05/2012 13:33] [23/05/2012 13:33] [D] C:\Program Files (x86)\McAfee.com
      [21/10/2010 21:54] [21/10/2010 21:54] [D] C:\Program Files (x86)\Microsoft
      [30/09/2011 13:09] [30/09/2011 13:09] [D] C:\Program Files (x86)\Microsoft Analysis Services
      [30/09/2011 13:13] [13/08/2010 14:02] [D] C:\Program Files (x86)\Microsoft Office
      [26/05/2012 14:03] [27/09/2010 15:36] [D] C:\Program Files (x86)\Microsoft Silverlight
      [13/08/2010 14:25] [13/08/2010 14:02] [D] C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      [13/08/2010 14:02] [13/08/2010 14:02] [D] C:\Program Files (x86)\Microsoft Synchronization Services
      [27/08/2010 22:50] [27/08/2010 22:50] [D] C:\Program Files (x86)\Microsoft WSE
      [30/09/2011 13:13] [01/09/2010 23:44] [D] C:\Program Files (x86)\Microsoft.NET
      [19/01/2013 0:28] [19/01/2013 0:28] [D] C:\Program Files (x86)\Mozilla Firefox
      [19/01/2013 1:12] [07/12/2012 21:05] [D] C:\Program Files (x86)\Mozilla Firefox.bak
      [19/01/2013 15:09] [27/04/2012 23:04] [D] C:\Program Files (x86)\Mozilla Maintenance Service
      [30/09/2011 1:26] [14/07/2009 7:32] [D] C:\Program Files (x86)\MSBuild
      [28/08/2010 14:36] [28/08/2010 14:36] [D] C:\Program Files (x86)\MSXML 4.0
      [13/08/2010 14:02] [13/08/2010 14:02] [D] C:\Program Files (x86)\MusicStation
      [09/12/2012 16:30] [09/12/2012 16:29] [D] C:\Program Files (x86)\New York Crimes
      [04/11/2011 14:12] [18/03/2011 23:04] [D] C:\Program Files (x86)\Nokia
      [19/03/2012 0:49] [19/03/2012 0:49] [D] C:\Program Files (x86)\ObviousIdea
      [18/03/2011 23:40] [18/03/2011 23:40] [D] C:\Program Files (x86)\ODEON
      [09/12/2012 16:30] [09/12/2012 16:30] [D] C:\Program Files (x86)\OpenAL
      [04/10/2010 15:58] [04/10/2010 15:58] [D] C:\Program Files (x86)\Panda Security
      [10/10/2011 1:39] [10/10/2011 1:39] [D] C:\Program Files (x86)\Pando Networks
      [04/11/2011 14:10] [04/11/2011 14:10] [D] C:\Program Files (x86)\PC Connectivity Solution
      [30/08/2011 1:56] [24/08/2011 13:51] [D] C:\Program Files (x86)\PDFCreator
      [02/02/2011 1:02] [02/02/2011 1:01] [D] C:\Program Files (x86)\Power Sound Editor Free
      [14/11/2012 2:03] [14/11/2012 2:03] [D] C:\Program Files (x86)\QuickTime
      [13/08/2010 13:41] [13/08/2010 13:41] [D] C:\Program Files (x86)\Realtek
      [14/07/2009 7:32] [14/07/2009 7:32] [D] C:\Program Files (x86)\Reference Assemblies
      [13/08/2010 14:07] [13/08/2010 14:07] [D] C:\Program Files (x86)\Roxio
      [30/10/2011 18:55] [30/10/2011 18:53] [D] C:\Program Files (x86)\SamLogic
      [03/01/2013 15:06] [06/01/2011 23:49] [RD] C:\Program Files (x86)\Skype
      [30/01/2011 23:45] [30/01/2011 23:45] [D] C:\Program Files (x86)\SlySoft
      [15/07/2011 1:29] [13/08/2010 13:43] [D] C:\Program Files (x86)\SONY
      [13/08/2010 14:19] [13/08/2010 14:19] [D] C:\Program Files (x86)\Sony Corporation
      [09/01/2011 18:07] [09/01/2011 18:07] [D] C:\Program Files (x86)\Sony Media Go Install
      [31/12/2010 12:22] [31/12/2010 12:22] [D] C:\Program Files (x86)\Spotify
      [13/08/2010 14:03] [13/08/2010 14:03] [D] C:\Program Files (x86)\Symantec
      [13/08/2010 13:42] [13/08/2010 13:41] [HD] C:\Program Files (x86)\Temp
      [14/07/2009 6:57] [14/07/2009 6:57] [HD] C:\Program Files (x86)\Uninstall Information
      [11/01/2013 15:14] [27/08/2010 21:08] [D] C:\Program Files (x86)\uTorrent
      [13/08/2010 14:07] [13/08/2010 14:07] [D] C:\Program Files (x86)\VAIO screensavers
      [30/01/2011 22:24] [27/08/2010 21:52] [D] C:\Program Files (x86)\Video Convert Master
      [11/11/2011 0:57] [11/11/2011 0:57] [D] C:\Program Files (x86)\Visual Designing
      [24/02/2012 23:29] [09/02/2012 0:16] [D] C:\Program Files (x86)\Wakfu
      [03/09/2010 15:01] [03/09/2010 15:01] [D] C:\Program Files (x86)\Webteh
      [24/02/2012 23:53] [27/08/2010 21:11] [D] C:\Program Files (x86)\Winamp
      [24/02/2012 23:52] [03/01/2011 13:09] [D] C:\Program Files (x86)\Winamp Detect
      [13/08/2010 13:41] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Defender
      [21/10/2010 21:54] [13/08/2010 14:23] [D] C:\Program Files (x86)\Windows Live
      [21/10/2010 21:54] [21/10/2010 21:54] [D] C:\Program Files (x86)\Windows Live SkyDrive
      [25/02/2011 0:47] [14/07/2009 5:20] [D] C:\Program Files (x86)\Windows Mail
      [25/02/2011 0:47] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Media Player
      [14/07/2009 7:32] [14/07/2009 5:20] [D] C:\Program Files (x86)\Windows NT
      [25/02/2011 0:47] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Photo Viewer
      [25/02/2011 0:47] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Portable Devices
      [25/02/2011 0:47] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Sidebar
      [22/10/2010 14:04] [21/10/2010 21:35] [D] C:\Program Files (x86)\Yahoo!
      [01/06/2012 15:31] [19/03/2012 0:50] [D] C:\Program Files (x86)\Yontoo
      [25/12/2012 21:03] [25/12/2012 21:02] [DI] C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
      [10/11/2012 13:51] [13/08/2010 13:44] [DI] C:\ProgramData\Adobe
      [06/09/2011 12:46] [21/11/2010 23:27] [DI] C:\ProgramData\Apple
      [04/09/2011 3:43] [27/08/2010 21:52] [DI] C:\ProgramData\Apple Computer
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Application Data
      [06/01/2011 22:58] [28/08/2010 14:21] [DI] C:\ProgramData\ArcSoft
      [07/07/2011 12:51] [07/07/2011 12:51] [DI] C:\ProgramData\ATI
      [23/05/2012 13:24] [06/08/2011 14:26] [DI] C:\ProgramData\AVAST Software
      [05/02/2011 2:41] [05/02/2011 2:41] [DI] C:\ProgramData\Casual Arts
      [27/08/2010 17:01] [27/08/2010 17:01] [HSDLI] C:\ProgramData\Datos de programa
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Desktop
      [27/08/2010 17:01] [27/08/2010 17:01] [HSDLI] C:\ProgramData\Documentos
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Documents
      [14/02/2011 1:16] [14/02/2011 1:16] [DI] C:\ProgramData\Dying for Daylight
      [29/03/2011 23:01] [29/03/2011 23:01] [DI] C:\ProgramData\EA Core
      [09/10/2010 14:41] [28/08/2010 13:22] [DI] C:\ProgramData\Electronic Arts
      [27/08/2010 17:01] [27/08/2010 17:01] [HSDLI] C:\ProgramData\Escritorio
      [13/08/2010 13:47] [13/08/2010 13:47] [DI] C:\ProgramData\Evernote
      C:\ProgramData\ezsidmv.dat [HAI] 56 bytes 0
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Favorites
      [27/08/2010 17:01] [27/08/2010 17:01] [HSDLI] C:\ProgramData\Favoritos
      [25/05/2011 13:37] [23/03/2011 13:05] [DI] C:\ProgramData\FLEXnet
      [07/02/2011 0:49] [07/02/2011 0:49] [DI] C:\ProgramData\Fugazo
      [07/12/2012 20:04] [27/02/2012 23:51] [DI] C:\ProgramData\FXWebPlayer
      [17/11/2010 23:05] [17/11/2010 23:05] [DI] C:\ProgramData\Google
      [23/01/2011 14:24] [23/01/2011 14:24] [DI] C:\ProgramData\Green Clover Games
      [12/05/2011 3:04] [12/05/2011 2:55] [DI] C:\ProgramData\HP
      [12/05/2011 3:00] [12/05/2011 3:00] [DI] C:\ProgramData\HP Product Assistant
      C:\ProgramData\hpzinstall.log [AI] 3,06 KB 0
      [29/09/2010 18:53] [29/09/2010 18:53] [DI] C:\ProgramData\IronCode
      [25/09/2011 5:44] [25/09/2011 5:44] [DI] C:\ProgramData\JollyBear
      [27/01/2012 13:58] [27/01/2012 13:58] [DI] C:\ProgramData\KingsIsle Entertainment
      [30/08/2010 15:24] [30/08/2010 15:21] [DI] C:\ProgramData\Logishrd
      [15/07/2011 13:34] [15/07/2011 13:34] [DI] C:\ProgramData\Macromedia
      [15/07/2011 13:25] [15/07/2011 13:25] [DI] C:\ProgramData\Macrovision
      [13/07/2012 14:22] [13/07/2012 14:22] [DI] C:\ProgramData\Malwarebytes
      [28/09/2012 14:49] [13/08/2010 13:49] [DI] C:\ProgramData\McAfee
      [27/08/2010 17:01] [27/08/2010 17:01] [HSDLI] C:\ProgramData\Menú Inicio
      [30/09/2011 13:11] [14/07/2009 5:20] [SDI] C:\ProgramData\Microsoft
      [09/01/2013 16:27] [01/09/2010 23:42] [DI] C:\ProgramData\Microsoft Help
      [27/04/2012 23:04] [27/04/2012 23:04] [DI] C:\ProgramData\Mozilla
      [09/08/2011 2:50] [08/11/2010 20:32] [DI] C:\ProgramData\MumboJumbo
      [13/08/2010 14:02] [13/08/2010 14:02] [DI] C:\ProgramData\MusicStation
      C:\ProgramData\MusicStation.log [AI] 3 bytes 0
      C:\ProgramData\MusicStation.xml [AI] 221 bytes 0
      [27/10/2010 13:30] [27/10/2010 13:30] [DI] C:\ProgramData\Nick Chase A Detective Story
      [04/11/2011 14:12] [18/03/2011 23:24] [DI] C:\ProgramData\Nokia
      [09/09/2011 14:41] [18/03/2011 23:04] [DI] C:\ProgramData\NokiaInstallerCache
      [19/02/2011 4:10] [19/02/2011 4:10] [DI] C:\ProgramData\Particles
      [27/08/2010 20:58] [13/08/2010 13:47] [DI] C:\ProgramData\Partner
      [18/03/2011 23:09] [18/03/2011 23:07] [DI] C:\ProgramData\PC Suite
      [12/08/2011 11:58] [04/08/2011 0:48] [DI] C:\ProgramData\PC Tools
      [25/05/2011 0:55] [14/04/2011 14:33] [DI] C:\ProgramData\Pendulo Studios
      [27/08/2010 17:01] [27/08/2010 17:01] [HSDLI] C:\ProgramData\Plantillas
      [15/10/2010 20:40] [15/10/2010 20:40] [DI] C:\ProgramData\PlayFirst
      [21/01/2013 1:40] [10/10/2011 1:40] [DI] C:\ProgramData\PMB Files
      [27/08/2010 21:52] [27/08/2010 21:52] [DI] C:\ProgramData\Real
      [15/07/2011 5:48] [15/07/2011 5:48] [DI] C:\ProgramData\regid.1986-12.com.adobe
      [06/03/2011 12:37] [24/10/2010 18:46] [DI] C:\ProgramData\Roxio
      [13/08/2010 13:58] [13/08/2010 13:58] [DI] C:\ProgramData\SiteAdvisor
      [22/11/2012 17:52] [06/01/2011 23:49] [DI] C:\ProgramData\Skype
      [13/08/2010 14:07] [13/08/2010 14:07] [DI] C:\ProgramData\Sonic
      [15/07/2011 1:29] [20/05/2010 1:01] [DI] C:\ProgramData\Sony Corporation
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Start Menu
      [27/08/2010 21:37] [27/08/2010 21:37] [DI] C:\ProgramData\Sun
      [13/08/2010 14:03] [13/08/2010 14:03] [DI] C:\ProgramData\Symantec
      [01/10/2011 1:31] [24/10/2010 18:48] [DAI] C:\ProgramData\TEMP
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Templates
      [13/08/2010 14:07] [13/08/2010 14:07] [DI] C:\ProgramData\Uninstall
      [12/05/2011 3:04] [12/05/2011 3:04] [DI] C:\ProgramData\WEBREG
      [21/10/2010 21:39] [21/10/2010 21:37] [D] C:\ProgramData\Yahoo!
      [21/11/2010 23:30] [21/11/2010 23:30] [DI] C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}

      ==================== EOF ==================

    4. #14
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: TrojanDownloader:Win32/Adload.DA

      Hola,

      Perfecto
      AT-Destroyer eliminó los restos de Yontoo que ESET Online Scanner no pudo eliminar. Cómo funciona el equipo?
      Esperamos el reporte de Panda ActiveScan 2.0.

      Saludos

    5. #15
      Usuario Avatar de Takkhisis
      Registrado
      ago 2011
      Ubicación
      España
      Mensajes
      25

      Re: TrojanDownloader:Win32/Adload.DA

      El centro de windows sigue poniendo lo mismo,voy a ver cómo va el ping, porque tampoco es infalible windows xD

      **editado** tras jugar una partida al lol y llegar a 600 de ping, doy por hecho que algo sigue ahí escondido >_< creo que formaron colonia en mi pc, porque sino no me explico. Gracias y disculpa todas las molestias.**editado**

      Reporte de Activescan:

      ;***********************************************************************************************************************************************************************************
      ANALYSIS: 2013-01-21 22:54:11
      PROTECTIONS: 1
      MALWARE: 2
      SUSPECTS: 0
      ;***********************************************************************************************************************************************************************************
      PROTECTIONS
      Description Version Active Updated
      ;===================================================================================================================================================================================
      McAfee Anti-Virus y Anti-Spyware Yes Yes
      ;===================================================================================================================================================================================
      MALWARE
      Id Description Type Active Severity Disinfectable Disinfected Location
      ;===================================================================================================================================================================================
      00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No c:\users\invitado\appdata\roaming\microsoft\windows\cookies\set62rcv.txt
      00168056 Cookie/YieldManager TrackingCookie No 0 Yes No c:\users\invitado\appdata\roaming\microsoft\windows\cookies\r5wun2b7.txt
      ;===================================================================================================================================================================================
      SUSPECTS
      Sent Location
      ;===================================================================================================================================================================================
      ;===================================================================================================================================================================================
      VULNERABILITIES
      Id Severity Description
      ;===================================================================================================================================================================================
      ;===================================================================================================================================================================================
      Última edición por Takkhisis fecha: 21/01/13 a las 19:37:31

    6. #16
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: TrojanDownloader:Win32/Adload.DA

      Hola,

      No es ninguna molestia Todas las dudas que tengas podes comentárnoslas

      Si te parece vamos a eliminar unas cosas que quedaron, y a hacer un nuevo análisis online, a ver si detectamos algo más

      Por favor, realiza lo siguiente:

      • Descarga OTM a tu escritorio. Te dejo su Manual.
      • Ejecuta OTM.exe
      • Nota: Si estás utilizando Windows Vista o Windows 7. Da click derecho sobre OTM.exe y selecciona Ejecutar Como Admistrador
      • Copia y pega el siguiente Script que se encuentra dentro del recuadro de abajo. (Se excluye la palabra Código)


      Código:
      :files
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
      C:\Users\Akkasha\AppData\Roaming\Leadertech /d
      C:\Program Files (x86)\Yontoo /d
      C:\ProgramData\ezsidmv.dat
      
      :commands
      [resethosts]
      [emptytemp]
      [Reboot]
      • Presiona el botón rojo MoveIt!
      • Espera hasta cuando el resultado aparezca en el marco Results.
      • Permite que se reinicie el equipo, esto es importante.
      • Copia y Pega en tu próxima resuesta el reporte de OTM situado sobre C: \ _ OTM\MovedFiles\***_***.log


      Nota: Es posible que note archivos o carpetas visibles en el escritorio y/o en otro apartado del sistema, esto es normal, al finalizar los procedimientos, todo volverá a la normalidad.
      Luego realiza un escaneo online con Kaspersky Security Scan

      Y además, subi el siguiente fichero a Virustotal:
      C:\Users\Akkasha\AppData\Roaming\matrox_drv16.dat

      Nos traes el reporte de OTM, el de KSS, y el enlace del escaneo de Virustotal.
      Y nos comentas cómo funciona el ordenador
      Saludos

    7. #17
      Usuario Avatar de Takkhisis
      Registrado
      ago 2011
      Ubicación
      España
      Mensajes
      25

      Re: TrojanDownloader:Win32/Adload.DA

      Buenas tardes!

      a ver si esta es la definitiva de verdad ^_^

      ***editado*** no puedo abrir el Kaspersky, le doy incluso con botón derecho y abrir como administrador, se abre un cuadro y parece que descarga algo, pero al momento se cierra y no sé más de él, he esperado varios minutos (más que nada porque me despisté mirando la tele) y no volvió a salir la ventana. ¿cómo procedo? ****editado****

      Reporte de OTM, ahora pondré el Kaspersky y el virustotal

      All processes killed
      ========== FILES ==========
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\zh_TW folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\zh_CN folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\vi folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\ur folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\uk folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\tr folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\th folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\sv folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\sr folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\sl folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\sk folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\ru folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\ro folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\pt_PT folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\pt_BR folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\pl folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\nl folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\nb folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\ko folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\ja folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\it folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\id folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\hu folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\hr folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\he folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\fr folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\fi folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\et folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\es folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\en_GB folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\en folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\el folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\de folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\da folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\cs folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\ca folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\bg folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\be folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales\ar folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\_locales folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\skin\images\icons folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\skin\images folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\skin\css folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\skin folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\scripts folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0 folder moved successfully.
      C:\Users\Akkasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda folder moved successfully.
      C:\Users\Akkasha\AppData\Roaming\Leadertech\PowerRegister\PowerReg.dat deleted successfully.
      C:\Users\Akkasha\AppData\Roaming\Leadertech\PowerRegister folder deleted successfully.
      C:\Users\Akkasha\AppData\Roaming\Leadertech folder deleted successfully.
      C:\Program Files (x86)\Yontoo folder deleted successfully.
      C:\ProgramData\ezsidmv.dat moved successfully.
      ========== COMMANDS ==========
      C:\Windows\System32\drivers\etc\Hosts moved successfully.
      HOSTS file reset successfully

      [EMPTYTEMP]

      User: Akkasha
      ->Temp folder emptied: 203634623 bytes
      ->Temporary Internet Files folder emptied: 19566100 bytes
      ->Java cache emptied: 1573557 bytes
      ->FireFox cache emptied: 184550872 bytes
      ->Google Chrome cache emptied: 0 bytes
      ->Flash cache emptied: 3468 bytes

      User: All Users

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: Invitado
      ->Temp folder emptied: 24051400 bytes
      ->Temporary Internet Files folder emptied: 20835893 bytes
      ->Java cache emptied: 463 bytes
      ->FireFox cache emptied: 312599780 bytes
      ->Flash cache emptied: 1296 bytes

      User: Public
      ->Temp folder emptied: 0 bytes

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 6554957 bytes
      %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 82415 bytes
      %systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33849 bytes
      %systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 755 bytes
      %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 352197 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 738,00 mb


      OTM by OldTimer - Version 3.1.21.0 log created on 01222013_141749
      Última edición por Takkhisis fecha: 22/01/13 a las 10:01:40

    8. #18
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: TrojanDownloader:Win32/Adload.DA

      Hola,

      No pasa nada
      En su lugar, realiza el escaneo con Bitdefender QuickScan de acuerdo a su Manual, y nos pegas el reporte

      Saludos

    9. #19
      Usuario Avatar de Takkhisis
      Registrado
      ago 2011
      Ubicación
      España
      Mensajes
      25

      Re: TrojanDownloader:Win32/Adload.DA

      Me dice que no se ha encontrado ninguna infección activa en mi pc... Pero el aviso de Windows sigue ahí, y lo peor es que hasta ahora ha tenido razón xD
      Voy a hacer lo último que me indicabas.

    10. #20
      Usuario Avatar de Raudron
      Registrado
      sep 2012
      Ubicación
      El Mundo
      Mensajes
      1.467

      Re: TrojanDownloader:Win32/Adload.DA

      Hola,

      Presiona View Report, así vemos el reporte, que tiene bastante información

      Para subir el archivo a VirusTotal, es posible que tengas que activar Ver archivos ocultos.

      Nos comentas.
      Saludos