• Registrarse
  • Iniciar sesión


  • Página 3 de 3 PrimeroPrimero 123
    Resultados 21 al 25 de 25

    posible virus

    Hola : Realiza lo siguiente: Paso 1.-: Desinstala con Revo Unistaller seleccionando su Modo avanzado <<< Ver Manual, lo siguiente: McAfee Security Scan Norton PC Checkup 3.0 Paso 2.-: Ejecutar OTL.exe Pegue el siguiente script ...

    1. #21
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: posible virus

      Hola :


      Realiza lo siguiente:


      Paso 1.-: Desinstala con Revo Unistaller seleccionando su Modo avanzado <<< Ver Manual, lo siguiente:

      • McAfee Security Scan
      • Norton PC Checkup 3.0




      Paso 2.-: Ejecutar OTL.exe


      • Pegue el siguiente script bajo la casilla Análisis Personalizados/Codigo de Reparación:
        • NOTA: No copiar la palabra código.

        Código:
        :OTL
        IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://searchfunmoods.com/results.php?f=4&q={searchTerms}&a=as1212&chnl=as1212&cd=2XzuyEtN2Y1L1QzutDtDtC0FtC0FzzyB0FyB0BtAzyzy0E0AtN0D0Tzu0CtAtAzytN1L2XzutBtFtBtFtDtFtAyEyE&cr=1957751475
        IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://searchfunmoods.com/results.php?f=4&q={searchTerms}&a=as1212&chnl=as1212&cd=2XzuyEtN2Y1L1QzutDtDtC0FtC0FzzyB0FyB0BtAzyzy0E0AtN0D0Tzu0CtAtAzytN1L2XzutBtFtBtFtDtFtAyEyE&cr=1957751475
        IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://searchfunmoods.com/results.php?f=4&q={searchTerms}&a=as1212&chnl=as1212&cd=2XzuyEtN2Y1L1QzutDtDtC0FtC0FzzyB0FyB0BtAzyzy0E0AtN0D0Tzu0CtAtAzytN1L2XzutBtFtBtFtDtFtAyEyE&cr=1957751475
        IE - HKCU\..\SearchScopes\{8385231D-2A4C-430F-9534-25F59C9C5B86}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3225826
        IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
        [2013/02/15 16:44:55 | 000,000,000 | ---D | M] (Panda Security Toolbar) -- C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}
        O2 - BHO: (no name) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - No CLSID value found.
        O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
        O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_31)
        O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_31)
        O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_31)
        O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/ge...sh/swflash.cab (Shockwave Flash Object)
        O18:64bit: - Protocol\Handler\livecall - No CLSID value found
        O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
        O18:64bit: - Protocol\Handler\msnim - No CLSID value found
        O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
        O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
        O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
        O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
        [2013/02/16 13:39:50 | 000,000,000 | ---D | C] -- C:\Users\win\AppData\Roaming\Ovep
        [2013/02/15 09:00:04 | 000,000,000 | ---D | C] -- C:\Users\win\AppData\Roaming\Ocdor
        [2012/12/31 10:59:02 | 000,000,000 | ---D | M] -- C:\Users\win\AppData\Roaming\cYo
        [2013/02/16 16:12:50 | 000,000,000 | ---D | M] -- C:\Users\win\AppData\Roaming\Maqoo
        [2013/02/16 13:46:26 | 000,000,000 | ---D | M] -- C:\Users\win\AppData\Roaming\Xeaki
        [2013/02/16 16:13:42 | 000,000,000 | ---D | M] -- C:\Users\win\AppData\Roaming\Ywiru
        [2013/02/16 16:13:42 | 000,000,000 | ---D | M] -- C:\Users\win\AppData\Roaming\Zov
        @Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:A1EDB939
        
        :files
        ipconfig /flushdns /c
        ipconfig /renew /c
        
        :commands
        [resethosts]
        [emptyflash]
        [emptytemp]
        [emptyjava]
        [Reboot]
      • Luego haga clic en el botón Reparar en la parte superior.
      • Deje que el programa se ejecute sin trabas, reinicie cuando lo pida hacer.
      • Al reiniciar se creará un reporte por defecto en C:\_OTL\MovedFiles, copie y pegue ese log en la próxima respuesta.



      Paso 3.-: Descarga >> SecurityCheck.exe en el escritorio.

      • Haz doble clic en la herramienta. (Si usas Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Pulsa una tecla y espera a que se analice el equipo.
      • Cuando termine el proceso se abrirá un informe.


      Copia el informe en tu próxima respuesta.

      Nos comentas los resultados.

      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    2. #22
      Usuario Avatar de rusty s
      Registrado
      feb 2013
      Ubicación
      canada
      Mensajes
      14

      Re: posible virus

      Hola hola,
      eh aqui el reporte de OTL y securitycheck:


      OTL
      -------

      All processes killed
      ========== OTL ==========
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8385231D-2A4C-430F-9534-25F59C9C5B86}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8385231D-2A4C-430F-9534-25F59C9C5B86}\ not found.
      HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\Setup\ada folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\Setup folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\components folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\options folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\weatherbutton\panels\images folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\weatherbutton\panels folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\weatherbutton\icons folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\weatherbutton folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\uwa folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\panels\js folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\panels\images folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\panels\default\scripts folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\panels\default\images folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\panels\default\css folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\panels\default folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\panels\css folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib\panels folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin\lib folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\skin folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\locale\toolbar folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\locale\lib folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\locale folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\data\search folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\data folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.ToolbarCleaner folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\skin\js folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\skin\images folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\skin\css folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\skin folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\panel\js folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\panel\images folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\panel\css folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\panel folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\js folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\images folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4\css folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.Coupons_v4 folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets\net.vmn.www.BrowserDataCleaner folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\widgets folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\newtab\images folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\newtab folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\modules folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content\lib folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome\content folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\chrome folder moved successfully.
      C:\Users\win\AppData\Roaming\mozilla\Firefox\Profiles\aps6lwm5.default-1358595843701\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} folder moved successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}\ not found.
      Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
      Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
      Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
      Starting removal of ActiveX control {D27CDB6E-AE6D-11CF-96B8-444553540000}
      C:\Windows\Downloaded Program Files\swflash64.inf moved successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
      File Protocol\Handler\livecall - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
      File Protocol\Handler\ms-help - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
      File Protocol\Handler\msnim - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
      File Protocol\Handler\wlmailhtml - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
      File Protocol\Handler\wlpg - No CLSID value found not found.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
      Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
      C:\Users\win\AppData\Roaming\Ovep folder moved successfully.
      C:\Users\win\AppData\Roaming\Ocdor folder moved successfully.
      C:\Users\win\AppData\Roaming\cYo\ComicRack\Scripts\.Pending folder moved successfully.
      C:\Users\win\AppData\Roaming\cYo\ComicRack\Scripts folder moved successfully.
      C:\Users\win\AppData\Roaming\cYo\ComicRack folder moved successfully.
      C:\Users\win\AppData\Roaming\cYo folder moved successfully.
      C:\Users\win\AppData\Roaming\Maqoo folder moved successfully.
      C:\Users\win\AppData\Roaming\Xeaki folder moved successfully.
      C:\Users\win\AppData\Roaming\Ywiru folder moved successfully.
      Folder C:\Users\win\AppData\Roaming\Zov\ not found.
      ADS C:\ProgramData\TEMP:A1EDB939 deleted successfully.
      ========== FILES ==========
      < ipconfig /flushdns /c >
      Windows IP Configuration
      Successfully flushed the DNS Resolver Cache.
      C:\Users\win\Desktop\cmd.bat deleted successfully.
      C:\Users\win\Desktop\cmd.txt deleted successfully.
      < ipconfig /renew /c >
      Windows IP Configuration
      No operation can be performed on Wireless Network Connection 3 while it has its media disconnected.
      No operation can be performed on Local Area Connection while it has its media disconnected.
      Wireless LAN adapter Wireless Network Connection 3:
      Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix . :
      Wireless LAN adapter Wireless Network Connection 2:
      Connection-specific DNS Suffix . :
      Link-local IPv6 Address . . . . . : fe80::79c5:d514:680:865e%13
      IPv4 Address. . . . . . . . . . . : 192.168.1.85
      Subnet Mask . . . . . . . . . . . : 255.255.255.0
      Default Gateway . . . . . . . . . : 192.168.1.254
      Ethernet adapter Local Area Connection:
      Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix . :
      Tunnel adapter isatap.{31544D5F-8763-43F0-A173-53DA3C6C5B69}:
      Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix . :
      Tunnel adapter Teredo Tunneling Pseudo-Interface:
      Connection-specific DNS Suffix . :
      IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:3892:c55:cd9d:73d7
      Link-local IPv6 Address . . . . . : fe80::3892:c55:cd9d:73d7%12
      Default Gateway . . . . . . . . . : ::
      Tunnel adapter Local Area Connection* 12:
      Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix . :
      Tunnel adapter isatap.{0E529E4A-B616-4617-868D-D49205320A6C}:
      Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix . :
      Tunnel adapter isatap.{E03FA396-69F5-47A7-9D2A-BCF46BC3B7CF}:
      Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix . :
      C:\Users\win\Desktop\cmd.bat deleted successfully.
      C:\Users\win\Desktop\cmd.txt deleted successfully.
      ========== COMMANDS ==========
      C:\Windows\System32\drivers\etc\Hosts moved successfully.
      HOSTS file reset successfully

      [EMPTYFLASH]

      User: All Users

      User: Default
      ->Flash cache emptied: 56466 bytes

      User: Default User
      ->Flash cache emptied: 0 bytes

      User: Guest
      ->Flash cache emptied: 56466 bytes

      User: Public

      User: win
      ->Flash cache emptied: 63321 bytes

      Total Flash Files Cleaned = 0.00 mb


      [EMPTYTEMP]

      User: All Users

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 67 bytes
      ->Flash cache emptied: 0 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: Guest
      ->Temp folder emptied: 305334 bytes
      ->Temporary Internet Files folder emptied: 49389 bytes
      ->Flash cache emptied: 0 bytes

      User: Public
      ->Temp folder emptied: 0 bytes

      User: win
      ->Temp folder emptied: 104065578 bytes
      ->Temporary Internet Files folder emptied: 223087211 bytes
      ->Java cache emptied: 0 bytes
      ->FireFox cache emptied: 38797870 bytes
      ->Google Chrome cache emptied: 1905008 bytes
      ->Flash cache emptied: 0 bytes

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 3261143 bytes
      %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 36045600 bytes
      RecycleBin emptied: 1146706 bytes

      Total Files Cleaned = 390.00 mb


      [EMPTYJAVA]

      User: All Users

      User: Default

      User: Default User

      User: Guest

      User: Public

      User: win
      ->Java cache emptied: 0 bytes

      Total Java Files Cleaned = 0.00 mb


      OTL by OldTimer - Version 3.2.69.0 log created on 03032013_171533

      Files\Folders moved on Reboot...
      C:\Users\win\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...

      ------------

      SECURITY CHECK:

      ------------

      Results of screen317's Security Check version 0.99.60
      Windows 7 Service Pack 1 x64 (UAC is enabled)
      Internet Explorer 9
      ``````````````Antivirus/Firewall Check:``````````````
      Windows Firewall Enabled!
      avast! Antivirus
      Antivirus up to date! (On Access scanning disabled!)
      `````````Anti-malware/Other Utilities Check:`````````
      Malwarebytes Anti-Malware version 1.70.0.1100
      Java(TM) 6 Update 31
      Java version out of Date!
      Adobe Flash Player 11.6.602.171
      Adobe Reader 10.1.4 Adobe Reader out of Date!
      Mozilla Firefox (19.0)
      Google Chrome 24.0.1312.57
      Google Chrome 25.0.1364.97
      ````````Process Check: objlist.exe by Laurent````````
      Malwarebytes Anti-Malware mbamservice.exe
      Malwarebytes Anti-Malware mbamgui.exe
      Malwarebytes' Anti-Malware mbamscheduler.exe
      AVAST Software Avast AvastSvc.exe
      AVAST Software Avast AvastUI.exe
      `````````````````System Health check`````````````````
      Total Fragmentation on Drive C: 1%
      ````````````````````End of Log``````````````````````

      -----

      Probare la computadora a ver como corre ahora!
      les comento cualquier detalle
      Saludos!

    3. #23
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: posible virus

      Hola:


      Desinstala con Revo Unistaller seleccionando su Modo avanzado <<< Ver Manual, lo siguiente:

      • Java(TM) 6 Update 31
        Adobe Reader 10.1.4




      Y luego de reiniciar descargas y ejecutas sus versiones actualizadas:

      Descarga gratuita de software de Java



      Adobe - Descarga de Adobe Reader - Todas las versiones


      Nos comentas como sigue todo.


      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #24
      Usuario Avatar de rusty s
      Registrado
      feb 2013
      Ubicación
      canada
      Mensajes
      14

      Re: posible virus

      Hola! No respondi para probarla bien
      Ah mejorado, al menos ya esta limpia de malwares y ads...etc
      apenas van dos dias que no se traba o tenga que apagarla manualmente,
      y los videos han jalado bien ultimamente, pero no la eh probado del todo o al maximo
      lo malo es que me borro las licencias de autodesk y no los eh podido re instalar por alguna razon, o los keygen no
      funcionan bien.

      Cualquier detalle lo comento o si ya se soluciono el problema.

      Saludos

    5. #25
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: posible virus

      Hola:


      Con los programas piratas y los Keygenes aquí no vamos a ayudarte,


      Ya que son la puerta de entrada para otros problemas que entran a tu equipo.


      Nos comentas si se han resuelto los problema por el cual iniciaste este tema, para darlo como solucionado.


      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 3 de 3 PrimeroPrimero 123