• Registrarse
  • Iniciar sesión


  • Resultados 1 al 3 de 3

    Problema con EasyLifeApp search

    Buenas, llevo desde anoche con problemas con esto, creo que me entro al entrar en una pagina de descargas. He restaurado el ordenador de fábrica dos veces hoy pero no se elimina, el caso es ...

    1. #1
      Usuario Avatar de domi91
      Registrado
      abr 2010
      Ubicación
      elche
      Mensajes
      3

      Malware Problema con EasyLifeApp search

      Buenas, llevo desde anoche con problemas con esto, creo que me entro al entrar en una pagina de descargas. He restaurado el ordenador de fábrica dos veces hoy pero no se elimina, el caso es que cuando instalo chrome no esta pero aparece al iniciar sesion en chrome. Esto supongo que será porque se encuentra en alguna extensión o algo asi... Pero en la pantalla de extensiones solo me sale:
      -Addblock plus
      -Extension google chrome to phone
      -Google mail checker
      -Google translate
      -Visualizador de archivos PDF/PowerPoint de google docs

      Por lo que pienso que estos ya los tendria... puede ser que esté alojado en alguna de estas extensiones?

      He probado a hacer lo que pone en el siguiente hilo:
      http://www.forospyware.com/t453750.html

      Cuando utilizo el AT-Destroyes no se me abre la pestaña de easylifeapp pero es porque se ve que cierra sesion en chrome, al iniciar vuelve a salir.

      Adjunto los logs de AT-Destroyer y AdwCleaner por si se puede sacar algo de ahi.

      AT-Destroyer

      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 19:25:09 \\\ 29/03/2013
      AT-Destroyer 2.1 By Infospyware ---> www.infospyware.com
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:8.0.7600.16385
      Google Chrome:26.0.1410.43
      Privilegios: Domingo - Administrador
      Modo Actual: Modo Seguro.
      Nombre del pc: DOMINGO-PC
      Información del sistema operativo:X64-WIN_7-
      nombre del usuario:Domingo
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<



      >>>>>> Archivos <<<<<<



      >>>>>> Registro <<<<<<

      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      >>>>>> Heurística <<<<<<

      C:\Windows\LP (Unclassified Malware)


      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==C:\Windows\SysWOW64\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_Page_URL==http://homepage.acer.com/rdr.aspx?b=ACAW&l=0c0a&m=aspire_5741g&r=27360313i415l04g4z115v4692723p


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==http://homepage.acer.com/rdr.aspx?b=ACAW&l=0c0a&m=aspire_5741g&r=27360313i415l04g4z115v4692723p


      HKEY_USERS\S-1-5-21-4275086793-1910814382-1711027586-1001\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==http://homepage.acer.com/rdr.aspx?b=ACAW&l=0c0a&m=aspire_5741g&r=27360313i415l04g4z115v4692723p


      >>>>>> Extensiones Firefox <<<<<<



      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\16
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmgmfbijldhdncjcipeocgkgbjhaecfp
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlkcpgcnbhfhpdeooockfaincfkjjj
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcegpfdgcoclcdfkjahiimlikdpnina
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco
      C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

      ======== Listado ===========

      [29/03/2013 17:21] [29/03/2013 17:21] [DI] C:\Users\Domingo\AppData\Roaming\Google
      [29/03/2013 17:13] [29/03/2013 17:13] [DI] C:\Users\Domingo\AppData\Roaming\Identities
      [29/03/2013 17:14] [29/03/2013 17:14] [DI] C:\Users\Domingo\AppData\Roaming\Intel Corporation
      [29/03/2013 17:13] [29/03/2013 17:13] [DI] C:\Users\Domingo\AppData\Roaming\Macromedia
      [29/03/2013 17:35] [29/03/2013 17:35] [DI] C:\Users\Domingo\AppData\Roaming\Malwarebytes
      [ 14/07/2009 9:44] [ 29/03/2013 17:11] [DI] C:\Users\Domingo\AppData\Roaming\Media Center Programs
      [29/03/2013 17:25] [29/03/2013 17:11] [SDI] C:\Users\Domingo\AppData\Roaming\Microsoft
      [21/04/2010 12:47] [21/04/2010 12:40] [D] C:\Program Files (x86)\Acer GameZone
      [29/03/2013 17:13] [21/04/2010 13:03] [D] C:\Program Files (x86)\Adobe
      [29/03/2013 17:07] [29/03/2013 17:07] [D] C:\Program Files (x86)\AGEIA Technologies
      [29/03/2013 17:24] [14/07/2009 5:20] [D] C:\Program Files (x86)\Common Files
      [29/03/2013 17:23] [29/03/2013 17:21] [D] C:\Program Files (x86)\CyberLink
      C:\Program Files (x86)\desktop.ini [HSA] 174 bytes( 0)
      [21/04/2010 13:00] [21/04/2010 12:59] [D] C:\Program Files (x86)\EgisTec IPS
      [21/04/2010 12:59] [21/04/2010 12:59] [D] C:\Program Files (x86)\EgisTec MyWinLocker
      [21/04/2010 12:59] [21/04/2010 12:59] [D] C:\Program Files (x86)\EgisTec MyWinLockerSuite
      [21/04/2010 13:00] [21/04/2010 13:00] [D] C:\Program Files (x86)\EgisTec Shredder
      [29/03/2013 18:50] [29/03/2013 18:50] [D] C:\Program Files (x86)\ESET
      [21/04/2010 12:53] [21/04/2010 12:53] [D] C:\Program Files (x86)\eSobi
      [29/03/2013 17:23] [21/04/2010 12:59] [D] C:\Program Files (x86)\Google
      [29/03/2013 17:23] [21/04/2010 12:34] [HD] C:\Program Files (x86)\InstallShield Installation Information
      [21/04/2010 12:38] [21/04/2010 12:34] [D] C:\Program Files (x86)\Intel
      [30/03/2013 1:55] [14/07/2009 5:20] [D] C:\Program Files (x86)\Internet Explorer
      [29/03/2013 17:15] [29/03/2013 17:15] [D] C:\Program Files (x86)\Launch Manager
      [29/03/2013 17:35] [29/03/2013 17:34] [D] C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [21/04/2010 12:55] [21/04/2010 12:55] [D] C:\Program Files (x86)\McAfee
      [21/04/2010 12:55] [21/04/2010 12:55] [D] C:\Program Files (x86)\mcafee.com
      [29/03/2013 17:25] [29/03/2013 17:25] [D] C:\Program Files (x86)\Microsoft
      [21/04/2010 12:49] [21/04/2010 12:48] [D] C:\Program Files (x86)\Microsoft Office
      [21/04/2010 12:51] [21/04/2010 12:51] [D] C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
      [21/04/2010 12:53] [21/04/2010 12:53] [D] C:\Program Files (x86)\Microsoft Silverlight
      [29/03/2013 17:26] [29/03/2013 17:26] [D] C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      [29/03/2013 17:30] [21/04/2010 12:49] [D] C:\Program Files (x86)\Microsoft Works
      [21/04/2010 12:49] [21/04/2010 12:49] [D] C:\Program Files (x86)\Microsoft.NET
      [14/07/2009 7:32] [14/07/2009 7:32] [D] C:\Program Files (x86)\MSBuild
      [21/04/2010 13:05] [21/04/2010 13:01] [D] C:\Program Files (x86)\NewTech Infosystems
      [29/03/2013 17:06] [29/03/2013 17:06] [D] C:\Program Files (x86)\NVIDIA Corporation
      [29/03/2013 17:13] [29/03/2013 17:13] [D] C:\Program Files (x86)\OEM
      [21/04/2010 12:39] [21/04/2010 12:35] [D] C:\Program Files (x86)\Realtek
      [14/07/2009 7:32] [14/07/2009 7:32] [D] C:\Program Files (x86)\Reference Assemblies
      [21/04/2010 13:03] [21/04/2010 13:03] [D] C:\Program Files (x86)\Symantec
      [21/04/2010 12:40] [21/04/2010 12:39] [HD] C:\Program Files (x86)\Temp
      [14/07/2009 6:57] [14/07/2009 6:57] [HD] C:\Program Files (x86)\Uninstall Information
      [30/03/2013 1:55] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Defender
      [29/03/2013 17:27] [29/03/2013 17:24] [D] C:\Program Files (x86)\Windows Live
      [29/03/2013 17:25] [29/03/2013 17:25] [D] C:\Program Files (x86)\Windows Live SkyDrive
      [30/03/2013 1:55] [14/07/2009 5:20] [D] C:\Program Files (x86)\Windows Mail
      [30/03/2013 1:55] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Media Player
      [14/07/2009 7:32] [14/07/2009 5:20] [D] C:\Program Files (x86)\Windows NT
      [30/03/2013 1:55] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Photo Viewer
      [14/07/2009 7:32] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Portable Devices
      [30/03/2013 1:55] [14/07/2009 7:32] [D] C:\Program Files (x86)\Windows Sidebar
      [21/04/2010 13:04] [21/04/2010 13:04] [DI] C:\ProgramData\Adobe
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Application Data
      [21/04/2010 13:05] [21/04/2010 13:05] [DI] C:\ProgramData\BackupManager
      [29/03/2013 17:10] [29/03/2013 17:10] [HSDLI] C:\ProgramData\Datos de programa
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Desktop
      [29/03/2013 17:10] [29/03/2013 17:10] [HSDLI] C:\ProgramData\Documentos
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Documents
      [29/03/2013 17:14] [21/04/2010 12:59] [DI] C:\ProgramData\EgisTec IPS
      [29/03/2013 17:10] [29/03/2013 17:10] [HSDLI] C:\ProgramData\Escritorio
      [21/04/2010 12:53] [21/04/2010 12:53] [DI] C:\ProgramData\eSobi
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Favorites
      [29/03/2013 17:10] [29/03/2013 17:10] [HSDLI] C:\ProgramData\Favoritos
      C:\ProgramData\FullRemove.exe [AI] 128 KB 0
      [21/04/2010 12:59] [21/04/2010 12:59] [DI] C:\ProgramData\Google
      [29/03/2013 17:35] [29/03/2013 17:35] [DI] C:\ProgramData\Malwarebytes
      [29/03/2013 17:12] [21/04/2010 12:55] [DI] C:\ProgramData\McAfee
      [29/03/2013 17:10] [29/03/2013 17:10] [HSDLI] C:\ProgramData\Menú Inicio
      [29/03/2013 17:30] [14/07/2009 5:20] [SDI] C:\ProgramData\Microsoft
      [29/03/2013 17:12] [21/04/2010 12:48] [DI] C:\ProgramData\Microsoft Help
      [29/03/2013 17:14] [29/03/2013 17:14] [DI] C:\ProgramData\NVIDIA
      [21/04/2010 12:47] [21/04/2010 12:47] [DI] C:\ProgramData\OberonGameConsole
      [29/03/2013 17:20] [21/04/2010 13:03] [DI] C:\ProgramData\OEM
      [21/04/2010 12:59] [21/04/2010 12:59] [DI] C:\ProgramData\Partner
      [29/03/2013 17:10] [29/03/2013 17:10] [HSDLI] C:\ProgramData\Plantillas
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Start Menu
      [21/04/2010 13:03] [21/04/2010 13:03] [DI] C:\ProgramData\Symantec
      [29/03/2013 17:21] [29/03/2013 17:21] [DI] C:\ProgramData\Temp
      [14/07/2009 7:08] [14/07/2009 7:08] [HSDLI] C:\ProgramData\Templates

      ==================== EOF ==================


      AdwCleaner

      # AdwCleaner v2.115 - Fichero creado el 29/03/2013 a 19:31:48
      # Actualizado el 17/03/2013 por Xplode
      # Sistema operativo : Windows 7 Home Premium (64 bits)
      # Usuario : Domingo - DOMINGO-PC
      # Modo de inicio : Modo seguro con funciones de red
      # Ejecutado desde : C:\Users\Domingo\Desktop\adwcleaner.exe
      # Opción [Supresión]


      ***** [Servicios] *****

      Parado & Suprimido : Partner Service

      ***** [Ficheros / Carpetas] *****

      Fichero Suprimido : C:\Users\Public\Desktop\eBay.lnk
      Suprimido al reiniciar : C:\ProgramData\Partner
      Suprimido al reiniciar : C:\Users\Domingo\AppData\Local\Temp\boost_interprocess

      ***** [Registro] *****

      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
      Clave Supprimida : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
      Clave Supprimida : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}

      ***** [Navegadores] *****

      -\\ Internet Explorer v8.0.7600.16385

      [OK] El registro no contiene ninguna entrada ilegítima.

      -\\ Google Chrome v26.0.1410.43

      Fichero : C:\Users\Domingo\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      *************************

      AdwCleaner[S1].txt - [2063 octets] - [29/03/2013 19:31:48]

      ########## EOF - C:\AdwCleaner[S1].txt - [2123 octets] ##########




      Alguien sabe que puedo hacer para quitar eso? Internet y tal funciona pero es molesto saber que tienes eso ahí... Valdría con desinstalar las extensiones, borrar los archivos y volver a instalarlas?

      Muchas gracias por la ayuda.

    2. #2
      Usuario Avatar de domi91
      Registrado
      abr 2010
      Ubicación
      elche
      Mensajes
      3

      Re: Problema con EasyLifeApp search

      A y el Malwarebytes y el nod32 no me saca nada. Este es el log del nod32:

      [email protected] as downloader log:
      all ok

    3. #3
      Usuario Avatar de domi91
      Registrado
      abr 2010
      Ubicación
      elche
      Mensajes
      3

      Re: Problema con EasyLifeApp search

      Alguien sabe como quitar esto? He borrado las extensiones y tal y me sigue saliendo...