Hola amigos, hoy por estar instalando Babylon translator y estar buscando serials en paginas locas, me infecte de cuanta porqueria no se imaginan...
Ahora cada ves que abro el Internet explorer me abre esta maldita pagina: http://www.iupdatepage.com/ y me pide bajar algo, y siempre se la cierro..



He corrido Ewido online, me detecto 3 trojanos..y otras cosas, las elimino casi todas parece, algunas quedaron pero no se, me envio el mensaje de que todos los threats no habian podido ser eliminados...luego corri el Bitdefeder y tambien me detecto varias cosas..

Aqui esta my Log file ultimo con Ad-Aware..


Ad-Aware SE Build 1.06r1
Logfile Created on:den 10 oktober 2006 15:35:47
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R125 06.10.2006
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):13 total references
Tracking Cookie(TAC index:3):3 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Search for low-risk threats
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


2006-10-10 15:35:47 - Scan started. (Smart mode)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 476
ThreadCreationTime : 2006-10-10 13:04:46
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 544
ThreadCreationTime : 2006-10-10 13:04:48
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 568
ThreadCreationTime : 2006-10-10 13:04:49
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 612
ThreadCreationTime : 2006-10-10 13:04:49
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Operativsystemet Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Tjänst- och styrenhetsprogram
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Med ensamrätt.
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 624
ThreadCreationTime : 2006-10-10 13:04:50
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 984
ThreadCreationTime : 2006-10-10 13:04:51
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1044
ThreadCreationTime : 2006-10-10 13:04:51
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1136
ThreadCreationTime : 2006-10-10 13:04:52
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1184
ThreadCreationTime : 2006-10-10 13:04:52
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1292
ThreadCreationTime : 2006-10-10 13:04:53
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1628
ThreadCreationTime : 2006-10-10 13:05:04
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1928
ThreadCreationTime : 2006-10-10 13:05:14
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Operativsystemet Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Utforskaren
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Med ensamrätt.
OriginalFilename : EXPLORER.EXE

#:13 [guard.exe]
FilePath : C:\Program\Grisoft\AVG Anti-Spyware 7.5\
ProcessID : 228
ThreadCreationTime : 2006-10-10 13:05:22
BasePriority : Normal
FileVersion : 7, 5, 0, 47
ProductVersion : 7, 5, 0, 47
ProductName : AVG Anti-Spyware
CompanyName : Anti-Malware Development a.s.
FileDescription : AVG Anti-Spyware guard
InternalName : AVG Anti-Spyware guard
LegalCopyright : Copyright © 2006 Anti-Malware Development a.s.
OriginalFilename : guard.exe

#:14 [avgamsvr.exe]
FilePath : C:\Program\Grisoft\AVGFRE~1\
ProcessID : 280
ThreadCreationTime : 2006-10-10 13:05:25
BasePriority : Normal
FileVersion : 7,1,0,365
ProductVersion : 7.1.0.365
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG Alert Manager
InternalName : avgamsvr
LegalCopyright : Copyright © 2005, GRISOFT, s.r.o.
OriginalFilename : avgamsvr.EXE

#:15 [avgupsvc.exe]
FilePath : C:\Program\Grisoft\AVGFRE~1\
ProcessID : 388
ThreadCreationTime : 2006-10-10 13:05:27
BasePriority : Normal
FileVersion : 7,1,0,349
ProductVersion : 7.1.0.349
ProductName : AVG 7.0 Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG Update Service
InternalName : avgupsvc
LegalCopyright : Copyright © 2005, GRISOFT, s.r.o.
OriginalFilename : avgupdsvc.EXE

#:16 [ishost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 404
ThreadCreationTime : 2006-10-10 13:05:29
BasePriority : Normal


#:17 [avgemc.exe]
FilePath : C:\Program\Grisoft\AVGFRE~1\
ProcessID : 412
ThreadCreationTime : 2006-10-10 13:05:29
BasePriority : Normal
FileVersion : 7,1,0,400
ProductVersion : 7.1.0.400
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG E-Mail Scanner
InternalName : avgemc
LegalCopyright : Copyright © 2006, GRISOFT, s.r.o.
OriginalFilename : avgemc.exe

#:18 [issearch.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 492
ThreadCreationTime : 2006-10-10 13:05:30
BasePriority : Normal


#:19 [mouse_2k.exe]
FilePath : C:\Program\Creative\Mouse Optical\
ProcessID : 504
ThreadCreationTime : 2006-10-10 13:05:30
BasePriority : Normal
FileVersion : 2.3
ProductVersion : 2.3
ProductName : Creative Mouse Driver
FileDescription : Creative Mouse Driver
InternalName : MouseDrv
LegalCopyright : Copyright © Creative Technology Ltd. 2003
OriginalFilename : MouseDrv.EXE

#:20 [avgcc.exe]
FilePath : C:\Program\Grisoft\AVGFRE~1\
ProcessID : 528
ThreadCreationTime : 2006-10-10 13:05:31
BasePriority : Normal
FileVersion : 7,1,0,406
ProductVersion : 7.1.0.406
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG Control Center
InternalName : AvgCC
LegalCopyright : Copyright © 2006, GRISOFT, s.r.o.
OriginalFilename : AvgCC.EXE

#:21 [lvcomsx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 636
ThreadCreationTime : 2006-10-10 13:05:32
BasePriority : Normal
FileVersion : 8.4.7.1036
ProductVersion : 8.4.7.1036
ProductName : Logitech QuickCam
CompanyName : Logitech Inc.
FileDescription : LVCom Server
InternalName : LVComS.exe
LegalCopyright : © 1996-2005 Logitech. All rights reserved.
OriginalFilename : LVComS.exe

#:22 [ismini.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 644
ThreadCreationTime : 2006-10-10 13:05:32
BasePriority : Normal


#:23 [wlservice.exe]
FilePath : C:\Program\Belkin\Belkin Wireless AG Desktop Network Card\Wireless Utility\
ProcessID : 760
ThreadCreationTime : 2006-10-10 13:05:33
BasePriority : Normal


#:24 [logitray.exe]
FilePath : C:\Program\Logitech\Video\
ProcessID : 784
ThreadCreationTime : 2006-10-10 13:05:34
BasePriority : Normal
FileVersion : 8.4.7.1034
ProductVersion : 8.4.7.1034
ProductName : Logitech QuickCam
CompanyName : Logitech Inc.
FileDescription : ImageStudio Tray Application
InternalName : LogiTray.exe
LegalCopyright : © 1996-2005 Logitech. All rights reserved.
OriginalFilename : LogiTray.exe

#:25 [wlancfgag.exe]
FilePath : C:\Program\Belkin\Belkin Wireless AG Desktop Network Card\Wireless Utility\
ProcessID : 796
ThreadCreationTime : 2006-10-10 13:05:35
BasePriority : Normal
FileVersion : 1, 1, 1, 7
ProductVersion : 1, 1, 1, 7
ProductName : Wireless Monitor Application
FileDescription : Wireless Monitor Application
InternalName : WLanCfg
LegalCopyright : Copyright © 2002.08
OriginalFilename : WLanCfg.EXE

#:26 [ituneshelper.exe]
FilePath : C:\Program\iTunes\
ProcessID : 824
ThreadCreationTime : 2006-10-10 13:05:37
BasePriority : Normal
FileVersion : 6.0.5.20
ProductVersion : 6.0.5.20
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iTunesHelper Module
InternalName : iTunesHelper
LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iTunesHelper.exe

#:27 [avgas.exe]
FilePath : C:\Program\Grisoft\AVG Anti-Spyware 7.5\
ProcessID : 956
ThreadCreationTime : 2006-10-10 13:05:41
BasePriority : Normal
FileVersion : 7, 5, 0, 47
ProductVersion : 7, 5, 0, 47
ProductName : AVG Anti-Spyware
CompanyName : Anti-Malware Development a.s.
FileDescription : AVG Anti-Spyware
InternalName : AVG Anti-Spyware
LegalCopyright : Copyright © 2006 Anti-Malware Development a.s.
OriginalFilename : avgas.exe

#:28 [lssrvc.exe]
FilePath : C:\Program\Delade filer\LightScribe\
ProcessID : 964
ThreadCreationTime : 2006-10-10 13:05:42
BasePriority : Normal
FileVersion : 1.4.84.1
ProductName : LightScribe
CompanyName : Hewlett-Packard Company
LegalCopyright : © Copyright 2003-2006 Hewlett-Packard Development Company, LP
OriginalFilename : LSSrvc.exe

#:29 [ctfmon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 684
ThreadCreationTime : 2006-10-10 13:05:42
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE

#:30 [googletoolbarnotifier.exe]
FilePath : C:\Program\Google\GoogleToolbarNotifier\1.0.720.3640\
ProcessID : 1160
ThreadCreationTime : 2006-10-10 13:05:43
BasePriority : Normal
FileVersion : 1, 0, 720, 3640
ProductVersion : 1, 0, 720, 3640
ProductName : GoogleToolbarNotifier
CompanyName : Google Inc.
FileDescription : GoogleToolbarNotifier
LegalCopyright : Copyright © 2005-2006
OriginalFilename : GoogleToolbarNotifier.exe

#:31 [voipbuster.exe]
FilePath : C:\program\voipbuster.com\voipbuster\
ProcessID : 1192
ThreadCreationTime : 2006-10-10 13:05:43
BasePriority : Normal
FileVersion : 2, 12, 384, 0
ProductVersion : 2.12 build 384
ProductName : VoipBuster
CompanyName : VoipBuster
FileDescription : Client to make VoIP calls.
InternalName : VoipBuster.exe
LegalCopyright : © VoipBuster, All rights reserved.
OriginalFilename : VoipBuster.exe

#:32 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1564
ThreadCreationTime : 2006-10-10 13:05:59
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:33 [sxserv101.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1720
ThreadCreationTime : 2006-10-10 13:06:08
BasePriority : Normal


#:34 [wdfmgr.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1856
ThreadCreationTime : 2006-10-10 13:06:11
BasePriority : Normal
FileVersion : 5.2.3790.1230 built by: DNSRV(bld4act)
ProductVersion : 5.2.3790.1230
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows User Mode Driver Manager
InternalName : WdfMgr
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WdfMgr.exe

#:35 [fxsvr2.exe]
FilePath : C:\Program\Logitech\Video\
ProcessID : 2104
ThreadCreationTime : 2006-10-10 13:06:16
BasePriority : Normal
FileVersion : 8.4.7.1034
ProductVersion : 8.4.7.1034
ProductName : Logitech QuickCam
CompanyName : Logitech Inc.
FileDescription : QuickCam Framework Server
InternalName : FxSvr.EXE
LegalCopyright : © 1996-2005 Logitech. All rights reserved.
OriginalFilename : FxSvr.EXE

#:36 [ipodservice.exe]
FilePath : C:\Program\iPod\bin\
ProcessID : 2500
ThreadCreationTime : 2006-10-10 13:06:29
BasePriority : Normal
FileVersion : 6.0.5.20
ProductVersion : 6.0.5.20
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iPodService Module
InternalName : iPodService
LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iPodService.exe

#:37 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2616
ThreadCreationTime : 2006-10-10 13:06:36
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe

#:38 [msnmsgr.exe]
FilePath : C:\Program\MSN Messenger\
ProcessID : 3500
ThreadCreationTime : 2006-10-10 13:08:14
BasePriority : Normal
FileVersion : 8.0.0812.00
ProductVersion : 8.0.0812
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr.exe
LegalCopyright : Copyright © Microsoft Corporation. All rights reserved.
OriginalFilename : msnmsgr.exe

#:39 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 4012
ThreadCreationTime : 2006-10-10 13:09:27
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:40 [iexplore.exe]
FilePath : C:\Program\Internet Explorer\
ProcessID : 3408
ThreadCreationTime : 2006-10-10 13:12:51
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Operativsystemet Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Med ensamrätt.
OriginalFilename : IEXPLORE.EXE

#:41 [easyclea.exe]
FilePath : C:\Program\ToniArts\EasyCleaner\
ProcessID : 3808
ThreadCreationTime : 2006-10-10 13:27:33
BasePriority : Normal
FileVersion : 2.0.6.380
ProductVersion : 2.0.6
ProductName : EasyCleaner
CompanyName : ToniArts
FileDescription : EasyCleaner executable
InternalName : EasyCleaner
LegalCopyright : Totally freeware!
LegalTrademarks : Trademark of ToniArts
OriginalFilename : EasyClea.exe
Comments : Visit http://personal.inet.fi/business/toniarts

#:42 [ad-aware.exe]
FilePath : C:\Program\Lavasoft\Ad-Aware SE Personal\
ProcessID : 2460
ThreadCreationTime : 2006-10-10 13:35:29
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : valentin@fastclick[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:valentin@fastclick.net/
Expires : 2008-10-09 14:35:40
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : valentin@tribalfusion[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:valentin@tribalfusion.com/
Expires : 2038-01-01 02:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : valentin@atdmt[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:valentin@atdmt.com/
Expires : 2011-10-09 02:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 3
Objects found so far: 3



Deep scanning and examining files...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 3

Disk Scan Result for C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 3

Disk Scan Result for C:\DOCUME~1\Valentin\LOKALA~1\Temp\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 3


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 3



MRU List Object Recognized!
Location: : C:\Documents and Settings\Valentin\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-1606980848-1897051121-1801674531-1004\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-1606980848-1897051121-1801674531-1004\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-1606980848-1897051121-1801674531-1004\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant


MRU List Object Recognized!
Location: : S-1-5-21-1606980848-1897051121-1801674531-1004\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-1606980848-1897051121-1801674531-1004\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-1606980848-1897051121-1801674531-1004\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened


MRU List Object Recognized!
Location: : S-1-5-21-1606980848-1897051121-1801674531-1004\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run


MRU List Object Recognized!
Location: : S-1-5-21-1606980848-1897051121-1801674531-1004\software\nico mak computing\winzip\filemenu
Description : winzip recently used archives


MRU List Object Recognized!
Location: : S-1-5-21-1606980848-1897051121-1801674531-1004\software\microsoft\windows media\wmsdk\general
Description : windows media sdk



Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 16

15:38:21 Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:02:34.31
Objects scanned:86220
Objects identified:3
Objects ignored:0
New critical objects:3



---Y aca les va el de Ewido online..

__________________________________________________
ewido anti-spyware online scanner
http://www.ewido.net
__________________________________________________


Name: TrackingCookie.Cpvfeed
Path: C:\Documents and Settings\Valentin\Cookies\valentin@cpvfeed[2].txt
Risk: Medium

Name: TrackingCookie.Mediaplex
Path: C:\Documents and Settings\Valentin\Cookies\valentin@mediaplex[1].txt
Risk: Medium

Name: TrackingCookie.Reliablestats
Path: C:\Documents and Settings\Valentin\Cookies\valentin@stats1.reliablestats[2].txt
Risk: Medium

Name: Adware.Webdir
Path: HKLM\SOFTWARE\Classes\CLSID\{12355F3E-90C3-41AA-8705-15969AF7F210}
Risk: Medium

Name: Adware.Webdir
Path: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{12355F3E-90C3-41AA-8705-15969AF7F210}
Risk: Medium

Name: Trojan.Small
Path: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\\kernel32.dll
Risk: High

Name: Adware.Webdir
Path: HKU\S-1-5-21-1606980848-1897051121-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{12355F3E-90C3-41AA-8705-15969AF7F210}
Risk: Medium

Name: Adware.Softomate
Path: [2304] C:\Program\Delade filer\{28472CC0-0898-1053-0115-04020420002e}\Update.exe
Risk: Medium

Name: Adware.Webdir
Path: [460] C:\WINDOWS\vgraph.dll
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: C:\Documents and Settings\Administratör\Cookies\administratör@ad.yieldmanager[1].txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: C:\Documents and Settings\Administratör\Cookies\administratör@adbrite[2].txt
Risk: Medium

Name: TrackingCookie.Admarketplace
Path: C:\Documents and Settings\Administratör\Cookies\administratör@admarketplace[1].txt
Risk: Medium

Name: TrackingCookie.Revenue
Path: C:\Documents and Settings\Administratör\Cookies\administratör@ads1.revenue[1].txt
Risk: Medium

Name: TrackingCookie.2o7
Path: C:\Documents and Settings\Administratör\Cookies\administratör@amazonehobbies.122.2o7[1].txt
Risk: Medium

Name: TrackingCookie.Burstnet
Path: C:\Documents and Settings\Administratör\Cookies\administratör@burstnet[2].txt
Risk: Medium

Name: TrackingCookie.Com
Path: C:\Documents and Settings\Administratör\Cookies\administratör@com[1].txt
Risk: Medium

Name: TrackingCookie.Esomniture
Path: C:\Documents and Settings\Administratör\Cookies\administratör@e-2dj6wfloamcpklp.stats.esomniture[1].txt
Risk: Medium

Name: TrackingCookie.Esomniture
Path: C:\Documents and Settings\Administratör\Cookies\administratör@e-2dj6wjkocgc5wdo.stats.esomniture[1].txt
Risk: Medium

Name: TrackingCookie.2o7
Path: C:\Documents and Settings\Administratör\Cookies\administratör@microsofteup.112.2o7[1].txt
Risk: Medium

Name: TrackingCookie.2o7
Path: C:\Documents and Settings\Administratör\Cookies\administratör@msnportal.112.2o7[1].txt
Risk: Medium

Name: TrackingCookie.2o7
Path: C:\Documents and Settings\Administratör\Cookies\administratör@partygaming.122.2o7[1].txt
Risk: Medium

Name: TrackingCookie.2o7
Path: C:\Documents and Settings\Administratör\Cookies\administratör@skyauction.122.2o7[1].txt
Risk: Medium

Name: TrackingCookie.Reliablestats
Path: C:\Documents and Settings\Administratör\Cookies\administratör@stats1.reliablestats[2].txt
Risk: Medium

Name: TrackingCookie.2o7
Path: C:\Documents and Settings\Administratör\Cookies\administratör@viamtvcom.112.2o7[1].txt
Risk: Medium

Name: TrackingCookie.2o7
Path: C:\Documents and Settings\Administratör\Cookies\administratör@wrigley.122.2o7[1].txt
Risk: Medium

Name: TrackingCookie.Burstbeacon
Path: C:\Documents and Settings\Administratör\Cookies\administratör@www.burstbeacon[1].txt
Risk: Medium

Name: TrackingCookie.Burstnet
Path: C:\Documents and Settings\Administratör\Cookies\administratör@www.burstnet[1].txt
Risk: Medium

Name: TrackingCookie.Res99
Path: C:\Documents and Settings\Administratör\Cookies\administratör@www.res99[1].txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: C:\Documents and Settings\Loli\Cookies\loli@ad.yieldmanager[1].txt
Risk: Medium

Name: TrackingCookie.Com
Path: C:\Documents and Settings\Loli\Cookies\loli@com[1].txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: C:\Documents and Settings\Loli\Cookies\loli@tacoda[1].txt
Risk: Medium

Name: TrackingCookie.Yadro
Path: C:\Documents and Settings\Loli\Cookies\loli@yadro[1].txt
Risk: Medium

Name: Adware.Softomate
Path: C:\Program\Delade filer\{28472CC0-0898-1053-0115-04020420002e}\__delete_on_reboot__U_p_d_a_t_e_._e_x_e_
Risk: Medium

Name: Adware.Generic
Path: C:\Program\Safety Bar
Risk: Medium

Name: Adware.Generic
Path: C:\Program\Safety Bar\SafetyBar.dll
Risk: Medium

Name: Adware.Generic
Path: C:\Program\Safety Bar\Uninstall.bat
Risk: Medium

Name: Not-A-Virus.Downloader.Win32.WinFixer.o
Path: C:\WINDOWS\Downloaded Program Files\UERSL_0001_N91M2407NetInstaller.exe
Risk: Low

Name: Adware.Webdir
Path: C:\WINDOWS\__delete_on_reboot__v_g_r_a_p_h_._d_l_l_
Risk: Medium


..Ahora que volvi a correr el Ad-aware me dice que ya no tengo nada igual el AVG Anti-Spyware...pero antes de escanear el AVG Free Edition, me detecto varios cosas, pero no virus, trojanos creo..
Creo que el problema tiene que ver con los procesos:
issearch.exe
ishost.exe
ismini.exe

Ya que busque y no son normales en los procesos de Windows.. Ayuda please :)
Gracias a todos de antemano

Salu2
Valenosh

Descarga el programa HijackThis 1.99.1 y colócalo en una carpeta propia para el HijackThis (por ejemplo una carpeta C:\HijackThis\). Ejecútalo y presiona el botón "Do a system scan and save a logfile"; el programa realizará el escaneo e inmediatamente generará el Log, sólo te pedira el nombre del archivo y su ubicación, puedes simplemente guardarlo así como está. Se abrirá el Bloc de Notas, copia todo el contenido y pégalo como respuesta a este tema.
Una vez descargado, da doble click en el icono del HijackThis.exe.
Primero da click en el botón "Config", y aparecerán 7 opciones . Fíjate que no estén tildadas la primera ( “Mark everything found for fixing alter scan”) y la última (“Run Hijack This scan at startup and show it ítems are fond”).Luego presiona "Back"
Para empezar el escaneo de posibles hijackers, clickea en el botón "Scan". Se te presentará una lista con todos los elementos encontrados por el programa .
Baja el HijackThis de AQUI

Pega el log.

Un Saludo.