Parece que aún tengo Virus

**Samn** · 27/11/2008, 06:56

Hola:

Disculpen mi insistencia, continuo con problemas... después de seguir todas las indicaciones para eliminar los virus de mi PC me revisaron el Log de Hijackthis y creo que debió estar en orden porque no recibí más instrucciones.

Hoy actualicé el Antivirus DrWeb, este fue el último que me recomendaron para eliminar los virus que no habían sido detectados por los otros antivirus y detectó más archivos infectados, adjunto los últimos reportes:

Trend Micro HijackThis v2.0.2:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:29:59 p.m., on 26/11/2008

Platform: Windows XP (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Boot mode: Normal

Running processes:

C:\WINDOWSC\System32\smss.exe

C:\WINDOWSC\system32\winlogon.exe

C:\WINDOWSC\system32\services.exe

C:\WINDOWSC\system32\lsass.exe

C:\WINDOWSC\system32\svchost.exe

C:\WINDOWSC\System32\svchost.exe

C:\WINDOWSC\Explorer.EXE

C:\WINDOWSC\system32\spoolsv.exe

C:\WINDOWSC\System32\ctfmon.exe

C:\WINDOWSC\System32\wuauclt.exe

C:\WINDOWSC\System32\svchost.exe

C:\Program Files\Antivirus HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWSC\System32\msdxm.ocx

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWSC\System32\ctfmon.exe

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWSC\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWSC\bdoscandel.exe

O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWSC\web\related.htm

O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWSC\web\related.htm

O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll

O15 - Trusted Zone: http://www.frontlinefocus.com

O15 - Trusted Zone: http://www.hotmail.com

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/reso...an8/oscan8.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1226387269545

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1226387252905

--

End of file - 2568 bytes

Reporte del antivirus DrWeb:

mbam.exe;C:\Program Files\Antivirus HijackThis\Malwarebytes' Anti-Malware;probablemente BACKDOOR.Trojan;Incurable.Eliminado.;

A0180903.exe;C:\System Volume Information\_restore{8AEB1A2B-079E-4748-8AD7-2961032EDCBE}\RP207;BackDoor.Nobrain.132;Eliminado .;

A0005696.exe\data016;C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005696.exe;Trojan.StartPage.21 454;;

A0005696.exe;C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8;Archivo comprimido contiene objetos infectados;Movido.;

A0005697.exe\data015;C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005697.exe;Trojan.StartPage.21 454;;

A0005697.exe;C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8;Archivo comprimido contiene objetos infectados;Movido.;

A0005698.exe;C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8;Trojan.StartPage.21454;Eliminado .;

A0005699.sys;C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8;Trojan.Click.19776;Eliminado.;

A0005700.old;C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8;BackDoor.Nobrain.origin;Incurabl e.Movido.;

tmpxr_43288272856.bk;C:\WIN2007\system32;BackDoor. Nobrain.128;Eliminado.;

tmpxr_9997539761.bk;C:\WIN2007\system32;BackDoor.N obrain.128;Eliminado.;

tmpxr_395648159948.bk;C:\WIN2007\system32;BackDoor .Nobrain.129;Eliminado.;

tmpxr_601829582092.bk;C:\WIN2007\system32;BackDoor .Nobrain.132;Eliminado.;

tmpxr_738297477377.bk;C:\WIN2007\system32;BackDoor .Nobrain.132;Eliminado.;

tmp0_54574244904.bk;C:\WIN2007\system32;BackDoor.N obrain.156;Eliminado.;

Gracias de antemano por su ayuda :D

**Caito** · 27/11/2008, 12:03

haz un :

Scan on line:

Los mejores antivirus online | Seguridad Windows

Debes usar el Internet Explorer y aceptar los active x

Le pones que elimine lo que te detecte.

nos pones ese reporte y comenta cómo funciona la pc

saludos

caito

**Samn** · 27/11/2008, 22:35

Adjunto los resultados de BitDefender Online Scanner, desapareció el sonido en mi PC: :(

BitDefender Online Scanner

Scan report generated at: Thu, Nov 27, 2008 - 14:58:15

Scan path: A:\;C:\;D:\;

Statistics

Results

Identified Viruses

23

Infected Files

41

Suspect Files

3

Warnings

0

Disinfected

0

Deleted Files

44

Engine build

AVCORE v1.7 (build 8314.19) (i386) (Sep 29 2008 17:19:14)

Scan plugins

16

Archive plugins

43

Unpack plugins

7

E-mail plugins

6

System plugins

4

Scanned File

Status

C:\Documents and Settings\LocalService.NT AUTHORITY\Configuración local\Archivos temporales de Internet\Content.IE5\MFYRA1I1\ma[1].bin

Infected with: Trojan.Generic.1139404

C:\Documents and Settings\LocalService.NT AUTHORITY\Configuración local\Archivos temporales de Internet\Content.IE5\MFYRA1I1\ma[1].bin

Deleted

C:\Documents and Settings\Administrador\Escritorio\TRABAJO 2008\Sonido_On_Off.rar

Infected with: Trojan.Spybot.DAV

C:\Documents and Settings\Administrador\Escritorio\TRABAJO 2008\Sonido_On_Off.rar

Disinfection failed

C:\Documents and Settings\Administrador\Escritorio\TRABAJO 2008\Sonido_On_Off.rar

Deleted

C:\Documents and Settings\Administrador\Escritorio\TRABAJO 2008\Caminante_sin_moneda.rar

Infected with: Trojan.Spybot.DAV

C:\Documents and Settings\Administrador\Escritorio\TRABAJO 2008\Caminante_sin_moneda.rar

Disinfection failed

C:\Documents and Settings\Administrador\Escritorio\TRABAJO 2008\Caminante_sin_moneda.rar

Deleted

C:\Documents and Settings\Administrador\Escritorio\TRABAJO 2008\Caminante_tadmit_fijo.rar

Infected with: Trojan.Spybot.DAV

C:\Documents and Settings\Administrador\Escritorio\TRABAJO 2008\Caminante_tadmit_fijo.rar

Disinfection failed

C:\Documents and Settings\Administrador\Escritorio\TRABAJO 2008\Caminante_tadmit_fijo.rar

Deleted

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005385.exe

Infected with: Trojan.Spambot.BZM

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005385.exe

Deleted

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005386.exe

Infected with: Trojan.Spambot.BZM

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005386.exe

Deleted

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005387.exe

Infected with: Trojan.Spambot.BZM

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005387.exe

Deleted

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005388.exe

Infected with: Trojan.Spambot.BZM

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005388.exe

Deleted

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005389.exe

Infected with: Trojan.Spambot.BZM

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005389.exe

Deleted

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005390.exe

Infected with: Trojan.Spambot.BZM

C:\Documents and Settings\sandra\DoctorWeb\Quarantine\A0005390.exe

Deleted

C:\Program Files\DivXPro501GAINBundle.exe=>(VISE Installer o)=>Gain_Trickler.exe

Detected with: Application.Gator.Gain.Claria.AC

C:\Program Files\DivXPro501GAINBundle.exe=>(VISE Installer o)=>Gain_Trickler.exe

Disinfection failed

C:\Program Files\DivXPro501GAINBundle.exe=>(VISE Installer o)=>Gain_Trickler.exe

Deleted

C:\Program Files\DivXPro501GAINBundle.exe=>(VISE Installer o)

Update failed

C:\System Volume Information\_restore{8AEB1A2B-079E-4748-8AD7-2961032EDCBE}\RP216\A0185409.EXE

Infected with: Trojan.Generic.1164344

C:\System Volume Information\_restore{8AEB1A2B-079E-4748-8AD7-2961032EDCBE}\RP216\A0185409.EXE

Deleted

C:\System Volume Information\_restore{8AEB1A2B-079E-4748-8AD7-2961032EDCBE}\RP219\A0185755.exe

Infected with: Trojan.Generic.1147862

C:\System Volume Information\_restore{8AEB1A2B-079E-4748-8AD7-2961032EDCBE}\RP219\A0185755.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005374.exe

Infected with: Rootkit.7974

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005374.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005375.exe

Infected with: Rootkit.7300

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005375.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005376.exe

Infected with: Rootkit.7799

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005376.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005377.exe

Infected with: Rootkit.7292

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005377.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005378.exe

Infected with: Trojan.Generic.990624

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005378.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005379.sys

Infected with: Trojan.Generic.366703

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005379.sys

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005380.sys

Infected with: Trojan.Generic.367976

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005380.sys

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005381.sys

Infected with: Trojan.Generic.462616

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005381.sys

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005382.sys

Infected with: Trojan.Generic.492935

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005382.sys

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005383.sys

Infected with: Trojan.Generic.744055

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005383.sys

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005384.sys

Infected with: Trojan.Generic.773368

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005384.sys

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005393.exe

Infected with: Generic.Malware.FYd.A9928806

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005393.exe

Disinfection failed

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005393.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005394.exe

Infected with: Generic.Malware.FYd.A9928806

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005394.exe

Disinfection failed

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005394.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005395.exe

Infected with: Generic.Malware.FYd.A9928806

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005395.exe

Disinfection failed

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005395.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005396.exe

Infected with: Generic.Malware.FYd.A9928806

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005396.exe

Disinfection failed

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005396.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005406.exe

Suspected of: Generic.Malware.Yd.B79EA207

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005406.exe

Disinfection failed

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005406.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005407.exe

Suspected of: Generic.Malware.Yd.B79EA207

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005407.exe

Disinfection failed

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005407.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005408.exe

Suspected of: Generic.Malware.Yd.B79EA207

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005408.exe

Disinfection failed

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP8\A0005408.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008742.exe

Infected with: Trojan.Spambot.BZM

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008742.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008743.exe

Infected with: Trojan.Spambot.BZM

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008743.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008744.exe

Infected with: Trojan.Spambot.BZM

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008744.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008745.exe

Infected with: Trojan.Spambot.BZM

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008745.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008746.exe

Infected with: Trojan.Spambot.BZM

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008746.exe

Deleted

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008747.exe

Infected with: Trojan.Spambot.BZM

C:\System Volume Information\_restore{4F22D103-5663-42B9-A074-459AF4278984}\RP23\A0008747.exe

Deleted

C:\WIN2007\system32\noytcyr.exe

Infected with: Rootkit.8490

C:\WIN2007\system32\noytcyr.exe

Deleted

C:\WIN2007\system32\mabidwe.exe

Infected with: Trojan.Generic.1145287

C:\WIN2007\system32\mabidwe.exe

Deleted

C:\WIN2007\system32\tmpxr_382853847931.bk

Infected with: Trojan.Generic.1155196

C:\WIN2007\system32\tmpxr_382853847931.bk

Deleted

C:\WIN2007\system32\tmpxr_200997282457.bk

Infected with: Trojan.Generic.1155196

C:\WIN2007\system32\tmpxr_200997282457.bk

Deleted

C:\WIN2007\system32\tmpxr_362418431699.bk

Infected with: Trojan.Generic.1159904

C:\WIN2007\system32\tmpxr_362418431699.bk

Deleted

C:\WIN2007\system32\tmpxr_617867463586.bk

Infected with: Trojan.Generic.1139404

C:\WIN2007\system32\tmpxr_617867463586.bk

Deleted

C:\WINDOWSC\system32\sfc_os.dll.tmp

Infected with: Trojan.Sfc.A.MOD

C:\WINDOWSC\system32\sfc_os.dll.tmp

Deleted

**Caito** · 28/11/2008, 15:46

pon un nuevo log del hijack

saludos

caito

**Samn** · 29/11/2008, 06:38

Saluditos

Adjunto nuevo log del hijack

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:34:56 p.m., on 28/11/2008

Platform: Windows XP (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Boot mode: Normal

Running processes:

C:\WINDOWSC\System32\smss.exe

C:\WINDOWSC\system32\winlogon.exe

C:\WINDOWSC\system32\services.exe

C:\WINDOWSC\system32\lsass.exe

C:\WINDOWSC\system32\svchost.exe

C:\WINDOWSC\System32\svchost.exe

C:\WINDOWSC\Explorer.EXE

C:\WINDOWSC\system32\spoolsv.exe

C:\Program Files\Messenger\msmsgs.exe

C:\WINDOWSC\System32\ctfmon.exe

C:\WINDOWSC\System32\wuauclt.exe

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Antivirus HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWSC\System32\msdxm.ocx

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWSC\System32\ctfmon.exe

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWSC\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWSC\bdoscandel.exe

O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWSC\web\related.htm

O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWSC\web\related.htm

O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll

O15 - Trusted Zone: http://www.frontlinefocus.com

O15 - Trusted Zone: http://www.hotmail.com

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/reso...an8/oscan8.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1226387269545

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1226387252905

--

End of file - 2622 bytes

**Vera** · 29/11/2008, 12:31

1º Descarga el Disk Cleaner e instálalo. (No se lo pases aún ya que lo haremos más adelante)

2º Desactiva la opción de Restaurar Sistema, una vez que tu sistema quede limpio la puedes volver a activar.

3º Asegura que tu sistema Muestre los archivos y carpetas ocultos.

4º Reinicia en Modo Seguro

5º Ejecuta el Hijack y luego “Do a system scan only” y marcas las siguientes casillas y hazles un “Fix checked”:

O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWSC\web\related.htm

O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWSC\web\related.htm

6º Ahora busca y elimina los siguientes archivos y/o carpetas, si existen:

C:\WINDOWSC\web\related.htm

7º Limpia la papelera y lanza Malwarebytes AntiMalware (Guarda report)

8º Reinicia el ordenador como lo haces normalmente

9º Utiliza el Disk Cleaner para eliminar todos los archivos temporales del sistema

Coméntanos los resultados y pega un nuevo log mas el report del MalwareBytes Anti-Malware.

Un Saludo,

Vera.

**Samn** · 03/12/2008, 21:17

¿En qué momento vuelvo a utilizar la opción Restaurar el sistema?...

**Caito** · 03/12/2008, 23:16

Cuando termines lo que te aconsejó Vera

saludos

Caito

Parece que aún tengo Virus

Herramientas

Temas similares

"ayuda" me parece q tengo un virus en la pc

Parece que tengo un virus.

Parece Que Tengo UN Virus

Mi log. Tengo un problema, me parece.

tengo un virus me parece

Permisos de publicación