Foros de daboweb
SEGURIDAD INFORMATICA, Firewall, parches, vacunas, antivirus, anti troyanos, spyware etc => Seguridad Informatica - Firewall - Virus - Troyanos - Spyware - Ad Aware - Malware => Mensaje iniciado por: phoebe en 14 de Diciembre de 2004, 09:20:13 am
-
Ja! que os decía.
Me he encontrado un bicho en otro ordenador. JOKE.TRAIN
Creo que este es mucho más destructivo que el adware.gator de ayer.
¿Me podeis orientar?
-
He pasado el Ad-Aware y el resultado del ScanLog es este:
Ad-Aware SE Build 1.05
Logfile Created on:martes, 14 de diciembre de 2004 9:31:29
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R22 13.12.2004
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie(TAC index:3):36 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file
Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects
14-12-2004 9:31:29 - Scan started. (Full System Scan)
Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 1036
ThreadCreationTime : 14-12-2004 7:22:58
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINNT\system32\
ProcessID : 1100
ThreadCreationTime : 14-12-2004 7:23:00
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINNT\system32\
ProcessID : 1124
ThreadCreationTime : 14-12-2004 7:23:01
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1168
ThreadCreationTime : 14-12-2004 7:23:03
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Aplicación de servicios y controlador
InternalName : services.exe
LegalCopyright : Copyright (C) Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : services.exe
#:5 [lsass.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1180
ThreadCreationTime : 14-12-2004 7:23:03
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe
#:6 [svchost.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1316
ThreadCreationTime : 14-12-2004 7:23:05
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:7 [svchost.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1416
ThreadCreationTime : 14-12-2004 7:23:06
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:8 [svchost.exe]
FilePath : C:\WINNT\System32\
ProcessID : 1504
ThreadCreationTime : 14-12-2004 7:23:06
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:9 [svchost.exe]
FilePath : C:\WINNT\System32\
ProcessID : 1564
ThreadCreationTime : 14-12-2004 7:23:06
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:10 [svchost.exe]
FilePath : C:\WINNT\System32\
ProcessID : 1660
ThreadCreationTime : 14-12-2004 7:23:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:11 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1828
ThreadCreationTime : 14-12-2004 7:23:08
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe
#:12 [ccproxy.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ProcessID : 1920
ThreadCreationTime : 14-12-2004 7:23:14
BasePriority : Normal
FileVersion : 2.1.3.4
ProductVersion : 2.1.3.4
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Network Proxy Service
InternalName : ccProxy
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccProxy.exe
#:13 [ccsetmgr.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ProcessID : 1944
ThreadCreationTime : 14-12-2004 7:23:14
BasePriority : Normal
FileVersion : 2.0.2.806
ProductVersion : 2.0.2.806
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Settings Manager Service
InternalName : ccSetMgr
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccSetMgr.exe
#:14 [navapsvc.exe]
FilePath : C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\
ProcessID : 1984
ThreadCreationTime : 14-12-2004 7:23:15
BasePriority : Normal
FileVersion : 10.00.2
ProductVersion : 10.00.2
ProductName : Norton AntiVirus
CompanyName : Symantec Corporation
FileDescription : Norton AntiVirus Auto-Protect Service
InternalName : NAVAPSVC
LegalCopyright : Norton AntiVirus 2004 for Windows 98/ME/2000/XP Copyright (c) 2003 Symantec Corporation. All rights reserved.
OriginalFilename : NAVAPSVC.EXE
#:15 [sndsrvc.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ProcessID : 168
ThreadCreationTime : 14-12-2004 7:23:15
BasePriority : Normal
FileVersion : 5.4.3.11
ProductVersion : 5.4
ProductName : Symantec Security Drivers
CompanyName : Symantec Corporation
FileDescription : Network Driver Service
InternalName : SndSrvc
LegalCopyright : Copyright 2002, 2003, 2004 Symantec Corporation
OriginalFilename : SndSrvc.exe
#:16 [wdfmgr.exe]
FilePath : C:\WINNT\system32\
ProcessID : 460
ThreadCreationTime : 14-12-2004 7:23:19
BasePriority : Normal
FileVersion : 5.2.3790.1230 built by: DNSRV(bld4act)
ProductVersion : 5.2.3790.1230
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows User Mode Driver Manager
InternalName : WdfMgr
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WdfMgr.exe
#:17 [ccevtmgr.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ProcessID : 544
ThreadCreationTime : 14-12-2004 7:23:19
BasePriority : Normal
FileVersion : 2.0.2.806
ProductVersion : 2.0.2.806
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Event Manager Service
InternalName : ccEvtMgr
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccEvtMgr.exe
#:18 [symwsc.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\Security Center\
ProcessID : 728
ThreadCreationTime : 14-12-2004 7:23:20
BasePriority : Normal
FileVersion : 2005.1.2.20
ProductVersion : 2005.1
ProductName : Norton Security Center
CompanyName : Symantec Corporation
FileDescription : Norton Security Center Service
InternalName : SymWSC.exe
LegalCopyright : Copyright (c) 1997-2004 Symantec Corporation
OriginalFilename : SymWSC.exe
#:19 [savscan.exe]
FilePath : C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\
ProcessID : 1756
ThreadCreationTime : 14-12-2004 7:23:27
BasePriority : Normal
FileVersion : 9.2.1.14
ProductVersion : 9.2
ProductName : Symantec AntiVirus AutoProtect
CompanyName : Symantec Corporation
FileDescription : Symantec AntiVirus Scanner
InternalName : SAVSCAN
LegalCopyright : Copyright (c) 2003 Symantec Corporation
OriginalFilename : SAVSCAN.EXE
#:20 [alg.exe]
FilePath : C:\WINNT\System32\
ProcessID : 1856
ThreadCreationTime : 14-12-2004 7:23:27
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe
#:21 [explorer.exe]
FilePath : C:\WINNT\
ProcessID : 1632
ThreadCreationTime : 14-12-2004 7:23:51
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Explorador de Windows
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : EXPLORER.EXE
#:22 [hkcmd.exe]
FilePath : C:\WINNT\System32\
ProcessID : 2168
ThreadCreationTime : 14-12-2004 7:24:23
BasePriority : Normal
FileVersion : 3.0.0.2209
ProductVersion : 7.0.0.2209
ProductName : Intel(R) Common User Interface
CompanyName : Intel Corporation
FileDescription : hkcmd Module
InternalName : HKCMD
LegalCopyright : Copyright 1999-2003, Intel Corporation
OriginalFilename : HKCMD.EXE
#:23 [ccapp.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ProcessID : 2192
ThreadCreationTime : 14-12-2004 7:24:23
BasePriority : Normal
FileVersion : 2.0.2.806
ProductVersion : 2.0.2.806
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client User Session
InternalName : ccApp
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccApp.exe
#:24 [internat.exe]
FilePath : C:\WINNT\system32\
ProcessID : 2460
ThreadCreationTime : 14-12-2004 7:24:25
BasePriority : Normal
FileVersion : 5.00.2920.0000
ProductVersion : 5.00.2920.0000
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
CompanyName : Microsoft Corporation
FileDescription : Aplicación Indicador de idioma del teclado
InternalName : INTERNAT
LegalCopyright : Copyright (C) Microsoft Corp. 1994-1999
OriginalFilename : INTERNAT.EXE
#:25 [msnmsgr.exe]
FilePath : C:\Archivos de programa\MSN Messenger\
ProcessID : 2556
ThreadCreationTime : 14-12-2004 7:24:26
BasePriority : Normal
FileVersion : 6.2.0137
ProductVersion : Version 6.2
ProductName : MSN Messenger
CompanyName : Microsoft Corporation
FileDescription : MSN Messenger
InternalName : msnmsgr
LegalCopyright : Copyright (c) Microsoft Corporation 1997-2004
LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msnmsgr.exe
#:26 [osa.exe]
FilePath : C:\Archivos de programa\Microsoft Office\Office\
ProcessID : 2696
ThreadCreationTime : 14-12-2004 7:24:29
BasePriority : Normal
#:27 [nmain.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ProcessID : 3476
ThreadCreationTime : 14-12-2004 7:25:30
BasePriority : Normal
FileVersion : 6.5.806
ProductVersion : 6.5.806
ProductName : Symantec Integrator
CompanyName : Symantec Corporation
FileDescription : Symantec Integrator
InternalName : Symantec Integrator
LegalCopyright : Copyright (c) 1997-2003 Symantec Corporation
OriginalFilename : NMAIN.EXE
#:28 [navw32.exe]
FilePath : C:\ARCHIV~1\NORTON~1\NORTON~1\
ProcessID : 2072
ThreadCreationTime : 14-12-2004 7:44:02
BasePriority : Normal
FileVersion : 10.00.13
ProductVersion : 10.00.13
ProductName : Norton AntiVirus
CompanyName : Symantec Corporation
FileDescription : Norton AntiVirus Scanner Module
InternalName : Navw32
LegalCopyright : Norton AntiVirus 2004 for Windows 98/ME/2000/XP Copyright (c) 2003 Symantec Corporation. All rights reserved.
OriginalFilename : Navw32.exe
#:29 [ad-aware.exe]
FilePath : C:\ARCHIV~1\LAVASOFT\AD-AWA~2\
ProcessID : 2236
ThreadCreationTime : 14-12-2004 8:31:17
BasePriority : Normal
FileVersion : 6.2.0.206
ProductVersion : VI.Second Edition
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
#:30 [hh.exe]
FilePath : C:\WINNT\
ProcessID : 1064
ThreadCreationTime : 14-12-2004 8:31:17
BasePriority : Normal
FileVersion : 5.2.3790.1159 (dnsrv.040209-1620)
ProductVersion : 5.2.3790.1159
ProductName : HTML Help
CompanyName : Microsoft Corporation
FileDescription : Microsoft® HTML Help Executable
InternalName : HH 1.41
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : HH.exe
Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0
Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0
Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0
Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@2o7[2].txt
Category : Data Miner
Comment : Hits:6
Value : Cookie:[email protected]/
Expires : 20-11-2009 11:39:28
LastSync : Hits:6
UseCount : 0
Hits : 6
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@cgi-bin[6].txt
Category : Data Miner
Comment : Hits:6
Value : Cookie:[email protected]/cgi-bin
Expires : 28-2-2015 1:00:00
LastSync : Hits:6
UseCount : 0
Hits : 6
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:9
Value : Cookie:[email protected]/
Expires : 18-1-2038 6:00:00
LastSync : Hits:9
UseCount : 0
Hits : 9
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@estat[1].txt
Category : Data Miner
Comment : Hits:8
Value : Cookie:[email protected]/
Expires : 30-10-2014 12:23:46
LastSync : Hits:8
UseCount : 0
Hits : 8
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:538
Value : Cookie:[email protected]/
Expires : 13-12-2005 17:49:16
LastSync : Hits:538
UseCount : 0
Hits : 538
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@apmebf[2].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 10-12-2009 12:28:56
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@cgi-bin[5].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/cgi-bin
Expires : 28-2-2015 1:00:00
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@gator[1].txt
Category : Data Miner
Comment : Hits:26
Value : Cookie:[email protected]/
Expires : 12-1-2005 13:14:50
LastSync : Hits:26
UseCount : 0
Hits : 26
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@qksrv[2].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 10-12-2009 12:28:58
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 13-11-2004 1:14:54
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@domainsponsor[1].txt
Category : Data Miner
Comment : Hits:17
Value : Cookie:[email protected]/
Expires : 10-12-2004 20:04:44
LastSync : Hits:17
UseCount : 0
Hits : 17
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@questionmarket[2].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:[email protected]/
Expires : 1-2-2006 4:41:02
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@tradedoubler[2].txt
Category : Data Miner
Comment : Hits:36
Value : Cookie:[email protected]/
Expires : 11-11-2024 13:43:28
LastSync : Hits:36
UseCount : 0
Hits : 36
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@hitbox[3].txt
Category : Data Miner
Comment : Hits:287
Value : Cookie:[email protected]/
Expires : 13-12-2005 17:49:16
LastSync : Hits:287
UseCount : 0
Hits : 287
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@tribalfusion[2].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 1-1-2038 1:00:00
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@atdmt[2].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:[email protected]/
Expires : 10-11-2009 1:00:00
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@doubleclick[2].txt
Category : Data Miner
Comment : Hits:5
Value : Cookie:[email protected]/
Expires : 15-11-2007 17:56:46
LastSync : Hits:5
UseCount : 0
Hits : 5
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@mediaplex[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 22-6-2009 1:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@weborama[2].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:[email protected]/
Expires : 6-11-2006 12:36:50
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:6
Value : Cookie:[email protected]/
Expires : 15-12-2004 18:37:42
LastSync : Hits:6
UseCount : 0
Hits : 6
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@cgi-bin[8].txt
Category : Data Miner
Comment : Hits:259
Value : Cookie:[email protected]/cgi-bin
Expires : 9-12-2014 12:25:52
LastSync : Hits:259
UseCount : 0
Hits : 259
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@fastclick[1].txt
Category : Data Miner
Comment : Hits:11
Value : Cookie:[email protected]/
Expires : 3-11-2006 13:11:18
LastSync : Hits:11
UseCount : 0
Hits : 11
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@cgi-bin[3].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/cgi-bin
Expires : 28-2-2015 1:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:5
Value : Cookie:[email protected]/
Expires : 10-12-2004 20:04:40
LastSync : Hits:5
UseCount : 0
Hits : 5
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@tripod[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 28-11-2005 17:14:52
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@centrport[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 1-1-2030 1:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@cgi-bin[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\PabloAlberto\Cookies\pabloalberto@cgi-bin[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@cgi-bin[4].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\PabloAlberto\Cookies\pabloalberto@cgi-bin[4].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@doubleclick[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\PabloAlberto\Cookies\pabloalberto@doubleclick[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@hitbox[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\PabloAlberto\Cookies\pabloalberto@hitbox[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\PabloAlberto\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : pabloalberto@cgi-bin[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\PabloAlberto\Cookies\pabloalberto@cgi-bin[1].txt
Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 32
Objects found so far: 32
Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : administrador@gator[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Administrador\Cookies\administrador@gator[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : administrador@doubleclick[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Administrador\Cookies\administrador@doubleclick[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : administrador@hitbox[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Administrador\Cookies\administrador@hitbox[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Administrador\Cookies\[email protected][1].txt
Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 36
Deep scanning and examining files (E:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Disk Scan Result for E:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 36
Scanning Hosts file......
Hosts file location:"C:\WINNT\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 36
Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 36
9:37:31 Scan Complete
Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:06:02.625
Objects scanned:113741
Objects identified:36
Objects ignored:0
New critical objects:36
-
Holas y bienvenida phoebe, no te preocupes que este bichito no es peligroso ;) se trata de un archivo .exe que al ejecutarlo provoca temblores en la pantalla, movimientos alocados del cursor etc, como si fueses viajando en un tren :P pero nada que dañe tu pc.
En principio bastaría solamente con que vuelvas a pasar el programa y borres todos los archivos que te detecte con ese nombre, mejor haciéndolo en modo a prueba de fallos (presiona repetidamente F8 cuando el pc se esté iniciando y elige Modo seguro con funciones de red, por si quieres hacer el san online), y desactivando la opción "restaurar sistema".
Desactivar restaurar sistema en windows XP (http://alerta-antivirus.red.es/virus/ver_pag.html?tema=V&articulo=11&pagina=3)
Desactivar restaurar sistema en windows ME (http://alerta-antivirus.red.es/virus/ver_pag.html?tema=V&articulo=11&pagina=2)
Dejamos el log a Fats a ver si encuentra alguna otra cosa sospechosa :D
Nos cuentas ;)
-
Gracias Miyu.
Le he pasado el Ad-Aware y parece y el antivirus y parece que lo he limpiado.
¿Tengo que mirar alguna otra cosa?.
-
Si todo funciona con normalidad y ya no te detecta ningún bichito pues nada, solo andar con cuidado por esos cibermundos de dios :D ;)
-
miyu power 8) 8)
-
miyu ;)
El log, salvo por algunas tracking cookies, está limpio... :)
O al menos no me doy cuenta si hay algo o no ;)
-
Gracias Fats..
Ahora tengo una duda. si tú me dices que el log está limpio, ¿eso quiere decir que despues de poner en cuarentena los archivos NO es necesario eliminarlos, y si lo haces , ¿qué pasa?
Buf, cada vez estoy más confundida.
Saludo
-
Te recomiendo la lectura de http://www.daboweb.com/phpBB2/viewtopic.php?t=9354 ... Muy interesante... ;)
:D
-
Nuevamente Fats, ¡Muchas Gracias!
Has aclarado mis dudas.
Teneis tanta información en esta página que siento ser reiterativa en algunas cuestiones.
Un saludo