Tema: Bagle me invade!
Ver Mensaje Individual
  #2 (permalink)  
Antiguo 23/08/2008, 15:01
baglera
 
Fecha de Ingreso: agosto-2008
Mensajes: 4
Antigüedad: 16 años, 4 meses
Puntos: 0
Respuesta: Bagle me invade!
LOG DEL MALWAREBYTES:

Malwarebytes' Anti-Malware 1.21
Versión de la Base de Datos: 966
Windows 5.1.2600 Service Pack 2

20:35:43 23/08/2008
mbam-log-8-23-2008 (20-35-43).txt

Tipo de examen : Examen Completo (C:\|)
Objetos examinados: 161508
Tiempo transcurrido: 1 hour(s), 14 minute(s), 27 second(s)

Procesos en Memoria Infectados: 0
Módulos en Memoria Infectados: 0
Claves del Registro Infectadas: 0
Valores del Registro Infectados: 3
Elementos de Datos del Registro Infectados: 1
Carpetas Infectadas: 6
Ficheros Infectados: 54

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Claves del Registro Infectadas:
(No se han detectado elementos maliciosos)

Valores del Registro Infectados:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\{02ffac45-0b10-5633-4296-1801f1a36678} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\{f710fa10-2031-3106-8872-93a2b5c5c620} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Network\UID (Malware.Trace) -> Quarantined and deleted successfully.

Elementos de Datos del Registro Infectados:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Hijack.UserInit) -> Bad: (c:\windows\system32\userinit.exe,C:\WINDOWS\syste m32\ntos.exe,) Good: (userinit.exe) -> Quarantined and deleted successfully.

Carpetas Infectadas:
C:\Archivos de programa\dynamic toolbar (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2 (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache (Adware.2020search) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wsnpoem (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld (Trojan.Agent) -> Quarantined and deleted successfully.

Ficheros Infectados:
C:\Archivos de programa\dynamic toolbar\batch.bat (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\unins000.dat (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\unins000.exe (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\go.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\home.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\logo_pb.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\parent_off.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\parent_on.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\pbesv2tb0200.cfg (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\popup_off.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\popup_on.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\search.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\services.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\skin.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\skin1.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\skin2.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\skin3.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\skin4.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\skin5.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\store.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\style.css (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\support.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\Cache\ticker.xml (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\ErrorLog.txt (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\go.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\home.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\logo_pb.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\parent_off.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\parent_on.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\pbesv2tb0200.cfg (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\popup_off.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\popup_on.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\search.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\services.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\skin.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\skin1.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\skin2.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\skin3.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\skin4.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\skin5.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\store.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\style.css (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\support.bmp (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\ticker.xml (Adware.2020search) -> Quarantined and deleted successfully.
C:\Archivos de programa\dynamic toolbar\PBESV2\Cache\_Ticker_ticker.txt (Adware.2020search) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wsnpoem\audio.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wsnpoem\video.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\231000.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\290828.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\296015.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\297781.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\331734.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\342015.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld\349171.exe (Trojan.Agent) -> Quarantined and deleted successfully.