Testeo con TotalScan por er_calico (CERRADO)

Reglas del Foro
Normas Basicas | Los Titulos, dicen mucho | No postear en paralelo | Continua en tu tema | Cierra tu tema, antes de abrir otro | No escribas en temas antiguos
Enlaces a web/mail/blog/Msn NO estan permitidos | Mensajes Privados | Informes de resultados | Antivirus Online
Cerrado
er_calico
Mensajes: 13
Registrado: 01 May 2007, 19:40

Testeo con TotalScan por er_calico (CERRADO)

Mensaje por er_calico » 03 May 2007, 23:38

Soy el chico de este post https://foros.zonavirus.com/siguiente-vt18230.html?postdays=0&postorder=asc&start=15 y creo que es interesante que mireis y observeis los pasos del TotalScan en mi pc a ver si quedo algun resquicio de ese malware. Espero ayudar a alguien con esto:







;***********************************************************************************************************************************************************************************

ANALYSIS: 2007-05-03 22:34:30

PROTECTIONS: 1

MALWARE: 26

SUSPECTS: 0

;***********************************************************************************************************************************************************************************

PROTECTIONS

Description Version Active Updated

;===================================================================================================================================================================================

ESET NOD32 antivirus system 2.70 2.70 Yes Yes

;===================================================================================================================================================================================

MALWARE

Id Description Type Active Severity Disinfectable Disinfected Location

;===================================================================================================================================================================================

00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@trafficmp[1].txt

00139060 Cookie/Casalemedia TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@casalemedia[2].txt

00139060 Cookie/Casalemedia TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@casalemedia[1].txt

00139061 Cookie/Doubleclick TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@doubleclick[1].txt

00139061 Cookie/Doubleclick TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@doubleclick[1].txt

00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@atdmt[2].txt

00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@atdmt[1].txt

00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@tradedoubler[2].txt

00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@tradedoubler[1].txt

00145405 Cookie/RealMedia TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@247realmedia[1].txt

00145457 Cookie/FastClick TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@fastclick[2].txt

00145457 Cookie/FastClick TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@fastclick[1].txt

00145460 Cookie/2o7 TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@2o7[2].txt

00145460 Cookie/2o7 TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@2o7[1].txt

00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@tribalfusion[1].txt

00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@tribalfusion[1].txt

00145738 Cookie/Mediaplex TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@mediaplex[1].txt

00167691 Cookie/ademails TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@www.ademails[1].txt

00167704 Cookie/Xiti TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@xiti[1].txt

00167747 Cookie/Azjmp TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@azjmp[1].txt

00167753 Cookie/Statcounter TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@statcounter[1].txt

00168056 Cookie/YieldManager TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@ad.yieldmanager[1].txt

00168056 Cookie/YieldManager TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@ad.yieldmanager[1].txt

00168090 Cookie/Serving-sys TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@serving-sys[2].txt

00168090 Cookie/Serving-sys TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@serving-sys[2].txt

00168093 Cookie/Serving-sys TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@bs.serving-sys[2].txt

00168093 Cookie/Serving-sys TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@bs.serving-sys[2].txt

00169189 Cookie/Adserver TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@adserver.terra[2].txt

00169190 Cookie/Advertising TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@advertising[1].txt

00169190 Cookie/Advertising TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@advertising[1].txt

00169287 Cookie/Adrevolver TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@adrevolver[1].txt

00170304 Cookie/WebtrendsLive TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@statse.webtrendslive[2].txt

00170556 Cookie/RealMedia TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@realmedia[2].txt

00171633 Cookie/Cgi-bin TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@www5.addfreestats[1].txt

00172221 Cookie/Zedo TrackingCookie No 0 Yes Yes C:\Documents and Settings\Ruth\Cookies\ruth@zedo[2].txt

00172221 Cookie/Zedo TrackingCookie No 0 Yes Yes C:\Documents and Settings\Luis Eduardo\Cookies\luis_eduardo@zedo[2].txt

00346591 Adware/Lop Adware No 0 Yes Yes C:\System Volume Information\_restore{EC627D18-9FFA-44AB-9BC6-F6FF555AB806}\RP131\A0028830.exe

00346591 Adware/Lop Adware No 0 Yes Yes C:\System Volume Information\_restore{EC627D18-9FFA-44AB-9BC6-F6FF555AB806}\RP131\A0028826.exe

00346591 Adware/Lop Adware No 0 Yes Yes C:\System Volume Information\_restore{EC627D18-9FFA-44AB-9BC6-F6FF555AB806}\RP131\A0028827.exe

00346591 Adware/Lop Adware No 0 Yes Yes C:\System Volume Information\_restore{EC627D18-9FFA-44AB-9BC6-F6FF555AB806}\RP131\A0028829.exe

00346591 Adware/Lop Adware No 0 Yes Yes C:\System Volume Information\_restore{EC627D18-9FFA-44AB-9BC6-F6FF555AB806}\RP131\A0028831.exe

00525624 Adware/Lop Adware No 0 Yes Yes C:\System Volume Information\_restore{EC627D18-9FFA-44AB-9BC6-F6FF555AB806}\RP131\A0028812.exe

;===================================================================================================================================================================================

SUSPECTS

Location

;===================================================================================================================================================================================

;===================================================================================================================================================================================
Arriba
Avatar de Usuario
msc hotline sat
Mensajes: 93500
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:
Contactar msc hotline sat

Mensaje por msc hotline sat » 04 May 2007, 05:31

Pues la verdad, no.



Se describen simples cookies, que no tiene mas importancia y restos de adwares en el restore, qu hubieran restaurado el adware/Lop si se hubiera hecho una restauracion de sistema, pero que ya han sido eliminadas.



Asi que se procede a cerrar este Tema en consecuencia



saludos



ms, 4-05-2007
Arriba
Cerrado

Volver a “Foro HijackThis - copia y pega tu log”