Hello guys

[UnitZero]

Hi, everyone, I'm new in this forum, I've been reading some threads about malwares and I decided to send u my log to ask for support.

Malwarebytes Anti-Malware (PRO) 1.62.0.1300

www.malwarebytes.org

Versión de la Base de Datos: v2012.09.07.10

Windows 7 Service Pack 1 x86 NTFS

Internet Explorer 8.0.7601.17514

Carlos :: CARLOS-PC [administrador]

Protección: Habilitado

07/09/2012 01:47:25 p.m.

mbam-log-2012-09-07 (13-47-25).txt

Tipos de Análisis: Análisis Completo (C:\|E:\|)

Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM

Opciones de análisis desactivados: P2P

Objetos examinados: 371491

Tiempo transcurrido: 1 hora(s), 36 minuto(s), 22 segundo(s)

Procesos en Memoria Detectados: 1

C:\Program Files\BrowserCompanion\BCHelper.exe (PUP.Blabbers) -> 3256 -> No se tomaron medidas.

Módulos de Memoria Detectados: 2

C:\Program Files\BrowserCompanion\updatebhoWin32.dll (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\sqlite3.dll (PUP.Blabbers) -> No se tomaron medidas.

Claves del Registro Detectados: 26

HKCR\CLSID\{00cbb66b-1d3b-46d3-9577-323a336acb50} (PUP.Blabbers) -> No se tomaron medidas.

HKCR\TypeLib\{8830DDF0-3042-404D-A62C-384A85E34833} (PUP.Blabbers) -> No se tomaron medidas.

HKCR\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767} (PUP.Blabbers) -> No se tomaron medidas.

HKCR\wit4ie.WitBHO.2 (PUP.Blabbers) -> No se tomaron medidas.

HKCR\wit4ie.WitBHO (PUP.Blabbers) -> No se tomaron medidas.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00CBB66B-1D3B-46D3-9577-323A336ACB50} (PUP.Blabbers) -> No se tomaron medidas.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00CBB66B-1D3B-46D3-9577-323A336ACB50} (PUP.Blabbers) -> No se tomaron medidas.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50} (PUP.Blabbers) -> No se tomaron medidas.

HKCR\CLSID\{5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} (PUP.Blabbers) -> No se tomaron medidas.

HKCR\TypeLib\{830B56CB-FD22-44AA-9887-7898F4F4158D} (PUP.Blabbers) -> No se tomaron medidas.

HKCR\tdataprotocol.CTData.1 (PUP.Blabbers) -> No se tomaron medidas.

HKCR\tdataprotocol.CTData (PUP.Blabbers) -> No se tomaron medidas.

HKCR\CLSID\{963B125B-8B21-49A2-A3A8-E37092276531} (PUP.Blabbers) -> No se tomaron medidas.

HKCR\TypeLib\{955B782E-CDC8-4CEE-B6F6-AD7D541A8D8A} (PUP.Blabbers) -> No se tomaron medidas.

HKCR\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03} (PUP.Blabbers) -> No se tomaron medidas.

HKCR\updatebho.TimerBHO.1 (PUP.Blabbers) -> No se tomaron medidas.

HKCR\updatebho.TimerBHO (PUP.Blabbers) -> No se tomaron medidas.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531} (PUP.Blabbers) -> No se tomaron medidas.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{963B125B-8B21-49A2-A3A8-E37092276531} (PUP.Blabbers) -> No se tomaron medidas.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531} (PUP.Blabbers) -> No se tomaron medidas.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BrowserCompanion (PUP.Blabbers) -> No se tomaron medidas.

HKCR\PROTOCOLS\HANDLER\BASE64 (PUP.Blabbers) -> No se tomaron medidas.

HKCR\PROTOCOLS\HANDLER\CHROME (PUP.Blabbers) -> No se tomaron medidas.

HKCR\PROTOCOLS\HANDLER\PROX (PUP.Blabbers) -> No se tomaron medidas.

HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649} (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BASICSCAN (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

Valores del Registro Detectados: 5

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Browser companion helper (PUP.Blabbers) -> datos: C:\Program Files\BrowserCompanion\BCHelper.exe /T=3 /S=7 -> No se tomaron medidas.

HKCR\protocols\Handler\base64|CLSID (PUP.Blabbers) -> datos: {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -> No se tomaron medidas.

HKCR\protocols\Handler\chrome|CLSID (PUP.Blabbers) -> datos: {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -> No se tomaron medidas.

HKCR\protocols\Handler\prox|CLSID (PUP.Blabbers) -> datos: {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -> No se tomaron medidas.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BasicScan|DisplayName (Adware.Zwangi) -> datos: BasicScan 1.0 build 115 -> En cuarentena y eliminado con éxito.

Elementos de Datos del Registro Detectados: 0

(No se han detectado elementos maliciosos)

Carpetas Detectadas: 6

C:\Program Files\BrowserCompanion (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\RelevantKnowledge (PUP.Spyware.MarketScore) -> No se tomaron medidas.

C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C} (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}\chrome (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}\defaults (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}\defaults\preferences (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

Archivos Detectados: 31

C:\Program Files\BrowserCompanion\BCHelper.exe (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\jsloader.dll (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\tdataprotocol.dll (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\updatebhoWin32.dll (PUP.Blabbers) -> No se tomaron medidas.

C:\$Recycle.Bin\S-1-5-21-1532376202-3383026237-1039055665-1000\$R4GVD89.exe (PUP.BundleInstaller.BI) -> No se tomaron medidas.

C:\$Recycle.Bin\S-1-5-21-1532376202-3383026237-1039055665-1000\$R9642VE.exe (PUP.BundleInstaller.BI) -> No se tomaron medidas.

C:\$Recycle.Bin\S-1-5-21-1532376202-3383026237-1039055665-1000\$RPEWC7K.exe (PUP.BundleInstaller.BI) -> No se tomaron medidas.

C:\Users\Familia\AppData\Local\Temp\~os2714.tmp\rlvknlg.exe (PUP.Adware.RelevantKnowledge) -> No se tomaron medidas.

C:\Users\Familia\AppData\Local\Temp\~os2714.tmp\rlvknlg64.exe (PUP.Adware.RelevantKnowledge) -> No se tomaron medidas.

C:\Users\Familia\AppData\Local\Temp\~os2714.tmp\rlxf.dll (PUP.Adware.RelevantKnowledge) -> No se tomaron medidas.

C:\Users\Familia\AppData\Local\Temp\~os2714.tmp\rlxg.dll (PUP.Adware.RelevantKnowledge) -> No se tomaron medidas.

C:\Users\Familia\AppData\Local\Temp\~os2714.tmp\rlxh.dll (PUP.Adware.RelevantKnowledge) -> No se tomaron medidas.

C:\Users\Familia\AppData\Local\Temp\~os2714.tmp\rlxi.dll (PUP.Adware.RelevantKnowledge) -> No se tomaron medidas.

C:\Users\Familia\AppData\Local\Temp\~os2714.tmp\rlxj.dll (PUP.Adware.RelevantKnowledge) -> No se tomaron medidas.

C:\Users\Familia\AppData\Local\Temp\~os2714.tmp\rlxk.dll (PUP.Adware.RelevantKnowledge) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\blabbers-ff-full.xpi (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\blabbers-ch.crx (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\logo.ico (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\sqlite3.dll (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\toolbar.dll (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\uninstall.exe (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\updatebhoWin32.dll_1 (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\updater.ini (PUP.Blabbers) -> No se tomaron medidas.

C:\Program Files\BrowserCompanion\widgetserv.exe (PUP.Blabbers) -> No se tomaron medidas.

C:\$Recycle.Bin\S-1-5-21-1532376202-3383026237-1039055665-1000\$RJ4UZ2Q.exe (Adware.RKN) -> En cuarentena y eliminado con éxito.

C:\Users\Familia\AppData\Roaming\Launcher\Setup.exe (Adware.Agent) -> En cuarentena y eliminado con éxito.

C:\Users\Public\Desktop\MP3 Downloader.lnk (Rogue.Link) -> En cuarentena y eliminado con éxito.

C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}\chrome.manifest (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}\install.rdf (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}\chrome\basicscan.jar (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}\defaults\preferences\prefs.js (Adware.Zwangi) -> En cuarentena y eliminado con éxito.

fin)

Wish u can help me, regards.

[DarkSnakeKobra]

It sounds as if you might be infected.

We cannot work on malware removal in this section of the forums, so please read below for assistance with cleaning your system.

IMPORTANT: Please do NOT use any temporary file cleaners unless instructed to do so - they can cause data loss, making it hard to recover your system.

PLEASE CHOOSE ONE OF THE FOLLOWING 3 OPTIONS:

OPTION 1: Free, one-on-one, expert assistance in the Malware Removal Forum.

OPTION 2: For paid users of MBAM PRO, free, one-on-one, expert assistance from MBAM support.

OPTION 3: Fee-based, one-on-one, expert assistance from Premium Support.

OPTION 1:

• Please print out, read and carefully follow the instructions in the "I'm Infected - What Do I Do Now?" article.
  
• If the infection has so crippled the computer that you cannot complete some or all of the steps, then just do the best you can and start a new topic as described below.
  

• Then please start a new post in the Malware Removal Forum.
  
• When starting your new post, please note the following:
  
• Please do NOT post in a topic started by someone else, even if their problem sounds similar.
  
• Please COPY/PASTE the requested logs into your post, rather than attaching them.
  
• Under options, please be sure to select "track this topic" and "immediate email notification", so you'll know when a helper responds.
  

• An authorized, trained malware expert will provide free, one-on-one assistance as soon as one becomes available.
  

• Please be patient - it may be 48 hours or more before a helper can assist you, especially when the forum is very busy.
  
• Please do NOT "bump" your topic or reply back to it for at least 48 hours.
  
• Doing so may cause your topic to be overlooked, as it will appear that you are already being helped.
  

OPTION 2:

Alternatively, as a paying customer, you can contact the help desk by filling out the form here.

OPTION 3:

If you would like to use the Malwarebytes Premium Services (comprehensive solutions to all your computer support needs – from installation and set-up to troubleshooting and tune-ups), please go to our Premium Support site here.

Please be patient – someone will assist you as soon as possible.

PS Please use the button or the message pane (instead of the “Quote” and “MultiQuote” buttons) when replying here & at the other forums. That will make your topic easier to follow.