tengo una plasta de virus q me llego por msn
el administrador de tareas no me abre me sale
el administrador de tareas ah sido deshabilitado por un administrador
no se q pasa la cosa es q creo q debo formatear y yo q no queria ¬¬ ya sera
pero si saben otra forma de entrar al administrador de tareas q no sea
Ctrl-alt-supr se los agradeceria ¬¬ y si saben como sacar esta mierda de virus sin formateas mejor
tengo un virus yeah |¬¬|
12 mensajes
• Página 1 de 1
tengo un virus yeah |¬¬|
por gorck » 20-05-2007 08:37
[img]http://img300.imageshack.us/img300/7748/athfco2.jpg[/img]
-
gorck - Iniciado
- Mensajes: 1618
- Registrado: 31-12-2004 08:00
- Cash on hand: 0.00
- Ubicación: por aquí, cerquita de mi no?
por ba-k » 20-05-2007 08:59
[color=#bc813b]1. Instale un antivirus... (nod32[recomendaria yo])
Pasele x casualidad esto: [url=http://www.download.com/Ad-Aware-SE-Personal-Edition/3000-8022_4-10045910.html?part=dl-ad-aware%26subj=dl%26tag=top5]ad-aware[/url]
eso lo podria ayudar un poco...
(si el AD AWARE le dice q tiene algun virus, anote el nombre de el.. y posteelo aki... xD
o buske alguna herramienta para eliminar ese virus (si el ad aware no pudiera suprimirlo ^^' [/color]
Pasele x casualidad esto: [url=http://www.download.com/Ad-Aware-SE-Personal-Edition/3000-8022_4-10045910.html?part=dl-ad-aware%26subj=dl%26tag=top5]ad-aware[/url]
eso lo podria ayudar un poco...
(si el AD AWARE le dice q tiene algun virus, anote el nombre de el.. y posteelo aki... xD
o buske alguna herramienta para eliminar ese virus (si el ad aware no pudiera suprimirlo ^^' [/color]
[img]http://i29.tinypic.com/2z3s4kw.jpg[/img]
[img]http://imagegen.last.fm/Awesome35/recenttracks/1/mrbak.gif[/img]
[img]http://imagegen.last.fm/Awesome35/recenttracks/1/mrbak.gif[/img]
-
ba-k - Importador
- Mensajes: 9362
- Registrado: 09-01-2004 08:00
- Cash on hand: 160.00
- Ubicación: Tico Landia...
por gorck » 20-05-2007 09:09
waaaaa
ad-aware rlz!!!
yeah tenia 322 archivos infectados U.U
ya paso menos mal gracias al man ese q esta en el cielo xD
ad-aware rlz!!!
yeah tenia 322 archivos infectados U.U
ya paso menos mal gracias al man ese q esta en el cielo xD
[img]http://img300.imageshack.us/img300/7748/athfco2.jpg[/img]
-
gorck - Iniciado
- Mensajes: 1618
- Registrado: 31-12-2004 08:00
- Cash on hand: 0.00
- Ubicación: por aquí, cerquita de mi no?
por ba-k » 20-05-2007 18:52
[color=#bc813b]Gracias al mae de Costa Rica diria yo.. uU
xDDD
varas
aro!
PD. asumo q ya pude abrir el administrador d tareas
[/color]
xDDD
varasaro!
PD. asumo q ya pude abrir el administrador d tareas
[/color][img]http://i29.tinypic.com/2z3s4kw.jpg[/img]
[img]http://imagegen.last.fm/Awesome35/recenttracks/1/mrbak.gif[/img]
[img]http://imagegen.last.fm/Awesome35/recenttracks/1/mrbak.gif[/img]
-
ba-k - Importador
- Mensajes: 9362
- Registrado: 09-01-2004 08:00
- Cash on hand: 160.00
- Ubicación: Tico Landia...
por gorck » 20-05-2007 20:49
mierda sigue el problema anoche sirvio el administrador de tareas hoy ya no
estoy tirando el ad-aware
oprq otra vez esta el problema del administrador y de q manda esa mierda de comentario por msn
no se como eliminarlo :S
estoy tirando el ad-aware
oprq otra vez esta el problema del administrador y de q manda esa mierda de comentario por msn
no se como eliminarlo :S
[img]http://img300.imageshack.us/img300/7748/athfco2.jpg[/img]
-
gorck - Iniciado
- Mensajes: 1618
- Registrado: 31-12-2004 08:00
- Cash on hand: 0.00
- Ubicación: por aquí, cerquita de mi no?
por gorck » 20-05-2007 21:04
termino ad-aware me salio todo esto no se si sirve U.U
[quote]Ad-Aware SE Build 1.06r1
Logfile Created on:Domingo, 20 de Mayo de 2007 14:34:00
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R170 14.05.2007
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):6 total references
Tracking Cookie(TAC index:3):1 total references
WhenU.SaveNow(TAC index:4):1 total references
Win32.TrojanDownloader.Agent.am(TAC index:10):1 total references
Windows(TAC index:3):1 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file
Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects
20-05-2007 14:34:00 - Scan started. (Full System Scan)
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw
MRU List Object Recognized!
Location: : S-1-5-21-1409082233-2111687655-1801674531-1005\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-1409082233-2111687655-1801674531-1005\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-1409082233-2111687655-1801674531-1005\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 592
ThreadCreationTime : 20-05-2007 18:31:07
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 660
ThreadCreationTime : 20-05-2007 18:31:13
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 684
ThreadCreationTime : 20-05-2007 18:31:13
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 728
ThreadCreationTime : 20-05-2007 18:31:13
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Aplicación de servicios y controlador
InternalName : services.exe
LegalCopyright : Copyright (C) Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : services.exe
#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 740
ThreadCreationTime : 20-05-2007 18:31:13
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe
#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 892
ThreadCreationTime : 20-05-2007 18:31:14
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 956
ThreadCreationTime : 20-05-2007 18:31:14
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1060
ThreadCreationTime : 20-05-2007 18:31:14
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:9 [incdsrv.exe]
FilePath : C:\Archivos de programa\Ahead\InCD\
ProcessID : 1080
ThreadCreationTime : 20-05-2007 18:31:14
BasePriority : Normal
FileVersion : 4, 2, 12, 1
ProductVersion : 4, 2, 12, 1
ProductName : Ahead Software AG incdsrv
CompanyName : Ahead Software AG
FileDescription : incdsrv
InternalName : incdsrv
LegalCopyright : Copyright 1995-2004 Ahead Software AG and its licensors. All Rights Reserved.
LegalTrademarks : InCD is a trademark of Ahead Software AG
OriginalFilename : incdsrv.exe
#:10 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1244
ThreadCreationTime : 20-05-2007 18:31:17
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:11 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1360
ThreadCreationTime : 20-05-2007 18:31:17
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:12 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1500
ThreadCreationTime : 20-05-2007 18:31:20
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe
#:13 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1796
ThreadCreationTime : 20-05-2007 18:31:25
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Explorador de Windows
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : EXPLORER.EXE
#:14 [vttimer.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1924
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
FileVersion : 2.00.01-0307
ProductVersion : 2.00.01-0307
ProductName : S3 Graphics, Inc. Utilities
CompanyName : S3 Graphics, Inc.
InternalName : S3Timer
LegalCopyright : Copyright (C) 2001-2005 S3 Graphics, Inc.
LegalTrademarks : S3 is a registered trademark of S3 Incorporated
#:15 [rundll32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1932
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Ejecutar un archivo DLL como una aplicación
InternalName : rundll
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : RUNDLL.EXE
#:16 [pctspk.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1940
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : pctvoice Application
CompanyName : Conexant Systems, Inc.
FileDescription : pctvoice MFC Application
InternalName : pctvoice
LegalCopyright : Copyright© Conexant Systems, Inc. 2003
OriginalFilename : pctvoice.EXE
#:17 [jusched.exe]
FilePath : C:\Archivos de programa\Java\jre1.6.0_01\bin\
ProcessID : 1948
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
#:18 [mwsoemon.exe]
FilePath : C:\ARCHIV~1\MYWEBS~1\bar\3.bin\
ProcessID : 1996
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
FileVersion : 1,2,2,4
ProductVersion : 2,0,1,0
ProductName : My Web Search Bar for Internet Explorer, email clients, and messenger clients
CompanyName : MyWebSearch.com
FileDescription : My Web Search Plugin Loader
InternalName : mwsoemon
LegalCopyright : Copyright © 2003-2006 MyWebSearch.com
OriginalFilename : mwsoemon.exe
#:19 [hpwuschd.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\HP Software Update\
ProcessID : 2016
ThreadCreationTime : 20-05-2007 18:31:31
BasePriority : Normal
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : Hewlett-Packard hpwuSchd
CompanyName : Hewlett-Packard
FileDescription : hpwuSchd
InternalName : hpwuSchd
LegalCopyright : Copyright © 2003
OriginalFilename : hpwuSchd.exe
#:20 [cisvc.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 2032
ThreadCreationTime : 20-05-2007 18:31:31
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Content Index service
InternalName : cisvc.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : cisvc.exe
#:21 [hpcmpmgr.exe]
FilePath : C:\Archivos de programa\HP\hpcoretech\
ProcessID : 244
ThreadCreationTime : 20-05-2007 18:31:32
BasePriority : Normal
FileVersion : 2.1.1.0
ProductVersion : 2.1.5
ProductName : hp coretech (COmponent REuse TECHnology)
CompanyName : Hewlett-Packard Company
FileDescription : HP Framework Component Manager Service
InternalName : HPComponentManagerService module
LegalCopyright : Copyright (C) Hewlett-Packard. 2002-2004
OriginalFilename : HpCmpMgr.exe
#:22 [hpztsb07.exe]
FilePath : C:\WINDOWS\system32\spool\drivers\w32x86\3\
ProcessID : 284
ThreadCreationTime : 20-05-2007 18:31:32
BasePriority : Normal
FileVersion : 2,140,0,0
ProductVersion : 2,140,0,0
ProductName : HP DeskJet
CompanyName : HP
LegalCopyright : Copyright (c) Hewlett-Packard Company 1999-2002
#:23 [pdvdserv.exe]
FilePath : C:\Archivos de programa\CyberLink\PowerDVD\
ProcessID : 300
ThreadCreationTime : 20-05-2007 18:31:34
BasePriority : Normal
FileVersion : 5.00.0000
ProductVersion : 5.00.0000
ProductName : PowerDVD
CompanyName : Cyberlink Corp.
FileDescription : PowerDVD RC Service
InternalName : PowerDVD RC Service
LegalCopyright : Copyright (c) CyberLink Corp. 1997-2002
OriginalFilename : PDVDSERV.EXE
#:24 [incd.exe]
FilePath : C:\Archivos de programa\Ahead\InCD\
ProcessID : 324
ThreadCreationTime : 20-05-2007 18:31:35
BasePriority : Normal
FileVersion : 4, 2, 12, 1
ProductVersion : 4, 2, 12, 1
ProductName : Ahead Software AG InCD
CompanyName : Ahead Software AG
FileDescription : InCD
InternalName : InCD
LegalCopyright : Copyright 1995-2004 Ahead Software AG and its licensors. All Rights Reserved.
LegalTrademarks : InCD is a trademark of Ahead Software AG
OriginalFilename : InCD.exe
#:25 [mdm.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\
ProcessID : 356
ThreadCreationTime : 20-05-2007 18:31:35
BasePriority : Normal
FileVersion : 7.00.9466
ProductVersion : 7.00.9466
ProductName : Microsoft® Visual Studio .NET
CompanyName : Microsoft Corporation
FileDescription : Machine Debug Manager
InternalName : mdm.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : mdm.exe
#:26 [nod32krn.exe]
FilePath : C:\Archivos de programa\Eset\
ProcessID : 392
ThreadCreationTime : 20-05-2007 18:31:35
BasePriority : Normal
FileVersion : 2, 51, 30
ProductVersion : 2, 51, 30
ProductName : NOD32 Antivirus System
CompanyName : Eset
FileDescription : NOD32 Kernel Service
InternalName : NOD32 Kernel
LegalCopyright : Copyright (c) 1992-2005 Eset
LegalTrademarks : NOD, NOD32, AMON, ESET are registered trademarks of Eset
OriginalFilename : nod32krn.exe
#:27 [lclock.exe]
FilePath : C:\Archivos de programa\LClock\
ProcessID : 560
ThreadCreationTime : 20-05-2007 18:31:36
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : LClock Application
FileDescription : LClock Application
InternalName : LClock
LegalCopyright : Copyright (C) 2004
OriginalFilename : LClock.exe
#:28 [winampa.exe]
FilePath : C:\Archivos de programa\Winamp\
ProcessID : 624
ThreadCreationTime : 20-05-2007 18:31:36
BasePriority : Normal
#:29 [nod32kui.exe]
FilePath : C:\Archivos de programa\Eset\
ProcessID : 644
ThreadCreationTime : 20-05-2007 18:31:37
BasePriority : Normal
FileVersion : 2, 51, 30
ProductVersion : 2, 51, 30
ProductName : NOD32 Antivirus System
CompanyName : Eset
FileDescription : NOD32 Control Center GUI
InternalName : NOD32 Control Center GUI
LegalCopyright : Copyright (c) 1992-2005 Eset
LegalTrademarks : NOD, NOD32, AMON, ESET are registered trademarks of Eset
OriginalFilename : nod32kui.exe
#:30 [sp2.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 808
ThreadCreationTime : 20-05-2007 18:31:37
BasePriority : Normal
FileVersion : 1.00
ProductVersion : 1.00
ProductName : Project1
CompanyName : Olympus 400
FileDescription : 800 x 600
InternalName : yo_posse_007.jpg
OriginalFilename : yo_posse_007.jpg.exe
#:31 [ctfmon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 900
ThreadCreationTime : 20-05-2007 18:31:38
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE
#:32 [msnmsgr.exe]
FilePath : C:\Archivos de programa\MSN Messenger\
ProcessID : 1008
ThreadCreationTime : 20-05-2007 18:31:38
BasePriority : Normal
FileVersion : 8.1.0178.00
ProductVersion : 8.1.0178
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr.exe
LegalCopyright : Copyright (c) Microsoft Corporation. All rights reserved.
OriginalFilename : msnmsgr.exe
#:33 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1256
ThreadCreationTime : 20-05-2007 18:31:40
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:34 [daemon.exe]
FilePath : C:\Archivos de programa\DAEMON Tools\
ProcessID : 1300
ThreadCreationTime : 20-05-2007 18:31:41
BasePriority : Normal
#:35 [iexplore.exe]
FilePath : C:\Archivos de programa\Internet Explorer\
ProcessID : 1308
ThreadCreationTime : 20-05-2007 18:31:41
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : IEXPLORE.EXE
#:36 [msmsgs.exe]
FilePath : C:\Archivos de programa\Messenger\
ProcessID : 1560
ThreadCreationTime : 20-05-2007 18:31:41
BasePriority : Normal
FileVersion : 4.7.3001
ProductVersion : Version 4.7.3001
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Windows Messenger
InternalName : msmsgs
LegalCopyright : Copyright (c) Microsoft Corporation 2004
LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe
#:37 [iexplore.exe]
FilePath : c:\archiv~1\intern~1\
ProcessID : 1136
ThreadCreationTime : 20-05-2007 18:31:44
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : IEXPLORE.EXE
#:38 [reader_sl.exe]
FilePath : C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\
ProcessID : 1632
ThreadCreationTime : 20-05-2007 18:31:52
BasePriority : Normal
FileVersion : 7.0.0.0
ProductVersion : 7.0.0.0
ProductName : Adobe Acrobat
CompanyName : Adobe Systems Incorporated
FileDescription : Adobe Acrobat SpeedLauncher
LegalCopyright : Copyright Adobe Systems Incorporated 2004
OriginalFilename : AcroSpeedLaunch.exe
#:39 [hpotdd01.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\
ProcessID : 1716
ThreadCreationTime : 20-05-2007 18:31:53
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : Hewlett-Packard hpotdd01
CompanyName : Hewlett-Packard
FileDescription : hpotdd01
InternalName : hpotdd01
LegalCopyright : Copyright © 2002
OriginalFilename : hpotdd01.exe
#:40 [hpohmr08.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\
ProcessID : 1752
ThreadCreationTime : 20-05-2007 18:31:54
BasePriority : Normal
FileVersion : 4.2.0.038
ProductVersion : 2.4.2.038
ProductName : hp digital imaging - hp all-in-one series
CompanyName : Hewlett-Packard Co.
FileDescription : HP OfficeJet COM Device Objects
InternalName : HPOHMR08
LegalCopyright : Copyright (C) Hewlett-Packard Co. 1995-2001
OriginalFilename : HPOHMR08.EXE
Comments : HP OfficeJet <Homer> Series COM Device Objects
#:41 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2608
ThreadCreationTime : 20-05-2007 18:32:01
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe
#:42 [hpoevm08.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\
ProcessID : 2852
ThreadCreationTime : 20-05-2007 18:32:18
BasePriority : Normal
FileVersion : 4.2.0.038
ProductVersion : 2.4.2.038
ProductName : hp digital imaging - hp all-in-one series
CompanyName : Hewlett-Packard Co.
FileDescription : HP OfficeJet COM Event Manager
InternalName : HPOEVM08
LegalCopyright : Copyright (C) Hewlett-Packard Co. 1995-2001
OriginalFilename : HPOEVM08.EXE
Comments : HP OfficeJet COM Event Manager
#:43 [hposts08.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\Digital Imaging\Bin\
ProcessID : 3132
ThreadCreationTime : 20-05-2007 18:32:23
BasePriority : Normal
FileVersion : 4.2.0.038
ProductVersion : 2.4.2.038
ProductName : hp digital imaging - hp all-in-one series
CompanyName : Hewlett-Packard Co.
FileDescription : HP OfficeJet Status
InternalName : HPOSTS08
LegalCopyright : Copyright (C) Hewlett-Packard Co. 1995-2001
OriginalFilename : HPOSTS08.EXE
Comments : HP OfficeJet Status
#:44 [wmiprvse.exe]
FilePath : C:\WINDOWS\system32\wbem\
ProcessID : 3404
ThreadCreationTime : 20-05-2007 18:32:30
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : WMI
InternalName : Wmiprvse.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : Wmiprvse.exe
#:45 [ad-aware.exe]
FilePath : C:\Archivos de programa\Lavasoft\Ad-Aware SE Personal\
ProcessID : 3068
ThreadCreationTime : 20-05-2007 18:33:40
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 6
Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Win32.TrojanDownloader.Agent.am Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\active setup\installed components\{9b71d88c-c598-4935-c5d1-43aa4db90836}
Windows Object Recognized!
Type : RegData
Data :
TAC Rating : 3
Category : Vulnerability
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-1409082233-2111687655-1801674531-1005\software\microsoft\windows\currentversion\policies\system
Value : DisableTaskMgr
Data :
Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 2
Objects found so far: 8
Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 8
Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : dario@atdmt[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:dario@atdmt.com/
Expires : 17-05-2012 20:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 9
Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
WhenU.SaveNow Object Recognized!
Type : File
Data : A0337507.exe
TAC Rating : 4
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{E9A9E781-AD9B-4486-9188-2BACBED41D5F}\RP255\
FileVersion : 4, 2, 2, 02
ProductVersion : 4, 2, 2, 02
ProductName : WhenU Save
CompanyName : WhenU.com, Inc.
FileDescription : WhenU Save
LegalCopyright : Copyright 2001-2006
OriginalFilename : Save.exe
Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 10
Deep scanning and examining files (D:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Disk Scan Result for D:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 10
Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 10
Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 10
14:52:03 Scan Complete
Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:18:03.578
Objects scanned:187361
Objects identified:4
Objects ignored:0
New critical objects:4
[quote]Ad-Aware SE Build 1.06r1
Logfile Created on:Domingo, 20 de Mayo de 2007 14:34:00
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R170 14.05.2007
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):6 total references
Tracking Cookie(TAC index:3):1 total references
WhenU.SaveNow(TAC index:4):1 total references
Win32.TrojanDownloader.Agent.am(TAC index:10):1 total references
Windows(TAC index:3):1 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file
Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects
20-05-2007 14:34:00 - Scan started. (Full System Scan)
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw
MRU List Object Recognized!
Location: : S-1-5-21-1409082233-2111687655-1801674531-1005\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-1409082233-2111687655-1801674531-1005\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-1409082233-2111687655-1801674531-1005\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 592
ThreadCreationTime : 20-05-2007 18:31:07
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 660
ThreadCreationTime : 20-05-2007 18:31:13
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 684
ThreadCreationTime : 20-05-2007 18:31:13
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 728
ThreadCreationTime : 20-05-2007 18:31:13
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Aplicación de servicios y controlador
InternalName : services.exe
LegalCopyright : Copyright (C) Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : services.exe
#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 740
ThreadCreationTime : 20-05-2007 18:31:13
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe
#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 892
ThreadCreationTime : 20-05-2007 18:31:14
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 956
ThreadCreationTime : 20-05-2007 18:31:14
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1060
ThreadCreationTime : 20-05-2007 18:31:14
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:9 [incdsrv.exe]
FilePath : C:\Archivos de programa\Ahead\InCD\
ProcessID : 1080
ThreadCreationTime : 20-05-2007 18:31:14
BasePriority : Normal
FileVersion : 4, 2, 12, 1
ProductVersion : 4, 2, 12, 1
ProductName : Ahead Software AG incdsrv
CompanyName : Ahead Software AG
FileDescription : incdsrv
InternalName : incdsrv
LegalCopyright : Copyright 1995-2004 Ahead Software AG and its licensors. All Rights Reserved.
LegalTrademarks : InCD is a trademark of Ahead Software AG
OriginalFilename : incdsrv.exe
#:10 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1244
ThreadCreationTime : 20-05-2007 18:31:17
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:11 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1360
ThreadCreationTime : 20-05-2007 18:31:17
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:12 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1500
ThreadCreationTime : 20-05-2007 18:31:20
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe
#:13 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1796
ThreadCreationTime : 20-05-2007 18:31:25
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Explorador de Windows
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : EXPLORER.EXE
#:14 [vttimer.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1924
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
FileVersion : 2.00.01-0307
ProductVersion : 2.00.01-0307
ProductName : S3 Graphics, Inc. Utilities
CompanyName : S3 Graphics, Inc.
InternalName : S3Timer
LegalCopyright : Copyright (C) 2001-2005 S3 Graphics, Inc.
LegalTrademarks : S3 is a registered trademark of S3 Incorporated
#:15 [rundll32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1932
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Ejecutar un archivo DLL como una aplicación
InternalName : rundll
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : RUNDLL.EXE
#:16 [pctspk.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1940
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : pctvoice Application
CompanyName : Conexant Systems, Inc.
FileDescription : pctvoice MFC Application
InternalName : pctvoice
LegalCopyright : Copyright© Conexant Systems, Inc. 2003
OriginalFilename : pctvoice.EXE
#:17 [jusched.exe]
FilePath : C:\Archivos de programa\Java\jre1.6.0_01\bin\
ProcessID : 1948
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
#:18 [mwsoemon.exe]
FilePath : C:\ARCHIV~1\MYWEBS~1\bar\3.bin\
ProcessID : 1996
ThreadCreationTime : 20-05-2007 18:31:30
BasePriority : Normal
FileVersion : 1,2,2,4
ProductVersion : 2,0,1,0
ProductName : My Web Search Bar for Internet Explorer, email clients, and messenger clients
CompanyName : MyWebSearch.com
FileDescription : My Web Search Plugin Loader
InternalName : mwsoemon
LegalCopyright : Copyright © 2003-2006 MyWebSearch.com
OriginalFilename : mwsoemon.exe
#:19 [hpwuschd.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\HP Software Update\
ProcessID : 2016
ThreadCreationTime : 20-05-2007 18:31:31
BasePriority : Normal
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : Hewlett-Packard hpwuSchd
CompanyName : Hewlett-Packard
FileDescription : hpwuSchd
InternalName : hpwuSchd
LegalCopyright : Copyright © 2003
OriginalFilename : hpwuSchd.exe
#:20 [cisvc.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 2032
ThreadCreationTime : 20-05-2007 18:31:31
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Content Index service
InternalName : cisvc.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : cisvc.exe
#:21 [hpcmpmgr.exe]
FilePath : C:\Archivos de programa\HP\hpcoretech\
ProcessID : 244
ThreadCreationTime : 20-05-2007 18:31:32
BasePriority : Normal
FileVersion : 2.1.1.0
ProductVersion : 2.1.5
ProductName : hp coretech (COmponent REuse TECHnology)
CompanyName : Hewlett-Packard Company
FileDescription : HP Framework Component Manager Service
InternalName : HPComponentManagerService module
LegalCopyright : Copyright (C) Hewlett-Packard. 2002-2004
OriginalFilename : HpCmpMgr.exe
#:22 [hpztsb07.exe]
FilePath : C:\WINDOWS\system32\spool\drivers\w32x86\3\
ProcessID : 284
ThreadCreationTime : 20-05-2007 18:31:32
BasePriority : Normal
FileVersion : 2,140,0,0
ProductVersion : 2,140,0,0
ProductName : HP DeskJet
CompanyName : HP
LegalCopyright : Copyright (c) Hewlett-Packard Company 1999-2002
#:23 [pdvdserv.exe]
FilePath : C:\Archivos de programa\CyberLink\PowerDVD\
ProcessID : 300
ThreadCreationTime : 20-05-2007 18:31:34
BasePriority : Normal
FileVersion : 5.00.0000
ProductVersion : 5.00.0000
ProductName : PowerDVD
CompanyName : Cyberlink Corp.
FileDescription : PowerDVD RC Service
InternalName : PowerDVD RC Service
LegalCopyright : Copyright (c) CyberLink Corp. 1997-2002
OriginalFilename : PDVDSERV.EXE
#:24 [incd.exe]
FilePath : C:\Archivos de programa\Ahead\InCD\
ProcessID : 324
ThreadCreationTime : 20-05-2007 18:31:35
BasePriority : Normal
FileVersion : 4, 2, 12, 1
ProductVersion : 4, 2, 12, 1
ProductName : Ahead Software AG InCD
CompanyName : Ahead Software AG
FileDescription : InCD
InternalName : InCD
LegalCopyright : Copyright 1995-2004 Ahead Software AG and its licensors. All Rights Reserved.
LegalTrademarks : InCD is a trademark of Ahead Software AG
OriginalFilename : InCD.exe
#:25 [mdm.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\
ProcessID : 356
ThreadCreationTime : 20-05-2007 18:31:35
BasePriority : Normal
FileVersion : 7.00.9466
ProductVersion : 7.00.9466
ProductName : Microsoft® Visual Studio .NET
CompanyName : Microsoft Corporation
FileDescription : Machine Debug Manager
InternalName : mdm.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : mdm.exe
#:26 [nod32krn.exe]
FilePath : C:\Archivos de programa\Eset\
ProcessID : 392
ThreadCreationTime : 20-05-2007 18:31:35
BasePriority : Normal
FileVersion : 2, 51, 30
ProductVersion : 2, 51, 30
ProductName : NOD32 Antivirus System
CompanyName : Eset
FileDescription : NOD32 Kernel Service
InternalName : NOD32 Kernel
LegalCopyright : Copyright (c) 1992-2005 Eset
LegalTrademarks : NOD, NOD32, AMON, ESET are registered trademarks of Eset
OriginalFilename : nod32krn.exe
#:27 [lclock.exe]
FilePath : C:\Archivos de programa\LClock\
ProcessID : 560
ThreadCreationTime : 20-05-2007 18:31:36
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : LClock Application
FileDescription : LClock Application
InternalName : LClock
LegalCopyright : Copyright (C) 2004
OriginalFilename : LClock.exe
#:28 [winampa.exe]
FilePath : C:\Archivos de programa\Winamp\
ProcessID : 624
ThreadCreationTime : 20-05-2007 18:31:36
BasePriority : Normal
#:29 [nod32kui.exe]
FilePath : C:\Archivos de programa\Eset\
ProcessID : 644
ThreadCreationTime : 20-05-2007 18:31:37
BasePriority : Normal
FileVersion : 2, 51, 30
ProductVersion : 2, 51, 30
ProductName : NOD32 Antivirus System
CompanyName : Eset
FileDescription : NOD32 Control Center GUI
InternalName : NOD32 Control Center GUI
LegalCopyright : Copyright (c) 1992-2005 Eset
LegalTrademarks : NOD, NOD32, AMON, ESET are registered trademarks of Eset
OriginalFilename : nod32kui.exe
#:30 [sp2.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 808
ThreadCreationTime : 20-05-2007 18:31:37
BasePriority : Normal
FileVersion : 1.00
ProductVersion : 1.00
ProductName : Project1
CompanyName : Olympus 400
FileDescription : 800 x 600
InternalName : yo_posse_007.jpg
OriginalFilename : yo_posse_007.jpg.exe
#:31 [ctfmon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 900
ThreadCreationTime : 20-05-2007 18:31:38
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE
#:32 [msnmsgr.exe]
FilePath : C:\Archivos de programa\MSN Messenger\
ProcessID : 1008
ThreadCreationTime : 20-05-2007 18:31:38
BasePriority : Normal
FileVersion : 8.1.0178.00
ProductVersion : 8.1.0178
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr.exe
LegalCopyright : Copyright (c) Microsoft Corporation. All rights reserved.
OriginalFilename : msnmsgr.exe
#:33 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1256
ThreadCreationTime : 20-05-2007 18:31:40
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:34 [daemon.exe]
FilePath : C:\Archivos de programa\DAEMON Tools\
ProcessID : 1300
ThreadCreationTime : 20-05-2007 18:31:41
BasePriority : Normal
#:35 [iexplore.exe]
FilePath : C:\Archivos de programa\Internet Explorer\
ProcessID : 1308
ThreadCreationTime : 20-05-2007 18:31:41
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : IEXPLORE.EXE
#:36 [msmsgs.exe]
FilePath : C:\Archivos de programa\Messenger\
ProcessID : 1560
ThreadCreationTime : 20-05-2007 18:31:41
BasePriority : Normal
FileVersion : 4.7.3001
ProductVersion : Version 4.7.3001
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Windows Messenger
InternalName : msmsgs
LegalCopyright : Copyright (c) Microsoft Corporation 2004
LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe
#:37 [iexplore.exe]
FilePath : c:\archiv~1\intern~1\
ProcessID : 1136
ThreadCreationTime : 20-05-2007 18:31:44
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : IEXPLORE.EXE
#:38 [reader_sl.exe]
FilePath : C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\
ProcessID : 1632
ThreadCreationTime : 20-05-2007 18:31:52
BasePriority : Normal
FileVersion : 7.0.0.0
ProductVersion : 7.0.0.0
ProductName : Adobe Acrobat
CompanyName : Adobe Systems Incorporated
FileDescription : Adobe Acrobat SpeedLauncher
LegalCopyright : Copyright Adobe Systems Incorporated 2004
OriginalFilename : AcroSpeedLaunch.exe
#:39 [hpotdd01.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\
ProcessID : 1716
ThreadCreationTime : 20-05-2007 18:31:53
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : Hewlett-Packard hpotdd01
CompanyName : Hewlett-Packard
FileDescription : hpotdd01
InternalName : hpotdd01
LegalCopyright : Copyright © 2002
OriginalFilename : hpotdd01.exe
#:40 [hpohmr08.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\
ProcessID : 1752
ThreadCreationTime : 20-05-2007 18:31:54
BasePriority : Normal
FileVersion : 4.2.0.038
ProductVersion : 2.4.2.038
ProductName : hp digital imaging - hp all-in-one series
CompanyName : Hewlett-Packard Co.
FileDescription : HP OfficeJet COM Device Objects
InternalName : HPOHMR08
LegalCopyright : Copyright (C) Hewlett-Packard Co. 1995-2001
OriginalFilename : HPOHMR08.EXE
Comments : HP OfficeJet <Homer> Series COM Device Objects
#:41 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2608
ThreadCreationTime : 20-05-2007 18:32:01
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe
#:42 [hpoevm08.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\
ProcessID : 2852
ThreadCreationTime : 20-05-2007 18:32:18
BasePriority : Normal
FileVersion : 4.2.0.038
ProductVersion : 2.4.2.038
ProductName : hp digital imaging - hp all-in-one series
CompanyName : Hewlett-Packard Co.
FileDescription : HP OfficeJet COM Event Manager
InternalName : HPOEVM08
LegalCopyright : Copyright (C) Hewlett-Packard Co. 1995-2001
OriginalFilename : HPOEVM08.EXE
Comments : HP OfficeJet COM Event Manager
#:43 [hposts08.exe]
FilePath : C:\Archivos de programa\Hewlett-Packard\Digital Imaging\Bin\
ProcessID : 3132
ThreadCreationTime : 20-05-2007 18:32:23
BasePriority : Normal
FileVersion : 4.2.0.038
ProductVersion : 2.4.2.038
ProductName : hp digital imaging - hp all-in-one series
CompanyName : Hewlett-Packard Co.
FileDescription : HP OfficeJet Status
InternalName : HPOSTS08
LegalCopyright : Copyright (C) Hewlett-Packard Co. 1995-2001
OriginalFilename : HPOSTS08.EXE
Comments : HP OfficeJet Status
#:44 [wmiprvse.exe]
FilePath : C:\WINDOWS\system32\wbem\
ProcessID : 3404
ThreadCreationTime : 20-05-2007 18:32:30
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : WMI
InternalName : Wmiprvse.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : Wmiprvse.exe
#:45 [ad-aware.exe]
FilePath : C:\Archivos de programa\Lavasoft\Ad-Aware SE Personal\
ProcessID : 3068
ThreadCreationTime : 20-05-2007 18:33:40
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 6
Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Win32.TrojanDownloader.Agent.am Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\active setup\installed components\{9b71d88c-c598-4935-c5d1-43aa4db90836}
Windows Object Recognized!
Type : RegData
Data :
TAC Rating : 3
Category : Vulnerability
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-1409082233-2111687655-1801674531-1005\software\microsoft\windows\currentversion\policies\system
Value : DisableTaskMgr
Data :
Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 2
Objects found so far: 8
Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 8
Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : dario@atdmt[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:dario@atdmt.com/
Expires : 17-05-2012 20:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 9
Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
WhenU.SaveNow Object Recognized!
Type : File
Data : A0337507.exe
TAC Rating : 4
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{E9A9E781-AD9B-4486-9188-2BACBED41D5F}\RP255\
FileVersion : 4, 2, 2, 02
ProductVersion : 4, 2, 2, 02
ProductName : WhenU Save
CompanyName : WhenU.com, Inc.
FileDescription : WhenU Save
LegalCopyright : Copyright 2001-2006
OriginalFilename : Save.exe
Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 10
Deep scanning and examining files (D:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Disk Scan Result for D:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 10
Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 10
Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 10
14:52:03 Scan Complete
Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:18:03.578
Objects scanned:187361
Objects identified:4
Objects ignored:0
New critical objects:4
[img]http://img300.imageshack.us/img300/7748/athfco2.jpg[/img]
-
gorck - Iniciado
- Mensajes: 1618
- Registrado: 31-12-2004 08:00
- Cash on hand: 0.00
- Ubicación: por aquí, cerquita de mi no?
por supertryKpo » 21-05-2007 23:32
aki te dejo esto por si te sirve de algo
Busca esta entrada en el registro
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System
"DisableTaskMgr" si su valor es 1 cambialo a 0
Pasa a tu ordenador los siguientes programas actualizados y en modo a prueba de fallos:
Spybot S&D
Ad Aware SE (pack de lenguajes )
CwShredder
Microsoft antispyware
El Ad-Aware pásalo con la opción Realizar exploración completa del sistema
Limpia el ordenador de archivos y entradas de registro innecesarias
EasyCleaner
Regcleaner
Y si aún así no has solucionado el problema el
HijackThis (Debes crear una carpeta y meter el exe allí) de este último programa puedes pegar el log aquí. scan and save log
Busca esta entrada en el registro
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System
"DisableTaskMgr" si su valor es 1 cambialo a 0
Pasa a tu ordenador los siguientes programas actualizados y en modo a prueba de fallos:
Spybot S&D
Ad Aware SE (pack de lenguajes )
CwShredder
Microsoft antispyware
El Ad-Aware pásalo con la opción Realizar exploración completa del sistema
Limpia el ordenador de archivos y entradas de registro innecesarias
EasyCleaner
Regcleaner
Y si aún así no has solucionado el problema el
HijackThis (Debes crear una carpeta y meter el exe allí) de este último programa puedes pegar el log aquí. scan and save log
[img]http://i15.tinypic.com/4tklxs2.jpg[/img]
-
supertryKpo - Amateur
- Mensajes: 611
- Registrado: 01-04-2007 07:00
- Cash on hand: 0.00
- Ubicación: secreta!!!
por ba-k » 22-05-2007 04:22
[color=#bc813b]xDDD...
y si pegara el log.. q pasa?
[/color]
y si pegara el log.. q pasa?
[/color][img]http://i29.tinypic.com/2z3s4kw.jpg[/img]
[img]http://imagegen.last.fm/Awesome35/recenttracks/1/mrbak.gif[/img]
[img]http://imagegen.last.fm/Awesome35/recenttracks/1/mrbak.gif[/img]
-
ba-k - Importador
- Mensajes: 9362
- Registrado: 09-01-2004 08:00
- Cash on hand: 160.00
- Ubicación: Tico Landia...
por yoja » 22-05-2007 06:38
XD aprovechando la pagina que dio bak me salio lo siguiente… 360 errores found eso que quiere decir XD que mi PC tiene esos errores y si es asi como los corrijo gracias??????? 
[img]http://img308.imageshack.us/img308/6622/spiderman3firma2zq.jpg[/img]
-
yoja - Iniciado
- Mensajes: 1840
- Registrado: 13-09-2006 07:00
- Cash on hand: 380.00
- Ubicación: ¿WHAT IS LIVING? THIS IS LIVING PLAYSTATION 5
- Cuenta PSN: ARLEX
por ba-k » 22-05-2007 08:00
[color=#bc813b]Mae diay, le da a SEARCH... > NEXT > le pone 'CHECK' a lo que salga... > NEXT [/color]
[img]http://i29.tinypic.com/2z3s4kw.jpg[/img]
[img]http://imagegen.last.fm/Awesome35/recenttracks/1/mrbak.gif[/img]
[img]http://imagegen.last.fm/Awesome35/recenttracks/1/mrbak.gif[/img]
-
ba-k - Importador
- Mensajes: 9362
- Registrado: 09-01-2004 08:00
- Cash on hand: 160.00
- Ubicación: Tico Landia...
por omarvercetti » 23-05-2007 22:08
recomiendo el ad-aware como mencionaron el nod 32, y tambien el spywareblaster, y spybot, pero que se haga en modo a prueba de errores, una desfragementada no hace daño de vez en cuando y yo creo que con eso ya estaria bien, y si le sigue el problema mande mp y le digo una pagina que es re buena para ese tipo de casos.
[img]http://img255.imageshack.us/img255/1512/rockstarlogo2jr4.png[/img]
-
omarvercetti - Camper
- Mensajes: 2270
- Registrado: 29-10-2005 07:00
- Cash on hand: 320.00
- Ubicación: Bogotá, Colombia
- Cuenta PSN: omarvercetti
12 mensajes
• Página 1 de 1
-
- Mensajes Relacionados
- Respuestas
- Vistas
- Último mensaje
-
- Epic: Wii es un virus!
por Mesias-X » 03-05-2008 21:01 - 7 Respuestas
- 741 Vistas
- Último mensaje por Geo
04-05-2008 21:23
- Epic: Wii es un virus!
-
- Antivirus a punto de caducar x.X
por Myohmy » 11-12-2007 13:10 - 5 Respuestas
- 852 Vistas
- Último mensaje por Kurorin
18-12-2007 21:51
- Antivirus a punto de caducar x.X
-
- Virus IMG-0012
por Cagalli Yula Athha » 18-09-2007 13:18 - 8 Respuestas
- 1289 Vistas
- Último mensaje por DrAkKuN
06-10-2007 20:15
- Virus IMG-0012
-
- ayuda con virus!!!
por Hades_ » 09-06-2007 04:42 - 3 Respuestas
- 765 Vistas
- Último mensaje por jing
20-06-2007 02:29
- ayuda con virus!!!
-
- COMO SABER QUE MI PC TIENE UN VIRUS XD..
por yoja » 30-05-2007 04:28 - 5 Respuestas
- 1179 Vistas
- Último mensaje por jing
20-06-2007 02:22
- COMO SABER QUE MI PC TIENE UN VIRUS XD..
¿Quién está conectado?
Usuarios navegando por este Foro: No hay usuarios registrados visitando el Foro y 6 invitados
- Índice general
- El Equipo • Borrar todas las cookies del Sitio • Todos los horarios son UTC + 1 hora [ DST ]
Novedades
Mapa del sitio
"SitemapIndex"