Problemas con el inciio del XP

Estado
Cerrado para nuevas respuestas.

orandinet

Miembro
Miembro
Hola, tengo problemas con el ordenador desde hace unos días me tarda mucho en cargar desde la pagina de bienvenida al escritorio y hace unos días no me pasaba eso.

dejo aquí mi log, y gracias de antemano

Logfile of HijackThis v1.99.1

Scan saved at 1:50:29, on 30/06/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\Archivos de programa\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe

C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\Archivos de programa\Alwil Software\Avast4\ashMaiSv.exe

C:\Archivos de programa\Alwil Software\Avast4\ashWebSv.exe

C:\ARCHIV~1\ALWILS~1\Avast4\ashDisp.exe

C:\Archivos de programa\Multimedia Keyboard\PS2USBKbdDrv.exe

C:\Archivos de programa\Windows Defender\MSASCui.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe

C:\Archivos de programa\Maxthon\Maxthon.exe

C:\WINDOWS\system32\SearchProtocolHost.exe

C:\WINDOWS\system32\taskmgr.exe

C:\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.live.com

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O2 - BHO: Aplicación auxiliar de vínculos de Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\ARCHIV~1\SPYBOT~1\SDHelper.dll

O2 - BHO: IEbho Class - {68C55168-E188-40DF-A514-835FCD78B1BF} - C:\Archivos de programa\IE7pro\IE7pro.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\ARCHIV~1\MICROS~2\Office12\GRA8E1~1.DLL

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre1.5.0_09\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Archivos de programa\Windows Live Toolbar\msntb.dll

O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Archivos de programa\Styler\TB\StylerTB.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Archivos de programa\Windows Live Toolbar\msntb.dll

O4 - HKLM\..\Run: [avast!] C:\ARCHIV~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Archivos de programa\Multimedia Keyboard\PS2USBKbdDrv.exe

O4 - HKLM\..\Run: [Windows Defender] "C:\Archivos de programa\Windows Defender\MSASCui.exe" -hide

O4 - HKCU\..\Run: [msnmsgr] "C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe

O8 - Extra context menu item: &Capture Page to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddLinkEntryFromDocument.html

O8 - Extra context menu item: &Windows Live Search - res://C:\Archivos de programa\Windows Live Toolbar\msntb.dll/search.htm

O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx"]http://favorites.live.com/quickadd.aspx

O8 - Extra context menu item: Capt&ure Target to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddEntryFromDocumentElement.html

O8 - Extra context menu item: Capture &Snippet to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddEntryFromDocumentSelection.html

O8 - Extra context menu item: Capture Ima&ge to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddEntryFromDocumentElement.html

O8 - Extra context menu item: Capture Page and Selected &Links to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddSiteSnippetFromDocumentSelection.html

O8 - Extra context menu item: Capture Selected Ite&ms to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddMultipleEntriesFromDocumentSelection.html

O8 - Extra context menu item: Capture Site to &Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddSiteFromDocument.html

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Agregar entrada en Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live Writer\WriterBrowserExtension.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MIC273~1\Office12\REFIEBAR.DLL

O9 - Extra button: Flash Decompiler SWF Capture tool - {86B4FC19-8FA4-4FD3-B243-9AEDB42FA2D5} - C:\ARCHIV~1\ELTIMA~1\FLASHD~1\iebt.dll (HKCU)

O9 - Extra 'Tools' menuitem: Flash Decompiler SWF Capture tool menu - {86B4FC19-8FA4-4FD3-B243-9AEDB42FA2D5} - C:\ARCHIV~1\ELTIMA~1\FLASHD~1\iebt.dll (HKCU)

O11 - Options group: [INTERNATIONAL] International*

O16 - DPF: {03B39B10-9AB9-4DBB-8189-7F76E0CE5F3F} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab?v=13,0,0831,02

O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://download.ewido.net/ewidoOnlineScan.cab

O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Archivos de programa\Yahoo!\Common\yinsthelper.dll

O16 - DPF: {30CADB40-6FD7-433F-BF0D-4827CA7B5BDF} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab

O16 - DPF: {34260DAF-318A-4B5A-8778-A861CF2108A5} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab

O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.com/s/v/15.12/uploader2.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://heroes-spain.spaces.live.com//Photo...ad/MsnPUpld.cab

O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascstubie.cab

O16 - DPF: {594ECDD4-A991-4208-A7B7-00DDAD9BE328} (Photosynth Class) - http://media.labs.live.com/all/ps/_code_/Photosynth.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab

O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase8300.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1142090331453

O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} (DLC Class) - https://transfers.ds.microsoft.com/FTM/Tran...ransferCtrl.cab

O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - http://www.nanoscan.com/cabs/nanoinst.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/...004/mcfscan.cab

O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\ARCHIV~1\MICROS~2\Office12\GR99D3~1.DLL

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Help\hxds.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: talkto - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - (no file)

O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\ARCHIV~1\ARCHIV~1\MICROS~1\OFFICE12\MSOXMLMF.DLL

O20 - Winlogon Notify: WBSrv - C:\Archivos de programa\Stardock\Object Desktop\Windowblinds\wbsrv.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: Apache - Unknown owner - C:\AppServ\Apache\Apache.exe" --ntservice (file missing)

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Archivos de programa\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Archivos de programa\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: MySQL - Unknown owner - C:\AppServ\mysql\bin\mysqld-nt.exe

O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Archivos de programa\Windows Live\installer\WLSetupSvc.exe
 

Caito

Ex- Mod
Miembro
Actualiza tu sistema acá :

Buscar actualizaciones con Windows Update

(Si por algún motivo no puedes actualizar sigue con los demás pasos)

Borra todas las cookies y el registro con CCleaner:

Descargar CCleaner | Utilidades - Análisis y Optimización

Vete a Panel de Control--> Java y elimina todos los archivos temporales. (Si utilizas JAVA)

Pasale el Avg-antispyware. (Actualizalo, y al acabar el Scaneo elije la opción eliminar, después guarda el report y lo pegas)

Ewido Anti-Malware

Y esta aplicacion también (No necesita instalacion)No te saltes este paso

ElistarA

Descargar EliStarA | Seguridad - Anti-Spyware

Cuando empiece el Scaneo, DESTILDAS la opción de eliminar, a la izquierda de la ventana del programa

Que no elimine nada

Pega un nuevo Log del Hijackthis, mas los Reports de Avg-Antispyware y ElistarA.

Saludos

Caito
 

orandinet

Miembro
Miembro
ElistarA no me funciona se bloquea en restaurando el reguistro

---------------------------------------------------------

AVG Anti-Spyware - Informe del análisis

---------------------------------------------------------

+ Creado en: 2:12:13 01/07/2007

+ Resultado del análisis:

C:\WINDOWS\system32\1164315527.exe -> Adware.BHO : Limpios.

C:\Archivos de programa\patcher.exe -> Adware.Generic : Limpios.

C:\Documents and Settings\Propietario\Cookies\propietario@2o7[1].txt -> TrackingCookie.2o7 : Limpios.

C:\Documents and Settings\Propietario\Cookies\propietario@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Limpios.

C:\Documents and Settings\Propietario\Cookies\propietario@connextra[1].txt -> TrackingCookie.Connextra : Limpios.

C:\Documents and Settings\Propietario\Cookies\propietario@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Limpios.

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP114\A0015214.exe -> Trojan.Obfuscated.en : Limpios.

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP116\A0015438.exe -> Trojan.Obfuscated.en : Limpios.

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP116\A0015455.exe -> Trojan.Obfuscated.en : Limpios.

C:\Documents and Settings\Propietario\Escritorio\LiveSport-2007\Para la web\Pagina nueva 1.htm -> Worm.HappyTime : Limpios.

::Fin del informe

Logfile of HijackThis v1.99.1

Scan saved at 0:23:36, on 02/07/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\Archivos de programa\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe

C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\ARCHIV~1\ALWILS~1\Avast4\ashDisp.exe

C:\Archivos de programa\Multimedia Keyboard\PS2USBKbdDrv.exe

C:\Archivos de programa\Windows Defender\MSASCui.exe

C:\Archivos de programa\Alwil Software\Avast4\ashMaiSv.exe

C:\Archivos de programa\Alwil Software\Avast4\ashWebSv.exe

C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe

C:\Archivos de programa\Maxthon\Maxthon.exe

C:\Archivos de programa\Windows Live\Messenger\usnsvc.exe

C:\Archivos de programa\Windows Live\Mail\wlmail.exe

C:\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.live.com

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O2 - BHO: Aplicación auxiliar de vínculos de Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\ARCHIV~1\SPYBOT~1\SDHelper.dll

O2 - BHO: IEbho Class - {68C55168-E188-40DF-A514-835FCD78B1BF} - C:\Archivos de programa\IE7pro\IE7pro.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\ARCHIV~1\MICROS~2\Office12\GRA8E1~1.DLL

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Archivos de programa\Windows Live Toolbar\msntb.dll

O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Archivos de programa\Styler\TB\StylerTB.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Archivos de programa\Windows Live Toolbar\msntb.dll

O4 - HKLM\..\Run: [avast!] C:\ARCHIV~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Archivos de programa\Multimedia Keyboard\PS2USBKbdDrv.exe

O4 - HKLM\..\Run: [Windows Defender] "C:\Archivos de programa\Windows Defender\MSASCui.exe" -hide

O4 - HKCU\..\Run: [msnmsgr] "C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe

O8 - Extra context menu item: &Capture Page to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddLinkEntryFromDocument.html

O8 - Extra context menu item: &Windows Live Search - res://C:\Archivos de programa\Windows Live Toolbar\msntb.dll/search.htm

O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx"]http://favorites.live.com/quickadd.aspx

O8 - Extra context menu item: Capt&ure Target to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddEntryFromDocumentElement.html

O8 - Extra context menu item: Capture &Snippet to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddEntryFromDocumentSelection.html

O8 - Extra context menu item: Capture Ima&ge to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddEntryFromDocumentElement.html

O8 - Extra context menu item: Capture Page and Selected &Links to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddSiteSnippetFromDocumentSelection.html

O8 - Extra context menu item: Capture Selected Ite&ms to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddMultipleEntriesFromDocumentSelection.html

O8 - Extra context menu item: Capture Site to &Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddSiteFromDocument.html

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Agregar entrada en Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live Writer\WriterBrowserExtension.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MIC273~1\Office12\REFIEBAR.DLL

O9 - Extra button: Flash Decompiler SWF Capture tool - {86B4FC19-8FA4-4FD3-B243-9AEDB42FA2D5} - C:\ARCHIV~1\ELTIMA~1\FLASHD~1\iebt.dll (HKCU)

O9 - Extra 'Tools' menuitem: Flash Decompiler SWF Capture tool menu - {86B4FC19-8FA4-4FD3-B243-9AEDB42FA2D5} - C:\ARCHIV~1\ELTIMA~1\FLASHD~1\iebt.dll (HKCU)

O11 - Options group: [INTERNATIONAL] International*

O16 - DPF: {03B39B10-9AB9-4DBB-8189-7F76E0CE5F3F} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab?v=13,0,0831,02

O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://download.ewido.net/ewidoOnlineScan.cab

O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Archivos de programa\Yahoo!\Common\yinsthelper.dll

O16 - DPF: {30CADB40-6FD7-433F-BF0D-4827CA7B5BDF} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab

O16 - DPF: {34260DAF-318A-4B5A-8778-A861CF2108A5} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab

O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.com/s/v/15.12/uploader2.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://heroes-spain.spaces.live.com//Photo...ad/MsnPUpld.cab

O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascstubie.cab

O16 - DPF: {594ECDD4-A991-4208-A7B7-00DDAD9BE328} (Photosynth Class) - http://media.labs.live.com/all/ps/_code_/Photosynth.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab

O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase8300.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1142090331453

O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} (DLC Class) - https://transfers.ds.microsoft.com/FTM/Tran...ransferCtrl.cab

O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - http://www.nanoscan.com/cabs/nanoinst.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/...004/mcfscan.cab

O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\ARCHIV~1\MICROS~2\Office12\GR99D3~1.DLL

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Help\hxds.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: talkto - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - (no file)

O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\ARCHIV~1\ARCHIV~1\MICROS~1\OFFICE12\MSOXMLMF.DLL

O20 - Winlogon Notify: WBSrv - C:\Archivos de programa\Stardock\Object Desktop\Windowblinds\wbsrv.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: Apache - Unknown owner - C:\AppServ\Apache\Apache.exe" --ntservice (file missing)

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Archivos de programa\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Archivos de programa\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: MySQL - Unknown owner - C:\AppServ\mysql\bin\mysqld-nt.exe

O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Archivos de programa\Windows Live\installer\WLSetupSvc.exe
 

orandinet

Miembro
Miembro
Sigue de la misma manera

KASPERSKY ONLINE SCANNER REPORT

Monday, July 02, 2007 11:10:30 AM

Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)

Kaspersky Online Scanner version: 5.0.83.0

Kaspersky Anti-Virus database last update: 2/07/2007

Kaspersky Anti-Virus database records: 356312

Scan Settings

Scan using the following antivirus database

extended

Scan Archives

true

Scan Mail Bases

true

Scan Target

My Computer

A:\

C:\

D:\

E:\

F:\

G:\

I:\

Scan Statistics

Total number of scanned objects

314117

Number of viruses found

6

Number of infected objects

20 / 0

Number of suspicious objects

0

Duration of the scan process

08:03:30

Infected Object Name

Virus Name

Last Action

C:\Archivos de programa\Alwil Software\Avast4\DATA\aswResp.dat

Object is locked

skipped

C:\Archivos de programa\Alwil Software\Avast4\DATA\Avast4.db

Object is locked

skipped

C:\Archivos de programa\Alwil Software\Avast4\DATA\log\AshWebSv.ws

Object is locked

skipped

C:\Archivos de programa\Alwil Software\Avast4\DATA\log\aswMaiSv.log

Object is locked

skipped

C:\Archivos de programa\Alwil Software\Avast4\DATA\log\nshield.log

Object is locked

skipped

C:\Archivos de programa\Alwil Software\Avast4\DATA\report\Protección residente.txt

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\DSS\MachineKeys\b7f4316015504044ed59c7309d9a2f11_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\005206f3ebdc0730bb5d275a787b4cc5_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\04d8210acc73893d05292ccec8520de3_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\0fd427bf3c633972521ef5b2c8572a93_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\1a8cc71648eab45e5c79bf3ef9ae7269_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\1fe1289ce857c31ff4177e7ca8867303_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\21213f24146399cbf96b247e77f0abbe_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\2259c433e914d06bf700f537ef9ed073_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\23f56b8560a38b1032c10d35b2f01ccf_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\27658fc15d25a50b5b08964b034bd213_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\313bed651a38b6b7c2282110689ba2e5_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\35e38c5927c95081f448a69a146f0760_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\3824963024be5bba74f34edab12299f5_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\3a9938cde82dba035beab4b7dec85b45_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\3ab742918837d7b992075d04404e1180_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\48072b234f29f3fea86e69df86167d23_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\4dac5ebc659d681aac0d17a62c7599c9_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\58728c254d7cbe1bec6574cb3c4968cc_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\5bc6b8e6984a886f67e9fc16ff3d5bd3_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\5e9034f86a4dd1ea86e913df01535d23_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\6270a86d290108513dc3351f65aa371b_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\63e05f32d70499f0f36e3e08badfbdcf_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\6539c9fe833085ed25eedb38d8ae24e3_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\665e690db788bcd8ba078491d51da550_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\6d091ad74e6c2ddef4243c5501097b96_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\712b14605d4c5e72b139281ff05520fd_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\7309797393f981a4d78963e0a15431bd_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\7814c020e1715c9458e117f332e0ac7b_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\7b736d5ce8249c7a05e66c7a9e9daf3f_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\7fc1c338cc4e821b3111a49f7f96440c_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\852b9efdce27ab737d95e42ffcac30b3_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\873d968c9eacab54e720e1c01bd692d0_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\88f0d830ab8be6ed00d0b7eb58090003_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\8a3093f58d685e23ade2cd83b642fdf8_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\8d78731bf0f911b0f9d87a1c74fa7ff4_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\8f0d541dbfa7aa8fd49a3493697587f3_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\95076f96a320fd398a1ef9c859b092db_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\9ad921eb4873e231b1dfc1714c3377b2_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\9d0bf8be8640864ebcebdb560f6373b0_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\a58ec2f43406d095e9ba5afb1b48267c_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\a5d02610aba5045e333a712d8e4aa3b5_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\a95c0ca2a1d4aa1f49bd2698352e14ff_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\a98c9d7579b9335cc1075f08febf4e75_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\aba48340f9d7b8c40c7778fcfdb9e091_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\ac457cde4b8a4a95c9f3891ab7f7a6b2_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\b48ff5e721cbe5ea7c58a9f33698677e_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\b5b800c7df5baa444a2ffb1b6c157cc0_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\b758a3c5665eee958e7e9c306733e776_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\b9c1222329012a434e7f9da575db8197_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\ba3084470587b7ab71f1d26a6aa6c183_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\be984f93c084dde2f21c119af3de3ec7_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\cb3d3bff17f3f126a1d5b59ca251048b_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\cc91b475fb7a2e1e2750f17d37dfda8c_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\ce19a5aac9495a0f4b2a256067e4be59_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\ce5b9d491bb27e95ac5c94ce7af09873_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\cfeeb876a7f708382e7a0f339642c43a_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\d123fbf95e15f52f9a99590e0cffca28_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\dad9a4144d75bb3ebd286857e31df67d_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\e1b6d39c88853a0fd325be4fa9dfab55_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\e9d62705adcaf5d9f8e71cd9cba0df84_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\eace31bf261e82f067f3911d05bc9642_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\efd2c535ca7b0782f6e1e2a4caff58a5_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Crypto\RSA\MachineKeys\fd002fa3e6e89fe288d4c487828a22e2_2e13636a-0031-4942-bede-9225d23d9a55

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\GatherLogs\SystemIndex\SystemIndex.69.Crwl

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\GatherLogs\SystemIndex\SystemIndex.69.gthr

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\MSS.log

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\MSStmp.log

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010001.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010002.ci

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010002.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010002.wsb

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010003.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010004.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010005.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010006.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010007.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010008.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010009.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000A.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000B.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000C.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000D.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000E.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010013.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010015.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010016.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010017.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010019.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001001A.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001001D.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001001E.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001001F.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010020.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010021.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010022.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010023.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010024.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010027.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001002B.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001002C.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001002D.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010034.wid

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\INDEX.000

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\CiPT0000.000

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\Used0000.000

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SecStore\CiST0000.000

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.chk1.gthr

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.chk2.gthr

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.Ntfy180.gthr

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\tmp.edb

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Applications\Windows\Windows.edb

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Temp\usgthrsvc\Ntf1.tmp

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Temp\usgthrsvc\Ntf2.tmp

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Search\Data\Temp\usgthrsvc\Perflib_Perfdata_300.dat

Object is locked

skipped

C:\Documents and Settings\All Users\Datos de programa\Microsoft\Windows Defender\Support\MPLog-05242007-133355.log

Object is locked

skipped

C:\Documents and Settings\Invitado\Configuración local\Archivos temporales de Internet\AntiPhishing\6729BBF9-D54C-48CB-A4D7-AD400339D808.dat

Object is locked

skipped

C:\Documents and Settings\LocalService\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat

Object is locked

skipped

C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat

Object is locked

skipped

C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG

Object is locked

skipped

C:\Documents and Settings\LocalService\Configuración local\Historial\History.IE5\index.dat

Object is locked

skipped

C:\Documents and Settings\LocalService\Cookies\index.dat

Object is locked

skipped

C:\Documents and Settings\LocalService\NTUSER.DAT

Object is locked

skipped

C:\Documents and Settings\LocalService\ntuser.dat.LOG

Object is locked

skipped

C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat

Object is locked

skipped

C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG

Object is locked

skipped

C:\Documents and Settings\NetworkService\NTUSER.DAT

Object is locked

skipped

C:\Documents and Settings\NetworkService\ntuser.dat.LOG

Object is locked

skipped

C:\Documents and Settings\Propietario\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat

Object is locked

skipped

C:\Documents and Settings\Propietario\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat

Object is locked

skipped

C:\Documents and Settings\Propietario\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG

Object is locked

skipped

C:\Documents and Settings\Propietario\Configuración local\Datos de programa\Microsoft\Windows Defender\FileTracker\{20F9992C-7A4D-4618-AED2-97C2CD7677FC}

Object is locked

skipped

C:\Documents and Settings\Propietario\Configuración local\Historial\History.IE5\index.dat

Object is locked

skipped

C:\Documents and Settings\Propietario\Configuración local\Temp\hsperfdata_Propietario\2820

Object is locked

skipped

C:\Documents and Settings\Propietario\Configuración local\Temp\Perflib_Perfdata_e68.dat

Object is locked

skipped

C:\Documents and Settings\Propietario\Cookies\index.dat

Object is locked

skipped

C:\Documents and Settings\Propietario\Datos de programa\Azureus\ipfilter.cache

Object is locked

skipped

C:\Documents and Settings\Propietario\Datos de programa\Azureus\tmp\AZU29836.tmp

Object is locked

skipped

C:\Documents and Settings\Propietario\Datos de programa\Azureus\tmp\AZU29837.tmp

Object is locked

skipped

C:\Documents and Settings\Propietario\Datos de programa\Azureus\tmp\AZU29838.tmp

Object is locked

skipped

C:\Documents and Settings\Propietario\Datos de programa\Azureus\tmp\AZU29839.tmp

Object is locked

skipped

C:\Documents and Settings\Propietario\Datos de programa\Azureus\tmp\AZU29840.tmp

Object is locked

skipped

C:\Documents and Settings\Propietario\Datos de programa\Azureus\tmp\AZU29841.tmp

Object is locked

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas ordenador\CodecPackElisoft140.zip/CodecPackElisoft140.exe/divx511\fsg_4104.exe

Infected: not-a-virus:AdWare.Win32.Gator.4104

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas ordenador\CodecPackElisoft140.zip/CodecPackElisoft140.exe

Infected: not-a-virus:AdWare.Win32.Gator.4104

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas ordenador\CodecPackElisoft140.zip

ZIP: infected - 2

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas web\webmediaplayer_setup.exe/EXE-file/stream/data0006

Infected: not-a-virus:AdWare.Win32.NaviPromo.ao

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas web\webmediaplayer_setup.exe/EXE-file/stream

Infected: not-a-virus:AdWare.Win32.NaviPromo.ao

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas web\webmediaplayer_setup.exe/EXE-file

Infected: not-a-virus:AdWare.Win32.NaviPromo.ao

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas web\webmediaplayer_setup.exe

Embedded EXE: infected - 3

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas web\webmediaplayer_setup.exe

PECompact: infected - 3

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas web\webmediaplayer_setup.exe

PecBundle: infected - 3

skipped

C:\Documents and Settings\Propietario\Escritorio\Programas\Programas web\webmediaplayer_setup.exe

PE_Patch.PECompact: infected - 3

skipped

C:\Documents and Settings\Propietario\ntuser.dat

Object is locked

skipped

C:\Documents and Settings\Propietario\NTUSER.DAT.LOG

Object is locked

skipped

C:\Program Files\mIRC\Copia de mirc.exe

Infected: not-a-virus:Client-IRC.Win32.mIRC.617

skipped

C:\Program Files\mIRC\mirc.exe

Infected: not-a-virus:Client-IRC.Win32.mIRC.617

skipped

C:\System Volume Information\MountPointManagerRemoteDatabase

Object is locked

skipped

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP112\A0015176.exe/file9

Infected: Trojan.Win32.Obfuscated.en

skipped

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP112\A0015176.exe

Inno: infected - 1

skipped

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP116\A0015465.exe/file9

Infected: Trojan.Win32.Obfuscated.en

skipped

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP116\A0015465.exe

Inno: infected - 1

skipped

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP117\A0015772.exe/stream/data0002

Infected: not-a-virus:AdWare.Win32.BHO.ba

skipped

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP117\A0015772.exe/stream/data0003

Infected: not-a-virus:AdWare.Win32.VB.y

skipped

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP117\A0015772.exe/stream

Infected: not-a-virus:AdWare.Win32.VB.y

skipped

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP117\A0015772.exe

NSIS: infected - 3

skipped

C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP118\change.log

Object is locked

skipped

C:\WINDOWS\Debug\PASSWD.LOG

Object is locked

skipped

C:\WINDOWS\SchedLgU.Txt

Object is locked

skipped

C:\WINDOWS\SoftwareDistribution\ReportingEvents.log

Object is locked

skipped

C:\WINDOWS\Sti_Trace.log

Object is locked

skipped

C:\WINDOWS\system32\CatRoot2\edb.log

Object is locked

skipped

C:\WINDOWS\system32\CatRoot2\tmp.edb

Object is locked

skipped

C:\WINDOWS\system32\config\Antivirus.Evt

Object is locked

skipped

C:\WINDOWS\system32\config\AppEvent.Evt

Object is locked

skipped

C:\WINDOWS\system32\config\default

Object is locked

skipped

C:\WINDOWS\system32\config\default.LOG

Object is locked

skipped

C:\WINDOWS\system32\config\Internet.evt

Object is locked

skipped

C:\WINDOWS\system32\config\ODiag.evt

Object is locked

skipped

C:\WINDOWS\system32\config\OSession.evt

Object is locked

skipped

C:\WINDOWS\system32\config\SAM

Object is locked

skipped

C:\WINDOWS\system32\config\SAM.LOG

Object is locked

skipped

C:\WINDOWS\system32\config\SecEvent.Evt

Object is locked

skipped

C:\WINDOWS\system32\config\SECURITY

Object is locked

skipped

C:\WINDOWS\system32\config\SECURITY.LOG

Object is locked

skipped

C:\WINDOWS\system32\config\software

Object is locked

skipped

C:\WINDOWS\system32\config\software.LOG

Object is locked

skipped

C:\WINDOWS\system32\config\SysEvent.Evt

Object is locked

skipped

C:\WINDOWS\system32\config\system

Object is locked

skipped

C:\WINDOWS\system32\config\system.LOG

Object is locked

skipped

C:\WINDOWS\system32\config\Windows_OneCare_Evt.evt

Object is locked

skipped

C:\WINDOWS\system32\drivers\sptd.sys

Object is locked

skipped

C:\WINDOWS\system32\drivers\sptd0669.sys

Object is locked

skipped

C:\WINDOWS\system32\h323log.txt

Object is locked

skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR

Object is locked

skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP

Object is locked

skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER

Object is locked

skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP

Object is locked

skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP

Object is locked

skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA

Object is locked

skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP

Object is locked

skipped

C:\WINDOWS\Temp\Perflib_Perfdata_560.dat

Object is locked

skipped

C:\WINDOWS\Temp\_avast4_\Webshlock.txt

Object is locked

skipped

C:\WINDOWS\wiadebug.log

Object is locked

skipped

C:\WINDOWS\wiaservc.log

Object is locked

skipped

C:\WINDOWS\WindowsUpdate.log

Object is locked

skipped

Scan process completed.
 

orandinet

Miembro
Miembro
BitDefender Online Scanner







Scan report generated at: Mon, Jul 02, 2007 - 18:26:36











Scan path: A:\;C:\:):\;E:\;F:\;G:\;I:\;















Statistics



Time

04:46:06



Files

1310946



Folders

31243



Boot Sectors

2



Archives

25067



Packed Files

78114









Results



Identified Viruses

1



Infected Files

1



Suspect Files

0



Warnings

0



Disinfected

0



Deleted Files

1









Engines Info



Virus Definitions

636276



Engine build

AVCORE v1.0 (build 2410) (i386) (Jun 12 2007 21:08:27)



Scan plugins

14



Archive plugins

38



Unpack plugins

6



E-mail plugins

6



System plugins

1









Scan Settings



First Action

Disinfect



Second Action

Delete



Heuristics

Yes



Enable Warnings

Yes



Scanned Extensions

*;



Exclude Extensions





Scan Emails

Yes



Scan Archives

Yes



Scan Packed

Yes



Scan Files

Yes



Scan Boot

Yes









Scanned File

Status



C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP112\A0015176.exe=>(Instyler o)=>(Instyler Module 8)

Infected with: Trojan.FatObfus.D



C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP112\A0015176.exe=>(Instyler o)=>(Instyler Module 8)

Disinfection failed



C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP112\A0015176.exe=>(Instyler o)=>(Instyler Module 8)

Deleted



C:\System Volume Information\_restore{B990007B-307B-4065-BD62-9DDA965CED5C}\RP112\A0015176.exe=>(Instyler o)

Update failed
 

orandinet

Miembro
Miembro
veo que me funciona mejor pero sigue tardo en cargar las cosas, pero lo hace mas rapido

Logfile of HijackThis v1.99.1

Scan saved at 20:39:04, on 03/07/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\Archivos de programa\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe

C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\ARCHIV~1\ALWILS~1\Avast4\ashDisp.exe

C:\Archivos de programa\Multimedia Keyboard\PS2USBKbdDrv.exe

C:\Archivos de programa\Windows Defender\MSASCui.exe

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe

C:\Archivos de programa\Alwil Software\Avast4\ashMaiSv.exe

C:\Archivos de programa\Alwil Software\Avast4\ashWebSv.exe

C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe

C:\Archivos de programa\Windows Live\Messenger\usnsvc.exe

C:\Archivos de programa\Messenger\msmsgs.exe

C:\Archivos de programa\Maxthon\Maxthon.exe

C:\Archivos de programa\Azureus\Azureus.exe

C:\WINDOWS\system32\SearchProtocolHost.exe

C:\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.live.com

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O2 - BHO: Aplicación auxiliar de vínculos de Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\ARCHIV~1\SPYBOT~1\SDHelper.dll

O2 - BHO: IEbho Class - {68C55168-E188-40DF-A514-835FCD78B1BF} - C:\Archivos de programa\IE7pro\IE7pro.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\ARCHIV~1\MICROS~2\Office12\GRA8E1~1.DLL

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Archivos de programa\Windows Live Toolbar\msntb.dll

O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Archivos de programa\Styler\TB\StylerTB.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Archivos de programa\Windows Live Toolbar\msntb.dll

O4 - HKLM\..\Run: [avast!] C:\ARCHIV~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Archivos de programa\Multimedia Keyboard\PS2USBKbdDrv.exe

O4 - HKLM\..\Run: [Windows Defender] "C:\Archivos de programa\Windows Defender\MSASCui.exe" -hide

O4 - HKCU\..\Run: [msnmsgr] "C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe

O8 - Extra context menu item: &Capture Page to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddLinkEntryFromDocument.html

O8 - Extra context menu item: &Windows Live Search - res://C:\Archivos de programa\Windows Live Toolbar\msntb.dll/search.htm

O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx"]http://favorites.live.com/quickadd.aspx

O8 - Extra context menu item: Capt&ure Target to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddEntryFromDocumentElement.html

O8 - Extra context menu item: Capture &Snippet to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddEntryFromDocumentSelection.html

O8 - Extra context menu item: Capture Ima&ge to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddEntryFromDocumentElement.html

O8 - Extra context menu item: Capture Page and Selected &Links to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddSiteSnippetFromDocumentSelection.html

O8 - Extra context menu item: Capture Selected Ite&ms to Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddMultipleEntriesFromDocumentSelection.html

O8 - Extra context menu item: Capture Site to &Onfolio... - res://C:\Archivos de programa\Onfolio\Onfolio.WindowsResources.dll/AddSiteFromDocument.html

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Agregar entrada en Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live Writer\WriterBrowserExtension.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MIC273~1\Office12\REFIEBAR.DLL

O9 - Extra button: Flash Decompiler SWF Capture tool - {86B4FC19-8FA4-4FD3-B243-9AEDB42FA2D5} - C:\ARCHIV~1\ELTIMA~1\FLASHD~1\iebt.dll (HKCU)

O9 - Extra 'Tools' menuitem: Flash Decompiler SWF Capture tool menu - {86B4FC19-8FA4-4FD3-B243-9AEDB42FA2D5} - C:\ARCHIV~1\ELTIMA~1\FLASHD~1\iebt.dll (HKCU)

O11 - Options group: [INTERNATIONAL] International*

O16 - DPF: {03B39B10-9AB9-4DBB-8189-7F76E0CE5F3F} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab?v=13,0,0831,02

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab

O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://download.ewido.net/ewidoOnlineScan.cab

O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Archivos de programa\Yahoo!\Common\yinsthelper.dll

O16 - DPF: {30CADB40-6FD7-433F-BF0D-4827CA7B5BDF} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab

O16 - DPF: {34260DAF-318A-4B5A-8778-A861CF2108A5} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab

O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.com/s/v/15.12/uploader2.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://heroes-spain.spaces.live.com//Photo...ad/MsnPUpld.cab

O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascstubie.cab

O16 - DPF: {594ECDD4-A991-4208-A7B7-00DDAD9BE328} (Photosynth Class) - http://media.labs.live.com/all/ps/_code_/Photosynth.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab

O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase8300.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1142090331453

O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} (DLC Class) - https://transfers.ds.microsoft.com/FTM/Tran...ransferCtrl.cab

O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - http://www.nanoscan.com/cabs/nanoinst.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/...004/mcfscan.cab

O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\ARCHIV~1\MICROS~2\Office12\GR99D3~1.DLL

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Help\hxds.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: talkto - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - (no file)

O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\ARCHIV~1\ARCHIV~1\MICROS~1\OFFICE12\MSOXMLMF.DLL

O20 - Winlogon Notify: WBSrv - C:\Archivos de programa\Stardock\Object Desktop\Windowblinds\wbsrv.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: Apache - Unknown owner - C:\AppServ\Apache\Apache.exe" --ntservice (file missing)

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Archivos de programa\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Archivos de programa\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: MySQL - Unknown owner - C:\AppServ\mysql\bin\mysqld-nt.exe

O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Archivos de programa\Windows Live\installer\WLSetupSvc.exe
 

Caito

Ex- Mod
Miembro
Ejecuta el Hijack,scan y luego fix a estas:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

Nos comentas cómo funciona ahora...

Saludos

Caito
 
Estado
Cerrado para nuevas respuestas.
Arriba Pie