| Re: mi log de hijack this que esta mal?????
Look2Me-Destroyer V1.0.7
Scanning for infected files.....
Scan started at 05/03/2006 09:39:14 p.m.
Infected! C:\WINDOWS\system32\l8n40i5qe8.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144382.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144383.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144425.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144426.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144513.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144515.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP266\A0144543.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP266\A0144544.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP266\A0144568.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144579.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144580.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144594.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144612.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144622.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144623.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144631.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0145039.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0145040.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0146043.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0146049.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0146053.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146074.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146080.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146096.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146102.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146113.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146117.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147152.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147160.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147165.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147171.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147185.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147196.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147206.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147207.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147217.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147218.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147252.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147266.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147267.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147299.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147313.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147320.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147333.dll
Infected! C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147337.dll
Infected! C:\WINDOWS\system32\dn2801fue.dll
Infected! C:\WINDOWS\system32\DPmsLPCn.dll
Infected! C:\WINDOWS\system32\e6202gfmg62a2.dll
Infected! C:\WINDOWS\system32\fpj2031oe.dll
Infected! C:\WINDOWS\system32\l08mlal11dq.dll
Infected! C:\WINDOWS\system32\l8n40i5qe8.dll
Infected! C:\WINDOWS\system32\ompdx32.dll
Infected! C:\WINDOWS\system32\r6r60g9se6.dll
Infected! C:\WINDOWS\system32\ssxcoins.dll
Infected! C:\WINDOWS\system32\vjs_ps.dll
Infected! C:\WINDOWS\system32\wqdsp.dll
Attempting to delete infected files...
Attempting to delete: C:\WINDOWS\system32\l8n40i5qe8.dll
C:\WINDOWS\system32\l8n40i5qe8.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144382.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144382.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144383.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144383.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144425.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144425.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144426.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144426.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144513.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144513.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144515.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP265\A0144515.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP266\A0144543.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP266\A0144543.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP266\A0144544.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP266\A0144544.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP266\A0144568.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP266\A0144568.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144579.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144579.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144580.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144580.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144594.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144594.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144612.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144612.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144622.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144622.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144623.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144623.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144631.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0144631.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0145039.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0145039.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0145040.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0145040.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0146043.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0146043.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0146049.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0146049.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0146053.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP267\A0146053.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146074.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146074.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146080.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146080.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146096.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146096.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146102.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146102.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146113.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146113.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146117.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP268\A0146117.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147152.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147152.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147160.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147160.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147165.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147165.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147171.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147171.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147185.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147185.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147196.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147196.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147206.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147206.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147207.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147207.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147217.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147217.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147218.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147218.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147252.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147252.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147266.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147266.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147267.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147267.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147299.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147299.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147313.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147313.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147320.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147320.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147333.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147333.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147337.dll
C:\System Volume Information\_restore{0B6DB1BF-0EE7-44B9-995C-A0C298B3AB2D}\RP269\A0147337.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\dn2801fue.dll
C:\WINDOWS\system32\dn2801fue.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\DPmsLPCn.dll
C:\WINDOWS\system32\DPmsLPCn.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\e6202gfmg62a2.dll
C:\WINDOWS\system32\e6202gfmg62a2.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\fpj2031oe.dll
C:\WINDOWS\system32\fpj2031oe.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\l08mlal11dq.dll
C:\WINDOWS\system32\l08mlal11dq.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\l8n40i5qe8.dll
C:\WINDOWS\system32\l8n40i5qe8.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\ompdx32.dll
C:\WINDOWS\system32\ompdx32.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\r6r60g9se6.dll
C:\WINDOWS\system32\r6r60g9se6.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\ssxcoins.dll
C:\WINDOWS\system32\ssxcoins.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\vjs_ps.dll
C:\WINDOWS\system32\vjs_ps.dll Deleted successfully!
Attempting to delete: C:\WINDOWS\system32\wqdsp.dll
C:\WINDOWS\system32\wqdsp.dll Deleted successfully!
Making registry repairs.
Removing: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ModuleUsage
Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\She ll Extensions\Approved "{3371FED2-257A-41F0-BC21-EC7A37E208D0}"
HKCR\Clsid\{3371FED2-257A-41F0-BC21-EC7A37E208D0}
Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\She ll Extensions\Approved "{3CF14E9D-7708-4910-BD95-19CA86455865}"
HKCR\Clsid\{3CF14E9D-7708-4910-BD95-19CA86455865}
Restoring Windows certificates.
Replaced hosts file with default windows hosts file
Restoring SeDebugPrivilege for Administradores - Succeeded
Logfile of HijackThis v1.99.1
Scan saved at 09:53:49 p.m., on 05/03/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\Archivos de programa\Archivos comunes\Symantec Shared\ccProxy.exe
C:\WINDOWS\Explorer.EXE
c:\Archivos de programa\Archivos comunes\Symantec Shared\ccSetMgr.exe
C:\Archivos de programa\Archivos comunes\Symantec Shared\SNDSrvc.exe
c:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\altera\quartus51\bin\JTAGServer.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Bonjour\mDNSResponder.exe
c:\Archivos de programa\Archivos comunes\Symantec Shared\Security Center\SymWSC.exe
C:\Archivos de programa\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Archivos de programa\Archivos comunes\InterVideo\SchSvr\SchSvr.exe
C:\Archivos de programa\InterVideo\Common\Bin\WinRemote.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe
C:\WINDOWS\LTMSG.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Archivos de programa\Archivos comunes\Real\Update_OB\realsched.exe
C:\HP\KBD\KBD.EXE
C:\Archivos de programa\iTunes\iTunesHelper.exe
C:\Archivos de programa\QuickTime\qttask.exe
C:\ARCHIV~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\ pchbutton.exe
C:\Archivos de programa\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Archivos de programa\HP\Digital Imaging\bin\hpqtra08.exe
C:\Archivos de programa\Updates from HP\309731\Program\Updates from HP.exe
c:\Archivos de programa\Norton AntiVirus\navapsvc.exe
C:\Archivos de programa\HJT\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\ARCHIV~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Archivos de programa\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Archivos de programa\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Archivos de programa\Archivos comunes\InterVideo\SchSvr\SchSvr.exe"
O4 - HKLM\..\Run: [WINREMOTE] "C:\Archivos de programa\InterVideo\Common\Bin\WinRemote.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [ccApp] "C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\ARCHIV~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [TkBellExe] "C:\Archivos de programa\Archivos comunes\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Archivos de programa\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Archivos de programa\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [QuickTime Task] "C:\Archivos de programa\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [Acme.PCHButton] C:\ARCHIV~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\ pchbutton.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Archivos de programa\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Archivos de programa\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Updates from HP.lnk = C:\Archivos de programa\Updates from HP\309731\Program\Updates from HP.exe
O8 - Extra context menu item: Agregar a HP Organize... - C:\ARCHIV~1\HEWLET~1\HPORGA~1\bin\core.hp.main\Sen dTo.html
O8 - Extra context menu item: Descargar con Fl&ashGet - C:\Archivos de programa\FlashGet\jc_link.htm
O8 - Extra context menu item: Descargar todo con Flas&hGet - C:\Archivos de programa\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\ARCHIV~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\ARCHIV~1\FlashGet\flashget.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\ARCHIV~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\ARCHIV~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\archivos de programa\bonjour\mdnsnsp.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/StagingUI.cab40641.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/v45/yacscom.cab
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - http://zone.msn.com/BinFrameWork/v10/ZBuddy.cab32846.cab
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} - http://ipgweb.cce.hp.com/rdqlar/downloads/sysinfo.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/binframework/v10/ZPAChat.cab32846.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/Bridge-c123.cab
O16 - DPF: {95B5D20C-BD31-4489-8ABF-F8C8BE748463} (ZPA_HRTZ Object) - http://zone.msn.com/bingame/zpagames/zpa_hrtz.cab40641.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {9BDF4724-10AA-43D5-BD15-AEA0D2287303} (ZPA_TexasHoldem Object) - http://zone.msn.com/bingame/zpagames/zpa_txhe.cab42268.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {C36112BF-2FA3-4694-8603-3B510EA3B465} (Lycos File Upload Component) - http://f010.mail.lycos.es/app/uploader/FileUploader.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - http://zone.msn.com/binframework/v10/StProxy.cab41227.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://download.games.yahoo.com/games/web_games/popcap/bejeweled2/popcaploader_v6.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Servicio Bonjour (Bonjour Service) - Apple Computer, Inc. - C:\Archivos de programa\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Archivos de programa\Archivos comunes\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Archivos de programa\Archivos comunes\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Archivos de programa\Archivos comunes\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Archivos de programa\iPod\bin\iPodService.exe
O23 - Service: Altera JTAG Server (JTAGServer) - Unknown owner - C:\altera\quartus51\bin\JTAGServer.exe
O23 - Service: Servicio Auto-Protect de Norton AntiVirus (navapsvc) - Symantec Corporation - c:\Archivos de programa\Norton AntiVirus\navapsvc.exe
O23 - Service: SAVScan - Symantec Corporation - c:\Archivos de programa\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Archivos de programa\Archivos comunes\Symantec Shared\Security Center\SymWSC.exe
ya esta todo bien o falta mas???? al delpsguard no le supe y pues nomas ejecute algunas aplicaciones, GRACIAS  |