| Re: Voy por el 4º mensaje sin respuesta...
b]SDFix: Version 1.171 [/b]
Run by Juan Ruiz Garcia on 15/04/2008 at 11:49
Microsoft Windows XP [Versi¢n 5.1.2600]
Running From: C:\DOWNLO~1\SDFix
Checking Services :
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Rebooting
Checking Files :
No Trojan Files Found
Aqui pego el report del SDFix:
Estoy pasando el Antimalware...
Removing Temp Files
ADS Check :
Final Check :
catchme 0.3.1353.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-15 12:01:56
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden services & system hive ...
scanning hidden registry entries ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0
Remaining Services :
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\standard profile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\syste m32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Archivos de programa\\Panda Software\\Panda Administrator 3\\Pav_Agent\\Pagent.exe"="C:\\Archivos de programa\\Panda Software\\Panda Administrator 3\\Pav_Agent\\Pagent.exe"
"C:\\Archivos de programa\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessen ger.exe"="C:\\Archivos de programa\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessen ger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\\Archivos de programa\\Messenger\\msmsgs.exe"="C:\\Archivos de programa\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Archivos de programa\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Archivos de programa\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Archivos de programa\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Archivos de programa\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Archivos de programa\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Archivos de programa\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Archivos de programa\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Archivos de programa\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Archivos de programa\\Windows Live\\Messenger\\livecall.exe"="C:\\Archivos de programa\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\\Archivos de programa\\AtomPark\\Atomic Mail Verifier\\AtomicMailVerifier.exe"="C:\\Archivos de programa\\AtomPark\\Atomic Mail Verifier\\AtomicMailVerifier.exe:*:Enabled:Atomic Mail Verifier"
"C:\\Archivos de programa\\Bonjour\\mDNSResponder.exe"="C:\\Archivo s de programa\\Bonjour\\mDNSResponder.exe:*:Enabled:Bon jour"
"C:\\Archivos de programa\\AtomPark\\Atomic Mail Sender\\AtomicMailSender.exe"="C:\\Archivos de programa\\AtomPark\\Atomic Mail Sender\\AtomicMailSender.exe:*:Enabled:Atomic Mail Sender"
"C:\\Archivos de programa\\Skype\\Phone\\Skype.exe"="C:\\Archivos de programa\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\domainpr ofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\syste m32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Archivos de programa\\Panda Software\\Panda Administrator 3\\Pav_Agent\\Pagent.exe"="C:\\Archivos de programa\\Panda Software\\Panda Administrator 3\\Pav_Agent\\Pagent.exe"
"C:\\Archivos de programa\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessen ger.exe"="C:\\Archivos de programa\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessen ger.exe:*:Enabled:Logitech Desktop Messenger"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Archivos de programa\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Archivos de programa\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Archivos de programa\\Windows Live\\Messenger\\livecall.exe"="C:\\Archivos de programa\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
Remaining Files :
File Backups: - C:\DOWNLO~1\SDFix\backups\backups.zip
Files with Hidden Attributes :
Mon 28 Jan 2008 1,404,240 A.SHR --- "C:\Archivos de programa\Spybot - Search & Destroy\SDUpdate.exe"
Mon 28 Jan 2008 5,146,448 A.SHR --- "C:\Archivos de programa\Spybot - Search & Destroy\SpybotSD.exe"
Mon 28 Jan 2008 2,097,488 A.SHR --- "C:\Archivos de programa\Spybot - Search & Destroy\TeaTimer.exe"
Wed 9 Apr 2008 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\0f34824a 033eab228771f2d4652430bc\BIT1.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\0430282f 2bf1ec57c42b1f57f6d61a29\download\BIT334.tmp"
Wed 29 Mar 2006 35,208 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\04c681ad 87fa7bf9eccc3a5f5bb62b0c\download\BIT25B.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\0f371b32 3f6d6a7a2edf7796ad531854\download\BIT2BE.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\1241128e d03c74cc35af77e2c70d3b90\download\BIT339.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\1dafa43d ccb3cec1c12e1c4f31f6fcdc\download\BIT33C.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\2d93ac01 7f6465edb241f8f27865fd06\download\BITCE.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\423eb0d8 43ca235adec561f9750a2743\download\BIT2DF.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\4f1c6d5c c0f836a845304c7b4ef1ad10\download\BIT345.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\5816d9cc 046a67540201dd8fb4b4b279\download\BIT337.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\590c3c10 ea5e7e6b59ade875a2ba6b47\download\BIT318.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\6f665087 142eabdac6e73a101b60e654\download\BIT327.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\786db575 511e5d44169cdc1df7038e93\download\BIT338.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\80a8408b 5e4660b59806510c6ae2a66e\download\BIT33A.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\94db6fda 6066ebffabf573e66df8102d\download\BIT305.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\99418ce5 841b833480ee3efdfa0b65c4\download\BIT336.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\a756c5a6 8ef42f817a0ce129882dea65\download\BIT300.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\b9b86da3 572751e60098fe1626d3a89a\download\BIT33B.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\c01ba84c bda1c963b33f4614d3c34e91\download\BIT347.tmp"
Wed 8 Jun 2005 19,774 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\cb4a4142 d1168c702465575951a13c2a\download\BIT27A.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\d0860750 fd4df2691b66c4de0ee6b44f\download\BIT2CD.tmp"
Wed 9 Apr 2008 2,644,353 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\d15b5576 ed2616991a63567229103f16\download\BIT2A2.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\ef0662ff fc4a1456fadaefd9b07cc98a\download\BIT320.tmp"
Wed 9 Apr 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\f04c6bf9 04028d50202de4783085fece\download\BIT335.tmp"
Mon 5 Feb 2007 689,246 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\f1a57820 c5945cd21c25ee55f39f3d90\download\BIT273.tmp"
Tue 31 Oct 2006 178,265,088 A..H. --- "C:\Documents and Settings\Juan Ruiz Garcia\Mis documentos\MEGATIENDAS\Catalogos\Mader International\A - Manichini\~WRL2347.tmp"
Finished!  |