| Ver la Versión Completa : Mensaje de error y pc lentísimo! ardipablo 15/11/07, 07:38:41 Hola amigos.Tengo un problema con mi portatil.Desde hace un tiempo me aparece constantemente un mensaje de error que pone WINDOWS SECURITY ALERT y no se porque aparece y que debo hacer,si tengo algun virus ,o es un programa dando la lata.Aparte de esto me va lentísimo y la verdad nose que puedo hacer.Espero vuestra ayuda. Gracias de antemano!! Juancho_ve 15/11/07, 07:48:10 Hola ardipablo Sigue los pasos que te aparecen en este enlace Pasos para eliminar Psguard y sus variantes (http://www.forospyware.com/t4239.html) Nos comentas :Bien: -------------------------------------------------------------- No existen preguntas tontas, sino tontos que no preguntan ardipablo 15/11/07, 08:24:52 Hola otra vez.He hecho lo que has dicho.Pongo aqui el reporte del hijackthis? ardipablo 15/11/07, 08:32:37 Perdona,no hagas casoal mensaje anterior.Ya tengo losprogramas que dice elmanual.pero tengo un problema al seguir el primer paso,ya que al ir a la pestaña de ver informacion del sistema para apagar restaurar sistema me aparece un mensaje de restriccion que no me permite entrar ahi...que puedo hacer?? Juancho_ve 15/11/07, 09:17:52 Hola! :1: Reinicia en Modo A prueba de fallos (http://www.forospyware.com/292284-post4.html) :2: utiliza la herramienta MSNCleanner.exe (http://www.forospyware.com/t92153.html) para reestablecer ciertos parametros del sistema que fueron alterados por la infección: Caracteristicas del MSNCleaner Desbloquea el "Regedit" Desbloquea el "Task Manager" Desbloquea la pagina de inicio en "IE". Borra archivos temporales Restaura valores originales del registro de Windows Restaura el archivo "HOSTS" al original Habilita las funciones del "Panel de Control". Habilita el "Escritorio" Habilita el "Iconos de Escritorio" Habilita el "Reloj" Habilita el "Apagar equipo" en el Menú Inicio. Habilita el "Buscador" en el Menú Inicio. Habilita el "Ejecutar" en el Menú Inicio. Habilita el "Consola CMD" Habilita el "Menú Contextual" Habilita el "Opciones de Carpeta" Sistema de Backup (respaldo) al borrar en "C:\BackUpMsnCleaner" Funciona automática de "Borrar al reiniciar" para archivos rebeldes. --> Luego intenta deshabilitar restaurar Sistema y continua con los pasos del enlace que te deje Espero tu respuesta :Bien: -------------------------------------------------------------- No existen preguntas tontas, sino tontos que no preguntan ardipablo 15/11/07, 10:50:30 Hola otra vez!!sigo sin poder deshabilitar restaurar sistema.Que hago??? <¡D3vIL!> 15/11/07, 10:53:23 Hola ardipablo Descarga HijackThis 2.0.2 (http://www.forospyware.com/292279-post1.html) y descomprimelo en tú escritorio Con todos los programas cerrados (MSN, IE, KaZaa, etc..) ejecuta el instalador HJTInstall.exe y presione el botón de Install. Cuando este termine abrirá el programa HijackThis donde tienes que presionar el botón "Do a system scan and save a logfile" HijackThis escaneara el sistema y automáticamente se te abrira un block de notas. Ve al menú "Edición", cliquea sobre "Seleccionar todo" (o utiliza la combinación de teclas Ctrl + E) ve al mismo menú otra vez pero esta vez presiona sobre Copiar (o Ctrl + C). Pega el reporte en este mismo TEMA! Salu2 Recuerda volver ardipablo 15/11/07, 12:50:22 Hola,este e o reporte do hijackthis, Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:48:35, on 15/11/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16544) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccSetMgr.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccProxy.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\SNDSrvc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\CCPD-LC\symlcsvc.exe C:\WINDOWS\system32\spoolsv.exe C:\Archivos de programa\WIDCOMM\Software Bluetooth\bin\btwdins.exe c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe C:\Archivos de programa\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe c:\APPS\HIDSERVICE\HIDSERVICE.exe C:\Archivos de programa\firebird\bin\ibguard.exe C:\Archivos de programa\CyberLink\Shared Files\CLML_NTService\CLMLService.exe C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\navapsvc.exe C:\WINDOWS\system32\o2flash.exe C:\Archivos de programa\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\WINDOWS\system32\svchost.exe C:\Archivos de programa\Archivos comunes\Ulead Systems\DVD\ULCDRSvr.exe c:\APPS\Powercinema\Kernel\TV\CLSched.exe C:\Archivos de programa\firebird\bin\ibserver.exe C:\WINDOWS\system32\printer.exe C:\WINDOWS\system32\WLan.exe C:\Archivos de programa\Archivos comunes\Ulead Systems\AutoDetector\monitor.exe C:\Archivos de programa\Synaptics\SynTP\SynTPLpr.exe C:\WINDOWS\System32\svchost.exe C:\Archivos de programa\Synaptics\SynTP\SynTPEnh.exe C:\Archivos de programa\Java\jre1.6.0_02\bin\jusched.exe C:\WINDOWS\RTHDCPL.EXE C:\Apps\Powercinema\PCMService.exe C:\WINDOWS\system32\rundll32.exe C:\Archivos de programa\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\system32\ctfmon.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe C:\Archivos de programa\Microsoft ActiveSync\wcescomm.exe C:\Archivos de programa\PC Connectivity Solution\ServiceLayer.exe C:\ARCHIV~1\MI3AA1~1\rapimgr.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Archivos de programa\WIDCOMM\Software Bluetooth\BTTray.exe C:\Archivos de programa\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Archivos de programa\Apple Computer\DVD@ccess\DVDAccess.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Archivos de programa\Archivos comunes\Nokia\MPAPI\MPAPI3s.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\Security Console\NSCSRVCE.EXE C:\Archivos de programa\ATI Technologies\ATI.ACE\cli.exe C:\Archivos de programa\ATI Technologies\ATI.ACE\cli.exe C:\Archivos de programa\Mozilla Firefox\firefox.exe C:\Archivos de programa\Messenger\msmsgs.exe C:\Archivos de programa\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos R3 - URLSearchHook: Online_TV toolbar - {40d1c3a7-4ffb-4443-b3a0-a64b2df7fc3b} - C:\Archivos de programa\Online_TV\tbOnli.dll F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\system32\printer.exe O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Archivos de programa\Archivos comunes\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Multi Media Spain Toolbar - {79f99a29-ffa7-4f2d-a23a-512a548b597c} - C:\Archivos de programa\Multi_Media_Spain\tbMult.dll O3 - Toolbar: Multi Media Spain 2 Toolbar - {b2de6c6c-f6b9-4427-96e4-3b8de900a2b6} - C:\Archivos de programa\Multi_Media_Spain_2\tbMult.dll O3 - Toolbar: Share Accelerator Toolbar - {f5c93451-2609-4723-a053-5c19516be1a8} - C:\Archivos de programa\Share_Accelerator\tbShar.dll O3 - Toolbar: Online_TV toolbar - {40d1c3a7-4ffb-4443-b3a0-a64b2df7fc3b} - C:\Archivos de programa\Online_TV\tbOnli.dll O4 - HKLM\..\Run: [WLAN] C:\WINDOWS\system32\WLan.exe O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Archivos de programa\Archivos comunes\Ulead Systems\AutoDetector\monitor.exe O4 - HKLM\..\Run: [SynTPLpr] C:\Archivos de programa\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Archivos de programa\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Archivos de programa\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe" O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [ATICCC] "C:\Archivos de programa\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Acceso directo a la página de propiedades de High Definition Audio] HDAShCut.exe O4 - HKLM\..\Run: [ccApp] "C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Archivos de programa\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Archivos de programa\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Archivos de programa\Archivos comunes\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Archivos de programa\Archivos comunes\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [WinAVX] C:\WINDOWS\system32\WinAvXX.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Archivos de programa\TomTom HOME 2\HOMERunner.exe" -s O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [VodafoneUSBPP.exe] C:\Archivos de programa\Huawei technologies\Vodafone Mobile Connect Modem\VodafoneUSBPP.exe windows O4 - HKCU\..\Run: [BitTorrent] "C:\Archivos de programa\BitTorrent\bittorrent.exe" --force_start_minimized O4 - HKCU\..\Run: [WinAVX] C:\WINDOWS\system32\WinAvXX.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Archivos de programa\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [PcSync] C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Archivos de programa\Microsoft ActiveSync\wcescomm.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICIO LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Servicio de red') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Recorte de pantalla e Inicio rápido de OneNote 2007.lnk = C:\Archivos de programa\Microsoft Office\Office12\ONENOTEM.EXE O4 - Startup: system.exe O4 - Global Startup: autorun.exe O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: DSLMON.lnk = C:\Archivos de programa\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: DVD@ccess.lnk = ? O4 - Global Startup: hp psc 1000 series.lnk = ? O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Pol icies\System, DisableRegedit=1 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARCHIV~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARCHIV~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\ARCHIV~1\MI3AA1~1\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\ARCHIV~1\MI3AA1~1\INetRepl.dll O9 - Extra 'Tools' menuitem: Crear un favorito móvil... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\ARCHIV~1\MI3AA1~1\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Software Bluetooth\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Software Bluetooth\btsendto_ie.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\sp.htm O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} (MetaStreamCtl Class) - https://components.viewpoint.com/MTSInstallers/MetaStream3.cab?url=http://www.astonmartin.com/configurator/vanquish_load.html O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by134fd.bay134.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase2474.cab O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://webgames.d.tmsrv.com/c=fd267eb309d55ce303535f6f48648eac/aff=t_25oa_esca_wg/p/release/playfirst/wg_dinerdash2/dinerdash2/DinerDash2.1.0.0.48.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://webgames.d.tmsrv.com/c=fd267eb309d55ce303535f6f48648eac/aff=t_25oa_esca_wg/p/release/playfirst/wg_dinerdash/dinerdash/DinerDash.1.0.0.58.cab O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by101fd.bay101.hotmail.msn.com/activex/HMAtchmt.ocx O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\ARCHIV~1\MICROS~2\Office12\GR99D3~1.DLL O23 - Service: Adobe LM Service - Adobe Systems - C:\Archivos de programa\Archivos comunes\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Archivos de programa\WIDCOMM\Software Bluetooth\bin\btwdins.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Archivos de programa\Norton Internet Security\ccPwdSvc.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccProxy.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccSetMgr.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Archivos de programa\Norton Internet Security\comHost.exe O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Archivos de programa\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: InterBase Guardian (InterBaseGuardian) - FirebirdSQL Project - C:\Archivos de programa\firebird\bin\ibguard.exe O23 - Service: InterBase Server (InterBaseServer) - FirebirdSQL Project - C:\Archivos de programa\firebird\bin\ibserver.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\ARCHIV~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: Servicio Auto-Protect de Norton AntiVirus (navapsvc) - Symantec Corporation - C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\Security Console\NSCSRVCE.EXE O23 - Service: O2Micro Flash Memory (O2Flash) - Unknown owner - C:\WINDOWS\system32\o2flash.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Programador de LiveUpdate automático - Symantec Corporation - C:\Archivos de programa\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: ServiceLayer - Nokia. - C:\Archivos de programa\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Archivos de programa\Archivos comunes\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Archivos de programa\Archivos comunes\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Archivos de programa\Windows Live\installer\WLSetupSvc.exe -- End of file - 16827 bytes <¡D3vIL!> 15/11/07, 13:38:22 Hola ardipablo Teclea Ctrl+Alt+Supr para ver el Administrador de tarea, en la pestaña Proceso finaliza este archivo (Si estan): printer.exe Descarga ComboFix.exe (http://download.bleepingcomputer.com/sUBs/ComboFix.exe) y lo guardas en el escritorio, pero no lo ejecutes aún. "Apaga Restaurar Sistema" (http://www.forospyware.com/292280-post2.html) Reinicia he inicia en "Modo a prueba de fallos" (http://www.forospyware.com/292284-post4.html) Ejecuta el HijackThis, cierra todos los navegadores, cheka estas y dale a Fix F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\system32\printer.exe O4 - HKLM\..\Run: [WinAVX] C:\WINDOWS\system32\WinAvXX.exe O4 - HKCU\..\Run: [WinAVX] C:\WINDOWS\system32\WinAvXX.exe O4 - Startup: system.exe O4 - Global Startup: autorun.exe O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Pol icies\System, DisableRegedit=1 O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://webgames.d.tmsrv.com/c=fd267eb309d55ce30353 5f6f48648eac/aff=t_25oa_esca_wg/p/release/playfirs t/wg_dinerdash2/dinerdash2/DinerDash2.1.0.0.48.cab O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://webgames.d.tmsrv.com/c=fd267eb309d55ce30353 5f6f48648eac/aff=t_25oa_esca_wg/p/release/playfirs t/wg_dinerdash/dinerdash/DinerDash.1.0.0.58.cab Sin reiniciar hace doble-click en el archivo combofix.exe y sigue los avisos. Cuando termine este generara un reporte que se situa en C:\ComboFix.txt pegar el informe en este mismo mensaje. Nota* Puede que algunos Antivirus detecten un falso positivo (http://www.forospyware.com/glossary.php?do=viewglossary&term=20)en ComboFix pero no hay que preocuparse por esto. Reinicia el PC a Modo normal Nos pegas un reporte nuevo de HJT y el de ComboFix. salu2 http://img455.imageshack.us/img455/7932/icontwistedrp4.gif Recuerda volver y contarnos los resultados ardipablo 16/11/07, 07:43:35 Hla amigo!!!sigo con el mismo problema.El pc no me deja acceder al administrador de tareas,me dice que el administrador de tareas ha sido deshablitado por el administrador,con lo cual no puedo ni empezar con los pasos que me has dicho.Se os ocurre algo qe pueda hacer...saludos y gracias por vuestros intentos. <¡D3vIL!> 16/11/07, 07:58:27 Hola ardipablo Disculpa, se me olvido que tienes ese problema de no poder entrar al administrador de tareas, pero hace los pasos que te dí, omite ese ;) Salu2 ardipablo 16/11/07, 18:06:22 este es el reporte del combofix: ComboFix 07-11-08.1 - DAVID 2007-11-16 23:48:15.1 - NTFSx86 MINIMAL Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.3082.18.788 [GMT 1:00] Se ejecuta desde: C:\Documents and Settings\DAVID\Escritorio\ComboFix.exe . (((((((((((((((((((((((((((((((((((( Otras eliminaciones ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\Administrador\Menú Inicio\Programas\Inicio\system.exe C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58 C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\cup.pn g C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\custom er_cup.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\heart. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\menu_d own.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\menu_u p.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\plates .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\ticket .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\tray.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\music\mainme numusic.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_brin g_check_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_deli ver_food_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_deli ver_order_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_dine r.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_dish _dropoff_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_food _ready_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_gain _heart_1.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_get_ drinks_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_part y_arrive_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_penc il_write_2.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_pick up_food_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_roll over_1.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_seat _people_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\credit s.jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\choose difficulty.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\flo_lo se.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\flo_wi n.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\help1. jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\help2. jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\highsc ores.jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\leveli ntro.jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\leveli ntro_mask.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelo ver.jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelo ver_mask.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\mainme nu.jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\popup. jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\popup_ mask.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\upgrad egrid.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\upgrad etitle.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\upsell .jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowleft_ blue.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowleft_ yellow.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowright _blue.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowright _yellow.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\back_blue. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\back_yello w.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backchalk. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backchalku p.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backtomenu _blue.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backtomenu _yellow.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\cancel.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\cancelup.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\career.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\career_ove r.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\close.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\closeup.pn g C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\continue.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\continueov er.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\credits_bl ue.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\credits_ye llow.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\download_b lue.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\download_y ellow.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\easy.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\easy_over. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\endlessshi ft.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\endlessshi ft_over.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\hard.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\hard_over. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\help.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\help_over. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\highscores .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\highscores _over.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\instructio ns_blue.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\instructio ns_yellow.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\letsplay.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\letsplayov er.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\medium.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\medium_ove r.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\moreinfo.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\moreinfoup .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\off.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\off_on.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\on.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\on_on.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\pause.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\pauseover. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quit.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quitgame.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quitgameov er.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quitover.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\resumegame .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\resumegame over.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\submit.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\submitup.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\tryagain.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\tryagainov er.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\upgrade_ov er.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\upgrade_up .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewglobal .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewglobal up.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewhighsc ore.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewhighsc oreon.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewlocal. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewlocalu p.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\comics\webcomic.jp g C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\config\career.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\config\customer.xm l C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\config\endless.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\config\global.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\config\powerups.xm l C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\cook\cook.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\cook\cook.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\cook\stove.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\cursor\arrow.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\cursor\click.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\cursor\click2.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\cursor\grab.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\cursor\open.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \blue\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \blue\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \blue\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \green\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \green\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \green\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \purple\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \purple\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \purple\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \red\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \red\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \red\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \yellow\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \yellow\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\old_male \yellow\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\blue\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\blue\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\blue\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\green\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\green\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\green\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\purple\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\purple\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\purple\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\red\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\red\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\red\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\yellow\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\yellow\anim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\customers\young_fe male\yellow\sit_legs.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\flo\idle.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\flo\idle.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\flo\lower.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\flo\lower.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\flo\upper.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\flo\upper.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\fonts\arial.mvec C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\fonts\komikaaxis.m vec C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\chair.pn g C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\chair.xm l C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\dirt2top .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\dirt4top .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\dishcart .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\dishcart .xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\drinksta tion_off.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\drinksta tion_on1.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\drinksta tion_on2.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\ticketst ation.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\furniture\ticketst ation.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\arrowdown. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\arrowdowno n.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\arrowleft. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\arrowlefto n.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\arrowright .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\arrowright on.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\arrowup.pn g C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\arrowupon. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\p1icon.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\textedit.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\hiscore\title.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 1.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 1_a.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 1_b.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 1_c.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 2.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 2_a.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 2_b.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 2_c.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 2_d.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 3.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 3_a.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 3_b.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 3_c.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\endless_1_ 3_d.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\fifth_leve l_diner.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\first_leve l_diner.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\fourth_lev el_diner.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\layouts\second_lev el_diner.txt C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\playfirst_logo.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ background.jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ food\food1.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ food\food1.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ food\food2.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ food\food2.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ food\food3.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ food\food3.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ frames\upgrade_0001.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ tables\2top.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ tables\2top.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ tables\4top.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ tables\4top.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\diner\ upgrades.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\restaurants\tables hadow.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\credits.lu a C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\choosediff iculty.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\chooseplay er.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\chooserest aurant.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\game.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\gothighsco re.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\help.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\help2.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\hiscore.lu a C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\hiscoreinf o.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\hiscoresub mit.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\levelintro .lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\levelover. lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\loading.lu a C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\mainloop.l ua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\mainmenu.l ua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\ok.lua C:\WINDOWS\Downloaded Program ardipablo 16/11/07, 18:07:27 Files\DinerDash.1.0.0.58\assets\scripts\pause.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\style.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\tutorialin tro.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\upgrade.lu a C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\upsell.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\webcomic.l ua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\scripts\yesno.lua C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\splash\gamelabspla sh.jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\splash\playfirst_l ogo.jpg C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\strings.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\angersmoke.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\angersmoke.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\clock.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\closed.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\closingtime.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\coinflip.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\coinflip.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\chairflags.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\chairflags.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\check.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\checkmark.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\dollar.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\doodles\coffee. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\doodles\tables. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\doodles\wallpap er.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\expert.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\expertscore.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\foodpoof.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\foodpoof.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\fork_timer.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\goalcompleted.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\heartgrow.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\heartgrow.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\jar.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\jar.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\level.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\level_career.pn g C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\score.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\sound.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\staroff.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\staron.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\tablenumber.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\tablenumberup.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\traynumber.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\tutorial_charac ter.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\tutorialarrow.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\tutorialbox.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\upgradeanim.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\upgradeanim.xml C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\upgrades\drinks .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\upgrades\maitre d.png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\upgrades\oven.p ng C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\upgrades\select .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\upgrades\shoes. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\upgrades\stereo .png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\ui\upgrades\table. png C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\dinerdash.exe C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48 C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\dirty _dishes.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\foodt ray.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\heart 1.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\heart 2.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\heart 3.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\menu_ down.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\menu_ up.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\mop_p rop.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\ticke t.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\cafe\ cafe_music_a1.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\cafe\ cafe_music_a2.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\cafe\ cafe_music_a3.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\cafe\ cafe_music_a4.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\mainm enumusic.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\baby_cr y.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\closing _time.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\custome r_ditch.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\chef_co ok1.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\dialog_ down.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\dialog_ up.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\drink_t able.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\expert. ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\highcha ir_deliver.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\highcha ir_pickup.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\keystro ke2.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\level_l ose.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\level_w in.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\menu_cl ick.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\menu_ro llover.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\mop_pic kup.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\mop_spi ll.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_bri ng_check_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_del iver_food_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_dis h_dropoff_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_dro poff_drinks_1.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_foo d_ready_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_gai n_heart_1.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_get _drinks_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_men u_down.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_par ty_arrive_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_pen cil_write_2.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_pic kup_food_1_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_sea t_people_snd.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\spill.o gg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\table_d rink.ogg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\tip_2.o gg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\flo_l ose.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\flo_w in.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\fulls creendialog.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\high_ score_menu_bg.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\level intro.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\level intro.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\level over.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\longd ialog.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\longd ialog.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\mainm enu.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\mainm enu_logo.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\popup .jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\popup .png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\textf ield.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\upgra de_lines.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowdown _a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowdown _b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowdown _c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowup_a .png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowup_b .png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowup_c .png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\checkbox_ a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\checkbox_ b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\checkbox_ rotated_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\checkbox_ rotated_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\decor_hig hlight.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\decor_nor mal.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\decor_sel ected.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_bu tton_a_large_1.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_bu tton_a_large_2.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_bu tton_a_large_3.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_bu tton_a_small_1.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_bu tton_a_small_2.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_bu tton_a_small_3.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_bu tton_a1.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_bu tton_a2.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_bu tton_a3.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\left_arro w_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\left_arro w_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\left_arro w_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu _button1_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu _button1_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu _button1_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu _button1_mask.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu _button2_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu _button2_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu _button2_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu _button2_mask.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\map_butto n_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\map_butto n_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\map_butto n_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\right_arr ow_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\right_arr ow_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\right_arr ow_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\upgrade_d own.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\upgrade_o ver.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\upgrade_u p.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\welcome_p layer.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\actionpoin ts.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\career.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\customer.b in C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\endless.bi n C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\global.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\powerups.b in C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cook\stove.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\arrow.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\click.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\click2.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\grab.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\open.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_mal e\anim.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_mal e\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_mal e\blue.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_mal e\blue_legs.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_mal e\legs.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_mal e\red.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_mal e\red_legs.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_mal e\anim.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_mal e\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_mal e\blue.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_mal e\blue_legs.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_mal e\legs.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_mal e\red.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_mal e\red_legs.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\anim.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\baby.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\baby.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\blue.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\blue_baby.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\blue_legs.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\legs.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\red.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\red_baby.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_fem ale\red_legs.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_f emale\anim.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_f emale\anim.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_f emale\blue.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_f emale\blue_legs.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_f emale\legs.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_f emale\red.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_f emale\red_legs.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\idle.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\idle.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\lower.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\lower.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\upper.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\upper.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\fonts\mercurius.m vec C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\bench.a nm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\bench.p ng C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\blue_hi ghchairbaby.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\chair.a nm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\chair.p ng C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\dirt2to p.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\dirt4to p.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\dishcar t.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\dishcar t.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\green_h ighchairbaby.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\highcha ir_prop_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\highcha ir_prop_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\highcha irbaby.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\highcha irbaby.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\luxury_ bench.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\luxury_ bench.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\mop_sta tion_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\mop_sta tion_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\mop_sta tion_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\podium. png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\podium_ heart.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\podium_ heart.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\purple_ highchairbaby.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\radio.p ng C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\red_hig hchairbaby.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\spill.a nm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\spill.p ng C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\stereo. png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\tickets tation.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\tickets tation.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\yellow_ highchairbaby.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\family.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help_divider line.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help1_colorm atch1.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help1_colorm atch2.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help1_noise. png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help1_score. png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_cleard ishes.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_givech eck.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_pickup food.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_servef ood.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_takeor der.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\hiscore\local-hs-bb.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\hiscore\p1icon.pn g C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_ 1.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_ 2.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_ 3.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_ 4.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_ 5.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_ 6.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\endless_1 _1.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\endless_1 _1_a.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\endless_1 _1_b.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\endless_1 _1_c.bin C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\playfirstlogo.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ background.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ chairs\blue.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ chairs\green.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ chairs\green.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ chairs\grey.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ chairs\red.pal C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ food\cup1.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ food\food.anm C ardipablo 16/11/07, 18:08:04 :\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ food\food.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ frames\2_0.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ frames\2_1.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ furniture\drinkstation1_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ furniture\drinkstation1_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ furniture\drinkstation1_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ people\cook.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ people\cook.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ props\cup_prop1.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ tables\2top.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ tables\2top.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ tables\4top.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ tables\4top.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ upgrade_icons\cafe_icon_2_0.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ upgrade_icons\cafe_icon_2_1.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\ upgrades.xml C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\table shadow.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\careerupg rade.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\closeconf irm.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\choosedif ficulty.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\entername .lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\game.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\getmorega mes.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\help1.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\help2.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\hiscore.l ua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\hiscorein fo.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\hiscoresu bmit.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\levelintr o.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\levelover .lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\loading.l ua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\mainloop. lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\mainmenu. lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\ok.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\pause.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\style.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\upgrade.l ua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\upsell.lu a C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\yesno.lua C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\splash\aol_logo.p ng C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\splash\playfirst_ logo.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\strings.xml C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\angersmoke.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\angersmoke.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\bubbles\reques t_bubble.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\bubbles\reques t_mop.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\bubbles\reques t_rejectmeal.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\closed.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\coinflip.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\coinflip.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\chairflags.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\chairflags.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\check.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\checkmark.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\decor_lines.pn g C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\dollar.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\expert.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\foodpoof.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\foodpoof.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\heartgrow.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\heartgrow.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\jar.anm C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\jar.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\lives_icon.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\noisering.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_bo ost_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_bo ost_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_bo ost_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_bo ost_d.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_bo ost_e.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_bo ost_f.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\tablenumber_a. png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\tablenumber_b. png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\traynumber.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\tutorialarrow. png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\tutorialbox.pn g C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\ui_base.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\ui_hand.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\ui_timer_off.p ng C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\ui_timer_on.pn g C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgradeanim.pn g C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ bench_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ bench_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ bench_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ drink_station1_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ drink_station1_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ drink_station1_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ luxury_bench_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ luxury_bench_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ luxury_bench_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ oven_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ oven_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ oven_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ podium_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ podium_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ podium_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ powerbars_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ powerbars_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ powerbars_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ radio_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ radio_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ radio_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ stereo_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ stereo_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ stereo_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ table_a.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ table_b.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_ table_c.png C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\upsell\dd1.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\upsell\dd2.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\upsell\dd3.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\upsell\dd4.jpg C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\dinerdash2.exe C:\WINDOWS\system32\printer.exe C:\WINDOWS\system32\WinAvXX.exe . (((((((((((((((((( Archivos creados desde 2007-10-16 - 2007-11-16 ))))))))))))))))))))))))))))))))) . 2007-11-16 23:46 51,200 --a------ C:\WINDOWS\NirCmd.exe 2007-11-15 16:04 <DIR> d-------- C:\BackUpMSNCleaner 2007-11-15 14:27 <DIR> d-------- C:\Archivos de programa\DelPSGuard 2007-11-15 14:09 <DIR> d-------- C:\Archivos de programa\CCleaner 2007-11-15 14:08 <DIR> d-------- C:\Archivos de programa\Trend Micro 2007-11-14 21:20 314,499 --a------ C:\SP_F_01.DAT 2007-11-05 09:59 <DIR> d-------- C:\Archivos de programa\MSXML 6.0 2007-11-04 18:46 <DIR> d-------- C:\Archivos de programa\TomTom DesktopSuite 2007-11-04 17:37 <DIR> d-------- C:\Documents and Settings\DAVID\Datos de programa\TomTom 2007-11-04 17:37 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\TomTom 2007-11-04 17:36 <DIR> d-------- C:\Archivos de programa\TomTom HOME 2 2007-11-04 14:36 <DIR> d-------- C:\WINDOWS\system32\XPSViewer 2007-11-04 14:35 <DIR> d-------- C:\Archivos de programa\Reference Assemblies 2007-11-04 14:34 14,048 --------- C:\WINDOWS\system32\spmsg2.dll 2007-11-04 12:28 <DIR> d-------- C:\Archivos de programa\TomTom HOME 2007-11-04 12:06 <DIR> d-------- C:\Archivos de programa\Microsoft ActiveSync 2007-11-04 12:06 30,592 --------- C:\WINDOWS\system32\drivers\rndismpx.sys 2007-11-04 12:06 12,800 --------- C:\WINDOWS\system32\drivers\usb8023x.sys 2007-10-31 23:38 32,592 --a------ C:\WINDOWS\system32\msonpmon.dll 2007-10-31 23:36 <DIR> d-------- C:\Archivos de programa\Microsoft Works 2007-10-31 23:35 <DIR> d-------- C:\Archivos de programa\MSBuild 2007-10-31 23:32 <DIR> d-------- C:\Archivos de programa\Microsoft.NET 2007-10-31 23:19 <DIR> d-------- C:\Archivos de programa\Microsoft Visual Studio 8 2007-10-31 23:17 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\Microsoft Help 2007-10-27 20:28 <DIR> d-------- C:\WINDOWS\system32\printer . (((((((((((((((((((((((((((((((((((((( Reporte Find3M )))))))))))))))))))))))))))))))))))))))))))))))))) ) . 2007-11-16 12:41 --------- d-----w C:\Archivos de programa\Archivos comunes\Symantec Shared 2007-11-15 15:31 23 ----a-w C:\WINDOWS\system32\drivers\adidsl.cfg 2007-11-15 12:18 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Spybot - Search & Destroy 2007-11-15 11:56 --------- d-----w C:\Archivos de programa\eMule 2007-11-14 19:41 --------- d-----w C:\Documents and Settings\DAVID\Datos de programa\BitTorrent 2007-11-04 20:37 --------- d--h--w C:\Archivos de programa\InstallShield Installation Information 2007-11-04 13:42 --------- d-----w C:\Documents and Settings\DAVID\Datos de programa\Nokia 2007-11-04 13:40 --------- d-----w C:\Archivos de programa\Nokia 2007-11-03 17:36 --------- d-----w C:\Archivos de programa\Norton Internet Security 2007-10-25 16:43 8,502,272 ----a-w C:\WINDOWS\system32\dllcache\shell32.dll 2007-10-24 20:33 805 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.INF 2007-10-24 20:33 60,800 ----a-w C:\WINDOWS\system32\S32EVNT1.DLL 2007-10-24 20:33 123,952 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.SYS 2007-10-24 20:33 10,740 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.CAT 2007-10-24 20:33 --------- d-----w C:\Archivos de programa\Symantec 2007-10-13 09:55 --------- d-----w C:\Archivos de programa\BitTorrent 2007-10-05 12:20 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\MSScanAppDataDir 2007-10-04 22:01 --------- d-----w C:\Documents and Settings\DAVID\Datos de programa\APLI Master 2007-10-04 20:59 --------- d-----w C:\Archivos de programa\APLI Paper 2007-10-04 19:45 --------- d-----w C:\Documents and Settings\DAVID\Datos de programa\OpenOffice.org2 2007-10-01 12:49 98,184 ----a-w C:\WINDOWS\system32\drivers\symfw.sys 2007-10-01 12:49 542,088 ----a-w C:\WINDOWS\system32\SymNeti.dll 2007-10-01 12:49 31,624 ----a-w C:\WINDOWS\system32\drivers\symids.sys 2007-10-01 12:49 28,040 ----a-w C:\WINDOWS\system32\drivers\symndis.sys 2007-10-01 12:49 23,944 ----a-w C:\WINDOWS\system32\drivers\symredrv.sys 2007-10-01 12:49 189,320 ----a-w C:\WINDOWS\system32\drivers\symtdi.sys 2007-10-01 12:49 161,160 ----a-w C:\WINDOWS\system32\SymRedir.dll 2007-10-01 12:48 12,680 ----a-w C:\WINDOWS\system32\drivers\symdns.sys 2007-09-26 21:34 --------- d-----w C:\Archivos de programa\Windows Live Safety Center 2007-09-26 20:38 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\WLInstaller 2007-09-17 20:16 --------- d-----w C:\Archivos de programa\Codec Pack - All In 1 2007-09-17 14:36 --------- d-----w C:\Archivos de programa\Alwil Software 2007-08-21 06:17 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll 2007-08-21 06:17 683,520 ------w C:\WINDOWS\system32\dllcache\inetcomm.dll 2007-08-20 20:51 16,386 ----a-w C:\WINDOWS\system32\aplbca203.dll 2007-08-20 20:35 16,386 ----a-w C:\WINDOWS\system32\aplsof203.dll 2007-08-20 09:59 824,832 ----a-w C:\WINDOWS\system32\dllcache\wininet.dll 2007-08-20 09:59 671,232 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll 2007-08-20 09:59 63,488 ------w C:\WINDOWS\system32\dllcache\icardie.dll 2007-08-20 09:59 6,058,496 ------w C:\WINDOWS\system32\dllcache\ieframe.dll 2007-08-20 09:59 52,224 ------w C:\WINDOWS\system32\dllcache\msfeedsbs.dll 2007-08-20 09:59 477,696 ----a-w C:\WINDOWS\system32\dllcache\mshtmled.dll 2007-08-20 09:59 459,264 ------w C:\WINDOWS\system32\dllcache\msfeeds.dll 2007-08-20 09:59 44,544 ------w C:\WINDOWS\system32\dllcache\iernonce.dll 2007-08-20 09:59 384,512 ------w C:\WINDOWS\system32\dllcache\iedkcs32.dll 2007-08-20 09:59 383,488 ------w C:\WINDOWS\system32\dllcache\ieapfltr.dll 2007-08-20 09:59 3,584,512 ----a-w C:\WINDOWS\system32\dllcache\mshtml.dll 2007-08-20 09:59 27,648 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll 2007-08-20 09:59 267,776 ------w C:\WINDOWS\system32\dllcache\iertutil.dll 2007-08-20 09:59 232,960 ------w C:\WINDOWS\system32\dllcache\webcheck.dll 2007-08-20 09:59 230,400 ------w C:\WINDOWS\system32\dllcache\ieaksie.dll 2007-08-20 09:59 214,528 ----a-w C:\WINDOWS\system32\dllcache\dxtrans.dll 2007-08-20 09:59 193,024 ----a-w C:\WINDOWS\system32\dllcache\msrating.dll 2007-08-20 09:59 153,088 ------w C:\WINDOWS\system32\dllcache\ieakeng.dll 2007-08-20 09:59 132,608 ----a-w C:\WINDOWS\system32\dllcache\extmgr.dll 2007-08-20 09:59 124,928 ------w C:\WINDOWS\system32\dllcache\advpack.dll 2007-08-20 09:59 105,984 ------w C:\WINDOWS\system32\dllcache\url.dll 2007-08-20 09:59 102,400 ------w C:\WINDOWS\system32\dllcache\occache.dll 2007-08-20 09:59 1,152,000 ----a-w C:\WINDOWS\system32\dllcache\urlmon.dll 2007-08-17 10:21 625,152 ------w C:\WINDOWS\system32\dllcache\iexplore.exe 2007-08-17 10:20 63,488 ------w C:\WINDOWS\system32\dllcache\ie4uinit.exe 2007-08-17 10:20 13,824 ------w C:\WINDOWS\system32\dllcache\ieudinit.exe 2007-08-17 07:34 161,792 ------w C:\WINDOWS\system32\dllcache\ieakui.dll 2007-08-16 14:17 51,568 ----a-w C:\WINDOWS\system32\sirenacm.dll 2007-07-16 16:18 491 ---ha-w C:\Documents and Settings\DAVID\hpothb07.dat 2005-03-31 20:17 40,960 ----a-w C:\Archivos de programa\Uninstall_CDS.exe . ((((((((((((((((((((((((((((((((( Cargando Puntos Reg )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* entradas vacías & entradas legítimas predeterminadas no son mostradas [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run] "WLAN"="C:\WINDOWS\system32\WLan.exe" [2005-11-25 07:52] "Ulead AutoDetector v2"="C:\Archivos de programa\Archivos comunes\Ulead Systems\AutoDetector\monitor.exe" [2004-11-26 10:43] "SynTPLpr"="C:\Archivos de programa\Synaptics\SynTP\SynTPLpr.exe" [2005-03-10 17:44] "SynTPEnh"="C:\Archivos de programa\Synaptics\SynTP\SynTPEnh.exe" [2005-03-10 17:43] "SunJavaUpdateSched"="C:\Archivos de programa\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 03:00] "RTHDCPL"="RTHDCPL.EXE" [2005-12-19 14:52 C:\WINDOWS\RTHDCPL.exe] "PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-20 13:00] "PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-20 13:00] "PCMService"="c:\Apps\Powercinema\PCMService.exe" [2005-05-11 12:48] "IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-20 13:00] "BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-20 13:00 C:\WINDOWS\system32\bthprops.cpl] "ATICCC"="C:\Archivos de programa\ATI Technologies\ATI.ACE\cli.exe" [2005-08-12 13:43] "Acceso directo a la página de propiedades de High Definition Audio"="HDAShCut.exe" [2005-01-07 16:07 C:\WINDOWS\system32\HdAShCut.exe] "ccApp"="C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe" [2007-02-22 12:32] "Adobe Photo Downloader"="C:\Archivos de programa\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [2005-07-14 14:09] "PCSuiteTrayApplication"="C:\Archivos de programa\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2006-11-08 13:27] "Symantec PIF AlertEng"="C:\Archivos de programa\Archivos comunes\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2007-03-12 09:22] "GrooveMonitor"="C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 00:47] "TomTomHOME.exe"="C:\Archivos de programa\TomTom HOME 2\HOMERunner.exe" [2007-10-31 10:19] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-20 13:00] "VodafoneUSBPP.exe"="C:\Archivos de programa\Huawei technologies\Vodafone Mobile Connect Modem\VodafoneUSBPP.exe" [2006-10-09 16:29] "BitTorrent"="C:\Archivos de programa\BitTorrent\bittorrent.exe" [2007-09-08 00:01] "MsnMsgr"="C:\Archivos de programa\Windows Live\Messenger\MsnMsgr.exe" [2007-08-16 15:19] "PcSync"="C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe" [2006-11-09 17:15] "H/PC Connection Agent"="C:\Archivos de programa\Microsoft ActiveSync\wcescomm.exe" [2006-06-21 01:41] [HKEY_USERS\.default\software\microsoft\windows\cur rentversion\run] "PcSync"=C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog C:\Documents and Settings\DAVID\Men£ Inicio\Programas\Inicio\ Recorte de pantalla e Inicio r pido de OneNote 2007.lnk - C:\Archivos de programa\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 20:24:54] C:\Documents and Settings\All Users\Men£ Inicio\Programas\Inicio\ Bluetooth Manager.lnk - C:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe [2004-12-21 19:42:22] BTTray.lnk - C:\Archivos de programa\WIDCOMM\Software Bluetooth\BTTray.exe [2003-09-19 14:46:14] DSLMON.lnk - C:\Archivos de programa\SAGEM\SAGEM F@st 800-840\dslmon.exe [2007-11-15 16:30:46] DVD@ccess.lnk - C:\Archivos de programa\Apple Computer\DVD@ccess\DVDAccess.exe [2007-01-17 22:09:48] hp psc 1000 series.lnk - C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [2003-04-06 01:17:18] hpoddt01.exe.lnk - C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-04-06 01:06:58] Inicio r pido de Adobe Reader.lnk - C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 21:05:26] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] "C:\Archivos de programa\Messenger\msmsgs.exe" /background R0 O2MDRDR;O2MDRDR;C:\WINDOWS\system32\DRIVERS\o2medi a.sys R0 O2SDRDR;O2SDRDR;C:\WINDOWS\system32\DRIVERS\o2sd.s ys R3 CIR;Hid Device;C:\WINDOWS\system32\DRIVERS\CIR.sys R3 kbd;Keyboard;C:\WINDOWS\system32\DRIVERS\kbd.sys S1 kioport;kioport Library Driver;C:\WINDOWS\system32\drivers\kioport.sys S2 DVDAccss;DVDAccss;C:\WINDOWS\system32\drivers\DVDA ccss.sys S2 eusk2par;EUTRON SmartKey Parallel Driver;\??\C:\WINDOWS\system32\Drivers\eusk2par.sy s S2 InterBaseGuardian;InterBase Guardian;"C:\Archivos de programa\firebird\bin\ibguard.exe" S2 Programador de LiveUpdate automático;Programador de LiveUpdate automático;"C:\Archivos de programa\Symantec\LiveUpdate\ALUSchedulerSvc.exe" S3 hwdatacard;Huawei DataCard USB Modem and USB Serial;C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys S3 InterBaseServer;InterBase Server;"C:\Archivos de programa\firebird\bin\ibserver.exe" S3 TSClient;Tatara Protocol Driver;C:\WINDOWS\system32\drivers\tsclient.sys [HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\E] \Shell\AutoRun\command - E:\LaunchU3.exe [HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{33590520-a800-11db-86e4-0040d08e9fbd}] \Shell\AutoRun\command - F:\AutoRun.exe [HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{449c7a81-8ac9-11dc-8895-001060d117ed}] \Shell\AutoRun\command - E:\InstallTomTomHOME.exe [HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{e22b2f00-33cf-11dc-87f4-001060d117ed}] \Shell\AutoRun\command - E:\LaunchU3.exe [HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{edf0f562-a7f8-11db-86e3-0040d08e9fbd}] \Shell\AutoRun\command - E:\AutoRun.exe [HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{edf0f566-a7f8-11db-86e3-0040d08e9fbd}] \Shell\AutoRun\command - E:\AutoRun.exe *Newly Created Service* - ADILOADER *Newly Created Service* - CATCHME *Newly Created Service* - COMHOST *Newly Created Service* - MDMXSDK . Contenido de carpeta 'Tareas Programadas' "2006-07-18 23:59:47 C:\WINDOWS\Tasks\Aviso de registro 2.job" - C:\WINDOWS\system32\OOBE\oobebaln.exe "2006-07-18 23:59:48 C:\WINDOWS\Tasks\Aviso de registro 3.job" - C:\WINDOWS\system32\OOBE\oobebaln.exe "2007-11-16 22:35:04 C:\WINDOWS\Tasks\Norton AntiVirus - Ejecutar análisis de todo el sistema - DAVID.job" "2006-07-21 23:34:24 C:\WINDOWS\Tasks\Norton AntiVirus - Ejecutar Norton QuickScan - DAVID.job" - C:\ARCHIV~1\NORTON~1\NORTON~1\Navw32.exe . ************************************************** ************************ catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-11-16 23:53:12 Windows 5.1.2600 Service Pack 2 NTFS escaneando procesos ocultos ... escaneando entradas ocultas de autostart ... escaneando archivos ocultos ... el escaneo se completo con exito archivos ocultos: 0 ************************************************** ************************ . Tiempo completado: 2007-11-16 23:54:25 . --- E O F --- ardipablo 16/11/07, 18:09:04 Este es el nuevo reporte del HJT Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 0:04:16, on 17/11/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16544) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccSetMgr.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccProxy.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\SNDSrvc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\CCPD-LC\symlcsvc.exe C:\WINDOWS\system32\spoolsv.exe C:\Archivos de programa\WIDCOMM\Software Bluetooth\bin\btwdins.exe c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe C:\Archivos de programa\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe c:\APPS\HIDSERVICE\HIDSERVICE.exe C:\Archivos de programa\firebird\bin\ibguard.exe C:\Archivos de programa\CyberLink\Shared Files\CLML_NTService\CLMLService.exe C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\navapsvc.exe C:\WINDOWS\system32\o2flash.exe C:\Archivos de programa\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\WINDOWS\system32\svchost.exe C:\Archivos de programa\Archivos comunes\Ulead Systems\DVD\ULCDRSvr.exe c:\APPS\Powercinema\Kernel\TV\CLSched.exe C:\Archivos de programa\firebird\bin\ibserver.exe C:\WINDOWS\system32\WLan.exe C:\Archivos de programa\Archivos comunes\Ulead Systems\AutoDetector\monitor.exe C:\Archivos de programa\Synaptics\SynTP\SynTPLpr.exe C:\Archivos de programa\Synaptics\SynTP\SynTPEnh.exe C:\Archivos de programa\Java\jre1.6.0_02\bin\jusched.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\RTHDCPL.EXE C:\Apps\Powercinema\PCMService.exe C:\WINDOWS\system32\rundll32.exe C:\Archivos de programa\ATI Technologies\ATI.ACE\cli.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\wuauclt.exe C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe C:\Archivos de programa\Microsoft ActiveSync\wcescomm.exe C:\Archivos de programa\PC Connectivity Solution\ServiceLayer.exe C:\ARCHIV~1\MI3AA1~1\rapimgr.exe C:\Archivos de programa\WIDCOMM\Software Bluetooth\BTTray.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Archivos de programa\Apple Computer\DVD@ccess\DVDAccess.exe C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Archivos de programa\Archivos comunes\Nokia\MPAPI\MPAPI3s.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe c:\Archivos de programa\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\Security Console\NSCSRVCE.EXE C:\Archivos de programa\ATI Technologies\ATI.ACE\cli.exe C:\Archivos de programa\ATI Technologies\ATI.ACE\cli.exe C:\Archivos de programa\Mozilla Firefox\firefox.exe C:\Archivos de programa\Symantec\LiveUpdate\AUpdate.exe C:\ARCHIV~1\Symantec\LIVEUP~1\LUCOMS~1.EXE C:\Archivos de programa\Symantec\LiveUpdate\LuCallbackProxy.exe C:\Archivos de programa\Symantec\LiveUpdate\LuCallbackProxy.exe C:\Archivos de programa\Symantec\LiveUpdate\LuCallbackProxy.exe C:\Archivos de programa\Symantec\LiveUpdate\LuCallbackProxy.exe C:\Archivos de programa\Symantec\LiveUpdate\LuCallbackProxy.exe C:\Archivos de programa\Symantec\LiveUpdate\LuCallbackProxy.exe C:\Archivos de programa\Symantec\LiveUpdate\LuCallbackProxy.exe C:\Archivos de programa\Messenger\msmsgs.exe C:\Archivos de programa\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos R3 - URLSearchHook: Online_TV toolbar - {40d1c3a7-4ffb-4443-b3a0-a64b2df7fc3b} - C:\Archivos de programa\Online_TV\tbOnli.dll O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Archivos de programa\Archivos comunes\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Multi Media Spain Toolbar - {79f99a29-ffa7-4f2d-a23a-512a548b597c} - C:\Archivos de programa\Multi_Media_Spain\tbMult.dll O3 - Toolbar: Multi Media Spain 2 Toolbar - {b2de6c6c-f6b9-4427-96e4-3b8de900a2b6} - C:\Archivos de programa\Multi_Media_Spain_2\tbMult.dll O3 - Toolbar: Share Accelerator Toolbar - {f5c93451-2609-4723-a053-5c19516be1a8} - C:\Archivos de programa\Share_Accelerator\tbShar.dll O3 - Toolbar: Online_TV toolbar - {40d1c3a7-4ffb-4443-b3a0-a64b2df7fc3b} - C:\Archivos de programa\Online_TV\tbOnli.dll O4 - HKLM\..\Run: [WLAN] C:\WINDOWS\system32\WLan.exe O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Archivos de programa\Archivos comunes\Ulead Systems\AutoDetector\monitor.exe O4 - HKLM\..\Run: [SynTPLpr] C:\Archivos de programa\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Archivos de programa\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Archivos de programa\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe" O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [ATICCC] "C:\Archivos de programa\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [Acceso directo a la página de propiedades de High Definition Audio] HDAShCut.exe O4 - HKLM\..\Run: [ccApp] "C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Archivos de programa\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Archivos de programa\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Archivos de programa\Archivos comunes\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Archivos de programa\Archivos comunes\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Archivos de programa\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Archivos de programa\TomTom HOME 2\HOMERunner.exe" -s O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [VodafoneUSBPP.exe] C:\Archivos de programa\Huawei technologies\Vodafone Mobile Connect Modem\VodafoneUSBPP.exe windows O4 - HKCU\..\Run: [BitTorrent] "C:\Archivos de programa\BitTorrent\bittorrent.exe" --force_start_minimized O4 - HKCU\..\Run: [MsnMsgr] "C:\Archivos de programa\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [PcSync] C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Archivos de programa\Microsoft ActiveSync\wcescomm.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICIO LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Servicio de red') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Recorte de pantalla e Inicio rápido de OneNote 2007.lnk = C:\Archivos de programa\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: DSLMON.lnk = C:\Archivos de programa\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: DVD@ccess.lnk = ? O4 - Global Startup: hp psc 1000 series.lnk = ? O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARCHIV~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARCHIV~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\ARCHIV~1\MI3AA1~1\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\ARCHIV~1\MI3AA1~1\INetRepl.dll O9 - Extra 'Tools' menuitem: Crear un favorito móvil... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\ARCHIV~1\MI3AA1~1\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Software Bluetooth\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Software Bluetooth\btsendto_ie.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\sp.htm O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} (MetaStreamCtl Class) - https://components.viewpoint.com/MTSInstallers/MetaStream3.cab?url=http://www.astonmartin.com/configurator/vanquish_load.html O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by134fd.bay134.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase2474.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by101fd.bay101.hotmail.msn.com/activex/HMAtchmt.ocx O17 - HKLM\System\CCS\Services\Tcpip\..\{E79FD48C-648A-4167-B001-91569E50FE38}: NameServer = 62.36.225.150 62.37.228.20 O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\ARCHIV~1\MICROS~2\Office12\GR99D3~1.DLL O23 - Service: Adobe LM Service - Adobe Systems - C:\Archivos de programa\Archivos comunes\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Archivos de programa\WIDCOMM\Software Bluetooth\bin\btwdins.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Archivos de programa\Norton Internet Security\ccPwdSvc.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccProxy.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccSetMgr.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Archivos de programa\Norton Internet Security\comHost.exe O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Archivos de programa\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: InterBase Guardian (InterBaseGuardian) - FirebirdSQL Project - C:\Archivos de programa\firebird\bin\ibguard.exe O23 - Service: InterBase Server (InterBaseServer) - FirebirdSQL Project - C:\Archivos de programa\firebird\bin\ibserver.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\ARCHIV~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: Servicio Auto-Protect de Norton AntiVirus (navapsvc) - Symantec Corporation - C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\Security Console\NSCSRVCE.EXE O23 - Service: O2Micro Flash Memory (O2Flash) - Unknown owner - C:\WINDOWS\system32\o2flash.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Programador de LiveUpdate automático - Symantec Corporation - C:\Archivos de programa\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Archivos de programa\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: ServiceLayer - Nokia. - C:\Archivos de programa\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Archivos de programa\Archivos comunes\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Archivos de programa\Archivos comunes\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Archivos de programa\Windows Live\installer\WLSetupSvc.exe -- End of file - 16468 bytes <¡D3vIL!> 17/11/07, 06:54:11 Hola ardipablo Ejecuta el HijackThis, cierra todos los navegadores, cheka estas y dale a Fix O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\sp.htm Clic en INICIO > EJECUTAR > Y ahí pones notepad.exe y ACEPTAR Ahora copia y pega estos archivos dentro del Notepad File:: C:\WINDOWS\system32\printer C:\APPS\IE\offline\sp.htm Folder:: C:\BackUpMSNCleaner Guarda este archivo con el nombre CFScript.txt Arrastra y soltar el archivo CFScript.txt dentro del archivo ComboFix.exe como lo muestra el screenshot de de abajo. http://www.forospyware.com/images/adv/CFScript.gif ComboFix comenzará otra vez a ejecutarse, Cuando termine este generara un reporte que tendrías que pegar en este mismo mensaje :Bien: Sube estos archivo a Virus total (http://www.forospyware.com/foro-de-virus-y-spywares/aviso-7.html) (Esta al final de la página) y nos pegas sus reportes. C:\SP_F_01.DAT C:\WINDOWS\system32\spmsg2.dll salu2 http://img455.imageshack.us/img455/7932/icontwistedrp4.gif Recuerda volver ardipablo 17/11/07, 07:53:47 Este es el nuevo reporte del combofix: ComboFix 07-11-08.1 - DAVID 2007-11-17 13:37:12.2 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.3082.18.461 [GMT 1:00] Se ejecuta desde: C:\Documents and Settings\DAVID\Escritorio\ComboFix.exe Command switches used :: C:\Documents and Settings\DAVID\Escritorio\CFScript.txt * Creado un nuevo punto de restauración FILE C:\APPS\IE\offline\sp.htm C:\WINDOWS\system32\printer . (((((((((((((((((((((((((((((((((((( Otras eliminaciones ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\APPS\IE\offline\sp.htm C:\BackUpMSNCleaner C:\BackUpMSNCleaner\autorun.exe.vir C:\BackUpMSNCleaner\showtime.scr.vir . (((((((((((((((((( Archivos creados desde 2007-10-17 - 2007-11-17 ))))))))))))))))))))))))))))))))) . 2007-11-17 00:31 <DIR> d-------- C:\Archivos de programa\CodeStuff 2007-11-16 23:46 51,200 --a------ C:\WINDOWS\NirCmd.exe 2007-11-15 14:27 <DIR> d-------- C:\Archivos de programa\DelPSGuard 2007-11-15 14:09 <DIR> d-------- C:\Archivos de programa\CCleaner 2007-11-15 14:08 <DIR> d-------- C:\Archivos de programa\Trend Micro 2007-11-14 21:20 314,499 --a------ C:\SP_F_01.DAT 2007-11-05 09:59 <DIR> d-------- C:\Archivos de programa\MSXML 6.0 2007-11-04 18:46 <DIR> d-------- C:\Archivos de programa\TomTom DesktopSuite 2007-11-04 17:37 <DIR> d-------- C:\Documents and Settings\DAVID\Datos de programa\TomTom 2007-11-04 17:37 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\TomTom 2007-11-04 17:36 <DIR> d-------- C:\Archivos de programa\TomTom HOME 2 2007-11-04 14:36 <DIR> d-------- C:\WINDOWS\system32\XPSViewer 2007-11-04 14:35 <DIR> d-------- C:\Archivos de programa\Reference Assemblies 2007-11-04 14:34 14,048 --------- C:\WINDOWS\system32\spmsg2.dll 2007-11-04 12:28 <DIR> d-------- C:\Archivos de programa\TomTom HOME 2007-11-04 12:06 <DIR> d-------- C:\Archivos de programa\Microsoft ActiveSync 2007-11-04 12:06 30,592 --------- C:\WINDOWS\system32\drivers\rndismpx.sys 2007-11-04 12:06 12,800 --------- C:\WINDOWS\system32\drivers\usb8023x.sys 2007-10-31 23:38 32,592 --a------ C:\WINDOWS\system32\msonpmon.dll 2007-10-31 23:36 <DIR> d-------- C:\Archivos de programa\Microsoft Works 2007-10-31 23:35 <DIR> d-------- C:\Archivos de programa\MSBuild 2007-10-31 23:32 <DIR> d-------- C:\Archivos de programa\Microsoft.NET 2007-10-31 23:19 <DIR> d-------- C:\Archivos de programa\Microsoft Visual Studio 8 2007-10-31 23:17 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\Microsoft Help 2007-10-27 20:28 <DIR> d-------- C:\WINDOWS\system32\printer . (((((((((((((((((((((((((((((((((((((( Reporte Find3M )))))))))))))))))))))))))))))))))))))))))))))))))) ) . 2007-11-17 00:12 --------- d-----w C:\Archivos de programa\Archivos comunes\Symantec Shared 2007-11-15 15:31 23 ----a-w C:\WINDOWS\system32\drivers\adidsl.cfg 2007-11-15 12:18 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Spybot - Search & Destroy 2007-11-15 11:56 --------- d-----w C:\Archivos de programa\eMule 2007-11-14 19:41 --------- d-----w C:\Documents and Settings\DAVID\Datos de programa\BitTorrent 2007-11-04 20:37 --------- d--h--w C:\Archivos de programa\InstallShield Installation Information 2007-11-04 13:42 --------- d-----w C:\Documents and Settings\DAVID\Datos de programa\Nokia 2007-11-04 13:40 --------- d-----w C:\Archivos de programa\Nokia 2007-11-03 17:36 --------- d-----w C:\Archivos de programa\Norton Internet Security 2007-10-25 16:43 8,502,272 ----a-w C:\WINDOWS\system32\dllcache\shell32.dll 2007-10-24 20:33 805 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.INF 2007-10-24 20:33 60,800 ----a-w C:\WINDOWS\system32\S32EVNT1.DLL 2007-10-24 20:33 123,952 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.SYS 2007-10-24 20:33 10,740 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.CAT 2007-10-24 20:33 --------- d-----w C:\Archivos de programa\Symantec 2007-10-13 09:55 --------- d-----w C:\Archivos de programa\BitTorrent 2007-10-05 12:20 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\MSScanAppDataDir 2007-10-04 22:01 --------- d-----w C:\Documents and Settings\DAVID\Datos de programa\APLI Master 2007-10-04 20:59 --------- d-----w C:\Archivos de programa\APLI Paper 2007-10-04 19:45 --------- d-----w C:\Documents and Settings\DAVID\Datos de programa\OpenOffice.org2 2007-10-01 12:49 98,184 ----a-w C:\WINDOWS\system32\drivers\symfw.sys 2007-10-01 12:49 542,088 ----a-w C:\WINDOWS\system32\SymNeti.dll 2007-10-01 12:49 31,624 ----a-w C:\WINDOWS\system32\drivers\symids.sys 2007-10-01 12:49 28,040 ----a-w C:\WINDOWS\system32\drivers\symndis.sys 2007-10-01 12:49 23,944 ----a-w C:\WINDOWS\system32\drivers\symredrv.sys 2007-10-01 12:49 189,320 ----a-w C:\WINDOWS\system32\drivers\symtdi.sys 2007-10-01 12:49 161,160 ----a-w C:\WINDOWS\system32\SymRedir.dll 2007-10-01 12:48 12,680 ----a-w C:\WINDOWS\system32\drivers\symdns.sys 2007-09-26 21:34 --------- d-----w C:\Archivos de programa\Windows Live Safety Center 2007-09-26 20:38 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\WLInstaller 2007-09-17 20:16 --------- d-----w C:\Archivos de programa\Codec Pack - All In 1 2007-09-17 14:36 --------- d-----w C:\Archivos de programa\Alwil Software 2007-08-21 06:17 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll 2007-08-21 06:17 683,520 ------w C:\WINDOWS\system32\dllcache\inetcomm.dll 2007-08-20 20:51 16,386 ----a-w C:\WINDOWS\syst |