 |
| |||||||
 InfoSpyware sortea una T-Shirts |
| Participa en el sorteo por una
"Camiseta Oficial de InfoSpyware" gracias al amigo
Enjuto Mojamuto |
| Foro Oficial de HijackThis en español Analizamos tu log de HijackThis para eliminar Hijackers, Spyware, Adware, ToolBars, Virus, Troyanos y Malwares en gral. Antes lea las Políticas del Foro de HijackThis. |
 |
| | Herramientas |
 | 
10/02/06, 19:44:36
|  |
| ||||
| AHI EST ALO QUE ENCONTRO!!! Logfile of HijackThis v1.99.1 Logfile of HijackThis v1.99.1 Scan saved at 06:41:24 p.m., on 10/02/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\Windows\System32\smss.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\spoolsv.exe C:\ARCHIV~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\ARCHIV~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\ARCHIV~1\Grisoft\AVGFRE~1\avgemc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe C:\Archivos de programa\Compaq\Compaq Management Agents\cpqalert.exe C:\Windows\Cpqdiag\Cpqdfwag.exe C:\ARCHIV~1\Compaq\COMPAQ~1\CPQWEB~1\WebDmi.exe C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7Debug\mdm.exe C:\ARCHIV~1\MICROS~4\MSSQL\binn\sqlservr.exe C:\Archivos de programa\Norton AntiVirus\navapsvc.exe C:\Windows\System32\NMSSvc.exe C:\Archivos de programa\Norton SystemWorks\Norton Utilities\NPROTECT.EXE C:\ARCHIV~1\NORTON~2\SPEEDD~1\nopdb.exe C:\Windows\System32\svchost.exe C:\Archivos de programa\Compaq\Compaq Management Agents\Dmi\Win32\bin\Win32sl.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\Security Center\SymWSC.exe C:\ARCHIV~1\Compaq\COMPAQ~1\cpqdmi.exe C:\Windows\Explorer.EXE C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe C:\Archivos de programa\Archivos comunes\Real\Update_OB\realsched.exe C:\ARCHIV~1\Grisoft\AVGFRE~1\avgcc.exe C:\Archivos de programa\Microsoft AntiSpyware\gcasServ.exe C:\Windows\system32\ctfmon.exe C:\Archivos de programa\Microsoft AntiSpyware\gcasDtServ.exe C:\Windows\system32\rundll32.exe C:\Archivos de programa\Messenger\msmsgs.exe C:\Archivos de programa\HJT\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.t1msn.com.mx/0SEESMX/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://v4.windowsupdate.microsoft.com/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = c:\secure32.html R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O4 - HKLM\..\Run: [ccApp] "C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Archivos de programa\Archivos comunes\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [gimmygames] C:\\gimmygames.exe O4 - HKLM\..\Run: [Network] C:\Archivos de programa\Network\network.exe O4 - HKLM\..\Run: [AVG7_CC] C:\ARCHIV~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [gcasServ] "C:\Archivos de programa\Microsoft AntiSpyware\gcasServ.exe" O4 - HKLM\..\RunServices: [CPQDFWAG] C:\Windows\Cpqdiag\CpqDfwAg.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\Windows\system32\ctfmon.exe O4 - Global Startup: Microsoft Office.lnk = C:\Archivos de programa\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: SmartShopper - Compare product prices - {679B2A8D-B2FF-41ed-B3ED-C5CFB8564CB0} - C:\Windows\System32\shdocvw.dll O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: SmartShopper - Compare travel rates - {9E4DF170-217F-4658-A11F-590664542B73} - C:\Windows\System32\shdocvw.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\System32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O16 - DPF: Yahoo! Chat - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab O16 - DPF: Yahoo! Pool 2 - http://download.games.yahoo.com/games/clients/y/pote_x.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {01010E00-5E80-11D8-9E86-0007E96C65AE} (SupportSoft SmartIssue) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab O16 - DPF: {01012101-5E80-11D8-9E86-0007E96C65AE} (SupportSoft Script Runner Class) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsr.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by115fd.bay115.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\ARCHIV~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: avpe32 - C:\Windows\SYSTEM32\avpe32.dll O20 - Winlogon Notify: igfxcui - C:\Windows\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: MS-DOS Emulation - C:\Windows\system32\fppm0371e.dll O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\ARCHIV~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\ARCHIV~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\ARCHIV~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation Service (ccPwdSvc) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccPwdSvc.exe O23 - Service: Command Service (cmdService) - Unknown owner - C:\Windows\IA\command.exe (file missing) O23 - Service: Compaq Local Alerter (CPQALERT) - Compaq Computer Corporation - C:\Archivos de programa\Compaq\Compaq Management Agents\cpqalert.exe O23 - Service: Compaq Remote Diagnostics Enabling Agent (CpqDfwWebAgent) - Compaq Computer Corporation - C:\Windows\Cpqdiag\Cpqdfwag.exe O23 - Service: cpqdmi - Compaq Computer Corporation - C:\ARCHIV~1\Compaq\COMPAQ~1\cpqdmi.exe O23 - Service: Compaq DMI Web Agent (cpqWebDmi) - Compaq Computer Corporation - C:\ARCHIV~1\Compaq\COMPAQ~1\CPQWEB~1\WebDmi.exe O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Archivos de programa\Norton AntiVirus\navapsvc.exe O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\Windows\System32\NMSSvc.exe O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Archivos de programa\Norton SystemWorks\Norton Utilities\NPROTECT.EXE O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\ARCHIV~1\ARCHIV~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\SNDSrvc.exe O23 - Service: Speed Disk service - Symantec Corporation - C:\ARCHIV~1\NORTON~2\SPEEDD~1\nopdb.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\Security Center\SymWSC.exe O23 - Service: Win32Sl (WIN32SL) - Intel - C:\Archivos de programa\Compaq\Compaq Management Agents\Dmi\Win32\bin\Win32sl.exe Y MIL GRACIAS PRO LA AYUDA ATTE MAURICIO MTZ.     |
|
11/02/06, 11:20:13
| |
| ||||
| Re: AHI EST ALO QUE ENCONTRO!!! Logfile of HijackThis v1.99.1 Hola y bienvenido al foro. Atencion!! Lea las políticas antes de pegar su log de HijackThis. Cita:
Reinicia la máquina en Modo Normal, pega otro log de Hijackthis y coméntanos con detalles los problemas de tu PC. Saludos  Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog * Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando. * Para evitar Virus y Spywares al navegar por internet, USE FIREFOX !! * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro. |
|
13/02/06, 13:19:17
| |
| ||||
| Logfile Spy Sweeper 1RA PARTE BUENO PUE SMI PROBLEMA ES QUE MI PC SE VOLVIO LENTA, QUE L AMEMORAI AVIRTUAL EST ASATURADA Y SE ABREN MUCHA SVENTANAS DEINTERNET SPY SWEEPER ******** 11:16 a.m.: | Start of Session, Lunes, 13 de Febrero de 2006 | 11:16 a.m.: Spy Sweeper started 11:16 a.m.: Sweep initiated using definitions version 613 11:16 a.m.: Starting Memory Sweep 11:18 a.m.: Memory Sweep Complete, Elapsed Time: 00:01:16 11:18 a.m.: Starting Registry Sweep 11:18 a.m.: Registry Sweep Complete, Elapsed Time:00:00:17 11:18 a.m.: Starting Cookie Sweep 11:18 a.m.: Cookie Sweep Complete, Elapsed Time: 00:00:00 11:18 a.m.: Starting File Sweep 11:38 a.m.: Found Adware: command 11:38 a.m.: 00292549.exe (ID = 231443) 11:48 a.m.: File Sweep Complete, Elapsed Time: 00:29:42 11:48 a.m.: Full Sweep has completed. Elapsed time 00:31:25 11:48 a.m.: Traces Found: 1 12:01 p.m.: Removal process initiated 12:01 p.m.: Quarantining All Traces: command 12:01 p.m.: Removal process completed. Elapsed time 00:00:01 12:02 p.m.: Deletion from quarantine initiated 12:02 p.m.: Processing: dollarrevenue 12:02 p.m.: Processing: spysheriff fakealert 12:02 p.m.: Processing: cws_secure32.html hijack 12:02 p.m.: Processing: belnk cookie 12:02 p.m.: Processing: yieldmanager cookie 12:02 p.m.: Processing: findthewebsiteyouneed hijack 12:02 p.m.: Processing: hotbar 12:02 p.m.: Processing: www.maxifiles cookie 12:02 p.m.: Processing: maxifiles 12:02 p.m.: Processing: command 12:02 p.m.: Processing: spysheriff 12:02 p.m.: Processing: syswebtelecom 12:02 p.m.: Processing: trojan-backdoor-haxdoor 12:02 p.m.: Deletion from quarantine completed. Elapsed time 00:00:00 ******** 10:21 a.m.: | Start of Session, Lunes, 13 de Febrero de 2006 | 10:21 a.m.: Spy Sweeper started 10:21 a.m.: Sweep initiated using definitions version 613 10:21 a.m.: Found Trojan Horse: trojan-backdoor-haxdoor 10:21 a.m.: HKLM\software\microsoft\windows nt\currentversion\winlogon\notify\avpe32\ || dllname (ID = 1036014) 10:21 a.m.: avpe32.dll (ID = 1036014) 10:21 a.m.: Starting Memory Sweep 10:22 a.m.: Detected running threat: C:\WINDOWS\system32\avpe32.dll (ID = 240721) 10:24 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:24 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:24 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:24 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:24 a.m.: Memory Sweep Complete, Elapsed Time: 00:03:09 10:24 a.m.: Starting Registry Sweep 10:24 a.m.: Found Adware: hotbar 10:24 a.m.: HKCR\interface\{3f04cbf7-cd62-4403-b090-b432dedcb159}\ (8 subtraces) (ID = 127325) 10:24 a.m.: HKCR\interface\{8578d35e-c6c0-4808-9a80-0f6c29a2c423}\ (8 subtraces) (ID = 127339) 10:24 a.m.: HKCR\interface\{bc190da5-0187-4d99-b3ac-6c45ea1b9324}\ (8 subtraces) (ID = 127353) 10:24 a.m.: HKLM\software\classes\interface\{3f04cbf7-cd62-4403-b090-b432dedcb159}\ (8 subtraces) (ID = 127490) 10:24 a.m.: HKLM\software\classes\interface\{8578d35e-c6c0-4808-9a80-0f6c29a2c423}\ (8 subtraces) (ID = 127503) 10:24 a.m.: HKLM\software\classes\interface\{bc190da5-0187-4d99-b3ac-6c45ea1b9324}\ (8 subtraces) (ID = 127514) 10:24 a.m.: HKLM\software\classes\typelib\{71efe583-62fe-4419-9918-ca3b683f7b36}\ (9 subtraces) (ID = 127543) 10:24 a.m.: HKLM\software\classes\typelib\{b5901229-25cc-43c9-b604-3bb6ac2b48a5}\ (9 subtraces) (ID = 127555) 10:24 a.m.: HKLM\software\classes\typelib\{c83daed4-0611-4f7a-978e-7feafcb2f91b}\ (9 subtraces) (ID = 127557) 10:24 a.m.: HKCR\typelib\{71efe583-62fe-4419-9918-ca3b683f7b36}\ (9 subtraces) (ID = 127641) 10:24 a.m.: HKCR\typelib\{b5901229-25cc-43c9-b604-3bb6ac2b48a5}\ (9 subtraces) (ID = 127654) 10:24 a.m.: HKCR\typelib\{c83daed4-0611-4f7a-978e-7feafcb2f91b}\ (9 subtraces) (ID = 127656) 10:24 a.m.: Found Adware: syswebtelecom 10:24 a.m.: HKLM\software\classes\typelib\{273773ea-e96d-49f8-9ab1-eaec34a97347}\1.0\ (8 subtraces) (ID = 143574) 10:24 a.m.: HKCR\typelib\{273773ea-e96d-49f8-9ab1-eaec34a97347}\ (9 subtraces) (ID = 143581) 10:24 a.m.: HKCR\interface\{175816a5-219e-4079-b2f9-53c501c409ba}\ (8 subtraces) (ID = 774223) 10:24 a.m.: HKCR\interface\{1c1793e0-1034-4cac-837d-aa545f6961bf}\ (8 subtraces) (ID = 774241) 10:24 a.m.: HKCR\interface\{8a61a950-c325-4f44-ba64-273180ff3464}\ (8 subtraces) (ID = 774358) 10:24 a.m.: HKCR\interface\{b53d4cd4-406d-43cc-8244-7893d72236dd}\ (8 subtraces) (ID = 774394) 10:24 a.m.: HKCR\interface\{b671426c-5c1a-48ac-9652-bc9402b1c404}\ (8 subtraces) (ID = 774403) 10:24 a.m.: HKCR\interface\{b9bb3219-f84c-4060-966b-4a1e73e24226}\ (8 subtraces) (ID = 774412) 10:24 a.m.: HKCR\interface\{f786cb18-3809-4e49-bc99-9a66da47db8b}\ (8 subtraces) (ID = 774457) 10:24 a.m.: HKLM\software\classes\interface\{175816a5-219e-4079-b2f9-53c501c409ba}\ (8 subtraces) (ID = 774499) 10:24 a.m.: HKLM\software\classes\interface\{1c1793e0-1034-4cac-837d-aa545f6961bf}\ (8 subtraces) (ID = 774517) 10:24 a.m.: HKLM\software\classes\interface\{8a61a950-c325-4f44-ba64-273180ff3464}\ (8 subtraces) (ID = 774634) 10:24 a.m.: HKLM\software\classes\interface\{b53d4cd4-406d-43cc-8244-7893d72236dd}\ (8 subtraces) (ID = 774670) 10:24 a.m.: HKLM\software\classes\interface\{b671426c-5c1a-48ac-9652-bc9402b1c404}\ (8 subtraces) (ID = 774679) 10:24 a.m.: HKLM\software\classes\interface\{b9bb3219-f84c-4060-966b-4a1e73e24226}\ (8 subtraces) (ID = 774688) 10:24 a.m.: HKLM\software\classes\interface\{f786cb18-3809-4e49-bc99-9a66da47db8b}\ (8 subtraces) (ID = 774733) 10:24 a.m.: Found Adware: cws_secure32.html hijack 10:24 a.m.: HKLM\software\microsoft\internet explorer\main\ || start page (ID = 946025) 10:24 a.m.: Found Adware: command 10:24 a.m.: HKLM\system\currentcontrolset\services\cmdservice\ (12 subtraces) (ID = 958670) 10:24 a.m.: HKLM\system\currentcontrolset\enum\root\legacy_cmd service\0000\ (6 subtraces) (ID = 1016064) 10:24 a.m.: HKLM\system\currentcontrolset\enum\root\legacy_cmd service\ (8 subtraces) (ID = 1016072) 10:24 a.m.: HKLM\software\microsoft\windows nt\currentversion\winlogon\notify\avpe32\ (6 subtraces) (ID = 1035850) 10:24 a.m.: HKLM\system\currentcontrolset\control\safeboot\min imal\avpe32.sys\ (1 subtraces) (ID = 1035876) 10:24 a.m.: HKLM\system\currentcontrolset\control\safeboot\min imal\avpe64.sys\ (1 subtraces) (ID = 1035878) 10:24 a.m.: HKLM\system\currentcontrolset\control\safeboot\net work\avpe32.sys\ (1 subtraces) (ID = 1035880) 10:24 a.m.: HKLM\system\currentcontrolset\control\safeboot\net work\avpe64.sys\ (1 subtraces) (ID = 1035882) 10:24 a.m.: HKLM\system\currentcontrolset\services\avpe32\ (12 subtraces) (ID = 1035884) 10:24 a.m.: HKLM\system\currentcontrolset\services\avpe64\ (7 subtraces) (ID = 1035896) 10:24 a.m.: Found Adware: dollarrevenue 10:24 a.m.: HKLM\software\microsoft\drsmartload2\ (1 subtraces) (ID = 1134137) 10:24 a.m.: Found Adware: spysheriff 10:24 a.m.: HKLM\software\microsoft\internet explorer\main\ || start page (ID = 1140862) 10:24 a.m.: HKLM\software\microsoft\windows\currentversion\run \ || gimmygames (ID = 1146099) 10:24 a.m.: HKU\S-1-5-21-538525854-4179051517-1260927497-500\software\sponsoradulto2\ (106 subtraces) (ID = 143576) 10:24 a.m.: Found Adware: findthewebsiteyouneed hijack 10:24 a.m.: HKU\S-1-5-21-538525854-4179051517-1260927497-500\software\microsoft\internet explorer\search\searchassistant explorer\main\ || default_search_url (ID = 555437) 10:24 a.m.: HKU\S-1-5-18\software\microsoft\internet explorer\extensions\cmdmapping\ || {946b3e9e-e21a-49c8-9f63-900533fafe14} (ID = 127575) 10:24 a.m.: HKU\S-1-5-18\software\microsoft\internet explorer\extensions\cmdmapping\ || {e77eda01-3c56-4a96-8d08-02b42891c169} (ID = 127576) 10:24 a.m.: Found Adware: maxifiles 10:24 a.m.: HKU\S-1-5-18\software\microsoft\internet explorer\extensions\cmdmapping\ || {77fbf9b8-1d37-4ff2-9ced-192d8e3aba6f} (ID = 1021025) 10:24 a.m.: Registry Sweep Complete, Elapsed Time:00:00:18 10:24 a.m.: Starting Cookie Sweep 10:24 a.m.: Found Spy Cookie: yieldmanager cookie 10:24 a.m.: administrador@ad.yieldmanager[2].txt (ID = 3751) 10:24 a.m.: Found Spy Cookie: belnk cookie 10:24 a.m.: administrador@belnk[1].txt (ID = 2292) 10:24 a.m.: administrador@dist.belnk[2].txt (ID = 2293) 10:24 a.m.: Found Spy Cookie: www.maxifiles cookie 10:24 a.m.: administrador@www.maxifiles[1].txt (ID = 3707) 10:24 a.m.: Cookie Sweep Complete, Elapsed Time: 00:00:00 10:24 a.m.: Starting File Sweep 10:25 a.m.: c:\archivos de programa\network monitor (1 subtraces) (ID = -2147459771) 10:25 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:25 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:25 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:25 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:25 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:25 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:25 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:25 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:26 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:26 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:26 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:26 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:26 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:26 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:26 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:26 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:27 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:27 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:27 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:27 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:28 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:28 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:28 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:28 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:29 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:30 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:31 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:31 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:31 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:31 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:31 a.m.: Found Adware: azsearch toolbar 10:31 a.m.: azesearch.bmp (ID = 50322) 10:31 a.m.: uninstall_nmon.vbs (ID = 231442) 10:31 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:31 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:31 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:31 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:32 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:33 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:33 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:33 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:33 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:33 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:33 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:33 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:33 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:34 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:34 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:34 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:34 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:34 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:34 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:34 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:34 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:35 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:36 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\uninst.exe". El sistema no puede hallar la ruta especificada 10:36 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:36 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:36 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:36 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:36 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\vs_setup.dll". El sistema no puede hallar la ruta especificada 10:36 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:36 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:36 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:36 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:37 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\vs70pgui.dll". El sistema no puede hallar la ruta especificada 10:37 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:37 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:38 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\sitsetup.dll". El sistema no puede hallar la ruta especificada 10:38 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:38 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:38 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:38 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:38 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp1.dir\_istmp0.dir\isuninst.exe". El sistema no puede hallar la ruta especificada 10:38 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:38 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:38 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:38 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:39 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:39 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:39 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:39 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:39 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\40comupd.exe". El sistema no puede hallar la ruta especificada 10:39 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:39 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:39 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:39 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:40 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:40 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:40 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:40 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:40 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\defdependencyui.dll". El sistema no puede hallar la ruta especificada 10:40 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp4.dir\_istmp0.dir\filegrp\regopt. dll". El sistema no puede hallar la ruta especificada 10:40 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:40 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:40 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:40 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:40 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\vs70uimgr.dll". El sistema no puede hallar la ruta especificada 10:41 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\msvcr70.dll". El sistema no puede hallar la ruta especificada 10:41 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:41 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:42 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp2.dir\_istmp0.dir\isuninst.exe". El sistema no puede hallar la ruta especificada 10:42 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:42 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:43 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:43 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:43 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:43 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:44 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43zzz.ic_". El sistema no puede hallar la ruta especificada 10:44 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:44 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:44 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\setup.ins". El sistema no puede hallar la ruta especificada 10:44 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp2.dir\_istmp0.dir\135da4.dll". El sistema no puede hallar la ruta especificada 10:45 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:45 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:45 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:45 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:45 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:45 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:45 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:45 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43gs3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43hd3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43hs3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43pd3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43pfa.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43ps3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43gd3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43hf3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43ge3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43he3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43gf3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43pea.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43pp3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43gp3.ic_". El sistema no puede hallar la ruta especificada |
|
13/02/06, 13:20:20
| |
| ||||
| Logfile Spy Sweeper 2DA PARTE 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43pf3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43pe3.ic_". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\defhelp.dll". El sistema no puede hallar la ruta especificada 10:45 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cnf43hp3.ic_". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\deffactory.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\setup.exe". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\validation.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\setuplog.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\accountmgr.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\diskinfomgr.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\cdinfomgr.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:46 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\setupdb.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\mpmasdll.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\cltscen.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\defchangefolder.dll". El sistema no puede hallar la ruta especificada 10:46 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\canonbj.hl_". El sistema no puede hallar la ruta especificada 10:47 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\customrio.dll". El sistema no puede hallar la ruta especificada 10:47 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\templmgr.dll". El sistema no puede hallar la ruta especificada 10:47 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\dependmgr.dll". El sistema no puede hallar la ruta especificada 10:47 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\vssetupreqs.dll". El sistema no puede hallar la ruta especificada 10:47 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\svrgrpmgr.dll". El sistema no puede hallar la ruta especificada 10:47 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:47 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\corebj.dl_". El sistema no puede hallar la ruta especificada 10:47 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:47 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:47 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\ucs16.dl_". El sistema no puede hallar la ruta especificada 10:48 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:48 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:48 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:48 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:48 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\_setup.dll". El sistema no puede hallar la ruta especificada 10:48 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:48 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:48 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:48 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:48 a.m.: avpe32.dll (ID = 240721) 10:49 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\deletetemp.exe". El sistema no puede hallar la ruta especificada 10:49 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\commonres.dll". El sistema no puede hallar la ruta especificada 10:49 a.m.: Found Adware: spysheriff fakealert 10:49 a.m.: secure32.html (ID = 184319) 10:49 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cbjui.dl_". El sistema no puede hallar la ruta especificada 10:49 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:49 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:49 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:49 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:49 a.m.: netmon.exe (ID = 231443) 10:49 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:49 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:49 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:49 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:49 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\usrstrc.dl_". El sistema no puede hallar la ruta especificada 10:50 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\setup.exe". El sistema no puede hallar la ruta especificada 10:50 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:50 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:50 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:50 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:50 a.m.: 00291500.exe (ID = 185254) 10:50 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:50 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:50 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:50 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:50 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\canonde.dl_". El sistema no puede hallar la ruta especificada 10:51 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:51 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:51 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:51 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:51 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:51 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:51 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:51 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:51 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\data.4". El sistema no puede hallar la ruta especificada 10:51 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\_inst16.ex_". El sistema no puede hallar la ruta especificada 10:52 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\_inst32i.ex_". El sistema no puede hallar la ruta especificada 10:52 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\_setup.lib". El sistema no puede hallar la ruta especificada 10:52 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:52 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\prereq.htm". El sistema no puede hallar la ruta especificada 10:52 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\readme.htm". El sistema no puede hallar la ruta especificada 10:52 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:52 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:52 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\mpmaster.ex_". El sistema no puede hallar la ruta especificada 10:53 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\data.1". El sistema no puede hallar la ruta especificada 10:53 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\install1.htm". El sistema no puede hallar la ruta especificada 10:53 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:53 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:53 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:53 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:53 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\contents.htm". El sistema no puede hallar la ruta especificada 10:53 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\install2.htm". El sistema no puede hallar la ruta especificada 10:53 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\toc.htm". El sistema no puede hallar la ruta especificada 10:53 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\usercancelled.htm". El sistema no puede hallar la ruta especificada 10:53 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:53 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:53 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:53 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:53 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\maint_ban.bmp". El sistema no puede hallar la ruta especificada 10:53 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\txtsetup.inf". El sistema no puede hallar la ruta especificada 10:53 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\setup.sdb". El sistema no puede hallar la ruta especificada 10:53 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:53 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:53 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:53 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\canonbj.inf". El sistema no puede hallar la ruta especificada 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\setup.pkg". El sistema no puede hallar la ruta especificada 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\adminmode.htm". El sistema no puede hallar la ruta especificada 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\adminmodeinfo.htm". El sistema no puede hallar la ruta especificada 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\baseline.dat". El sistema no puede hallar la ruta especificada 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\failed.htm". El sistema no puede hallar la ruta especificada 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\suiteinfo.dll". El sistema no puede hallar la ruta especificada 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\banner.bmp". El sistema no puede hallar la ruta especificada 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\readme.wri". El sistema no puede hallar la ruta especificada 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\_isdel.exe". El sistema no puede hallar la ruta especificada 10:54 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:54 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:54 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:54 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:54 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:54 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:54 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:54 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:54 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\adminreadme.htm". El sistema no puede hallar la ruta especificada 10:55 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:55 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:55 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:55 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:55 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\bjchain.dl_". El sistema no puede hallar la ruta especificada 10:55 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\icmapi16.dl_". El sistema no puede hallar la ruta especificada 10:55 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\admin_ban.bmp". El sistema no puede hallar la ruta especificada 10:55 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp2.dir\_istmp0.dir\corecomp.ini". El sistema no puede hallar la ruta especificada 10:55 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\eula.txt". El sistema no puede hallar la ruta especificada 10:55 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cbjsetup.dll". El sistema no puede hallar la ruta especificada 10:55 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:55 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:55 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\ussmooth.dl_". El sistema no puede hallar la ruta especificada 10:55 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:55 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:55 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:55 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:55 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:55 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:55 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp1.dir\_istmp0.dir\corecomp.ini". El sistema no puede hallar la ruta especificada 10:56 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:56 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\sit10713.tmp\pidgen.dll". El sistema no puede hallar la ruta especificada 10:56 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\canonbj.dr_". El sistema no puede hallar la ruta especificada 10:56 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\setup.bmp". El sistema no puede hallar la ruta especificada 10:56 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\ushtmgr.dl_". El sistema no puede hallar la ruta especificada 10:56 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:56 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:57 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp4.dir\_istmp0.dir\filegrp\ue32.hl p". El sistema no puede hallar la ruta especificada 10:57 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp1.dir\_istmp0.dir\ctl3d32.dll". El sistema no puede hallar la ruta especificada 10:57 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp2.dir\_istmp0.dir\ctl3d32.dll". El sistema no puede hallar la ruta especificada 10:57 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:57 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:57 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:57 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:58 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\bjvrt16.dl_". El sistema no puede hallar la ruta especificada 10:58 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\_istmp1.dir\_istmp0.dir\707ed.dll". El sistema no puede hallar la ruta especificada 10:58 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:58 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:58 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:58 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:58 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:58 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:58 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:58 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:58 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\bj3bit.dl_". El sistema no puede hallar la ruta especificada 10:58 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\cispmon.dl_". El sistema no puede hallar la ruta especificada 10:59 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\data.2". El sistema no puede hallar la ruta especificada 10:59 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 10:59 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:00 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:01 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:01 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:01 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:01 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:01 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:01 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:01 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:01 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:02 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:02 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:02 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:02 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:02 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:02 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:02 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:02 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:03 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:04 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:05 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:05 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:05 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:05 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:05 a.m.: Warning: Failed to open file "c:\documents and settings\administrador\configuración local\temp\~~adtmp~\data.3". El sistema no puede hallar la ruta especificada 11:05 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:05 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:05 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:05 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:06 a.m.: ps.a3d (ID = 233118) 11:06 a.m.: File Sweep Complete, Elapsed Time: 00:41:10 11:06 a.m.: Full Sweep has completed. Elapsed time 00:44:44 11:06 a.m.: Traces Found: 456 11:06 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:06 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:06 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:06 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:06 a.m.: Removal process initiated 11:06 a.m.: Quarantining All Traces: spysheriff fakealert 11:06 a.m.: Quarantining All Traces: trojan-backdoor-haxdoor 11:06 a.m.: trojan-backdoor-haxdoor is in use. It will be removed on reboot. 11:06 a.m.: avpe32.dll is in use. It will be removed on reboot. 11:06 a.m.: C:\WINDOWS\system32\avpe32.dll is in use. It will be removed on reboot. 11:06 a.m.: Quarantining All Traces: azsearch toolbar 11:06 a.m.: Quarantining All Traces: dollarrevenue 11:06 a.m.: Quarantining All Traces: hotbar 11:06 a.m.: Quarantining All Traces: maxifiles 11:06 a.m.: Quarantining All Traces: spysheriff 11:06 a.m.: Quarantining All Traces: command 11:06 a.m.: Quarantining All Traces: cws_secure32.html hijack 11:06 a.m.: Quarantining All Traces: findthewebsiteyouneed hijack 11:06 a.m.: Quarantining All Traces: syswebtelecom 11:06 a.m.: Quarantining All Traces: belnk cookie 11:06 a.m.: Quarantining All Traces: www.maxifiles cookie 11:06 a.m.: Quarantining All Traces: yieldmanager cookie 11:07 a.m.: Preparing to restart your computer. Please wait... 11:07 a.m.: Removal process completed. Elapsed time 00:00:34 11:07 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:07 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 11:07 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:07 a.m.: The Spy Communication shield has blocked access to: www.a-d-w-a-r-e.com 11:16 a.m.: Program Version 4.5.9 (Build 709) Using Spyware Definitions 613 11:16 a.m.: | End of Session, Lunes, 13 de Febrero de 2006 | ******** 10:20 a.m.: | Start of Session, Lunes, 13 de Febrero de 2006 | 10:20 a.m.: Spy Sweeper started 10:20 a.m.: Your spyware definitions have been updated. 10:21 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:21 a.m.: The Spy Communication shield has blocked access to: www.ad-w-a-r-e.com 10:21 a.m.: Updating spyware definitions 10:21 a.m.: Your definitions are up to date. 10:21 a.m.: | End of Session, Lunes, 13 de Febrero de 2006 | DE ANTEMANO GRACIAS |
|
13/02/06, 15:41:10
| |
| ||||
| Re: AHI EST ALO QUE ENCONTRO!!! Logfile of HijackThis v1.99.1 ¿Y el log de Hijackthis?  Cita:
Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog * Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando. * Para evitar Virus y Spywares al navegar por internet, USE FIREFOX !! * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro. |
|
13/02/06, 17:16:28
| |
| ||||
| Logfile of HijackThis BUENO AUN ME SIGUEN ABRIENEO UNA QUE OTRA VENTANITA Y UN POCO LENTA MI PC Logfile of HijackThis v1.99.1 Scan saved at 04:13:25 p.m., on 13/02/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\Windows\System32\smss.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\spoolsv.exe C:\Windows\system32\rundll32.exe C:\ARCHIV~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\ARCHIV~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\ARCHIV~1\Grisoft\AVGFRE~1\avgemc.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe C:\Archivos de programa\Compaq\Compaq Management Agents\cpqalert.exe C:\Windows\Cpqdiag\Cpqdfwag.exe C:\ARCHIV~1\Compaq\COMPAQ~1\CPQWEB~1\WebDmi.exe C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7Debug\mdm.exe C:\ARCHIV~1\MICROS~4\MSSQL\binn\sqlservr.exe C:\Archivos de programa\Norton AntiVirus\navapsvc.exe C:\Windows\Explorer.EXE C:\Windows\System32\NMSSvc.exe C:\Archivos de programa\Norton SystemWorks\Norton Utilities\NPROTECT.EXE C:\ARCHIV~1\NORTON~2\SPEEDD~1\nopdb.exe C:\Windows\System32\svchost.exe C:\Archivos de programa\Webroot\Spy Sweeper\WRSSSDK.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe C:\Archivos de programa\Archivos comunes\Real\Update_OB\realsched.exe C:\Archivos de programa\Network\network.exe C:\ARCHIV~1\Grisoft\AVGFRE~1\avgcc.exe C:\Archivos de programa\Microsoft AntiSpyware\gcasServ.exe C:\Archivos de programa\Webroot\Spy Sweeper\SpySweeper.exe C:\Windows\system32\ctfmon.exe C:\Archivos de programa\Microsoft AntiSpyware\gcasDtServ.exe C:\Archivos de programa\Compaq\Compaq Management Agents\Dmi\Win32\bin\Win32sl.exe C:\Archivos de programa\Archivos comunes\Symantec Shared\Security Center\SymWSC.exe C:\ARCHIV~1\Compaq\COMPAQ~1\cpqdmi.exe C:\Archivos de programa\Messenger\msmsgs.exe C:\Archivos de programa\HJT\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.t1msn.com.mx/0SEESMX/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O4 - HKLM\..\Run: [ccApp] "C:\Archivos de programa\Archivos comunes\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Archivos de programa\Archivos comunes\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [Network] C:\Archivos de programa\Network\network.exe O4 - HKLM\..\Run: [AVG7_CC] C:\ARCHIV~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [gcasServ] "C:\Archivos de programa\Microsoft AntiSpyware\gcasServ.exe" O4 - HKLM\..\Run: [SpySweeper] "C:\Archivos de programa\Webroot\Spy Sweeper\SpySweeper.exe" /startintray O4 - HKLM\..\RunServices: [CPQDFWAG] C:\Windows\Cpqdiag\CpqDfwAg.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\Windows\system32\ctfmon.exe O4 - Global Startup: Microsoft Office.lnk = C:\Archivos de programa\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: SmartShopper - Compare product prices - {679B2A8D-B2FF-41ed-B3ED-C5CFB8564CB0} - C:\Windows\System32\shdocvw.dll O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: SmartShopper - Compare travel rates - {9E4DF170-217F-4658-A11F-590664542B73} - C:\Windows\System32\shdocvw.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\System32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O16 - DPF: Yahoo! Chat - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab O16 - DPF: Yahoo! Pool 2 - http://download.games.yahoo.com/games/clients/y/pote_x.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {01010E00-5E80-11D8-9E86-0007E96C65AE} (SupportSoft SmartIssue) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab O16 - DPF: {01012101-5E80-11D8-9E86-0007E96C65AE} (SupportSoft Script Runner Class) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsr.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by115fd.bay115.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\ARCHIV~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: App Paths - C:\Windows\ O20 - Winlogon Notify: igfxcui - C:\Windows\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: Telephony - C:\Windows\system32\dn6601jse.dll O20 - Winlogon Notify: WRNotifier - C:\Windows\SYSTEM32\WRLogonNTF.dll O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\ARCHIV~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\ARCHIV~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\ARCHIV~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation Service (ccPwdSvc) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\ccPwdSvc.exe O23 - Service: Compaq Local Alerter (CPQALERT) - Compaq Computer Corporation - C:\Archivos de programa\Compaq\Compaq Management Agents\cpqalert.exe O23 - Service: Compaq Remote Diagnostics Enabling Agent (CpqDfwWebAgent) - Compaq Computer Corporation - C:\Windows\Cpqdiag\Cpqdfwag.exe O23 - Service: cpqdmi - Compaq Computer Corporation - C:\ARCHIV~1\Compaq\COMPAQ~1\cpqdmi.exe O23 - Service: Compaq DMI Web Agent (cpqWebDmi) - Compaq Computer Corporation - C:\ARCHIV~1\Compaq\COMPAQ~1\CPQWEB~1\WebDmi.exe O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Archivos de programa\Norton AntiVirus\navapsvc.exe O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\Windows\System32\NMSSvc.exe O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Archivos de programa\Norton SystemWorks\Norton Utilities\NPROTECT.EXE O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\ARCHIV~1\ARCHIV~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\SNDSrvc.exe O23 - Service: Speed Disk service - Symantec Corporation - C:\ARCHIV~1\NORTON~2\SPEEDD~1\nopdb.exe O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Archivos de programa\Webroot\Spy Sweeper\WRSSSDK.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Archivos de programa\Archivos comunes\Symantec Shared\Security Center\SymWSC.exe O23 - Service: Win32Sl (WIN32SL) - Intel - C:\Archivos de programa\Compaq\Compaq Management Agents\Dmi\Win32\bin\Win32sl.exe |