• Registrarse
  • Iniciar sesión


  • Resultados 1 al 5 de 5

    Security HiJack [ImageFileExecutionOptions] (Solucionado)

    Resumen del tema: Security HiJack [ImageFileExecutionOptions] (Solucionado) - Hola lo que pasa es lo siguiente tengo malware bytes y kasperki pure en mi compu hace poco instale superantispyware y me detecto eso Security.HiJack[ImageFileExecutionOptions] que no se que es Hay dejo el reporte de ...

      
    1. #1
      Usuario Avatar de blinck205
      Registrado
      nov 2011
      Ubicación
      Honduras
      Mensajes
      97

      Alegria Security HiJack [ImageFileExecutionOptions] (Solucionado)

      Hola lo que pasa es lo siguiente tengo malware bytes y kasperki pure en mi compu hace poco instale superantispyware y me detecto eso Security.HiJack[ImageFileExecutionOptions] que no se que es
      Hay dejo el reporte de SUPERAntiSpyware y la fecha de las bases cabe decir que esta actualizado el otro día lo pase y me volvió a aparecer esto mismo y no se que es gracias


      HAY 3 REPORTES DESDE EL MAS NUEVO HASTA EL MAS VIEJO


      Código HTML:
      SUPERAntiSpyware Scan Log
      http://www.superantispyware.com
      
      Generated 12/21/2011 at 05:52 PM
      
      Application Version : 5.0.1142
      
      Core Rules Database Version : 8068
      Trace Rules Database Version: 5880
      
      Scan type       : Quick Scan
      Total Scan Time : 00:10:23
      
      Operating System Information
      Windows 7 Home Basic 32-bit, Service Pack 1 (Build 6.01.7601)
      UAC On - Limited User
      
      Memory items scanned      : 761
      Memory threats detected   : 0
      Registry items scanned    : 31765
      Registry threats detected : 4
      File items scanned        : 7983
      File threats detected     : 0
      
      Security.HiJack[ImageFileExecutionOptions]
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\REGMECH.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\REGMECH.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UNINS000.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UNINS000.EXE#Debugger
      
      
      SUPERAntiSpyware Scan Log
      http://www.superantispyware.com
      
      Generated 12/12/2011 at 06:03 PM
      
      Application Version : 5.0.1136
      
      Core Rules Database Version : 8038
      Trace Rules Database Version: 5850
      
      Scan type       : Quick Scan
      Total Scan Time : 00:11:24
      
      Operating System Information
      Windows 7 Home Basic 32-bit, Service Pack 1 (Build 6.01.7601)
      UAC On - Limited User
      
      Memory items scanned      : 688
      Memory threats detected   : 0
      Registry items scanned    : 31751
      Registry threats detected : 56
      File items scanned        : 7917
      File threats detected     : 0
      
      Security.HiJack[ImageFileExecutionOptions]
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HWSETUP.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HWSETUP.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IASTORUI.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IASTORUI.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALAR.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALAR.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALL.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALL.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PHOENIX-WT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PHOENIX-WT.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RACING-WT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RACING-WT.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RSELECT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RSELECT.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMARTFACEVSETTING.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMARTFACEVSETTING.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TINTOUCH.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TINTOUCH.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOADC.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOADC.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSSSDALERT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSSSDALERT.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TPCHVIEWER.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TPCHVIEWER.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\YAHTZEE-WT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\YAHTZEE-WT.EXE#Debugger
      
      
      
      
      
      
      
      SUPERAntiSpyware Scan Log
      http://www.superantispyware.com
      
      Generated 12/07/2011 at 01:25 PM
      
      Application Version : 5.0.1136
      
      Core Rules Database Version : 8023
      Trace Rules Database Version: 5835
      
      Scan type       : Quick Scan
      Total Scan Time : 00:13:58
      
      Operating System Information
      Windows 7 Home Basic 32-bit, Service Pack 1 (Build 6.01.7601)
      UAC On - Limited User
      
      Memory items scanned      : 705
      Memory threats detected   : 0
      Registry items scanned    : 31747
      Registry threats detected : 68
      File items scanned        : 8380
      File threats detected     : 0
      
      Security.HiJack[ImageFileExecutionOptions]
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\EXCEL.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\EXCEL.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HWSETUP.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HWSETUP.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IASTORUI.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IASTORUI.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALAR.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALAR.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALL.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALL.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSOXMLED.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSOXMLED.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSTORE.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSTORE.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONENOTE.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONENOTE.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PHOENIX-WT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PHOENIX-WT.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\POWERPNT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\POWERPNT.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RACING-WT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RACING-WT.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RSELECT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RSELECT.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMARTFACEVSETTING.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMARTFACEVSETTING.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TINTOUCH.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TINTOUCH.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOADC.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOADC.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSSSDALERT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSSSDALERT.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TPCHVIEWER.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TPCHVIEWER.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WINWORD.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WINWORD.EXE#Debugger
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\YAHTZEE-WT.EXE
      	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\YAHTZEE-WT.EXE#Debugger
      Última edición por blinck205 fecha: 23/12/11 a las 18:00:12 Razón: no tengo idea que es esto

    2. #2
      Colaborador Avatar de Demiann
      Registrado
      abr 2009
      Ubicación
      Argentina
      Mensajes
      2.385

      Re: Security.HiJack[ImageFileExecutionOptions]

      Hola blinck205

      Conteste un tema similar --> Una consulta sobre resultados de SUPERAntispyware (Solucionado)

      ¿ Tienes TuneUp ? Me fije en el foro de soporte de Superantispyware y hay varios usuarios que tuvieron ese tipo de detección originado por tener TuneUP.

      Saludos!

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de blinck205
      Registrado
      nov 2011
      Ubicación
      Honduras
      Mensajes
      97

      Alegria Re: Security.HiJack[ImageFileExecutionOptions]

      HOLA
      gracias por responder la verdad si tengo tuneup voy e revisar el enlace y comento ok

      ya he revisado el enlace y me parece muy interesante la verdad mi versión de windows es la básica lo que no me quedo muy claro es esto
      Esas son modificaciones ó restricciones en el registro que pudieran ser hechas por malware, el programa solo detecta valores de claves en el registro que normalmente deberian estar por ejemplo en 0 y han sido modificadas a 1 ocasionando una restricción, si le das en Superantispyware a eliminar vuelve a cambiar el valor de la clave a lo que se considera normal.

    4. #4
      Colaborador Avatar de Demiann
      Registrado
      abr 2009
      Ubicación
      Argentina
      Mensajes
      2.385

      Re: Security.HiJack[ImageFileExecutionOptions]

      Hola blinck205

      Traducido seria que una restricción hecha por malware es impedir que se ejecute un programa o función ó que no lo haga dentro de los parametros normales, por ejemplo deshabilitar el Administrador de Tareas.

      Saludos!

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de blinck205
      Registrado
      nov 2011
      Ubicación
      Honduras
      Mensajes
      97

      Alegria Re: Security.HiJack[ImageFileExecutionOptions]

      excelente bueno entonces dejare de usar tuneup un tiempo y miro como evoluciona ok
      Gracias

      ya se puede dar el tema por solucionado
      gracias