• Registrarse
  • Iniciar sesión


    • Bienvenidos al Foro de InfoSpyware


    La mayor comunidad en idioma español de:


    •  » Información, Consejos y Ayuda
    •  » Para Detectar, Protegerse y Eliminar:
    •  » Virus, Spywares, Adwares, Troyanos, Rogues,
    •  » Rootkits, Keygens, Gusanos, Ransomwares, Falsos AVs,

      • ...Malwares en general y otras amenazas que inundan la internet


      Regístrese para solicitar ayuda personalizada, o siga guías de ayuda.


      Registrarse    Solicitar Ayuda


      p.s.: Pueden seguirnos en nuestras vías de difusión: Twitter, G+, Blog, Facebook.

    Resultados 1 al 5 de 5

    Security HiJack [ImageFileExecutionOptions] (Solucionado)

    Resumen del tema: Security HiJack [ImageFileExecutionOptions] (Solucionado) - Hola lo que pasa es lo siguiente tengo malware bytes y kasperki pure en mi compu hace poco instale superantispyware y me detecto eso Security.HiJack[ImageFileExecutionOptions] que no se que es Hay dejo el reporte de ...

      
    1. 23/12/11, 11:01:16 #1
      blinck205
      blinck205 está offline
      Usuario Avatar de blinck205
      Registrado
      nov 2011
      Ubicación
      Honduras
      Mensajes
      97

      Alegria Security HiJack [ImageFileExecutionOptions] (Solucionado)

      Hola lo que pasa es lo siguiente tengo malware bytes y kasperki pure en mi compu hace poco instale superantispyware y me detecto eso Security.HiJack[ImageFileExecutionOptions] que no se que es
      Hay dejo el reporte de SUPERAntiSpyware y la fecha de las bases cabe decir que esta actualizado el otro día lo pase y me volvió a aparecer esto mismo y no se que es gracias


      HAY 3 REPORTES DESDE EL MAS NUEVO HASTA EL MAS VIEJO


      Código HTML:
      SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/21/2011 at 05:52 PM

Application Version : 5.0.1142

Core Rules Database Version : 8068
Trace Rules Database Version: 5880

Scan type       : Quick Scan
Total Scan Time : 00:10:23

Operating System Information
Windows 7 Home Basic 32-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 761
Memory threats detected   : 0
Registry items scanned    : 31765
Registry threats detected : 4
File items scanned        : 7983
File threats detected     : 0

Security.HiJack[ImageFileExecutionOptions]
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\REGMECH.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\REGMECH.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UNINS000.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UNINS000.EXE#Debugger


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/12/2011 at 06:03 PM

Application Version : 5.0.1136

Core Rules Database Version : 8038
Trace Rules Database Version: 5850

Scan type       : Quick Scan
Total Scan Time : 00:11:24

Operating System Information
Windows 7 Home Basic 32-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 688
Memory threats detected   : 0
Registry items scanned    : 31751
Registry threats detected : 56
File items scanned        : 7917
File threats detected     : 0

Security.HiJack[ImageFileExecutionOptions]
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HWSETUP.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HWSETUP.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IASTORUI.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IASTORUI.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALAR.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALAR.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALL.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALL.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PHOENIX-WT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PHOENIX-WT.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RACING-WT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RACING-WT.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RSELECT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RSELECT.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMARTFACEVSETTING.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMARTFACEVSETTING.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TINTOUCH.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TINTOUCH.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOADC.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOADC.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSSSDALERT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSSSDALERT.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TPCHVIEWER.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TPCHVIEWER.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\YAHTZEE-WT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\YAHTZEE-WT.EXE#Debugger







SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/07/2011 at 01:25 PM

Application Version : 5.0.1136

Core Rules Database Version : 8023
Trace Rules Database Version: 5835

Scan type       : Quick Scan
Total Scan Time : 00:13:58

Operating System Information
Windows 7 Home Basic 32-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 705
Memory threats detected   : 0
Registry items scanned    : 31747
Registry threats detected : 68
File items scanned        : 8380
File threats detected     : 0

Security.HiJack[ImageFileExecutionOptions]
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\EXCEL.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\EXCEL.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HWSETUP.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HWSETUP.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IASTORUI.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IASTORUI.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALAR.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALAR.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALL.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\INSTALL.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSOXMLED.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSOXMLED.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSTORE.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSTORE.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONENOTE.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONENOTE.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PHOENIX-WT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PHOENIX-WT.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\POWERPNT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\POWERPNT.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RACING-WT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RACING-WT.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RSELECT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RSELECT.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMARTFACEVSETTING.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMARTFACEVSETTING.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TINTOUCH.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TINTOUCH.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOADC.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOADC.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSSSDALERT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSSSDALERT.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TPCHVIEWER.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TPCHVIEWER.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WINWORD.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WINWORD.EXE#Debugger
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\YAHTZEE-WT.EXE
	HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\YAHTZEE-WT.EXE#Debugger
      Última edición por blinck205 fecha: 23/12/11 a las 17:00:12 Razón: no tengo idea que es esto
      Reply With Quote Registrate para responder
    2. 23/12/11, 13:02:15 #2
      Demiann
      Demiann está offline
      Colaborador Avatar de Demiann
      Registrado
      abr 2009
      Ubicación
      Argentina
      Mensajes
      2.245

      Re: Security.HiJack[ImageFileExecutionOptions]

      Hola blinck205

      Conteste un tema similar --> Una consulta sobre resultados de SUPERAntispyware (Solucionado)

      ¿ Tienes TuneUp ? Me fije en el foro de soporte de Superantispyware y hay varios usuarios que tuvieron ese tipo de detección originado por tener TuneUP.

      Saludos!

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
      Reply With Quote Registrate para responder
    3. 23/12/11, 16:46:48 #3
      blinck205
      blinck205 está offline
      Usuario Avatar de blinck205
      Registrado
      nov 2011
      Ubicación
      Honduras
      Mensajes
      97

      Alegria Re: Security.HiJack[ImageFileExecutionOptions]

      HOLA
      gracias por responder la verdad si tengo tuneup voy e revisar el enlace y comento ok

      ya he revisado el enlace y me parece muy interesante la verdad mi versión de windows es la básica lo que no me quedo muy claro es esto
      Esas son modificaciones ó restricciones en el registro que pudieran ser hechas por malware, el programa solo detecta valores de claves en el registro que normalmente deberian estar por ejemplo en 0 y han sido modificadas a 1 ocasionando una restricción, si le das en Superantispyware a eliminar vuelve a cambiar el valor de la clave a lo que se considera normal.
      Reply With Quote Registrate para responder
    4. 24/12/11, 01:02:39 #4
      Demiann
      Demiann está offline
      Colaborador Avatar de Demiann
      Registrado
      abr 2009
      Ubicación
      Argentina
      Mensajes
      2.245

      Re: Security.HiJack[ImageFileExecutionOptions]

      Hola blinck205

      Traducido seria que una restricción hecha por malware es impedir que se ejecute un programa o función ó que no lo haga dentro de los parametros normales, por ejemplo deshabilitar el Administrador de Tareas.

      Saludos!

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
      Reply With Quote Registrate para responder
    5. 26/12/11, 00:43:51 #5
      blinck205
      blinck205 está offline
      Usuario Avatar de blinck205
      Registrado
      nov 2011
      Ubicación
      Honduras
      Mensajes
      97

      Alegria Re: Security.HiJack[ImageFileExecutionOptions]

      excelente bueno entonces dejare de usar tuneup un tiempo y miro como evoluciona ok
      Gracias

      ya se puede dar el tema por solucionado
      gracias
      Reply With Quote Registrate para responder
    « Tema Anterior | Próximo Tema »