Blog Registrarse Temas de Hoy AntiSpywares AntiVirus Glosario

Regresar   Foro de Spyware » Spyware - Adware - Hijackers - Malwares » Foro de Virus y Spywares
Actualizar pagina en mi escritorio..heeeelp!!!!!!
         
Para evitar Virus, Spyware y ventanas emergentes, en InfoSpyware recomendamos navegar con: FIREFOX

Foro de Virus y Spywares Ayuda con: Malwares - Virus - Spywares - Troyanos - Adwares - Worms - Hijackers - Dialers - Rootkits - Keylogger - etc.) Plantéanos tu problema en este sector.
No ponga su log de HijackThis aquí !!

Tema Cerrado
 
Herramientas
  post #1 (permalink)  
Antiguo 01/07/06, 06:07:11
Usuario
  
Registrado: jul 2005
Ubicación: lima
Mensajes: 7
Atención pagina en mi escritorio..heeeelp!!!!!!
cominezo diciendoles q tengo
el ad-ware
spy search& destroy
regclean
webroot
antivirguard
nod
y tengo el sgt problema tengo una pagina en mi escritorio q no me deja ahcer nada y lo peor q oxila y eso molesta porq cambia el brillo de la pc
miren estube revisando el codigo fuente de esa vaina y esto me sale
alguien me puede ayudar ya no se q hacer ..la verdd

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<!----
***** This file is automatically generated by Microsoft Windows *****
--------><HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=windows-1252"></HEAD>
<BODY
style="BORDER-RIGHT: medium none; BORDER-TOP: medium none; BORDER-LEFT: medium none; BORDER-BOTTOM: medium none"
bottomMargin=0 bgColor=#004e98 leftMargin=0 background="" topMargin=0
rightMargin=0>
<DIV
style="LEFT: 0px; WIDTH: 1024px; POSITION: absolute; TOP: 0px; HEIGHT: 768px"><IMG
style="LEFT: 0px; WIDTH: 100%; POSITION: absolute; TOP: 0px; HEIGHT: 100%" cache
src="file:///C:/Documents%20and%20Settings/Usuario/Configuraci%F3n%20local/Datos%20de%20programa/Microsoft/Wallpaper1.bmp">
</DIV><IFRAME id=0
style="BACKGROUND: none transparent scroll repeat 0% 0%; LEFT: 0px; WIDTH: 1024px; POSITION: absolute; TOP: 1px; HEIGHT: 737px"
name=DeskMovrW marginWidth=0 marginHeight=0
src="file:///C:/WINDOWS/desktop.html" frameBorder=0 scrolling=no
subscribed_url="C:\WINDOWS\desktop.html" resizeable="ﰟ粷퀈곴"> </IFRAME>
<OBJECT id=ActiveDesktopMover
style="LEFT: 0px; VISIBILITY: hidden; WIDTH: 0px; POSITION: absolute; TOP: 0px; HEIGHT: 0px; container: positioned; zIndex: 5"
classid=clsid:72267F6A-A6F9-11D0-BC94-00C04FB67863></OBJECT>
<OBJECT id=ActiveDesktopMoverW
style="Z-INDEX: -1; LEFT: -1px; VISIBILITY: hidden; WIDTH: 1026px; POSITION: absolute; TOP: 0px; HEIGHT: 739px; container: positioned"
classid=clsid:72267F6A-A6F9-11D0-BC94-00C04FB67863></OBJECT>&nbsp;
</BODY></HTML>

y como les puedo dar mas datos de este problema ..porq veo en los foros q dejan unos registros de scaneos pero no se como se hacen
en fin amigos ayudenme
gracias ..
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
  post #2 (permalink)  
Antiguo 01/07/06, 09:28:48
Avatar de Heavyman
Ex-Colaborador
  
Registrado: nov 2005
Ubicación: Argentino (Bs.As.) residente en España (Málaga)
Mensajes: 7.649
Re: pagina en mi escritorio..heeeelp!!!!!!
Hola Rr_bUg32,

Nos podés decir cómo es la página ?? qué dice ??

Analizá tu pc con Ewido Online y nos pegás el reporte que te genere.

Suerte

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Para evitar Virus y Spywares al navegar por internet, USE FIREFOX !!
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
  post #3 (permalink)  
Antiguo 01/07/06, 12:02:05
Usuario
  
Registrado: jul 2005
Ubicación: lima
Mensajes: 7
Re: pagina en mi escritorio..heeeelp!!!!!!
la pagina de de razeware asi me sale pero el codigo fuente esta alli ...
en el post anterior..
y como puedo enviar el registro del scanneo de mi pc q programa uso
...porfa gracias
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
  post #4 (permalink)  
Antiguo 01/07/06, 12:12:26
Usuario
  
Registrado: jul 2005
Ubicación: lima
Mensajes: 7
Re: pagina en mi escritorio..heeeelp!!!!!!
la pagina de de razeware asi me sale pero el codigo fuente esta alli ...
en el post anterior..
y como puedo enviar el registro del scanneo de mi pc q programa uso
...porfa gracias
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
  post #5 (permalink)  
Antiguo 01/07/06, 12:22:07
Avatar de Heavyman
Ex-Colaborador
  
Registrado: nov 2005
Ubicación: Argentino (Bs.As.) residente en España (Málaga)
Mensajes: 7.649
Re: pagina en mi escritorio..heeeelp!!!!!!
Hola Rr_bUg32,

Cita:
Analizá tu pc con Ewido Online y nos pegás el reporte que te genere.
Clickeá sobre Ewido Online y entrá en ''Ewido'', analizás tu pc ahí y al finalizar copiás el reporte y nos lo pegás.

Suerte

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Para evitar Virus y Spywares al navegar por internet, USE FIREFOX !!
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
  post #6 (permalink)  
Antiguo 01/07/06, 15:50:56
Usuario
  
Registrado: jul 2005
Ubicación: lima
Mensajes: 7
Re: pagina en mi escritorio..heeeelp!!!!!!
Name: Adware.Yahoo
Path: C:\Archivos de programa\Yahoo!\Messenger\ycomp.dll
Risk: Medium

Name: Adware.Casino
Path: C:\WINDOWS\system32\SetupCarnival.exe--->este no lo encuentro por nada---
Risk: Medium


Name: Adware.Yahoo
Path: D:\programas ale\hijackthis.zip/backups/backup-20060630-103314-676.dll
Risk: Medium


el ad ware y el spy &destroy y el
webroot no me encuentran nada

Ad-Aware SE Build 1.06r1
Logfile Created on:sábado, 01 de julio de 2006 13:18:47
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R113 28.06.2006
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» »

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):24 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


01-07-2006 13:18:47 - Scan started. (Custom mode)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 592
ThreadCreationTime : 30-06-2006 23:38:35
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 664
ThreadCreationTime : 30-06-2006 23:38:37
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 688
ThreadCreationTime : 30-06-2006 23:38:37
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 732
ThreadCreationTime : 30-06-2006 23:38:37
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Aplicación de servicios y controlador
InternalName : services.exe
LegalCopyright : Copyright (C) Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 744
ThreadCreationTime : 30-06-2006 23:38:37
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 904
ThreadCreationTime : 30-06-2006 23:38:38
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 980
ThreadCreationTime : 30-06-2006 23:38:38
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1080
ThreadCreationTime : 30-06-2006 23:38:38
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1120
ThreadCreationTime : 30-06-2006 23:38:38
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1176
ThreadCreationTime : 30-06-2006 23:38:39
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1568
ThreadCreationTime : 30-06-2006 23:38:40
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [sched.exe]
FilePath : C:\Archivos de programa\AntiVir PersonalEdition Classic\
ProcessID : 1752
ThreadCreationTime : 30-06-2006 23:38:49
BasePriority : Normal


#:13 [avguard.exe]
FilePath : C:\Archivos de programa\AntiVir PersonalEdition Classic\
ProcessID : 1768
ThreadCreationTime : 30-06-2006 23:38:49
BasePriority : Normal


#:14 [mdm.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\
ProcessID : 1868
ThreadCreationTime : 30-06-2006 23:38:49
BasePriority : Normal
FileVersion : 7.00.9466
ProductVersion : 7.00.9466
ProductName : Microsoft® Visual Studio .NET
CompanyName : Microsoft Corporation
FileDescription : Machine Debug Manager
InternalName : mdm.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : mdm.exe

#:15 [nod32krn.exe]
FilePath : C:\Archivos de programa\Eset\
ProcessID : 1968
ThreadCreationTime : 30-06-2006 23:38:53
BasePriority : Normal
FileVersion : 2, 51, 26
ProductVersion : 2, 51, 26
ProductName : NOD32 Antivirus System
CompanyName : Eset
FileDescription : NOD32 Kernel Service
InternalName : NOD32 Kernel
LegalCopyright : Copyright (c) 1992-2005 Eset
LegalTrademarks : NOD, NOD32, AMON, ESET are registered trademarks of Eset
OriginalFilename : nod32krn.exe

#:16 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 240
ThreadCreationTime : 30-06-2006 23:38:54
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:17 [wrsssdk.exe]
FilePath : C:\Archivos de programa\Webroot\Spy Sweeper\
ProcessID : 344
ThreadCreationTime : 30-06-2006 23:38:54
BasePriority : Normal
FileVersion : 2,0,9,509
ProductVersion : 2, 0
ProductName : Spy Sweeper SDK
CompanyName : Webroot Software, Inc.
FileDescription : Spy Sweeper SDK
LegalCopyright : Copyright (C) 2002 - 2005, All Rights Reserved.
LegalTrademarks : Spy Sweeper is a trademark of Webroot Software, Inc.
OriginalFilename : SpySweeper.exe

#:18 [wdfmgr.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 920
ThreadCreationTime : 30-06-2006 23:39:00
BasePriority : Normal
FileVersion : 5.2.3790.1230 built by: dnsrv(bld4act)
ProductVersion : 5.2.3790.1230
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows User Mode Driver Manager
InternalName : WdfMgr
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WdfMgr.exe

#:19 [wgatray.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 636
ThreadCreationTime : 30-06-2006 23:39:26
BasePriority : Normal
FileVersion : 1.5.0540.0
ProductVersion : 1.5.0540.0
ProductName : Windows Genuine Advantage
CompanyName : Microsoft Corporation
FileDescription : Windows Genuine Advantage Notification
InternalName : WgaNotify
LegalCopyright : © 1995-2006 Microsoft Corporation
OriginalFilename : WgaTray.exe

#:20 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1556
ThreadCreationTime : 30-06-2006 23:39:27
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Explorador de Windows
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : EXPLORER.EXE

#:21 [soundman.exe]
FilePath : C:\WINDOWS\
ProcessID : 1916
ThreadCreationTime : 30-06-2006 23:39:29
BasePriority : Normal
FileVersion : 5.1.0.40
ProductVersion : 5.1.0.40
ProductName : Realtek Sound Manager
CompanyName : Realtek Semiconductor Corp.
FileDescription : Realtek Sound Manager
InternalName : ALSMTray
LegalCopyright : Copyright (c) 2001-2004 Realtek Semiconductor Corp.
OriginalFilename : ALSMTray.exe
Comments : Realtek AC97 Audio Sound Manager

#:22 [pdvdserv.exe]
FilePath : C:\Archivos de programa\CyberLink\PowerDVD\
ProcessID : 1932
ThreadCreationTime : 30-06-2006 23:39:30
BasePriority : Normal
FileVersion : 6.00.1027
ProductVersion : 6.00.1027
ProductName : PowerDVD
CompanyName : Cyberlink Corp.
FileDescription : PowerDVD RC Service
InternalName : PowerDVD RC Service
LegalCopyright : Copyright (c) CyberLink Corp. 1997-2004
OriginalFilename : PDVDSERV.EXE

#:23 [vm303_sti.exe]
FilePath : C:\WINDOWS\
ProcessID : 2104
ThreadCreationTime : 30-06-2006 23:39:32
BasePriority : Normal
FileVersion : 4, 3, 625, 61
ProductVersion : 4, 3, 625, 61
ProductName : BIGDOG
CompanyName : Vimicro
FileDescription : Vimicro
InternalName : BIGDOG
LegalCopyright : Copyright (C) 2004 Vimicro Corporation
LegalTrademarks : BIGDOG
OriginalFilename : BigDog.exe
Comments : For Windows XP only

#:24 [avgnt.exe]
FilePath : C:\Archivos de programa\AntiVir PersonalEdition Classic\
ProcessID : 2152
ThreadCreationTime : 30-06-2006 23:39:33
BasePriority : Normal


#:25 [nod32kui.exe]
FilePath : C:\Archivos de programa\Eset\
ProcessID : 2184
ThreadCreationTime : 30-06-2006 23:39:33
BasePriority : Normal
FileVersion : 2, 51, 26
ProductVersion : 2, 51, 26
ProductName : NOD32 Antivirus System
CompanyName : Eset
FileDescription : NOD32 Control Center GUI
InternalName : NOD32 Control Center GUI
LegalCopyright : Copyright (c) 1992-2005 Eset
LegalTrademarks : NOD, NOD32, AMON, ESET are registered trademarks of Eset
OriginalFilename : nod32kui.exe

#:26 [spysweeper.exe]
FilePath : C:\Archivos de programa\Webroot\Spy Sweeper\
ProcessID : 2224
ThreadCreationTime : 30-06-2006 23:39:34
BasePriority : Normal
FileVersion : 4,5,9,709
ProductVersion : 4, 5
ProductName : Spy Sweeper
CompanyName : Webroot Software, Inc.
FileDescription : Spy Sweeper Client Executable
LegalCopyright : Copyright (C) 2002 - 2005, All Rights Reserved.
OriginalFilename : SpySweeper.exe

#:27 [pavss.exe]
FilePath : C:\Archivos de programa\Persystems\Perav\
ProcessID : 2244
ThreadCreationTime : 30-06-2006 23:39:34
BasePriority : Normal
FileVersion : 9, 6, 0, 0
ProductVersion : 9, 6, 0, 0
ProductName : PER Antivirus
CompanyName : PER SYSTEMS S.A.
FileDescription : PER Antivirus - Security Service
InternalName : pavss.exe
LegalCopyright : Copyright (C) 2004-2006 PER Systems S.A.
LegalTrademarks : PER Antivirus en marca registrada de PER Systems S.A.
OriginalFilename : pavss.exe
Comments : Service for Windows Security Center

#:28 [ctfmon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 2292
ThreadCreationTime : 30-06-2006 23:39:34
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE

#:29 [msmsgs.exe]
FilePath : C:\Archivos de programa\Messenger\
ProcessID : 2360
ThreadCreationTime : 30-06-2006 23:39:36
BasePriority : Normal
FileVersion : 4.7.3001
ProductVersion : Version 4.7.3001
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Windows Messenger
InternalName : msmsgs
LegalCopyright : Copyright (c) Microsoft Corporation 2004
LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe

#:30 [gammatray.exe]
FilePath : C:\Archivos de programa\SEC\MagicTune3.5_Client\
ProcessID : 3180
ThreadCreationTime : 30-06-2006 23:39:50
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : GammaTray ?? ????
FileDescription : GammaTray MFC ?? ????
InternalName : GammaTray
LegalCopyright : Copyright (C) 2004
OriginalFilename : GammaTray.EXE

#:31 [naturalcolorload.exe]
FilePath : C:\Archivos de programa\SEC\Natural Color\
ProcessID : 3252
ThreadCreationTime : 30-06-2006 23:39:52
BasePriority : Normal
FileVersion : 2, 0, 1, 1
ProductVersion : 2, 0, 1, 1
ProductName : NaturalColorLoad
FileDescription : NaturalColorLoad
InternalName : NaturalColorLoad
LegalCopyright : Copyright (C) 2000
OriginalFilename : NaturalColorLoad.EXE

#:32 [naturalcolormain.exe]
FilePath : C:\Archivos de programa\SEC\Natural Color\
ProcessID : 3396
ThreadCreationTime : 01-07-2006 2:29:45
BasePriority : Normal
FileVersion : 2, 0, 1, 1
ProductVersion : 2, 0, 1, 1
ProductName : NaturalColor2
FileDescription : NaturalColor2
InternalName : NaturalColor2
LegalCopyright : Copyright (C) 2000
OriginalFilename : NaturalColor2.EXE

#:33 [firefox.exe]
FilePath : C:\ARCHIV~1\MOZILL~1\
ProcessID : 2220
ThreadCreationTime : 01-07-2006 3:33:56
BasePriority : Normal


#:34 [ares.exe]
FilePath : C:\Archivos de programa\Ares\
ProcessID : 6432
ThreadCreationTime : 01-07-2006 9:33:41
BasePriority : Normal
FileVersion : 1.9.1.3010
ProductVersion : 1.9
ProductName : Ares for windows
CompanyName : Ares Development Group
FileDescription : Ares
InternalName : Ares
OriginalFilename : ARES.EXE
Comments : http://aresgalaxy.sourceforge.net

#:35 [winamp.exe]
FilePath : C:\Archivos de programa\Winamp\
ProcessID : 2176
ThreadCreationTime : 01-07-2006 15:08:52
BasePriority : Normal
FileVersion : 5.02
ProductVersion : 5.02
ProductName : Winamp
CompanyName : Nullsoft
FileDescription : Winamp
InternalName : WINAMP
LegalCopyright : Copyright © 1997-2004, Nullsoft, Inc.
LegalTrademarks : Nullsoft and Winamp are trademarks of Nullsoft, Inc.
OriginalFilename : Winamp.exe
Comments : Visit http://www.winamp.com/ for updates.

#:36 [iexplore.exe]
FilePath : C:\Archivos de programa\Internet Explorer\
ProcessID : 7732
ThreadCreationTime : 01-07-2006 15:09:36
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Sistema operativo Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Reservados todos los derechos.
OriginalFilename : IEXPLORE.EXE

#:37 [msnmsgr.exe]
FilePath : C:\Archivos de programa\MSN Messenger\
ProcessID : 6376
ThreadCreationTime : 01-07-2006 16:48:26
BasePriority : Normal
FileVersion : 7.5.0306
ProductVersion : 7.5.0306
ProductName : MSN Messenger
CompanyName : Microsoft Corporation
FileDescription : MSN Messenger
InternalName : msnmsgr
LegalCopyright : Copyright (c) Microsoft Corporation 1997-2004
LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msnmsgr.exe

#:38 [ad-aware.exe]
FilePath : C:\Archivos de programa\Lavasoft\Ad-Aware SE Personal\
ProcessID : 9588
ThreadCreationTime : 01-07-2006 18:17:25
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0

MRU List Object Recognized!
Location: : C:\Documents and Settings\Usuario\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\direct3d\mostrecentapplica tion
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\direct3d\mostrecentapplica tion
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplicatio n
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\directinput\mostrecentappl ication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\directinput\mostrecentappl ication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\mediaplayer\medialibraryui
Description : last selected node in the microsoft windows media player media library


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\mediaplayer\player\recentf ilelist
Description : list of recently used files in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\mediaplayer\player\setting s
Description : last save as directory used in jasc paint shop pro


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\windows\currentversion\app lets\paint\recent file list
Description : list of files recently opened using microsoft paint


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\windows\currentversion\exp lorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\windows\currentversion\exp lorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\windows\currentversion\exp lorer\recentdocs
Description : list of recent documents opened


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\windows\currentversion\exp lorer\runmru
Description : mru list for items opened in start | run


MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-21-1454471165-920026266-725345543-1003\software\winrar\dialogedithistory\extrpath
Description : winrar "extract-to" history



Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 24



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 24


Deep scanning and examining files (D:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for D:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 24


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» »»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
683 entries scanned.
New critical objects:0
Objects found so far: 24




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 24

13:34:29 Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:15:41.766
Objects scanned:123404
Objects identified:0
Objects ignored:0
New critical objects:0



ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 14:23:46 01/07/2006

+ Scan result:



D:\programas ale\hijackthis.zip/backups/backup-20060630-103314-676.dll -> Adware.Yahoo : No action taken.


::Report end

esto es todo loq puedo obtener pueden ayudarme con estoªª!!!!
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
  post #7 (permalink)  
Antiguo 01/07/06, 16:44:57
Avatar de Heavyman
Ex-Colaborador
  
Registrado: nov 2005
Ubicación: Argentino (Bs.As.) residente en España (Málaga)
Mensajes: 7.649
Re: pagina en mi escritorio..heeeelp!!!!!!
Hola Rr_bUg32,

Buscá y eliminá estos archivos/carpetas (Si no lo/los encontrás activá ''Ver archivos ocultos del sistema''), si no se dejan eliminar descargá el programa "Killbox" y seguí las indicaciones del mensaje, copiá y pegá los archivos para que los elimine al reiniciar.

C:\WINDOWS\system32\SetupCarnival.exe

D:\programas ale\hijackthis.zip/backups <-- Eliminá esta carpeta, y cada vez que ejecutés Hijackthis no lo hagas ejecutando el archivo comprimido, sino que lo descomprimas en una carpeta dedicada al programa.

Ejecutá Disk Cleaner y Regseeker

Analizá tu pc con al menos dos Antivirus Online (Recomiendo Ewido y Kaspersky)

Comentános como te fué.

Suerte

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Para evitar Virus y Spywares al navegar por internet, USE FIREFOX !!
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
  post #8 (permalink)  
Antiguo 01/07/06, 22:43:29
Usuario
  
Registrado: jul 2005
Ubicación: lima
Mensajes: 7
Re: pagina en mi escritorio..heeeelp!!!!!!
Logfile of HijackThis v1.99.1
Scan saved at 17:06:37, on 01/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Archivos de programa\AntiVir PersonalEdition Classic\sched.exe
C:\Archivos de programa\AntiVir PersonalEdition Classic\avguard.exe
C:\Archivos de programa\ewido anti-spyware 4.0\guard.exe
C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Archivos de programa\Eset\nod32krn.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Webroot\Spy Sweeper\WRSSSDK.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Archivos de programa\CyberLink\PowerDVD\PDVDServ.exe
C:\Archivos de programa\Winamp\winampa.exe
C:\WINDOWS\VM303_STI.EXE
C:\Archivos de programa\HP\HP Software Update\HPWuSchd2.exe
C:\Archivos de programa\AntiVir PersonalEdition Classic\avgnt.exe
C:\Archivos de programa\Eset\nod32kui.exe
C:\Archivos de programa\Webroot\Spy Sweeper\SpySweeper.exe
C:\Archivos de programa\Java\jre1.5.0_07\bin\jusched.exe
C:\Archivos de programa\Persystems\Perav\PAVSS.EXE
C:\Archivos de programa\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Archivos de programa\Messenger\msmsgs.exe
C:\Archivos de programa\MSN Messenger\MsnMsgr.Exe
C:\Archivos de programa\Ares\Ares.exe
C:\Archivos de programa\HP\Digital Imaging\bin\hpqtra08.exe
C:\Archivos de programa\SEC\Natural Color\NaturalColorLoad.exe
C:\Archivos de programa\SEC\Natural Color\naturalcolormain.exe
C:\WINDOWS\system32\notepad.exe
C:\Archivos de programa\AntiVir PersonalEdition Classic\avscan.exe
C:\Archivos de programa\MSN Messenger\msnmsgr.exe
C:\Archivos de programa\Winamp\winamp.exe
C:\Archivos de programa\Internet Explorer\iexplore.exe
C:\antivirushij\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.es/0SEESES/SAOS01
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
O2 - BHO: (no name) - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - (no file)
O2 - BHO: (no name) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)
O3 - Toolbar: (no name) - {AF2A1C5A-1AED-4E92-8BA8-D708EB79537E} - (no file)
O3 - Toolbar: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Archivos de programa\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Archivos de programa\Winamp\winampa.exe
O4 - HKLM\..\Run: [PAV.EXE] C:\ARCHIV~1\PERSYS~1\Perav\PAV.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [HP Software Update] "c:\Archivos de programa\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Archivos de programa\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [nod32kui] "C:\Archivos de programa\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [SpySweeper] "C:\Archivos de programa\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Archivos de programa\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [!ewido] "C:\Archivos de programa\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\ARCHIV~1\NEWDOT~1\NEWDOT~1.DLL,NewDotNetStartup -s
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Archivos de programa\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MsnMsgr] "C:\Archivos de programa\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Camfrog] "C:\Archivos de programa\Camfrog\Camfrog Video Chat 3.71\CamfrogNet.exe" 0 C:\Archivos de programa\Camfrog\Camfrog Video Chat 3.71\Camfrog Video Chat.exe
O4 - HKCU\..\Run: [ares] "C:\Archivos de programa\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Archivos de programa\Yahoo!\Messenger\ypager.exe -quiet
O4 - Global Startup: Actualización de PER Antivirus.lnk = C:\Archivos de programa\Persystems\Perav\PERUPD.EXE
O4 - Global Startup: Color Calibration.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Archivos de programa\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: MagicTune3.5.lnk = ?
O4 - Global Startup: NaturalColorLoad.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Archivos de programa\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_07\bin\npjpi150_07.dll
O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_07\bin\npjpi150_07.dll
O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{626CCC1F-0AF0-423C-B7E7-47E370A5353E}: NameServer = 85.255.116.54,85.255.112.126
O17 - HKLM\System\CS1\Services\Tcpip\..\{626CCC1F-0AF0-423C-B7E7-47E370A5353E}: NameServer = 85.255.116.54,85.255.112.126
O17 - HKLM\System\CS2\Services\Tcpip\..\{626CCC1F-0AF0-423C-B7E7-47E370A5353E}: NameServer = 85.255.116.54,85.255.112.126
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\ARCHIV~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Archivos de programa\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Archivos de programa\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Archivos de programa\ewido anti-spyware 4.0\guard.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Archivos de programa\Eset\nod32krn.exe
O23 - Service: PER Antivirus Security Service (pav_security) - PER SYSTEMS S.A. - C:\Archivos de programa\Persystems\Perav\PAVSS.EXE
O23 - Service: PER Antivirus (pav_service) - PER Systems S.A. - C:\Archivos de programa\Persystems\Perav\PERVAC.EXE
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Archivos de programa\Webroot\Spy Sweeper\WRSSSDK.exe






System Temporary Files (11,1 MB; 317 items): cleaned 11,0 MB in 316 items.
Internet Cookies (6 kB; 32 items): cleaned 6 kB in 32 items.
Internet History (0 bytes; 490 items): cleaned 0 bytes in 484 items.
Firefox Cache (732 kB; 11 items): cleaned 732 kB in 11 items.
Firefox History (674 kB; 1 item): cleaned 674 kB in 1 item.
Firefox Cookies (455 bytes; 1 item): cleaned 455 bytes in 1 item.
Recent Documents (20 kB; 38 items): cleaned 20 kB in 38 items.
Run... List (53 bytes; 1 item): cleaned 53 bytes in 1 item.
URLs in IE Address Bar (85 bytes; 6 items): cleaned 85 bytes in 6 items.
Common Dialog MRUs (8 kB; 145 items): cleaned 8 kB in 145 items.
IE Autocomplete Form History (28 bytes; 7 items): cleaned 28 bytes in 7 items.
Office 95/97/2000/XP/2003 Recent Files (1 kB; 1 item): cleaned 1 kB in 1 item.
Search History For Windows 2000/XP (114 bytes; 9 items): cleaned 114 bytes in 9 items.
Winamp (81 kB; 2 items): cleaned 81 kB in 2 items.
Windows Log Files (194 kB; 28 items): cleaned 156 kB in 24 items.
Forced \Windows\Temp cleaner (664 bytes; 4 items): cleaned 664 bytes in 4 items.
WinXP prefetch clean (5503 kB; 91 items): cleaned 5546 kB in 92 items.

Scheduled 4 file(s) for removal on reboot.

Cleaned total of 18,1 MB in 1174 items.


ntiVir PersonalEdition Classic
Report file date: sábado, 01 de julio de 2006 17:03

Scanning for 429125 virus strains and unwanted programs.

Licensed to: AntiVir PersonalEdition Classic
Serial number: 0000149996-WURGE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: Usuario
Computer name: USUARIO-049C185

Version informations:
AVSCAN.EXE : 7.0.0.42 376872 29/06/2006 19:02:59
AVSCAN.DLL : 7.0.0.42 53288 29/06/2006 19:02:59
LUKE.DLL : 7.0.0.42 110632 29/06/2006 19:03:02
LUKERES.DLL : 7.0.0.42 25640 29/06/2006 19:03:02
ANTIVIR0.VDF : 6.35.0.1 7371264 29/06/2006 19:02:57
ANTIVIR1.VDF : 6.35.0.122 445440 29/06/2006 19:02:57
ANTIVIR2.VDF : 6.35.0.123 2048 29/06/2006 19:02:57
ANTIVIR3.VDF : 6.35.0.129 39936 29/06/2006 19:02:57
AVEWIN32.DLL : 7.1.0.19 1544704 29/06/2006 19:02:57
AVPREF.DLL : 7.0.0.1 33832 29/06/2006 19:02:59
AVREP.DLL : 6.35.0.85 475176 29/06/2006 19:02:59
AVRPBASE.DLL : 7.0.0.0 1544232 29/06/2006 19:02:59
AVPACK32.DLL : 7.1.0.1 331816 29/06/2006 19:02:59
AVREG.DLL : 6.31.0.90 25128 29/06/2006 19:02:59
NETNT.DLL : 6.32.0.0 6696 29/06/2006 19:03:02
NETNW.DLL : 6.32.0.0 9768 29/06/2006 19:03:02
RCIMAGE.DLL : 7.0.0.71 1642536 29/06/2006 19:03:06
RCTEXT.DLL : 7.0.0.75 77864 29/06/2006 19:03:06

Configuration settings for the scan:
Jobname: '%s'.................: Manual Selection
Configuration file............: C:\Documents and Settings\All Users\Datos de programa\AntiVir PersonalEdition Classic\PROFILES\folder.avp
Boot sectors..................: C
Scan memory...................: 1
Process scan..................: 1
Scan all files................: 1
Scan archives.................: 1
Recursion depth...............: 20
Smart extensions..............: 1
Macro heuristic...............: 1
File heuristic................: -1
Primary action................: 1
Secondary action..............: 0

Start of the scan: sábado, 01 de julio de 2006 17:03


The scan over running processes will be started
46 Processes was scanned

Start scanning boot sectors:

Boot sector 'C:\'
[NOTE] No virus was found!

Starting to scan the registry.
The registry was scanned ( 35 files ).


Starting the file scan:

C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\NTUSER.DAT
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\ntuser.dat.LOG
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS03BD7BAA-2F84-498A-ADA4-E187C67CB53F.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS07B70BD1-BC59-4A67-ACB4-E04C13D63E5D.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS0F97783F-F2BA-402E-879D-CCE5A85BF82C.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS11C779EA-6039-427F-B753-BB286EC9650F.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS13FCD487-3299-456A-A119-656DB2A11958.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS1DB9A944-44AE-4D3F-9334-E83F87ADA012.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS200E1D7B-7359-4693-BFDF-94E754FE6194.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS24C4771A-95CF-49E9-A418-CBE524D16FC0.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS254D5193-BEAB-4289-AB1D-3554F51CA698.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS26424F0F-9039-4106-8AC6-53C1F47C1FCB.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS2AD64527-1B37-4FF7-B3A1-C8517FC71ABA.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS2B5A532E-730E-44EF-84B0-632BBD85E542.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS2D233764-82DE-4FDB-A6F0-CE920899651C.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS3046633A-58F5-48DB-820C-2EC7B5DD5970.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS30CD0CF2-73B3-488D-9582-11B3D0DE9818.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS30F4F9A9-8C0C-4875-8ABA-D94F42D7B1A7.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS33B9B01B-C511-473F-82A3-3ACBCF2382B6.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS3907DC5A-6D13-40B2-8434-ADD984BB7CE9.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS391B0E24-4E75-4DD4-8CCE-4EDCE0C38055.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS39966179-85EC-465E-8DBE-EDE0E96D9173.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS3997D4AE-4398-49E3-9063-55866AE55AEF.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS3E5EDC17-09FF-450C-8821-A58764900502.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS3E8DD4B1-6722-4FBA-82DD-CF61287B75D2.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS3EF6A433-41DB-487E-9170-F0B475DBBE0A.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS44A3571D-94C6-48F0-B506-B46EBF22BA79.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS48E3E5E3-A10C-47FA-A047-729CF66AFDC3.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS4B1FE01A-ECCF-4A9D-BCC5-9C271FF72FF0.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS4EC38EBD-A3E4-4739-9081-F1AF501E88EF.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS54C04E12-97A8-4633-A6CB-633E4D20FE62.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS560FB383-B961-4E25-B099-EB78BB5D49AA.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS56A5975E-0053-4CD9-9809-08FF6F1A5840.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS59321941-568A-4215-89F9-73F7C4982F7C.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS5B7B73C5-370B-4D9F-9D64-07C37C3A80D2.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS5D3B43FB-F97B-4D07-8D29-6C3F2EEC24D4.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS5DD69290-AAC5-4AEE-AA9E-66643DF77959.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS5DD97C92-FAE4-4935-915F-9F3CEF6E388B.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS5E3AC5F8-033B-4FC7-9434-9B49B7D0DD61.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS5EEF4122-0406-4680-8B33-47937DBEC345.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS6085E3A2-C551-4EEA-9CBE-ACF0A5C544EA.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS6297F1BF-FE1B-4E25-8104-588305D94112.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS63E3B5C6-89DE-46FE-97A9-1D0C6B18AC63.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS65FED82B-5155-4C13-BA84-2B1B1B3F3C2A.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS688E37C4-BD35-4ABD-82D3-28B6653E5F35.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS6D408ED4-5727-4E30-9AA8-CD9BCF6F1DC0.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS6D8C4F27-D4E6-4EFD-BBCB-C940B0E3288A.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS71088CEE-429F-4A53-84F8-DD6F496A977B.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS7468C3CC-E20A-41D6-BEA2-A4BB40A785CE.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS762BFC59-7D94-4C77-A893-18802C6176EB.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS776DD117-FF58-4EC6-9151-CB2AFFC82900.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS78CC4371-C561-49FE-A074-9B5A60A9CFDF.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS7B5043F8-2511-4DA8-89A7-E2D13579F09B.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS8075D0C2-060D-4172-B876-A817F400BBC2.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS81295C25-2F11-4ACE-B998-CFE590F4FEC1.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS837D9785-6A81-4362-B9A5-6704AD338536.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS84CC275F-D9E4-4D4A-9F7D-69EF7768BBE1.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS8A0B4809-968F-4DEF-90DE-E8CEE2B277EE.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS904721F2-6A7B-4FC4-95A2-6493FB7216EA.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS914E45DC-4A6D-4E43-A236-38BC080829AC.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS94FE4124-1AA2-4B16-A336-6E742C071730.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS971051F2-F678-4414-B1AC-5AA1F8711DE4.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS97318E43-EDA5-4ED2-94AE-8BFBCBEDA35A.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS9823F3E3-A5FB-46AE-A331-C307BDB42E56.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS983679E2-4652-41F7-92B0-28CE302489B1.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCS9DD38348-4ABB-4B95-89E3-D3F46138E2B0.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSA17586F5-E619-4E14-BBE9-8C377844EB7B.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSA5850289-A83C-4C16-A7AA-16F93A90F67B.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSA8B2BD81-54EC-4CF9-9810-69848DC72174.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSAAB0E4AA-B2A6-4E89-A0D4-CA1155D99E89.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSAC25A8CD-2467-46AA-ADC0-C06CD7722F70.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSB2B0F566-09C9-4BD0-BE2D-D553EA291B07.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSB448659D-97FA-4A6A-86BE-21E6A93196A5.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSB51EDA51-6D13-4FC8-AC06-1A9CD55C93D0.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSB669EDEC-25D3-4ACB-A561-659988C5F6CA.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSB71934E5-AB67-4298-8433-8BD99EC503CE.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSB776D41B-CC2B-4B7E-8F33-F8A17A21C1E2.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSB99C5A4D-B647-4A40-9470-A607F9248DE3.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSBB2D1BBA-7926-44C7-8296-87CB8BAB29D8.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSBE8C965F-45E3-4A06-BAEB-7971A2A487FF.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSC040D06F-DE8F-452E-80A0-F779366552EC.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSC67E2769-0D75-4B97-8F1F-B417A5937994.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSC6AB21CA-7D53-49F0-877D-1B2553E9635B.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSC97D46C4-2ED4-4A86-8658-CE0C22E73BC2.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSCC3FB64A-9100-4153-87BF-A2B20278BEB7.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSCC6E0645-010C-4F7B-8013-BF13D7B923A5.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSCCFC396F-28EA-43D2-BF1A-5A87388A4997.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSD6502EEF-51CA-4C66-B412-1D124F4053C5.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSDBFB13BD-9584-42C9-A22A-11A0C7D701B3.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSE03C7967-3DE9-4408-A99E-0F0EE753A072.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSE119A253-6A7F-4DEC-93A6-CF6519811700.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSE22E37A7-DDDA-4CCD-9158-3A5B86EDA0A6.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSE3DD2D48-8F2C-4168-84BF-9805E18FDA40.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSE650B91F-248D-49FF-BB2B-1C8840509D96.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSE68A3BA9-9AB6-4471-AADA-97CA3B4C00F5.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSE9521AF3-9817-479C-9916-582A0D23619C.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSED89BD7A-682D-43A8-B2E5-D7D2B9B8B32A.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSEE5A2649-FAF5-4F7E-B087-05519975CD19.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSEF19F4B4-27C4-4D74-AC7C-15190CB2EC7E.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSEFD5FEA9-0F24-4E8F-B6FD-D4CC205AE88C.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSF1DCF245-1406-4CF4-BDA7-C467F0A3AA1A.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSF66B103A-14C2-48CB-8037-64D99022F1EE.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSF7285F7F-0B91-46D1-9B0A-1B489CB665F7.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSF8A1B758-9729-48A6-8992-D96B0A11F0C6.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSFBF1A99B-32C1-4E6A-A7DD-12E8855663CB.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Datos de programa\Webroot\Spy Sweeper\Temp\SSCSFCF51AF6-59BF-499A-B27A-C11C7BB3694A.tmp
[WARNING] The file could not be opened!
C:\Documents and Settings\NetworkService\NTUSER.DAT
[WARNING] The file could not be opened!
C:\Documents and Settings\NetworkService\ntuser.dat.LOG
[WARNING] The file could not be opened!
C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat
[WARNING] The file could not be opened!
C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG
[WARNING] The file could not be opened!
C:\Documents and Settings\Usuario\NTUSER.DAT
[WARNING] The file could not be opened!
C:\Documents and Settings\Usuario\ntuser.dat.LOG
[WARNING] The file could not be opened!
C:\Documents and Settings\Usuario\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat
[WARNING] The file could not be opened!
C:\Documents and Settings\Usuario\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\default
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\default.LOG
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\SAM
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\SAM.LOG
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\SECURITY
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\SECURITY.LOG
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\software
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\software.LOG
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\system
[WARNING] The file could not be opened!
C:\WINDOWS\system32\config\system.LOG
[WARNING] The file could not be opened!


End of the scan: sábado, 01 de julio de 2006 18:03
Used time: 1:00:16 min

The scan has been done completely.

3079 Scanning directories
312172 Files were scanned
0 viruses and/or unwanted programs was found
0 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
3135 Archives were scanned
127 Warnings
0 Notes

eso es lo unico q me sale mira hice todo lo q me has dicho y aun sigue esa vaina en mi escritorio

toy cagaooo
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
  post #9 (permalink)  
Antiguo 02/07/06, 06:31:59
Avatar de Heavyman
Ex-Colaborador
  
Registrado: nov 2005
Ubicación: Argentino (Bs.As.) residente en España (Málaga)
Mensajes: 7.649
Re: pagina en mi escritorio..heeeelp!!!!!!
Hola Rr_bUg32,

Realizá estos pasos,

* Te recomiendo desinstalar Ares e instalar Ares Lite (versión sin spyware)

* Desinstalá desde Agregar o quitar programas:

- New.net

*Descarga las siguientes herramientas:Ad-Aware SE Personal+Manual, Regseeker+Manual, KillBox, Disk Cleaner, LSP-Fix

Apagá el "Restaurar Sistema"

Activá la opción Ver Archivos Ocultos

Reiniciá en Modo a Prueba de Fallos

Cerrá todos los programas, ejecuta HijackThis y dale "Fix Cheked" a estas entradas:

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)

O2 - BHO: (no name) - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - (no file)

O2 - BHO: (no name) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)

O3 - Toolbar: (no name) - {AF2A1C5A-1AED-4E92-8BA8-D708EB79537E} - (no file)

O3 - Toolbar: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)

O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\ARCHIV~1\NEWDOT~1\NEWDOT~1.DLL,NewDotNetStartup -s

O17 - HKLM\System\CCS\Services\Tcpip\..\{626CCC1F-0AF0-423C-B7E7-47E370A5353E}: NameServer = 85.255.116.54,85.255.112.126

O17 - HKLM\System\CS1\Services\Tcpip\..\{626CCC1F-0AF0-423C-B7E7-47E370A5353E}: NameServer = 85.255.116.54,85.255.112.126

O17 - HKLM\System\CS2\Services\Tcpip\..\{626CCC1F-0AF0-423C-B7E7-47E370A5353E}: NameServer = 85.255.116.54,85.255.112.126

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)

Sin reiniciar, buscá y eliminá estos archivos/carpetas, si no se dejan eliminar descargá el programa "Killbox" y seguí las indicaciones del mensaje, copiá y pegá los archivos para que los elimine al reiniciar.

C:\ARCHIV~1\NEWDOT~1\NEWDOT~1.DLL

C:\Archivos de programa\NewDotNet <-- Eliminá la carpeta con su contenido

Ejecutá la herramienta LSP-Fix

Pasá el Disk Cleaner para limpiar cookies y temporales

Pasá el Regseeker para limpiar el registro, pásalo hasta que no quede nada para eliminar.

Pasá el Ad-Aware SE actualizado

Reiniciá la maquina y pega otro log de Hijackthis acá mismo, luego nos contás como te fué.

Suerte