• Registrarse
  • Iniciar sesión


  • Página 3 de 3 PrimeroPrimero 123
    Resultados 21 al 27 de 27

    GLB3929.tmp

    Ejecucion satisfactoria del ComboFix.exe, sin embargo al reiniciar se me bloqueo el equipo, explicitamente cualquier acceso a Internet, no me dejaba ejecutar ni el Google Chrome ni el Internet Explorer, mediante una ventanita que decia ...

    1. #21
      Usuario Avatar de Rosiel
      Registrado
      oct 2010
      Ubicación
      Peru
      Mensajes
      29

      Re: GLB3929.tmp

      Ejecucion satisfactoria del ComboFix.exe, sin embargo al reiniciar se me bloqueo el equipo, explicitamente cualquier acceso a Internet, no me dejaba ejecutar ni el Google Chrome ni el Internet Explorer, mediante una ventanita que decia que un registro hecho impedia la ejecucion del programa, y antes de ejecutar un backup le di una reiniciada mas, tras lo cual todo volvio a la normalidad, sin embargo el problema persiste, esta vez aparecio con el nombre de GLB1865.tmp

      Con respecto al reporte, este no aparecio, solamente el archivo log.txt
      Ademas de eso, aparecio un reporte ComboFix en mi disco C:/, pero sin poder abrirse por ser una carpeta de archivos que me redirecciona a Mi PC, y no me deja abrirlo con el notepad.exe, pues me pide que el administrador otorgue permisos, pero no tengo la opcion de abrirlo como administrador, que puedo hacer?

    2. #22
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: GLB3929.tmp

      Buenas.

      Lo tenes que ejecutar nuevamente a combofix, ya que estos problemas suceden cuando se produce una ejecución defectuosa.

      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #23
      Usuario Avatar de Rosiel
      Registrado
      oct 2010
      Ubicación
      Peru
      Mensajes
      29

      Re: GLB3929.tmp

      Nuevamente ejecute el ComboFix.exe con las especificaciones anteriores, y de igual forma se genero un reporte log.txt, sin embargo sucedio lo mismo que la anterior vez, se me bloqueo todos los ejecutables del equipo, mismo mensaje: registro que invalida la ejecucion del programa, y nuevamente tras reiniciar windows, todo normal, pero con respecto al reporte ComboFix.txt, se transformo, de una carpeta de archivos que me direccionaba a Mi PC a una carpeta simple que contiene un monton de archivos .3xe, aplicaciones, archivos para MS-DOS, .cfx, archivos de comando y scripts de windows, tantos que no se puede capturar pantalla para todos, pero lo curioso es que la carpeta se llama ComboFix.txt

      Con respecto al archivo GLB.temp, nuevamente aparecio, esta vez con el nombre de GLB5313.tmp

      Saludos!

    4. #24
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: GLB3929.tmp

      Buenas.


      Realiza lo siguiente:

      Abre CCleaner > Herramientas > Inicio. En la pestaña Windows, presiona Guardar a un archivo de texto. Este lo guardas como Windows.

      Y luego CCleaner > Herramientas > Desinstalar programas > Guardar a un archivo de texto. Este lo guardas como Software.

      Los guardas en el escritorio para que tengas mejor acceso a ellos.

      Pegas los cuatro informes.

      Un saludo
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #25
      Usuario Avatar de Rosiel
      Registrado
      oct 2010
      Ubicación
      Peru
      Mensajes
      29

      Re: GLB3929.tmp

      aca el informe WINDOWS.
      No HKCU:Run Akamai NetSession Interface Akamai Technologies, Inc. "C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Akamai\netsession_win.exe"
      No HKCU:Run DAEMON Tools Lite DT Soft Ltd "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
      No HKCU:Run GarenaPlus Garena Online Pte Ltd "C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe" -autolaunch
      No HKCU:Run Jing TechSmith Corporation C:\Program Files (x86)\TechSmith\Jing\Jing.exe
      No HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
      No HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      No HKLM:Run Adobe Reader Speed Launcher "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
      No HKLM:Run Autodesk Sync Autodesk, Inc. C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
      No HKLM:Run BCSSync Microsoft Corporation "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
      No HKLM:Run BDRegion cyberlink C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
      No HKLM:Run DivXMediaServer DivX, LLC C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
      No HKLM:Run DivXUpdate DivX, LLC "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
      Si HKLM:Run egui ESET "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
      No HKLM:Run IAAnotif Intel Corporation C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
      No HKLM:Run ISBMgr.exe Sony Corporation "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
      No HKLM:Run NvCplDaemon Microsoft Corporation RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
      No HKLM:Run PMBVolumeWatcher Sony Corporation c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
      No HKLM:Run RemoteControl10 CyberLink Corp. "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
      No HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
      No HKLM:Run SmartWiHelper Sony Electronics Corporation "C:\Program Files (x86)\Sony\SmartWi Connection Utility\SmartWiHelper.exe" /WindowsStartup
      No HKLM:Run Standby Corel "C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe" -START
      No HKLM:Run SunJavaUpdateSched "C:\Program Files\Java\jre8\bin\jusched.exe"
      No HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
      No HKLM:Run USB Antivirus Zbshareware Lab C:\Program Files (x86)\USB Disk Security\USBGuard.exe
      No HKLM:Run WinampAgent Nullsoft, Inc. "C:\Program Files (x86)\Winamp\winampa.exe"
      No HKLM:Run Windows Mobile Device Center Microsoft Corporation %windir%\WindowsMobile\wmdc.exe
      No Startup Common Bluetooth.lnk Broadcom Corporation. C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe
      No Startup Common VAIO Messenger.lnk Digital Delivery Networks Inc C:\PROGRA~2\DDNi\Oasis\Delay.exe 600 "C:\Program Files (x86)\DDNi\Oasis\VAIO Messenger.exe"
      Aca el informe SOFTWARE.
      Actualización del controlador del Centro de dispositivos de Windows Mobile Microsoft Corporation 26/05/2011 44.3 MB 6.1.6965.0
      Adobe Flash Player 10 Plugin Adobe Systems, Inc. 23/02/2010 1.81 MB 10.0.32.18
      Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 16/03/2013 6.00 MB 11.6.602.180
      Adobe Photoshop CS4 Adobe Systems Incorporated 14/01/2011 1.05 GB 11.0
      Adobe Reader X (10.1.6) - Español Adobe Systems Incorporated 22/02/2013 120 MB 10.1.6
      Adobe Shockwave Player 11.6 Adobe Systems, Inc. 17/11/2011 11.6.3.633
      Age of Empires II 2002 19/03/2011
      Age of Mythology 07/12/2010
      Age of Mythology - The Titans Expansion 07/12/2010
      Akamai NetSession Interface Akamai Technologies, Inc 21/06/2012
      Aplicación para detectar Winamp Nullsoft, Inc 15/10/2011 63.0 KB 1.0.0.1
      ArcSoft Magic-i Visual Effects 2 ArcSoft 23/02/2010 2.0.1.85
      ArcSoft WebCam Companion 3 ArcSoft 23/02/2010 3.0.21.193
      AutoCAD Civil 3D 2013 Autodesk 30/05/2012 10.0.1111.0
      Autodesk Material Library 2013 Autodesk 30/05/2012 94.9 MB 3.0.13
      Autodesk Material Library Base Resolution Image Library 2013 Autodesk 30/05/2012 71.4 MB 3.0.13
      Autodesk Material Library Medium Resolution Image Library 2013 Autodesk 17/11/2012 739 MB 3.0.13
      Autodesk Sync Autodesk, Inc. 30/05/2012 57.5 MB 3.5.24.0
      Camtasia Studio 6 TechSmith Corporation 24/05/2012 70.1 MB 6.0.0
      CCleaner Piriform 25/02/2013 3.28
      Centro de dispositivos de Windows Mobile Microsoft Corporation 26/05/2011 27.4 MB 6.1.6965.0
      Compresor WinRAR 08/12/2010
      ConvertXtoDVD 4.1.19.365 05/04/2012 68.1 MB 4.1.19.365
      Corel VideoStudio Pro X3 Corel Corporation 08/12/2010 1.37 GB 1.6.0.272
      Corel WinDVD Corel Inc. 23/02/2010 232 MB 10.0.5.109
      Crystal Reports for .NET Framework 2.0 (x86) Business Objects 21/01/2011 35.3 MB 10.2.0
      CyberLink PowerDVD 10 CyberLink Corp. 19/12/2010 216 MB 10.0.1516
      ESET Smart Security ESET spol s r. o. 08/12/2010 58.2 MB 4.0.424.0
      EVEREST Ultimate Edition v4.20 Lavalys, Inc. 08/01/2011 4.20
      Evernote Evernote Corp. 23/02/2010 53.1 MB 3.5.0.545
      Expansión de Microsoft Age of Empires 08/12/2010
      Facemoods Toolbar 14/08/2011
      FARO LS 1.1.406.58 FARO Scanner Production 30/05/2012 21.5 MB 4.6.58.2
      FLV Player 2.0 (build 25) Martijn de Visser 10/12/2010 2.0 (build 25)
      Fraps (remove only) 18/01/2012
      GameRanger GameRanger Technologies 17/07/2011 3.10 GB
      Garena Plus Garena Online Pte Ltd. 07/11/2012 2011
      Geodimeter Software Tools 2.02 09/05/2011
      Google Chrome Google Inc. 08/12/2010 25.0.1364.172
      HP Photosmart C4600 All-In-One Driver 14.0 Rel. 5 HP 28/06/2012 14.0
      Instalación de DivX DivX, LLC 22/02/2013 2.6.1.24
      Intel(R) Turbo Boost Technology Driver Intel Corporation 23/02/2010 01.00.00.1030
      Intel® Matrix Storage Manager Intel Corporation 23/02/2010
      Internet Claro 25/11/2012 1.0.0.1
      Java 7 Update 13 Oracle 05/02/2013 129 MB 7.0.130
      Java(TM) 6 Update 31 Oracle 12/03/2012 95.1 MB 6.0.310
      Java(TM) 6 Update 33 (64-bit) Oracle 27/06/2012 92.0 MB 6.0.330
      JDownloader 0.9 AppWork GmbH 14/08/2011 0.9
      Jing TechSmith Corporation 19/01/2013 12.1 MB 2.8.13007.1
      K-Lite Mega Codec Pack 8.9.5 08/07/2012 71.0 MB 8.9.5
      Light Image Resizer 4.0.4.4 ObviousIdea 18/01/2012 32.5 MB 4.0.4.4
      MAIET entertainment - Gunz 04/07/2011
      Malwarebytes Anti-Malware versión 1.60.1.1000 Malwarebytes Corporation 19/02/2012 17.3 MB 1.60.1.1000
      Media Gallery Sony Corporation 23/02/2010 1.1.2.11260
      MegaMan X6 by DragonMu 1.00 13/07/2012
      Metin2 Gameforge 4D GmbH 05/05/2011 788 MB
      Microsoft .NET Framework 4 Client Profile Microsoft Corporation 19/05/2012 38.8 MB 4.0.30319
      Microsoft .NET Framework 4 Extended Microsoft Corporation 19/05/2012 51.9 MB 4.0.30319
      Microsoft Age of Empires 08/12/2010
      Microsoft DirectX SDK (June 2010) Microsoft Corporation 29/05/2011 9.29.1962.0
      Microsoft Excel 2010 Microsoft Corporation 21/01/2011 14.0.4763.1000
      Microsoft Games for Windows - LIVE Redistributable Microsoft Corporation 31/07/2011 31.3 MB 3.5.88.0
      Microsoft Games for Windows Marketplace Microsoft Corporation 31/07/2011 6.03 MB 3.5.50.0
      Microsoft Office Suite Activation Assistant Microsoft Corporation 23/02/2010 8.36 MB 2.9
      Microsoft PowerPoint 2010 Microsoft Corporation 21/01/2011 14.0.4763.1000
      Microsoft Project Professional 2010 Microsoft Corporation 08/03/2012 14.0.4763.1000
      Microsoft Silverlight Microsoft Corporation 20/05/2012 56.7 MB 5.1.10411.0
      Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 23/02/2010 1.72 MB 3.1.0000
      Microsoft SQL Server 2008 Microsoft Corporation 23/02/2010
      Microsoft SQL Server 2008 Browser Microsoft Corporation 23/02/2010 7.94 MB 10.1.2531.0
      Microsoft SQL Server 2008 Native Client Microsoft Corporation 23/02/2010 6.37 MB 10.1.2531.0
      Microsoft SQL Server 2008 Setup Support Files Microsoft Corporation 23/02/2010 28.5 MB 10.1.2531.0
      Microsoft SQL Server Compact 3.5 SP2 ENU Microsoft Corporation 30/05/2012 3.39 MB 3.5.8080.0
      Microsoft SQL Server Compact 3.5 SP2 x64 ENU Microsoft Corporation 30/05/2012 4.50 MB 3.5.8080.0
      Microsoft SQL Server VSS Writer Microsoft Corporation 23/02/2010 3.59 MB 10.1.2531.0
      Microsoft Visual Basic PowerPacks 10.0 Microsoft 30/05/2012 1.47 MB 10.0.20911
      Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 19/12/2010 2.69 MB 8.0.59193
      Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 04/12/2010 700 KB 8.0.56336
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 Microsoft Corporation 28/05/2011 238 KB 9.0.30729
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 04/12/2010 248 KB 9.0.30729
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 23/02/2010 788 KB 9.0.30729.4148
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 20/05/2011 1.41 MB 9.0.21022
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 04/12/2010 232 KB 9.0.30729
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 23/02/2010 596 KB 9.0.30729.4148
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 30/05/2012 13.8 MB 10.0.40219
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 30/05/2012 11.1 MB 10.0.40219
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 Microsoft Corporation 07/12/2012 20.5 MB 11.0.51106.1
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 Microsoft Corporation 07/12/2012 17.4 MB 11.0.51106.1
      Microsoft Word 2010 Microsoft Corporation 21/01/2011 14.0.4763.1000
      Microsoft Works Microsoft Corporation 23/02/2010 564 MB 9.7.0621
      MineSight® Activity Planner 1.5 Mintec 23/07/2011 1.5.0.291
      MineSight® Data Analyst 2.0 Mintec 23/07/2011 2.0.0.268
      MineSight® Grail 23/07/2011
      Mobile Partner Huawei Technologies Co.,Ltd 29/09/2012 11.002.03.21.139
      MSXML 4.0 SP2 (KB954430) Microsoft Corporation 17/12/2010 1.28 MB 4.20.9870.0
      MSXML 4.0 SP2 (KB973688) Microsoft Corporation 17/12/2010 1.34 MB 4.20.9876.0
      MSXML4 Parser Microsoft Game Studios 07/12/2010 73.0 KB 1.0.0
      Nero 9 Nero AG 15/01/2011
      Novo Dicionário Aurélio Positivo Informática. 24/10/2011 151 MB 5.00
      NVIDIA Drivers NVIDIA Corporation 19/11/2009 1.10
      Oasis2Service 1.0 DDNi 23/02/2010 2.52 MB 1.0.0
      Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN Microsoft Corporation 19/05/2012 2.93 MB 4.0.30319
      Paquete de idioma de Microsoft .NET Framework 4 Extended ESN Microsoft Corporation 19/05/2012 10.6 MB 4.0.30319
      PL-2303 USB-to-Serial Prolific Technology INC 17/05/2011 1.3.0
      Plantas Contra Zombis 07/03/2011
      PlayReady PC Runtime amd64 Microsoft Corporation 23/02/2010 2.05 MB 1.3.0
      PMB Sony Corporation 23/02/2010 257 MB 5.0.00.10260
      PMB VAIO Edition Guide Sony Corporation 23/02/2010 197 MB 1.0.00.09250
      PMB VAIO Edition plug-in (Click to Disc) Sony Corporation 23/02/2010 184 MB 3.0.01.11230
      PMB VAIO Edition plug-in (VAIO Image Optimizer) Sony Corporation 23/02/2010 39.4 MB 1.0.00.10150
      PMB VAIO Edition plug-in (VAIO Movie Story) Sony Corporation 23/02/2010 68.4 MB 2.0.01.12010
      Premiumplay Codec-C WebPicks 21/01/2012
      PSPad editor Jan Fiala 28/01/2011
      Python 2.2 combined Win32 extensions 23/07/2011
      Python 2.2 Numeric-21.0 23/07/2011
      Python 2.2.3 PythonLabs at Zope Corporation 23/07/2011 2.2.3
      QuickBooks Financial Center Intuit Inc. 23/02/2010 744 KB 1.30.0000
      REACTOR ijji 04/07/2011 1.00.0000
      Realtek High Definition Audio Driver Realtek Semiconductor Corp. 23/02/2010 6.0.1.5964
      Recuva Piriform 18/03/2011 1.39
      RESIDENT EVIL 5 CAPCOM CO., LTD. 31/07/2011 6.77 GB 1.0.0.129
      RockMan X7 Doskias 08/09/2012 1.00.0000
      Roxio Easy Media Creator 10 LJ Roxio 23/02/2010 125 MB 10.3
      ScmDraft 2 0.8.1 Stormcoast Fortress 08/12/2010
      Setting Utility Series Sony Corporation 23/02/2010 5.1.0.11200
      Skype™ 6.1 Skype Technologies S.A. 15/02/2013 21.1 MB 6.1.129
      Slide 6.0 Rocscience 10/05/2012 6.005
      SmartSound Common Data SmartSound Software Inc. 08/12/2010 13.4 MB 1.1.0
      SmartSound Quicktracks 5 SmartSound Software Inc. 08/12/2010 48.9 MB 5.1.5
      SmartWi Connection Utility Sony 23/02/2010 4.9.4.20091005.2246
      Sony Home Network Library Sony Corporation 23/02/2010 2.0.1.12040
      Starcraft 13/04/2011
      StarCraft II Blizzard Entertainment 31/10/2011 1.0.0.16117
      Synaptics Pointing Device Driver Synaptics Incorporated 23/02/2010 14.0.3.0
      TeamSpeak 2 RC2 Dominating Bytes Design 10/12/2010 2.0.32.60
      The KMPlayer 2.9.4.1435 (DXVA+CUDA) ©7sh3. [Ñáîðêà îò 05.04.2010] 26/08/2012 65.2 MB
      Trimble Data Transfer 20/05/2011
      USB Disk Security Zbshareware Lab 17/12/2010 2.61 MB
      VAIO Care Sony Corporation 23/02/2010 5.0.3.11130
      VAIO Content Metadata Intelligent Analyzing Manager Sony Corporation 23/02/2010 3.6.0.09250
      VAIO Content Metadata Intelligent Network Service Manager Sony Corporation 23/02/2010 3.6.0.09080
      VAIO Content Metadata Manager Settings Sony Corporation 23/02/2010 3.6.0.09240
      VAIO Content Metadata XML Interface Library Sony Corporation 23/02/2010 3.6.0.09080
      VAIO Content Monitoring Settings Sony Corporation 23/02/2010 2.4.1.09180
      VAIO Control Center Sony Corporation 23/02/2010 4.1.0.10160
      VAIO Data Restore Tool Sony Corporation 23/02/2010 1.2.0.09150
      VAIO DVD Menu Data Sony Corporation 23/02/2010 2.0.00.09240
      VAIO Entertainment Platform Sony Corporation 23/02/2010 3.6.0.09150
      VAIO Event Service Sony Corporation 23/02/2010 5.1.0.11300
      VAIO Help and Support Sony Corporation 23/02/2010 10.00.1029
      VAIO Media plus Sony Corporation 23/02/2010 2.0.1.12040
      VAIO Media plus Opening Movie Sony Corporation 23/02/2010 2.0.0.07030
      VAIO Messenger DDNi 23/02/2010
      VAIO Movie Story Template Data Sony Corporation 23/02/2010 438 MB 2.0.00.09240
      VAIO OOBE and Startup Assistant Sony Corporation 23/02/2010 2.00.1110
      VAIO Original Function Settings Sony Corporation 23/02/2010 2.0.0.07010
      VAIO Personalization Manager Sony Corporation 23/02/2010 2.0.0.06220
      VAIO Power Management Sony Corporation 23/02/2010 5.0.0.11300
      VAIO Survey Sony Corporation 23/02/2010 6.00.1028
      VAIO Transfer Support Sony Corporation 23/02/2010 1.1.0.10200
      VAIO Update 5 Sony Corporation 23/02/2010 5.0.0.10300
      VAIO Wallpaper Contents Sony Corporation 23/02/2010 2.0.0.06010
      Video Convert Master Trial Version (English) 8.0.5.20 08/01/2011
      Vizzed Retro Game Room Vizzed 27/12/2011 39.1 MB 1.0.14
      VLC media player 1.1.11 VideoLAN 20/08/2012 1.1.11
      VnetPC PRO DEMO Mine Ventilation Services, Inc. 17/08/2012 11.0 MB 1.00.0001
      Vuze Vuze Inc. 31/03/2012 4.7
      Vuze Remote Toolbar Vuze Remote 31/03/2012 6.8.5.1
      Warcraft III 29/06/2012
      Warcraft III: All Products 29/06/2012
      WBS Chart Pro 20/03/2012
      WIDCOMM Bluetooth Software Broadcom Corporation 19/11/2009 144 MB 6.2.1.500
      Winamp Nullsoft, Inc 15/10/2011 5.621
      Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405) Broadcom 23/02/2010 09/09/2009 6.2.0.9405
      Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) Broadcom 23/02/2010 07/28/2009 6.2.0.9800
      Windows Live Essentials Microsoft Corporation 03/04/2012 15.4.3555.0308
      Windows Live Sync Microsoft Corporation 08/12/2010 2.79 MB 14.0.8117.416
      Windows Media Encoder 9 Series 08/12/2010
      Windows Media Player Firefox Plugin Microsoft Corp 20/07/2011 296 KB 1.0.0.8
      A que se refiere con cuatro informes? si solo son dos

      Saludos!

    6. #26
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: GLB3929.tmp

      Buenas.


      No observo nada relacionado con Malware; es probable que se trate de un programa que esta generando un error; ya me es difícil si no tengo tu PC aquí.

      Descarga Hitman Prolo instalas y realizas un examen completo. Al finalizar activalo en forma gratuita durante 30 , eliminas las infecciones encontradas y gurdas el reporte en el escritorio; Luego lo pegas aquí.

      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #27
      Usuario Avatar de Rosiel
      Registrado
      oct 2010
      Ubicación
      Peru
      Mensajes
      29

      Re: GLB3929.tmp

      Disculpad la demora en la respuesta.

      Aca el reporte del Hitman Pro.
      Código:
      HitmanPro 3.7.3.193
      www.hitmanpro.com
      
         Computer name . . . . : LEEJORNETZAMALL
         Windows . . . . . . . : 6.1.1.7601.X64/4
         User name . . . . . . : LEEJORNETZAMALL\LEE JORNET ZAMALLOA
         UAC . . . . . . . . . : Enabled
         License . . . . . . . : Trial (30 days left)
      
         Scan date . . . . . . : 2013-04-03 11:26:34
         Scan mode . . . . . . : Normal
         Scan duration . . . . : 16m 43s
         Disk access mode  . . : Direct disk access (SRB)
         Cloud . . . . . . . . : Internet
         Reboot  . . . . . . . : No
      
         Threats . . . . . . . : 2
         Traces  . . . . . . . : 116
      
         Objects scanned . . . : 1,956,200
         Files scanned . . . . : 79,081
         Remnants scanned  . . : 509,553 files / 1,367,566 keys
      
      Malware _____________________________________________________________________
      
         C:\torrent.exe -> Quarantined
            Size . . . . . . . : 184,886 bytes
            Age  . . . . . . . : 262.5 days (2012-07-14 23:11:17)
            Entropy  . . . . . : 7.6
            SHA-256  . . . . . : 096AE5E5E5271DA498076BA6EEFBD164126AF87FEE53C4F89063CA25361FA015
          > Ikarus . . . . . . : AdWare.Intellidownload!IK
            Fuzzy  . . . . . . : 114.0
      
         C:\Users\LEE JORNET ZAMALLOA\Downloads\NokiaFREE_v32003_Setup.exe -> Quarantined
            Size . . . . . . . : 397,019 bytes
            Age  . . . . . . . : 40.6 days (2013-02-21 20:36:12)
            Entropy  . . . . . : 8.0
            SHA-256  . . . . . : 0F2839724868BE27CA28CCD6684019FB86B30ED7422B9C1278E09B8D71736B95
          > Ikarus . . . . . . : Virus.Obfustat!IK
            Fuzzy  . . . . . . : 114.0
      
      
      Suspicious files ____________________________________________________________
      
         c:\windows\system32\drivers\XLRNBO.sys
            Size . . . . . . . : 314,368 bytes
            Age  . . . . . . . : 620.8 days (2011-07-22 15:17:28)
            Entropy  . . . . . : 7.9
            SHA-256  . . . . . : 8903AAAC13D32406A32672FE13EFC53081673033FAE421DB453428FD7C00E845
            RSA Key Size . . . : 1024
            Service  . . . . . : XLRNBO
            Authenticode . . . : Self-signed
            Fuzzy  . . . . . . : 26.0
               Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
               Program is code self-signed.
               Authors name is missing in version info. This is not common to most programs.
               Version control is missing. This file is probably created by an individual. This is not typical for most programs.
               The file is located in a folder that contains core operating system files from Windows. This is not typical for most programs and is only common to system tools, drivers and hacking utilities.
               Starts automatically as a service during system bootup.
               The file is a device driver. Device drivers run as trusted (highly privileged) code.
            Startup
               HKLM\SYSTEM\CurrentControlSet\Services\XLRNBO\
      
         C:\Windows\SysWOW64\GameMon.des
            Size . . . . . . . : 4,208,208 bytes
            Age  . . . . . . . : 638.5 days (2011-07-04 23:13:54)
            Entropy  . . . . . : 7.9
            SHA-256  . . . . . : 90A3B992B581BA54CC180E6D38FA3940E79BB23CB287804EB2F5006C924A9EEF
            Product  . . . . . : nProtect Game Monitor
            Publisher  . . . . : INCA Internet Co., Ltd.
            Description  . . . : nProtect Game Monitor Rev 1665
            Version  . . . . . : 2010.10.22.1
            Copyright  . . . . : Copyright ⓒ 2000-2007 INCA Internet
            Service  . . . . . : npggsvc
            Fuzzy  . . . . . . : 29.0
               The file name extension of this program is not common.
               Starts automatically as a service during system bootup.
               Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
               The file is located in a folder that contains core operating system files from Windows. This is not typical for most programs and is only common to system tools, drivers and hacking utilities.
            Startup
               HKLM\SYSTEM\CurrentControlSet\Services\npggsvc\
      
      
      Potential Unwanted Programs _________________________________________________
      
         C:\Users\LEE JORNET ZAMALLOA\AppData\Roaming\Babylon\ (Babylon)
         C:\Users\LEE JORNET ZAMALLOA\AppData\Roaming\Babylon\log_file.txt (Babylon)
         HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}\ (Babylon)
         HKLM\SOFTWARE\Classes\CrossriderApp0000435.BHO\ (Premiumplay)
         HKLM\SOFTWARE\Classes\CrossriderApp0000435.Sandbox.1\ (Premiumplay)
         HKLM\SOFTWARE\Classes\CrossriderApp0000435.Sandbox\ (Premiumplay)
         HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550055045535}\ (Premiumplay)
         HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660066046635}\ (Premiumplay)
         HKLM\SOFTWARE\Classes\Prod.cap\ (Claro)
         HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}\ (Babylon)
         HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{11111111-1111-1111-1111-110011041135}\ (Premiumplay)
         HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{22222222-2222-2222-2222-220022042235}\ (Premiumplay)
         HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550055045535}\ (Premiumplay)
         HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660066046635}\ (Premiumplay)
         HKLM\SOFTWARE\Wow6432Node\Babylon\ (Babylon)
         HKLM\SOFTWARE\Wow6432Node\Google\chrome\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho\ (Premiumplay)
         HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011041135}\ (Premiumplay)
         HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011041135}\ (Premiumplay)
         HKU\S-1-5-21-2411170472-4095542928-612619217-1004\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ (Babylon)
         HKU\S-1-5-21-2411170472-4095542928-612619217-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110011041135}\ (Premiumplay)
         HKU\S-1-5-21-2411170472-4095542928-612619217-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}\ (Babylon)
         HKU\S-1-5-21-2411170472-4095542928-612619217-1004\Software\Softonic\ (Softonic)
      
      Cookies _____________________________________________________________________
      
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.adnetwork.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.adserver01.de
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.adserverplus.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.indice.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.mlnadvertising.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.portalnet.cl
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.propellerads.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.xtendmedia.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.zanox.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.ad4game.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.adk2.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.creative-serving.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.e-games.com.ph
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.e-planning.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.mcanime.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.p161.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.themovienation.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.us.e-planning.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.vidcannon.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.weblogdvd.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.adreactor.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.adtz.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.socialkeywords.es
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.twitpic.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:adservingml.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtechus.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:apmebf.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:atwola.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:bs.serving-sys.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:c.atdmt.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:c1.atdmt.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:care2.112.2o7.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:clicksor.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:eas.apm.emediate.eu
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:emjcd.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:fastclick.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:fl01.ct2.comclick.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:flycellcom.112.2o7.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:h.atdmt.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:in.getclicky.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:linksynergy.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:microsoftgamestudio.112.2o7.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:microsoftwindows.112.2o7.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:mm.chitika.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:myroitracking.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:overture.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:prisacom.112.2o7.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:server.cpmstar.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:sexypeek.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:smartadserver.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.adotube.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:tacoda.at.atwola.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:tbslatinamerica.112.2o7.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:telefonicaes.122.2o7.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:toyotaes2.solution.weborama.fr
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adform.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adjal.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.effiliation.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:weborama.fr
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.burstnet.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:yadro.ru
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:yellspain.112.2o7.net
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:yoigo.solution.weborama.fr
         C:\Users\LEE JORNET ZAMALLOA\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com
         C:\Users\LEE JORNET ZAMALLOA\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][8].txt
         C:\Users\LEE JORNET ZAMALLOA\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][4].txt
         C:\Users\LEE JORNET ZAMALLOA\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][9].txt
      Ademas de esto he hecho un seguimiento en Internet sobre este supuesto "malware", y encontre algo muy interesante en el siguiente foro:
      GLB*.tmp

      Aqui concluyen en que dicha aplicacion surge a partir de un factor desconocido que impide una instalacion adecuada, y que continuara usando recursos del equipo.

      Al final no logran definir que clase de aplicacion es con precision, pero indican que es inofensivo y que seguira en el equipo hasta proximo aviso.

      Espero creer que no es cierto, pues algunas veces fastidia cuando ejecuto un programa en pantalla completa y cuando se ejecuta el GLB*.tmp todo se me minimiza

      Saludos!

    Página 3 de 3 PrimeroPrimero 123