Error de aplicacion ie3sh.exe. |
2009-12-22 20:21 - Respuestas: 3 - Tema nº: 2645553
Windows Vista .
muy buenos dias, tengo un problema con mi pc, resulta que siempre que inicio la computadora sale un cuadro que dice no se encontre BHO.LL, yo le doy en aceptar y despues sale otro recuadro que dice la aplicacion ie3sh.exe dejo de funcionar, como ago para corregir ese proble, mi computara tiene el window vista home basic y el avast antivitirus, tambien esta instalado el ccleaner.
gracias a quienpueda ayudarme..
| | | airun9 - 16-06-2010 00:26. | | Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:24:55, on 15/06/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18928)
Boot mode: Normal
Running processes:
C:\\Windows\\system32\\Dwm.exe
C:\\Windows\\system32\\taskeng.exe
C:\\Windows\\Explorer.EXE
C:\\Windows\\System32\\rundll32.exe
C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe
C:\\Program Files\\IDT\\WDM\\sttray.exe
C:\\Program Files\\HP\\QuickPlay\\QPService.exe
C:\\Program Files\\Hewlett-Packard\\HP Quick Launch Buttons\\QLBCTRL.exe
C:\\Program Files\\Hewlett-Packard\\HP QuickTouch\\HPKBDAPP.exe
C:\\Program Files\\HP\\HP Software Update\\hpwuSchd2.exe
C:\\Program Files\\Hewlett-Packard\\HP Wireless Assistant\\HPWAMain.exe
C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe
C:\\Windows\\WindowsMobile\\wmdc.exe
C:\\Program Files\\AVG\\AVG9\\avgtray.exe
C:\\Program Files\\SweetIM\\Messenger\\SweetIM.exe
C:\\Program Files\\Java\\jre1.6.0_07\\bin\\jusched.exe
C:\\Program Files\\Common Files\\PC Tools\\sMonitor\\SSDMonitor.exe
C:\\Program Files\\Windows Sidebar\\sidebar.exe
C:\\Windows\\System32\\p2phost.exe
C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe
C:\\Program Files\\Common Files\\Nero\\Lib\\NMBgMonitor.exe
C:\\Windows\\ehome\\ehtray.exe
C:\\Windows\\ehome\\ehmsas.exe
C:\\Program Files\\Windows Media Player\\wmpnscfg.exe
C:\\Program Files\\Registry Mechanic\\RMTray.exe
C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe
C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe
C:\\Program Files\\McAfee Security Scan\\2.0.181\\SSScheduler.exe
C:\\Program Files\\Microsoft Office\\Office12\\ONENOTEM.EXE
C:\\Program Files\\Common Files\\Nero\\Lib\\NMIndexStoreSvr.exe
C:\\Program Files\\Hewlett-Packard\\HP wireless Assistant\\WiFiMsg.EXE
C:\\Program Files\\Hewlett-Packard\\Shared\\HpqToaster.exe
C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqSTE08.exe
C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqbam08.exe
C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe
C:\\Program Files\\Synaptics\\SynTP\\SynTPHelper.exe
C:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe
C:\\Windows\\system32\\wuauclt.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Windows Live\\Toolbar\\wltuser.exe
C:\\Program Files\\Yahoo!\\Companion\\Installs\\cpn\\ytbb.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Trend Micro\\HijackThis\\HijackThis.exe
C:\\Windows\\system32\\SearchFilterHost.exe
C:\\Windows\\system32\\taskeng.exe
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=es_es&c=83&bd=Pavilion&pf=cnnb
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.google.es/
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=es_es&c=83&bd=Pavilion&pf=cnnb
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.cooxer.com/
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant =
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch =
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName =
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\\Program Files\\AVG\\AVG9\\Toolbar\\IEToolbar.dll
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\\Program Files\\Yahoo!\\Companion\\Installs\\cpn\\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\\Program Files\\AVG\\AVG9\\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\\Program Files\\Spybot - Search & Destroy\\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\\Program Files\\Microsoft\\Search Enhancement Pack\\Search Helper\\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\Program Files\\Microsoft Office\\Office12\\GrooveShellExtensions.dll
O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\\Program Files\\AVG\\AVG9\\Toolbar\\IEToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\\Program Files\\Google\\GoogleToolbarNotifier\\5.5.5126.1836\\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O2 - BHO: Search Assistant - {F0626A63-410B-45E2-99A1-3F2475B2D695} - C:\\Program Files\\SGPSA\\BHO.dll (file missing)
O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\\Program Files\\Fast Browser Search\\IE\\FBStoolbar.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\\Program Files\\Yahoo!\\Companion\\Installs\\cpn\\YTSingleInstance.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\\Program Files\\HP\\Digital Imaging\\Smart Web Printing\\hpswp_BHO.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O3 - Toolbar: Fast Browser Search Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\\Program Files\\Fast Browser Search\\IE\\FBStoolbar.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\\Program Files\\AVG\\AVG9\\Toolbar\\IEToolbar.dll
O3 - Toolbar: Barra Yahoo! - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\\Program Files\\Yahoo!\\Companion\\Installs\\cpn\\yt.dll
O4 - HKLM\\..\\Run: [NvCplDaemon] RUNDLL32.EXE C:\\Windows\\system32\\NvCpl.dll,NvStartup
O4 - HKLM\\..\\Run: [NvMediaCenter] RUNDLL32.EXE C:\\Windows\\system32\\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\\..\\Run: [SynTPEnh] C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe
O4 - HKLM\\..\\Run: [SysTrayApp] %ProgramFiles%\\IDT\\WDM\\sttray.exe
O4 - HKLM\\..\\Run: [UCam_Menu] "C:\\Program Files\\CyberLink\\YouCam\\MUITransfer\\MUIStartMenu.exe" "C:\\Program Files\\CyberLink\\YouCam" update "Software\\CyberLink\\YouCam\\2.0"
O4 - HKLM\\..\\Run: [QPService] "C:\\Program Files\\HP\\QuickPlay\\QPService.exe"
O4 - HKLM\\..\\Run: [Windows Defender] %ProgramFiles%\\Windows Defender\\MSASCui.exe -hide
O4 - HKLM\\..\\Run: [QlbCtrl.exe] C:\\Program Files\\Hewlett-Packard\\HP Quick Launch Buttons\\QlbCtrl.exe /Start
O4 - HKLM\\..\\Run: [OnScreenDisplay] C:\\Program Files\\Hewlett-Packard\\HP QuickTouch\\HPKBDAPP.exe
O4 - HKLM\\..\\Run: [HP Health Check Scheduler] c:\\Program Files\\Hewlett-Packard\\HP Health Check\\HPHC_Scheduler.exe
O4 - HKLM\\..\\Run: [HP Software Update] C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe
O4 - HKLM\\..\\Run: [hpWirelessAssistant] C:\\Program Files\\Hewlett-Packard\\HP Wireless Assistant\\HPWAMain.exe
O4 - HKLM\\..\\Run: [NBKeyScan] "C:\\Program Files\\Nero\\Nero8\\Nero BackItUp\\NBKeyScan.exe"
O4 - HKLM\\..\\Run: [hpqSRMon] C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqSRMon.exe
O4 - HKLM\\..\\Run: [GrooveMonitor] "C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe"
O4 - HKLM\\..\\Run: [NeroFilterCheck] C:\\Program Files\\Common Files\\Nero\\Lib\\NeroCheck.exe
O4 - HKLM\\..\\Run: [Windows Mobile Device Center] %windir%\\WindowsMobile\\wmdc.exe
O4 - HKLM\\..\\Run: [FBSSA] C:\\Program Files\\SGPSA\\ie3sh.exe
O4 - HKLM\\..\\Run: [AVG9_TRAY] C:\\PROGRA~1\\AVG\\AVG9\\avgtray.exe
O4 - HKLM\\..\\Run: [SweetIM] C:\\Program Files\\SweetIM\\Messenger\\SweetIM.exe
O4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] "C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe"
O4 - HKLM\\..\\Run: [Adobe ARM] "C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe"
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] "C:\\Program Files\\Java\\jre1.6.0_07\\bin\\jusched.exe"
O4 - HKLM\\..\\Run: [SSDMonitor] C:\\Program Files\\Common Files\\PC Tools\\sMonitor\\SSDMonitor.exe
O4 - HKCU\\..\\Run: [Sidebar] C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun
O4 - HKCU\\..\\Run: [CollaborationHost] C:\\Windows\\system32\\p2phost.exe -s
O4 - HKCU\\..\\Run: [swg] "C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe"
O4 - HKCU\\..\\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\\Program Files\\Common Files\\Nero\\Lib\\NMBgMonitor.exe"
O4 - HKCU\\..\\Run: [ehTray.exe] C:\\Windows\\ehome\\ehTray.exe
O4 - HKCU\\..\\Run: [Google Update] "C:\\Users\\Nuria\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe" /c
O4 - HKCU\\..\\Run: [AnumanLive] C:\\Users\\Nuria\\AppData\\Roaming\\Anuman Interactive\\AnumanLive\\AnumanLive.exe
O4 - HKCU\\..\\Run: [WMPNSCFG] C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe
O4 - HKCU\\..\\Run: [SpybotSD TeaTimer] C:\\Program Files\\Spybot - Search & Destroy\\TeaTimer.exe
O4 - HKUS\\S-1-5-19\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User 'SERVICIO LOCAL')
O4 - HKUS\\S-1-5-19\\..\\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICIO LOCAL')
O4 - HKUS\\S-1-5-19\\..\\RunOnce: [] (User 'SERVICIO LOCAL')
O4 - HKUS\\S-1-5-20\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User 'Servicio de red')
O4 - HKUS\\S-1-5-20\\..\\RunOnce: [] (User 'Servicio de red')
O4 - HKUS\\S-1-5-18\\..\\RunOnce: [] (User 'SYSTEM')
O4 - HKUS\\.DEFAULT\\..\\RunOnce: [] (User 'Default user')
O4 - Startup: Recorte de pantalla e Inicio rápido de OneNote 2007.lnk = C:\\Program Files\\Microsoft Office\\Office12\\ONENOTEM.EXE
O4 - Global Startup: Acelerador de inicio de AutoCAD.lnk = C:\\Program Files\\Common Files\\Autodesk Shared\\acstart17.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\\PROGRA~1\\MICROS~3\\Office12\\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html
O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files\\Windows Live\\Writer\\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Agregar entrada en Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files\\Windows Live\\Writer\\WriterBrowserExtension.dll
O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MICROS~3\\Office12\\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MICROS~3\\Office12\\ONBttnIE.dll
O9 - Extra button: @C:\\Windows\\WindowsMobile\\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\\Windows\\WindowsMobile\\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\\Windows\\WindowsMobile\\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\\Windows\\WindowsMobile\\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\\Windows\\WindowsMobile\\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~3\\Office12\\REFIEBAR.DLL
O9 - Extra button: Selección inteligente de HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\\Program Files\\HP\\Digital Imaging\\Smart Web Printing\\hpswp_BHO.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\\Program Files\\Spybot - Search & Destroy\\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\\Program Files\\Spybot - Search & Destroy\\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {61FA0CB0-0806-46EA-B784-0F843285BA23} (TuentiFotoUploader Control) - http://estaticosak1.tuenti.com/client_apps/TuentiPhotoUploader.31740.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {B785FA3C-1DE9-4D20-8396-613C486FE95E} (AeatCtl Class) - https://www2.agenciatributaria.gob.es/es13/h/cactivex.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - https://acceso.ull.es/dana-cached/sc/JuniperSetupClient.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\\Program Files\\Microsoft Office\\Office12\\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\\Program Files\\AVG\\AVG9\\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\\Windows\\System32\\DriverStore\\FileRepository\\stwrt.inf_a7e996cd\\aestsrv.exe
O23 - Service: Apache OSGeo4W Web Server (ApacheOSGeo4WWebServer) - Apache Software Foundation - C:\\OSGeo4W\\apache\\bin\\httpd.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\\Program Files\\Common Files\\Autodesk Shared\\Service\\AdskScSrv.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\\Program Files\\AVG\\AVG9\\avgwdsvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\\Program Files\\Hewlett-Packard\\HP Quick Launch Buttons\\Com4QLBEx.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\\Program Files\\Common Files\\Macrovision Shared\\FLEXnet Publisher\\FNPLicensingService.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\\Program Files\\HP Games\\My HP Game Console\\GameConsoleService.exe
O23 - Service: Servicio Google Update (gupdate) (gupdate) - Google Inc. - C:\\Program Files\\Google\\Update\\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\\Program Files\\Hewlett-Packard\\HP Health Check\\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\\Program Files\\Hewlett-Packard\\Shared\\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\\Windows\\system32\\Hpservice.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\1050\\Intel 32\\IDriverT.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\\Program Files\\McAfee Security Scan\\2.0.181\\McCHSvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\\Program Files\\Nero\\Nero8\\Nero BackItUp\\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\\Program Files\\Common Files\\Nero\\Lib\\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\\Windows\\system32\\nvvsvc.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - PC Tools - C:\\Program Files\\Common Files\\PC Tools\\sMonitor\\StartManSvc.exe
O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\\Program Files\\HP\\QuickPlay\\Kernel\\TV\\QPCapSvc.exe
O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\\Program Files\\HP\\QuickPlay\\Kernel\\TV\\QPSched.exe
O23 - Service: Recovery Service for Windows - Unknown owner - C:\\Windows\\SMINST\\BLService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\\Program Files\\CyberLink\\Shared Files\\RichVideo.exe
O23 - Service: SolidConverterPDFReadSpool (SCPDFReadSpool) - Solid Documents, LLC - C:\\Windows\\Installer\\MSIAD3B.tmp
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\\Windows\\System32\\DriverStore\\FileRepository\\stwrt.inf_a7e996cd\\STacSV.exe
--
End of file - 16665 bytes
|
| |
|
|
|
|
Re: Error de aplicacion ie3sh.exe. - 2010-01-25 22:55 - Respuesta 3
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 04:40:13 p.m., on 25/01/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18865)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe
C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
C:\Program Files\DigitalPersona\Bin\DpAgent.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10d.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=es_co&c=91&bd=Pavilion&pf=cnnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=es_co&c=91&bd=Pavilion&pf=cnnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Barra Yahoo! - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Barra Yahoo! - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [DVDAgent] "C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe"
O4 - HKLM\..\Run: [TSMAgent] "C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe"
O4 - HKLM\..\Run: [CLMLServer for HP TouchSmart] "C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [TVAgent] "C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe"
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Hewlett-Packard\Media\Webcam" update "Software\Hewlett-Packard\Media\Webcam"
O4 - HKLM\..\Run: [SmartMenu] %ProgramFiles%\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdatePSTShortCut] "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
O4 - HKLM\..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\dpagent.exe
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [FBSSA] C:\Program Files\SGPSA\ie3sh.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanups-c-r-i-p-t
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autorun=AUTORUN
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'Servicio de red')
O4 - Startup: Recorte de pantalla e Inicio rápido de OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: BTTray.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Agregar entrada en Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Barra de búsqueda de Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e7ea6efc\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\Windows\system32\Hpservice.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Recovery Service for Windows - Unknown owner - C:\Program Files\SMINST\BLService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e7ea6efc\STacSV.exe
O23 - Service: TV Background Capture Service (TVBCS) (TVCapSvc) - Unknown owner - C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
O23 - Service: TV Task Scheduler (TVTS) (TVSched) - Unknown owner - C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
O23 - Service: Validity Fingerprint Service (vfsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vfsFPService.exe
End of file - 15011 bytes | |  |  | (0 v.) | | |
|
| |
|
|
Re: Error de aplicacion ie3sh.exe. - 2010-01-26 00:25 - Respuesta 4
Cierra todos los programas incluido el navegador,abre el HijackThis,pulsa do a system scan only y marca estas entradas:
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O4 - HKLM\..\Run: [FBSSA] C:\Program Files\SGPSA\ie3sh.exe
O4 - Global Startup: BTTray.lnk = ?
Pulsa fix checked.
Con la opción mostrar archivos y carpetas ocultos activada elimina lo siguiente:
C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
C:\Program Files\SGPSA
Pasa Ccleaner y Regseeker para limpiar temporales y registro,reinicia,pega un nuevo log y dinos que tal va.
| | | | (0 v.) | | |
|
| | HUGO1973 - 09-09-2010 19:46. | | Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:44:13 p.m., on 09/09/2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.17037)
Boot mode: Normal
Running processes:
C:\\Windows\\system32\\taskeng.exe
C:\\Windows\\SYSTEM32\\WISPTIS.EXE
c:\\Program Files\\Bioscrypt\\VeriSoft\\Bin\\AsGHost.exe
C:\\Program Files\\Common Files\\microsoft shared\\ink\\TabTip.exe
C:\\Windows\\system32\\Dwm.exe
C:\\Windows\\system32\\taskeng.exe
C:\\Program Files\\Search Guard Plus\\SearchGuardPlus.exe
C:\\Windows\\Explorer.EXE
C:\\Program Files\\Windows Defender\\MSASCui.exe
C:\\Windows\\System32\\rundll32.exe
C:\\Program Files\\Motorola\\SMSERIAL\\sm56hlpr.exe
C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe
C:\\Windows\\RtHDVCpl.exe
C:\\Program Files\\Hp\\QuickPlay\\QPService.exe
C:\\Program Files\\Hewlett-Packard\\HP Quick Launch Buttons\\QLBCTRL.exe
C:\\Program Files\\Hewlett-Packard\\HP Wireless Assistant\\HPWAMain.exe
C:\\Program Files\\Hewlett-Packard\\HP Wireless Assistant\\WiFiMsg.exe
C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe
C:\\Program Files\\SlySoft\\CloneCD\\CloneCDTray.exe
C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe
C:\\Program Files\\Common Files\\Symantec Shared\\PIF\\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\\PIFSvc.exe
C:\\Program Files\\Hp\\HP Software Update\\hpwuSchd2.exe
C:\\Program Files\\Alwil Software\\Avast4\\ashDisp.exe
C:\\Program Files\\USB Disk Security\\USBGuard.exe
C:\\Program Files\\Hewlett-Packard\\ToolboxFX\\bin\\HPTLBXFX.exe
C:\\Program Files\\Hewlett-Packard\\HP UT\\bin\\hppusg.exe
C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe
C:\\Program Files\\Windows Sidebar\\sidebar.exe
C:\\Windows\\ehome\\ehtray.exe
C:\\Program Files\\Common Files\\Nero\\Lib\\NMBgMonitor.exe
C:\\Program Files\\Windows Media Player\\wmpnscfg.exe
C:\\Program Files\\WIDCOMM\\Bluetooth Software\\BTTray.exe
C:\\Windows\\system32\\wbem\\unsecapp.exe
C:\\Windows\\ehome\\ehmsas.exe
C:\\Program Files\\Common Files\\Nero\\Lib\\NMIndexStoreSvr.exe
C:\\Program Files\\Hewlett-Packard\\Shared\\HpqToaster.exe
C:\\Program Files\\WIDCOMM\\Bluetooth Software\\BtStackServer.exe
C:\\Windows\\system32\\conime.exe
C:\\Program Files\\Common Files\\Microsoft Shared\\Ink\\InputPersonalization.exe
C:\\Windows\\system32\\wuauclt.exe
C:\\Program Files\\Banda Ancha de Telcel 3G\\Banda Ancha de Telcel 3G.exe
C:\\Program Files\\Internet Explorer\\ieuser.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Trend Micro\\HijackThis\\HijackThis.exe
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=66008
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=66008
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=66008
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=66008
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=66008
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\\Program Files\\AskTBar\\SrchAstt\\1.bin\\A5SRCHAS.DLL
R3 - URLSearchHook: Barra Yahoo! con bloqueador de ventanas emergentes - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: SearchHelper Class - {91C18ED5-5E1C-4AE5-A148-A861DE8C8E16} - C:\\Program Files\\SGPSA\\mtwb3sh.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Aplicación auxiliar de vínculos de Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\\ProgramData\\Real\\RealPlayer\\BrowserRecordPlugin\\IE\\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\Program Files\\Microsoft Office\\Office12\\GrooveShellExtensions.dll
O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\\Program Files\\AskTBar\\SrchAstt\\1.bin\\A5SRCHAS.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O2 - BHO: VeriSoft Access Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\\Program Files\\Bioscrypt\\VeriSoft\\Bin\\ItIEAddIn.dll
O2 - BHO: (no name) - {F0626A63-410B-45E2-99A1-3F2475B2D695} - (no file)
O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\\Program Files\\Fast Browser Search\\IE\\FBStoolbar.dll
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\\Program Files\\AskTBar\\bar\\1.bin\\ASKTBAR.DLL
O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\\Program Files\\AskTBar\\bar\\1.bin\\ASKTBAR.DLL
O3 - Toolbar: Fast Browser Search Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\\Program Files\\Fast Browser Search\\IE\\FBStoolbar.dll
O4 - HKLM\\..\\Run: [Windows Defender] %ProgramFiles%\\Windows Defender\\MSASCui.exe -hide
O4 - HKLM\\..\\Run: [NvSvc] RUNDLL32.EXE C:\\Windows\\system32\\nvsvc.dll,nvsvcStart
O4 - HKLM\\..\\Run: [NvCplDaemon] RUNDLL32.EXE C:\\Windows\\system32\\NvCpl.dll,NvStartup
O4 - HKLM\\..\\Run: [NvMediaCenter] RUNDLL32.EXE C:\\Windows\\system32\\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\\..\\Run: [SMSERIAL] C:\\Program Files\\Motorola\\SMSERIAL\\sm56hlpr.exe
O4 - HKLM\\..\\Run: [SynTPEnh] C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe
O4 - HKLM\\..\\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\\..\\Run: [QPService] "C:\\Program Files\\HP\\QuickPlay\\QPService.exe"
O4 - HKLM\\..\\Run: [QlbCtrl] %ProgramFiles%\\Hewlett-Packard\\HP Quick Launch Buttons\\QlbCtrl.exe /Start
O4 - HKLM\\..\\Run: [HP Health Check Scheduler] C:\\Program Files\\Hewlett-Packard\\HP Health Check\\HPHC_Scheduler.exe
O4 - HKLM\\..\\Run: [hpWirelessAssistant] %ProgramFiles%\\Hewlett-Packard\\HP Wireless Assistant\\HPWAMain.exe
O4 - HKLM\\..\\Run: [WAWifiMessage] %ProgramFiles%\\Hewlett-Packard\\HP Wireless Assistant\\WiFiMsg.exe
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] "C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe"
O4 - HKLM\\..\\Run: [CognizanceTS] rundll32.exe c:\\PROGRA~1\\BIOSCR~1\\VeriSoft\\Bin\\ASTSVCC.dll,RegisterModule
O4 - HKLM\\..\\Run: [NeroFilterCheck] C:\\Program Files\\Common Files\\Nero\\Lib\\NeroCheck.exe
O4 - HKLM\\..\\Run: [NBKeyScan] "C:\\Program Files\\Nero\\Nero8\\Nero BackItUp\\NBKeyScan.exe"
O4 - HKLM\\..\\Run: [CloneCDTray] "C:\\Program Files\\SlySoft\\CloneCD\\CloneCDTray.exe" /s
O4 - HKLM\\..\\Run: [GrooveMonitor] "C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe"
O4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] "C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe"
O4 - HKLM\\..\\Run: [Symantec PIF AlertEng] "C:\\Program Files\\Common Files\\Symantec Shared\\PIF\\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\\PIFSvc.exe" /a /m "C:\\Program Files\\Common Files\\Symantec Shared\\PIF\\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\\AlertEng.dll"
O4 - HKLM\\..\\Run: [QuickTime Task] "C:\\Program Files\\QuickTime\\QTTask.exe" -atboottime
O4 - HKLM\\..\\Run: [HP Software Update] C:\\Program Files\\Hp\\HP Software Update\\HPWuSchd2.exe
O4 - HKLM\\..\\Run: [avast!] C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe
O4 - HKLM\\..\\Run: [USB Antivirus] C:\\Program Files\\USB Disk Security\\USBGuard.exe
O4 - HKLM\\..\\Run: [HPPQVideo] "C:\\Program Files\\Hewlett-Packard\\ScheduledLaunch\\HP LaserJet P2050 Series\\bin\\hppschlnch.exe" -r SOFTWARE\\Hewlett-Packard\\ScheduledLaunch\\LJ_P2050_Series -f PQOptimizerVideo.xml -o RemindLater
O4 - HKLM\\..\\Run: [ToolBoxFX] "C:\\Program Files\\Hewlett-Packard\\ToolBoxFX\\bin\\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
O4 - HKLM\\..\\Run: [HPUsageTracking] "C:\\Program Files\\Hewlett-Packard\\HP UT\\bin\\hppusg.exe" "C:\\Program Files\\Hewlett-Packard\\HP UT\\"
O4 - HKLM\\..\\Run: [FBSSA] C:\\Program Files\\SGPSA\\ie3sh.exe
O4 - HKLM\\..\\Run: [TkBellExe] "C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe" -osboot
O4 - HKLM\\..\\RunOnce: [Launcher] %WINDIR%\\SMINST\\launcher.exe
O4 - HKCU\\..\\Run: [Sidebar] C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun
O4 - HKCU\\..\\Run: [ehTray.exe] C:\\Windows\\ehome\\ehTray.exe
O4 - HKCU\\..\\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\\Program Files\\Common Files\\Nero\\Lib\\NMBgMonitor.exe"
O4 - HKCU\\..\\Run: [WMPNSCFG] C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe
O4 - HKUS\\S-1-5-19\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User 'SERVICIO LOCAL')
O4 - HKUS\\S-1-5-19\\..\\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICIO LOCAL')
O4 - HKUS\\S-1-5-20\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User 'Servicio de red')
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\\PROGRA~1\\MICROS~3\\Office12\\EXCEL.EXE/3000
O8 - Extra context menu item: Enviar imagen al dispositivo &Bluetooth... - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie_ctx.htm
O8 - Extra context menu item: Enviar página al dispositivo &Bluetooth... - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O8 - Extra context menu item: Google Sidewiki... - res://C:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MICROS~3\\Office12\\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MICROS~3\\Office12\\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~3\\Office12\\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O13 - Gopher Prefix:
O15 - Trusted Zone: http://dgis.salud.gob.mx
O15 - Trusted Zone: http://pda.salud.gob.mx
O15 - Trusted Zone: http://sinais.salud.gob.mx
O15 - Trusted Zone: http://www.salud.gob.mx
O15 - Trusted Zone: http://sigsalud.insp.mx
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\\Program Files\\Yahoo!\\Common\\yinsthelper.dll
O17 - HKLM\\System\\CCS\\Services\\Tcpip\\..\\{C69D1629-3769-4CC1-B866-5373646F3E2F}: NameServer = 10.233.22.4 10.233.23.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\\Program Files\\Microsoft Office\\Office12\\GrooveSystemServices.dll
O20 - AppInit_DLLs: APSHook.dll
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\\Program Files\\Hewlett-Packard\\HP Quick Launch Buttons\\AddFiltr.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\\Program Files\\Alwil Software\\Avast4\\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\\Program Files\\Alwil Software\\Avast4\\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\\Program Files\\Alwil Software\\Avast4\\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\\Program Files\\Alwil Software\\Avast4\\ashWebSv.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\\Program Files\\HP\\QuickPlay\\Kernel\\TV\\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\\Program Files\\HP\\QuickPlay\\Kernel\\TV\\CLSched.exe
O23 - Service: Servicio de actualización de Google (gupdate) (gupdate) - Google Inc. - C:\\Program Files\\Google\\Update\\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\\Program Files\\Hewlett-Packard\\HP Health Check\\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\\Program Files\\Hewlett-Packard\\Shared\\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Roxio\\Roxio MyDVD Basic v9\\InstallShield\\Driver\\1050\\Intel 32\\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\\Program Files\\Common Files\\Symantec Shared\\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\\Program Files\\Common Files\\Symantec Shared\\PIF\\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\\PIFSvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\\Program Files\\Nero\\Nero8\\Nero BackItUp\\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\\Program Files\\Common Files\\Nero\\Lib\\NMIndexingService.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\\Program Files\\Common Files\\Roxio Shared\\9.0\\SharedCOM\\RoxMediaDB9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\\Program Files\\Common Files\\SureThing Shared\\stllssvr.exe
--
End of file - 14083 bytes
|
| | | adryosber - 01-12-2010 22:37. | | logfile of trend micro hijackthis v2.0.2
scan saved at 10:22:59 p.m., on 01/12/2010
platform: windows vista sp1 (winnt 6.00.1905)
msie: internet explorer v7.00 (7.00.6001.18444)
boot mode: normal
running processes:
c:\\program files\\common files\\logishrd\\lvcomser\\lvcomser.exe
c:\\windows\\system32\\dwm.exe
c:\\windows\\explorer.exe
c:\\windows\\system32\\taskeng.exe
c:\\windows\\system32\\taskeng.exe
c:\\program files\\spybot - search & destroy\\teatimer.exe
c:\\program files\\superantispyware\\superantispyware.exe
c:\\program files\\google\\googletoolbarnotifier\\googletoolbarnotifier.exe
c:\\program files\\windows media player\\wmpnscfg.exe
c:\\program files\\internet explorer\\ieuser.exe
c:\\program files\\google\\google toolbar\\googletoolbaruser_32.exe
c:\\program files\\internet explorer\\iexplore.exe
c:\\windows\\system32\\macromed\\flash\\flashutil10c.exe
c:\\program files\\trend micro\\hijackthis\\hijackthis.exe
r1 - hklm\\software\\microsoft\\internet explorer\\main,default_page_url = http://go.microsoft.com/fwlink/?linkid=69157
r1 - hklm\\software\\microsoft\\internet explorer\\main,default_search_url = http://es.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://es.search.yahoo.com
r1 - hklm\\software\\microsoft\\internet explorer\\main,search page = http://es.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*http://es.search.yahoo.com
r0 - hklm\\software\\microsoft\\internet explorer\\main,start page = http://go.microsoft.com/fwlink/?linkid=69157
r0 - hklm\\software\\microsoft\\internet explorer\\search,searchassistant =
r0 - hklm\\software\\microsoft\\internet explorer\\search,customizesearch =
r1 - hkcu\\software\\microsoft\\internet explorer\\searchurl,(default) = http://es.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://es.search.yahoo.com
r1 - hkcu\\software\\microsoft\\internet explorer\\main,window title = internet explorer provided by dell
r0 - hkcu\\software\\microsoft\\internet explorer\\toolbar,linksfoldername =
r3 - urlsearchhook: avg security toolbar bho - {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\\program files\\avg\\avg8\\toolbar\\ietoolbar.dll
r3 - urlsearchhook: yahoo! toolbar - {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\\program files\\yahoo!\\companion\\installs\\cpn\\yt.dll
r3 - urlsearchhook: (no name) - {91c18ed5-5e1c-4ae5-a148-a861de8c8e16} - (no file)
r3 - urlsearchhook: (no name) - {fc600575-3013-4e8e-941c-4b00dafce730} - (no file)
o1 - hosts: ::1 localhost
o2 - bho: yahoo! toolbar helper - {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\\program files\\yahoo!\\companion\\installs\\cpn\\yt.dll
o2 - bho: adobe pdf reader link helper - {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\\program files\\adobe\\acrobat 7.0\\activex\\acroiehelper.dll
o2 - bho: wormradar.com iesiteblocker.navfilter - {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\\program files\\avg\\avg8\\avgssie.dll
o2 - bho: spybot-s&d ie protection - {53707962-6f74-2d53-2644-206d7942484f} - c:\\program files\\spybot - search & destroy\\sdhelper.dll
o2 - bho: (no name) - {5c255c8a-e604-49b4-9d64-90988571cecb} - (no file)
o2 - bho: ssvhelper class - {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\\program files\\java\\jre1.5.0_11\\bin\\ssv.dll
o2 - bho: windows live aplicación auxiliar de inicio de sesión - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\\program files\\common files\\microsoft shared\\windows live\\windowslivelogin.dll
o2 - bho: avg security toolbar bho - {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\\program files\\avg\\avg8\\toolbar\\ietoolbar.dll
o2 - bho: google toolbar helper - {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\\program files\\google\\google toolbar\\googletoolbar_32.dll
o2 - bho: google toolbar notifier bho - {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\\program files\\google\\googletoolbarnotifier\\5.6.5805.1910\\swg.dll
o2 - bho: (no name) - {eee6c35c-6118-11dc-9c72-001320c79847} - (no file)
o2 - bho: (no name) - {f0626a63-410b-45e2-99a1-3f2475b2d695} - (no file)
o3 - toolbar: yahoo! toolbar - {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\\program files\\yahoo!\\companion\\installs\\cpn\\yt.dll
o3 - toolbar: avg security toolbar - {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\\program files\\avg\\avg8\\toolbar\\ietoolbar.dll
o3 - toolbar: google toolbar - {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\\program files\\google\\google toolbar\\googletoolbar_32.dll
o4 - hklm\\..\\run: [fbssa] c:\\program files\\sgpsa\\ie3sh.exe
o4 - hklm\\..\\run: [malwarebytes' anti-malware (reboot)] "c:\\program files\\malwarebytes' anti-malware\\mbam.exe" /runcleanupscript
o4 - hkcu\\..\\run: [spybotsd teatimer] c:\\program files\\spybot - search & destroy\\teatimer.exe
o4 - hkcu\\..\\run: [superantispyware] c:\\program files\\superantispyware\\superantispyware.exe
o4 - hkcu\\..\\run: [swg] "c:\\program files\\google\\googletoolbarnotifier\\googletoolbarnotifier.exe"
o4 - hkus\\s-1-5-19\\..\\run: [sidebar] %programfiles%\\windows sidebar\\sidebar.exe /detectmem (user 'servicio local')
o4 - hkus\\s-1-5-19\\..\\run: [windowswelcomecenter] rundll32.exe oobefldr.dll,showwelcomecenter (user 'servicio local')
o4 - hkus\\s-1-5-20\\..\\run: [sidebar] %programfiles%\\windows sidebar\\sidebar.exe /detectmem (user 'servicio de red')
o8 - extra context menu item: e&xportar a microsoft excel - res://c:\\progra~1\\micros~3\\office12\\excel.exe/3000
o8 - extra context menu item: enviar imagen al dispositivo &bluetooth... - c:\\program files\\widcomm\\bluetooth software\\btsendto_ie_ctx.htm
o8 - extra context menu item: enviar página al dispositivo &bluetooth... - c:\\program files\\widcomm\\bluetooth software\\btsendto_ie.htm
o8 - extra context menu item: google sidewiki... - res://c:\\program files\\google\\google toolbar\\component\\googletoolbardynamic_mui_en_e11712c84ea7e12b.dll/cmsidewiki.html
o9 - extra button: (no name) - {08b0e5c0-4fcb-11cf-aaa5-00401c608501} - c:\\program files\\java\\jre1.5.0_11\\bin\\npjpi150_11.dll
o9 - extra 'tools' menuitem: consola de sun java - {08b0e5c0-4fcb-11cf-aaa5-00401c608501} - c:\\program files\\java\\jre1.5.0_11\\bin\\npjpi150_11.dll
o9 - extra button: (no name) - {53f6fccd-9e22-4d71-86ea-6e43136192ab} - (no file)
o9 - extra button: (no name) - {925dab62-f9ac-4221-806a-057bfb1014aa} - (no file)
o9 - extra button: research - {92780b25-18cc-41c8-b9be-3c9c571a8263} - c:\\progra~1\\micros~3\\office12\\refiebar.dll
o9 - extra button: @btrez.dll,-4015 - {cca281ca-c863-46ef-9331-5c8d4460577f} - c:\\program files\\widcomm\\bluetooth software\\btsendto_ie.htm
o9 - extra 'tools' menuitem: @btrez.dll,-12650 - {cca281ca-c863-46ef-9331-5c8d4460577f} - c:\\program files\\widcomm\\bluetooth software\\btsendto_ie.htm
o9 - extra button: (no name) - {dfb852a3-47f8-48c4-a200-58cab36fd2a2} - c:\\program files\\spybot - search & destroy\\sdhelper.dll
o9 - extra 'tools' menuitem: spybot - search && destroy configuration - {dfb852a3-47f8-48c4-a200-58cab36fd2a2} - c:\\program files\\spybot - search & destroy\\sdhelper.dll
o13 - gopher prefix:
o15 - trusted zone: http://www.airfrance.it
o15 - trusted zone: http://www.banrep.gov.co
o15 - trusted zone: http://avg.urlseek.vmn.net
o16 - dpf: {7530bfb8-7293-4d34-9923-61a11451afc5} (onlinescanner control) - http://download.eset.com/special/eos/onlinescanner.cab
o16 - dpf: {8100d56a-5661-482c-bee8-afece305d968} (facebook photo uploader 5 control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/facebookphotouploader55.cab
o17 - hklm\\system\\ccs\\services\\tcpip\\..\\{15899ca3-df26-4f50-804f-f6064ac317a8}: nameserver = 200.75.51.132,200.75.51.133
o17 - hklm\\system\\cs1\\services\\tcpip\\..\\{15899ca3-df26-4f50-804f-f6064ac317a8}: nameserver = 200.75.51.132,200.75.51.133
o17 - hklm\\system\\cs2\\services\\tcpip\\..\\{15899ca3-df26-4f50-804f-f6064ac317a8}: nameserver = 200.75.51.132,200.75.51.133
o18 - protocol: avgsecuritytoolbar - {f2dde6b2-9684-4a55-86d4-e255e237b77c} - c:\\program files\\avg\\avg8\\toolbar\\ietoolbar.dll
o18 - protocol: linkscanner - {f274614c-63f8-47d5-a4d1-fbdde494f8d1} - c:\\program files\\avg\\avg8\\avgpp.dll
o18 - protocol: skype4com - {ffc8b962-9b40-4dff-9458-1830c7dd7f5d} - c:\\progra~1\\common~1\\skype\\skype4~1.dll
o20 - appinit_dlls: avgrsstx.dll
o20 - winlogon notify: gotoassist - c:\\program files\\citrix\\gotoassist\\480\\g2awinlogon.dll (file missing)
o23 - service: avg security toolbar service - unknown owner - c:\\program files\\avg\\avg8\\toolbar\\toolbarbroker.exe
o23 - service: avg free8 watchdog (avg8wd) - avg technologies cz, s.r.o. - c:\\progra~1\\avg\\avg8\\avgwdsvc.exe
o23 - service: gotoassist - citrix online, a division of citrix systems, inc. - c:\\program files\\citrix\\gotoassist\\480\\g2aservice.exe
o23 - service: servicio de actualización de google (gupdate) (gupdate) - google inc. - c:\\program files\\google\\update\\googleupdate.exe
o23 - service: google software updater (gusvc) - google - c:\\program files\\google\\common\\google updater\\googleupdaterservice.exe
o23 - service: installdriver table manager (idrivert) - macrovision corporation - c:\\program files\\common files\\installshield\\driver\\1150\\intel 32\\idrivert.exe
o23 - service: lookout citadel server (lkcitadelserver) - national instruments, inc. - c:\\windows\\system32\\lkcitdl.exe
o23 - service: national instruments psp server locator (lkclassads) - national instruments corporation - c:\\windows\\system32\\lkads.exe
o23 - service: national instruments time synchronization (lktimesync) - national instruments corporation - c:\\windows\\system32\\lktsrv.exe
o23 - service: lvcomser - logitech inc. - c:\\program files\\common files\\logishrd\\lvcomser\\lvcomser.exe
o23 - service: process monitor (lvprcsrv) - logitech inc. - c:\\program files\\common files\\logishrd\\lvmvfm\\lvprcsrv.exe
o23 - service: ni configuration manager (mxssvr) - national instruments corporation - c:\\program files\\national instruments\\max\\nimxs.exe
o23 - service: national instruments domain service (nidomainservice) - national instruments corporation - c:\\program files\\national instruments\\shared\\security\\nidmsrv.exe
o23 - service: ni service locator (nisvcloc) - national instruments corp. - c:\\windows\\system32\\nisvcloc.exe
o23 - service: roxmediadb9 - sonic solutions - c:\\program files\\common files\\roxio shared\\9.0\\sharedcom\\roxmediadb9.exe
o23 - service: roxio hard drive watcher 9 (roxwatch9) - sonic solutions - c:\\program files\\common files\\roxio shared\\9.0\\sharedcom\\roxwatch9.exe
o23 - service: stllssvr - microvision development, inc. - c:\\program files\\common files\\surething shared\\stllssvr.exe
o23 - service: xaudioservice - conexant systems, inc. - c:\\windows\\system32\\drivers\\xaudio.exe
--
end of file - 10449 bytes
|
| |
|
|
|
|
|
|
|
