|
|
|
|
|
Virus z0rgberg, ayuda!!! |
|
| Sony Vaio notebook, so windows 7 starter Aparece a cada rato un add cuando abro paginas de internet, pidiendome que descargue "youtube.exe" con un icono de youtube diferente, y creo que por error anteriormente yo lo activé al abrir una página de nickJr para ver un video. Posteriormente empezó a aparecer cada que inicio la compu una solicitud de cambios en el sistema por un archivo llamado z0rberg.exe (C:\ \ Users\ \ AKIVASHJA\ \ AppData\ \ Local\ \ Temp\ \ z0rgberg.exe"/SPAWNWND=$202BE/NOTIFYWNDF$102D6/verysilent/nocancel) Ya he probado varios antimalware y spyware, incluso mi antivirus (AVG) examinandolo directamente y no lo detecta como amenaza. Si alguien puede ayudarme por favor, qué pasos debo seguir o que programa puedo usar para deshacerme de esa amenaza, quisiera también saber qué daño puede hacerle a mi computadora porque busco en internet información de este bicho y no encuentro nada. Ayuda!!!! De antemano gracias |
#1   enrique1970 (23.463 Posts) - 30/07/2012 01:58:01 | ||
| Vas a descargar el
HijackThis 2.0.4 este ultimo lo va a ejecutar en modo normal y le das a \ "Do a system scan and save a log file\ " esto generará un archivo de texto el cual vas a pegar en este post para que un moderador autorizado lo analice saludos! Recuerda notificar si solucionaste tu problema y si tienes conocimientos en algún area puedes ayudar a otros cómo tú has sido ayudado! No se permiten consultas por mensajes privados Si te ha servido mi respuesta dale click a SI aquí abajo | ||
| Bajar - Subir | ||
#2  Luis14811 (1 Posts) - 31/07/2012 17:57:02 | ||
| Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:50:11, on 31/07/2012 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\ \ Program Files\ \ AVAST Software\ \ Avast\ \ AvastUI.exe C:\ \ Program Files (x86)\ \ Toshiba\ \ Bluetooth Toshiba Stack\ \ ItSecMng.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Users\ \ Luis\ \ AppData\ \ Local\ \ Google\ \ Chrome\ \ User Data\ \ Default\ \ Extensions\ \ ghgabhipcejejjmhhchfonmamedcbeod\ \ 7.9_0\ \ plugin\ \ ClickClean.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Windows\ \ SysWOW64\ \ rundll32.exe C:\ \ Program Files (x86)\ \ Google\ \ Chrome\ \ Application\ \ chrome.exe C:\ \ Users\ \ Luis\ \ Downloads\ \ HijackThis.exe R0 - HKCU\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Main,Start Page = http://btsearch.name R1 - HKLM\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4 R0 - HKLM\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Search,CustomizeSearch = R0 - HKLM\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Main,Local Page = C:\ \ Windows\ \ SysWOW64\ \ blank.htm R0 - HKCU\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {fd6d0d57-f67f-4e2d-a5f7-0c4c2c820470} - (no file) R3 - URLSearchHook: (no name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file) F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\ \ Program Files (x86)\ \ Common Files\ \ Adobe\ \ Acrobat\ \ ActiveX\ \ AcroIEHelperShim.dll O2 - BHO: (no name) - {2EECD738-5844-4a99-B4B6-146BF802613B} - (no file) O2 - BHO: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\ \ Windows\ \ SysWOW64\ \ CbFsMntNtf3.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\ \ Program Files (x86)\ \ Java\ \ jre6\ \ bin\ \ ssv.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\ \ Program Files\ \ AVAST Software\ \ Avast\ \ aswWebRepIE.dll O2 - BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\ \ Program Files (x86)\ \ Common Files\ \ Microsoft Shared\ \ Windows Live\ \ WindowsLiveLogin.dll O2 - BHO: (no name) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - (no file) O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\ \ Program Files (x86)\ \ Windows Live\ \ Companion\ \ companioncore.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\ \ Program Files (x86)\ \ Skype\ \ Toolbars\ \ Internet Explorer\ \ skypeieplugin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\ \ Program Files (x86)\ \ Java\ \ jre6\ \ bin\ \ jp2ssv.dll O2 - BHO: Bandoo IE Plugin - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\ \ Program Files (x86)\ \ Bandoo\ \ Plugins\ \ IE\ \ ieplugin.dll O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\ \ Program Files (x86)\ \ Yontoo Layers Runtime\ \ YontooIEClient.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\ \ Program Files\ \ AVAST Software\ \ Avast\ \ aswWebRepIE.dll O3 - Toolbar: (no name) - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file) O4 - HKLM\ \ .\ \ Run: [avast] \ "C:\ \ Program Files\ \ AVAST Software\ \ Avast\ \ avastUI.exe\ " /nogui O4 - HKLM\ \ .\ \ Run: [ITSecMng] C:\ \ Program Files (x86)\ \ TOSHIBA\ \ Bluetooth Toshiba Stack\ \ ItSecMng.exe /START O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\ \ Windows\ \ system32\ \ GPhotos.scr/200 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ \ PROGRA~2\ \ MICROS~1\ \ Office12\ \ EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube Download - C:\ \ Users\ \ Luis\ \ AppData\ \ Roaming\ \ DVDVideoSoftIEHelpers\ \ freeytvdownloader.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\ \ Users\ \ Luis\ \ AppData\ \ Roaming\ \ DVDVideoSoftIEHelpers\ \ freeyoutubetomp3converter.htm O9 - Extra button: @C:\ \ Program Files (x86)\ \ Windows Live\ \ Companion\ \ companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\ \ Program Files (x86)\ \ Windows Live\ \ Companion\ \ companioncore.dll O9 - Extra button: @C:\ \ Program Files (x86)\ \ Windows Live\ \ Writer\ \ WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\ \ Program Files (x86)\ \ Windows Live\ \ Writer\ \ WriterBrowserExtension.dll O9 - Extra \ 'Tools\ ' menuitem: @C:\ \ Program Files (x86)\ \ Windows Live\ \ Writer\ \ WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\ \ Program Files (x86)\ \ Windows Live\ \ Writer\ \ WriterBrowserExtension.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\ \ Program Files (x86)\ \ Skype\ \ Toolbars\ \ Internet Explorer\ \ skypeieplugin.dll O9 - Extra button: (no name) - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\ \ Program Files (x86)\ \ Babylon\ \ Babylon-Pro\ \ Utils\ \ BabylonIEPI.dll O10 - Unknown file in Winsock LSP: c:\ \ program files (x86)\ \ common files\ \ microsoft shared\ \ windows live\ \ wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\ \ program files (x86)\ \ common files\ \ microsoft shared\ \ windows live\ \ wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\ \ Program Files (x86)\ \ Skype\ \ Toolbars\ \ Internet Explorer\ \ skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ \ PROGRA~2\ \ COMMON~1\ \ Skype\ \ SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\ \ Program Files (x86)\ \ Windows Live\ \ Photo Gallery\ \ AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: c:\ \ progra~2\ \ bandoo\ \ bndhook.dll O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\ \ Windows\ \ SysWOW64\ \ CbFsMntNtf3.dll O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\ \ Windows\ \ SysWOW64\ \ CbFsMntNtf3.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\ \ Program Files (x86)\ \ Common Files\ \ Adobe\ \ ARM\ \ 1.0\ \ armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\ \ Windows\ \ SysWOW64\ \ Macromed\ \ Flash\ \ FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\ \ system32\ \ aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ Alg.exe,-112 (ALG) - Unknown owner - C:\ \ Windows\ \ System32\ \ alg.exe (file missing) O23 - Service: @%systemroot%\ \ system32\ \ appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ appinfo.dll,-100 (Appinfo) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: avast! Antivirus - AVAST Software - C:\ \ Program Files\ \ AVAST Software\ \ Avast\ \ AvastSvc.exe O23 - Service: @%SystemRoot%\ \ system32\ \ AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: Bandoo Coordinator - Bandoo Media Inc. - C:\ \ Program Files (x86)\ \ Bandoo\ \ Bandoo.exe O23 - Service: @%SystemRoot%\ \ system32\ \ bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ bfe.dll,-1001 (BFE) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ qmgr.dll,-1000 (BITS) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ browser.dll,-100 (Browser) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ bthserv.dll,-101 (bthserv) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ cscsvc.dll,-200 (CscService) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ dps.dll,-500 (DPS) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ eapsvc.dll,-1 (EapHost) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ efssvc.dll,-100 (EFS) - Unknown owner - C:\ \ Windows\ \ System32\ \ lsass.exe (file missing) O23 - Service: @%SystemRoot%\ \ ehome\ \ ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\ \ Windows\ \ ehome\ \ ehRecvr.exe O23 - Service: @%SystemRoot%\ \ ehome\ \ ehsched.exe,-101 (ehSched) - Unknown owner - C:\ \ Windows\ \ ehome\ \ ehsched.exe O23 - Service: @%SystemRoot%\ \ system32\ \ wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ fxsresm.dll,-118 (Fax) - Unknown owner - C:\ \ Windows\ \ system32\ \ fxssvc.exe (file missing) O23 - Service: @%systemroot%\ \ system32\ \ fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ FntCache.dll,-100 (FontCache) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: Servicio de Google Update (gupdate) (gupdate) - Unknown owner - C:\ \ Program Files (x86)\ \ Google\ \ Update\ \ GoogleUpdate.exe O23 - Service: Servicio de Google Update (gupdatem) (gupdatem) - Unknown owner - C:\ \ Program Files (x86)\ \ Google\ \ Update\ \ GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\ \ Program Files (x86)\ \ Google\ \ Common\ \ Google Updater\ \ GoogleUpdaterService.exe O23 - Service: @%SystemRoot%\ \ System32\ \ hidserv.dll,-101 (hidserv) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\ \ Windows\ \ system32\ \ lsass.exe (file missing) O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ mmcss.dll,-100 (MMCSS) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\ \ Program Files (x86)\ \ Mozilla Maintenance Service\ \ maintenanceservice.exe O23 - Service: @%SystemRoot%\ \ system32\ \ FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\ \ Windows\ \ System32\ \ msdtc.exe (file missing) O23 - Service: @%SystemRoot%\ \ system32\ \ iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ msimsg.dll,-27 (msiserver) - Unknown owner - C:\ \ Windows\ \ system32\ \ msiexec.exe O23 - Service: @%SystemRoot%\ \ system32\ \ qagentrt.dll,-6 (napagent) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ netlogon.dll,-102 (Netlogon) - Unknown owner - C:\ \ Windows\ \ system32\ \ lsass.exe (file missing) O23 - Service: @%SystemRoot%\ \ system32\ \ netman.dll,-109 (Netman) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ netprofm.dll,-202 (netprofm) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ nsisvc.dll,-200 (nsi) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%systemroot%\ \ sysWow64\ \ perfhost.exe,-2 (PerfHost) - Unknown owner - C:\ \ Windows\ \ SysWow64\ \ perfhost.exe O23 - Service: @%systemroot%\ \ system32\ \ pla.dll,-500 (pla) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ umpo.dll,-100 (Power) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\ \ Windows\ \ system32\ \ lsass.exe (file missing) O23 - Service: @%SystemRoot%\ \ system32\ \ qwave.dll,-1 (QWAVE) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%Systemroot%\ \ system32\ \ rasauto.dll,-200 (RasAuto) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%Systemroot%\ \ system32\ \ rasmans.dll,-200 (RasMan) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%windir%\ \ system32\ \ RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ Locator.exe,-2 (RpcLocator) - Unknown owner - C:\ \ Windows\ \ system32\ \ locator.exe (file missing) O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ samsrv.dll,-1 (SamSs) - Unknown owner - C:\ \ Windows\ \ system32\ \ lsass.exe (file missing) O23 - Service: @%SystemRoot%\ \ System32\ \ SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ schedsvc.dll,-100 (Schedule) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ seclogon.dll,-7001 (seclogon) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ Sens.dll,-200 (SENS) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: ServiceLayer - Nokia - C:\ \ Program Files (x86)\ \ PC Connectivity Solution\ \ ServiceLayer.exe O23 - Service: @%SystemRoot%\ \ System32\ \ SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ \ ProgramData\ \ Skype\ \ Toolbars\ \ Skype C2C Service\ \ c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\ \ Program Files (x86)\ \ Skype\ \ Updater\ \ Updater.exe O23 - Service: @%SystemRoot%\ \ system32\ \ snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\ \ Windows\ \ System32\ \ snmptrap.exe (file missing) O23 - Service: @%systemroot%\ \ system32\ \ spoolsv.exe,-1 (Spooler) - Unknown owner - C:\ \ Windows\ \ System32\ \ spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\ \ system32\ \ sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\ \ system32\ \ sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ wiaservc.dll,-9 (stisvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ swprv.dll,-103 (swprv) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ sysmain.dll,-1000 (SysMain) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ tbssvc.dll,-100 (TBS) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ termsrv.dll,-268 (TermService) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ themeservice.dll,-8192 (Themes) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\ \ Program Files (x86)\ \ Toshiba\ \ Bluetooth Toshiba Stack\ \ TosBtSrv.exe O23 - Service: @%SystemRoot%\ \ system32\ \ trkwks.dll,-1 (TrkWks) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ servicing\ \ TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\ \ Windows\ \ servicing\ \ TrustedInstaller.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\ \ Program Files (x86)\ \ TuneUp Utilities 2012\ \ TuneUpUtilitiesService64.exe O23 - Service: @%SystemRoot%\ \ system32\ \ ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\ \ Windows\ \ system32\ \ UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\ \ system32\ \ umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ upnphost.dll,-213 (upnphost) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ dwm.exe,-2000 (UxSms) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ lsass.exe (file missing) O23 - Service: @%SystemRoot%\ \ system32\ \ vds.exe,-100 (vds) - Unknown owner - C:\ \ Windows\ \ System32\ \ vds.exe (file missing) O23 - Service: @%systemroot%\ \ system32\ \ vssvc.exe,-102 (VSS) - Unknown owner - C:\ \ Windows\ \ system32\ \ vssvc.exe (file missing) O23 - Service: @%SystemRoot%\ \ system32\ \ w32time.dll,-200 (W32Time) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ wbengine.exe,-104 (wbengine) - Unknown owner - C:\ \ Windows\ \ system32\ \ wbengine.exe (file missing) O23 - Service: @%systemroot%\ \ system32\ \ wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ webclnt.dll,-100 (WebClient) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ wersvc.dll,-100 (WerSvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%ProgramFiles%\ \ Windows Defender\ \ MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%Systemroot%\ \ system32\ \ wbem\ \ wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%Systemroot%\ \ system32\ \ wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%Systemroot%\ \ system32\ \ wbem\ \ wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\ \ Windows\ \ system32\ \ wbem\ \ WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\ \ Windows Media Player\ \ wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\ \ Program Files (x86)\ \ Windows Media Player\ \ wmpnetwk.exe (file missing) O23 - Service: @%SystemRoot%\ \ system32\ \ wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\ \ Windows\ \ System32\ \ svchost.exe O23 - Service: @%systemroot%\ \ system32\ \ wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ system32\ \ wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe O23 - Service: @%SystemRoot%\ \ System32\ \ wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\ \ Windows\ \ system32\ \ svchost.exe -- End of file - 25032 bytes | ||
| Bajar - Subir | ||
#3  marinalope (25.539 Posts) - 31/07/2012 19:28:51 | ||
| Cierra todos los programas incluido el navegador,abre el HijackThis,pulsa do a system scan only y marca estas entradas:
R0 - HKLM\ \ Software\ \ Microsoft\ \ Internet Explorer\ \ Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4 R3 - URLSearchHook: (no name) - {fd6d0d57-f67f-4e2d-a5f7-0c4c2c820470} - (no file) R3 - URLSearchHook: (no name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file) O2 - BHO: (no name) - {2EECD738-5844-4a99-B4B6-146BF802613B} - (no file) O2 - BHO: (no name) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - (no file) O3 - Toolbar: (no name) - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file) Pulsa fix checked. Pasa Malwarebytes actualizado y pega un nuevo log. Cuando pongas una pregunta,recuerda refrescar la página para ver si has tenido alguna respuesta.Puedes hacerlo pulsando F5. | ||
| Bajar - Subir |
Temas relacionados: |
| Ayuda con virus | |
| Tengo una computadora compaq presario cq1 y cuando la prendo me aparecen unos wallapers de rayas y cuadros COMPAQ PRESARIO CQ1 Y WINDOWS 7. ... | |
| Ayuda con un virus | |
| Windows 7 (6.1) 32b, Chrome 18.0 hola el otro dia me llego un email que ponia que yo habia mandado un email a mucha gente, entre los cuales me encontraba yo. Lo unico que ponia era este link: http://********************** Al abrirlo en el iphone me salia google y al ponerlo en el url del navegador me salia un mensaje del antivirus(AVG antivirus free edition 2011). Pero al volver a buscarlo en el url del navegador me salia como en el iphone: google.es Comentario del Moderador: No está permitido poner links a otras páginas que NO se... | |
| Ayuda virus | |
| Windows 7 home premium 64 bits como puedo eliminar este virus Trojan.Generic.KDV.820951 cuesta que arranque asoman ventanas al inicio cuesta que inicie Internet cuando navego por Internet se abre ventanas de a solo ... | |
| Ayuda con virus que me desconecta del wi fi | |
| Windows 7 Buenas como estan, un favor tengo una notebook que me ha estado fallando ultimamente, hace un par de semanas empezo con una desconexion de la red wi fi de mi oficina, al comienzo se desconectaba y al rato se volvia a conectar, luego este problema se hizo cada vez mas seguido, a veces solo me pasaba en las tardes, ahora sucede a cualquier hora. Lo raro de esto es que sucedia algunas veces y otras no, aunque desde hace 2 dias ya me sucede muy seguido y no me deja navegar, tengo que conectarle el cable lan al computador si quiero t... | |
| Ayuda con el virus MUGEN.VBS | |
| Como puedo quitar ese virus de una memoria USB y un computador si necesidad de tener que formatear la unidad. Ayudenme porfavor. Windows 8 (6.2) 32b, Chrome 29.0. ... | |
| Foros: Virus |
| Subir |
Foros: |
|
-