Lavasoft Ad-aware Personal Build 6.181
Logfile creado:viernes, 11 de junio de 2004 22:24:25
Created with Ad-aware Personal, free for private use.
Usando archivo de referencia:01R316 11.06.2004
______________________________________________________
Reffile status:
=========================
archivo de la referencia cargado:
Reference Number : 01R316 11.06.2004
Internal build : 248
File location : C:\ARCHIV~1\LAVASOFT\AD-AWA~1\reflist.ref
Total size : 1233266 Bytes
Signature data size : 1213039 Bytes
Reference data size : 20163 Bytes
Signatures total : 27012
Target categories : 10
Target families : 494
Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium III
Memory available:15 %
Total physical memory:228848 kb
Available physical memory:33084 kb
Total page file size:558968 kb
Available on page file:272852 kb
Total virtual memory:2097024 kb
Available virtual memory:2054916 kb
OS:
Ad-aware Settings
=========================
Juego : Activar escaneo en profundidad
Juego : Modo seguro (siempre pide una confirmación)
Juego : Escanear procesos activos
Juego : Escanear registro
Juego : Escanear registro a fondo
Juego : Escanear Favorito de IE para los sitios prohibidos
Juego : Escanear dentro de los archivos
Juego : Scan my Hosts file
Extended Ad-aware Settings
=========================
Juego : Unload recognized processes during scanning
Juego : Include basic Ad-aware settings in logfile
Juego : Include additional Ad-aware settings in logfile
Juego : Let windows remove files in use at next reboot
Juego : Delete quarantined objects after restoring
Juego : Always back up reference file, before updating
Juego : Play sound if scan produced a result
11-06-2004 22:24:25 - Scan started. (Custom mode)
Listando procesos activos
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ThreadCreationTime : 08-06-2004 8:55:04
BasePriority : Normal
#:2 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ThreadCreationTime : 08-06-2004 8:55:05
BasePriority : High
#:3 [services.exe]
FilePath : C:\WINDOWS\system32\
ThreadCreationTime : 08-06-2004 8:55:06
BasePriority : Normal
FileSize : 99 KB
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
Copyright : Copyright (C) Microsoft Corporation. Reservados todos los derechos.
CompanyName : Microsoft Corporation
FileDescription : Aplicaci
InternalName : services.exe
OriginalFilename : services.exe
ProductName : Sistema operativo Microsoft
Created on : 24/08/2001 11:00:00
Last accessed : 10/06/2004 22:00:00
Last modified : 24/08/2001 11:00:00
#:4 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ThreadCreationTime : 08-06-2004 8:55:06
BasePriority : Normal
FileSize : 11 KB
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
OriginalFilename : lsass.exe
ProductName : Microsoft
Created on : 17/02/2004 16:01:25
Last accessed : 10/06/2004 22:00:00
Last modified : 24/08/2001 11:00:00
#:5 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ThreadCreationTime : 08-06-2004 8:55:07
BasePriority : Normal
FileSize : 12 KB
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft
Created on : 24/08/2001 11:00:00
Last accessed : 10/06/2004 22:00:00
Last modified : 24/08/2001 11:00:00
#:6 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ThreadCreationTime : 08-06-2004 8:55:08
BasePriority : Normal
FileSize : 12 KB
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft
Created on : 24/08/2001 11:00:00
Last accessed : 10/06/2004 22:00:00
Last modified : 24/08/2001 11:00:00
#:7 [smc.exe]
FilePath : C:\Archivos de programa\Sygate\SPF\
ThreadCreationTime : 08-06-2004 8:55:08
BasePriority : Normal
FileSize : 2289 KB
FileVersion : 5.5.00.2525
ProductVersion : 5.5.00.2525
Copyright : Copyright
CompanyName : Sygate Technologies, Inc.
FileDescription : Sygate Agent Firewall
InternalName : Smc
OriginalFilename : Smc.EXE
ProductName : Sygate
Created on : 24/12/2003 12:44:56
Last accessed : 10/06/2004 22:00:00
Last modified : 24/12/2003 12:44:56
#:8 [explorer.exe]
FilePath : C:\WINDOWS\
ThreadCreationTime : 08-06-2004 8:55:09
BasePriority : Normal
FileSize : 980 KB
FileVersion : 6.00.2600.0000 (xpclient.010817-1148)
ProductVersion : 6.00.2600.0000
CompanyName : Microsoft Corporation
FileDescription : Explorador de Windows
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Sistema operativo Microsoft
Created on : 17/02/2004 16:01:50
Last accessed : 10/06/2004 22:00:00
Last modified : 24/08/2001 11:00:00
#:9 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ThreadCreationTime : 08-06-2004 8:55:10
BasePriority : Normal
FileSize : 50 KB
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
OriginalFilename : spoolsv.exe
ProductName : Microsoft
Created on : 24/08/2001 11:00:00
Last accessed : 10/06/2004 22:00:00
Last modified : 24/08/2001 11:00:00
#:10 [pctspk.exe]
FilePath : C:\WINDOWS\System32\
ThreadCreationTime : 08-06-2004 8:55:11
BasePriority : Normal
FileSize : 176 KB
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
Copyright : Copyright (C) 2001
FileDescription : pctvoice MFC Application
InternalName : pctvoice
OriginalFilename : pctvoice.EXE
ProductName : pctvoice Application
Created on : 17/02/2004 16:12:12
Last accessed : 10/06/2004 22:00:00
Last modified : 24/04/2003 10:15:50
#:11 [pv92tray.exe]
FilePath : C:\WINDOWS\System32\
ThreadCreationTime : 08-06-2004 8:55:12
BasePriority : Normal
FileSize : 127 KB
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
Copyright : Copyright (C) 2002
CompanyName : PCtel Inc.
FileDescription : PTV92Tray Application
InternalName : PTV92Tray
OriginalFilename : PTV92Tray.EXE
ProductName : PTV92Tray Application
Created on : 17/02/2004 16:12:12
Last accessed : 10/06/2004 22:00:00
Last modified : 18/06/2003 2:57:24
#:12 [realplay.exe]
FilePath : C:\Archivos de programa\Real\RealPlayer\
ThreadCreationTime : 08-06-2004 8:55:12
BasePriority : Normal
FileSize : 25 KB
FileVersion : 6.0.9.584
ProductVersion : 6.0.9.584
Copyright : Copyright
CompanyName : RealNetworks, Inc.
FileDescription : RealPlayer
InternalName : REALPLAY
OriginalFilename : REALPLAY.EXE
ProductName : RealPlayer (32-bit)
Created on : 18/02/2004 14:44:12
Last accessed : 10/06/2004 22:00:00
Last modified : 18/02/2004 14:44:14
#:13 [incd.exe]
FilePath : C:\Archivos de programa\Ahead\InCD\
ThreadCreationTime : 08-06-2004 8:55:12
BasePriority : Normal
FileSize : 1172 KB
FileVersion : 4, 0, 5, 6
ProductVersion : 4, 0, 5, 6
Copyright : Copyright (C) 2003 Ahead Software and its licensors
CompanyName : Ahead Software AG
FileDescription : InCD
InternalName : InCD
OriginalFilename : InCD.exe
ProductName : InCD
Created on : 15/03/2004 22:07:07
Last accessed : 10/06/2004 22:00:00
Last modified : 05/09/2003 15:55:52
#:14 [clonecdtray.exe]
FilePath : C:\Archivos de programa\Elaborate Bytes\CloneCD\
ThreadCreationTime : 08-06-2004 8:55:12
BasePriority : Normal
FileSize : 56 KB
FileVersion : 4, 0, 0, 1
ProductVersion : 4, 0, 0, 0
Copyright : Copyright
CompanyName : Elaborate Bytes
FileDescription : CloneCD Tray
InternalName : CloneCDTray
OriginalFilename : CloneCDTray.exe
ProductName : CloneCD
Created on : 15/04/2002 8:12:56
Last accessed : 10/06/2004 22:00:00
Last modified : 15/04/2002 8:12:58
#:15 [zlclient.exe]
FilePath : C:\DOCUME~1\ZONEAL~1\
ThreadCreationTime : 08-06-2004 8:55:12
BasePriority : Normal
FileSize : 677 KB
FileVersion : 4.5.594.000
ProductVersion : 4.5.594.000
Copyright : Copyright
CompanyName : Zone Labs Inc.
FileDescription : Zone Labs Client
InternalName : zlclient
OriginalFilename : zlclient.exe
ProductName : Zone Labs Client
Created on : 22/05/2004 6:52:42
Last accessed : 10/06/2004 22:00:00
Last modified : 01/04/2004 7:30:04
#:16 [ctfmon.exe]
FilePath : C:\WINDOWS\System32\
ThreadCreationTime : 08-06-2004 8:55:13
BasePriority : Normal
FileSize : 13 KB
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
OriginalFilename : CTFMON.EXE
ProductName : Microsoft
Created on : 17/02/2004 16:01:47
Last accessed : 10/06/2004 22:00:00
Last modified : 24/08/2001 11:00:00
#:17 [msnmsgr.exe]
FilePath : C:\Archivos de programa\MSN Messenger\
ThreadCreationTime : 08-06-2004 8:55:13
BasePriority : Normal
FileSize : 4572 KB
FileVersion : 6.1.0211
ProductVersion : Version 6.1
Copyright : Copyright (c) Microsoft Corporation 1997-2003
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr
OriginalFilename : msnmsgr.exe
ProductName : Messenger
Created on : 04/03/2004 21:01:00
Last accessed : 10/06/2004 22:00:00
Last modified : 04/03/2004 21:01:00
#:18 [msmsgs.exe]
FilePath : C:\Archivos de programa\Messenger\
ThreadCreationTime : 08-06-2004 8:55:13
BasePriority : Normal
FileSize : 1424 KB
FileVersion : 4.6.0078
ProductVersion : Version 4.6
Copyright : Copyright (c) Microsoft Corporation 1997-2001
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msmsgs
OriginalFilename : msmsgs.exe
ProductName : Messenger
Created on : 11/04/2002 5:36:38
Last accessed : 10/06/2004 22:00:00
Last modified : 11/04/2002 5:36:38
#:19 [mediaplayer.exe]
FilePath : C:\WINDOWS\System32\
ThreadCreationTime : 08-06-2004 8:55:13
BasePriority : Normal
FileSize : 121 KB
Created on : 03/06/2004 21:26:03
Last accessed : 10/06/2004 22:00:00
Last modified : 03/06/2004 21:26:44
#:20 [mfindexer.exe]
FilePath : C:\Corel\Graphics8\Programs\
ThreadCreationTime : 08-06-2004 8:55:13
BasePriority : Normal
FileSize : 81 KB
FileVersion : 8.232
ProductVersion : 8.232
Copyright : Copyright
CompanyName : Corel Corporation
FileDescription : Utility which indexes Corel Media Folders
InternalName : Corel Media Indexer
OriginalFilename : MFIndexer.exe
ProductName : CorelDRAW (TM)
Created on : 18/02/2004 14:35:58
Last accessed : 10/06/2004 22:00:00
Last modified : 01/12/1997 14:32:22
#:21 [avgserv.exe]
FilePath : C:\ARCHIV~1\Grisoft\AVG6\
ThreadCreationTime : 08-06-2004 8:55:19
BasePriority : Normal
FileSize : 16 KB
FileVersion : 6.0.1.696
ProductVersion : 6.0.1.696
Copyright : Copyright (c) GRISOFT 1998-2004
CompanyName : GRISOFT s.r.o
FileDescription : AvgServ - displays notification message
InternalName : AvgServ
OriginalFilename : AvgServ
ProductName : AVG6
Created on : 03/06/2004 5:25:36
Last accessed : 10/06/2004 22:00:00
Last modified : 03/06/2004 5:25:38
#:22 [lnssatt.exe]
FilePath : C:\Archivos de programa\GFI\LANguard Network Security Scanner 5.0\
ThreadCreationTime : 08-06-2004 8:55:19
BasePriority : Normal
FileSize : 100 KB
FileVersion : 8, 0, 0, 20
ProductVersion : 8, 0, 0, 0
Copyright : Copyright (C) 1992 - 2003 GFI Software Ltd.
CompanyName : GFI Software Ltd.
FileDescription : Attendant Service
InternalName : Attendant
OriginalFilename : msecatt.exe
Created on : 30/04/2004 9:53:42
Last accessed : 10/06/2004 22:00:00
Last modified : 30/04/2004 9:53:42
#:23 [incdsrv.exe]
FilePath : C:\Archivos de programa\Ahead\InCD\
ThreadCreationTime : 08-06-2004 8:55:28
BasePriority : Normal
FileSize : 780 KB
FileVersion : 4, 0, 5, 6
ProductVersion : 4, 0, 5, 6
Copyright : Copyright
CompanyName : AHEAD Software
FileDescription : incdsrv
InternalName : incdsrv
OriginalFilename : incdsrv.exe
ProductName : AHEAD Software incdsrv
Created on : 15/03/2004 22:07:08
Last accessed : 10/06/2004 22:00:00
Last modified : 05/09/2003 15:55:26
#:24 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ThreadCreationTime : 08-06-2004 8:55:30
BasePriority : Normal
FileSize : 12 KB
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft
Created on : 24/08/2001 11:00:00
Last accessed : 10/06/2004 22:00:00
Last modified : 24/08/2001 11:00:00
#:25 [vsmon.exe]
FilePath : C:\WINDOWS\system32\ZONELABS\
ThreadCreationTime : 08-06-2004 8:55:30
BasePriority : Normal
FileSize : 805 KB
FileVersion : 4.5.594.000
ProductVersion : 4.5.594.000
Copyright : Copyright
CompanyName : Zone Labs Inc.
FileDescription : TrueVector Service
InternalName : vsmon
OriginalFilename : vsmon.exe
ProductName : TrueVector Service
Created on : 22/05/2004 6:52:36
Last accessed : 10/06/2004 22:00:00
Last modified : 01/04/2004 7:29:14
#:26 [msn6.exe]
FilePath : C:\Archivos de programa\MSN\MSNCoreFiles\
ThreadCreationTime : 08-06-2004 8:58:55
BasePriority : Normal
FileSize : 92 KB
FileVersion : 7.02.0010.1600
ProductVersion : 7.02.0010.1600
Copyright : Copyright (C) Microsoft Corp. 1981-2000
CompanyName : Microsoft Corporation
FileDescription : msn
InternalName : msn
OriginalFilename : msn.exe
ProductName : Sistema de comunicaciones de Microsoft(R) MSN (R)
Created on : 23/05/2004 2:24:43
Last accessed : 10/06/2004 22:00:00
Last modified : 31/10/2002 22:35:54
#:27 [emule.exe]
FilePath : C:\Archivos de programa\eMule\
ThreadCreationTime : 08-06-2004 11:14:20
BasePriority : Normal
FileSize : 3288 KB
FileVersion : 0.42.3
ProductVersion : 0.42.3
Copyright : Copyright
CompanyName :
http://www.emule-project.net FileDescription : eMule
InternalName : emule.exe
OriginalFilename : emule.exe
ProductName : eMule
Created on : 07/03/2004 15:57:44
Last accessed : 10/06/2004 22:00:00
Last modified : 07/03/2004 15:57:44
#:28 [avgcc32.exe]
FilePath : C:\ARCHIV~1\Grisoft\AVG6\
ThreadCreationTime : 10-06-2004 23:11:06
BasePriority : Normal
FileSize : 337 KB
FileVersion : 6, 0, 0, 515
ProductVersion : 6, 0, 0, 0
Copyright : Copyright
CompanyName : GRISOFT s.r.o.
FileDescription : AVG Control Center
InternalName : AvgCC32
OriginalFilename : AvgCC32.EXE
ProductName : AVG Anti-Virus System
Created on : 31/03/2004 14:34:31
Last accessed : 10/06/2004 22:00:00
Last modified : 05/03/2004 4:00:00
#:29 [dllhost.exe]
FilePath : C:\WINDOWS\System32\
ThreadCreationTime : 11-06-2004 16:08:43
BasePriority : Normal
FileSize : 4 KB
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : COM Surrogate
InternalName : dllhost.exe
OriginalFilename : dllhost.exe
ProductName : Microsoft
Created on : 24/08/2001 11:00:00
Last accessed : 10/06/2004 22:00:00
Last modified : 24/08/2001 11:00:00
#:30 [ad-aware.exe]
FilePath : C:\ARCHIV~1\LAVASOFT\AD-AWA~1\
ThreadCreationTime : 11-06-2004 20:24:06
BasePriority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 05/06/2004 23:13:14
Last accessed : 10/06/2004 22:00:00
Last modified : 12/07/2003 19:00:20
Resultados Escaneo de la memoria:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Nuevos objetos: 0
Objetos encontrados hasta ahora: 0
Inicio escaneo del Registro
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Alexa Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_LOCAL_MACHINE
Objeto : SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
eAcceleration Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_LOCAL_MACHINE
Objeto : SOFTWARE\Microsoft\Code Store Database\Distribution Units\{2119776A-F1AD-4FCD-9548-F1E1C615350C}
EGroup Dialer Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Malware
Comentario :
Rootkey : HKEY_CURRENT_USER
Objeto : Software\EGDHTML
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : CLSID\{19068197-6f58-4e8a-8007-7155a68ca967}
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : CLSID\{75A603E7-8BB7-4272-ABBE-9846FF1241C1}
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : CLSID\{d7a82a12-05f5-42d8-b30d-6ef995075d2d}
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : Interface\{1EF28CC5-8D97-4310-B71B-CA34EE15B897}
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : Interface\{43CDAD65-AA0D-4701-8108-117F86613B69}
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : Interface\{6D3F48F4-B40A-4C3F-A95C-85E23C3A8A91}
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : magiccontrol.magiccomponent
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : magiccontrol.magiccomponent.1
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : plugin_mc.mcplugin
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : plugin_mc.mcplugin.1
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : TypeLib\{82C0673C-F1D1-47BA-B904-AB0DE82300BC}
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : TYPELIB\{ba49bd6a-039c-428e-af33-8c1288d75a7b}
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : TYPELIB\{d55589f7-2879-47e8-9c66-27de6477a814}
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Malware
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : CLSID\{efb22865-f3bc-4309-adfa-c8e078a7f762}
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Malware
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : Interface\{639581D0-8376-4073-B73B-45993FA45156}
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Malware
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : Interface\{66B0C472-A6B5-4E86-8330-F4875AF90929}
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Malware
Comentario :
Rootkey : HKEY_LOCAL_MACHINE
Objeto : SOFTWARE\Microsoft\Code Store Database\Distribution Units\{EFB22865-F3BC-4309-ADFA-C8E078A7F762}
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Malware
Comentario :
Rootkey : HKEY_CURRENT_USER
Objeto : Software\SysWebTelecom
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Malware
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : syswebtelecom.syswebtelecom
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Malware
Comentario :
Rootkey : HKEY_CLASSES_ROOT
Objeto : TYPELIB\{21de6877-97c0-4fc7-9c16-666b996db4a2}
Windows Objeto reconocido!
Tipo : RegFecha
Fecha :
Categoria : Vulnerability
Comentario : Possible virus infection, SCR file extension compromised
Rootkey : HKEY_CLASSES_ROOT
Objeto : scrfile\shell\open\command
Valor :
Fecha :
Windows Objeto reconocido!
Tipo : RegFecha
Fecha :
Categoria : Vulnerability
Comentario : Shell Possibly Compromised
Rootkey : HKEY_LOCAL_MACHINE
Objeto : SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Valor : Shell
Fecha :
Resultados Escaneo del registro:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Nuevos objetos: 25
Objetos encontrados hasta ahora: 25
Inicio escaneo profundo del Registro
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Posible secuestro del navegador : Software\Microsoft\Internet Explorer\MainStart Pageabout:blank
Possible Browser Hijack attempt Objeto reconocido!
Tipo : RegFecha
Fecha : "about:blank
"
Categoria : Vulnerability
Comentario : Posible secuestro del navegador
Rootkey : HKEY_CURRENT_USER
Objeto : Software\Microsoft\Internet Explorer\Main
Valor : Start Page
Fecha : "about:blank
"
Possible Browser Hijack attempt Objeto reconocido!
Tipo : RegKey
Fecha : Software\Clean Space 8 "ZZ_ie8a"
Categoria : Vulnerability
Comentario : Posible secuestro del navegador
Rootkey : HKEY_LOCAL_MACHINE
Objeto : Software\Clean Space 8
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Malware
Comentario :
Rootkey : HKEY_LOCAL_MACHINE
Objeto : Software\microsoft\windows\currentversion\moduleusage\C:/WINDOWS/Downloaded Program Files/SysWebTelecomInt.dll
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : Archivo
Fecha : syswebtelecomint.dll
Categoria : Malware
Comentario :
Objeto : c:\windows\downloaded program files\
FileSize : 50 KB
FileVersion : 1, 0, 0, 5
ProductVersion : 1, 0, 0, 5
Copyright : Copyright
FileDescription : SysWebTelecomInt
InternalName : SysWebTelecomInt
OriginalFilename : SysWebTelecomInt.dll
Created on : 30/09/2003 16:45:42
Last accessed : 10/06/2004 22:00:00
Last modified : 30/09/2003 16:45:42
SysWeb-Telecom Dialer Objeto reconocido!
Tipo : RegValor
Fecha : c:\windows\downloaded program files\syswebtelecomint.dll
Categoria : Malware
Comentario :
Rootkey : HKEY_LOCAL_MACHINE
Objeto : Software\Microsoft\Windows\CurrentVersion\SharedDLLs
Valor : C:\WINDOWS\Downloaded Program Files\SysWebTelecomInt.dll
Resultados Escaneo Profundo del registro:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Nuevos objetos: 4
Objetos encontrados hasta ahora: 30
Escaneando y examinando archivos en profundidad (C:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Tracking Cookie Objeto reconocido!
Tipo : Archivo
Fecha : sonia@atdmt[1].txt
Categoria : Data Miner
Comentario :
Objeto : C:\Documents and Settings\Sonia\Cookies\
Created on : 11/06/2004 5:16:34
Last accessed : 10/06/2004 22:00:00
Last modified : 11/06/2004 5:16:36
Tracking Cookie Objeto reconocido!
Tipo : Archivo
Fecha : sonia@kelkoo[1].txt
Categoria : Data Miner
Comentario :
Objeto : C:\Documents and Settings\Sonia\Cookies\
Created on : 07/06/2004 13:04:14
Last accessed : 10/06/2004 22:00:00
Last modified : 07/06/2004 13:04:16
Tracking Cookie Objeto reconocido!
Tipo : Archivo
Fecha :
[email protected][1].txt
Categoria : Data Miner
Comentario :
Objeto : C:\Documents and Settings\Sonia\Cookies\
Created on : 08/06/2004 9:03:13
Last accessed : 10/06/2004 22:00:00
Last modified : 08/06/2004 9:03:16
Tracking Cookie Objeto reconocido!
Tipo : Archivo
Fecha :
[email protected][2].txt
Categoria : Data Miner
Comentario :
Objeto : C:\Documents and Settings\Sonia\Cookies\
Created on : 09/06/2004 10:19:35
Last accessed : 10/06/2004 22:00:00
Last modified : 09/06/2004 10:19:36
Tracking Cookie Objeto reconocido!
Tipo : Archivo
Fecha : sonia@cgi-bin[1].txt
Categoria : Data Miner
Comentario :
Objeto : C:\Documents and Settings\Sonia\Cookies\
Created on : 11/06/2004 9:14:55
Last accessed : 10/06/2004 22:00:00
Last modified : 11/06/2004 9:14:56
Tracking Cookie Objeto reconocido!
Tipo : Archivo
Fecha : sonia@tradedoubler[2].txt
Categoria : Data Miner
Comentario :
Objeto : C:\Documents and Settings\Sonia\Cookies\
Created on : 11/06/2004 9:22:59
Last accessed : 10/06/2004 22:00:00
Last modified : 11/06/2004 9:23:00
Tracking Cookie Objeto reconocido!
Tipo : Archivo
Fecha :
[email protected][2].txt
Categoria : Data Miner
Comentario :
Objeto : C:\Documents and Settings\Sonia\Cookies\
Created on : 11/06/2004 9:35:15
Last accessed : 10/06/2004 22:00:00
Last modified : 11/06/2004 9:36:24
Resultados Escaneo del disco: C:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Nuevos objetos: 0
Objetos encontrados hasta ahora: 37
Escaneando y examinando archivos en profundidad (D:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Resultados Escaneo del disco: D:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Nuevos objetos: 0
Objetos encontrados hasta ahora: 37
Scanning Hosts file(C:\WINDOWS\System32\drivers\etc\hosts)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
ATENCION!
Bad hosts file entry:127.0.0.1:connect.online-dialer.com
Redirected hostfile entry Objeto reconocido!
Tipo : Hosts file
Fecha : 127.0.0.1
Categoria : Misc
Comentario : Possible CoolWebSearch Hijack
Bad Hostfile entry : 127.0.0.1:connect.online-dialer.com
ATENCION!
Bad hosts file entry:127.0.0.1:www.0190-dialer.com
Redirected hostfile entry Objeto reconocido!
Tipo : Hosts file
Fecha : 127.0.0.1
Categoria : Misc
Comentario : Possible CoolWebSearch Hijack
Bad Hostfile entry : 127.0.0.1:www.0190-dialer.com
Hosts file scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
903 entries scanned.
Nuevos objetos:2
Objetos encontrados hasta ahora: 39
Performing conditional scans..
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
EGroup Dialer Objeto reconocido!
Tipo : Carpeta
Categoria : Malware
Comentario :
Objeto : c:\archivos de programa\Instant Access
EGroup Dialer Objeto reconocido!
Tipo : Archivo
Fecha : center
Categoria : Malware
Comentario :
Objeto : c:\archivos de programa\instant access\
Created on : 16/05/2004 13:51:46
Last accessed : 15/05/2004 22:00:00
Last modified : 16/05/2004 13:51:48
EGroup Dialer Objeto reconocido!
Tipo : Archivo
Fecha : p2e
Categoria : Malware
Comentario :
Objeto : c:\archivos de programa\instant access\
Created on : 16/05/2004 13:51:46
Last accessed : 15/05/2004 22:00:00
Last modified : 16/05/2004 13:51:48
EGroup Dialer Objeto reconocido!
Tipo : Archivo
Fecha : mseggrpid.dll
Categoria : Malware
Comentario :
Objeto : c:\windows\system32\
Created on : 16/05/2004 13:51:46
Last accessed : 10/06/2004 22:00:00
Last modified : 16/05/2004 13:51:48
MagicControl Objeto reconocido!
Tipo : RegKey
Fecha :
Categoria : Data Miner
Comentario :
Rootkey : HKEY_CURRENT_USER
Objeto : Software\mc
MagicControl Objeto reconocido!
Tipo : Archivo
Fecha : msegcompid.dll
Categoria : Data Miner
Comentario :
Objeto : c:\windows\system32\
Created on : 16/05/2004 13:51:54
Last accessed : 10/06/2004 22:00:00
Last modified : 16/05/2004 13:51:56
Conditional scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Nuevos objetos: 6
Objetos encontrados hasta ahora: 45
22:40:48 Escaneo completo
Resumen Del escaneo
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Total tiempo escaneo:00:16:22:883
Objetos Escaneados:109761
Objetos identificados:45
Objetos ignorados:0
Nuevos objetos:45
