Foros de daboweb
SEGURIDAD INFORMATICA, Firewall, parches, vacunas, antivirus, anti troyanos, spyware etc => Seguridad Informatica - Firewall - Virus - Troyanos - Spyware - Ad Aware - Malware => Mensaje iniciado por: Gloria en 23 de Junio de 2004, 12:00:39 pm
-
Hola Fats,
Me ha dicho Choche que me podrías ayudar. Instalé el Ad-aware y me dió el siguiente resultado. Que hago?? no sé nada de informática así que te ruego que si me puedes ayudar me lo expliques como si tuviera 5 años :wink: Lo puse en cuarentena (y se crearon don archivos iguales :roll:
Gracias de antemano!
Lavasoft Ad-aware Personal Build 6.181
Logfile created on :lunes, 21 de junio de 2004 16:34:11
Created with Ad-aware Personal, free for private use.
Using reference-file :01R298 20.04.2004
______________________________________________________
Reffile status:
=========================
Reference file loaded:
Reference Number : 01R298 20.04.2004
Internal build : 229
File location : C:\Archivos de programa\Lavasoft\Ad-aware 6\reflist.ref
Total size : 1067557 Bytes
Signature data size : 1049356 Bytes
Reference data size : 18137 Bytes
Signatures total : 23569
Target categories : 10
Target families : 455
Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium II
Memory available:10 %
Total physical memory:196132 kb
Available physical memory:19424 kb
Total page file size:283752 kb
Available on page file:60544 kb
Total virtual memory:2097024 kb
Available virtual memory:2053784 kb
OS:Windows 2000
Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file
21-06-2004 16:34:11 - Scan started. (Smart mode)
Listing running processes
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ThreadCreationTime : 21-06-2004 7:02:36
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:02:41
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:02:43
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:02:44
BasePriority : Normal
FileSize : 87 KB
FileVersion : 5.00.2195.6700
ProductVersion : 5.00.2195.6700
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Aplicaci
InternalName : services.exe
OriginalFilename : services.exe
ProductName : Sistema operativo Microsoft(R) Windows (R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:5 [lsass.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:02:44
BasePriority : Normal
FileSize : 36 KB
FileVersion : 5.00.2195.6695
ProductVersion : 5.00.2195.6695
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : DLL de servidor y ejecutable LSA (versi
InternalName : lsasrv.dll and lsass.exe
OriginalFilename : lsasrv.dll and lsass.exe
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:6 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:02:49
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 20/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:7 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:02:49
BasePriority : Normal
FileSize : 44 KB
FileVersion : 5.00.2195.6659
ProductVersion : 5.00.2195.6659
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolss.exe
OriginalFilename : spoolss.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 01/04/2003 17:52:41
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:8 [ccevtmgr.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ThreadCreationTime : 21-06-2004 7:02:49
BasePriority : Normal
FileSize : 309 KB
FileVersion : 1.03.4
ProductVersion : 1.03.4
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Event Manager Service
InternalName : ccEvtMgr
OriginalFilename : ccEvtMgr.exe
ProductName : Event Manager
Created on : 17/11/2003 8:43:51
Last accessed : 20/06/2004 22:00:00
Last modified : 03/12/2002 15:22:12
#:9 [nisum.exe]
FilePath : C:\Archivos de programa\Norton Internet Security\
ThreadCreationTime : 21-06-2004 7:02:50
BasePriority : Normal
FileSize : 137 KB
FileVersion : 6.02.2003
ProductVersion : 6.02.2003
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton Internet Security NISUM
InternalName : NISUM
OriginalFilename : NISUM.exe
ProductName : Norton Internet Security
Created on : 18/12/2003 7:50:15
Last accessed : 20/06/2004 22:00:00
Last modified : 14/03/2003 3:48:46
#:10 [ccpxysvc.exe]
FilePath : C:\Archivos de programa\Norton Internet Security\
ThreadCreationTime : 21-06-2004 7:02:58
BasePriority : Normal
FileSize : 33 KB
FileVersion : 6.02.2003
ProductVersion : 6.02.2003
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton Internet Security Proxy Service
InternalName : ccPxySvc
OriginalFilename : ccPxySvc.exe
ProductName : Norton Internet Security
Created on : 18/12/2003 7:50:10
Last accessed : 20/06/2004 22:00:00
Last modified : 24/03/2003 22:16:42
#:11 [svchost.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 21-06-2004 7:02:58
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 20/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:12 [navapsvc.exe]
FilePath : C:\Archivos de programa\Norton AntiVirus\
ThreadCreationTime : 21-06-2004 7:02:59
BasePriority : Normal
FileSize : 113 KB
FileVersion : 9.05.1015
ProductVersion : 9.05.1015
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton AntiVirus Auto-Protect Service
InternalName : NAVAPSVC
OriginalFilename : NAVAPSVC.EXE
ProductName : Norton AntiVirus
Created on : 17/11/2003 8:43:23
Last accessed : 20/06/2004 22:00:00
Last modified : 21/11/2002 8:14:18
#:13 [regsvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:03:01
BasePriority : Normal
FileSize : 66 KB
FileVersion : 5.00.2195.6701
ProductVersion : 5.00.2195.6701
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Remote Registry Service
InternalName : regsvc
OriginalFilename : REGSVC.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 18/06/2004 14:14:22
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:14 [mstask.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:03:03
BasePriority : Normal
FileSize : 117 KB
FileVersion : 4.71.2195.6704
ProductVersion : 4.71.2195.6704
Copyright : Copyright (C) Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Motor de Programador de tareas
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Programador de tareas de Microsoft
Created on : 18/06/2004 14:09:41
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:15 [tcpsvcs.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 21-06-2004 7:03:04
BasePriority : Normal
FileSize : 24 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : TCP/IP Services Application
InternalName : TCPSVCS.EXE
OriginalFilename : TCPSVCS.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 20/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:16 [winmgmt.exe]
FilePath : C:\WINNT\System32\WBEM\
ThreadCreationTime : 21-06-2004 7:03:05
BasePriority : Normal
FileSize : 192 KB
FileVersion : 1.50.1085.0100
ProductVersion : 1.50.1085.0100
Copyright : Copyright (C) Microsoft Corp. 1995-1999
CompanyName : Microsoft Corporation
FileDescription : Instrumental de administraci
InternalName : WINMGMT
ProductName : Instrumental de administraci
Created on : 18/06/2004 14:19:26
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:17 [mspmspsv.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 21-06-2004 7:03:09
BasePriority : Normal
FileSize : 52 KB
FileVersion : 7.10.00.3059
ProductVersion : 7.10.00.3059
Copyright : Copyright (C) Microsoft Corp. 1981-2000
CompanyName : Microsoft Corporation
FileDescription : WMDM PMSP Service
InternalName : MSPMSPSV.EXE
OriginalFilename : MSPMSPSV.EXE
ProductName : Microsoft (R) DRM
Created on : 05/09/2003 9:55:53
Last accessed : 20/06/2004 22:00:00
Last modified : 01/10/2001 17:48:44
#:18 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:03:09
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 20/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:19 [explorer.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 21-06-2004 7:05:30
BasePriority : Normal
FileSize : 238 KB
FileVersion : 5.00.3700.6690
ProductVersion : 5.00.3700.6690
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 18/06/2004 14:01:28
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:20 [qttask.exe]
FilePath : C:\Archivos de programa\QuickTime\
ThreadCreationTime : 21-06-2004 7:05:40
BasePriority : Normal
FileSize : 76 KB
FileVersion : 6.0
ProductVersion : QuickTime 6.0
CompanyName : Apple Computer, Inc.
InternalName : QuickTime Task
OriginalFilename : QTTask.exe
ProductName : QuickTime
Created on : 02/06/2003 10:24:05
Last accessed : 20/06/2004 22:00:00
Last modified : 02/06/2003 10:24:06
#:21 [realsched.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Real\Update_OB\
ThreadCreationTime : 21-06-2004 7:05:41
BasePriority : Normal
FileSize : 148 KB
FileVersion : 0.1.0.1622
ProductVersion : 0.1.0.1622
Copyright : Copyright
CompanyName : RealNetworks, Inc.
FileDescription : RealNetworks Scheduler
InternalName : schedapp
OriginalFilename : realsched.exe
ProductName : RealOne Player (32-bit)
Created on : 23/10/2003 14:34:26
Last accessed : 20/06/2004 22:00:00
Last modified : 23/10/2003 14:34:28
#:22 [ccapp.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ThreadCreationTime : 21-06-2004 7:05:42
BasePriority : Normal
FileSize : 54 KB
FileVersion : 1.08.01
ProductVersion : 1.08.01
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client CC App
InternalName : ccApp
OriginalFilename : ccApp.exe
ProductName : Common Client
Created on : 05/12/2003 7:39:49
Last accessed : 20/06/2004 22:00:00
Last modified : 15/07/2003 12:58:08
#:23 [internat.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 7:05:48
BasePriority : Normal
FileSize : 20 KB
FileVersion : 5.00.2920.0000
ProductVersion : 5.00.2920.0000
Copyright : Copyright (C) Microsoft Corp. 1994-1999
CompanyName : Microsoft Corporation
FileDescription : Aplicaci
InternalName : INTERNAT
OriginalFilename : INTERNAT.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 20/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:24 [wzqkpick.exe]
FilePath : C:\Archivos de programa\WinZip\
ThreadCreationTime : 21-06-2004 7:06:00
BasePriority : Normal
FileSize : 116 KB
FileVersion : 1.0 (32-bit)
ProductVersion : 9.0 (6028)
Copyright : Copyright (c) WinZip Computing, Inc. 1991-2004 - All Rights Reserved
CompanyName : WinZip Computing, Inc.
FileDescription : WinZip Executable
InternalName : WZQKPICK.EXE
OriginalFilename : WZQKPICK.EXE
ProductName : WinZip
Created on : 18/06/2004 14:16:40
Last accessed : 20/06/2004 22:00:00
Last modified : 11/02/2004 7:00:00
#:25 [outlook.exe]
FilePath : C:\Archivos de programa\Microsoft Office\Office\
ThreadCreationTime : 21-06-2004 7:07:05
BasePriority : Normal
FileSize : 56 KB
FileVersion : 9.0.2416
ProductVersion : 9.0.2416
Copyright : Copyright
CompanyName : Microsoft Corporation
FileDescription : Microsoft Outlook
InternalName : Outlook
OriginalFilename : Outlook.exe
ProductName : Microsoft Outlook
Created on : 16/12/1998 19:09:20
Last accessed : 20/06/2004 22:00:00
Last modified : 16/12/1998 19:09:20
#:26 [svchost.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 21-06-2004 7:12:16
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 20/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:27 [tca.exe]
FilePath : C:\Archivos de programa\The Cleaner\
ThreadCreationTime : 21-06-2004 8:33:26
BasePriority : Normal
FileSize : 617 KB
FileVersion : 3.1.0.3073
ProductVersion : 3.1.0.0
Copyright : (c) 2000-2004 MooSoft Development
CompanyName : MooSoft Development
FileDescription : The Cleaner Active Process Monitor
InternalName : TCActive!
OriginalFilename : tca.exe
ProductName : TCActive
Created on : 09/04/2004 7:26:37
Last accessed : 20/06/2004 22:00:00
Last modified : 09/04/2004 7:26:38
#:28 [tcm.exe]
FilePath : C:\Archivos de programa\The Cleaner\
ThreadCreationTime : 21-06-2004 8:33:26
BasePriority : Normal
FileSize : 379 KB
FileVersion : 2.1.0.2043
ProductVersion : 2.1.0.0
Copyright : 2000-2004 MooSoft Development
CompanyName : MooSoft Development
FileDescription : The Cleaner Registry and File Monitor
InternalName : TCMonitor
OriginalFilename : tcm.exe
ProductName : TC Monitor
Created on : 13/03/2004 11:48:53
Last accessed : 20/06/2004 22:00:00
Last modified : 13/03/2004 11:48:54
#:29 [netscp6.exe]
FilePath : C:\Archivos de programa\Netscape\Netscape 6\
ThreadCreationTime : 21-06-2004 12:58:36
BasePriority : Normal
FileSize : 372 KB
FileVersion : 6.2.3.0
ProductVersion : 6.2.3
Copyright : Copyright (C) 2000-2002 Netscape Communications Corporation.
CompanyName : Netscape Communications Corporation
FileDescription : Netscape application file
InternalName : NETSCAPE
OriginalFilename : NETSCP6.EXE
ProductName : NETSCAPE
Created on : 18/06/2004 15:01:44
Last accessed : 20/06/2004 22:00:00
Last modified : 08/05/2002 12:39:00
#:30 [mmc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 13:07:38
BasePriority : Normal
FileSize : 591 KB
FileVersion : 5.00.2195.6601
ProductVersion : 5.00.2195.6601
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Consola de administraci
InternalName : mmc.exe
OriginalFilename : mmc.exe
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 18/06/2004 14:07:20
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:31 [dfrgfat.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 21-06-2004 13:07:53
BasePriority : Normal
FileSize : 60 KB
FileVersion : 5.00.2195.6605
ProductVersion : 5.00.2195.6605
CompanyName : Executive Software International, Inc.
FileDescription : M
InternalName : DFRGFAT.EXE
OriginalFilename : DFRGFAT.EXE
ProductName : Desfragmentador de disco Diskeeper (TM)
Created on : 18/06/2004 14:00:06
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:32 [ad-aware.exe]
FilePath : C:\Archivos de programa\Lavasoft\Ad-aware 6\
ThreadCreationTime : 21-06-2004 14:26:10
BasePriority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 21/06/2004 14:24:30
Last accessed : 20/06/2004 22:00:00
Last modified : 12/07/2003 19:00:20
Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Alexa Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
HotBar Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{69FD62B1-0216-4C31-8D55-840ED86B7C8F}
HotBar Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : HBInstIE.HbInstObj
HotBar Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : HBInstIE.HbInstObj.1
HotBar Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{8F59F897-6923-4B3B-8156-4E55D19DE99A}
HotBar Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : Software\Hotbar
HotBar Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Hotbar
HotBar Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : TypeLib\{94BEB7A2-36B7-46DC-8AD1-81A8332409C0}
SysWeb-Telecom Dialer Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{639581D0-8376-4073-B73B-45993FA45156}
SysWeb-Telecom Dialer Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{66B0C472-A6B5-4E86-8330-F4875AF90929}
SysWeb-Telecom Dialer Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Code Store Database\Distribution Units\{EFB22865-F3BC-4309-ADFA-C8E078A7F762}
SysWeb-Telecom Dialer Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : Software\SysWebTelecom
SysWeb-Telecom Dialer Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{efb22865-f3bc-4309-adfa-c8e078a7f762}
SysWeb-Telecom Dialer Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : syswebtelecom.syswebtelecom
SysWeb-Telecom Dialer Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : TYPELIB\{21de6877-97c0-4fc7-9c16-666b996db4a2}
HotBar Object recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "Hotbar"
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value : Hotbar
Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 16
Objects found so far: 16
Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
SysWeb-Telecom Dialer Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\microsoft\windows\currentversion\moduleusage\C:/WINNT/Downloaded Program Files/SysWebTelecomInt.dll
SysWeb-Telecom Dialer Object recognized!
Type : File
Data : syswebtelecomint.dll
Category : Malware
Comment :
Object : c:\winnt\downloaded program files\
FileSize : 50 KB
FileVersion : 1, 0, 0, 5
ProductVersion : 1, 0, 0, 5
Copyright : Copyright
FileDescription : SysWebTelecomInt
InternalName : SysWebTelecomInt
OriginalFilename : SysWebTelecomInt.dll
Created on : 30/09/2003 16:45:42
Last accessed : 20/06/2004 22:00:00
Last modified : 30/09/2003 16:45:42
SysWeb-Telecom Dialer Object recognized!
Type : RegValue
Data : c:\winnt\downloaded program files\syswebtelecomint.dll
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\SharedDLLs
Value : C:\WINNT\Downloaded Program Files\SysWebTelecomInt.dll
Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 2
Objects found so far: 19
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Tracking Cookie Object recognized!
Type : File
Data : gloria@realmedia[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/04/2003 9:44:06
Last accessed : 20/06/2004 22:00:00
Last modified : 08/04/2003 9:44:08
Tracking Cookie Object recognized!
Type : File
Data : gloria@adtech[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 04/04/2003 14:36:03
Last accessed : 20/06/2004 22:00:00
Last modified : 04/04/2003 14:36:06
Tracking Cookie Object recognized!
Type : File
Data : gloria@gator[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 02/10/2003 10:11:51
Last accessed : 20/06/2004 22:00:00
Last modified : 02/10/2003 10:11:52
Tracking Cookie Object recognized!
Type : File
Data : gloria@doubleclick[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 03/04/2003 13:44:25
Last accessed : 20/06/2004 22:00:00
Last modified : 03/04/2003 13:48:26
Tracking Cookie Object recognized!
Type : File
Data : gloria@clickbank[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 03/07/2003 15:17:42
Last accessed : 20/06/2004 22:00:00
Last modified : 03/07/2003 15:17:44
Tracking Cookie Object recognized!
Type : File
Data : gloria@atdmt[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/04/2003 14:44:17
Last accessed : 20/06/2004 22:00:00
Last modified : 08/04/2003 14:44:18
Tracking Cookie Object recognized!
Type : File
Data : gloria@bfast[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 15/04/2003 13:31:26
Last accessed : 20/06/2004 22:00:00
Last modified : 15/04/2003 13:31:28
Tracking Cookie Object recognized!
Type : File
Data : gloria@cgi-bin[3].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 20/05/2003 15:35:55
Last accessed : 20/06/2004 22:00:00
Last modified : 20/05/2003 15:35:56
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 16/04/2003 15:14:27
Last accessed : 20/06/2004 22:00:00
Last modified : 16/04/2003 15:14:28
Tracking Cookie Object recognized!
Type : File
Data : gloria@cgi-bin[6].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 17/10/2003 14:37:14
Last accessed : 20/06/2004 22:00:00
Last modified : 17/10/2003 14:37:16
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
FileSize : 1 KB
Created on : 30/09/2003 9:27:09
Last accessed : 20/06/2004 22:00:00
Last modified : 30/09/2003 9:28:12
Tracking Cookie Object recognized!
Type : File
Data : gloria@ad-logics[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 30/04/2003 10:48:47
Last accessed : 20/06/2004 22:00:00
Last modified : 30/04/2003 10:50:00
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 19/06/2003 15:16:03
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 15:16:04
Tracking Cookie Object recognized!
Type : File
Data : gloria@qksrv[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 02/09/2003 7:26:33
Last accessed : 20/06/2004 22:00:00
Last modified : 13/10/2003 15:59:56
Tracking Cookie Object recognized!
Type : File
Data : gloria@addynamix[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 15/07/2003 14:37:59
Last accessed : 20/06/2004 22:00:00
Last modified : 15/07/2003 14:38:00
Tracking Cookie Object recognized!
Type : File
Data : gloria@bravenet[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/09/2003 9:19:18
Last accessed : 20/06/2004 22:00:00
Last modified : 08/09/2003 9:19:20
Tracking Cookie Object recognized!
Type : File
Data : gloria@zedo[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 12/09/2003 9:25:12
Last accessed : 20/06/2004 22:00:00
Last modified : 12/09/2003 9:25:26
Tracking Cookie Object recognized!
Type : File
Data : gloria@centrport[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 09/05/2003 15:08:08
Last accessed : 20/06/2004 22:00:00
Last modified : 09/05/2003 15:08:10
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 13/05/2003 13:09:38
Last accessed : 20/06/2004 22:00:00
Last modified : 13/05/2003 13:09:40
Tracking Cookie Object recognized!
Type : File
Data : gloria@cgi-bin[4].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 30/06/2003 15:02:37
Last accessed : 20/06/2004 22:00:00
Last modified : 30/06/2003 15:02:38
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 22/05/2003 8:34:26
Last accessed : 20/06/2004 22:00:00
Last modified : 22/05/2003 8:34:28
Tracking Cookie Object recognized!
Type : File
Data : gloria@fortunecity[3].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 10/06/2003 10:48:05
Last accessed : 20/06/2004 22:00:00
Last modified : 25/09/2003 16:36:32
Tracking Cookie Object recognized!
Type : File
Data : gloria@tradedoubler[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 10/10/2003 8:29:55
Last accessed : 20/06/2004 22:00:00
Last modified : 23/10/2003 14:51:56
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
FileSize : 2 KB
Created on : 26/05/2003 15:13:59
Last accessed : 20/06/2004 22:00:00
Last modified : 02/06/2003 10:49:56
Tracking Cookie Object recognized!
Type : File
Data : gloria@cgi-bin[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 29/05/2003 10:24:05
Last accessed : 20/06/2004 22:00:00
Last modified : 29/05/2003 10:24:06
Tracking Cookie Object recognized!
Type : File
Data : gloria@weborama[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 03/07/2003 8:33:53
Last accessed : 20/06/2004 22:00:00
Last modified : 03/07/2003 8:33:54
Tracking Cookie Object recognized!
Type : File
Data : gloria@2o7[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
FileSize : 7 KB
Created on : 12/09/2003 14:53:09
Last accessed : 20/06/2004 22:00:00
Last modified : 09/10/2003 13:09:20
Tracking Cookie Object recognized!
Type : File
Data : gloria@cgi-bin[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 05/08/2003 13:48:47
Last accessed : 20/06/2004 22:00:00
Last modified : 05/08/2003 13:48:48
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 09/06/2003 10:11:20
Last accessed : 20/06/2004 22:00:00
Last modified : 09/06/2003 10:11:30
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 09/06/2003 17:11:05
Last accessed : 20/06/2004 22:00:00
Last modified : 09/06/2003 17:12:42
Tracking Cookie Object recognized!
Type : File
Data : gloria@tribalfusion[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 04/06/2003 17:32:45
Last accessed : 20/06/2004 22:00:00
Last modified : 15/09/2003 8:53:50
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
FileSize : 1 KB
Created on : 29/04/2003 10:29:12
Last accessed : 20/06/2004 22:00:00
Last modified : 17/06/2003 13:35:18
Tracking Cookie Object recognized!
Type : File
Data : gloria@targetnet[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 20/06/2003 15:45:48
Last accessed : 20/06/2004 22:00:00
Last modified : 20/06/2003 15:45:50
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 16/06/2003 8:35:55
Last accessed : 20/06/2004 22:00:00
Last modified : 16/06/2003 8:36:18
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 17/06/2003 9:16:11
Last accessed : 20/06/2004 22:00:00
Last modified : 17/06/2003 9:19:08
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 03/07/2003 15:12:43
Last accessed : 20/06/2004 22:00:00
Last modified : 03/07/2003 15:12:48
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 19/06/2003 15:15:52
Last accessed : 20/06/2004 22:00:00
Last modified : 19/06/2003 15:15:54
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 12/08/2003 13:06:01
Last accessed : 20/06/2004 22:00:00
Last modified : 12/08/2003 13:06:02
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 27/06/2003 9:31:34
Last accessed : 20/06/2004 22:00:00
Last modified : 27/06/2003 9:31:36
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 10/07/2003 14:26:28
Last accessed : 20/06/2004 22:00:00
Last modified : 10/07/2003 14:26:30
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 01/07/2003 10:29:37
Last accessed : 20/06/2004 22:00:00
Last modified : 01/07/2003 10:36:44
Tracking Cookie Object recognized!
Type : File
Data : gloria@spylog[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 02/07/2003 14:55:32
Last accessed : 20/06/2004 22:00:00
Last modified : 02/07/2003 14:55:34
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 07/07/2003 10:47:51
Last accessed : 20/06/2004 22:00:00
Last modified : 07/07/2003 10:47:52
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 18/07/2003 15:26:11
Last accessed : 20/06/2004 22:00:00
Last modified : 18/07/2003 15:26:12
Tracking Cookie Object recognized!
Type : File
Data : gloria@cgi-bin[7].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 17/10/2003 14:48:52
Last accessed : 20/06/2004 22:00:00
Last modified : 17/10/2003 14:48:54
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
FileSize : 2 KB
Created on : 12/09/2003 9:52:31
Last accessed : 20/06/2004 22:00:00
Last modified : 12/09/2003 9:52:32
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/09/2003 9:54:02
Last accessed : 20/06/2004 22:00:00
Last modified : 08/09/2003 9:54:04
Tracking Cookie Object recognized!
Type : File
Data : gloria@commission-junction[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 02/09/2003 7:26:35
Last accessed : 20/06/2004 22:00:00
Last modified : 13/10/2003 15:59:56
Tracking Cookie Object recognized!
Type : File
Data : gloria@pointroll[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 28/07/2003 15:59:06
Last accessed : 20/06/2004 22:00:00
Last modified : 28/07/2003 15:59:08
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment : www.searchtraffic.com
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 30/07/2003 15:44:47
Last accessed : 20/06/2004 22:00:00
Last modified : 30/07/2003 15:44:48
Tracking Cookie Object recognized!
Type : File
Data : gloria@bluestreak[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 06/08/2003 8:24:45
Last accessed : 20/06/2004 22:00:00
Last modified : 06/08/2003 8:24:46
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 06/08/2003 13:55:15
Last accessed : 20/06/2004 22:00:00
Last modified : 06/08/2003 13:55:16
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/08/2003 10:14:03
Last accessed : 20/06/2004 22:00:00
Last modified : 08/08/2003 10:14:04
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/08/2003 10:14:21
Last accessed : 20/06/2004 22:00:00
Last modified : 08/08/2003 10:14:22
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/08/2003 10:20:36
Last accessed : 20/06/2004 22:00:00
Last modified : 08/08/2003 10:20:38
Tracking Cookie Object recognized!
Type : File
Data : gloria@questionmarket[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 28/07/2003 15:59:11
Last accessed : 20/06/2004 22:00:00
Last modified : 08/09/2003 9:58:52
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 12/08/2003 13:19:19
Last accessed : 20/06/2004 22:00:00
Last modified : 12/08/2003 13:19:20
Tracking Cookie Object recognized!
Type : File
Data : gloria@fortunecity[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 25/09/2003 17:16:17
Last accessed : 20/06/2004 22:00:00
Last modified : 25/09/2003 17:16:18
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 05/09/2003 14:20:30
Last accessed : 20/06/2004 22:00:00
Last modified : 05/09/2003 14:20:32
Tracking Cookie Object recognized!
Type : File
Data : gloria@accumail[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 22/09/2003 14:50:47
Last accessed : 20/06/2004 22:00:00
Last modified : 22/09/2003 14:50:52
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 09/09/2003 13:56:45
Last accessed : 20/06/2004 22:00:00
Last modified : 09/09/2003 13:56:46
Tracking Cookie Object recognized!
Type : File
Data : gloria@valueclick[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 12/09/2003 7:33:44
Last accessed : 20/06/2004 22:00:00
Last modified : 12/09/2003 7:33:46
Tracking Cookie Object recognized!
Type : File
Data : gloria@advertising[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 09/10/2003 10:58:24
Last accessed : 20/06/2004 22:00:00
Last modified : 09/10/2003 10:58:26
Tracking Cookie Object recognized!
Type : File
Data : gloria@trafficmp[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 23/06/2003 14:24:34
Last accessed : 20/06/2004 22:00:00
Last modified : 16/10/2003 15:54:54
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 29/09/2003 15:46:29
Last accessed : 20/06/2004 22:00:00
Last modified : 29/09/2003 15:46:30
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 22/09/2003 13:27:47
Last accessed : 20/06/2004 22:00:00
Last modified : 22/09/2003 13:29:58
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 22/10/2003 14:00:26
Last accessed : 20/06/2004 22:00:00
Last modified : 22/10/2003 14:00:28
Tracking Cookie Object recognized!
Type : File
Data : gloria@adviva[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 29/09/2003 15:46:45
Last accessed : 20/06/2004 22:00:00
Last modified : 29/09/2003 15:46:46
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 16/10/2003 15:54:45
Last accessed : 20/06/2004 22:00:00
Last modified : 16/10/2003 15:54:48
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/10/2003 15:24:30
Last accessed : 20/06/2004 22:00:00
Last modified : 08/10/2003 15:24:32
Tracking Cookie Object recognized!
Type : File
Data : gloria@tmpad[1].txt
Category : Data Miner
Comment : www.searchtraffic.com
Object : C:\Documents a
-
Gloria el scan q has echo ha sido con una actualizacion pasada Reference Number : 01R298 20.04.2004, hay una mas reciente, descargala antes de pasar el ad-aware.
Tambien haz esto (http://www.daboweb.com/phpBB2/viewtopic.php?t=2443) es para configurar el ad-aware para q haga un scan completo.
Luego realizas el scan y publicas el log.
-
Choche,
he descargado la nueva versión y creo que he seguido todos los pasos indicados :roll:
El resultado actualizado és:
Lavasoft Ad-aware Personal Build 6.181
Logfile created on :miércoles, 23 de junio de 2004 16:35:04
Created with Ad-aware Personal, free for private use.
Using reference-file :01R324 22.06.2004
______________________________________________________
Reffile status:
=========================
archivo de la referencia cargado:
Reference Number : 01R324 22.06.2004
Internal build : 256
File location : C:\ARCHIV~1\LAVASOFT\AD-AWA~1\reflist.ref
Total size : 1265402 Bytes
Signature data size : 1244925 Bytes
Reference data size : 20413 Bytes
Signatures total : 27677
Target categories : 10
Target families : 506
Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium II
Memory available:22 %
Total physical memory:196132 kb
Available physical memory:41924 kb
Total page file size:275684 kb
Available on page file:78892 kb
Total virtual memory:2097024 kb
Available virtual memory:2054280 kb
OS:Windows 2000
Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file
Extended Ad-aware Settings
=========================
Set : Unload recognized processes during scanning
Set : Include basic Ad-aware settings in logfile
Set : Include additional Ad-aware settings in logfile
Set : Let windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Always back up reference file, before updating
Set : Play sound if scan produced a result
23-06-2004 16:35:04 - Scan started. (Custom mode)
Listing running processes
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ThreadCreationTime : 23-06-2004 8:27:22
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:27:27
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:27:28
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:27:31
BasePriority : Normal
FileSize : 87 KB
FileVersion : 5.00.2195.6700
ProductVersion : 5.00.2195.6700
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Aplicaci
InternalName : services.exe
OriginalFilename : services.exe
ProductName : Sistema operativo Microsoft(R) Windows (R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 22/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:5 [lsass.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:27:31
BasePriority : Normal
FileSize : 36 KB
FileVersion : 5.00.2195.6902
ProductVersion : 5.00.2195.6902
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : DLL de servidor y ejecutable LSA (versi
InternalName : lsasrv.dll and lsass.exe
OriginalFilename : lsasrv.dll and lsass.exe
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 22/06/2004 22:00:00
Last modified : 24/03/2004 1:31:38
#:6 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:27:38
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 22/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:7 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:27:39
BasePriority : Normal
FileSize : 44 KB
FileVersion : 5.00.2195.6659
ProductVersion : 5.00.2195.6659
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolss.exe
OriginalFilename : spoolss.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 01/04/2003 17:52:41
Last accessed : 22/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:8 [ccevtmgr.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ThreadCreationTime : 23-06-2004 8:27:39
BasePriority : Normal
FileSize : 309 KB
FileVersion : 1.03.4
ProductVersion : 1.03.4
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Event Manager Service
InternalName : ccEvtMgr
OriginalFilename : ccEvtMgr.exe
ProductName : Event Manager
Created on : 17/11/2003 8:43:51
Last accessed : 22/06/2004 22:00:00
Last modified : 03/12/2002 15:22:12
#:9 [nisum.exe]
FilePath : C:\Archivos de programa\Norton Internet Security\
ThreadCreationTime : 23-06-2004 8:27:42
BasePriority : Normal
FileSize : 137 KB
FileVersion : 6.02.2003
ProductVersion : 6.02.2003
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton Internet Security NISUM
InternalName : NISUM
OriginalFilename : NISUM.exe
ProductName : Norton Internet Security
Created on : 18/12/2003 7:50:15
Last accessed : 22/06/2004 22:00:00
Last modified : 14/03/2003 3:48:46
#:10 [ccpxysvc.exe]
FilePath : C:\Archivos de programa\Norton Internet Security\
ThreadCreationTime : 23-06-2004 8:27:52
BasePriority : Normal
FileSize : 33 KB
FileVersion : 6.02.2003
ProductVersion : 6.02.2003
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton Internet Security Proxy Service
InternalName : ccPxySvc
OriginalFilename : ccPxySvc.exe
ProductName : Norton Internet Security
Created on : 18/12/2003 7:50:10
Last accessed : 22/06/2004 22:00:00
Last modified : 24/03/2003 22:16:42
#:11 [svchost.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 23-06-2004 8:27:52
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 22/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:12 [navapsvc.exe]
FilePath : C:\Archivos de programa\Norton AntiVirus\
ThreadCreationTime : 23-06-2004 8:27:53
BasePriority : Normal
FileSize : 113 KB
FileVersion : 9.05.1015
ProductVersion : 9.05.1015
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton AntiVirus Auto-Protect Service
InternalName : NAVAPSVC
OriginalFilename : NAVAPSVC.EXE
ProductName : Norton AntiVirus
Created on : 17/11/2003 8:43:23
Last accessed : 22/06/2004 22:00:00
Last modified : 21/11/2002 8:14:18
#:13 [regsvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:27:54
BasePriority : Normal
FileSize : 66 KB
FileVersion : 5.00.2195.6701
ProductVersion : 5.00.2195.6701
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Remote Registry Service
InternalName : regsvc
OriginalFilename : REGSVC.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 18/06/2004 14:14:22
Last accessed : 22/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:14 [mstask.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:27:55
BasePriority : Normal
FileSize : 117 KB
FileVersion : 4.71.2195.6704
ProductVersion : 4.71.2195.6704
Copyright : Copyright (C) Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Motor de Programador de tareas
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Programador de tareas de Microsoft
Created on : 18/06/2004 14:09:41
Last accessed : 22/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:15 [tcpsvcs.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 23-06-2004 8:27:56
BasePriority : Normal
FileSize : 24 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : TCP/IP Services Application
InternalName : TCPSVCS.EXE
OriginalFilename : TCPSVCS.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 22/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:16 [winmgmt.exe]
FilePath : C:\WINNT\System32\WBEM\
ThreadCreationTime : 23-06-2004 8:27:57
BasePriority : Normal
FileSize : 192 KB
FileVersion : 1.50.1085.0100
ProductVersion : 1.50.1085.0100
Copyright : Copyright (C) Microsoft Corp. 1995-1999
CompanyName : Microsoft Corporation
FileDescription : Instrumental de administraci
InternalName : WINMGMT
ProductName : Instrumental de administraci
Created on : 18/06/2004 14:19:26
Last accessed : 22/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:17 [mspmspsv.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 23-06-2004 8:27:58
BasePriority : Normal
FileSize : 52 KB
FileVersion : 7.10.00.3059
ProductVersion : 7.10.00.3059
Copyright : Copyright (C) Microsoft Corp. 1981-2000
CompanyName : Microsoft Corporation
FileDescription : WMDM PMSP Service
InternalName : MSPMSPSV.EXE
OriginalFilename : MSPMSPSV.EXE
ProductName : Microsoft (R) DRM
Created on : 05/09/2003 9:55:53
Last accessed : 22/06/2004 22:00:00
Last modified : 01/10/2001 17:48:44
#:18 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:28:01
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 22/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:19 [explorer.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 23-06-2004 8:28:07
BasePriority : Normal
FileSize : 238 KB
FileVersion : 5.00.3700.6690
ProductVersion : 5.00.3700.6690
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 18/06/2004 14:01:28
Last accessed : 22/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:20 [ccapp.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ThreadCreationTime : 23-06-2004 8:28:33
BasePriority : Normal
FileSize : 54 KB
FileVersion : 1.08.01
ProductVersion : 1.08.01
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client CC App
InternalName : ccApp
OriginalFilename : ccApp.exe
ProductName : Common Client
Created on : 05/12/2003 7:39:49
Last accessed : 22/06/2004 22:00:00
Last modified : 15/07/2003 12:58:08
#:21 [tca.exe]
FilePath : C:\Archivos de programa\The Cleaner\
ThreadCreationTime : 23-06-2004 8:29:00
BasePriority : Normal
FileSize : 617 KB
FileVersion : 3.1.0.3073
ProductVersion : 3.1.0.0
Copyright : (c) 2000-2004 MooSoft Development
CompanyName : MooSoft Development
FileDescription : The Cleaner Active Process Monitor
InternalName : TCActive!
OriginalFilename : tca.exe
ProductName : TCActive
Created on : 09/04/2004 7:26:37
Last accessed : 22/06/2004 22:00:00
Last modified : 09/04/2004 7:26:38
#:22 [tcm.exe]
FilePath : C:\Archivos de programa\The Cleaner\
ThreadCreationTime : 23-06-2004 8:29:12
BasePriority : Normal
FileSize : 379 KB
FileVersion : 2.1.0.2043
ProductVersion : 2.1.0.0
Copyright : 2000-2004 MooSoft Development
CompanyName : MooSoft Development
FileDescription : The Cleaner Registry and File Monitor
InternalName : TCMonitor
OriginalFilename : tcm.exe
ProductName : TC Monitor
Created on : 13/03/2004 11:48:53
Last accessed : 22/06/2004 22:00:00
Last modified : 13/03/2004 11:48:54
#:23 [internat.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 8:29:16
BasePriority : Normal
FileSize : 20 KB
FileVersion : 5.00.2920.0000
ProductVersion : 5.00.2920.0000
Copyright : Copyright (C) Microsoft Corp. 1994-1999
CompanyName : Microsoft Corporation
FileDescription : Aplicaci
InternalName : INTERNAT
OriginalFilename : INTERNAT.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 22/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:24 [wzqkpick.exe]
FilePath : C:\Archivos de programa\WinZip\
ThreadCreationTime : 23-06-2004 8:29:30
BasePriority : Normal
FileSize : 116 KB
FileVersion : 1.0 (32-bit)
ProductVersion : 9.0 (6028)
Copyright : Copyright (c) WinZip Computing, Inc. 1991-2004 - All Rights Reserved
CompanyName : WinZip Computing, Inc.
FileDescription : WinZip Executable
InternalName : WZQKPICK.EXE
OriginalFilename : WZQKPICK.EXE
ProductName : WinZip
Created on : 18/06/2004 14:16:40
Last accessed : 22/06/2004 22:00:00
Last modified : 11/02/2004 7:00:00
#:25 [outlook.exe]
FilePath : C:\Archivos de programa\Microsoft Office\Office\
ThreadCreationTime : 23-06-2004 8:29:51
BasePriority : Normal
FileSize : 56 KB
FileVersion : 9.0.2416
ProductVersion : 9.0.2416
Copyright : Copyright
CompanyName : Microsoft Corporation
FileDescription : Microsoft Outlook
InternalName : Outlook
OriginalFilename : Outlook.exe
ProductName : Microsoft Outlook
Created on : 16/12/1998 19:09:20
Last accessed : 22/06/2004 22:00:00
Last modified : 16/12/1998 19:09:20
#:26 [acrord32.exe]
FilePath : C:\Archivos de programa\Adobe\Acrobat 5.0\Reader\
ThreadCreationTime : 23-06-2004 11:01:09
BasePriority : Normal
FileSize : 4560 KB
FileVersion : 5.1.0.2002091700
ProductVersion : 5.1.0.0
Copyright : Copyright 1984-2002 Adobe Systems Incorporated and its licensors. All rights reserved.
CompanyName : Adobe Systems Incorporated
FileDescription : Acrobat Reader 5.1
OriginalFilename : AcroRd32.exe
ProductName : Adobe Acrobat Reader
Created on : 25/04/2003 7:55:56
Last accessed : 22/06/2004 22:00:00
Last modified : 16/09/2002 23:25:14
#:27 [netscp.exe]
FilePath : C:\ARCHIV~1\Netscape\NETSCA~1\
ThreadCreationTime : 23-06-2004 11:11:27
BasePriority : Normal
FileSize : 469 KB
FileVersion : 7.0.0
ProductVersion : 7.0.0
CompanyName : Mozilla, Netscape
ProductName : Netscape
Created on : 23/06/2004 7:57:54
Last accessed : 22/06/2004 22:00:00
Last modified : 23/08/2002 9:22:00
#:28 [notepad.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 23-06-2004 14:30:52
BasePriority : Normal
FileSize : 50 KB
FileVersion : 5.00.2140.1
ProductVersion : 5.00.2140.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Bloc de notas
InternalName : Notepad
OriginalFilename : NOTEPAD.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 22/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:29 [ad-aware.exe]
FilePath : C:\ARCHIV~1\LAVASOFT\AD-AWA~1\
ThreadCreationTime : 23-06-2004 14:31:39
BasePriority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 21/06/2004 14:24:30
Last accessed : 22/06/2004 22:00:00
Last modified : 12/07/2003 19:00:20
Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{FC2593E3-3E5A-410F-AF3D-82613CCE58E5}
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : TypeLib\{CD71F5CB-E108-484D-A407-2EDDB6F939F9}
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fc2593e3-3e5a-410f-af3d-82613cce58e5}
Win32.Adverts.TrojanDownloader Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{4A8DADD4-5A25-4d41-8599-CB7458766220}
Win32.Adverts.TrojanDownloader Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{B9D90B27-AD4A-413a-88CB-3E6DDC10DC2D}
Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 5
Objects found so far: 5
Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 5
Deep scanning and examining files (A:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Disk scan result for A:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 5
Deep scanning and examining files (C:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
HotBar Object recognized!
Type : File
Data : hotbar.inf
Category : Data Miner
Comment :
Object : C:\WINNT\Downloaded Program Files\
Created on : 21/04/2002 8:46:32
Last accessed : 22/06/2004 22:00:00
Last modified : 21/04/2002 8:46:32
Other Object recognized!
Type : File
Data : winserv.exe
Category : Data Miner
Comment :
Object : C:\WINNT\
FileSize : 33 KB
Created on : 17/06/2004 15:08:16
Last accessed : 22/06/2004 22:00:00
Last modified : 17/06/2004 15:08:18
Tracking Cookie Object recognized!
Type : File
Data : gloria@tripod[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 14/10/2003 15:52:29
Last accessed : 22/06/2004 22:00:00
Last modified : 14/10/2003 15:52:30
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 24/04/2003 8:37:52
Last accessed : 22/06/2004 22:00:00
Last modified : 24/04/2003 8:37:54
Tracking Cookie Object recognized!
Type : File
Data : gloria@adrevolver[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 04/09/2003 14:45:16
Last accessed : 22/06/2004 22:00:00
Last modified : 04/09/2003 14:45:18
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 10/07/2003 10:51:29
Last accessed : 22/06/2004 22:00:00
Last modified : 10/07/2003 10:51:30
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/08/2003 8:24:32
Last accessed : 22/06/2004 22:00:00
Last modified : 08/08/2003 8:24:34
Tracking Cookie Object recognized!
Type : File
Data : gloria@domainsponsor[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/08/2003 8:24:32
Last accessed : 22/06/2004 22:00:00
Last modified : 08/08/2003 8:24:34
Tracking Cookie Object recognized!
Type : File
Data : gloria@klo[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/08/2003 10:11:29
Last accessed : 22/06/2004 22:00:00
Last modified : 08/08/2003 10:11:30
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 20/10/2003 15:59:02
Last accessed : 22/06/2004 22:00:00
Last modified : 20/10/2003 15:59:04
Tracking Cookie Object recognized!
Type : File
Data : [email protected][2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 12/09/2003 8:10:48
Last accessed : 22/06/2004 22:00:00
Last modified : 12/09/2003 8:10:50
Tracking Cookie Object recognized!
Type : File
Data : gloria@kelkoo[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 02/10/2003 10:05:22
Last accessed : 22/06/2004 22:00:00
Last modified : 02/10/2003 10:05:24
Tracking Cookie Object recognized!
Type : File
Data : gloria@kelkoo[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/01/2004 17:40:07
Last accessed : 22/06/2004 22:00:00
Last modified : 08/01/2004 17:40:08
Tracking Cookie Object recognized!
Type : File
Data : gloria@klo[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/01/2004 17:40:12
Last accessed : 22/06/2004 22:00:00
Last modified : 08/01/2004 17:40:14
Tracking Cookie Object recognized!
Type : File
Data : [email protected][3].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/01/2004 17:40:16
Last accessed : 22/06/2004 22:00:00
Last modified : 08/01/2004 17:40:18
Tracking Cookie Object recognized!
Type : File
Data : gloria@adrevolver[3].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/01/2004 17:40:35
Last accessed : 22/06/2004 22:00:00
Last modified : 08/01/2004 17:40:36
Tracking Cookie Object recognized!
Type : File
Data : gloria@tripod[1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/01/2004 17:40:40
Last accessed : 22/06/2004 22:00:00
Last modified : 08/01/2004 17:40:42
Tracking Cookie Object recognized!
Type : File
Data : gloria@adrevolver[4].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/01/2004 17:41:17
Last accessed : 22/06/2004 22:00:00
Last modified : 08/01/2004 17:41:18
Tracking Cookie Object recognized!
Type : File
Data : [email protected][4].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 08/01/2004 17:41:19
Last accessed : 22/06/2004 22:00:00
Last modified : 08/01/2004 17:41:20
Tracking Cookie Object recognized!
Type : File
Data : gloria@domainsponsor[3].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 18/03/2004 14:47:45
Last accessed : 22/06/2004 22:00:00
Last modified : 18/03/2004 14:47:46
Tracking Cookie Object recognized!
Type : File
Data : gloria@kliks[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 10/06/2004 9:39:25
Last accessed : 22/06/2004 22:00:00
Last modified : 10/06/2004 9:39:26
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 12/05/2004 14:16:01
Last accessed : 22/06/2004 22:00:00
Last modified : 12/05/2004 14:16:02
Tracking Cookie Object recognized!
Type : File
Data : gloria@tripod[3].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 12/05/2004 14:16:08
Last accessed : 22/06/2004 22:00:00
Last modified : 12/05/2004 14:16:10
Tracking Cookie Object recognized!
Type : File
Data : [email protected][1].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 18/05/2004 10:55:12
Last accessed : 22/06/2004 22:00:00
Last modified : 18/05/2004 10:55:14
Tracking Cookie Object recognized!
Type : File
Data : [email protected][4].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 27/05/2004 15:37:43
Last accessed : 22/06/2004 22:00:00
Last modified : 27/05/2004 15:37:44
Tracking Cookie Object recognized!
Type : File
Data : [email protected][3].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Gloria\Cookies\
Created on : 09/06/2004 15:11:34
Last accessed : 22/06/2004 22:00:00
Last modified : 10/06/2004 9:00:20
HotBar Object recognized!
Type : File
Data : hbinst.exe
Category : Data Miner
Comment :
Object : C:\Archivos de programa\hbinst\
FileSize : 344 KB
FileVersion : 4, 4, 5, 1381
ProductVersion : 4, 4, 5, 1381
Copyright : Copyright
CompanyName : Hotbar.com Inc.
FileDescription : HbInst Module
InternalName : HbInst
OriginalFilename : HbInst.EXE
ProductName : Hotbar
Created on : 30/03/2004 14:39:34
Last accessed : 22/06/2004 22:00:00
Last modified : 14/03/2004 10:41:08
Disk scan result for C:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 32
Deep scanning and examining files (D:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Disk scan result for D:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 32
Scanning Hosts file(C:\WINNT\system32\drivers\etc\hosts)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Hosts file scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
1 entries scanned.
New objects :0
Objects found so far: 32
Performing conditional scans..
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : AppID\sr.DLL
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{82F924C9-A1B9-4CDB-9245-BCFA82518319}
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : sr.sr
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : sr.sr.1
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\sr
CoolWebSearch Object recognized!
Type : RegValue
Data :
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
Value : ITBarLayout
CoolWebSearch Object recognized!
Type : File
Data : mmaskmdp.dll
Category : Malware
Comment :
Object : c:\winnt\
FileSize : 252 KB
Created on : 17/06/2004 15:22:08
Last accessed : 22/06/2004 22:00:00
Last modified : 17/06/2004 15:22:10
Win32.Adverts.TrojanDownloader Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : Software\Adverts
HotBar Object recognized!
Type : Folder
Category : Data Miner
Comment :
Object : c:\archivos de programa\hbinst
Conditional scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 9
Objects found so far: 41
16:50:55 Scan complete
Summary of this scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Total scanning time :00:15:50:196
Objects scanned :145590
Objects identified :41
Objects ignored :0
New objects :41
Qué hago?????
-
Hola!
¿Pusiste todo en cuarentena? Si no lo hiciste, tenés que volver a escanear igual que lo hiciste esta última vez y cuando llegas al final tenés que poner una marca en cada una de las entradas y luego apretar Siguiente.
Después de haber puesto todo en cuarentena, lo que hay que hacer es reiniciar la máquina y volver a escanear tal y como lo hiciste. Si aparecen cosas nuevas, otra vez a cuarentena y vuelta a reiniciar y escanear.
Siempre conviene hacer esto desconectado de Internet para evitar que estos programas llamen a casa si se sienten en peligro, por así decirlo.
El ciclo escaneo - cuarentena - reinicio - escaneo debe repetirse hasta que el log salga límpio o bien hasta que se repitan dos logs iguales (con las mismas cosas, y sin conexión a Internet). Esto último significaría que hay algo más atrás que Ad-Aware no está viendo, por lo cual recurriremos a otras herramientas.
Por el momento lo que necesito es que hagas esa secuencia y publiques el log limpio cuando lo obtengas. Puede ser que te lleve varias veces, así que a no desesperar... :)
-
Hola Fats! :wink:
Si lo puse todo en cuarentena :D .
Ahora lo he hecho y me sale el log límpio :D
Eso sí, de las veces anteriores tengo 4 archivos (2 se crearon automáticamente auto-quarantine y 2 los "bauticé" yo) con 240 objetos (x2) y 41 objetos (x2)
Lavasoft Ad-aware Personal Build 6.181
Logfile created on :viernes, 25 de junio de 2004 9:34:35
Created with Ad-aware Personal, free for private use.
Using reference-file :01R324 22.06.2004
______________________________________________________
Reffile status:
=========================
Reference file loaded:
Reference Number : 01R324 22.06.2004
Internal build : 256
File location : C:\ARCHIV~1\LAVASOFT\AD-AWA~1\reflist.ref
Total size : 1265402 Bytes
Signature data size : 1244925 Bytes
Reference data size : 20413 Bytes
Signatures total : 27677
Target categories : 10
Target families : 506
Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium II
Memory available:26 %
Total physical memory:196132 kb
Available physical memory:49096 kb
Total page file size:275728 kb
Available on page file:114108 kb
Total virtual memory:2097024 kb
Available virtual memory:2049476 k
OS:Windows 2000
Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file
Extended Ad-aware Settings
=========================
Set : Unload recognized processes during scanning
Set : Include basic Ad-aware settings in logfile
Set : Include additional Ad-aware settings in logfile
Set : Let windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Always back up reference file, before updating
Set : Play sound if scan produced a result
25-06-2004 9:34:36 - Scan started. (Custom mode)
Listing running processes
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ThreadCreationTime : 25-06-2004 7:12:01
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:12:06
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:12:07
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:12:09
BasePriority : Normal
FileSize : 87 KB
FileVersion : 5.00.2195.6700
ProductVersion : 5.00.2195.6700
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Aplicaci
InternalName : services.exe
OriginalFilename : services.exe
ProductName : Sistema operativo Microsoft(R) Windows (R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 24/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:5 [lsass.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:12:09
BasePriority : Normal
FileSize : 36 KB
FileVersion : 5.00.2195.6902
ProductVersion : 5.00.2195.6902
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : DLL de servidor y ejecutable LSA (versi
InternalName : lsasrv.dll and lsass.exe
OriginalFilename : lsasrv.dll and lsass.exe
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 24/06/2004 22:00:00
Last modified : 24/03/2004 1:31:38
#:6 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:12:13
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 24/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:7 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:12:14
BasePriority : Normal
FileSize : 44 KB
FileVersion : 5.00.2195.6659
ProductVersion : 5.00.2195.6659
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolss.exe
OriginalFilename : spoolss.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 01/04/2003 17:52:41
Last accessed : 24/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:8 [ccevtmgr.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ThreadCreationTime : 25-06-2004 7:12:14
BasePriority : Normal
FileSize : 309 KB
FileVersion : 1.03.4
ProductVersion : 1.03.4
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Event Manager Service
InternalName : ccEvtMgr
OriginalFilename : ccEvtMgr.exe
ProductName : Event Manager
Created on : 17/11/2003 8:43:51
Last accessed : 24/06/2004 22:00:00
Last modified : 03/12/2002 15:22:12
#:9 [nisum.exe]
FilePath : C:\Archivos de programa\Norton Internet Security\
ThreadCreationTime : 25-06-2004 7:12:15
BasePriority : Normal
FileSize : 137 KB
FileVersion : 6.02.2003
ProductVersion : 6.02.2003
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton Internet Security NISUM
InternalName : NISUM
OriginalFilename : NISUM.exe
ProductName : Norton Internet Security
Created on : 18/12/2003 7:50:15
Last accessed : 24/06/2004 22:00:00
Last modified : 14/03/2003 3:48:46
#:10 [ccpxysvc.exe]
FilePath : C:\Archivos de programa\Norton Internet Security\
ThreadCreationTime : 25-06-2004 7:12:19
BasePriority : Normal
FileSize : 33 KB
FileVersion : 6.02.2003
ProductVersion : 6.02.2003
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton Internet Security Proxy Service
InternalName : ccPxySvc
OriginalFilename : ccPxySvc.exe
ProductName : Norton Internet Security
Created on : 18/12/2003 7:50:10
Last accessed : 24/06/2004 22:00:00
Last modified : 24/03/2003 22:16:42
#:11 [svchost.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 25-06-2004 7:12:19
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 24/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:12 [navapsvc.exe]
FilePath : C:\Archivos de programa\Norton AntiVirus\
ThreadCreationTime : 25-06-2004 7:12:19
BasePriority : Normal
FileSize : 113 KB
FileVersion : 9.05.1015
ProductVersion : 9.05.1015
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton AntiVirus Auto-Protect Service
InternalName : NAVAPSVC
OriginalFilename : NAVAPSVC.EXE
ProductName : Norton AntiVirus
Created on : 17/11/2003 8:43:23
Last accessed : 24/06/2004 22:00:00
Last modified : 21/11/2002 8:14:18
#:13 [regsvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:12:20
BasePriority : Normal
FileSize : 66 KB
FileVersion : 5.00.2195.6701
ProductVersion : 5.00.2195.6701
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Remote Registry Service
InternalName : regsvc
OriginalFilename : REGSVC.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 18/06/2004 14:14:22
Last accessed : 24/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:14 [mstask.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:12:23
BasePriority : Normal
FileSize : 117 KB
FileVersion : 4.71.2195.6704
ProductVersion : 4.71.2195.6704
Copyright : Copyright (C) Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Motor de Programador de tareas
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Programador de tareas de Microsoft
Created on : 18/06/2004 14:09:41
Last accessed : 24/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:15 [tcpsvcs.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 25-06-2004 7:12:24
BasePriority : Normal
FileSize : 24 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : TCP/IP Services Application
InternalName : TCPSVCS.EXE
OriginalFilename : TCPSVCS.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 24/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:16 [winmgmt.exe]
FilePath : C:\WINNT\System32\WBEM\
ThreadCreationTime : 25-06-2004 7:12:24
BasePriority : Normal
FileSize : 192 KB
FileVersion : 1.50.1085.0100
ProductVersion : 1.50.1085.0100
Copyright : Copyright (C) Microsoft Corp. 1995-1999
CompanyName : Microsoft Corporation
FileDescription : Instrumental de administraci
InternalName : WINMGMT
ProductName : Instrumental de administraci
Created on : 18/06/2004 14:19:26
Last accessed : 24/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:17 [mspmspsv.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 25-06-2004 7:12:26
BasePriority : Normal
FileSize : 52 KB
FileVersion : 7.10.00.3059
ProductVersion : 7.10.00.3059
Copyright : Copyright (C) Microsoft Corp. 1981-2000
CompanyName : Microsoft Corporation
FileDescription : WMDM PMSP Service
InternalName : MSPMSPSV.EXE
OriginalFilename : MSPMSPSV.EXE
ProductName : Microsoft (R) DRM
Created on : 05/09/2003 9:55:53
Last accessed : 24/06/2004 22:00:00
Last modified : 01/10/2001 17:48:44
#:18 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:12:26
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 15/12/1999 22:00:00
Last accessed : 24/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:19 [explorer.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 25-06-2004 7:12:53
BasePriority : Normal
FileSize : 238 KB
FileVersion : 5.00.3700.6690
ProductVersion : 5.00.3700.6690
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 18/06/2004 14:01:28
Last accessed : 24/06/2004 22:00:00
Last modified : 19/06/2003 19:05:04
#:20 [ccapp.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ThreadCreationTime : 25-06-2004 7:13:04
BasePriority : Normal
FileSize : 54 KB
FileVersion : 1.08.01
ProductVersion : 1.08.01
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client CC App
InternalName : ccApp
OriginalFilename : ccApp.exe
ProductName : Common Client
Created on : 05/12/2003 7:39:49
Last accessed : 24/06/2004 22:00:00
Last modified : 15/07/2003 12:58:08
#:21 [tca.exe]
FilePath : C:\Archivos de programa\The Cleaner\
ThreadCreationTime : 25-06-2004 7:13:23
BasePriority : Normal
FileSize : 617 KB
FileVersion : 3.1.0.3073
ProductVersion : 3.1.0.0
Copyright : (c) 2000-2004 MooSoft Development
CompanyName : MooSoft Development
FileDescription : The Cleaner Active Process Monitor
InternalName : TCActive!
OriginalFilename : tca.exe
ProductName : TCActive
Created on : 09/04/2004 7:26:37
Last accessed : 24/06/2004 22:00:00
Last modified : 09/04/2004 7:26:38
#:22 [tcm.exe]
FilePath : C:\Archivos de programa\The Cleaner\
ThreadCreationTime : 25-06-2004 7:13:28
BasePriority : Normal
FileSize : 379 KB
FileVersion : 2.1.0.2043
ProductVersion : 2.1.0.0
Copyright : 2000-2004 MooSoft Development
CompanyName : MooSoft Development
FileDescription : The Cleaner Registry and File Monitor
InternalName : TCMonitor
OriginalFilename : tcm.exe
ProductName : TC Monitor
Created on : 13/03/2004 11:48:53
Last accessed : 24/06/2004 22:00:00
Last modified : 13/03/2004 11:48:54
#:23 [internat.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 25-06-2004 7:13:29
BasePriority : Normal
FileSize : 20 KB
FileVersion : 5.00.2920.0000
ProductVersion : 5.00.2920.0000
Copyright : Copyright (C) Microsoft Corp. 1994-1999
CompanyName : Microsoft Corporation
FileDescription : Aplicaci
InternalName : INTERNAT
OriginalFilename : INTERNAT.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 15/12/1999 22:00:00
Last accessed : 24/06/2004 22:00:00
Last modified : 15/12/1999 22:00:00
#:24 [wzqkpick.exe]
FilePath : C:\Archivos de programa\WinZip\
ThreadCreationTime : 25-06-2004 7:13:40
BasePriority : Normal
FileSize : 116 KB
FileVersion : 1.0 (32-bit)
ProductVersion : 9.0 (6028)
Copyright : Copyright (c) WinZip Computing, Inc. 1991-2004 - All Rights Reserved
CompanyName : WinZip Computing, Inc.
FileDescription : WinZip Executable
InternalName : WZQKPICK.EXE
OriginalFilename : WZQKPICK.EXE
ProductName : WinZip
Created on : 18/06/2004 14:16:40
Last accessed : 24/06/2004 22:00:00
Last modified : 11/02/2004 7:00:00
#:25 [netscp.exe]
FilePath : C:\ARCHIV~1\Netscape\NETSCA~1\
ThreadCreationTime : 25-06-2004 7:31:04
BasePriority : Normal
FileSize : 469 KB
FileVersion : 7.0.0
ProductVersion : 7.0.0
CompanyName : Mozilla, Netscape
ProductName : Netscape
Created on : 23/06/2004 7:57:54
Last accessed : 24/06/2004 22:00:00
Last modified : 23/08/2002 9:22:00
#:26 [ad-aware.exe]
FilePath : C:\ARCHIV~1\LAVASOFT\AD-AWA~1\
ThreadCreationTime : 25-06-2004 7:31:26
BasePriority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 21/06/2004 14:24:30
Last accessed : 24/06/2004 22:00:00
Last modified : 12/07/2003 19:00:20
Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Deep scanning and examining files (A:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Disk scan result for A:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Deep scanning and examining files (C:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Disk scan result for C:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Deep scanning and examining files (D:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Disk scan result for D:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Scanning Hosts file(C:\WINNT\system32\drivers\etc\hosts)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Hosts file scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
1 entries scanned.
New objects :0
Objects found so far: 0
9:51:03 Scan complete
Summary of this scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Total scanning time :00:16:27:340
Objects scanned :146651
Objects identified :0
Objects ignored :0
New objects :0
GRACIAS! :wink:
-
El log está efectivamente límpio. ¿Cómo sentís la máquina?
-
Gracias Fats! :D
Ante todo, perdona la demora en la contestación (aquí en Barcelona ha sido fiesta :D ).
Estoy probando y parece que funciona REGULAR, medio funciona internet explorer que no funcionaba y se quedaba "colgado" .... ahora busca pero no entra en algunas páginas de las habituales que yo entraba, otras las encuentra pero no puedo hacer nada dentro de ellas ... no está como estaba.
Fats, que hago ahora ?. Todo lo que se ha quedado en cuarentena lo tengo que borrar ? como se hace?
Por cierto en "NOVATOS" he comentado que en archivos temporales de internet tengo muchísimos archivos que se "llaman" cookie:gloria@.... y que tienen "fecha de caducidad" :shock: incluso del 2104 :shock: , me han comentado que los podía borrar aunque Dabo me ha dicho que me pase por aquí....
Fats, abusando de tu ayuda, lo borro ?
GRACIAS!!!!!!
-
Hola Fats!
Hoy volviendo a probar IE me sale algo nuevo, cuando quiero entrar en cualquier web, me sale el siguiente mensaje:
LA CONFIGURACION ACTUAL IMPIDE LA EJECUCION DE CONTROLES ACTIVEX EN ESTA PAGINA. PUEDE QUE LA PAGINA NO SE MUESTRE.
Tiene que ver con los archivos en cuarentena que puse con el ad-aware??
(ya sabes que no soy entendida en estos temas )
Este post lo estoy poniendo desde IE y no puedo poner los emoticones, supongo es más de lo mismo.
GRACIAS FATS.
-
Hola Fats!
Soy otra vez la pesada novata. :wink:
Hoy me han "atacado" 10 trojan horse (este mediodía me he encontrado un aviso del norton) los he puesto primero en cuarentena, y luego desde el norton los he eliminado. Gracias a Destroyer he configurado el norton según un manual y espero que prox. el norton "trabaje" mejor....
Bien, la maravillosa Ikun me ha aconsejado pasara el ad-aware, y así lo he hecho, con la versión actualizada, y según ya me explicaste, sin conex.a internet, he seguido la secuencia escaneo-cuarentena (1 archivo)-reinicio-escaneo y limpio
el archivo que está en cuarentena (sumado a los otros tantos desde el inicio de este post) es:
ArchiveData(auto-quarantine- 29-06-2004 18-44-48.bckp)
======================================================
TRACKING COOKIE
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
obj[0]=File : c:\documents and settings\gloria\cookies\gloria@cgi-bin[1].txt
Siento darte tanto trabajo, pero qué hago?
Agradezco tu ayuda y la de los demás amig@s!!!!!!
Gracias.
P.D. Que sepáis que estais todos haciendo una gran labor al ayudar a los que no sabemos nada de este tema. Agradezco de todo corazón vuestra ayuda solidaria y desinteresada.
-
Hola!!
Creo que va muy bien la "máquina", que hago? borro ya todo lo que está en cuarentena???
Gracias.
Saludos.
-
hola:
Si has comprobado todos tus programas y todo está en orden, puedes vaciar esos archivos de cuarentena cuando quieras.
Un saludo
-
Niña me alegro de que todo este en orden en tu pc. Un saludito y te veo en clase proximamente.