Ayuda con estos logs, borro algo?

Malware, virus y troyanos, intrusiones, análisis de logs, firewalls, etcétera...

Ayuda con estos logs, borro algo?

Notapor tavoGus » 01 Sep 2006 16:51

Hola, tengo hace varios dias problemas con la conexion a internet con esta maquina. Pero con otra maquina la conexion funciona bien por lo q descarto problema de linea. El antivirus no detecta nada. Hay algo q me sugieran eliminar?. Gracias por su colaboracion.

AutoRuns:
HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\AppSetup

HKLM\Software\Policies\Microsoft\Windows\System\Scripts\Startup

HKCU\Software\Policies\Microsoft\Windows\System\Scripts\Logon

HKLM\Software\Policies\Microsoft\Windows\System\Scripts\Logon

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System\Shell

HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\Shell

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\Runonce

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\RunonceEx

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\Run

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

+ AVG7_CC AVG Control Center (Not verified) GRISOFT, s.r.o. c:\archivos de programa\grisoft\avg free\avgcc.exe

+ AVG7_EMC AVG E-Mail Scanner (Not verified) GRISOFT, s.r.o. c:\archivos de programa\grisoft\avg free\avgemc.exe

+ IndexSearch PaperPort IndexSearch (Not verified) ScanSoft, Inc. c:\archivos de programa\scansoft\paperport\indexsearch.exe

+ PaperPort PTD PaperPort Print to Desktop for NT (Not verified) ScanSoft, Inc. c:\archivos de programa\scansoft\paperport\pptd40nt.exe

+ PCTVOICE pctvoice MFC Application (Not verified) Conexant Systems, Inc. c:\windows\system32\pctspk.exe

+ VTTimer (Not verified) S3 Graphics, Inc. c:\windows\system32\vttimer.exe

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio

+ BTTray.lnk Bluetooth Tray Application (Not verified) WIDCOMM, Inc. c:\archivos de programa\widcomm\software bluetooth\bttray.exe

+ Inicio rápido de Adobe Reader.lnk Adobe Acrobat SpeedLauncher (Not verified) Adobe Systems Incorporated c:\archivos de programa\adobe\acrobat 7.0\reader\reader_sl.exe

+ Venturi 2.lnk ventcfg MFC Application c:\program files\venturi2\configurator\ventcfg.exe

C:\Documents and Settings\Aclancig\Menú Inicio\Programas\Inicio

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\Load

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\Run

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

HKCU\Software\Microsoft\Windows\CurrentVersion\Run

+ ares File not found: C:\Archivos de programa\Ares\Ares.exe

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce

HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\Runonce

HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\RunonceEx

HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\Run

HKLM\SOFTWARE\Classes\Protocols\Filter

HKLM\SOFTWARE\Classes\Protocols\Handler

+ belarc Belarc VoilaX Control (Not verified) Belarc, Inc. c:\archivos de programa\belarc\advisor\system\bavoilax.dll

+ cdo Microsoft SharePoint Portal Server Object Model (Not verified) Microsoft Corporation c:\archivos de programa\archivos comunes\microsoft shared\web folders\pkmcdo.dll

+ ms-itss Microsoft® InfoTech Storage System Library (Not verified) Microsoft Corporation c:\archivos de programa\archivos comunes\microsoft shared\information retrieval\msitss.dll

HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components

+ 0 File not found: About:Home

HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components

HKCU\SOFTWARE\Microsoft\Active Setup\Installed Components

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved

+ AVG7 Find Extension AVG Shell Extension (Not verified) GRISOFT, s.r.o. c:\archivos de programa\grisoft\avg free\avgse.dll

+ AVG7 Shell Extension AVG Shell Extension (Not verified) GRISOFT, s.r.o. c:\archivos de programa\grisoft\avg free\avgse.dll

+ Carpetas Web Microsoft Web Folders (Not verified) Microsoft Corporation c:\archivos de programa\archivos comunes\microsoft shared\web folders\msonsext.dll

+ Extensión de paneo de pantalla del Panel de control File not found: deskpan.dll

+ My Bluetooth Places BTNeighborhood DLL (Not verified) WIDCOMM, Inc. c:\windows\system32\btneighborhood.dll

+ WinRAR shell extension c:\archivos de programa\winrar\rarext.dll

+ WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\archivos de programa\winzip\wzshlstb.dll

+ WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\archivos de programa\winzip\wzshlstb.dll

+ WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\archivos de programa\winzip\wzshlstb.dll

+ WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\archivos de programa\winzip\wzshlstb.dll

HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved

HKLM\Software\Classes\Folder\Shellex\ColumnHandlers

+ PDF Shell Extension PDF Shell Extension (Not verified) Adobe Systems, Inc. c:\archivos de programa\adobe\acrobat 7.0\activex\pdfshell.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects

+ AcroIEHlprObj Class Adobe Acrobat IE Helper Version 7.0 for ActiveX (Verified) Adobe Systems, Incorporated c:\archivos de programa\adobe\acrobat 7.0\activex\acroiehelper.dll

HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks

HKLM\Software\Microsoft\Internet Explorer\Toolbar

HKCU\Software\Microsoft\Internet Explorer\Explorer Bars

HKLM\Software\Microsoft\Internet Explorer\Explorer Bars

HKCU\Software\Microsoft\Internet Explorer\Extensions

HKLM\Software\Microsoft\Internet Explorer\Extensions

+ @btrez.dll,-4017 c:\archivos de programa\widcomm\software bluetooth\btsendto_ie.htm

Task Scheduler

HKLM\System\CurrentControlSet\Services

+ Avg7Alrt AVG Alert Manager (Not verified) GRISOFT, s.r.o. c:\archivos de programa\grisoft\avg free\avgamsvr.exe

+ Avg7UpdSvc AVG Update Service (Not verified) GRISOFT, s.r.o. c:\archivos de programa\grisoft\avg free\avgupsvc.exe

+ btwdins Bluetooth Support Server (Not verified) WIDCOMM, Inc. c:\archivos de programa\widcomm\software bluetooth\bin\btwdins.exe

+ MDM Manages local and remote debugging for Visual Studio debuggers (Not verified) Microsoft Corporation c:\archivos de programa\archivos comunes\microsoft shared\vs7debug\mdm.exe

+ Venturi2 VentC (Not verified) Fourelle Systems, Inc c:\program files\venturi2\client\ventc.exe

HKLM\System\CurrentControlSet\Services

+ Avg7Core AVG Scanning Engine (Not verified) GRISOFT, s.r.o. c:\windows\system32\drivers\avg7core.sys

+ Avg7RsW AVG Resident Shield Unload Helper (Not verified) GRISOFT, s.r.o. c:\windows\system32\drivers\avg7rsw.sys

+ Avg7RsXP AVG Resident Anti-Virus Shield (Not verified) GRISOFT, s.r.o. c:\windows\system32\drivers\avg7rsxp.sys

+ AvgTdi AVG Network connection watcher (Not verified) GRISOFT, s.r.o. c:\windows\system32\drivers\avgtdi.sys

+ BANTExt c:\windows\system32\drivers\bantext.sys

+ Btcsrusb File not found: System32\Drivers\btcusb.sys

+ BTKRNL Bluetooth Protocol Driver for Windows 2000 (Not verified) WIDCOMM, Inc. c:\windows\system32\drivers\btkrnl.sys

+ BTSERIAL c:\windows\system32\drivers\btserial.sys

+ BTSLBCSP Bluetooth Serial Driver for Windows 2000 (Not verified) WIDCOMM, Inc. c:\windows\system32\drivers\btslbcsp.sys

+ BTWUSB Driver for Bluetooth USB Devices (Not verified) WIDCOMM, Inc. c:\windows\system32\drivers\btwusb.sys

+ Ptserial HSP Modem Serial Device Driver (Not verified) PCTEL, INC. c:\windows\system32\drivers\ptserial.sys

+ usbser USB Modem Driver (Not verified) Microsoft Corporation c:\windows\system32\drivers\usbser.sys

+ viagfx VIA/S3G Miniport Driver (Not verified) Copyright (C) VIA/S3 Graphics, Inc. c:\windows\system32\drivers\vtmini.sys

+ Vmodem HSP Modem Modem Device Driver (Not verified) Conexant Systems, Inc. c:\windows\system32\drivers\vmodem.sys

+ Vpctcom HSP Modem Virtual Control Device (Not verified) Conexant Systems, Inc. c:\windows\system32\drivers\vpctcom.sys

+ Vvoice HSP Modem device driver (Not verified) Conexant Systems, Inc. c:\windows\system32\drivers\vvoice.sys

HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options

HKLM\Software\Microsoft\Command Processor\Autorun

HKCU\Software\Microsoft\Command Processor\Autorun

HKLM\SOFTWARE\Classes\Exefile\Shell\Open\Command\(Default)

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls

HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\System

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\UIHost

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GinaDLL

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman

HKCU\Control Panel\Desktop\Scrnsave.exe

HKLM\System\CurrentControlSet\Control\BootVerificationProgram\ImageName

HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9

+ VENTURI_TP Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{15C100D3-6518-4C69-8B29-6E11AC441FBF}] DATAGRAM 5 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{15C100D3-6518-4C69-8B29-6E11AC441FBF}] SEQPACKET 5 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{4E5905CB-19D6-40A1-B3FF-C7175574FCC6}] DATAGRAM 4 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{4E5905CB-19D6-40A1-B3FF-C7175574FCC6}] SEQPACKET 4 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{6A5D4E94-EB0A-4270-B993-4DE8B5D6BCF3}] DATAGRAM 3 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{6A5D4E94-EB0A-4270-B993-4DE8B5D6BCF3}] SEQPACKET 3 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{BA0E3B23-71B0-4B84-B9B7-2F22E856F7CF}] DATAGRAM 2 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{BA0E3B23-71B0-4B84-B9B7-2F22E856F7CF}] SEQPACKET 2 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{BEE04208-7585-494B-B5AE-120FC379A1D6}] DATAGRAM 0 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{BEE04208-7585-494B-B5AE-120FC379A1D6}] SEQPACKET 0 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{FD2B71E8-63D6-4958-92C0-A5362464A0DD}] DATAGRAM 1 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NetBT_Tcpip_{FD2B71E8-63D6-4958-92C0-A5362464A0DD}] SEQPACKET 1 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NwlnkNb] DATAGRAM 6 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD NetBIOS [\Device\NwlnkNb] SEQPACKET 6 Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD nwlnkipx [IPX] Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD nwlnkspx [SPX II] Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD nwlnkspx [SPX II] [Pseudo Stream] Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD nwlnkspx [SPX] Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD nwlnkspx [SPX] [Pseudo Stream] Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD Tcpip [RAW/IP] Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD Tcpip [TCP/IP] Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP MSAFD Tcpip [UDP/IP] Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP RSVP TCP Service Provider Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

+ VENTURI_TP RSVP UDP Service Provider Venturi Layered Service Provider Shim (Not verified) Fourelle Systems, Inc c:\windows\system32\vlsp.dll

HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors

+ Puerto de impresión Bluetooth bthcrp DLL (Not verified) WIDCOMM, Inc. c:\windows\system32\bthcrp.dll

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Authentication Packages

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Security Packages




Hijackthis:


Logfile of HijackThis v1.99.1
Scan saved at 12:37:59 p.m., on 01/09/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\ARCHIV~1\Grisoft\AVGFRE~1\avgcc.exe
C:\ARCHIV~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\System32\pctspk.exe
C:\Archivos de programa\ScanSoft\PaperPort\pptd40nt.exe
C:\Archivos de programa\WIDCOMM\Software Bluetooth\BTTray.exe
C:\Program Files\Venturi2\Configurator\ventcfg.exe
C:\ARCHIV~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\ARCHIV~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Archivos de programa\WIDCOMM\Software Bluetooth\bin\btwdins.exe
C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Venturi2\Client\ventc.exe
C:\Archivos de programa\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [AVG7_CC] C:\ARCHIV~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\ARCHIV~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [PaperPort PTD] C:\Archivos de programa\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Archivos de programa\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKCU\..\Run: [ares] "C:\Archivos de programa\Ares\Ares.exe" -h
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Venturi 2.lnk = ?
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Enviar a &Bluetooth - C:\Archivos de programa\WIDCOMM\Software Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Software Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Archivos de programa\WIDCOMM\Software Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\MSMSGS.EXE
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 2364838991
O16 - DPF: {9059F30F-4EB1-4BD2-9FDC-36F43A218F4A} (Microsoft RDP Client Control (redist)) - http://favra.no-ip.com/cab/msrdp.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMe ... loader.cab
O16 - DPF: {C4847596-972C-11D0-9567-00A0C9273C2A} (Crystal Report Viewer Control) - https://web.mapfre.com.ar/art/obra/repo ... viewer.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{BEE04208-7585-494B-B5AE-120FC379A1D6}: NameServer = 209.99.224.24,209.99.224.25
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\ARCHIV~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\ARCHIV~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Archivos de programa\WIDCOMM\Software Bluetooth\bin\btwdins.exe
O23 - Service: Venturi2 Client (Venturi2) - Fourelle Systems, Inc - C:\Program Files\Venturi2\Client\ventc.exe
Avatar de Usuario
tavoGus
Recién Llegado
 
Mensajes: 31
Registrado: 25 Abr 2006 17:44

Notapor Monkey » 01 Sep 2006 17:25

De este foro-->Herramientas de seguridad, baja el LSPFix y ejecútalo, toma nota de lo que aparece tanto del lado izquierdo como del derecho de la ventana y NO HAGAS NADA MAS, cierra el programa usando la [X] arriba a la derecha...
Mono

"... Sometimes the body needs to feel stressed to appreciate the joy..."
Avatar de Usuario
Monkey
Moderador
 
Mensajes: 4793
Registrado: 26 May 2005 20:58

....

Notapor tavoGus » 01 Sep 2006 17:59

Sin querer presione finish y me borro un .DLL q estaba del lado derecho, del lado izquierdo ahora me quedo esto:mswsoxk.dll, winrnr.dll, nwprovau.dll, rsvpsp.dll. Alguna indicacion? Gracias.
Avatar de Usuario
tavoGus
Recién Llegado
 
Mensajes: 31
Registrado: 25 Abr 2006 17:44

Notapor Monkey » 01 Sep 2006 18:46

¿Estás conectado a una red con NetWare?

Saca un nuevo Log del Autoruns...
Mono

"... Sometimes the body needs to feel stressed to appreciate the joy..."
Avatar de Usuario
Monkey
Moderador
 
Mensajes: 4793
Registrado: 26 May 2005 20:58


Volver a Seguridad

¿Quién está conectado?

Usuarios navegando por este Foro: No hay usuarios registrados visitando el Foro y 2 invitados