Que tal
Mi problema es el siguiente, en mi USB aparecen repetidas mis carpetas con accesos directos los cuales no se pueden abrir me menciona como acceso denegado, posteriormente elimine todos los archivos pero al abrir el USB de nuevo me aparecia una carpeta llamada RECYCLER. Otro problema es que ese USB lo ocupe en mi lap y aparece en muchas carpetas un archivo desktop.ini asi como un acceso en el escritorio el cual antes no aparecia, lo borro y sin embargo vuelve a aparecer, tambien me aparece un disco local Q el cual anteriormente no estaba y al momento de abrirlo me aparece como acceso denegado. Mi lap es una Hp pavilion dv4, intel core i5.
Agradecere la ayuda
Problema desktop.ini y RECYCLER
-
msc hotline sat
- Mensajes: 93500
- Registrado: 09 Mar 2004, 20:39
- Ubicación: BARCELONA (ESPAÑA)
- Contactar:
Re: Problema desktop.ini y RECYCLER
Probablemente se trata de uno de los virus que afecta a los pendrives, tipo DORKBOT o similar.
pruebe el ELISTARA sobre el ordenador y sobre los pendrives:
Y si en el informe no se detectara nada ni pidiera muestra para analizar, proceder
con el SPROCES :
lo analizaremos e informaremos al respecto.
saludos
ms, 25-2-2012
pruebe el ELISTARA sobre el ordenador y sobre los pendrives:
[quote="para DESCARGAR el ELISTARA, msc"]http://www.zonavirus.com/descargas/descargar-elistara.asp
Tras probarlo, reiniciar y postearnos el contenido de C:\infosat.txt para ver el
resultado
del proceso[/quote]
Y si en el informe no se detectara nada ni pidiera muestra para analizar, proceder
con el SPROCES :
[quote="msc"][b]SPROCES.EXE(herramienta de investigación) [/b] http://www.zonavirus.com/descargas/descargar-sproces.asp
Y tras pulsar en SALIR, postearnos el contenido del C:\SPROCLOG.TXT[/quote]
lo analizaremos e informaremos al respecto.
saludos
ms, 25-2-2012
msc hotline sat Virus Research Engineer Antes de preguntar - Normas Basicas - Mensajes Privados - Repetir Temas - Continuar Temas - Titulos del Tema - Antivirus Online
Re: Problema desktop.ini y RECYCLER
Que tal
le dejo el registro del elistara
(1-3-2012 02:32:38 (GMT))
EliStartPage v24.99 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 29 de Febrero del 2012)
--------------------------------------------------
Usuario: lap
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-1000
Lista de Acciones (por Acción Directa):
Restaurado "Userinit"
[Userinit anterior] = "C:\Windows\SysWOW64\userinit.exe,"
[Userinit actual] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
D:\DESKTOP.INI --> Eliminado (Fichero Complementario).
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE
(1-3-2012 02:32:46 (GMT))
EliStartPage v24.99 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 29 de Febrero del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Acción Directa):
Restaurado "Userinit"
[Userinit anterior] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
[Userinit actual] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE
(1-3-2012 02:39:38 (GMT))
EliStartPage v24.99 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 29 de Febrero del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Exploración):
Explorando "C:\"
Nº Total de Directorios: 29235
Nº Total de Ficheros: 156614
Nº de Ficheros Analizados: 47460
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
(1-3-2012 02:41:29 (GMT))
EliStartPage v24.99 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 29 de Febrero del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Exploración):
Explorando "G:\"
Nº Total de Directorios: 67
Nº Total de Ficheros: 636
Nº de Ficheros Analizados: 70
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
y del Sproces:
(1-3-2012 02:44:13 GMT)
SProces v5.9 (c)2011 S.G.H. / Satinfo S.L.
-------------------------------------------
Sistema Operativo: Windows 7 Home Premium (v6.1.7601)
Internet Explorer: (v9.0.8112.16421) 0
Equipo: LAP-HP
Usuario: lap
Sesión de Usuario: lap
19 Procesos Activos:
C:\WINDOWS\SYSTEM32\SMSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\WININIT.EXE
C:\WINDOWS\SYSTEM32\SERVICES.EXE
C:\WINDOWS\SYSTEM32\LSASS.EXE
C:\WINDOWS\SYSTEM32\LSM.EXE
C:\WINDOWS\SYSTEM32\WINLOGON.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\EXPLORER.EXE
C:\WINDOWS\SYSTEM32\CTFMON.EXE
C:\WINDOWS\SYSTEM32\HELPPANE.EXE
C:\WINDOWS\SYSTEM32\WMIPRVSE.EXE
C:\USERS\LAP\DESKTOP\SPROCES\SPROCES.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R0 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank (User 'Invitado')
R0 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\Software\Microsoft\Internet Explorer\Main,Search Page =http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (User 'Invitado')
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\IPS\IPSBHO.DLL
O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll
O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (file missing)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\coIEPlg.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'Invitado')
O4 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h (User 'Invitado')
O4 - HKLM\..\Run: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio Local')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio Local')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (User 'Invitado')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: C:\WINDOWS\SYSTEM32\WSHBTH.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.3.1_07) -http://java.sun.com/products/plugin/autodl/jinstall-1_3_1_07-windows-i586.cab
O16 - DPF: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA} (Java Plug-in 1.3.1_07) -http://java.sun.com/products/plugin/autodl/jinstall-1_3_1_07-windows-i586.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)
Información Adicional:
----------------------
Listado de Servicios (Carga Automatica):
----------------------------------------
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: Intel® Centrino® Bluetooth 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
**O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted - C:\WINDOWS\SYSTEM32\NULL1 (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
O23 - Service: Servicio de actualización de Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Norton Internet Security (NIS) - Unknown owner - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\diMaster.dll (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
Listado de Servicios (Carga Manual):
------------------------------------
O23 - Service: HP Mobile Data Protection Sensor (Accelerometer) - Hewlett-Packard Company - C:\WINDOWS\SYSTEM32\DRIVERS\Accelerometer.sys (file missing)
O23 - Service: adp94xx - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adp94xx.sys (file missing)
O23 - Service: adpahci - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpahci.sys (file missing)
O23 - Service: adpu320 - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpu320.sys (file missing)
O23 - Service: aliide - Acer Laboratories Inc. - C:\WINDOWS\system32\drivers\aliide.sys (file missing)
O23 - Service: amdsata - Advanced Micro Devices - C:\WINDOWS\system32\drivers\amdsata.sys (file missing)
O23 - Service: amdsbs - AMD Technologies Inc. - C:\WINDOWS\system32\drivers\amdsbs.sys (file missing)
O23 - Service: Adaptador virtual Intel(R) Centrino(R) Bluetooth 3.0 + High Speed (AMPPAL) - Windows (R) Win 7 DDK provider - C:\WINDOWS\SYSTEM32\DRIVERS\AMPPAL.sys (file missing)
O23 - Service: Protocolo Intel(R) Centrino(R) Bluetooth 3.0 + High Speed (AMPPALP) - Windows (R) Win 7 DDK provider - C:\WINDOWS\SYSTEM32\DRIVERS\amppal.sys (file missing)
O23 - Service: arc - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arc.sys (file missing)
O23 - Service: arcsas - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arcsas.sys (file missing)
O23 - Service: Broadcom NetXtreme II VBD (b06bdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\bxvbda.sys (file missing)
O23 - Service: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60a) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\b57nd60a.sys (file missing)
O23 - Service: Bing Bar Update Service (BBSvc) - Microsoft Corporation. - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
O23 - Service: Broadcom 802.11 Network Adapter Driver (BCM43XX) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\bcmwl664.sys (file missing)
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Controlador de filtro inferior de almacenamiento USB Brother (BrFiltLo) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltLo.sys (file missing)
O23 - Service: Controlador de filtro superior de almacenamiento USB Brother (BrFiltUp) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltUp.sys (file missing)
O23 - Service: Controlador de interfaz de puerto serie Brother MFC (WDM) (Brserid) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\Brserid.sys (file missing)
O23 - Service: Controlador serie WDM de Brother (BrSerWdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrSerWdm.sys (file missing)
O23 - Service: Módem Brother MFC USB sólo Fax (BrUsbMdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbMdm.sys (file missing)
O23 - Service: Controlador WDM de serie USB Brother MFC (BrUsbSer) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbSer.sys (file missing)
O23 - Service: Intel Bluetooth Auxiliary Service (btmaux) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\btmaux.sys (file missing)
O23 - Service: btmhsf - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\btmhsf.sys (file missing)
O23 - Service: CyberLink WebCam Virtual Driver (clwvd) - CyberLink Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\clwvd.sys (file missing)
O23 - Service: cmdide - CMD Technology, Inc. - C:\WINDOWS\system32\drivers\cmdide.sys (file missing)
O23 - Service: Broadcom NetXtreme II 10 GigE VBD (ebdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\evbda.sys (file missing)
O23 - Service: elxstor - Emulex - C:\WINDOWS\system32\drivers\elxstor.sys (file missing)
O23 - Service: EraserUtilRebootDrv - Symantec Corporation - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Hauppauge Consumer Infrared Receiver (hcw85cir) - Hauppauge Computer Works, Inc. - C:\WINDOWS\system32\drivers\hcw85cir.sys (file missing)
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HpSAMD - Hewlett-Packard Company - C:\WINDOWS\system32\drivers\HpSAMD.sys (file missing)
O23 - Service: iaStorV - Intel Corporation - C:\WINDOWS\system32\drivers\iaStorV.sys (file missing)
O23 - Service: iBtFltCoex - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iBtFltCoex.sys (file missing)
O23 - Service: igfx - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\igdkmd64.sys (file missing)
O23 - Service: iirsp - Intel Corp./ICP vortex GmbH - C:\WINDOWS\system32\drivers\iirsp.sys (file missing)
O23 - Service: Intel WiDi Audio Device (intaud_WaveExtensible) - Intel Corporation - C:\WINDOWS\SYSTEM32\drivers\intelaud.sys (file missing)
O23 - Service: Sonido Intel(R) para pantallas (IntcDAud) - Intel(R) Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\IntcDAud.sys (file missing)
O23 - Service: IWD Bus Enumerator (iwdbus) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iwdbus.sys (file missing)
O23 - Service: JMCR - JMicron Technology Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\jmcr.sys (file missing)
O23 - Service: NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (L1C) - Atheros Communications, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\L1C62x64.sys (file missing)
O23 - Service: LSI_FC - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_fc.sys (file missing)
O23 - Service: LSI_SAS - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas.sys (file missing)
O23 - Service: LSI_SAS2 - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas2.sys (file missing)
O23 - Service: LSI_SCSI - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_scsi.sys (file missing)
O23 - Service: megasas - LSI Corporation - C:\WINDOWS\system32\drivers\megasas.sys (file missing)
O23 - Service: MegaSR - LSI Corporation, Inc. - C:\WINDOWS\system32\drivers\MegaSR.sys (file missing)
O23 - Service: Intel(R) Management Engine Interface (MEIx64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\HECIx64.sys (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: NAVENG - Symantec Corporation - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120229.002\ENG64.SYS
O23 - Service: NAVEX15 - Symantec Corporation - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120229.002\EX64.SYS
O23 - Service: ___ Controlador del adaptador Intel(R) Wireless WiFi Link para Windows 7 de 64 bits (NETwNs64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\NETwNs64.sys (file missing)
O23 - Service: nfrd960 - IBM Corporation - C:\WINDOWS\system32\drivers\nfrd960.sys (file missing)
O23 - Service: NVIDIA nForce Networking Controller Driver (NVENETFD) - NVIDIA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\nvm62x64.sys (file missing)
O23 - Service: nvraid - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvraid.sys (file missing)
O23 - Service: nvstor - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvstor.sys (file missing)
O23 - Service: ql2300 - QLogic Corporation - C:\WINDOWS\system32\drivers\ql2300.sys (file missing)
O23 - Service: ql40xx - QLogic Corporation - C:\WINDOWS\system32\drivers\ql40xx.sys (file missing)
O23 - Service: SiSRaid2 - Silicon Integrated Systems Corp. - C:\WINDOWS\system32\drivers\SiSRaid2.sys (file missing)
O23 - Service: SiSRaid4 - Silicon Integrated Systems - C:\WINDOWS\system32\drivers\sisraid4.sys (file missing)
O23 - Service: SrvHsfHDA - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTAZL6.SYS (file missing)
O23 - Service: SrvHsfV92 - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTDPV6.SYS (file missing)
O23 - Service: SrvHsfWinac - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTCNXT6.SYS (file missing)
O23 - Service: stexstor - Promise Technology - C:\WINDOWS\system32\drivers\stexstor.sys (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10314 (STHDA) - IDT, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\stwrt64.sys (file missing)
O23 - Service: SymEvent - Symantec Corporation - C:\Windows\system32\Drivers\SYMEVENT64x86.SYS (file missing)
O23 - Service: Synaptics TouchPad Driver (SynTP) - Synaptics Incorporated - C:\WINDOWS\SYSTEM32\DRIVERS\SynTP.sys (file missing)
O23 - Service: viaide - VIA Technologies, Inc. - C:\WINDOWS\system32\drivers\viaide.sys (file missing)
O23 - Service: vsmraid - VIA Technologies Inc.,Ltd - C:\WINDOWS\system32\drivers\vsmraid.sys (file missing)
**O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - %SystemRoot%\System32\svchost.exe -k secsvcs - %ProgramFiles%\Windows Defender\mpsvc.dll (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe (file missing)
Listado de Servicios (Deshabilitados):
--------------------------------------
97 Servicios.
23 de Carga Automatica.
74 de Carga Manual.
0 Deshabilitados.
Gracias por la ayuda:)
le dejo el registro del elistara
(1-3-2012 02:32:38 (GMT))
EliStartPage v24.99 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 29 de Febrero del 2012)
--------------------------------------------------
Usuario: lap
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-1000
Lista de Acciones (por Acción Directa):
Restaurado "Userinit"
[Userinit anterior] = "C:\Windows\SysWOW64\userinit.exe,"
[Userinit actual] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
D:\DESKTOP.INI --> Eliminado (Fichero Complementario).
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE
(1-3-2012 02:32:46 (GMT))
EliStartPage v24.99 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 29 de Febrero del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Acción Directa):
Restaurado "Userinit"
[Userinit anterior] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
[Userinit actual] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE
(1-3-2012 02:39:38 (GMT))
EliStartPage v24.99 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 29 de Febrero del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Exploración):
Explorando "C:\"
Nº Total de Directorios: 29235
Nº Total de Ficheros: 156614
Nº de Ficheros Analizados: 47460
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
(1-3-2012 02:41:29 (GMT))
EliStartPage v24.99 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 29 de Febrero del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Exploración):
Explorando "G:\"
Nº Total de Directorios: 67
Nº Total de Ficheros: 636
Nº de Ficheros Analizados: 70
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
y del Sproces:
(1-3-2012 02:44:13 GMT)
SProces v5.9 (c)2011 S.G.H. / Satinfo S.L.
-------------------------------------------
Sistema Operativo: Windows 7 Home Premium (v6.1.7601)
Internet Explorer: (v9.0.8112.16421) 0
Equipo: LAP-HP
Usuario: lap
Sesión de Usuario: lap
19 Procesos Activos:
C:\WINDOWS\SYSTEM32\SMSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\WININIT.EXE
C:\WINDOWS\SYSTEM32\SERVICES.EXE
C:\WINDOWS\SYSTEM32\LSASS.EXE
C:\WINDOWS\SYSTEM32\LSM.EXE
C:\WINDOWS\SYSTEM32\WINLOGON.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\EXPLORER.EXE
C:\WINDOWS\SYSTEM32\CTFMON.EXE
C:\WINDOWS\SYSTEM32\HELPPANE.EXE
C:\WINDOWS\SYSTEM32\WMIPRVSE.EXE
C:\USERS\LAP\DESKTOP\SPROCES\SPROCES.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
R0 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank (User 'Invitado')
R0 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\Software\Microsoft\Internet Explorer\Main,Search Page =
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (User 'Invitado')
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\IPS\IPSBHO.DLL
O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll
O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (file missing)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\coIEPlg.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'Invitado')
O4 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h (User 'Invitado')
O4 - HKLM\..\Run: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio Local')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio Local')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (User 'Invitado')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: C:\WINDOWS\SYSTEM32\WSHBTH.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.3.1_07) -
O16 - DPF: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA} (Java Plug-in 1.3.1_07) -
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)
Información Adicional:
----------------------
Listado de Servicios (Carga Automatica):
----------------------------------------
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: Intel® Centrino® Bluetooth 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
**O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted - C:\WINDOWS\SYSTEM32\NULL1 (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
O23 - Service: Servicio de actualización de Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Norton Internet Security (NIS) - Unknown owner - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\19.5.0.145\diMaster.dll (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
Listado de Servicios (Carga Manual):
------------------------------------
O23 - Service: HP Mobile Data Protection Sensor (Accelerometer) - Hewlett-Packard Company - C:\WINDOWS\SYSTEM32\DRIVERS\Accelerometer.sys (file missing)
O23 - Service: adp94xx - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adp94xx.sys (file missing)
O23 - Service: adpahci - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpahci.sys (file missing)
O23 - Service: adpu320 - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpu320.sys (file missing)
O23 - Service: aliide - Acer Laboratories Inc. - C:\WINDOWS\system32\drivers\aliide.sys (file missing)
O23 - Service: amdsata - Advanced Micro Devices - C:\WINDOWS\system32\drivers\amdsata.sys (file missing)
O23 - Service: amdsbs - AMD Technologies Inc. - C:\WINDOWS\system32\drivers\amdsbs.sys (file missing)
O23 - Service: Adaptador virtual Intel(R) Centrino(R) Bluetooth 3.0 + High Speed (AMPPAL) - Windows (R) Win 7 DDK provider - C:\WINDOWS\SYSTEM32\DRIVERS\AMPPAL.sys (file missing)
O23 - Service: Protocolo Intel(R) Centrino(R) Bluetooth 3.0 + High Speed (AMPPALP) - Windows (R) Win 7 DDK provider - C:\WINDOWS\SYSTEM32\DRIVERS\amppal.sys (file missing)
O23 - Service: arc - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arc.sys (file missing)
O23 - Service: arcsas - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arcsas.sys (file missing)
O23 - Service: Broadcom NetXtreme II VBD (b06bdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\bxvbda.sys (file missing)
O23 - Service: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60a) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\b57nd60a.sys (file missing)
O23 - Service: Bing Bar Update Service (BBSvc) - Microsoft Corporation. - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
O23 - Service: Broadcom 802.11 Network Adapter Driver (BCM43XX) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\bcmwl664.sys (file missing)
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Controlador de filtro inferior de almacenamiento USB Brother (BrFiltLo) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltLo.sys (file missing)
O23 - Service: Controlador de filtro superior de almacenamiento USB Brother (BrFiltUp) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltUp.sys (file missing)
O23 - Service: Controlador de interfaz de puerto serie Brother MFC (WDM) (Brserid) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\Brserid.sys (file missing)
O23 - Service: Controlador serie WDM de Brother (BrSerWdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrSerWdm.sys (file missing)
O23 - Service: Módem Brother MFC USB sólo Fax (BrUsbMdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbMdm.sys (file missing)
O23 - Service: Controlador WDM de serie USB Brother MFC (BrUsbSer) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbSer.sys (file missing)
O23 - Service: Intel Bluetooth Auxiliary Service (btmaux) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\btmaux.sys (file missing)
O23 - Service: btmhsf - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\btmhsf.sys (file missing)
O23 - Service: CyberLink WebCam Virtual Driver (clwvd) - CyberLink Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\clwvd.sys (file missing)
O23 - Service: cmdide - CMD Technology, Inc. - C:\WINDOWS\system32\drivers\cmdide.sys (file missing)
O23 - Service: Broadcom NetXtreme II 10 GigE VBD (ebdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\evbda.sys (file missing)
O23 - Service: elxstor - Emulex - C:\WINDOWS\system32\drivers\elxstor.sys (file missing)
O23 - Service: EraserUtilRebootDrv - Symantec Corporation - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Hauppauge Consumer Infrared Receiver (hcw85cir) - Hauppauge Computer Works, Inc. - C:\WINDOWS\system32\drivers\hcw85cir.sys (file missing)
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HpSAMD - Hewlett-Packard Company - C:\WINDOWS\system32\drivers\HpSAMD.sys (file missing)
O23 - Service: iaStorV - Intel Corporation - C:\WINDOWS\system32\drivers\iaStorV.sys (file missing)
O23 - Service: iBtFltCoex - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iBtFltCoex.sys (file missing)
O23 - Service: igfx - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\igdkmd64.sys (file missing)
O23 - Service: iirsp - Intel Corp./ICP vortex GmbH - C:\WINDOWS\system32\drivers\iirsp.sys (file missing)
O23 - Service: Intel WiDi Audio Device (intaud_WaveExtensible) - Intel Corporation - C:\WINDOWS\SYSTEM32\drivers\intelaud.sys (file missing)
O23 - Service: Sonido Intel(R) para pantallas (IntcDAud) - Intel(R) Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\IntcDAud.sys (file missing)
O23 - Service: IWD Bus Enumerator (iwdbus) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iwdbus.sys (file missing)
O23 - Service: JMCR - JMicron Technology Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\jmcr.sys (file missing)
O23 - Service: NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (L1C) - Atheros Communications, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\L1C62x64.sys (file missing)
O23 - Service: LSI_FC - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_fc.sys (file missing)
O23 - Service: LSI_SAS - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas.sys (file missing)
O23 - Service: LSI_SAS2 - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas2.sys (file missing)
O23 - Service: LSI_SCSI - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_scsi.sys (file missing)
O23 - Service: megasas - LSI Corporation - C:\WINDOWS\system32\drivers\megasas.sys (file missing)
O23 - Service: MegaSR - LSI Corporation, Inc. - C:\WINDOWS\system32\drivers\MegaSR.sys (file missing)
O23 - Service: Intel(R) Management Engine Interface (MEIx64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\HECIx64.sys (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: NAVENG - Symantec Corporation - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120229.002\ENG64.SYS
O23 - Service: NAVEX15 - Symantec Corporation - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120229.002\EX64.SYS
O23 - Service: ___ Controlador del adaptador Intel(R) Wireless WiFi Link para Windows 7 de 64 bits (NETwNs64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\NETwNs64.sys (file missing)
O23 - Service: nfrd960 - IBM Corporation - C:\WINDOWS\system32\drivers\nfrd960.sys (file missing)
O23 - Service: NVIDIA nForce Networking Controller Driver (NVENETFD) - NVIDIA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\nvm62x64.sys (file missing)
O23 - Service: nvraid - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvraid.sys (file missing)
O23 - Service: nvstor - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvstor.sys (file missing)
O23 - Service: ql2300 - QLogic Corporation - C:\WINDOWS\system32\drivers\ql2300.sys (file missing)
O23 - Service: ql40xx - QLogic Corporation - C:\WINDOWS\system32\drivers\ql40xx.sys (file missing)
O23 - Service: SiSRaid2 - Silicon Integrated Systems Corp. - C:\WINDOWS\system32\drivers\SiSRaid2.sys (file missing)
O23 - Service: SiSRaid4 - Silicon Integrated Systems - C:\WINDOWS\system32\drivers\sisraid4.sys (file missing)
O23 - Service: SrvHsfHDA - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTAZL6.SYS (file missing)
O23 - Service: SrvHsfV92 - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTDPV6.SYS (file missing)
O23 - Service: SrvHsfWinac - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTCNXT6.SYS (file missing)
O23 - Service: stexstor - Promise Technology - C:\WINDOWS\system32\drivers\stexstor.sys (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10314 (STHDA) - IDT, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\stwrt64.sys (file missing)
O23 - Service: SymEvent - Symantec Corporation - C:\Windows\system32\Drivers\SYMEVENT64x86.SYS (file missing)
O23 - Service: Synaptics TouchPad Driver (SynTP) - Synaptics Incorporated - C:\WINDOWS\SYSTEM32\DRIVERS\SynTP.sys (file missing)
O23 - Service: viaide - VIA Technologies, Inc. - C:\WINDOWS\system32\drivers\viaide.sys (file missing)
O23 - Service: vsmraid - VIA Technologies Inc.,Ltd - C:\WINDOWS\system32\drivers\vsmraid.sys (file missing)
**O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - %SystemRoot%\System32\svchost.exe -k secsvcs - %ProgramFiles%\Windows Defender\mpsvc.dll (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe (file missing)
Listado de Servicios (Deshabilitados):
--------------------------------------
97 Servicios.
23 de Carga Automatica.
74 de Carga Manual.
0 Deshabilitados.
Gracias por la ayuda
-
msc hotline sat
- Mensajes: 93500
- Registrado: 09 Mar 2004, 20:39
- Ubicación: BARCELONA (ESPAÑA)
- Contactar:
Re: Problema desktop.ini y RECYCLER
Puede probar eliminando estas claves:
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)
para ello lance el SPROCES, pulse en SCAN, seleccione las claves indicadas e indique ELIMINAR
y envienos este fichero para analizar:
C:\WINDOWS\system32\Hpservice.exe
es posible que dicho fichero esté oculto. Pruebe el ELIMOVER.EXE para localizarlo y copiarlo en C:\muestras, desde donde poder enviarnoslo
Para enviarnos la muestra, recordar[/b] :
https://foros.zonavirus.com/viewtopic.php?f=5&t=14253
Tras recibirlo/s, lo/s analizaremos e implementaremos su control y eliminación, si procede, en nuestras utilidades, de lo cual informaremos
saludos
ms,
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)
para ello lance el SPROCES, pulse en SCAN, seleccione las claves indicadas e indique ELIMINAR
y envienos este fichero para analizar:
C:\WINDOWS\system32\Hpservice.exe
es posible que dicho fichero esté oculto. Pruebe el ELIMOVER.EXE para localizarlo y copiarlo en C:\muestras, desde donde poder enviarnoslo
[quote="msc"]
ELIMOVERhttp://www.zonavirus.com/descargas/descargar-elimover.asp [/quote]
Para enviarnos la muestra, recordar
Tras recibirlo/s, lo/s analizaremos e implementaremos su control y eliminación, si procede, en nuestras utilidades, de lo cual informaremos
saludos
ms,
msc hotline sat Virus Research Engineer Antes de preguntar - Normas Basicas - Mensajes Privados - Repetir Temas - Continuar Temas - Titulos del Tema - Antivirus Online
Re: Problema desktop.ini y RECYCLER
Saludos
Removi las claves que me indico con el sproces, y efectivamente desaparecio la unidad Q y los archivos desktop.ini dejaron de aparecer, la lap empezo a marchar bien, el fichero C:\WINDOWS\system32\Hpservice.exe que me indico localizarlo con el elimover, no lo pude localizar. Posterior a esto utilize mi pendrive en la maquina de mi trabajo y la inserte en la lap y volvio a ocurrir el mismo problema:( entonces decidi realizar los pasos que me indico con anterioridad, arrojando estos resultados
14-4-2012 03:35:28 (GMT))
EliStartPage v25.28 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 13 de Abril del 2012)
--------------------------------------------------
Usuario: lap
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-1000
Lista de Acciones (por Acción Directa):
Restaurado "Userinit"
[Userinit anterior] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
[Userinit actual] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE
(14-4-2012 03:35:38 (GMT))
EliStartPage v25.28 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 13 de Abril del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Acción Directa):
Restaurado "Userinit"
[Userinit anterior] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
[Userinit actual] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE
(14-4-2012 03:44:09 (GMT))
EliStartPage v25.28 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 13 de Abril del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Exploración):
Explorando "C:\"
Nº Total de Directorios: 29442
Nº Total de Ficheros: 172147
Nº de Ficheros Analizados: 54850
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
14-4-2012 03:47:40 GMT)
SProces v6.1 (c)2012 S.G.H. / Satinfo S.L.
-------------------------------------------
Sistema Operativo: Windows 7 Home Premium (v6.1.7601)
Internet Explorer: (v9.0.8112.16421) 0
Equipo: LAP-HP
Usuario: lap
Sesión de Usuario: lap
18 Procesos Activos:
C:\WINDOWS\SYSTEM32\SMSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\WININIT.EXE
C:\WINDOWS\SYSTEM32\WINLOGON.EXE
C:\WINDOWS\SYSTEM32\SERVICES.EXE
C:\WINDOWS\SYSTEM32\LSASS.EXE
C:\WINDOWS\SYSTEM32\LSM.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\EXPLORER.EXE
C:\WINDOWS\SYSTEM32\CTFMON.EXE
C:\WINDOWS\SYSTEM32\WMIPRVSE.EXE
C:\USERS\LAP\DOWNLOADS\SPROCES\SPROCES.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R0 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank (User 'Invitado')
R0 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\Software\Microsoft\Internet Explorer\Main,Search Page =http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (User 'Invitado')
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AVG Do-Not-Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll
O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (file missing)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\lap\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'Invitado')
O4 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h (User 'Invitado')
O4 - HKLM\..\Run: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio Local')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio Local')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
O4 - Startup: Facebook Messenger.lnk = C:\Users\lap\AppData\Local\Facebook\Messenger\2.0.4478.0\FacebookMessenger.exe
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (User 'Invitado')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: AVG Do-Not-Track - {DA58ACA7-18A6-403A-93DA-6E4172D43709} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.3.1_07) -http://java.sun.com/products/plugin/autodl/jinstall-1_3_1_07-windows-i586.cab
O16 - DPF: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA} (Java Plug-in 1.3.1_07) -http://java.sun.com/products/plugin/autodl/jinstall-1_3_1_07-windows-i586.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\10.2.0\ViProtocol.dll
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
Información Adicional:
----------------------
Listado de Servicios (Carga Automatica):
----------------------------------------
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: Intel® Centrino® Bluetooth 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Firewall de AVG (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
O23 - Service: WatchDog de AVG (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
**O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted - C:\WINDOWS\SYSTEM32\NULL1 (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
O23 - Service: Servicio de actualización de Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: vToolbarUpdater10.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe
Listado de Servicios (Carga Manual):
------------------------------------
O23 - Service: HP Mobile Data Protection Sensor (Accelerometer) - Hewlett-Packard Company - C:\WINDOWS\SYSTEM32\DRIVERS\Accelerometer.sys (file missing)
O23 - Service: adp94xx - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adp94xx.sys (file missing)
O23 - Service: adpahci - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpahci.sys (file missing)
O23 - Service: adpu320 - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpu320.sys (file missing)
O23 - Service: aliide - Acer Laboratories Inc. - C:\WINDOWS\system32\drivers\aliide.sys (file missing)
O23 - Service: amdsata - Advanced Micro Devices - C:\WINDOWS\system32\drivers\amdsata.sys (file missing)
O23 - Service: amdsbs - AMD Technologies Inc. - C:\WINDOWS\system32\drivers\amdsbs.sys (file missing)
O23 - Service: Adaptador virtual Intel(R) Centrino(R) Bluetooth 3.0 + High Speed (AMPPAL) - Windows (R) Win 7 DDK provider - C:\WINDOWS\SYSTEM32\DRIVERS\AMPPAL.sys (file missing)
O23 - Service: Protocolo Intel(R) Centrino(R) Bluetooth 3.0 + High Speed (AMPPALP) - Windows (R) Win 7 DDK provider - C:\WINDOWS\SYSTEM32\DRIVERS\amppal.sys (file missing)
O23 - Service: arc - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arc.sys (file missing)
O23 - Service: arcsas - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arcsas.sys (file missing)
O23 - Service: AVGIDSDriver - AVG Technologies CZ, s.r.o. - C:\WINDOWS\SYSTEM32\DRIVERS\avgidsdrivera.sys (file missing)
O23 - Service: AVGIDSFilter - AVG Technologies CZ, s.r.o. - C:\WINDOWS\SYSTEM32\DRIVERS\avgidsfiltera.sys (file missing)
O23 - Service: Broadcom NetXtreme II VBD (b06bdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\bxvbda.sys (file missing)
O23 - Service: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60a) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\b57nd60a.sys (file missing)
O23 - Service: Bing Bar Update Service (BBSvc) - Microsoft Corporation. - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
O23 - Service: Broadcom 802.11 Network Adapter Driver (BCM43XX) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\bcmwl664.sys (file missing)
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Controlador de filtro inferior de almacenamiento USB Brother (BrFiltLo) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltLo.sys (file missing)
O23 - Service: Controlador de filtro superior de almacenamiento USB Brother (BrFiltUp) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltUp.sys (file missing)
O23 - Service: Controlador de interfaz de puerto serie Brother MFC (WDM) (Brserid) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\Brserid.sys (file missing)
O23 - Service: Controlador serie WDM de Brother (BrSerWdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrSerWdm.sys (file missing)
O23 - Service: Módem Brother MFC USB sólo Fax (BrUsbMdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbMdm.sys (file missing)
O23 - Service: Controlador WDM de serie USB Brother MFC (BrUsbSer) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbSer.sys (file missing)
O23 - Service: Intel Bluetooth Auxiliary Service (btmaux) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\btmaux.sys (file missing)
O23 - Service: btmhsf - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\btmhsf.sys (file missing)
O23 - Service: CyberLink WebCam Virtual Driver (clwvd) - CyberLink Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\clwvd.sys (file missing)
O23 - Service: cmdide - CMD Technology, Inc. - C:\WINDOWS\system32\drivers\cmdide.sys (file missing)
O23 - Service: Broadcom NetXtreme II 10 GigE VBD (ebdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\evbda.sys (file missing)
O23 - Service: elxstor - Emulex - C:\WINDOWS\system32\drivers\elxstor.sys (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Hauppauge Consumer Infrared Receiver (hcw85cir) - Hauppauge Computer Works, Inc. - C:\WINDOWS\system32\drivers\hcw85cir.sys (file missing)
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HpSAMD - Hewlett-Packard Company - C:\WINDOWS\system32\drivers\HpSAMD.sys (file missing)
O23 - Service: iaStorV - Intel Corporation - C:\WINDOWS\system32\drivers\iaStorV.sys (file missing)
O23 - Service: iBtFltCoex - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iBtFltCoex.sys (file missing)
O23 - Service: igfx - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\igdkmd64.sys (file missing)
O23 - Service: iirsp - Intel Corp./ICP vortex GmbH - C:\WINDOWS\system32\drivers\iirsp.sys (file missing)
O23 - Service: Intel WiDi Audio Device (intaud_WaveExtensible) - Intel Corporation - C:\WINDOWS\SYSTEM32\drivers\intelaud.sys (file missing)
O23 - Service: Sonido Intel(R) para pantallas (IntcDAud) - Intel(R) Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\IntcDAud.sys (file missing)
O23 - Service: IWD Bus Enumerator (iwdbus) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iwdbus.sys (file missing)
O23 - Service: JMCR - JMicron Technology Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\jmcr.sys (file missing)
O23 - Service: NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (L1C) - Atheros Communications, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\L1C62x64.sys (file missing)
O23 - Service: LSI_FC - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_fc.sys (file missing)
O23 - Service: LSI_SAS - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas.sys (file missing)
O23 - Service: LSI_SAS2 - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas2.sys (file missing)
O23 - Service: LSI_SCSI - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_scsi.sys (file missing)
O23 - Service: megasas - LSI Corporation - C:\WINDOWS\system32\drivers\megasas.sys (file missing)
O23 - Service: MegaSR - LSI Corporation, Inc. - C:\WINDOWS\system32\drivers\MegaSR.sys (file missing)
O23 - Service: Intel(R) Management Engine Interface (MEIx64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\HECIx64.sys (file missing)
O23 - Service: MEMSWEEP2 - Sophos Plc - C:\Windows\system32\CDBA.tmp (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: ___ Controlador del adaptador Intel(R) Wireless WiFi Link para Windows 7 de 64 bits (NETwNs64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\NETwNs64.sys (file missing)
O23 - Service: nfrd960 - IBM Corporation - C:\WINDOWS\system32\drivers\nfrd960.sys (file missing)
O23 - Service: NVIDIA nForce Networking Controller Driver (NVENETFD) - NVIDIA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\nvm62x64.sys (file missing)
O23 - Service: nvraid - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvraid.sys (file missing)
O23 - Service: nvstor - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvstor.sys (file missing)
O23 - Service: ql2300 - QLogic Corporation - C:\WINDOWS\system32\drivers\ql2300.sys (file missing)
O23 - Service: ql40xx - QLogic Corporation - C:\WINDOWS\system32\drivers\ql40xx.sys (file missing)
O23 - Service: Revoflt - VS Revo Group - C:\WINDOWS\SYSTEM32\DRIVERS\revoflt.sys (file missing)
O23 - Service: SiSRaid2 - Silicon Integrated Systems Corp. - C:\WINDOWS\system32\drivers\SiSRaid2.sys (file missing)
O23 - Service: SiSRaid4 - Silicon Integrated Systems - C:\WINDOWS\system32\drivers\sisraid4.sys (file missing)
O23 - Service: SrvHsfHDA - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTAZL6.SYS (file missing)
O23 - Service: SrvHsfV92 - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTDPV6.SYS (file missing)
O23 - Service: SrvHsfWinac - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTCNXT6.SYS (file missing)
O23 - Service: stexstor - Promise Technology - C:\WINDOWS\system32\drivers\stexstor.sys (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10314 (STHDA) - IDT, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\stwrt64.sys (file missing)
O23 - Service: Synaptics TouchPad Driver (SynTP) - Synaptics Incorporated - C:\WINDOWS\SYSTEM32\DRIVERS\SynTP.sys (file missing)
O23 - Service: viaide - VIA Technologies, Inc. - C:\WINDOWS\system32\drivers\viaide.sys (file missing)
O23 - Service: vsmraid - VIA Technologies Inc.,Ltd - C:\WINDOWS\system32\drivers\vsmraid.sys (file missing)
**O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - %SystemRoot%\System32\svchost.exe -k secsvcs - %ProgramFiles%\Windows Defender\mpsvc.dll (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe (file missing)
Listado de Servicios (Deshabilitados):
--------------------------------------
99 Servicios.
25 de Carga Automatica.
74 de Carga Manual.
0 Deshabilitados.
Agradecere la ayuda
saludos
Removi las claves que me indico con el sproces, y efectivamente desaparecio la unidad Q y los archivos desktop.ini dejaron de aparecer, la lap empezo a marchar bien, el fichero C:\WINDOWS\system32\Hpservice.exe que me indico localizarlo con el elimover, no lo pude localizar. Posterior a esto utilize mi pendrive en la maquina de mi trabajo y la inserte en la lap y volvio a ocurrir el mismo problema
14-4-2012 03:35:28 (GMT))
EliStartPage v25.28 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 13 de Abril del 2012)
--------------------------------------------------
Usuario: lap
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-1000
Lista de Acciones (por Acción Directa):
Restaurado "Userinit"
[Userinit anterior] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
[Userinit actual] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE
(14-4-2012 03:35:38 (GMT))
EliStartPage v25.28 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 13 de Abril del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Acción Directa):
Restaurado "Userinit"
[Userinit anterior] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
[Userinit actual] = "C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,"
Eliminadas las Paginas de Inicio y de Busqueda del IE
Eliminados Ficheros Temporales del IE
(14-4-2012 03:44:09 (GMT))
EliStartPage v25.28 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 13 de Abril del 2012)
--------------------------------------------------
Usuario: Invitado
ID de Usuario: S-1-5-21-2171768085-2418613680-1729061237-501
Lista de Acciones (por Exploración):
Explorando "C:\"
Nº Total de Directorios: 29442
Nº Total de Ficheros: 172147
Nº de Ficheros Analizados: 54850
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
14-4-2012 03:47:40 GMT)
SProces v6.1 (c)2012 S.G.H. / Satinfo S.L.
-------------------------------------------
Sistema Operativo: Windows 7 Home Premium (v6.1.7601)
Internet Explorer: (v9.0.8112.16421) 0
Equipo: LAP-HP
Usuario: lap
Sesión de Usuario: lap
18 Procesos Activos:
C:\WINDOWS\SYSTEM32\SMSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\WININIT.EXE
C:\WINDOWS\SYSTEM32\WINLOGON.EXE
C:\WINDOWS\SYSTEM32\SERVICES.EXE
C:\WINDOWS\SYSTEM32\LSASS.EXE
C:\WINDOWS\SYSTEM32\LSM.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\EXPLORER.EXE
C:\WINDOWS\SYSTEM32\CTFMON.EXE
C:\WINDOWS\SYSTEM32\WMIPRVSE.EXE
C:\USERS\LAP\DOWNLOADS\SPROCES\SPROCES.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
R0 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank (User 'Invitado')
R0 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\Software\Microsoft\Internet Explorer\Main,Search Page =
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (User 'Invitado')
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\WINDOWS\SYSWOW64\Userinit.exe,C:\Windows\SysWOW64\userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AVG Do-Not-Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll
O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (file missing)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\lap\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'Invitado')
O4 - HKUS\S-1-5-21-2171768085-2418613680-1729061237-501\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h (User 'Invitado')
O4 - HKLM\..\Run: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio Local')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio Local')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
O4 - Startup: Facebook Messenger.lnk = C:\Users\lap\AppData\Local\Facebook\Messenger\2.0.4478.0\FacebookMessenger.exe
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (User 'Invitado')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: AVG Do-Not-Track - {DA58ACA7-18A6-403A-93DA-6E4172D43709} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.3.1_07) -
O16 - DPF: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA} (Java Plug-in 1.3.1_07) -
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\10.2.0\ViProtocol.dll
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
Información Adicional:
----------------------
Listado de Servicios (Carga Automatica):
----------------------------------------
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: Intel® Centrino® Bluetooth 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Firewall de AVG (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
O23 - Service: WatchDog de AVG (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
**O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted - C:\WINDOWS\SYSTEM32\NULL1 (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
O23 - Service: Servicio de actualización de Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: vToolbarUpdater10.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe
Listado de Servicios (Carga Manual):
------------------------------------
O23 - Service: HP Mobile Data Protection Sensor (Accelerometer) - Hewlett-Packard Company - C:\WINDOWS\SYSTEM32\DRIVERS\Accelerometer.sys (file missing)
O23 - Service: adp94xx - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adp94xx.sys (file missing)
O23 - Service: adpahci - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpahci.sys (file missing)
O23 - Service: adpu320 - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpu320.sys (file missing)
O23 - Service: aliide - Acer Laboratories Inc. - C:\WINDOWS\system32\drivers\aliide.sys (file missing)
O23 - Service: amdsata - Advanced Micro Devices - C:\WINDOWS\system32\drivers\amdsata.sys (file missing)
O23 - Service: amdsbs - AMD Technologies Inc. - C:\WINDOWS\system32\drivers\amdsbs.sys (file missing)
O23 - Service: Adaptador virtual Intel(R) Centrino(R) Bluetooth 3.0 + High Speed (AMPPAL) - Windows (R) Win 7 DDK provider - C:\WINDOWS\SYSTEM32\DRIVERS\AMPPAL.sys (file missing)
O23 - Service: Protocolo Intel(R) Centrino(R) Bluetooth 3.0 + High Speed (AMPPALP) - Windows (R) Win 7 DDK provider - C:\WINDOWS\SYSTEM32\DRIVERS\amppal.sys (file missing)
O23 - Service: arc - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arc.sys (file missing)
O23 - Service: arcsas - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arcsas.sys (file missing)
O23 - Service: AVGIDSDriver - AVG Technologies CZ, s.r.o. - C:\WINDOWS\SYSTEM32\DRIVERS\avgidsdrivera.sys (file missing)
O23 - Service: AVGIDSFilter - AVG Technologies CZ, s.r.o. - C:\WINDOWS\SYSTEM32\DRIVERS\avgidsfiltera.sys (file missing)
O23 - Service: Broadcom NetXtreme II VBD (b06bdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\bxvbda.sys (file missing)
O23 - Service: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60a) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\b57nd60a.sys (file missing)
O23 - Service: Bing Bar Update Service (BBSvc) - Microsoft Corporation. - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
O23 - Service: Broadcom 802.11 Network Adapter Driver (BCM43XX) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\bcmwl664.sys (file missing)
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Controlador de filtro inferior de almacenamiento USB Brother (BrFiltLo) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltLo.sys (file missing)
O23 - Service: Controlador de filtro superior de almacenamiento USB Brother (BrFiltUp) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltUp.sys (file missing)
O23 - Service: Controlador de interfaz de puerto serie Brother MFC (WDM) (Brserid) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\Brserid.sys (file missing)
O23 - Service: Controlador serie WDM de Brother (BrSerWdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrSerWdm.sys (file missing)
O23 - Service: Módem Brother MFC USB sólo Fax (BrUsbMdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbMdm.sys (file missing)
O23 - Service: Controlador WDM de serie USB Brother MFC (BrUsbSer) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbSer.sys (file missing)
O23 - Service: Intel Bluetooth Auxiliary Service (btmaux) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\btmaux.sys (file missing)
O23 - Service: btmhsf - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\btmhsf.sys (file missing)
O23 - Service: CyberLink WebCam Virtual Driver (clwvd) - CyberLink Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\clwvd.sys (file missing)
O23 - Service: cmdide - CMD Technology, Inc. - C:\WINDOWS\system32\drivers\cmdide.sys (file missing)
O23 - Service: Broadcom NetXtreme II 10 GigE VBD (ebdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\evbda.sys (file missing)
O23 - Service: elxstor - Emulex - C:\WINDOWS\system32\drivers\elxstor.sys (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Hauppauge Consumer Infrared Receiver (hcw85cir) - Hauppauge Computer Works, Inc. - C:\WINDOWS\system32\drivers\hcw85cir.sys (file missing)
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HpSAMD - Hewlett-Packard Company - C:\WINDOWS\system32\drivers\HpSAMD.sys (file missing)
O23 - Service: iaStorV - Intel Corporation - C:\WINDOWS\system32\drivers\iaStorV.sys (file missing)
O23 - Service: iBtFltCoex - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iBtFltCoex.sys (file missing)
O23 - Service: igfx - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\igdkmd64.sys (file missing)
O23 - Service: iirsp - Intel Corp./ICP vortex GmbH - C:\WINDOWS\system32\drivers\iirsp.sys (file missing)
O23 - Service: Intel WiDi Audio Device (intaud_WaveExtensible) - Intel Corporation - C:\WINDOWS\SYSTEM32\drivers\intelaud.sys (file missing)
O23 - Service: Sonido Intel(R) para pantallas (IntcDAud) - Intel(R) Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\IntcDAud.sys (file missing)
O23 - Service: IWD Bus Enumerator (iwdbus) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iwdbus.sys (file missing)
O23 - Service: JMCR - JMicron Technology Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\jmcr.sys (file missing)
O23 - Service: NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (L1C) - Atheros Communications, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\L1C62x64.sys (file missing)
O23 - Service: LSI_FC - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_fc.sys (file missing)
O23 - Service: LSI_SAS - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas.sys (file missing)
O23 - Service: LSI_SAS2 - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas2.sys (file missing)
O23 - Service: LSI_SCSI - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_scsi.sys (file missing)
O23 - Service: megasas - LSI Corporation - C:\WINDOWS\system32\drivers\megasas.sys (file missing)
O23 - Service: MegaSR - LSI Corporation, Inc. - C:\WINDOWS\system32\drivers\MegaSR.sys (file missing)
O23 - Service: Intel(R) Management Engine Interface (MEIx64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\HECIx64.sys (file missing)
O23 - Service: MEMSWEEP2 - Sophos Plc - C:\Windows\system32\CDBA.tmp (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: ___ Controlador del adaptador Intel(R) Wireless WiFi Link para Windows 7 de 64 bits (NETwNs64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\NETwNs64.sys (file missing)
O23 - Service: nfrd960 - IBM Corporation - C:\WINDOWS\system32\drivers\nfrd960.sys (file missing)
O23 - Service: NVIDIA nForce Networking Controller Driver (NVENETFD) - NVIDIA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\nvm62x64.sys (file missing)
O23 - Service: nvraid - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvraid.sys (file missing)
O23 - Service: nvstor - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvstor.sys (file missing)
O23 - Service: ql2300 - QLogic Corporation - C:\WINDOWS\system32\drivers\ql2300.sys (file missing)
O23 - Service: ql40xx - QLogic Corporation - C:\WINDOWS\system32\drivers\ql40xx.sys (file missing)
O23 - Service: Revoflt - VS Revo Group - C:\WINDOWS\SYSTEM32\DRIVERS\revoflt.sys (file missing)
O23 - Service: SiSRaid2 - Silicon Integrated Systems Corp. - C:\WINDOWS\system32\drivers\SiSRaid2.sys (file missing)
O23 - Service: SiSRaid4 - Silicon Integrated Systems - C:\WINDOWS\system32\drivers\sisraid4.sys (file missing)
O23 - Service: SrvHsfHDA - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTAZL6.SYS (file missing)
O23 - Service: SrvHsfV92 - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTDPV6.SYS (file missing)
O23 - Service: SrvHsfWinac - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTCNXT6.SYS (file missing)
O23 - Service: stexstor - Promise Technology - C:\WINDOWS\system32\drivers\stexstor.sys (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10314 (STHDA) - IDT, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\stwrt64.sys (file missing)
O23 - Service: Synaptics TouchPad Driver (SynTP) - Synaptics Incorporated - C:\WINDOWS\SYSTEM32\DRIVERS\SynTP.sys (file missing)
O23 - Service: viaide - VIA Technologies, Inc. - C:\WINDOWS\system32\drivers\viaide.sys (file missing)
O23 - Service: vsmraid - VIA Technologies Inc.,Ltd - C:\WINDOWS\system32\drivers\vsmraid.sys (file missing)
**O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - %SystemRoot%\System32\svchost.exe -k secsvcs - %ProgramFiles%\Windows Defender\mpsvc.dll (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe (file missing)
Listado de Servicios (Deshabilitados):
--------------------------------------
99 Servicios.
25 de Carga Automatica.
74 de Carga Manual.
0 Deshabilitados.
Agradecere la ayuda
saludos
-
msc hotline sat
- Mensajes: 93500
- Registrado: 09 Mar 2004, 20:39
- Ubicación: BARCELONA (ESPAÑA)
- Contactar:
Re: Problema desktop.ini y RECYCLER
Pues restuare el sistema a un punto anterior, en que no habian anomalias, y protejalo con el ELIPEN, para evitar la entrada de virus por pendrive.
Y luego, en el ELIPEN, seleccione la unidad de pendrive y dele a proceselo, con lo que lo vacunará contra la propagación de virus de dicho tipo.
.
[img]http://www.satinfo.es/blog/wp-content/uploads/2010/03/moltbetot.gif [/img]
y vacunar el ordenador y las unidades de pendrive con el ELIPEN:
[b]ELIPEN.EXE[/b]
http://www.zonavirus.com/descargas/descargar-elipen.asp
Tras probarlo, reiniciar y postearnos el contenido de C:\infosat.txt para ver el
resultado del proceso
saludos
ms, 14-4-2012
Y luego, en el ELIPEN, seleccione la unidad de pendrive y dele a proceselo, con lo que lo vacunará contra la propagación de virus de dicho tipo.
.
[img]y vacunar el ordenador y las unidades de pendrive con el ELIPEN:
Tras probarlo, reiniciar y postearnos el contenido de C:\infosat.txt para ver el
resultado del proceso
saludos
ms, 14-4-2012
msc hotline sat Virus Research Engineer Antes de preguntar - Normas Basicas - Mensajes Privados - Repetir Temas - Continuar Temas - Titulos del Tema - Antivirus Online