Buenas,
Lo primero es daros las gracias por este foro, solo con leerlo un poquito, ya me ayudo algo.
Espero que me podais echar una mano, se me colo el virus ssqro, y lo elimine mal. ahora saltan sin parar ventanas con error dll.
al arrancar sale esta
"c:\windows\sistem32\ssqro.exe no es una aplicacion Win32 valida"
y si le doy a aceptar salta primero una ventana diciendo "no se puede cargar ni ejecutar c:\windows\sistem32\ssqro.exe especificado en el Registro. Asegurese de que el archivo existe en el equipo o quite del Registro toda referencia al mismo."
al darle a aceptar, me saltan continuamente ventanas con el mismo error dll
Revisando el foro, he dado algunos pasos para hacer desaparecer la ventana que me sale al inicio del xp
Los pasos que he seguido son:
hacer log con hijackthis,
Actualizar xp,
pasar el limpiador ccleaner,
eliminar archivos temporales de java,
analizar y limpiar con spyware terminator,
pasar el panda antivirus 2008,
volver a hacer un log hijackthis.
adjunto los logs: hijackthis1, spyware terminator y hijackthis2 (el del panda no cabe en este mensaje)
Hijackthis1
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 0:40:50, on 07/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavsrv51.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\AVENGINE.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Intel\Wireless\Bin\EvtEng.exe
C:\Archivos de programa\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
c:\archivos de programa\archivos comunes\logitech\lvmvfm\LVPrcSrv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
c:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsCtrls.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsImSvc.exe
C:\Archivos de programa\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
C:\Archivos de programa\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Archivos de programa\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://es.rd.yahoo.com/customize/ycomp/def...://es.yahoo.comR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://es.es.acer.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) =
http://es.rd.yahoo.com/customize/ycomp/def...://es.yahoo.comR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn0\yt.dll
F3 - REG:win.ini: load=C:\WINDOWS\system32\ssqro.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {3EB7F1A9-3868-4C7B-9209-AC0CF20E5C59} - C:\WINDOWS\system32\ssqro.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Archivos de programa\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: (no name) - {DB0B918E-A0A8-482B-8D75-A682816B0C7B} - (no file)
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\ARCHIV~1\FlashFXP\IEFlash.dll
O2 - BHO: {f8b5223d-def5-148b-97d4-6ea6c68b9bfe} - {efb9b86c-6ae6-4d79-b841-5fedd3225b8f} - (no file)
O2 - BHO: (no name) - {FB52F973-00C6-4D74-8CBC-EF9557B8A0FA} - (no file)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Archivos de programa\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPLpr] C:\Archivos de programa\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Archivos de programa\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Archivos de programa\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [APVXDWIN] "C:\Archivos de programa\Panda Security\Panda Antivirus 2008\APVXDWIN.EXE" /s
O4 - HKCU\..\Run: [ccleaner] "C:\Archivos de programa\CCleaner\ccleaner .exe" /AUTO
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Enviar a &Bluetooth - c:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Archivos de programa\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) -
http://www.nanoscan.com/as/cabs/ascstubie.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://update.microsoft.com/windowsupdate/...b?1167757914781O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) -
http://download.divx.com/player/DivXBrowserPlugin.cabO16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) -
http://cid-43a9d821bbe49439.spaces.live.co...ad/MsnPUpld.cabO16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) -
http://www.nanoscan.com/cabs/nanoinst.cabO16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://acs.pandasoftware.com/activescan/as5free/asinst.cabO16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) -
http://game02.zylom.com/activex/zylomgamesplayer.cabO20 - Winlogon Notify: pmnkhii - pmnkhii.dll (file missing)
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: eLock Service (eLockService) - - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Archivos de programa\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech - c:\archivos de programa\archivos comunes\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Panda Software Controller - Panda Software International - C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsCtrls.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavsrv51.exe
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsImSvc.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Archivos de programa\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Archivos de programa\WinPcap\rpcapd.exe
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Archivos de programa\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Archivos de programa\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 9857 bytes
log spyware terminator
Logfile of Spyware Terminator v2.0.1.224 (db:1.0.044.807)
Scan Time: 07/02/2008 0:43:22 length: 215 s
Platform: Windows XP Service Pack 2 (WINNT 5.1.2600)
User: Limited
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 30270 (Critical:0)
Filter: No System items, No Safe items
Running Processes
pavsrv51.exe [Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavsrv51.exe
AVENGINE.EXE [Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\AVENGINE.EXE
EvtEng.exe [Intel Corporation] : C:\Archivos de programa\Intel\Wireless\Bin\EvtEng.exe
S24EvMon.exe [Intel Corporation] : C:\Archivos de programa\Intel\Wireless\Bin\S24EvMon.exe
LVPrcSrv.exe [Logitech] : C:\Archivos de programa\Archivos comunes\logitech\lvmvfm\LVPrcSrv.exe
MemCheck.exe [Acer Inc.] : C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
btwdins.exe [Broadcom Corporation.] : C:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
PsCtrls.exe [Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsCtrls.exe
PsImSvc.exe [Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsImSvc.exe
RegSrvc.exe [Intel Corporation] : C:\Archivos de programa\Intel\Wireless\Bin\RegSrvc.exe
eLockServ.exe : C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
psimreal.exe ( PID=2752 )
Internet Settings
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant =
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htmR - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch =
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htmR - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =
BHO
02 - BHO: - {3EB7F1A9-3868-4C7B-9209-AC0CF20E5C59} - : C:\WINDOWS\system32\ssqro.dll
02 - BHO: - {7E853D72-626A-48EC-A868-BA8D5E23E045} - File not found
02 - BHO: - {DB0B918E-A0A8-482B-8D75-A682816B0C7B} - File not found
02 - BHO: - {efb9b86c-6ae6-4d79-b841-5fedd3225b8f} - File not found
02 - BHO: - {FB52F973-00C6-4D74-8CBC-EF9557B8A0FA} - File not found
02 - BHO: - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - File not found
02 - BHO: - {e2e2dd38-d088-4134-82b7-f2ba38496583} - File not found
02 - BHO: - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
Toolbars
03 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - [HiTRUST] : C:\WINDOWS\system32\eDStoolbar.dll
StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ccleaner : [Piriform Ltd] : C:\Archivos de programa\CCLEANER\CCLEANER .EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, SkyTel : [Realtek Semiconductor Corp.] : C:\WINDOWS\SkyTel.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, MSPY2002 : : C:\WINDOWS\system32\IME\PINTLGNT\IMSCINST.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, PCSuiteTrayApplication : [Nokia] : C:\Archivos de programa\NOKIA\NOKIA PC SUITE 6\LAUNCHAPPLICATION.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ePower_DMC : : C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, APVXDWIN : [Panda Software International] : C:\Archivos de programa\PANDA SECURITY\PANDA ANTIVIRUS 2008\APVXDWIN.EXE
04 - HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows, load : : C:\WINDOWS\system32\ssqro.exe
Shell Extensions
Extensión de paneo de pantalla del Panel de control - {42071714-76d4-11d1-8b24-00a0c9068ff3} - : deskpan.dll
- {764BF0E1-F219-11ce-972D-00AA00A14F56} - File not found
- {853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} - File not found
Barra de tareas y menú Inicio - {0DF44EAA-FF21-4412-828E-260A8728E7F1} - File not found
Cuentas de usuario - {7A9D77BD-5403-11d2-8785-2E0420524153} - File not found
- {2F603045-309F-11CF-9774-0020AFD0CFF6} - [Synaptics, Inc.] : C:\Archivos de programa\Synaptics\SynTP\SynTPCpl.dll
EPM-PO Shell Extensions - {2b45bd21-71f8-4c8c-a87a-7eeb25a1a3e0} - [Acer Labs USA] : C:\WINDOWS\system32\epm-po.dll
Mis sitios de Bluetooth - {6af09ec9-b429-11d4-a1fb-0090960218cb} - [Broadcom Corporation.] : C:\WINDOWS\system32\btneighborhood.dll
YMailShellExt Class - {5464D816-CF16-4784-B9F3-75C0DB52B499} - [Yahoo! Inc.] : C:\Archivos de programa\Yahoo!\common\ymmapi.dll
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Archivos de programa\WinRAR\rarext.dll
WinZip - {E0D79304-84BE-11CE-9641-444553540000} - [WinZip Computing, Inc.] : C:\Archivos de programa\WinZip\WZSHLSTB.DLL
WinZip - {E0D79305-84BE-11CE-9641-444553540000} - [WinZip Computing, Inc.] : C:\Archivos de programa\WinZip\WZSHLSTB.DLL
WinZip - {E0D79306-84BE-11CE-9641-444553540000} - [WinZip Computing, Inc.] : C:\Archivos de programa\WinZip\WZSHLSTB.DLL
WinZip - {E0D79307-84BE-11CE-9641-444553540000} - [WinZip Computing, Inc.] : C:\Archivos de programa\WinZip\WZSHLSTB.DLL
Extensión de iconos de archivo de Outlook - {0006F045-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Archivos de programa\Microsoft Office\Office10\OLKFSTUB.DLL
dMCIShell Class - {2C49B5D0-ACE7-4D17-9DF0-A254A6C5A0C5} - : C:\Archivos de programa\Illustrate\dBpowerAMP\dMCShell.dll
dBpShell Class - {FED7043D-346A-414D-ACD7-550D052499A7} - : C:\Archivos de programa\Illustrate\dBpowerAMP\dBShell.dll
Acrobat Elements Context Menu - {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} - [Adobe Systems Inc.] : C:\Archivos de programa\Adobe\Acrobat 6.0\Acrobat Elements\ContextMenu.dll
Nokia Phone Browser - {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} - [Nokia] : C:\Archivos de programa\Nokia\Nokia PC Suite 6\PhoneBrowser.dll
TuneUp Theme Extension - {44440D00-FF19-4AFC-B765-9A0970567D97} - [TuneUp Software GmbH] : C:\WINDOWS\system32\uxtuneup.dll
TuneUp Shredder Shell Extension - {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} - [TuneUp Software GmbH] : C:\Archivos de programa\TuneUp Utilities 2006\SDShelEx-win32.dll
Panda Antivirus - {65756541-C65C-11CD-0000-4B656E696100} - [Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\ShellTit.dll
Protocol Handler
Data Page Pluggable Protocol mso-offdap Handler - {3D9F03FA-7A94-11D3-BE81-0050048385D1} - [Microsoft Corporation] : C:\Archivos de programa\Archivos comunes\Microsoft Shared\Web Components\10\OWC10.DLL
Winsock 2
[Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavlsp.dll
[Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavlsp.dll
[Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavlsp.dll
[Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavlsp.dll
Services
23 - [Acer Inc.] : C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
23 - [Meetinghouse Data Communications] : C:\WINDOWS\system32\DRIVERS\AegisP.sys
23 - [Broadcom Corporation.] : C:\WINDOWS\system32\drivers\btaudio.sys
23 - [Broadcom Corporation.] : C:\WINDOWS\system32\DRIVERS\btkrnl.sys
23 - [Broadcom Corporation.] : C:\WINDOWS\system32\DRIVERS\BTSERIAL.SYS
23 - [Broadcom Corporation.] : C:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
23 - [Dritek System Inc.] : C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
23 - : C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
23 - [Acer Value Labs, USA] : C:\WINDOWS\system32\DRIVERS\EPM-PSD.SYS
23 - [Acer Value Labs, USA] : C:\WINDOWS\system32\DRIVERS\EPM-SHD.SYS
23 - [Intel Corporation] : C:\Archivos de programa\Intel\Wireless\Bin\EvtEng.exe
23 - [Conexant Systems, Inc.] : C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
23 - [Conexant Systems, Inc.] : C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
23 - [Intel Corporation] : C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
23 - : C:\WINDOWS\system32\DRIVERS\INT15.SYS
23 - [Realtek Semiconductor Corp.] : C:\WINDOWS\system32\drivers\RtkHDAud.sys
23 - [Hewlett-Packard Company] : C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
23 - [Logitech] : C:\WINDOWS\system32\DRIVERS\lv321av.sys
23 - [Logitech] : C:\WINDOWS\system32\DRIVERS\LVMVDRV.SYS
23 - [Logitech] : C:\WINDOWS\system32\DRIVERS\LVPRCMON.SYS
23 - [Logitech] : C:\Archivos de programa\Archivos comunes\logitech\lvmvfm\LVPrcSrv.exe
23 - [Logitech] : C:\WINDOWS\system32\drivers\lvusbsta.sys
23 - [National Semiconductor Corporation] : C:\WINDOWS\system32\DRIVERS\nscirda.sys
23 - [Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsCtrls.exe
23 - [Panda Software International] : C:\WINDOWS\system32\DRIVERS\pavdrv51.sys
23 - [Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavsrv51.exe
23 - [Panda Software International] : C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsImSvc.exe
23 - [Intel Corporation] : C:\Archivos de programa\Intel\Wireless\Bin\RegSrvc.exe
23 - [Intel Corporation] : C:\Archivos de programa\Intel\Wireless\Bin\S24EvMon.exe
23 - [Intel Corporation] : C:\WINDOWS\system32\DRIVERS\s24trans.sys
23 - [Synaptics, Inc.] : C:\WINDOWS\system32\DRIVERS\SynTP.sys
23 - [EnTech Taiwan] : C:\WINDOWS\system32\DRIVERS\TVICPORT.SYS
23 - [Intel® Corporation] : C:\WINDOWS\system32\DRIVERS\w39n51.sys
23 - [Conexant Systems, Inc.] : C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
23 - [Zeal SoftStudio] : C:\WINDOWS\system32\DRIVERS\ZNTPORT.SYS
Winlogon Notify
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avldr, DLLName : [Panda Software International] : C:\WINDOWS\system32\avldr.dll
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui, DLLName : [Intel Corporation] : C:\WINDOWS\system32\igfxdev.dll
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\pmnkhii, DLLName : : pmnkhii.dll
Advanced Files Report
%SYSDIR%\avldr.dll [Panda Software International] [Panda residents] MD5=98D088248766C34A05614A7EC0CBB658 SIZE=50736
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\pavlsp.dll [Panda Software International] [Panda residents] MD5=EC2E4ABC71D89ABB8A8A13AA408E1396 SIZE=177456
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\icl_cfg.dll [Panda Software International] [Panda residents] MD5=0C9F9F4F7A700A7C94541F12DBD9645A SIZE=136496
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\pavsrv51.exe [Panda Software International] [Panda residents] MD5=C37842E4E473A064B21755D6235F5497 SIZE=148272
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\avengdll.dll [Panda Software International] [Panda residents] MD5=C50C8328844AFCFAC6BB6860EB720CE9 SIZE=54832
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PavCntrs.dll [Panda Software International] [Panda interface] MD5=166CCFE349568A85BDD22DB59BF644A2 SIZE=87600
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PavVt.dll [Panda Software] [PavVT Dynamic Link Library] MD5=A0962C50A1278185B19A36E4A1B8861B SIZE=48688
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\GWStore.dll [Panda Software International] [Panda residents] MD5=8D70931C1EEC609D42CDE4DA3ACE415B SIZE=52528
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\avcic.dll [Panda Software International] [Panda Interface Manager] MD5=23245AA1D86DC993B523E19C21EF184D SIZE=63536
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\AVENGINE.EXE [Panda Software International] [Panda residents] MD5=FDE0F9A81E6893E780C2AB5BA3BF166D SIZE=96560
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\pskas.dll [Panda Software International] [Panda Anti-malware] MD5=FFBDDE1311104624C49E31124B24A8E2 SIZE=71216
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PSKUTIL.dll [Panda Software International] [Panda Anti-Malware] MD5=5FBA3C1F48B2D397903A1B2D55635C5E SIZE=81712
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PSKVFILE.dll [Panda Software International] [Panda Anti-malware] MD5=6DAAB37FE430A90931535CB4558A041B SIZE=18992
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PSKALLOC.dll [Panda Software International] [Panda Anti-malware] MD5=CB2A5BCE7FD95DB39877CBF4897E3704 SIZE=26160
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\pskvfs.dll [Panda Software International] [Panda Anti-malware] MD5=86A8CB8C89BC2A87799F4A6F8D25AEDB SIZE=83760
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PSKCMP.dll [Panda Software International] [Panda anti-malware] MD5=C5FAFA336B3CD5857173935278D4995F SIZE=455984
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PSKPACK.DLL [Panda Software International] [Panda Anti-malware] MD5=5E54FA6FBC0A1D1F4C8F6DCC8FE8EFE3 SIZE=39984
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PSKVM.DLL [Panda Software International] [Panda Anti-malware] MD5=4848B61F4B58A25E261A0E8C239A13F1 SIZE=183088
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PSKHTML.dll [Panda Software International] [Panda Anti-malware] MD5=5BEA301D7B88DFE8E32C74520E15DC1F SIZE=218672
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\pskmdfs.dll [Panda Software International] [Panda Anti-malware] MD5=4DC89E23B460045E49C9EBF8333A4257 SIZE=20016
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\memvfile.dll [Panda Software International] [Panda Anti-malware] MD5=8E10B1688318698102906FA01DEC83CB SIZE=10288
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\pskavs.dll [Panda Software International] [Panda Anti-malware] MD5=E2DFBD4CEA064CB02942F1B4B5644463 SIZE=788784
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\pskahk.dll [Panda Software International] [Panda Anti-malware] MD5=B5CA931F450DB27C349D7DE45742ECA3 SIZE=2020656
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\pskscs.dll [Panda Software International] [Panda Anti-malware] MD5=51A483A97C74F7E20F7003F9DA84BFFB SIZE=296240
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\pskfss.dll [Panda Software International] [Panda Anti-malware] MD5=2E72033C38480D22A0581E3C90980E45 SIZE=103728
%SYSDIR%\uxtuneup.dll [TuneUp Software GmbH] [TuneUp Utilities] MD5=FF5F80AB025EBA6233DEFEA3932F8123 SIZE=24072
%PROGRAMFILES%\Intel\Wireless\Bin\EvtEng.exe [Intel Corporation] [Intel® PROSet/Wireless Event Log] MD5=96A55CC44A967A5F9761E25B1F03BB02 SIZE=114753
%PROGRAMFILES%\Intel\Wireless\Bin\PsRegApi.dll [Intel Corporation] [PsRegApi] MD5=15DCB5546C49ABCA7A495D042A510958 SIZE=266316
%PROGRAMFILES%\Intel\Wireless\Bin\TraceAPI.DLL [Intel Corporation] [TraceAPI Module] MD5=E9CABDC089200173FF1C5786D8FD07B9 SIZE=163909
%PROGRAMFILES%\Intel\Wireless\Bin\S24EvMon.exe [Intel Corporation] [Intel® PROSet/Wireless Service] MD5=FEBC1C664C0F99CDCB0BC122F69E4A92 SIZE=540745
%PROGRAMFILES%\Intel\Wireless\Bin\LIBEAY32.dll [] MD5=CAE82B2838976CBC0AA79EBD2FC08C15 SIZE=876544
%PROGRAMFILES%\Intel\Wireless\Bin\IntStngs.dll [] [IntelSettings Dynamic Link Library] MD5=B6890470C6BD42A13DE4248B863ABE80 SIZE=53322
%PROGRAMFILES%\Intel\Wireless\Bin\IWMSPROV.DLL [] MD5=C2DE4D404A5679E1BB14A300C7ED81F1 SIZE=208965
%SYSDIR%\AdobePDF.dll [Adobe Systems Incorporated.] [Acrobat ® PDF Port for Windows] MD5=381915766C2A5E47A7DB95423CE09A16 SIZE=21099
%PROGRAMFILES%\Adobe\Acrobat 6.0\Distillr\adistres.dll [Adobe Systems Incorporated.] [Acrobat Distiller for Windows] MD5=F41A8F6E80DB4853CFC8613F72B53E12 SIZE=155648
%SYSDIR%\bthcrp.dll [Broadcom Corporation.] [Bluetooth Software 5.0.1.1500] MD5=72C464CA07DE1C29E9BE04C337545908 SIZE=114688
%SYSDIR%\WidcommSdk.dll [Broadcom Corporation.] [Bluetooth Software 5.0.1.1500] MD5=E03869F090D195D1CBE4124EEFA7793F SIZE=577536
%SYSDIR%\wbtapi.dll [Broadcom Corporation.] [Bluetooth Software 5.0.1.1500] MD5=5660B710C87876DB510F69E8A70FFEBF SIZE=589885
%SYSDIR%\btncopy.dll [Broadcom Corporation.] [Bluetooth Software 5.0.1.1500] MD5=D961292189C0028524523FE9F257C1C4 SIZE=65536
%PROGRAMFILES%\Nokia\Nokia PC Suite 6\PhoneBrowser.dll [Nokia] [Phone Browser] MD5=600D719D720715B28C3234C624E95BAB SIZE=562688
%PROGRAMFILES%\Nokia\Nokia PC Suite 6\PCSCM.dll [Nokia] [PC Suite Common Modules] MD5=0E51263EA765F9AB45AA8F04CADB22B9 SIZE=659456
%PROGRAMFILES%\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_spa.nlr [Nokia] [Nokia Phone Browser] MD5=BDC683E179E41EF185F4BBCE9D66F0EC SIZE=30720
%PROGRAMFILES%\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr [Nokia] [Nokia Phone Browser] MD5=B058E4E76A4524DC13FC44B7829FEE5F SIZE=543744
%COMMONFILES%\Logitech\LVMVFM\LVPrcInj.dll [Logitech] [Logitech] MD5=F33E494DEB6F2FDBB5D1EB56C2A423D7 SIZE=81920
%SYSDIR%\VxLibRes.dll [Acer] [Acer OrbiCam] MD5=2F9558E356CEEBDC04998FBED1A5EE56 SIZE=39936
%COMMONFILES%\logitech\lvmvfm\LVPrcSrv.exe [Logitech] [Logitech] MD5=D31BE03B7CAAEE453D265B20C10744A3 SIZE=86016
%SystemDiskRoot%\Acer\Empowering Technology\ePerformance\MemCheck.exe [Acer Inc.] MD5=C6E17984228C3B55A730E69AAE2768D2 SIZE=28672
%WINDIR%\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_ebe1f6aa\mscorlib.dll [] MD5=34DEE0729AD523EAD3481456E009081A SIZE=3391488
%WINDIR%\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_f8c32b28\system.dll [] MD5=D129A4B1DA9DE44B3DE3874098B2E388 SIZE=1966080
%SystemDiskRoot%\acer\empowering technology\eperformance\acer.empowering.shared.dll [Acer Inc.] MD5=8C64C976EB7F7415C88E08261C9E77E5 SIZE=20480
%SystemDiskRoot%\acer\empowering technology\eperformance\acermemusagecheckservinterface.dll [] MD5=9EA5C8C0B06DA1A1C08DB62FE0E6F8D3 SIZE=16384
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PavTrc.dll [Panda Software International] [Panda residents] MD5=6257A56A19456B9AAD44DA5D01B196CB SIZE=144688
%PROGRAMFILES%\WIDCOMM\Bluetooth Software\bin\btwdins.exe [Broadcom Corporation.] [Bluetooth Software 5.0.1.1500] MD5=D9E3B5AAD23BF7EFA6A5DE3C855E0DA2 SIZE=266295
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=86E8BCAA91FC2ACFACD99CF2BF9F1F47 SIZE=49152
%COMMONFILES%\LightScribe\LSSProxy.dll [Hewlett-Packard Company] [LightScribe] MD5=D65010DB6686F85B31BFA3B0DDD9F5DD SIZE=77824
%COMMONFILES%\LightScribe\LSLog.dll [Hewlett-Packard Company] [LightScribe] MD5=84437DADFFF2ED615DED779CBD16A67E SIZE=32256
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PsCtrls.exe [Panda Software International] [Panda Solutions] MD5=5731CB4D1D167793F8B27301B845AB9A SIZE=169264
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PsImSvc.exe [Panda Software International] [Panda Interface Manager] MD5=AB75889B63CB3B761FB71072AC79DF94 SIZE=108592
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\PSImFltr.dll [Panda Software International] [Panda Interface] MD5=D4593CEC9C6E8EDC183158758A4E1667 SIZE=43056
%PROGRAMFILES%\Intel\Wireless\Bin\RegSrvc.exe [Intel Corporation] [Intel® PROSet/Wireless Registry Service] MD5=5E9847165E4FE202ADA891DD6EE2FA24 SIZE=217164
%SystemDiskRoot%\Acer\Empowering Technology\eLock\Service\eLockServ.exe [] MD5=E5A683360FAB2D646A5EFAD8C68B8A76 SIZE=20480
%SystemDiskRoot%\acer\empowering technology\elock\service\elock.serv.main.dll [] MD5=536CAB0A6DF35495E27BD00464C1CC43 SIZE=40960
%SystemDiskRoot%\acer\empowering technology\elock\service\elock.serv.interface.dll [] MD5=E47641B80F5AEC8D3D1EE8BCC4F7D928 SIZE=20480
%SystemDiskRoot%\acer\empowering technology\elock\service\elock.serv.library.dll [] MD5=BA29030A51E46191FD38870BE6A309E2 SIZE=102400
%SystemDiskRoot%\acer\empowering technology\elock\service\log4net.dll [The Apache Software Foundation] [log4net] MD5=CA8C34CFB6573800B9D6AF99C419228C SIZE=249856
%WINDIR%\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_7a5464df\system.xml.dll [] MD5=9B615D38B1A1AA8D18E1BC6875F5A27A SIZE=2088960
%PROGRAMFILES%\Yahoo!\Messenger\YPagerChecker.dll [Yahoo! Inc.] [Yahoo! Messenger] MD5=7949F93B3D821084E1B7700C89337590 SIZE=91640
%SYSDIR%\ssqro.dll []
deskpan.dll []
%PROGRAMFILES%\Synaptics\SynTP\SynTPCpl.dll [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=7DAE4A5188D0EF2D391F130139D18155 SIZE=5947483
%SYSDIR%\epm-po.dll [Acer Labs USA] [EPM-PO Dynamic Link Library] MD5=12AE3A9C45115E5E0A22880B801AED33 SIZE=45056
%SYSDIR%\btneighborhood.dll [Broadcom Corporation.] [Bluetooth Software 5.0.1.1500] MD5=8D3EDAF7AC34A5C3591F2F7BBDE5E381 SIZE=1060941
%PROGRAMFILES%\Yahoo!\common\ymmapi.dll [Yahoo! Inc.] [YMMAPI Module] MD5=A0C86DB296BBE76145377D56C5975175 SIZE=190496
%PROGRAMFILES%\WinRAR\rarext.dll [] MD5=91AC19CE4E75DE009A33C5EE6F43E69A SIZE=121344
%PROGRAMFILES%\WinZip\WZSHLSTB.DLL [WinZip Computing, Inc.] [WinZip] MD5=66DA6F6A67D238721A3FCEB70C8DC2D0 SIZE=5120
%PROGRAMFILES%\Microsoft Office\Office10\OLKFSTUB.DLL [Microsoft Corporation] [Microsoft Outlook] MD5=D15A981664C5D152BE609C397B28DFB6 SIZE=55632
%PROGRAMFILES%\Illustrate\dBpowerAMP\dMCShell.dll [] [dMCShell Module] MD5=9E86F2CDA1844365EB14264239B8BD34 SIZE=81920
%PROGRAMFILES%\Illustrate\dBpowerAMP\dBShell.dll [] [dBShell Module] MD5=C840137A95125E5A8B626103A28EDF5F SIZE=45056
%PROGRAMFILES%\Adobe\Acrobat 6.0\Acrobat Elements\ContextMenu.dll [Adobe Systems Inc.] [Adobe Acrobat Elements] MD5=CDDBD1E9B24C0CDF9C8C5BE2DC27B5D4 SIZE=409687
%PROGRAMFILES%\TuneUp Utilities 2006\SDShelEx-win32.dll [TuneUp Software GmbH] [TuneUp Utilities] MD5=92C00F743BBC2CCB2710C044FA172D14 SIZE=25608
%PROGRAMFILES%\Panda Security\Panda Antivirus 2008\ShellTit.dll [Panda Software International] [Panda Titanium antivirus 2008] MD5=67B9BC4B6F8B64D3F0F380FE21397D3C SIZE=124464
%SYSDIR%\igfxdev.dll [Intel Corporation] [Intel® Common User Interface] MD5=A58241451A149929A679C82FA934EF81 SIZE=139264
pmnkhii.dll []
%SYSDIR%\DRIVERS\AegisP.sys [Meetinghouse Data Communications] [AEGIS Client 3.4.10.0] MD5=91F3DF93F40A74D222CD166FE95DB633 SIZE=21275
%SYSDIR%\drivers\btaudio.sys [Broadcom Corporation.] [Bluetooth Software 5.0.1.1500] MD5=F73D41FD3653FE64CC79610F7B240472 SIZE=328061
%SYSDIR%\DRIVERS\btkrnl.sys [Broadcom Corporation.] [Bluetooth Software 5.0.1.1500] MD5=4EBD4EBFF01617FBDA6CE7963F150918 SIZE=850474
%SYSDIR%\DRIVERS\BTSERIAL.SYS [Broadcom Corporation.] [Bluetooth Software 5.0.1.1500] MD5=6D9F1D03D4EBA886E1626D856762B4F0 SIZE=23271
%SYSDIR%\DRIVERS\DKbFltr.sys [Dritek System Inc.] [Dritek Keyboard Filter] MD5=08D30AF92C270F2E76787C81589DBAD6 SIZE=16896
%SYSDIR%\DRIVERS\EPM-PSD.SYS [Acer Value Labs, USA] [Acer EPM Power Scheme Driver] MD5=D68564FCFBDFC04280CDBBB37CF7EF7F SIZE=4096
%SYSDIR%\DRIVERS\EPM-SHD.SYS [Acer Value Labs, USA] [Acer EPM System Hardware Driver] MD5=2D0C4A7077F6C68449479F5444C580A7 SIZE=78208
%SYSDIR%\DRIVERS\HSFHWAZL.sys [Conexant Systems, Inc.] [SoftK56 Modem Driver] MD5=4A6992E1368E8B3342FCE2AF19F3251C SIZE=208256
%SYSDIR%\DRIVERS\HSF_DPV.sys [Conexant Systems, Inc.] [SoftK56 Modem Driver] MD5=6E749DB707C951F73E8F80BD5C26F5A0 SIZE=990592
%SYSDIR%\DRIVERS\ialmnt5.sys [Intel Corporation] [Intel Graphics Accelerator Drivers for Windows NT®] MD5=0F0194C4B635C10C3F785E4FEE52D641 SIZE=1166972
%SYSDIR%\DRIVERS\INT15.SYS [] MD5=4D8D5B1C895EA0F2A721B98A7CE198F1 SIZE=69632
%SYSDIR%\drivers\RtkHDAud.sys [Realtek Semiconductor Corp.] [Realtek® High Definition Audio Function Driver (HRTF data Copyright 1994 by MIT Media Lab)] MD5=284BCB80391783D328A8D8163E97FD58 SIZE=4368896
%SYSDIR%\DRIVERS\lv321av.sys [Logitech] [Logitech] MD5=9919E66D8E7B0C77B07A0852E1B38834 SIZE=1097728
%SYSDIR%\DRIVERS\LVMVDRV.SYS [Logitech] [Logitech] MD5=FA974AD25CD6C1FC94380D7DC5271B0D SIZE=2400128
%SYSDIR%\DRIVERS\LVPRCMON.SYS [Logitech] [Logitech] MD5=B750D805A1E024E42096970AD01434CF SIZE=16768
%SYSDIR%\drivers\lvusbsta.sys [Logitech] [Logitech] MD5=DCC4677C583FB9563E31B565FC28EAA2 SIZE=39424
%SYSDIR%\DRIVERS\nscirda.sys [National Semiconductor Corporation] [NSC Fast Infrared Driver.] MD5=6216798D29C3BA9D0D6F40BBBAB694A5 SIZE=28672
%SYSDIR%\DRIVERS\pavdrv51.sys [Panda Software International] [Panda Residents] MD5=828B8ADA82AB135CACED43994CCB8D66 SIZE=83640
%SYSDIR%\DRIVERS\s24trans.sys [Intel Corporation] [Intel Wireless LAN Packet Driver] MD5=73ED6B5CAC92F23F4610667B8EB8E8D6 SIZE=13568
%SYSDIR%\DRIVERS\SynTP.sys [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=A63401D180863A2CEFCE51798542AE5F SIZE=191456
%SYSDIR%\DRIVERS\TVICPORT.SYS [EnTech Taiwan] [TVicPort Generic Device Driver for Windows 95/98/ME/NT/2000/2003/XP/XP64] MD5=97DD70FECA64FB4F63DE7BB7E66A80B1 SIZE=14544
%SYSDIR%\DRIVERS\w39n51.sys [Intel® Corporation] [Intel® Wireless LAN Adapter] MD5=C79918A5BD269035F3A34D157401B9DF SIZE=1429632
%SYSDIR%\DRIVERS\HSF_CNXT.sys [Conexant Systems, Inc.] [SoftK56 Modem Driver] MD5=EE50579DB1B026BD92D9C16AC1DB4231 SIZE=728192
%SYSDIR%\DRIVERS\ZNTPORT.SYS [Zeal SoftStudio] [NTPort Library] MD5=40AC8590CC9006DBB99FFCB37879D4C6 SIZE=6080
%COMMONFILES%\Microsoft Shared\Web Components\10\OWC10.DLL [Microsoft Corporation] [Microsoft Office XP] MD5=6C1F34B3609BBD42E9B4A2A25548FAF0 SIZE=7445600
End of Report
log hijackthis2
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:25:03, on 07/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavsrv51.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\AVENGINE.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Intel\Wireless\Bin\EvtEng.exe
C:\Archivos de programa\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
c:\archivos de programa\archivos comunes\logitech\lvmvfm\LVPrcSrv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
c:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsCtrls.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsImSvc.exe
C:\Archivos de programa\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
C:\Archivos de programa\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\Apvxdwin.exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\Apvxdwin .exe
C:\Archivos de programa\Panda Security\Panda Antivirus 2008\WebProxy.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Archivos de programa\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://es.rd.yahoo.com/customize/ycomp/def...://es.yahoo.comR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://es.es.acer.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) =
http://es.rd.yahoo.com/customize/ycomp/def...://es.yahoo.comR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn0\yt.dll
F3 - REG:win.ini: load=C:\WINDOWS\system32\ssqro.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {3EB7F1A9-3868-4C7B-9209-AC0CF20E5C59} - C:\WINDOWS\system32\ssqro.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Archivos de programa\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: (no name) - {DB0B918E-A0A8-482B-8D75-A682816B0C7B} - (no file)
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\ARCHIV~1\FlashFXP\IEFlash.dll
O2 - BHO: {f8b5223d-def5-148b-97d4-6ea6c68b9bfe} - {efb9b86c-6ae6-4d79-b841-5fedd3225b8f} - (no file)
O2 - BHO: (no name) - {FB52F973-00C6-4D74-8CBC-EF9557B8A0FA} - (no file)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Archivos de programa\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPLpr] C:\Archivos de programa\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Archivos de programa\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Archivos de programa\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [APVXDWIN] "C:\Archivos de programa\Panda Security\Panda Antivirus 2008\APVXDWIN.EXE" /s
O4 - HKCU\..\Run: [ccleaner] "C:\Archivos de programa\CCleaner\ccleaner .exe" /AUTO
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Archivos de programa\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Enviar a &Bluetooth - c:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Archivos de programa\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) -
http://www.nanoscan.com/as/cabs/ascstubie.cabO16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) -
http://www.eset.eu/buxus/docs/OnlineScanner.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://update.microsoft.com/windowsupdate/...b?1167757914781O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) -
http://download.divx.com/player/DivXBrowserPlugin.cabO16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) -
http://cid-43a9d821bbe49439.spaces.live.co...ad/MsnPUpld.cabO16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) -
http://www.nanoscan.com/cabs/nanoinst.cabO16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://acs.pandasoftware.com/activescan/as5free/asinst.cabO16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) -
http://game02.zylom.com/activex/zylomgamesplayer.cabO20 - Winlogon Notify: pmnkhii - pmnkhii.dll (file missing)
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: eLock Service (eLockService) - - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Archivos de programa\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech - c:\archivos de programa\archivos comunes\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Panda Software Controller - Panda Software International - C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsCtrls.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Archivos de programa\Panda Security\Panda Antivirus 2008\pavsrv51.exe
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - C:\Archivos de programa\Panda Security\Panda Antivirus 2008\PsImSvc.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Archivos de programa\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Archivos de programa\WinPcap\rpcapd.exe
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Archivos de programa\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Archivos de programa\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 10238 bytes
Bueno, con tanto log el mensaje quedo bastante largo para ser el primero.
Toda ayuda es bien recibida.
Gracias de nuevo
log error dll ssqro
Feb 7 2008, 01:50 AM
