Fooros.Com Home Contact Site Map
Home Members Calendar New Posts Register FAQ

Retroceder   Fooros.Com > Programas, Tecnologia y Hardware > Tutoriales, Manuales
Actualizar esta página Eliminar Servicios Creados por Malwares con HijackThis
Registrarse Ayuda Miembros Calendario Buscar Temas de Hoy Marcar Foros Como Leídos

Avisos
No publicar descargas con contenido pirata.

Tema Cerrado
 
Herramientas Desplegado
  #1  
Antiguo 18-mar-2007, 20:29
Avatar de Lestat
Foorero
  
Fecha de Ingreso: enero-2007
Ubicación: Vigo (España)
Mensajes: 82
Gracias: 0
Agradecido 0 veces en 0 Post
Predeterminado Eliminar Servicios Creados por Malwares con HijackThis
permalink
Eliminar Servicios Creados por Malwares con HijackThis
(entradas 023 del log de HijackThis)


Los servicios son programas o aplicaciones cargadas por el propio sistema operativo. Estas aplicaciones tienen la particularidad que se ejecutan en segundo plano (Background). Por defecto, con la instalación, se instalan y ejecutan una cierta cantidad de servicios. Dependiendo de nuestras necesidades, podemos tenerlos todos activos o no.

En esta misma página encontrarás un listado de servicios no deseados provocados por ejecutables de programas maliciosos (virus, troyanos, gusanos, spyware, adware, rootkits, etc.)

Cómo eliminar estos Servicios:

Descarga el programa HijackThis 1.99.1 Descomprime o copia y pega el contenido en C:\HijackThis (deberás crear la carpeta). Ejecuta HijackThis.exe desde la nueva carpeta que has creado y haz clic sobre "Open the Misc Tools section":



Seguidamente haz clic sobre "Delete an NT service..." (sólo para Windows NT4/2000/XP).



En la nueva ventana "Delete a Windows NT Service", copia y pega en el espacio inferior en blanco el nombre exacto del Servicio a eliminar tal y como aparece en el log de HijackThis.

Por ejemplo: Si deseamos eliminar el siguiente servicio, tendremos que insertar en el espacio en blanco: Network Monitor, que es el nombre que nos indica el informe de HijackThis en esta entrada:

023 - Service: Network Monitor - Unknown owner - C:\Archivos de programa\Network Monitor\netmon.exe

También podemos insertar sólamente el nombre abreviado del Servicio si es que aparece en paréntesis en la entrada 023 correspondiente.

Por ejemplo: Si el Servicio activo fuese este otro, podríamos teclear ssl (como está en el paréntesis) o Microsoft SSL y pulsar sobre OK para deshacernos de él:

023 - Service: Microsoft SSL (ssl) - Unknown owner -C:\WINDOWS\system32ssl.exe



Por último, no olvides hacer clic sobre OK y salir del programa HijackThis.


Si el Servicio en cuestión no se hubiera podido eliminar según lo expuesto anteriormente, habría que proceder de la siguiente manera:

Detener y eliminar el Servicio (supongamos que se trata del Servicio Network Monitor). Para ello, abrimos el bloc de notas, copiamos y pegamos el siguiente texto (el nombre del Servicio debe ir entre comillas):

sc stop "Network Monitor"
sc delete "Network Monitor"

Seguidamente, guardamos el archivo de texto en el Escritorio con el nombre svc.bat y a continuación hacemos doble clic sobre él.

Parecerá que no ha ocurrido nada, pero en realidad hemos detenido y eliminado el
Servicio "Network Monitor".

Si quieres obtener un listado completo de los Servicios activos en tu PC, haz lo
siguiente:

1. Descarga Getservices.zip (Windows XP/2000).
2. Descomprime el contenido en C:\getservices (deberás crear la carpeta).
3. Abre la nueva carpeta C:\getservices y haz clic sobre "getservice"-->"getservice.bat".
4. Se abrirá la ventana en modo con símbolo del sistema y posteriormente un archivo de texto mostrando los Servicios que se están ejecutando en tu PC:

__________________

IMPRESCINDILES: AVG-ANTISPYWARE Y REGSEEKER
Si no sabeis como eliminar una infeccion o estais infectados, no dudeis en pegar un log de Hijackthis en el Foro de Seguridad.
  #2  
Antiguo 18-mar-2007, 20:29
Avatar de Lestat
Foorero
  
Fecha de Ingreso: enero-2007
Ubicación: Vigo (España)
Mensajes: 82
Gracias: 0
Agradecido 0 veces en 0 Post
Predeterminado
permalink
Listado de Servicios maliciosos:

[color=red]O23 - Service: .NET Framework Service (.NET Connection Service) - Unknown owner
- C:\WINDOWS\svchost.exe
O23 - Service: Age of Empires III: The WarChiefs - Unknown owner -
C:\WINDOWS\system32\dllcache\ageofempires.exe
O23 - Service: antivirus32 - Unknown owner - C:\WINDOWS\antivirus32.exe
O23 - Service: aol software (Aol Software) - Unknown owner - C:\WINDOWS\smss.exe
O23 - Service: Application Layer Gateway System (ALGS) - Unknown owner -
C:\WINDOWS\system32\algsys.exe
O23 - Service: Application State Service (AppSvc) - Unknown owner -
C:\WINDOWS\system32\apsvc.exe
O23 - Service: ARC Plugin (ARCPLUG) - Unknown owner -
C:\WINDOWS\system32\arci.exe
O23 - Service: Asus Motherboard Utility (Asus) - Unknown owner -
C:\WINDOWS\asus.exe
O23 - Service: Bluetooth Notification Service (Btnfserv) - Unknown owner -
C:\WINDOWS\system32\btserv.exe
O23 - Service: chckntfs - Unknown owner - C:\WINDOWS\chckntfs.exe
O23 - Service: chkext(chkext) (chkext) - Unknown owner -
C:\WINDOWS\system32\chkext.exe
O23 - Service: Client Server Runtime Proces - Unknown owner -
C:\WINDOWS\csrss.exe
O23 - Service: Clients Server Runtime Process (Windows Internet) - Unknown owner
- C:\WINDOWS\csrss.exe
O23 - Service: COM+ System Service (DLLHOST) - Unknown owner -
C:\WINDOWS\system\dllhost.exe
O23 - Service: comrepl - Unknown owner - C:\WINDOWS\comrepl32.exe
O23 - Service: comrepl - Unknown owner - C:\WINDOWS\comreplsvc.exe
O23 - Service: crss32.exe - Unknown owner - C:\WINDOWS\crss32.exe
O23 - Service: Cryptic Protected Storage (CryptProtectedService) - Unknown owner
- C:\WINDOWS\system32\cpstorage.exe
O23 - Service: Cryptographic Engine (EngSvc) - Unknown owner -
C:\WINDOWS\system32\csvc.exe
O23 - Service: Dcom Helper (DcmHlp) - Unknown owner - C:\WINDOWS\dcmhelp.exe
O23 - Service: Debug Config System - Unknown owner -
C:\WINDOWS\system32\lrsys.exe
O23 - Service: direct sound rss (dsrss) - Unknown owner - C:\WINDOWS\dsrss.exe
O23 - Service: DirectX Graphics (dxdmain) - Unknown owner -
C:\WINDOWS\system32\dxdmain.exe
O23 - Service: directx.exe - Unknown owner - C:\WINDOWS\directx.exe
O23 - Service: Dragon Age - Bioware - Unknown owner -
C:\WINDOWS\system32\dllcache\dragonage.exe
O23 - Service: Dynamic Library Host (DLLHOSTS) - Unknown owner -
C:\WINDOWS\dllhost.exe
O23 - Service: Extended Windows Security (Microsoft Extended Windows Security) -
Unknown owner - C:\WINDOWS\elRecvr.exe
O23 - Service: FIFA WORLD CUP 2007 - Unknown owner -
C:\WINDOWS\system32\dllcache\fifa2007.exe
O23 - Service: firefox auto update - Unknown owner - C:\WINDOWS\firefox.exe
O23 - Service: fwnet64 (fwnet) - Unknown owner - C:\WINDOWS\fwnet64.exe
O23 - Service: Generic Host Process For Win32 Services (Generic Host Process) -
Unknown owner - C:\WINDOWS\svchost.exe
O23 - Service: Generic Host Process for Win32 Service - Unknown owner -
C:\WINDOWS\svchost.exe
O23 - Service: Hardware Clock Driver (hwclock) - Unknown owner -
C:\WINDOWS\System32\hwclock.exe
O23 - Service: icrss manager 32bit (icrss) - Unknown owner -
C:\WINDOWS\system\icrss.exe
O23 - Service: InstallDriver Service (ISDS) - Unknown owner -
C:\WINDOWS\system32\csscv.exe
O23 - Service: Internet Service Manager (INETSVC) - Unknown owner -
C:\WINDOWS\INETSVC.EXE
O23 - Service: Italian Grand Prix - Unknown owner -
C:\WINDOWS\system32\dllcache\grand.exe
O23 - Service: iTunes Music Service (iTunesMusic) - Apple -
C:\WINDOWS\iTunesMusic.exe
O23 - Service: JavaPlatform64 - Unknown owner - C:\WINDOWS\JavaPlatform
O23 - Service: Java development Services - Unknown owner -
C:\WINDOWS\logins32.exe
O23 - Service: Java development Services - Unknown owner -
C:\WINDOWS\windows.exe
O23 - Service: Java Sun Scheduler (JUSCHED) - Unknown owner -
C:\WINDOWS\jusched.exe
O23 - Service: Kernell32 - Unknown owner - C:\WINDOWS\system32\termsv.exe
O23 - Service: Local Security Authority Subsystem Service (lsass) - Unknown
owner - C:\WINDOWS\lsass.exe
O23 - Service: Local Security Authority Subsystem Service (lsass) - Unknown
owner - C:\WINDOWS\scvhost.exe
O23 - Service: LSA Shel(Export Version) - Unknown owner - C:\WINDOWS\lsass.exe
O23 - Service: Mass Effect(tm) Xbox 360 - Unknown owner -
C:\WINDOWS\system32\dllcache\mfxbox.exe
O23 - Service: mcmmng32 (Microsoft Control Manager) - Unknown owner -
C:\WINDOWS\mcmmng32.exe
O23 - Service: Microsoft Agent - Unknown owner -
C:\WINDOWS\system32\dllcache\msagent.exe
O23 - Service: Microsoft Agent - Unknown owner -
C:\WINDOWS\system32\dllcache\rschost.exe
O23 - Service: Microsoft authenticate service (MsaSvc) - Unknown owner -
C:\WINDOWS\system32\msasvc.exe
O23 - Service: Microsoft BIOS Drivers - Unknown owner -
C:\WINDOWS\system32\vcmon.exe
O23 - Service: Microsoft Corporation (Windows Wordpad) - Unknown owner -
C:\WINDOWS\wordpad.exe
O23 - Service: Microsoft DCOM PC Service (mspcdcom) - Unknown owner -
C:\WINDOWS\System32\mspcdcom.exe
O23 - Service: Microsoft DLL System - Unknown owner -
C:\WINDOWS\system32\smsc.exe
O23 - Service: Microsoft DHCPA Service - Unknown owner -
C:\WINDOWS\system32\dllcache\mshcp.exe
O23 - Service: Microsoft HDA Protocol (svhda) - Unknown owner -
C:\WINDOWS\svhda.exe
O23 - Service: Microsoft information dll service (msidll) - Unknown owner -
C:\WINDOWS\system\msidll.exe
O23 - Service: Microsoft Language Service (Windows Language Service) - Unknown
owner - C:\WINDOWS\alg.exe
O23 - Service: Microsoft Logon Service - Unknown owner -
C:\WINDOWS\system32\dllcache\mslogon.exe
O23 - Service: Microsoft Main Window Service - Unknown owner -
C:\WINDOWS\system32\dllcache\mainwin32.exe
O23 - Service: MicroSoft Media Tools - Unknown owner - C:\WINDOWS\MSmedia.exe
O23 - Service: Microsoft MSI Service - Unknown owner -
C:\WINDOWS\System32\dllcache\msi.exe
O23 - Service: Microsoft Net API (NETAPI) - Unknown owner -
C:\WINDOWS\system32\msapi.exe
O23 - Service: Microsoft Net API (NETAPI) - Unknown owner -
C:\WINDOWS\system32\ntps.exe
O23 - Service: Microsoft Networks DN (msndn) - Unknown owner -
C:\WINDOWS\msndn.exe
O23 - Service: Microsoft Path Finder Service (mspathfinder) - Unknown owner -
C:\WINDOWS\mspathfinder
O23 - Service: Microsoft SCC Host Protocol (POOLSVR) - Unknown owner -
C:\WINDOWS\poolsv.exe
O23 - Service: Microsoft SCC Host Protocol (TaskMGM) - Unknown owner -
C:\WINDOWS\taskmg.exe
O23 - Service: Microsoft sdk core (sdk) - Unknown owner - C:\WINDOWS\lsass.exe
O23 - Service: Microsoft Security Login Service - Unknown owner -
C:\WINDOWS\System32\dllcache\mssecure32.exe
O23 - Service: Microsoft SQL Server Debug (sql) - Unknown owner -
C:\WINDOWS\sqldebug.exe
O23 - Service: Microsoft SSL (ssl) - Unknown owner - C:\WINDOWS\system32\ssl.exe
O23 - Service: Microsoft Star Window Service - Unknown owner -
C:\WINDOWS\system32\dllcache\starwin32.exe
O23 - Service: Microsoft Star Window Service - Unknown owner -
C:\WINDOWS\System32\dllcache\starwksvc.exe
O23 - Service: Microsoft Star Window Service - Unknown owner -
C:\WINDOWS\system32\dllcache\svcshoter.exe
O23 - Service: Microsoft Startup Manager. (Microsoft Startup Manager) - Unknown
owner - C:\WINDOWS\msput.exe
O23 - Service: Microsoft Terminal Service - Unknown owner -
C:\WINDOWS\system32\dllcache\msterminal.exe
O23 - Service: Microsoft update Service - Unknown owner -
C:\WINDOWS\System32\dllcache\msiupdate32.exe
O23 - Service: Microsoft VPS Service - Unknown owner -
C:\WINDOWS\System32\dllcache\msvps.exe
O23 - Service: Microsoft Windows Avantage Service (Windows Avantage) - Unknown
owner - C:\WINDOWS\avantage32.exe
O23 - Service: Microsoft Windows BDA Service - Unknown owner -
C:\WINDOWS\system32\dllcache\svhba.exe
O23 - Service: Microsoft windows FTPd - Unknown owner -
C:\WINDOWS\system32\dllcache\updtftpini.exe
O23 - Service: Microsoft Windows HDA Service - Unknown owner -
C:\WINDOWS\System32\dllcache\svhda.exe
O23 - Service: Microsoft Windows HelpFile (Windows Helpfile) - Unknown owner -
C:\WINDOWS\services.exe
O23 - Service: Microsoft Windows Internet Connections Manager (net32b) - Unknown
owner - C:\WINDOWS\System32\net32b.exe
O23 - Service: Microsoft Windows Man Service (Windows Man Service) - Unknown
owner - C:\WINDOWS\winmgr.exe
O23 - Service: Microsoft Windows Protection (Windows Protection Service) -
Unknown owner - C:\WINDOWS\winlogon.exe
O23 - Service: Microsoft Windows Spool Service (Windows Spool Service) - Unknown
owner - C:\WINDOWS\services.exe
O23 - Service: Microsoft Windows Spool Service (Windows Spool Service) - Unknown
owner - C:\WINDOWS\wdfmgr.exe
O23 - Service: Microsoft Windows Spooler Service (Windows Spooler Service) -
Unknown owner - C:\WINDOWS\services.exe
O23 - Service: Microsoft Windows System32 - Unknown owner -
C:\WINDOWS\windll32.exe
O23 - Service: Microsoft Windows System32 - Unknown owner -
C:\WINDOWS\winsysdir.exe
O23 - Service: Microsoft Windows System32 - Unknown owner -
C:\WINDOWS\winservs.exe
O23 - Service: Microsoft WMI Performance Adapter AddOn (WMIPerAddOn) - Unknown
owner - C:\WINDOWS\wmiapsrv.exe
O23 - Service: Mouse Cursor Monitor (mousecrm) - Unknown owner -
C:\WINDOWS\system32\mousecrm.exe
O23 - Service: MSCom - Unknown owner - C:\WINDOWS\system32\dllcache\mscom.exe
O23 - Service: MSCommmand - Unknown owner -
C:\WINDOWS\system32\dllcache\mswincom32.exe
O23 - Service: Msdtc Manager - Unknown owner - C:\WINDOWS\winlogin.exe
O23 - Service: msecure (mcsecure) - Unknown owner - C:\WINDOWS\mcsecure.exe
O23 - Service: MsHS64 - Unknown owner - C:\WINDOWS\MsHS64.exe
O23 - Service: msie7 - Unknown owner - C:\WINDOWS\system\msie701.exe
O23 - Service: MsLS32 - Unknown owner - C:\WINDOWS\MsLS32.exe
O23 - Service: msmbios (Microsoft System Management BIOS Driver) - Unknown owner
- C:\WINDOWS\mssmbios.exe
O23 - Service: msscmc43 - Unknown owner -
C:\WINDOWS\System32\dllcache\msscmc43.exe
O23 - Service: msvbn - Unknown owner - C:\WINDOWS\msvbn.exe
O23 - Service: msvrcs(msvrcs) (msvrcs) - Unknown owner -
C:\WINDOWS\system32\msvrcs.exe
O23 - Service: MS Dns Service (WinNet) - Unknown owner -
C:\WINDOWS\system32\wincntrl.exe
O23 - Service: MS DTC console - Unknown owner - C:\WINDOWS\msdtc.exe
O23 - Service: MS Office Updater Service - Unknown owner -
C:\WINDOWS\msrvs32.exe
O23 - Service: MXS(mxs) (MXS) - Unknown owner - C:\WINDOWS\system32\mxs.exe
O23 - Service: netconf32 - Unknown owner - C:\WINDOWS\netconf32.exe
O23 - Service: NetconDDE Service (NetconDDE) - Unknown owner -
C:\WINDOWS\iisctrl.exe
O23 - Service: Net Functions Library (Netlib) - Unknown owner -
C:\WINDOWS\System32\Netlib.exe
O23 - Service: Net Functions Monitoring (Netmon) - Unknown owner -
C:\WINDOWS\system32\Netmon.exe
O23 - Service: Net Service Monitor - Unknown owner - c:\windows\netsvc.exe
O23 - Service: Network Confg System - Unknown owner -
C:\WINDOWS\system32\lviss.exe
O23 - Service: Network DDE DSMA (NetDDEdsma) - Unknown owner -
C:\WINDOWS\svchost.exe
O23 - Service: Network Gateway Manager (npx) - Unknown owner -
C:\WINDOWS\csrsc.exe
O23 - Service: Network helper Service (MSDisk) - Unknown owner -
C:\WINDOWS\system32\irdvxc.exe
O23 - Service: Network Location Manager - Unknown owner -
C:\WINDOWS\system32\lssc.exe
O23 - Service: Network Provision Managing Service (xmlprovman) - Unknown owner -
C:\WINDOWS\system32\provsvc.exe
O23 - Service: Network Station Task Manager (TSKIB) - Unknown owner -
C:\WINDOWS\taskib.exe
O23 - Service: Network Station Task Manager (TASKSQ) - Unknown owner -
C:\WINDOWS\tasksch.exe
O23 - Service: Norton Online Anti Virus - Unknown owner - C:\WINDOWS\avll32.exe
O23 - Service: NTFS File Location Service (NTFSFLS) - Unknown owner -
C:\WINDOWS\system32\ntfsloc.exe
O23 - Service: NVIDIA Driver Service¡¡ (NVSv ) - Unknown owner -
C:\WINDOWS\svchost.exe
O23 - Service: nvsec(nvsec) (NvSec) - Unknown owner -
C:\WINDOWS\system32\nvsec.exe
O23 - Service: openSSL - Unknown owner - C:\WINDOWS\system32\openSSL32.exe
O23 - Service: P-SYS (P-SYS Service) - Unknown owner - C:\WINDOWS\termsvrs.exe
O23 - Service: PE Sytray Manager - Unknown owner - C:\WINDOWS\system32\ssmc.exe
O23 - Service: PixelModule (pxlmdl) - Unknown owner - C:\WINDOWS\nvidcgui.exe
O23 - Service: Power Manager (PowerManager) - Unknown owner -
C:\WINDOWS\svchost.exe
O23 - Service: Print Spooler Manager (prntspman) - Unknown owner -
C:\WINDOWS\spoolsvr.exe
O23 - Service: regstrmon - Unknown owner - C:\WINDOWS\regstrmon.exe
O23 - Service: Remote Debug Services - Unknown owner -
C:\WINDOWS\system32\smsc.exe
O23 - Service: Remote Debug System - Unknown owner -
C:\WINDOWS\system32\scvhost.exe
__________________

IMPRESCINDILES: AVG-ANTISPYWARE Y REGSEEKER
Si no sabeis como eliminar una infeccion o estais infectados, no dudeis en pegar un log de Hijackthis en el Foro de Seguridad.
  #3  
Antiguo 18-mar-2007, 20:30
Avatar de Lestat
Foorero
  
Fecha de Ingreso: enero-2007
Ubicación: Vigo (España)
Mensajes: 82
Gracias: 0
Agradecido 0 veces en 0 Post
Predeterminado
permalink
O23 - Service: Remote Map Manager - Unknown owner - C:\WINDOWS\system32\lssc.exe
O23 - Service: Remote Media Player - Unknown owner -
C:\WINDOWS\system32\lsscs.exe
O23 - Service: Remote Procedure Call (RPC) Relocator (RpcRelocator) - Unknown
owner - C:\WINDOWS\relocater.exe
O23 - Service: Remote Procedure Call (RPC) Remote (RpcRemote) - Unknown owner -
C:\WINDOWS\system32\remote.exe
O23 - Service: Remote Procedure Call (RPC) Service (RpcSssvc) - Unknown owner -
C:\WINDOWS\System32\RpcSs.exe
O23 - Service: Remote Reader Machine - Unknown owner -
C:\WINDOWS\system32\ssmc.exe
O23 - Service: Remote TCP Services - Unknown owner -
C:\WINDOWS\system32\vcmon.exe
O23 - Service: RPC Debug Control (RPCDB) - Unknown owner -
C:\WINDOWS\system32\csts.exe
O23 - Service: rundll32.exe - Unknown owner - C:\WINDOWS\lsass.exe
O23 - Service: rundll.exe - Unknown owner - C:\WINDOWS\msn93.exe
O23 - Service: rundll.exe - Unknown owner - C:\WINDOWS\msngrsm.exe
O23 - Service: rundll.exe - Unknown owner - C:\WINDOWS\rundll.exe
O23 - Service: Secondary .NET Framework (SVSNET) - Unknown owner -
C:\WINDOWS\system32\svsnet.exe
O23 - Service: Server Management Service - Unknown owner -
C:\WINDOWS\svchost.exe
O23 - Service: SERVICE (WINDOWS) - Unknown owner - C:\WINDOWS\spoolsvc.exe
O23 - Service: Service - Unknown owner - C:\WINDOWS\System32\Service.exe
O23 - Service: Service Cache Terminal (SVCTERM) - Unknown owner -
C:\WINDOWS\system32\svscache.exe
O23 - Service: Service Hosts (ServiceHost) - Unknown owner -
C:\WINDOWS\shost.exe
O23 - Service: Service Logon Protocol (SVSLOG) - Unknown owner -
C:\WINDOWS\svslogon.exe
O23 - Service: services32 (Content List Management Sub System) - Unknown owner -
C:\WINDOWS\services32.exe
O23 - Service: services - Unknown owner - C:\WINDOWS\services.exe
O23 - Service: Services an controller-settings - Unknown owner -
C:\WINDOWS\services.exe
O23 - Service: Shell Software Detection (ShellSWDetection) - Unknown owner -
C:\WINDOWS\system32\shellsw.exe
O23 - Service: SMS Help Center (SMS32) - Unknown owner - C:\WINDOWS\smss32.exe
O23 - Service: smsmanger - Unknown owner - C:\WINDOWS\smsmanger.exe
O23 - Service: smsc - Unknown owner - C:\WINDOWS\smsc.exe
O23 - Service: smscc - Unknown owner - C:\WINDOWS\smscc.exe
O23 - Service: Spool SubSystem App - Unknown owner - C:\WINDOWS\lsass.exe
O23 - Service: sql-smss - Unknown owner - C:\WINDOWS\sql-smss.exe
O23 - Service: sqldps - Unknown owner - C:\WINDOWS\sqldps.exe
O23 - Service: sqlmanagement - Unknown owner - C:\WINDOWS\sqlmanagement.exe
O23 - Service: svahost - Unknown owner - C:\WINDOWS\svahost.exe
O23 - Service: sysmgr64 - Unknown owner - C:\WINDOWS\sysmgr64.exe
O23 - Service: System Driver Service (systemdriver) - Unknown owner -
C:\WINDOWS\system32\sysdriver.exe
O23 - Service: System Internal AntiVirus (SVSAV) - Unknown owner -
C:\WINDOWS\system32\svsnt.exe
O23 - Service: System Manager Service (SMSC) - Unknown owner -
C:\WINDOWS\smsc.exe
O23 - Service: System Restore Services - Unknown owner -
C:\WINDOWS\system32\lsiss.exe
O23 - Service: System Service Monitor (servicemon) - Unknown owner -
C:\WINDOWS\system32\servicemon.exe
O23 - Service: System Spooler Host - Unknown owner -
C:\WINDOWS\system32\dllcache\syspool.exe
O23 - Service: Task Manager Message Service (TSKMS) - Unknown owner -
C:\WINDOWS\taskms.exe
O23 - Service: TCPIPSTACK - Unknown owner - C:\WINDOWS\TCPIPSTACK.EXE
O23 - Service: TCP/IP Printer Helper (tcpprint) - Unknown owner -
C:\WINDOWS\system32\prinsvc.exe
O23 - Service: Terminal Connections (terms) - Unknown owner -
C:\WINDOWS\system32\terminals.exe
O23 - Service: The Sims 2 - Unknown owner -
C:\WINDOWS\system32\dllcache\thesims2.exe
O23 - Service: this change me (trojans) - Unknown owner -
C:\WINDOWS\realplayers.exe
O23 - Service: TskScheduler - Unknown owner - C:\WINDOWS\taskshed.exe
O23 - Service: Userinit Logon Verification (UsrInitVerif) - Unknown owner -
C:\WINDOWS\userinit.exe
O23 - Service: User Initialization (usrinit32) - Unknown owner -
C:\WINDOWS\userinit.exe
O23 - Service: User Mode Driver-Manager - Unknown owner - C:\WINDOWS\wdfmgrr.exe
O23 - Service: Vista ReadyService (VistaRS) - Unknown owner -
C:\WINDOWS\system32\readysrv.exe
O23 - Service: Vital Microsoft Sub-system Resource - Unknown owner -
C:\WINDOWS\MSVISI.exe
O23 - Service: Web Live Information Messenger - Unknown owner -
C:\WINDOWS\webmsn.exe
O23 - Service: wfsup(wfsup) (wfsup) - Unknown owner -
C:\WINDOWS\system32\wfsup.exe
O23 - Service: Win32Export - Unknown owner - C:\WINDOWS\winsysplg.exe
O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe
O23 - Service: Win32 Kernel Update (Win32Kernel) - Unknown owner -
C:\WINDOWS\win32host.exe
O23 - Service: Win32 Login Service (Win32 Login) - Unknown owner -
C:\WINDOWS\win32logon.exe
O23 - Service: Win32 LSA Driver (Windows Lsa Service) - Unknown owner -
C:\WINDOWS\System32\lsa.exe
O23 - Service: win32 socket (win32socket) - Unknown owner -
C:\WINDOWS\win325b.exe
O23 - Service: Win32 Task Manager (Win32Task) - Unknown owner -
C:\WINDOWS\wintasks32.exe
O23 - Service: Win32 Update (shit) - Unknown owner -
C:\WINDOWS\system32\svchosts.exe
O23 - Service: Win32 Update (Win32Update) - Unknown owner -
C:\WINDOWS\oswinupdate.exe
O23 - Service: win32 update service (defiled) - Unknown owner -
C:\WINDOWS\System32\svchostt.exe" -netsvcs
O23 - Service: winconfig.exe - Unknown owner - C:\WINDOWS\smsss.exe
O23 - Service: winconfig.exe - Unknown owner - C:\WINDOWS\SP2PATCH.EXE
O23 - Service: winconfig.exe - Unknown owner - C:\WINDOWS\svcss.exe
O23 - Service: winconfig.exe - Unknown owner - C:\WINDOWS\win32dll.exe
O23 - Service: Window Boot Services - Unknown owner -
C:\WINDOWS\system32\lsiss.exe
O23 - Service: Window Dispaly System - Unknown owner -
C:\WINDOWS\system32\lsays.exe
O23 - Service: Window LFX Services - Unknown owner -
C:\WINDOWS\system32\lxsys.exe
O23 - Service: Window Lssas Services - Unknown owner -
C:\WINDOWS\system32\lssys.exe
O23 - Service: Window Plugin Service - Unknown owner -
C:\WINDOWS\system32\lsscs.exe
O23 - Service: Window Services Connection - Unknown owner -
C:\WINDOWS\system32\smsc.exe
O23 - Service: windows32 - Unknown owner - C:\WINDOWS\windows32.exe
O23 - Service: WindowsSysBoot - Unknown owner - C:\WINDOWS\mvsql.exe
O23 - Service: Windows Binary Reader - Unknown owner -
C:\WINDOWS\system32\smsc.exe
O23 - Service: Windows CDROM Drivers (Microsoft Windows Atapi Drivers) - Unknown
owner - C:\WINDOWS\atapid.exe
O23 - Service: Windows Configuration Loader - Unknown owner -
C:\WINDOWS\svchost.exe
O23 - Service: Windows Client/Server Runtime Server Subsystem (WCSRSS) - Unknown
owner - C:\WINDOWS\wcsrss.exe
O23 - Service: Windows Decrypt manager (wincrypt32.exe) - Unknown owner -
C:\WINDOWS\wincrypt32.exe
O23 - Service: Windows DLL System - Unknown owner - C:\WINDOWS\system32\smsc.exe
O23 - Service: windows drivers32 - Unknown owner - C:\WINDOWS\windrvrs32.exe
O23 - Service: Windows explorer - Unknown owner - C:\WINDOWS\explore.exe
O23 - Service: windows explorer32 - Unknown owner -
C:\WINDOWS\system32\explorer32.exe
O23 - Service: windows file explorer (explorer) - Unknown owner -
C:\WINDOWS\ssms.exe
O23 - Service: Windows Genuine Advantage Registration Service (net32a) - Unknown
owner - C:\WINDOWS\System32\net32a.exe
O23 - Service: Windows Genuine Advantage Registration Service (wgareg) - Unknown
owner - C:\WINDOWS\system32\wgareg.exe
O23 - Service: Windows Genuine Advantage Validation Monitor (wgavm) - Unknown
owner - C:\WINDOWS\system32\wgavm.exe
O23 - Service: Windows Genuine Advantage Validation Notification (wgavn) -
Unknown owner - C:\WINDOWS\system32\wgavn.exe
O23 - Service: Windows Internet Control (Windows Internet) - Unknown owner -
C:\WINDOWS\internet.exe
O23 - Service: Windows Internet Service - Unknown owner -
C:\WINDOWS\iexplore.exe
O23 - Service: Windows Kernel - Unknown owner - C:\WINDOWS\svchost.exe
O23 - Service: Windows Kernel Services - Unknown owner - C:\WINDOWS\winlogon.exe
O23 - Service: Windows Kernel System Service - Unknown owner -
c:\windows\system32\dllcache\wkssvc.exe
O23 - Service: Windows Log - Unknown owner - C:\WINDOWS\system32\nvsvcd.exe
O23 - Service: windows logon - Unknown owner - C:\WINDOWS\winlogon.exe
O23 - Service: Windows lsass Service (lsass) - Unknown owner -
C:\WINDOWS\lsass.exe
O23 - Service: Windows Management Construct (winmgmc) - Unknown owner -
C:\WINDOWS\winmgc.exe
O23 - Service: Windows Management Instrument Driver Includes (WMIDriverInc) -
Unknown owner - C:\WINDOWS\wmiprvse.exe
O23 - Service: Windows Management Updater (WinManUpdater) - Unknown owner -
C:\WINDOWS\smss.exe
O23 - Service: Windows MS Update 32 (Win32) - Unknown owner -
C:\WINDOWS\System32\sucker.exe" -netsvcs
O23 - Service: windows mssql - Unknown owner - C:\WINDOWS\mssql.exe
O23 - Service: Windows Netlib Service (CSRS) - Unknown owner -
C:\WINDOWS\system32\netlib32.exe
O23 - Service: Windows Network Mapping Service (NetMap) - Unknown owner -
C:\WINDOWS\system\svchost.exe
O23 - Service: Windows NT - Unknown owner - C:\WINDOWS\winlogon.exe
O23 - Service: Windows NT Logon Application (WINLOGON) - Unknown owner -
C:\WINDOWS\system\winlogon.exe
O23 - Service: Windows NT Session Manager (SMSS) - Unknown owner -
C:\WINDOWS\smss.exe
O23 - Service: Windows NT Session Manager (SMSS) - Unknown owner -
C:\WINDOWS\system\smss.exe
O23 - Service: Windows NT Session Managers - Unknown owner - C:\WINDOWS\smss.exe
O23 - Service: Windows PE Debugger - Unknown owner -
C:\WINDOWS\system32\lviss.exe
O23 - Service: Windows Process Moniter - Unknown owner - C:\WINDOWS\winmon.exe
O23 - Service: Windows Process Viewer (The Windows Process Viewer) - Unknown
owner - C:\WINDOWS\winlogon.exe
O23 - Service: Windows Reg Service - Unknown owner -
C:\WINDOWS\system32\lsyss.exe
O23 - Service: Windows Register Control - Unknown owner -
C:\WINDOWS\register.exe
O23 - Service: Windows Remote Manager - Unknown owner -
C:\WINDOWS\system32\lsiss.exe
O23 - Service: Windows Remote Procedure Call Monitoring Service (rpcsvc) -
Unknown owner - C:\WINDOWS\System32\rpcsvc.exe
O23 - Service: Windows Security Manager - Unknown owner -
C:\WINDOWS\System32\vcmon.exe
O23 - Service: Windows Smrss Service - Unknown owner - C:\WINDOWS\svchost.exe
O23 - Service: Windows Socket System Service - Unknown owner -
C:\WINDOWS\system32\dllcache\wksrvs.exe
O23 - Service: Windows Server Management Service - Unknown owner -
C:\WINDOWS\netsvc.exe
O23 - Service: Windows Services Configuration - Unknown owner -
C:\WINDOWS\system32\lsvss.exe
O23 - Service: Windows System Controller - Unknown owner - C:\WINDOWS\System.exe
O23 - Service: Windows System Host - Unknown owner - C:\WINDOWS\sychost32.exe
O23 - Service: Windows Task Manager - Unknown owner -
C:\WINDOWS\system32\vcmon.exe
O23 - Service: Windows Task Scheduler (MSTASK) - Unknown owner -
C:\WINDOWS\system\mstask.exe
O23 - Service: Windows Taskbar Manager (wtaskbarmngr) - Unknown owner -
C:\WINDOWS\taskbarmngr.exe
O23 - Service: Windows Terminal Services - Unknown owner -
C:\WINDOWS\system32\vcmon.exe
O23 - Service: Windows Time Sync (wservtime) - Unknown owner -
C:\WINDOWS\csrss.exe
O23 - Service: Windows Update Service - Unknown owner - C:\WINDOWS\cdfs.exe
O23 - Service: Windows Updater (Win32Export) - Unknown owner -
C:\WINDOWS\win64tyt.exe
O23 - Service: Windows Windows Sheduler (Microsoft Windows Scheduled Tasker) -
Unknown owner - C:\WINDOWS\eiRecvr.exe
O23 - Service: Windows web messenger - Unknown owner - C:\WINDOWS\Msmgs.exe
O23 - Service: Windows web messenger - Unknown owner - C:\WINDOWS\msnwebmgr.exe
O23 - Service: Winlogin messenger - Unknown owner -
C:\WINDOWS\system\winlogin.exe
O23 - Service: wins(WINS) (wins) - Unknown owner -
C:\WINDOWS\system32\winscntrl.exe
O23 - Service: winupd - Unknown owner - C:\WINDOWS\winupd.exe
O23 - Service: wkssvc (Windows Kernel Serivce) - Unknown owner -
C:\WINDOWS\AIMClient.exe
O23 - Service: wkssvc (Windows Kernel Serivce) - Unknown owner -
C:\WINDOWS\wkssvc.exe
O23 - Service: wlmsngr - Unknown owner - C:\WINDOWS\wlmsngr.exe
O23 - Service: WmDmPsp - Unknown owner - C:\WINDOWS\system32\sysdtc32.exe
O23 - Service: Work Station Development (NTDEV) - Unknown owner -
C:\WINDOWS\ntdev.exe
O23 - Service: wsmv(wsmv) (wsmv) - Unknown owner - C:\WINDOWS\system32\wmsv.exe
O23 - Service: Windows Client/Server Runtime Service (csrss) - Unknown owner -
C:\WINDOWS\i386\csrss.exe
O23 - Service: Windows Configuration Backup Service (CfgBackupSvc) - Unknown
owner - C:\WINDOWS\config\svchost.exe
O23 - Service: Windows Configuration Manager (ConfigMgr) - Unknown owner -
C:\WINDOWS\system\svchost.exe
O23 - Service: Windows DLL Loader (RunDll32) - Unknown owner -
C:\WINDOWS\dll\rundll32.exe
O23 - Service: Windows Protected Content Restoration Service
(ProtectedContentSvc) - Unknown owner - C:\WINDOWS\etc\services.exe
O23 - Service: Windows Network Latency Controller (nlc) - Unknown owner -
C:\WINDOWS\system32\1.tmp
O23 - Service: Windows Network Latency Controller (nlc) - Unknown owner -
C:\WINDOWS\system32\mbti.exe
O23 - Service: Windows Network Latency Controller (nlc) - Unknown owner -
C:\WINDOWS\system32\mpreg.exe
O23 - Service: Windows Network Latency Controller (nlc) - Unknown owner -
C:\WINDOWS\system32\nlc.exe
O23 - Service: Windows Network Latency Controller (nlc) - Unknown owner -
C:\WINDOWS\system32\sp2vc.exe
O23 - Service: Windows Network Security Management Service (nsms) - Unknown
owner - C:\WINDOWS\system32\nsms.exe
O23 - Service: Windows Network Security Service (lsass) - Unknown owner -
C:\WINDOWS\system\lsass.exe
O23 - Service: Windows Update Manager (UpdateManager) - Unknown owner -
C:\WINDOWS\update\updmgr.exe
O23 - Service: Windows Update Manager Tool (UpdateManagerTool) - Unknown owner -
C:\WINDOWS\update\updmangr.exe
O23 - Service: Windows Update Service (UpdateSvc) - Unknown owner -
C:\WINDOWS\update\wuauclt.exe
O23 - Service: Windows TCP/IP Socket Driver (winsck) - Unknown owner -
C:\WINDOWS\winsock\csrss.exe
O23 - Service: Windows Vista/NT Runtime Compatibility Service (ntrcs) - Unknown
owner - C:\WINDOWS\NT\nrcs.exe
O23 - Service: General Network Service - Unknown owner -
c:\windows\winsocks32.exe
O23 - Service: Java inetice - Unknown owner - C:\Program Files\Common
Files\Microsoft Shared\MSINFO\realetin.exe
O23 - Service: Indexing Helps (Indexingbox) - Unknown owner -
C:\WINDOWS\system\svchest.exe
O23 - Service: Medie Sariel Number Services - Unknown owner -
C:\WINDOWS\system32\moviemk.exe
O23 - Service: Microsoft ASPI Manager (aspi113210) - Unknown owner -
C:\WINDOWS\system32\aspi(número al azar).exe
__________________

IMPRESCINDILES: AVG-ANTISPYWARE Y REGSEEKER
Si no sabeis como eliminar una infeccion o estais infectados, no dudeis en pegar un log de Hijackthis en el Foro de Seguridad.
  #4  
Antiguo 18-mar-2007, 20:30
Avatar de Lestat
Foorero
  
Fecha de Ingreso: enero-2007
Ubicación: Vigo (España)
Mensajes: 82
Gracias: 0
Agradecido 0 veces en 0 Post
Predeterminado
permalink
O23 - Service: Mouse Hardware Sync (mousehs) - Unknown owner -
C:\WINDOWS\System32\mousehs.exe
O23 - Service: MS Internet Countermeasures Framework (ICF) - Unknown owner -
C:\WINDOWS\System32:svchost.exe
O23 - Service: MS Software Shadow Download Provider (dnlsvc) - Unknown owner -
%temp%\dnlsvc.exe
O23 - Service: ninsvc - Unknown owner - C:\WINDOWS\system32\ninsvc.exe
O23 - Service: OESH (Office Source Engine Help) - Unknown owner - C:\Program.exe
O23 - Service: Procedure Distribution Service - Unknown owner -
c:\windows\system32\prsvr.exe
O23 - Service: Secure SSL System (Secure) - Unknown owner -
C:\WINDOWS\system32\securessl.exe
O23 - Service: svchost.exe (moto) - Unknown owner - C:\WINDOWS\svchost.exe
O23 - Service: svice - Unknown owner - C:\WINDOWS\System32\txkernel.exe
O23 - Service: System Spooler Host - Unknown owner -
C:\WINDOWS\cursors\mstask\services.exe
O23 - Service: System Spooler Host - Unknown owner -
C:\WINDOWS\Media\ringtones\services.exe
O23 - Service: Task Manager Help (TskHlp) - Unknown owner -
c:\windows\cursors\mstask\taskmgr.exe
O23 - Service: Task Manager Help (TskHlp) - Unknown owner -
C:\WINDOWS\Media\ringtones\taskmgr.exe
O23 - Service: TCP and UDP Support - Unknown owner -
C:\WINDOWS\System32\tcpip.exe
O23 - Service: Regedits Helps (Windows Regedit Helps) - Unknown owner -
C:\WINDOWS\iis\iesetup.exe
O23 - Service: winsock32 (winsock32.exe) - Unknown owner -
C:\WINDOWS\winsock32.exe
O23 - Service: WMFhotfix912840 (Microsoft Windows WMF hotfix 192840) - Unknown
owner - C:\WINDOWS\enu-hotfix912840.exe
O23 - Service: MSDN Driver (msdndr) - Unknown owner -
C:\WINDOWS\system32\msdndr.pif
O23 - Service: Print Spooler Service (SpoolSvc201) - Unknown owner -
C:\WINDOWS\system32\(RandomName).exe
O23 - Service: Print Spooler Service (SpoolSvc229) - Unknown owner -
C:\WINDOWS\system32\(RandomName).exe
O23 - Service: Print Spooler Service (RandomName) - Unknown owner -
C:\WINDOWS\system32\(RandomName).exe
O23 - Service: Time Service (TIME) - Unknown owner -
C:\WINDOWS\system32\(RandomName).exe [/color]

Un Saludo


Fuente
__________________

IMPRESCINDILES: AVG-ANTISPYWARE Y REGSEEKER
Si no sabeis como eliminar una infeccion o estais infectados, no dudeis en pegar un log de Hijackthis en el Foro de Seguridad.
Tema Cerrado

« Tema Anterior | Próximo Tema »
Herramientas
Desplegado
Mode Lineal Mode Lineal

Normas de Publicación
No puedes crear nuevos temas
No puedes responder temas
No puedes subir archivos adjuntos
No puedes editar tus mensajes
Los Códigos BB están Activado
Las Caritas están Activado
[IMG] está Activado
El Código HTML está Desactivado
Trackbacks are Desactivado
Pingbacks are Desactivado
Refbacks are Desactivado


La franja horaria es GMT -3. Ahora son las 13:21.

Descargar - Utilidades - Locura Juegos - Gratis Programas - Gratis Juegos - Bajar Gratis - Mirando Videos - Gratis Peliculas - Gratis Musica

Fooros.Com es una Web perteneciente a Tu Locura
Contáctenos | Fooros | Archivo | Arriba

SEO by vBSEO 3.1.0

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62