Foro de InfoSpyware - Foro de Hijackthis - Foro de Virus

Se me ha metido "eso"del título y no tengo acceso a los buscadores ni al correo.
Creo que se metio al clikar sobre una pantalla que aparecia en un periodico y lo hice para borrarlo cosa que no conseguí .
Esta pantalla aparecia en el espacio destinado a fotografias de prensa.
Me podeis ayudar.
Misistema es le windows xp y el navegador Mozilla Firefox 3.

GRACIAS

Hola huetam

Realiza lo siguiente por favor:

Sigue lo indicado en este enlace----> Eliminar familia PSGuard, AntiVirGear, VirusProtectPro, AntiVermins, SpyLocked

Sigue los pasos como estan indicados.

Luego de realizar esos pasos realiza un scan online con:

Panda Active Scan 2.0----> Manual


Nota: Pega aqui los siguientes reportes:
DelpsGuard
MalwareBytes AntiMalware
Panda Active Scan 2.0

No peques el log de Hijakchits

Regresa y comentanos como te fue



Andresmix

;Siguiendo vuestras instrucciones os adjunto lo solicitado .
Gracias ************************************************** ************************************************** ************************************************** *****************************
ANALYSIS: 2008-07-18 15:07:48
PROTECTIONS: 0
MALWARE: 40
SUSPECTS: 7
;************************************************* ************************************************** ************************************************** ******************************
PROTECTIONS
Description Version Active Updated
;================================================= ================================================== ================================================== ==============================
;================================================= ================================================== ================================================== ==============================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;================================================= ================================================== ================================================== ==============================
00034463 adware/wupd Adware No 0 Yes No hkey_local_machine\software\deskad service
00121868 Adware/IPInsight Adware No 0 No No C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.cab[conscorr.inf]
00121868 Adware/IPInsight Adware No 0 Yes No C:\Archivos de programa\AdWare SpyWare SE\Quarantine\conscorr.inf
00122120 Adware/LocalNRD Adware No 0 Yes No C:\Archivos de programa\AdWare SpyWare SE\Quarantine\localNrd.inf
00125250 Spyware/BetterInet Spyware No 1 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI375A.tmp\ceres.inf
00125250 Spyware/BetterInet Spyware No 1 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI375A.tmp\ceres.inf
00125250 Spyware/BetterInet Spyware No 1 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\DrTemp\ceres.inf
00125250 Spyware/BetterInet Spyware No 1 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\DrTemp\ceres.inf
00140687 Adware/IPInsight Adware No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.ini
00140687 Adware/IPInsight Adware No 0 No No C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.cab[conscorr.ini]
00140687 Adware/IPInsight Adware No 0 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.ini
00144935 Adware/IPInsight Adware No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.inf
00144935 Adware/IPInsight Adware No 0 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.inf
00144935 Adware/IPInsight Adware No 0 No No C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.cab[farmmext.inf]
00144949 Adware/IPInsight Adware No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.ini
00144949 Adware/IPInsight Adware No 0 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.ini
00144949 Adware/IPInsight Adware No 0 No No C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.cab[farmmext.ini]
00145734 Cookie/Affiliate fuel TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@www .affiliatefuel[1].txt
00167738 Cookie/fe.lea.lycos TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@fe. lea.lycos[1].txt
00167738 Cookie/fe.lea.lycos TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Escritorio\YAYA\ Cookies\yaya@fe.lea.lycos[1].txt
00167780 Cookie/Mircx TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Escritorio\YAYA\ Cookies\yaya@pop.mircx[1].txt
00168099 Cookie/TouchClarity TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@int ercasino.touchclarity[1].txt
00170532 Cookie/Admotion TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@adm otion.com[2].txt
00170557 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@ter ra.com[2].txt
00173545 Cookie/Rn11 TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Escritorio\YAYA\ Cookies\yaya@rn11[1].txt
00173905 Cookie/Xmts TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Escritorio\YAYA\ Cookies\yaya@xmts[1].txt
00173905 Cookie/Xmts TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@xmt s[2].txt
00187951 Cookie/seeqA TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@www .seeq[1].txt
00194327 Cookie/Go TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@go[2].txt
00248517 Cookie/Advnt TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@www .advnt01[1].txt
00271993 W32/Puce.E.worm Virus/Worm No 1 Yes No H:\DISCO_C\Garmin City Navigator Europe v9 2007 Complete Multilanguagedvd (Iso) Garmin Full Key Generator updated-fixed 07-2007.zip[Setup.exe]
00286736 Cookie/Cgi-bin TrackingCookie No 0 Yes No C:\Archivos de programa\AdWare SpyWare SE\Quarantine\mi_pc@www6.addfreestats[1].txt
00366244 Application/NirCmd.A HackTools No 0 No No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Mi pc\Escritorio\LIMPIAR\arc ocult\Flash_Disinfector.exe[nircmd.exe]
00366244 Application/NirCmd.A HackTools No 0 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Mi pc\Configuración local\Temp\nircmd.exe
00366244 Application/NirCmd.A HackTools No 0 Yes No C:\Documents and Settings\Mi pc\Configuración local\Temp\nircmd.exe
00366244 Application/NirCmd.A HackTools No 0 No No C:\Documents and Settings\Mi pc\Escritorio\LIMPIAR\arc ocult\Flash_Disinfector.exe[nircmd.exe]
01692574 Application/AlertVir HackTools No 0 Yes No C:\Documents and Settings\Mi pc\Escritorio\LIMPIAR\alertvir.zip[alertvir.exe]
02209416 Trj/WoW.HV Virus/Trojan No 0 Yes No H:\Ten 1 PHOTO\Nueva carpeta\AutoPlay\Docs\Suites\Fotos_a_CD-DVD\AutoPlay\Docs\FotoTime FotoAlbum Pro v5.1\KeyGen.exe
02912157 W32/Spamta.gen.worm Virus/Worm No 0 Yes No H:\Ten 1 PHOTO\Nueva carpeta\AutoPlay\Docs\Varios\plb230\selteco.photo. lab.v2.3.0-patch.exe
02913360 W32/Bagle.SP.worm Virus/Worm No 1 Yes No C:\WINDOWS\system32\drivers\downld\241312.exe
02913360 W32/Bagle.SP.worm Virus/Worm No 1 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\WINDOWS\system32\drivers\downld\241312.ex e
02920809 Generic Trojan Virus/Trojan No 0 Yes No H:\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\WINDVD8\KEYGEN.EXE
02921788 Application/PassRock HackTools No 0 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Mi pc\Mis documentos\Downloads\Win_Sp2_Esp+Patch\Validar Windows XP Como Original\WinXP keyChanger.exe
02921788 Application/PassRock HackTools No 0 Yes No C:\Documents and Settings\Mi pc\Mis documentos\Downloads\Win_Sp2_Esp+Patch\Validar Windows XP Como Original\WinXP keyChanger.exe
02939010 Generic Trojan Virus/Trojan No 0 Yes No H:\TODO EN UNO\AUTOPLAY\AUTOPLAY\DOCS\BURNING\ALCOHOL\KEYMAKE R.EXE
02939010 Generic Trojan Virus/Trojan No 0 Yes No H:\TODO EN UNO\AUTOPLAY\DOCS\BURNING\ALCOHOL\KEYMAKER.EXE
02939010 Generic Trojan Virus/Trojan No 0 Yes No H:\ARCHIVOS DE PROGRAMA\Alcohol Soft\Alcohol 120\KEYMAKER.EXE
02959560 Spyware/Virtumonde Spyware No 1 No No H:\ARCHIVOS DE PROGRAMA\UltraISO\OTROS\UltraISO.Premium.Edition.v 8.1.2.1625.Multilingual.WinALL.READ.NFO.Cracked-CzW.rar[UltraISO.Premium.Edition.v8.1.2.1625.Multilingual. WinALL.READ.NFO.Cracked-CzW\keygen.exe]
03074964 Trj/CI.A Virus/Trojan No 0 Yes No H:\TODO EN UNO\AUTOPLAY\DOCS\BURNING\CLONECD\PATCH.EXE
03128601 Adware/MalwareProtector2008 Adware No 0 Yes No C:\WINDOWS\system32\F6.tmp
03128601 Adware/MalwareProtector2008 Adware No 0 Yes No C:\WINDOWS\system32\F5.tmp
03128601 Adware/MalwareProtector2008 Adware No 0 Yes No C:\WINDOWS\system32\F4.tmp
03184134 Generic Malware Virus/Trojan No 0 Yes No C:\WINDOWS\system32\blphcjg6j0e5a5.scr
03204909 Generic Trojan Virus/Trojan No 0 Yes No H:\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\STYLEXP\KEYGEN.EXE

03204909 Generic Trojan Virus/Trojan No 0 Yes No H:\TODO EN UNO\AUTOPLAY\AUTOPLAY\DOCS\VARIAS\STYLEXP\KEYGEN.E XE
03205018 Generic Trojan Virus/Trojan No 0 Yes No C:\Archivos de programa\DelPSGuard\IED.exe
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\VIRUS\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\VIRUS\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\VIRUS\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\VIRUS\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\Archivos de programa\ANTIVIRUS\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[14.12 AVG Antivirus Pro v7.0.206/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/14.12 AVG Antivirus Pro v7.0.206/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[14.12 AVG Antivirus Pro v7.0.206/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/14.12 AVG Antivirus Pro v7.0.206/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03268116 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\oidhdsbi.dll
03275460 Generic Trojan Virus/Trojan No 0 Yes No H:\Ten 1 PHOTO\Nueva carpeta\AutoPlay\Docs\Varios\QImag151\Patch.exe
03276509 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\pxlwywtc.dll
03276509 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\ihcfsqci.dll
03276509 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\sheiau.dll
03276509 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\darjgt.dll
03276514 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\fpenwgry.dll
03276514 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\esajcd.dll
03276516 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\gxfbbary.dll
;================================================= ================================================== ================================================== ==============================
SUSPECTS
Sent Location
;================================================= ================================================== ================================================== ==============================
No C:\WINDOWS\system32\urqRlMgH.dll
No C:\Documents and Settings\Mi pc\Configuración local\Temp\vistasp1.exe
No C:\WINDOWS\system32\urqRlMgH.dll
No C:\Documents and Settings\Mi pc\Escritorio\TORRENT DESCARG\ISOBuster Pro 2.4.0.1 Incl. Crack\Crack\Keygen.exe
No C:\Documents and Settings\Mi pc\Escritorio\TORRENT DESCARG\Mint Royale - Singing In The Rain.exe[is156984.exe]
No C:\WINDOWS\system32\lphcjg6j0e5a5.exe
No H:\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\QUICKTIME\QUICKTIME_7.1_K G.EXE
;================================================= ================================================== ================================================== ==============================
VULNERABILITIES
Id Severity Description
;================================================= ================================================== ================================================== ==============================
;================================================= ================================================== ================================================== ==============================
DelPSGuard v 4.9.8
by www.ForoSpyware.com
Reporte Creado: 21:12:34,15, 17/07/2008
SO: Microsoft Windows XP [Versi¢n 5.1.2600]
Modo de Inicio: Seguro
_________________________________________


»»»»»»»»»»»» Carpetas y Archivos infectados »»»»»»»»»»»»

C:\WINDOWS\system32 \BAN_LIST.TXT ...: ! Eliminado ! :...
C:\WINDOWS\system32 \ntimage.gif Eliminado Malware.Bagle
C:\WINDOWS\cookies.ini ...: ! Eliminado ! :...

»»»»»»»»»»»»»»»»»»» Programas Malwares »»»»»»»»»»»»»»»»»



»»»»»»»»»»»»»»»»»»» FIN »»»»»»»»»»»»»»»»»»»

Malwarebytes' Anti-Malware 1.11
Versión de la Base de Datos: 714

Tipo de examen : Examen Completo (C:\|F:\|H:\|)
Objetos examinados: 505484
Tiempo transcurrido: 7 hour(s), 31 minute(s), 3 second(s)

Procesos en Memoria Infectados: 0
Módulos en Memoria Infectados: 2
Claves del Registro Infectadas: 11
Valores del Registro Infectados: 6
Elementos de Datos del Registro Infectados: 0
Carpetas Infectadas: 0
Ficheros Infectados: 44

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos en Memoria Infectados:
C:\WINDOWS\system32\ssqRJbyY.dll (Trojan.Vundo) -> Unloaded module successfully.
C:\WINDOWS\system32\urqRlMgH.dll (Trojan.Vundo) -> Unloaded module successfully.

Claves del Registro Infectadas:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{5ca9c36c-e595-4ece-b4a9-535c7fee0f9e} (Trojan.Vundo) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{5ca9c36c-e595-4ece-b4a9-535c7fee0f9e} (Trojan.Vundo) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\aoprndtws (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Software Notifier (Rogue.Multiple) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{500dbd6e-6d95-4106-b9a2-dddccb2b30d1} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{500dbd6e-6d95-4106-b9a2-dddccb2b30d1} (Trojan.Vundo) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\urqrlmgh (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.

Valores del Registro Infectados:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run\BMcb91783b (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Settings\bf (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Settings\bk (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Settings\iu (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Settings\mu (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\ShellExecuteHooks\{500dbd6e-6d95-4106-b9a2-dddccb2b30d1} (Trojan.Vundo) -> Quarantined and deleted successfully.

Elementos de Datos del Registro Infectados:
(No se han detectado elementos maliciosos)

Carpetas Infectadas:
(No se han detectado elementos maliciosos)

Ficheros Infectados:
C:\WINDOWS\system32\jyumojst.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tsjomuyj.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ssqRJbyY.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\YybJRqss.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\YybJRqss.ini2 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wxiykayv.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vyakyixw.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Archivos de programa\ANTIVIRUS\14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Archivos de programa\ANTIVIRUS\14.12 AVG Antivirus Pro v7.0.206\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Archivos de programa\ANTIVIRUS\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Archivos de programa\ANTIVIRUS\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Archivos de programa\CyberLink\PowerDVD\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\TODO EN UNO\AUTOPLAY\AUTOPLAY\DOCS\VARIAS\POWERDVD\KEYMAKE R\CORE10K.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\POWERDVD\KEYMAKER\CORE10K .EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\V I R U S\AVG\14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
H:\V I R U S\AVG\14.12 AVG Antivirus Pro v7.0.206\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\V I R U S\AVG\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
H:\V I R U S\AVG\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\VIRUS\14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
H:\VIRUS\14.12 AVG Antivirus Pro v7.0.206\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
H:\VIRUS\Keygen\avg70167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
H:\VIRUS\Keygen\CORE10k.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xggqnaai.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qoMeEusp.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qoMfcArr.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cbXOIyVo.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jkkIXqpn.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\urqRlMgH.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\awttuRHw.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hgGaxvTK.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wvUkLCsR.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\khfCvTNg.dll (Trojan.Vundo) -> Quarantined and deleted successfully.

Hola huetam


Realiza lo siguiente:
Apaga Restaurar Sistema
Activa la Opcion Ver Archivos Ocultos

Descargate OTMoveIt lo guardas en el Escritorio.

• Haz un doble clic sobre OTMoveIt.exe para ejecutarlo.
• Asegurate que este marcado "Unregister Dll's and Ocx's".
• Copia el texto que se encuentra en el cuadrado más abajo, y pega el texto en el marco de izquierdo de OTMoveIt nombrado Paste Standar List of Files / Folders to be moved.

• Haz clic en MoveIt! Para lanzar la supresión.
• Cuando el resultado aparece en el marco Results, haz clic enExit.
• Reinicia el PC (Este paso es muy importante)

Envía el informe (reporte) de OTMoveIt situado sobre C: \ _ OTMoveIt\MovedFiles\********_******.log (Donde sale "********_******" es el "date_time")


Limpia el Pc de cookies, temporales, etc y el registro con :

DiskCleaner >>> Manual
RegSeeker. >>> Manual

Al final de todo esto, Reinicias el Pc, Prende Restuarar Sistema, Reinicias Nuevamente...

Realiza otro scan con Panda Active Scan 2.0 y vuelves a pegar el reporte

Vuelve y comentanos como te fue



Andresmix

Adjunto lo último solicitado.

Gracias

File/Folder C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.cab not found.
File/Folder C:\Archivos de programa\AdWare SpyWare SE\Quarantine\conscorr.inf not found.
File/Folder C:\Archivos de programa\AdWare SpyWare SE\Quarantine\localNrd.inf not found.
File/Folder H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI375A.tmp\ceres.inf not found.
File/Folder C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI375A.tmp\ceres.inf not found.
File/Folder H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\DrTemp\ceres.inf not found.
File/Folder C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\DrTemp\ceres.inf not found.
File/Folder C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.ini not found.
File/Folder C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.cab not found.
File/Folder H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.ini not found.
File/Folder C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.inf not found.
File/Folder H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.inf not found.
File/Folder C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.cab not found.
File/Folder C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.ini not found.
File/Folder H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.ini not found.
File/Folder C:\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.cab not found.
H:\DISCO_C\Garmin City Navigator Europe v9 2007 Complete Multilanguagedvd (Iso) Garmin Full Key Generator updated-fixed 07-2007.zip moved successfully.
C:\Documents and Settings\Mi pc\Escritorio\LIMPIAR\alertvir.zip moved successfully.
H:\Ten 1 PHOTO\Nueva carpeta\AutoPlay\Docs\Suites\Fotos_a_CD-DVD\AutoPlay\Docs\FotoTime FotoAlbum Pro v5.1\KeyGen.exe moved successfully.
File/Folder H:\Ten 1 PHOTO\Nueva carpeta\AutoPlay\Docs\Varios\plb230\selteco.photo. lab.v2.3.0-patch.exe not found.
C:\WINDOWS\system32\drivers\downld\241312.exe moved successfully.
File/Folder H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\WINDOWS\system32\drivers\downld\241312.ex e not found.
H:\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\WINDVD8\KEYGEN.EXE moved successfully.
H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Mi pc\Mis documentos\Downloads\Win_Sp2_Esp+Patch\Validar Windows XP Como Original\WinXP keyChanger.exe moved successfully.
C:\Documents and Settings\Mi pc\Mis documentos\Downloads\Win_Sp2_Esp+Patch\Validar Windows XP Como Original\WinXP keyChanger.exe moved successfully.
File/Folder H:\TODO EN UNO\AUTOPLAY\AUTOPLAY\DOCS\BURNING\ALCOHOL\KEYMAKE R.EXE not found.
H:\TODO EN UNO\AUTOPLAY\DOCS\BURNING\ALCOHOL\KEYMAKER.EXE moved successfully.
H:\ARCHIVOS DE PROGRAMA\Alcohol Soft\Alcohol 120\KEYMAKER.EXE moved successfully.
File/Folder H:\ARCHIVOS DE PROGRAMA\UltraISO\OTROS\UltraISO.Premium.Edition.v 8.1.2.1625.Multilingual.WinALL.READ.NFO.Cracked-CzW.rar not found.
H:\TODO EN UNO\AUTOPLAY\DOCS\BURNING\CLONECD\PATCH.EXE moved successfully.
C:\WINDOWS\system32\F6.tmp moved successfully.
C:\WINDOWS\system32\F5.tmp moved successfully.
C:\WINDOWS\system32\F4.tmp moved successfully.
C:\WINDOWS\system32\blphcjg6j0e5a5.scr moved successfully.
H:\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\STYLEXP\KEYGEN.EXE moved successfully.
File/Folder H:\TODO EN UNO\AUTOPLAY\AUTOPLAY\DOCS\VARIAS\STYLEXP\KEYGEN.E XE not found.
H:\V I R U S\AVG\AVG Antivirus Pro v7.0.206.rar moved successfully.
H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206.rar moved successfully.
H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar moved successfully.
File/Folder H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar not found.
H:\VIRUS\AVG Antivirus Pro v7.0.206.rar moved successfully.
File/Folder H:\VIRUS\AVG Antivirus Pro v7.0.206.rar not found.
File/Folder H:\VIRUS\AVG Antivirus Pro v7.0.206.rar not found.
File/Folder H:\VIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar not found.
H:\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\oidhdsbi.dll
C:\WINDOWS\system32\oidhdsbi.dll NOT unregistered.
C:\WINDOWS\system32\oidhdsbi.dll moved successfully.
H:\Ten 1 PHOTO\Nueva carpeta\AutoPlay\Docs\Varios\QImag151\Patch.exe moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\pxlwywtc.dll
C:\WINDOWS\system32\pxlwywtc.dll NOT unregistered.
C:\WINDOWS\system32\pxlwywtc.dll moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\ihcfsqci.dll
C:\WINDOWS\system32\ihcfsqci.dll NOT unregistered.
C:\WINDOWS\system32\ihcfsqci.dll moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\sheiau.dll
C:\WINDOWS\system32\sheiau.dll NOT unregistered.
C:\WINDOWS\system32\sheiau.dll moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\darjgt.dll
C:\WINDOWS\system32\darjgt.dll NOT unregistered.
C:\WINDOWS\system32\darjgt.dll moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\fpenwgry.dll
C:\WINDOWS\system32\fpenwgry.dll NOT unregistered.
C:\WINDOWS\system32\fpenwgry.dll moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\esajcd.dll
C:\WINDOWS\system32\esajcd.dll NOT unregistered.
C:\WINDOWS\system32\esajcd.dll moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\gxfbbary.dll
C:\WINDOWS\system32\gxfbbary.dll NOT unregistered.
C:\WINDOWS\system32\gxfbbary.dll moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\urqRlMgH.dll
C:\WINDOWS\system32\urqRlMgH.dll NOT unregistered.
File move failed. C:\WINDOWS\system32\urqRlMgH.dll scheduled to be moved on reboot.
C:\Documents and Settings\Mi pc\Configuración local\Temp\vistasp1.exe moved successfully.
C:\Documents and Settings\Mi pc\Escritorio\TORRENT DESCARG\Mint Royale - Singing In The Rain.exe moved successfully.
C:\WINDOWS\system32\lphcjg6j0e5a5.exe moved successfully.
File/Folder H:\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\QUICKTIME\QUICKTIME_7.1_K G.EXE not found.

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 07192008_082808
;************************************************* ************************************************** ************************************************** ******************************
ANALYSIS: 2008-07-19 17:06:28
PROTECTIONS: 1
MALWARE: 42
SUSPECTS: 7
;************************************************* ************************************************** ************************************************** ******************************
PROTECTIONS
Description Version Active Updated
;================================================= ================================================== ================================================== ==============================
Kaspersky Anti-Virus 7.0 7.0.0.125 No No
;================================================= ================================================== ================================================== ==============================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;================================================= ================================================== ================================================== ==============================
00034463 adware/wupd Adware No 0 Yes No hkey_local_machine\software\deskad service
00121868 Adware/IPInsight Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\Archivos de programa\AdWare SpyWare SE\Quarantine\conscorr.inf
00121868 Adware/IPInsight Adware No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082317\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.cab[conscorr.inf]
00122120 Adware/LocalNRD Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\Archivos de programa\AdWare SpyWare SE\Quarantine\localNrd.inf
00125250 Spyware/BetterInet Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI375A.tmp\ceres.inf
00125250 Spyware/BetterInet Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\COPIA_RESP ALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\DrTemp\ceres.inf
00125250 Spyware/BetterInet Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\COPIA_RESP ALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI375A.tmp\ceres.inf
00125250 Spyware/BetterInet Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\DrTemp\ceres.inf
00140687 Adware/IPInsight Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\COPIA_RESP ALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.ini
00140687 Adware/IPInsight Adware No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082317\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.cab[conscorr.ini]
00140687 Adware/IPInsight Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\conscorr.ini
00144935 Adware/IPInsight Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\COPIA_RESP ALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.inf
00144935 Adware/IPInsight Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.inf
00144935 Adware/IPInsight Adware No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082317\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.cab[farmmext.inf]
00144949 Adware/IPInsight Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\COPIA_RESP ALDO\C 2008-05-06 11;30;49\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.ini
00144949 Adware/IPInsight Adware No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082317\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.cab[farmmext.ini]
00144949 Adware/IPInsight Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082317\Documents and Settings\Invitado\Escritorio\YAYA\Configuración local\Temp\THI20C0.tmp\farmmext.ini
00145734 Cookie/Affiliate fuel TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@www .affiliatefuel[1].txt
00167738 Cookie/fe.lea.lycos TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@fe. lea.lycos[1].txt
00167738 Cookie/fe.lea.lycos TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Escritorio\YAYA\ Cookies\yaya@fe.lea.lycos[1].txt
00167780 Cookie/Mircx TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Escritorio\YAYA\ Cookies\yaya@pop.mircx[1].txt
00168099 Cookie/TouchClarity TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@int ercasino.touchclarity[1].txt
00170532 Cookie/Admotion TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@adm otion.com[2].txt
00170557 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@ter ra.com[2].txt
00173545 Cookie/Rn11 TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Escritorio\YAYA\ Cookies\yaya@rn11[1].txt
00173905 Cookie/Xmts TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Escritorio\YAYA\ Cookies\yaya@xmts[1].txt
00173905 Cookie/Xmts TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@xmt s[2].txt
00187951 Cookie/seeqA TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@www .seeq[1].txt
00194327 Cookie/Go TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@go[2].txt
00248517 Cookie/Advnt TrackingCookie No 0 Yes No C:\Documents and Settings\Invitado\Escritorio\YAYA\Cookies\yaya@www .advnt01[1].txt
00271993 W32/Puce.E.worm Virus/Worm No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\DISCO_C\Ga rmin City Navigator Europe v9 2007 Complete Multilanguagedvd (Iso) Garmin Full Key Generator updated-fixed 07-2007.zip[Setup.exe]
00286736 Cookie/Cgi-bin TrackingCookie No 0 Yes No C:\Archivos de programa\AdWare SpyWare SE\Quarantine\mi_pc@www6.addfreestats[1].txt
00366244 Application/NirCmd.A HackTools No 0 No No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Mi pc\Escritorio\LIMPIAR\arc ocult\Flash_Disinfector.exe[nircmd.exe]
00366244 Application/NirCmd.A HackTools No 0 No No C:\Documents and Settings\Mi pc\Escritorio\LIMPIAR\arc ocult\Flash_Disinfector.exe[nircmd.exe]
00366244 Application/NirCmd.A HackTools No 0 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\Documents and Settings\Mi pc\Configuración local\Temp\nircmd.exe
01692574 Application/AlertVir HackTools No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\Documents and Settings\Mi pc\Escritorio\LIMPIAR\alertvir.zip[alertvir.exe]
02209416 Trj/WoW.HV Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\Ten 1 PHOTO\Nueva carpeta\AutoPlay\Docs\Suites\Fotos_a_CD-DVD\AutoPlay\Docs\FotoTime FotoAlbum Pro v5.1\KeyGen.exe
02912157 W32/Spamta.gen.worm Virus/Worm No 0 Yes No H:\Ten 1 PHOTO\Nueva carpeta\AutoPlay\Docs\Varios\plb230\selteco.photo. lab.v2.3.0-patch.exe
02913360 W32/Bagle.SP.worm Virus/Worm No 1 Yes No H:\COPIA_RESPALDO\C 2008-05-06 11;30;49\WINDOWS\system32\drivers\downld\241312.ex e
02913360 W32/Bagle.SP.worm Virus/Worm No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\drivers\downld\241312.exe
02920809 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\WINDVD8\KEYGEN.EXE
02921788 Application/PassRock HackTools No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\Documents and Settings\Mi pc\Mis documentos\Downloads\Win_Sp2_Esp+Patch\Validar Windows XP Como Original\WinXP keyChanger.exe
02921788 Application/PassRock HackTools No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\COPIA_RESP ALDO\C 2008-05-06 11;30;49\Documents and Settings\Mi pc\Mis documentos\Downloads\Win_Sp2_Esp+Patch\Validar Windows XP Como Original\WinXP keyChanger.exe
02939010 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\ARCHIVOS DE PROGRAMA\Alcohol Soft\Alcohol 120\KEYMAKER.EXE
02939010 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\TODO EN UNO\AUTOPLAY\DOCS\BURNING\ALCOHOL\KEYMAKER.EXE
02939010 Generic Trojan Virus/Trojan No 0 Yes No H:\TODO EN UNO\AUTOPLAY\AUTOPLAY\DOCS\BURNING\ALCOHOL\KEYMAKE R.EXE
02959560 Spyware/Virtumonde Spyware No 1 No No H:\ARCHIVOS DE PROGRAMA\UltraISO\OTROS\UltraISO.Premium.Edition.v 8.1.2.1625.Multilingual.WinALL.READ.NFO.Cracked-CzW.rar[UltraISO.Premium.Edition.v8.1.2.1625.Multilingual. WinALL.READ.NFO.Cracked-CzW\keygen.exe]
03074964 Trj/CI.A Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\TODO EN UNO\AUTOPLAY\DOCS\BURNING\CLONECD\PATCH.EXE
03128601 Adware/MalwareProtector2008 Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\F6.tmp
03128601 Adware/MalwareProtector2008 Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\F5.tmp
03128601 Adware/MalwareProtector2008 Adware No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\F4.tmp
03184134 Generic Malware Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\blphcjg6j0e5a5.scr
03204909 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\STYLEXP\KEYGEN.EXE
03204909 Generic Trojan Virus/Trojan No 0 Yes No H:\TODO EN UNO\AUTOPLAY\AUTOPLAY\DOCS\VARIAS\STYLEXP\KEYGEN.E XE
03205018 Generic Trojan Virus/Trojan No 0 Yes No C:\Archivos de programa\DelPSGuard\IED.exe
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/14.12 AVG Antivirus Pro v7.0.206/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\AVG\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\AVG\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\AVG\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\VIRUS\(SOF TWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\VIRUS\(SOF TWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\VIRUS\(SOF TWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\VIRUS\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\VIRUS\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\VIRUS\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\V I R U S\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[14.12 AVG Antivirus Pro v7.0.206/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\VIRUS\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/14.12 AVG Antivirus Pro v7.0.206/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen/14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[AVG Antivirus Pro v7.0.206.rar][14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\Archivos de programa\ANTIVIRUS\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No C:\Archivos de programa\ANTIVIRUS\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No C:\_OTMoveIt\MovedFiles\07192008_082808\VIRUS\(SOF TWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\14.12 AVG Antivirus Pro v7.0.206.rar[Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206\Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[Keygen\avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 No No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen\AVG Antivirus Pro v7.0.206.rar[14.12 AVG Antivirus Pro v7.0.206.rar][Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[14.12 AVG Antivirus Pro v7.0.206/Keygen/avg70167.exe]
03265232 Generic Trojan Virus/Trojan No 0 Yes No H:\V I R U S\AVG\(SOFTWARE) AVG Antivirus Pro 7.0.206 + keygen.zip[Keygen/avg70167.exe]
03268116 Spyware/Virtumonde Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\oidhdsbi.dll
03275460 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\Ten 1 PHOTO\Nueva carpeta\AutoPlay\Docs\Varios\QImag151\Patch.exe
03276509 Spyware/Virtumonde Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\pxlwywtc.dll
03276509 Spyware/Virtumonde Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\ihcfsqci.dll
03276509 Spyware/Virtumonde Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\darjgt.dll
03276509 Spyware/Virtumonde Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\sheiau.dll
03276514 Spyware/Virtumonde Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\esajcd.dll
03276514 Spyware/Virtumonde Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\fpenwgry.dll
03276516 Spyware/Virtumonde Spyware No 1 Yes No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\gxfbbary.dll
03310192 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\jmwuowcs.dll
03310205 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\iyrdehox.dll
03310205 Spyware/Virtumonde Spyware No 1 Yes No C:\WINDOWS\system32\deoaescd.dll
;================================================= ================================================== ================================================== ==============================
SUSPECTS
Sent Location .
;================================================= ================================================== ================================================== ==============================
No C:\WINDOWS\system32\urqRlMgH.dll .
No C:\Documents and Settings\Mi pc\Escritorio\TORRENT DESCARG\ISOBuster Pro 2.4.0.1 Incl. Crack\Crack\Keygen.exe
No C:\WINDOWS\system32\urqRlMgH.dll .
No C:\_OTMoveIt\MovedFiles\07192008_082808\Documents and Settings\Mi pc\Escritorio\TORRENT DESCARG\Mint Royale - Singing In The Rain.exe[is156984.exe]
No C:\_OTMoveIt\MovedFiles\07192008_082808\Documents and Settings\Mi pc\Configuración local\Temp\vistasp1.exe
No C:\_OTMoveIt\MovedFiles\07192008_082808\WINDOWS\sy stem32\lphcjg6j0e5a5.exe .
No H:\TODO EN UNO\AUTOPLAY\DOCS\VARIAS\QUICKTIME\QUICKTIME_7.1_K G.EXE .
;================================================= ================================================== ================================================== ==============================
VULNERABILITIES
Id Severity Description .
;================================================= ================================================== ================================================== ==============================
;================================================= ================================================== ================================================== ==============================

Hola huetam

Realiza estos pasos por favor...

- Descarga la herramienta ComboFix.exe y guárdala en el escritorio.

• Desactiva temporalmente el Antivirus y/o Antispyware.
• Cierra todas las ventanas abiertas.
• Hacele doble clic al archivo ComboFix.exe y seguí las instrucciones.
• Cuando termine, generara un registro en C:\ComboFix.txt.
  • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
  • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.

• Reinicia y pega el reporte de C:\ComboFix.txt en este mismo mensaje.

Salu2
Recuerda volver y contarnos los resltados

El ComboFix no funciona.

Hola...

• Te sale algun error?
• Que pasa cuando ejecutas CF?
• No se ejecuta CF?

Salu2

Sale un error pidiendo un prorama "fresco"(?).Sigo sin tener acceso al correoy a Google.

A fin consegui el programa .Adjunto reporte ComboFix 08-07-23.4 - Mi pc 2008-07-24 17:48:49.4 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.3082.18.1562 [GMT 2:00]
Se ejecuta desde: H:\descargas\ComboFix.exe
* Creado un nuevo punto de restauración

ADVERTENCIA - ESTE EQUIPO NO TIENE INSTALADA LA CONSOLA DE RECUPERACION!
.

(((((((((((((((((((((((((((((((((((( Otras eliminaciones )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Mi pc\Datos de programa\rhcng6j0e5a5
C:\WINDOWS\BMcb91783b.txt
C:\WINDOWS\pskt.ini
C:\WINDOWS\system32\atrapnki.ini
C:\WINDOWS\system32\beukvosm.ini
C:\WINDOWS\system32\drivers\downld
C:\WINDOWS\system32\drivers\downld\1003125.exe
C:\WINDOWS\system32\drivers\downld\1015546.exe
C:\WINDOWS\system32\drivers\downld\1025218.exe
C:\WINDOWS\system32\drivers\downld\1106781.exe
C:\WINDOWS\system32\drivers\downld\1113796.exe
C:\WINDOWS\system32\drivers\downld\14768953.exe
C:\WINDOWS\system32\drivers\downld\14862734.exe
C:\WINDOWS\system32\drivers\downld\14890562.exe
C:\WINDOWS\system32\drivers\downld\14909359.exe
C:\WINDOWS\system32\drivers\downld\14921265.exe
C:\WINDOWS\system32\drivers\downld\14927500.exe
C:\WINDOWS\system32\drivers\downld\14935343.exe
C:\WINDOWS\system32\drivers\downld\14943359.exe
C:\WINDOWS\system32\drivers\downld\14954328.exe
C:\WINDOWS\system32\drivers\downld\14961578.exe
C:\WINDOWS\system32\drivers\downld\14973484.exe
C:\WINDOWS\system32\drivers\downld\14979546.exe
C:\WINDOWS\system32\drivers\downld\15091765.exe
C:\WINDOWS\system32\drivers\downld\15108671.exe
C:\WINDOWS\system32\drivers\downld\15110546.exe
C:\WINDOWS\system32\drivers\downld\15125156.exe
C:\WINDOWS\system32\drivers\downld\15129734.exe
C:\WINDOWS\system32\drivers\downld\15134406.exe
C:\WINDOWS\system32\drivers\downld\15146656.exe
C:\WINDOWS\system32\drivers\downld\15154390.exe
C:\WINDOWS\system32\drivers\downld\15475156.exe
C:\WINDOWS\system32\drivers\downld\15523593.exe
C:\WINDOWS\system32\drivers\downld\15544812.exe
C:\WINDOWS\system32\drivers\downld\15562562.exe
C:\WINDOWS\system32\drivers\downld\15569796.exe
C:\WINDOWS\system32\drivers\downld\199562.exe
C:\WINDOWS\system32\drivers\downld\214453.exe
C:\WINDOWS\system32\drivers\downld\221140.exe
C:\WINDOWS\system32\drivers\downld\222359.exe
C:\WINDOWS\system32\drivers\downld\228093.exe
C:\WINDOWS\system32\drivers\downld\228265.exe
C:\WINDOWS\system32\drivers\downld\234531.exe
C:\WINDOWS\system32\drivers\downld\238609.exe
C:\WINDOWS\system32\drivers\downld\239484.exe
C:\WINDOWS\system32\drivers\downld\242328.exe
C:\WINDOWS\system32\drivers\downld\248875.exe
C:\WINDOWS\system32\drivers\downld\248890.exe
C:\WINDOWS\system32\drivers\downld\250218.exe
C:\WINDOWS\system32\drivers\downld\250812.exe
C:\WINDOWS\system32\drivers\downld\251312.exe
C:\WINDOWS\system32\drivers\downld\259968.exe
C:\WINDOWS\system32\drivers\downld\262093.exe
C:\WINDOWS\system32\drivers\downld\263890.exe
C:\WINDOWS\system32\drivers\downld\265265.exe
C:\WINDOWS\system32\drivers\downld\265515.exe
C:\WINDOWS\system32\drivers\downld\266140.exe
C:\WINDOWS\system32\drivers\downld\269390.exe
C:\WINDOWS\system32\drivers\downld\269484.exe
C:\WINDOWS\system32\drivers\downld\270343.exe
C:\WINDOWS\system32\drivers\downld\270968.exe
C:\WINDOWS\system32\drivers\downld\272515.exe
C:\WINDOWS\system32\drivers\downld\282234.exe
C:\WINDOWS\system32\drivers\downld\284875.exe
C:\WINDOWS\system32\drivers\downld\286625.exe
C:\WINDOWS\system32\drivers\downld\286812.exe
C:\WINDOWS\system32\drivers\downld\288531.exe
C:\WINDOWS\system32\drivers\downld\288828.exe
C:\WINDOWS\system32\drivers\downld\289656.exe
C:\WINDOWS\system32\drivers\downld\290515.exe
C:\WINDOWS\system32\drivers\downld\29357734.exe
C:\WINDOWS\system32\drivers\downld\293625.exe
C:\WINDOWS\system32\drivers\downld\293765.exe
C:\WINDOWS\system32\drivers\downld\29395500.exe
C:\WINDOWS\system32\drivers\downld\29412593.exe
C:\WINDOWS\system32\drivers\downld\29424109.exe
C:\WINDOWS\system32\drivers\downld\29430390.exe
C:\WINDOWS\system32\drivers\downld\296671.exe
C:\WINDOWS\system32\drivers\downld\299218.exe
C:\WINDOWS\system32\drivers\downld\304156.exe
C:\WINDOWS\system32\drivers\downld\306171.exe
C:\WINDOWS\system32\drivers\downld\306515.exe
C:\WINDOWS\system32\drivers\downld\312562.exe
C:\WINDOWS\system32\drivers\downld\313203.exe
C:\WINDOWS\system32\drivers\downld\315765.exe
C:\WINDOWS\system32\drivers\downld\316562.exe
C:\WINDOWS\system32\drivers\downld\317500.exe
C:\WINDOWS\system32\drivers\downld\317703.exe
C:\WINDOWS\system32\drivers\downld\318453.exe
C:\WINDOWS\system32\drivers\downld\319718.exe
C:\WINDOWS\system32\drivers\downld\322890.exe
C:\WINDOWS\system32\drivers\downld\323968.exe
C:\WINDOWS\system32\drivers\downld\324312.exe
C:\WINDOWS\system32\drivers\downld\333234.exe
C:\WINDOWS\system32\drivers\downld\334171.exe
C:\WINDOWS\system32\drivers\downld\336109.exe
C:\WINDOWS\system32\drivers\downld\336921.exe
C:\WINDOWS\system32\drivers\downld\337281.exe
C:\WINDOWS\system32\drivers\downld\340687.exe
C:\WINDOWS\system32\drivers\downld\343750.exe
C:\WINDOWS\system32\drivers\downld\343921.exe
C:\WINDOWS\system32\drivers\downld\345343.exe
C:\WINDOWS\system32\drivers\downld\345828.exe
C:\WINDOWS\system32\drivers\downld\348218.exe
C:\WINDOWS\system32\drivers\downld\350062.exe
C:\WINDOWS\system32\drivers\downld\351468.exe
C:\WINDOWS\system32\drivers\downld\353578.exe
C:\WINDOWS\system32\drivers\downld\354687.exe
C:\WINDOWS\system32\drivers\downld\354890.exe
C:\WINDOWS\system32\drivers\downld\357515.exe
C:\WINDOWS\system32\drivers\downld\361031.exe
C:\WINDOWS\system32\drivers\downld\366421.exe
C:\WINDOWS\system32\drivers\downld\366843.exe
C:\WINDOWS\system32\drivers\downld\367656.exe
C:\WINDOWS\system32\drivers\downld\368203.exe
C:\WINDOWS\system32\drivers\downld\371093.exe
C:\WINDOWS\system32\drivers\downld\371203.exe
C:\WINDOWS\system32\drivers\downld\373015.exe
C:\WINDOWS\system32\drivers\downld\375125.exe
C:\WINDOWS\system32\drivers\downld\378781.exe
C:\WINDOWS\system32\drivers\downld\379609.exe
C:\WINDOWS\system32\drivers\downld\379984.exe
C:\WINDOWS\system32\drivers\downld\385515.exe
C:\WINDOWS\system32\drivers\downld\387093.exe
C:\WINDOWS\system32\drivers\downld\387375.exe
C:\WINDOWS\system32\drivers\downld\388562.exe
C:\WINDOWS\system32\drivers\downld\389125.exe
C:\WINDOWS\system32\drivers\downld\390281.exe
C:\WINDOWS\system32\drivers\downld\391015.exe
C:\WINDOWS\system32\drivers\downld\393875.exe
C:\WINDOWS\system32\drivers\downld\397250.exe
C:\WINDOWS\system32\drivers\downld\400812.exe
C:\WINDOWS\system32\drivers\downld\402406.exe
C:\WINDOWS\system32\drivers\downld\402546.exe
C:\WINDOWS\system32\drivers\downld\403671.exe
C:\WINDOWS\system32\drivers\downld\405859.exe
C:\WINDOWS\system32\drivers\downld\408000.exe
C:\WINDOWS\system32\drivers\downld\408890.exe
C:\WINDOWS\system32\drivers\downld\409546.exe
C:\WINDOWS\system32\drivers\downld\411109.exe
C:\WINDOWS\system32\drivers\downld\411328.exe
C:\WINDOWS\system32\drivers\downld\412343.exe
C:\WINDOWS\system32\drivers\downld\414015.exe
C:\WINDOWS\system32\drivers\downld\418546.exe
C:\WINDOWS\system32\drivers\downld\422296.exe
C:\WINDOWS\system32\drivers\downld\422734.exe
C:\WINDOWS\system32\drivers\downld\422921.exe
C:\WINDOWS\system32\drivers\downld\425250.exe
C:\WINDOWS\system32\drivers\downld\427734.exe
C:\WINDOWS\system32\drivers\downld\429406.exe
C:\WINDOWS\system32\drivers\downld\430593.exe
C:\WINDOWS\system32\drivers\downld\432562.exe
C:\WINDOWS\system32\drivers\downld\435937.exe
C:\WINDOWS\system32\drivers\downld\440140.exe
C:\WINDOWS\system32\drivers\downld\441296.exe
C:\WINDOWS\system32\drivers\downld\442265.exe
C:\WINDOWS\system32\drivers\downld\446015.exe
C:\WINDOWS\system32\drivers\downld\446468.exe
C:\WINDOWS\system32\drivers\downld\450234.exe
C:\WINDOWS\system32\drivers\downld\454484.exe
C:\WINDOWS\system32\drivers\downld\456546.exe
C:\WINDOWS\system32\drivers\downld\457750.exe
C:\WINDOWS\system32\drivers\downld\457937.exe
C:\WINDOWS\system32\drivers\downld\460703.exe
C:\WINDOWS\system32\drivers\downld\465828.exe
C:\WINDOWS\system32\drivers\downld\465875.exe
C:\WINDOWS\system32\drivers\downld\466968.exe
C:\WINDOWS\system32\drivers\downld\468734.exe
C:\WINDOWS\system32\drivers\downld\469796.exe
C:\WINDOWS\system32\drivers\downld\474468.exe
C:\WINDOWS\system32\drivers\downld\484156.exe
C:\WINDOWS\system32\drivers\downld\485265.exe
C:\WINDOWS\system32\drivers\downld\496328.exe
C:\WINDOWS\system32\drivers\downld\501312.exe
C:\WINDOWS\system32\drivers\downld\503265.exe
C:\WINDOWS\system32\drivers\downld\503953.exe
C:\WINDOWS\system32\drivers\downld\520984.exe
C:\WINDOWS\system32\drivers\downld\522531.exe
C:\WINDOWS\system32\drivers\downld\538500.exe
C:\WINDOWS\system32\drivers\downld\545875.exe
C:\WINDOWS\system32\drivers\downld\549609.exe
C:\WINDOWS\system32\drivers\downld\556406.exe
C:\WINDOWS\system32\drivers\downld\562890.exe
C:\WINDOWS\system32\drivers\downld\566718.exe
C:\WINDOWS\system32\drivers\downld\578640.exe
C:\WINDOWS\system32\drivers\downld\582750.exe
C:\WINDOWS\system32\drivers\downld\599328.exe
C:\WINDOWS\system32\drivers\downld\640234.exe
C:\WINDOWS\system32\drivers\downld\647218.exe
C:\WINDOWS\system32\drivers\downld\656515.exe
C:\WINDOWS\system32\drivers\downld\663015.exe
C:\WINDOWS\system32\drivers\downld\674453.exe
C:\WINDOWS\system32\drivers\downld\681125.exe
C:\WINDOWS\system32\drivers\downld\922781.exe
C:\WINDOWS\system32\drivers\downld\971343.exe
C:\WINDOWS\system32\gpqsydgy.ini
C:\WINDOWS\system32\ihggQqss.ini
C:\WINDOWS\system32\ihggQqss.ini2
C:\WINDOWS\system32\KRrrAJlm.ini
C:\WINDOWS\system32\KRrrAJlm.ini2
C:\WINDOWS\system32\ktxmaxji.ini
C:\WINDOWS\system32\lklsfurc.ini
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\tkulksjj.ini
C:\WINDOWS\system32\tsohdjjh.ini
C:\WINDOWS\system32\vmmskwhl.dll
C:\WINDOWS\system32\xbcMoUvw.ini
C:\WINDOWS\system32\xbcMoUvw.ini2
C:\WINDOWS\system32\YybJRqss.ini
C:\WINDOWS\system32\YybJRqss.ini2

.
(((((((((((((((((( Archivos creados desde 2008-06-24 - 2008-07-24 )))))))))))))))))))))))))))))))))
.

2008-07-24 08:39 . 2008-07-24 08:39 127 --a------ C:\WINDOWS\system32\MRT.INI
2008-07-23 09:57 . 2008-07-20 20:21 38,472 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-07-23 09:57 . 2008-07-20 20:21 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-07-22 18:48 . 2008-07-22 19:12 <DIR> d-------- C:\Archivos de programa\ACD Systems
2008-07-19 08:54 . 2008-07-19 08:57 <DIR> d-------- C:\Archivos de programa\Disk Cleaner
2008-07-18 20:44 . 2008-07-24 17:25 <DIR> d-------- C:\Archivos de programa\Kaspersky Lab
2008-07-18 20:17 . 2008-07-18 20:17 <DIR> d-------- C:\KAV
2008-07-18 09:52 . 2008-06-19 17:24 28,544 --a------ C:\WINDOWS\system32\drivers\pavboot.sys
2008-07-18 09:35 . 2008-07-18 09:35 <DIR> d-------- C:\Archivos de programa\Panda Security
2008-07-18 09:28 . 2008-07-18 09:28 69,120 --a------ C:\WINDOWS\system32\sfwgqjxu.dll
2008-07-17 21:11 . 2008-07-23 11:32 <DIR> d-------- C:\Archivos de programa\DelPSGuard
2008-07-17 21:04 . 2008-07-17 21:04 <DIR> d-------- C:\Archivos de programa\Trend Micro
2008-07-17 14:29 . 2008-07-17 14:29 90,838 --a------ C:\WINDOWS\system32\phcjg6j0e5a5.bmp
2008-07-16 14:14 . 2008-07-16 14:14 17 --a------ C:\WINDOWS\MovingPicture.ini
2008-07-16 14:07 . 2008-07-16 14:10 <DIR> d-------- C:\Archivos de programa\proDAD
2008-07-16 13:54 . 2008-07-16 14:11 <DIR> d-------- C:\Documents and Settings\Mi pc\Datos de programa\proDAD
2008-07-16 13:52 . 2008-07-16 13:52 <DIR> d-------- C:\Archivos de programa\AdorageI-SAL
2008-07-15 12:53 . 2008-07-15 12:53 <DIR> d-------- C:\VundoFix Backups
2008-07-14 10:16 . 1999-11-01 10:21 185,344 --a------ C:\WINDOWS\system32\Bdeadmin.cpl
2008-07-14 10:16 . 2000-01-24 15:06 179,200 --a------ C:\WINDOWS\system32\UndB2Kr.dll
2008-07-14 10:16 . 1998-10-10 05:01 36,864 --a------ C:\WINDOWS\system32\Iduninst.dll
2008-07-14 10:11 . 2008-07-14 10:33 <DIR> d-------- C:\EvilFOTO_Cuentos_2
2008-07-14 10:11 . 2008-07-14 10:33 <DIR> d-------- C:\EvilEvil
2008-07-13 11:13 . 2008-07-13 11:13 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\espionServerData
2008-07-13 10:49 . 2008-06-11 02:07 120,056 --------- C:\WINDOWS\system32\pxcpyi64.exe
2008-07-11 11:18 . 2008-07-11 11:18 <DIR> d-------- C:\vinsock
2008-07-11 10:30 . 2008-07-11 10:31 <DIR> d-------- C:\WINDOWS\system32\Adobe
2008-07-07 17:52 . 2008-07-07 17:52 <DIR> d-------- C:\Archivos de programa\Labtec
2008-06-29 11:42 . 2008-06-29 11:43 24 ---hs---- C:\WINDOWS\S425310CE.tmp
2008-06-29 11:27 . 2008-06-29 11:27 95 --a------ C:\WINDOWS\ClonyDrives.ini
2008-06-29 11:26 . 2008-06-29 11:40 277 --a------ C:\WINDOWS\Clony2.ini
2008-06-24 12:00 . 2008-06-24 12:00 107,134 --a------ C:\WINDOWS\UninstallFirefox.exe
2008-06-24 11:36 . 2008-07-23 16:43 <DIR> d-------- C:\Documents and Settings\Mi pc\Datos de programa\uTorrent
2008-06-24 11:36 . 2008-06-24 21:36 <DIR> d-------- C:\Archivos de programa\uTorrent
2008-06-24 08:55 . 2008-06-24 11:36 <DIR> d-------- C:\ERDNT

.
(((((((((((((((((((((((((((((((((((((( Reporte Find3M )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
2008-07-24 11:23 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Kaspersky Lab Setup Files
2008-07-24 10:46 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Google Updater
2008-07-24 06:56 --------- d-----w C:\Archivos de programa\SUPERAntiSpyware
2008-07-24 06:51 --------- d-----w C:\Archivos de programa\Java
2008-07-23 15:42 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Microsoft Help
2008-07-23 11:27 --------- d-----w C:\Archivos de programa\Archivos comunes\Adobe
2008-07-23 07:57 --------- d-----w C:\Archivos de programa\Malwarebytes' Anti-Malware
2008-07-22 17:16 --------- d-----w C:\Archivos de programa\Archivos comunes\Wise Installation Wizard
2008-07-22 17:14 --------- d--h--w C:\Archivos de programa\InstallShield Installation Information
2008-07-22 17:14 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Ulead Systems
2008-07-22 17:00 --------- d-----w C:\Archivos de programa\Archivos comunes\ACD Systems
2008-07-22 16:50 --------- d-----w C:\Documents and Settings\Mi pc\Datos de programa\ACD Systems
2008-07-22 16:48 10,368 ----a-w C:\WINDOWS\system32\drivers\pfc.sys
2008-07-22 16:39 --------- d-----w C:\Archivos de programa\DivX
2008-07-18 07:20 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Spybot - Search & Destroy
2008-07-17 06:13 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Lavasoft
2008-07-08 18:37 --------- d-----w C:\Documents and Settings\Mi pc\Datos de programa\Dr. DivX 2.0 OSS
2008-07-05 07:43 --------- d-----w C:\Archivos de programa\VS Revo Group
2008-07-01 18:13 17,408 ----a-w C:\psapi.dll
2008-07-01 18:13 --------- d-----w C:\Archivos de programa\Vasilios Applications
2008-06-24 09:37 --------- d-----w C:\Archivos de programa\Cobian Backup 9
2008-06-22 09:43 --------- d-----w C:\Archivos de programa\Smart Projects
2008-06-22 09:43 --------- d-----w C:\Archivos de programa\EPSON
2008-06-20 17:41 248,320 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-06-20 10:45 360,320 ------w C:\WINDOWS\system32\drivers\tcpip.sys
2008-06-20 10:44 138,368 ------w C:\WINDOWS\system32\drivers\afd.sys
2008-06-20 09:52 225,920 ------w C:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-18 17:52 161,096 ----a-w C:\WINDOWS\system32\DivXCodecVersionChecker.exe
2008-06-15 17:29 --------- d-----w C:\Archivos de programa\Free Audio Pack
2008-06-14 17:59 272,512 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-06-14 09:24 --------- d-----w C:\Archivos de programa\Pinnacle
2008-06-14 09:03 --------- d-----w C:\Documents and Settings\Mi pc\Datos de programa\InstallShield
2008-06-13 07:27 --------- d-----w C:\Documents and Settings\Mi pc\Datos de programa\Ahead
2008-06-12 06:28 56,108 ----a-w C:\WINDOWS\system32\drivers\scdemu.sys
2008-06-11 09:48 717,296 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2008-06-11 09:47 --------- d-----w C:\Documents and Settings\Mi pc\Datos de programa\DAEMON Tools
2008-06-11 00:07 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe
2008-06-11 00:07 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
2008-06-11 00:04 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll
2008-06-11 00:04 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
2008-06-10 06:49 --------- d-----w C:\Archivos de programa\Vstplugins
2008-06-07 07:05 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Pinnacle
2008-06-07 06:50 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Pinnacle Studio
2008-05-22 22:18 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll
2008-05-16 09:58 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe
2008-05-13 01:53 129,784 ------w C:\WINDOWS\system32\pxafs.dll
2008-05-13 01:53 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe
2008-05-07 05:15 1,293,824 ------w C:\WINDOWS\system32\quartz.dll
2008-04-19 07:04 87,608 ------w C:\Documents and Settings\Mi pc\Datos de programa\inst.exe
2008-04-19 07:04 47,360 ------w C:\Documents and Settings\Mi pc\Datos de programa\pcouffin.sys
2007-03-09 07:21 6,796 ------w C:\Archivos de programa\INSTALL.LOG
2007-02-26 07:44 87,608 ------w C:\Documents and Settings\Mi pc\Datos de programa\ezpinst.exe
2005-06-30 05:32 7,844 ------r C:\Archivos de programa\léame.txt
2005-06-30 05:32 14,754 ------r C:\Archivos de programa\LéamePrimero.wri
2005-06-15 09:28 961,964 ------r C:\Archivos de programa\Ayuda.pdf
2004-10-01 13:00 40,960 ------w C:\Archivos de programa\Uninstall_CDS.exe
2002-07-26 15:02 153,088 ------w C:\Archivos de programa\UNWISE.EXE
2001-01-05 18:00 920 ------w C:\Archivos de programa\SETUP.OP_
2001-01-05 18:00 5,718 ------w C:\Archivos de programa\LOGO.BMP
2001-01-05 18:00 105,372 ------w C:\Archivos de programa\SETUP.DA_
2001-01-05 18:00 1,317 ------w C:\Archivos de programa\README.TXT
.

((((((((((((((((((((((((((((((((( Cargando Puntos Reg ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Nota* entradas vac¡as & entradas leg¡timas predeterminadas no son mostradas

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 15:42 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"!AVG Anti-Spyware"="C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 11:25 6731312]
"SunJavaUpdateSched"="C:\Archivos de programa\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 04:27 144784]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-19 15:42 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2007-04-19 13:41 294912 C:\Archivos de programa\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.l3acm"= l3codecp.acm
"VIDC.MJPG"= Pvmjpg30.dll
"VIDC.I420"= vdrcodec.dll
"VIDC.ACDV"= ACDV.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menú Inicio^Programas^Inicio^Adobe Gamma.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menú Inicio^Programas^Inicio^Google Updater.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menú Inicio^Programas^Inicio^Inicio rápido de Adobe Reader.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menú Inicio^Programas^Inicio^Lexibase Express.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menú Inicio^Programas^Inicio^Orbit.lnk]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ad-Aware
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AntiVirus
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BySoft FreeRAM
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ClocX
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\loveadmin
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MOD
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nero PhotoShow Media Manager
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuiteTrayApplication
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PcSync

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]
C:\Archivos de programa\Picasa2\PicasaMediaDetector [X]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SecurDisc
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SPAMfighter Agent
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperFinder
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WindowsServicesStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]
--------- 2007-06-11 11:25 6731312 C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--------- 2008-01-11 22:16 39792 C:\Archivos de programa\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
--------- 2006-01-02 17:41 45056 C:\Archivos de programa\ATI Technologies\ATI.ACE\CLI.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\basicsmssmenu]
--------- 2007-10-09 17:21 169328 C:\Downloads\Basics Status\MaxMenuMgrBasics.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
--a------ 2006-09-28 21:21 57344 H:\ARCHIVOS DE PROGRAMA\SlySoft\CloneCD\CloneCDTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]
--------- 2004-12-02 18:23 102400 C:\Archivos de programa\Creative\MediaSource\Detector\CTDetect.ex e

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
--------- 2004-08-19 15:42 15360 C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTRegRun]
--------- 1999-10-11 03:00 41984 C:\WINDOWS\Ctregrun.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSyncU.exe]
--------- 2007-01-05 13:42 843776 C:\Archivos de programa\Creative\Sync Manager Unicode\CTSyncU.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EM_EXEC]
--------- 1998-04-07 10:02 35840 c:\MOUSE\SYSTEM\em_exec.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
--a------ 2006-10-27 01:47 31016 H:\ARCHIVOS DE PROGRAMA\Microsoft Office\Office12\GrooveMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
--------- 2007-01-08 23:17 52256 C:\Archivos de programa\CyberLink\PowerDVD\Language\Language.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchList]
--a------ 2007-03-21 15:41 145496 C:\Archivos de programa\Pinnacle\Studio 11\LaunchList2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mouseElf]
--------- 2001-06-05 11:22 143360 C:\Archivos de programa\KYE\Genius Net Mouse Pro\MouseElf.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--------- 2007-10-18 12:34 5724184 C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MtdAcq]
--------- 2004-07-02 11:26 122956 C:\Archivos de programa\Creative\Shared Files\Media Sniffer\MtdAcq.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ]
--------- 2004-11-30 12:36 1945600 C:\Archivos de programa\Ahead\Nero BackItUp\NBJ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--------- 2001-07-09 10:50 155648 C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OM2_Monitor]
--a------ 2008-02-22 14:29 54576 H:\ARCHIVOS DE PROGRAMA\OLYMPUS\OLYMPUS Master 2\FirstStart.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCLEPCI]
--a------ 2004-02-03 15:13 49152 C:\ARCHIV~1\Pinnacle\PPE\PPE.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerBar]
--------- 2004-04-21 10:26 86016 C:\Archivos de programa\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
--------- 2007-03-14 22:01 71216 C:\Archivos de programa\CyberLink\PowerDVD\PDVDServ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmcService]
--------- 2003-12-24 14:44 2344160 C:\ARCHIV~1\Sygate\SPF\Smc.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
-rahs---- 2008-01-28 11:43 2097488 H:\ARCHIVOS DE PROGRAMA\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--------- 2008-02-22 05:25 144784 C:\Archivos de programa\Java\jre1.6.0_05\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
--------- 2008-02-29 17:03 1481968 C:\Archivos de programa\SUPERAntiSpyware\SUPERAntiSpyware.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--------- 2008-04-26 19:36 185896 C:\Archivos de programa\Archivos comunes\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB2Check]
--------- 2004-04-06 19:05 61440 C:\WINDOWS\system32\PCLECoInst.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBToolTip]
--------- 2004-04-23 12:00 192512 C:\Archivos de programa\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\zBrowser Launcher]
--------- 2004-03-18 09:33 892928 C:\Archivos de programa\Logitech\iTouch\iTouch.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationA gent]
--------- 2004-08-19 15:43 110592 C:\WINDOWS\system32\bthprops.cpl

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
--------- 2007-04-16 16:28 577536 C:\WINDOWS\soundman.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\run-]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe
"Microsoft Office Outlook"=C:\ARCHIV~1\MICROS~2\OFFICE11\OUTLOOK.EXE /recycle

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile]
"EnableFirewall"= 0 (0x0)
"mW[íµ�ˆÖ¾`=µú¾˜v%S8’ÿÙêé>grl>�*Ý\†Ð=ŸàÛ±Þ"=

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\AuthorizedApplications\List]
"C:\\Archivos de programa\\CyberLink\\PowerDVD\\PowerDVD.exe"=
"H:\\ARCHIVOS DE PROGRAMA\\eMule\\emule.exe"=
"H:\\ARCHIVOS DE PROGRAMA\\Microsoft Office\\Office12\\GROOVE.EXE"=
"H:\\ARCHIVOS DE PROGRAMA\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Archivos de programa\\Pinnacle\\Studio 11\\programs\\PMSRegisterFile.exe"=
"C:\\Archivos de programa\\Pinnacle\\Studio 11\\programs\\RM.exe"=
"C:\\Archivos de programa\\Pinnacle\\Studio 11\\programs\\Studio.exe"=
"C:\\Archivos de programa\\Pinnacle\\Studio 11\\programs\\umi.exe"=
"C:\\Archivos de programa\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Archivos de programa\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Archivos de programa\\uTorrent\\uTorrent.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R0 pavboot;pavboot;C:\WINDOWS\system32\drivers\pavboo t.sys [2008-06-19 17:24]
R1 lkbdfltr;Controlador Class Filter de teclado de Logitech;C:\WINDOWS\system32\DRIVERS\lkbdfltr.sys [1998-04-07 10:02]
R2 Basics Service;Basics Service;C:\Downloads\Service\SyncServicesBasics.ex e [2007-10-09 17:21]
R2 SBKUPNT;SBKUPNT;C:\WINDOWS\system32\Drivers\SBKUPN T.SYS [2001-07-13 14:56]
R3 genmcmn;Scroll Mouse Driver;C:\WINDOWS\system32\DRIVERS\gmfiltr.sys [2003-01-29 08:52]
S1 l8042prt;Controlador de ratón para puerto PS/2 y teclado de Logitech;C:\WINDOWS\system32\DRIVERS\l8042prt.sys [1998-04-07 10:02]
S1 lsermous;Controlador de ratón serie de Logitech;C:\WINDOWS\system32\DRIVERS\lsermous.sys [1998-04-07 10:02]
S2 BulkUsb;Genius ColorPage USB Scanner;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 22:58]
S2 lmoufltr;Controlador Class Filter de ratón de Logitech;C:\WINDOWS\system32\DRIVERS\lmoufltr.sys [1998-04-07 10:02]
S3 DIGIRPS;Controlador Digi PortServer;C:\WINDOWS\system32\DRIVERS\digirlpt.sy s [2001-08-22 22:38]
S3 genmcmnUSB;USB Scroll Mouse Driver;C:\WINDOWS\system32\DRIVERS\gflmouhid.sys [2003-01-29 08:55]
.
Contenido de carpeta 'Tareas Programadas'
"2008-07-11 15:15:00 C:\WINDOWS\Tasks\1-Click Maintenance.job"
- C:\Archivos de programa\TuneUp Utilities 2007\SystemOptimizer.exe
"2008-07-11 15:15:00 C:\WINDOWS\Tasks\Mantenimiento con 1 clic.job"
- C:\Archivos de programa\TuneUp Utilities 2007\SystemOptimizer.exe
"2008-07-15 08:18:00 C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC Nag.job"
- H:\Archivos de programa\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe
"2008-03-27 09:09:32 C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC.job"
- H:\Archivos de programa\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe
.
- - - - ORPHANS REMOVED - - - -

Notify-urqRlMgH - urqRlMgH.dll
Notify-winzbb32 - winzbb32.dll
Notify-xxyvsSLB - xxyvsSLB.dll
MSConfigStartUp-FreeRAM XP - \FreeRAM XP Pro.exe


.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://www.google.es/
R1 -: HKCU-Internet Connection Wizard,ShellNext = iexplore
R1 -: HKCU-Internet Settings,ProxyServer = http=localhost:7979
R1 -: HKCU-Internet Settings,ProxyOverride = <local>
O8 -: Download Link Using Mega Manager...
O8 -: E&xportar a Microsoft Excel - H:\ARCHIV~1\MICROS~1\Office12\EXCEL.EXE/3000

O16 -: {193C772A-87BE-4B19-A7BB-445B226FE9A1} - hxxp://downloads.ewido.net/ewidoOnlineScan.cab
C:\WINDOWS\Downloaded Program Files\ewidoOnlineScan.dll

O16 -: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://213.201.84.106/activex/AMC.cab


************************************************** ************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-24 17:58:44
Windows 5.1.2600 Service Pack 2 NTFS

escaneando procesos ocultos ...

escaneando entradas ocultas de autostart ...

escaneando archivos ocultos ...

el escaneo se completo con exito
archivos ocultos: 0

************************************************** ************************

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\v sdatant]
"ImagePath"=""
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\ati2evxx.exe
C:\Archivos de programa\Sygate\SPF\Smc.exe
H:\ARCHIVOS DE PROGRAMA\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\Archivos de programa\Archivos comunes\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\CTSVCCDA.EXE
C:\Archivos de programa\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
C:\Archivos de programa\CyberLink\Shared Files\RichVideo.exe
.
************************************************** ************************
.
Tiempo completado: 2008-07-24 18:11:25 - machine was rebooted [Mi pc]
ComboFix-quarantined-files.txt 2008-07-24 16:11:21
ComboFix2.txt 2007-10-23 11:18:27

Pre-Run: 11,753,709,568 bytes libres
Post-Run: 11,698,163,712 bytes libres

529 --- E O F --- 2008-07-24 06:40:09