Desaparece Antivirus, Superantispy,Spybot etc (Solucionado)

Buscar

		Foro de InfoSpyware » Spyware - Adware - Hijackers - Malwares » Temas Solucionados
Desaparece Antivirus, Superantispy,Spybot etc (Solucionado)

Para evitar Virus, Spyware y otros Malwares, te recomendamos mantenerte informado en: InfoSpyware Blog

Temas Solucionados Casos de HijackThis y Malwares resueltos.
(Solo lectura)

Enviar a:

Herramientas

post #1

29/04/09, 11:52:32

vampiru

Usuario

Registrado: abr 2009

Ubicación: Barcelona

Mensajes: 7

Desaparece Antivirus, Superantispy,Spybot etc (Solucionado)

Hola,
no se donde me he vuelto a meter,,

despues de vuestra ultima ayuda tengo instalados m SUPERanty, Malware, Spybot, y el NOD32 actualizado,
pero hoy al descargar un archivo o ejecutarlo , no se bien que.

han desaparecido todos de la barra herramientas, solo me queda el icono de conexion red,

he intentado volver a instalar el SUPERspy, no me deja, el MAlaware si, Cclenaer, tampoco, he intentado arrancar en Modo Seguro no me deja,

JO!! se me ha suicidado los antivirus.. un desastre, nome atrevo ni a navegar..

si teneis un minuto echadme una ayuda,

InfoSpyware

post #2

29/04/09, 12:05:35

M@co

Warrior

Registrado: dic 2007

Ubicación: Guayana - Venezuela

Mensajes: 8.305

Re: Desaparece Antivirus, Superantispy,Spybot etc

Hola vampiru.

Descarga ATF-Cleaner by Atribune.
- Dale doble clic a ATF-Cleaner.exe
- Selecciona Select All.
- Pulsa en Empty Selected
  - Si usa Firefox.
    - Selecciona la pestaña Firefox.
    - Pulsa en Select All.
    - Dale clic al botón Empty Selected
  - Si usa Opera.
    - Selecciona la pestaña Opera.
    - Pulsa en Select All.
    - Dale clic al botón Empty Selected
  - Clickea en Main, después en Exit
Realiza un escaneo con Kaspersky Online Scanner.

Pega el reporte de kaspersky.
Nos comenta.

Salu2!.

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

post #3

29/04/09, 12:12:38

vampiru

Usuario

Registrado: abr 2009

Ubicación: Barcelona

Mensajes: 7

Re: Desaparece Antivirus, Superantispy,Spybot etc

Hola M@co
he descargad0 el ATF-Cleaner

al ejecutarlo, no aparece la ventana, se ven medio segundo y desaparece.

post #4

29/04/09, 13:30:10

M@co

Warrior

Registrado: dic 2007

Ubicación: Guayana - Venezuela

Mensajes: 8.305

Re: Desaparece Antivirus, Superantispy,Spybot etc

Hola.

Saltate ese paso y continua.

Salu2!.

post #5

29/04/09, 20:56:37

vampiru

Usuario

Registrado: abr 2009

Ubicación: Barcelona

Mensajes: 7

Re: Desaparece Antivirus, Superantispy,Spybot etc

no he podido hacer el scan con el Kaspersky Online Scanner.

lo he hecho con el PAnda active scan

el informe es este,

;************************************************* ************************************************** ************************************************** ******************************
ANALYSIS: 2009-04-30 01:51:49
PROTECTIONS: 1
MALWARE: 8
SUSPECTS: 9
;************************************************* ************************************************** ************************************************** ******************************
PROTECTIONS
Description Version Active Updated
;================================================= ================================================== ================================================== ==============================
ESET NOD32 Antivirus 3.0 3.0 Yes Yes
;================================================= ================================================== ================================================== ==============================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;================================================= ================================================== ================================================== ==============================
00701452 W32/SdBot.MCB.worm Virus/Trojan No 1 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\195468.exe
00701452 W32/SdBot.MCB.worm Virus/Trojan No 1 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\303406.exe
00701452 W32/SdBot.MCB.worm Virus/Trojan No 1 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\235828.exe
00701452 W32/SdBot.MCB.worm Virus/Trojan No 1 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\198296.exe
00701452 W32/SdBot.MCB.worm Virus/Trojan No 1 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\319687.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\121796.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes No C:\Avenger\wintems.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes No C:\Avenger\flec006.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\267062.exe
02898934 W32/Bagle.RP.worm Virus/Worm Yes 1 Yes No C:\WINDOWS\system32\wintems.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\304328.exe
02898934 W32/Bagle.RP.worm Virus/Worm Yes 1 Yes No C:\Documents and Settings\Propietario\Datos de programa\m\flec006.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\150281.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\672437.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes No C:\WINDOWS\system32\mdelk.exe
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes No C:\Documents and Settings\Propietario\Datos de programa\drivers\wfsintwq.sys
03074964 Trj/CI.A Virus/Trojan No 0 Yes No C:\Documents and Settings\Propietario\Escritorio\ComboFix.exe
03919041 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Propietario\Mis documentos\Mis programas 08\AnyDVD 5.3.2.1 CloneDVD 2.8.5.1 CloneCD 5.2.6.1 CloneDVD v 2.7.5.1 DVD Decrypter 3 DVD Shrink 3 Virtual Clone Drive v 5.0.1.3 CRACKS!! ( Tout FR).rar.rar[CloneCD 5.2.6.1\Crack\Slysoft.exe]
03919041 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Propietario\Mis documentos\Mis programas 08\AnyDVD 5.3.2.1 CloneDVD 2.8.5.1 CloneCD 5.2.6.1 CloneDVD v 2.7.5.1 DVD Decrypter 3 DVD Shrink 3 Virtual Clone Drive v 5.0.1.3 CRACKS!! ( Tout FR).rar.rar[CloneDVD 2.8.5.1\Crack\Slysoft.exe]
03919041 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Propietario\Mis documentos\Mis programas 08\AnyDVD 5.3.2.1 CloneDVD 2.8.5.1 CloneCD 5.2.6.1 CloneDVD v 2.7.5.1 DVD Decrypter 3 DVD Shrink 3 Virtual Clone Drive v 5.0.1.3 CRACKS!! ( Tout FR).rar.rar[AnyDVD 5.3.2.1\crack\Slysoft.exe]
04415621 Generic Trojan Virus/Trojan No 0 Yes No C:\Documents and Settings\Propietario\Mis documentos\MI HATTRICK I\HatTrick.Assistant.Manager.v6.0.96.215.WinALL.Ke ymaker.And.Patch.Only.WORKING-CORE\cr-ham60.exe
04415621 Generic Trojan Virus/Trojan No 0 No No C:\Documents and Settings\Propietario\Mis documentos\MI HATTRICK I\HAM Hattrick Assistant Manager v6.0.87.204 + Crack.rar[HAM204Crack.exe]
04415621 Generic Trojan Virus/Trojan No 0 Yes No C:\Documents and Settings\Propietario\Mis documentos\MI HATTRICK I\HatTrick.Assistant.Manager.v6.0.96.215.WinALL.Ke ymaker.And.Patch.Only.WORKING-CORE.ZIP[HatTrick.Assistant.Manager.v6.0.96.215.WinALL.Keym aker.And.Patch.Only.WORKING-CORE/cr-ham60.exe]
05374704 Generic Trojan Virus/Trojan No 0 Yes No C:\Documents and Settings\Propietario\Mis documentos\Spywares\FS-Fix\FStools\B_Clean.exe
05374704 Generic Trojan Virus/Trojan No 0 Yes No C:\Documents and Settings\Propietario\Escritorio\FS-FixBagle.zip[FS-Fix/FStools/B_Clean.exe]
05375071 Generic Trojan Virus/Trojan No 0 Yes No C:\Documents and Settings\Propietario\Mis documentos\Spywares\FS-Fix\FS-FixBagle.exe
05375071 Generic Trojan Virus/Trojan No 0 Yes No C:\Documents and Settings\Propietario\Escritorio\FS-FixBagle.zip[FS-Fix/FS-FixBagle.exe]
;================================================= ================================================== ================================================== ==============================
SUSPECTS
Sent Location Rt
;================================================= ================================================== ================================================== ==============================
No C:\Archivos de programa\ESET\ESET NOD32 Antivirus\Drivers\eamon\eamon.sys Rt
No C:\Archivos de programa\ESET\ESET NOD32 Antivirus\Drivers\easdrv\easdrv.sys Rt
No C:\Archivos de programa\ESET\ESET NOD32 Antivirus\Drivers\epfwtdir\epfwtdir.sys Rt
No C:\Documents and Settings\Propietario\Escritorio\FS-FixBagle.zip[FS-Fix/FStools/B_Box.exe] Rt
No C:\Documents and Settings\Propietario\Escritorio\FS-FixBagle.zip[FS-Fix/FStools/B_Registry.exe] Rt
No C:\Documents and Settings\Propietario\Escritorio\topazvivacity_setu p.zip[topazvivacity131_setup/vivacity_setup.msi][unk_0045][_805D938E87AA4D96B33FCB44D9E8BA6D]
No C:\Documents and Settings\Propietario\Mis documentos\Adobe.Photoshop.Elements.v7.0.Incl.Keym aker-CORE\cr-spseu.zip[keygen.exe]
No C:\Documents and Settings\Propietario\Mis documentos\Spywares\FS-Fix\FStools\B_Box.exe Rt
No C:\Documents and Settings\Propietario\Mis documentos\Spywares\FS-Fix\FStools\B_Registry.exe Rt
;================================================= ================================================== ================================================== ==============================
VULNERABILITIES
Id Severity Description Rt
;================================================= ================================================== ================================================== ==============================
;================================================= ================================================== ================================================== ==============================

post #6

29/04/09, 21:41:19

M@co

Warrior

Registrado: dic 2007

Ubicación: Guayana - Venezuela

Mensajes: 8.305

Re: Desaparece Antivirus, Superantispy,Spybot etc

Hola.

Realiza lo siguiente:

Paso 1.- Apaga el Restaurar Sistema (solo en Win Me/XP y Vista).

Paso 2.- Descarga y/o actualiza:

OTMoveIt3 by OldTimer en el escritorio.
FindyKill by Chiquitine29.

Paso 3.- Reinicia en modo seguro (a prueba de fallos)
Nota 1: Si tienes problemas con el inicio en modo seguro realiza lo que se señala en este tutorial.
Nota 2: Si después de hacer lo indicado anteriormente aun no puedes iniciar en modo seguro, realiza los pasos en modo normal.

Paso 4.- Ejecuta de a uno a la vez:

OTMoveIt3, siguiendo las instrucciones de su Manual.

Asegúrate que esté marcada la casilla "unregister Dll´s and Ocx´s".

Pega el siguiente script bajo el area "Paste Instructions for items to be Moved". (No se incluye la palabra "codigo").

Código:

:processes
explorer.exe
wintems.exe
mdelk.exe

:services

:reg

:files
C:\Documents and Settings\Propietario\Datos de programa\drivers\downld\*.exe
C:\Documents and Settings\Propietario\Datos de programa\drivers\downld /d
C:\Avenger\*.exe
C:\Avenger /d
C:\WINDOWS\system32\wintems.exe
C:\WINDOWS\system32\mdelk.exe
C:\Documents and Settings\Propietario\Datos de programa\drivers\wfsintwq.sys
C:\Documents and Settings\Propietario\Mis documentos\Mis programas 08\*.rar
C:\Documents and Settings\Propietario\Mis documentos\Mis programas 08\*.rar.rar
C:\Documents and Settings\Propietario\Mis documentos\Spywares\FS-Fix\FStools\B_Clean.exe
C:\Documents and Settings\Propietario\Mis documentos\Spywares\FS-Fix /d
C:\Documents and Settings\Propietario\Escritorio\topazvivacity_setup.zip
C:\Documents and Settings\Propietario\Mis documentos\Adobe.Photoshop.Elements.v7.0.Incl.Keymaker-CORE\cr-spseu.zip

:commands
[purity]
[emptytemp]
[start explorer]
[reboot]

Envía el informe (reporte) de OTMoveIt situado sobre C: \ _ OTMoveIt\MovedFiles\***_***.log

FindyKill;
- Haz doble clic en su icono
- Pulsa la letra C para elegir idioma castellano
- Selecciona la opción 2 para empezar la desinfección
- FindyKill te puede pedir reiniciar; pulsa en aceptar y luego en una tecla cualquiera
- Deja al programa que termine con todo su proceso ( puede demorar 10 o 15 minutos )
- Una vez finalice pulsa 1 tecla para abrir el reporte y lo guardas, también lo puedes localizar en C:\FindyKill.txt

Paso 5.- Reinicia en modo normal y ejecuta Ccleaner.

Usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
Después usa su opción de "Registro" para limpiar todo el registro de Windows.

Paso 6.- Realiza un análisis completo con: Kaspersky Online Scanner.

Nota: Al terminar reactiva el "restaurar sistema".

En tu próxima respuesta:
- Pega los reportes de FindyKill, OTMoveIt y Kaspersky.
- Nos comentas los resultados.

Salu2!.

post #7

30/04/09, 06:37:23

vampiru

Usuario

Registrado: abr 2009

Ubicación: Barcelona

Mensajes: 7

Re: Desaparece Antivirus, Superantispy,Spybot etc

bueno ahora ceo todo va bien, he podido instalar los Spyware, SuperSpy, el antivirus, etc, y puedo arrancar en modo seguro. aunque en la ultima scan en el Karpeski me da varias infecciones..
Muchas gracias por vuestra ayuda, seguire observando si va bien,

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-08 20:13

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-11 13:23

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-11 21:16

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-12 02:06

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-15 13:45

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-17 15:20

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-23 11:23

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-25 16:20

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-28 22:20

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-28 23:13

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-28 23:54

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-29 00:10

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-29 01:14

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-03-29 19:28

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-05 17:23

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-07 01:00

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-07 09:57

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-08 10:39

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-09 13:02

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-09 18:22

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-11 04:37
[~] Preparing to execute queued commands
[~] Deleting file: C:\Documents and Settings\Propietario\Mis documentos\Mis programas 09\Adobe Photoshop CS4 2008 _ Español _keygen BY PORRITO\1-Photoshop cs4\ENGiNE\PhotoShopCS4_X32_Crk.exe
[~] Finished processing queued commands

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-11 04:40

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-13 08:49

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-13 09:19

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-14 07:58

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-15 09:28

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-15 22:47

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-15 23:28

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-15 23:35

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-15 23:38

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-15 23:42

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-16 00:01

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-16 00:04

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-16 00:12

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-16 01:11

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-16 01:14

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-16 01:23

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-16 09:15

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-16 09:35

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-16 20:35

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-17 00:08

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-18 11:15

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-19 11:47

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-20 13:20

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-21 09:50

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-21 14:46

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-22 09:46

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-23 10:09

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-24 10:10

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-25 22:49

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-26 08:53

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-26 16:53

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-26 16:55

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-26 23:46

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-27 00:06

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-27 09:09

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-28 03:29

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-28 13:40

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-28 20:56

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-29 13:50

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-29 13:55

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-29 14:34

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-29 15:03

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-29 15:25

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-29 15:31

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-29 15:39

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-29 15:44

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 00:14

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 00:22

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 00:26

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 01:13

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 01:19

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 01:25

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 01:39

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 01:43

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 01:51

================================================== ==============================
Boot Cleaner
================================================== ==============================
[~] Cleaning started at 2009-04-30 09:08

############################## [ FindyKill V4.727 ]

# User : Propietario (Administradores) # CESARTEAM
# Update on 27/04/09 by Chiquitine29
# Start at: 3:25:36 | 30/04/2009
# Website : http://pagesperso-orange.fr/FindyKill.Ad.Remover/

# Intel(R) Pentium(R) 4 CPU 3.40GHz
# Microsoft Windows XP Home Edition (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled

# A:\ # Unidad de disco de 3 1/2 pulgadas
# C:\ # Disco fijo local # 186,3 Go (139,96 Go free) # NTFS
# D:\ # Disco CD-ROM
# E:\ # Disco CD-ROM
# F:\ # Disco extraíble

############################## [ Active Processes ]

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\logonui.exe
C:\Archivos de programa\Google\Update\GoogleUpdate.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
C:\Archivos de programa\Bonjour\mDNSResponder.exe
C:\Archivos de programa\Google\Update\GoogleUpdate.exe
C:\Archivos de programa\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Archivos de programa\Java\jre6\bin\jqs.exe
C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

################## [ Infected Files \ Folders ]

Deleted ! C:\WINDOWS\Prefetch\139843.EXE-2F4E614A.pf
Deleted ! C:\WINDOWS\Prefetch\142671.EXE-38CD49B0.pf
Deleted ! C:\WINDOWS\Prefetch\149156.EXE-0041085B.pf
Deleted ! C:\WINDOWS\Prefetch\150078.EXE-1AB44420.pf
Deleted ! C:\WINDOWS\Prefetch\224984.EXE-37CB4921.pf
Deleted ! C:\WINDOWS\Prefetch\225031.EXE-397397C8.pf
Deleted ! C:\WINDOWS\Prefetch\227984.EXE-25FC720E.pf
Deleted ! C:\WINDOWS\Prefetch\231265.EXE-0EC270F6.pf
Deleted ! C:\WINDOWS\Prefetch\286625.EXE-07520B8A.pf
Deleted ! C:\WINDOWS\Prefetch\301921.EXE-02C36F53.pf
Deleted ! C:\WINDOWS\Prefetch\303390.EXE-3689EF5D.pf
Deleted ! C:\WINDOWS\Prefetch\319140.EXE-072FC75D.pf
Deleted ! C:\WINDOWS\Prefetch\551171.EXE-36B73DF8.pf
Deleted ! C:\WINDOWS\Prefetch\FLEC006.EXE-07F544A6.pf
Deleted ! C:\WINDOWS\Prefetch\MDELK.EXE-1D176F91.pf
Deleted ! C:\WINDOWS\Prefetch\WINTEMS.EXE-2A563F9B.pf
Deleted ! C:\WINDOWS\Prefetch\WINUPGRO.EXE-17681AA8.pf
Deleted ! C:\WINDOWS\system32\ban_list.txt
Deleted ! C:\WINDOWS\system32\mdelk.exe
Deleted ! C:\WINDOWS\system32\wintems.exe
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\drivers\srosa2.sys"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\drivers\wfsintwq.sys"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\drivers\winupgro.exe"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\m\data.oct"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\m\flec006.exe"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\m\list.oct"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\m\srvlist.oct"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\drivers\downld"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\drivers"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\m\shared"
Deleted ! "C:\Documents and Settings\Propietario\Datos de programa\m"

################## [ Infected Temp Files ]

################## [ Registry / Infected keys ]

Deleted ! HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\s rosa
Deleted ! HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\R oot\LEGACY_SROSA
Deleted ! HKEY_CURRENT_USER\Software\bisoft
Deleted ! HKEY_CURRENT_USER\Software\DateTime4
Deleted ! HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\serial
Deleted ! HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
Deleted ! HKEY_USERS\S-1-5-21-2025429265-412668190-1801674531-1003\Software\FFC
Deleted ! HKEY_USERS\S-1-5-21-2025429265-412668190-1801674531-1003\Software\MuleAppData
Deleted ! HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run\\"drvsyskit"
Deleted ! HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run\\"german.exe"
Deleted ! HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run\\"mule_st_key"

################## [ Cleaning Removable drives ]

Deleted ! C:\Avenger

################## [ Registry / Mountpoint2 ]

# -> Not found !

################## [ States / Restarting of services ]

# Services : [ Auto=2 / Request=3 / Disable=4 ]

# Ndisuio -> # Type of startup =3
# EapHost -> # Type of startup =2
# Ip6Fw -> # Type of startup =2
# SharedAccess -> # Type of startup =2
# wuauserv -> # Type of startup =2
# wscsvc -> # Type of startup =2
# Safe boot mode restored !

################## [ Searching Other Infections ]

# Références de comparaison Bagle MD5 :

File ... : C:\Avenger\winupgro.exe
CRC32 .. : d5a633a4
MD5 .... : 5c17d5af9c0385555803594f3996bb8a

File ... : C:\Documents and Settings\Propietario\Datos de programa\drivers\winupgro.exe
CRC32 .. : dcdf2aaf
MD5 .... : 008b746e7895ca2f4b6350606690c9ed

Deleted ! : C:\Archivos de programa\Archivos comunes\Ahead\Lib\NMBgMonitor.exe
# Taille : 835584 # MD5 : 008B746E7895CA2F4B6350606690C9ED

Deleted ! : C:\Documents and Settings\Propietario\Mis documentos\eMule Downloads\Incoming\Topaz Vivacity 1.3.1.zip
Contain install_patch.exe [835584] with Bagle CRC32 : DCDF2AAF

################## [ Corrupted files # Re-Installation required ]

C:\Archivos de programa\Lavasoft\Ad-Aware\AAWService.exe
C:\Archivos de programa\Mozilla Firefox\uninstall\helper.exe
C:\Archivos de programa\Spybot - Search & Destroy\Update.exe
C:\Archivos de programa\SUPERAntiSpyware\63b03cfc-54e9-4dc8-8d5b-d252f3e9e1b3.exe
C:\Archivos de programa\SUPERAntiSpyware\71999cf8-19af-4d9c-a46e-28896b553857.exe
C:\Archivos de programa\SUPERAntiSpyware\80ef363a-c999-4901-a641-9931c3098b13.exe
C:\Archivos de programa\SUPERAntiSpyware\b6940b76-741e-4a35-9fb3-3b5dd768b6ba.exe
C:\Archivos de programa\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Archivos de programa\Trend Micro\HijackThis\HijackThis.exe
C:\Archivos de programa\Unlocker\UnlockerAssistant.exe
C:\Documents and Settings\All Users\Datos de programa\Lavasoft\Ad-Aware\Update\AAWService.exe
C:\Documents and Settings\Propietario\Escritorio\SUPERAntiSpyware.e xe
C:\Documents and Settings\Propietario\Mis documentos\Spywares\SUPERAntiSpyware.exe
C:\WINDOWS\system32\dllcache\register.exe

################################### [ Cracks / Keygens / Serials ]

C:\Documents and Settings\Propietario\Mis documentos\MI HATTRICK I\HAM Hattrick Assistant Manager v6.0.87.204 + Crack.rar
C:\Documents and Settings\Propietario\Mis documentos\MI HATTRICK I\HatTrick.Assistant.Manager.v6.0.96.215.WinALL.Ke ymaker.And.Patch.Only.WORKING-CORE\cr-ham60.exe

################## [ ! End of Report # FindyKill V4.727 ! ]

Thursday, April 30, 2009
Operating System: Microsoft Windows XP Home Edition Service Pack 3 (build 2600)
Kaspersky Online Scanner version: 7.0.26.13
Program database last update: Wednesday, April 29, 2009 23:15:23
Records in database: 2101635
Scan settings
Scan using the following database extended
Scan archives yes
Scan mail databases yes
Scan area My Computer
A:\
C:\
D:\
E:\
F:\
Scan statistics
Files scanned 135595
Threat name 3
Infected objects 3
Suspicious objects 0
Duration of the scan 01:35:26

File name Threat name Threats count
C:\Archivos de programa\Microsoft Office\Office\POWERPNT.EXE Infected: Worm.Win32.Huhk.e 1
C:\Documents and Settings\Propietario\Configuración local\Datos de programa\Microsoft\Windows Live Mail\Teleline (l 4fb\Junk E-mail\4D064DB7-000000A2.eml Infected: Trojan.Win32.Regrun.bha 1
C:\_QBagle\QMoveEx\C\Documents and Settings\Propietario\Datos de programa\m\data.oct.MoveEx Infected: Trojan-Downloader.Win32.Bagle.asi 1
The selected area was scanned.

post #8

30/04/09, 09:50:06

M@co

Warrior

Registrado: dic 2007

Ubicación: Guayana - Venezuela

Mensajes: 8.305

Re: Desaparece Antivirus, Superantispy,Spybot etc

Hola.

Nos avisas si podemos dar el tema como solucionado

Salu2!.

Última edición por M@co fecha: 01/05/09 a las 22:03:12. Razón: I don´t not

post #9

04/05/09, 13:23:03

vampiru

Usuario

Registrado: abr 2009

Ubicación: Barcelona

Mensajes: 7

Re: Desaparece Antivirus, Superantispy,Spybot etc

si, Mac@ esta resuelto muchas gracias

« Tema Anterior | Próximo Tema »

Herramientas
Mostrar Versión Imprimible Enviar por Correo

Reglas del foro
No puedes crear nuevos temas No puedes responder temas No puedes subir adjuntos No puedes editar tus mensajes BB code is activado Las caritas están activado Código [IMG] está activado Código HTML está desactivado Trackbacks are desactivado Pingbacks are activado Refbacks are activado Políticas del foro

Temas Similares

Tema	Autor	Foro	Respuestas	Último mensaje
Ayuda: Mil ventanas emergentes con publicidad	Nusska	Foro de Virus y Spywares	32	17/09/08 17:21:24
Reporte de Kaspersky (solucionado)	alexis82	Temas Solucionados	5	27/08/08 00:15:29
mi pc está lentísima. fíjense este log	heindke	Foro de Virus y Spywares	6	05/08/08 03:15:57
Virus.VBS.Small.a no puedo eliminarlo	hergfmemez	Foro de Virus y Spywares	2	21/07/08 18:57:32
Problemas con spywares y demas (formateado)	RoblesN70	Temas Solucionados	5	26/10/06 09:00:34

Todas las horas son GMT -4. La hora es 07:59:32.

InfoSpyware es miembro de ASAP - Alliance of Security Analysis Professionals

Foro de InfoSpyware - Foro de Hijackthis - Foro de Virus