Blog Registrarse Manuales Programas Glosario

Regresar   Foro de Spyware » Spyware - Adware - Hijackers - Malwares » Temas Solucionados
Actualizar Virus Beagle imposible de quitar(Solucionado)
 

Para evitar Virus, Spyware y otros Malwares, te recomendamos mantenerte informado en: InfoSpyware Blog


Temas Solucionados Casos de HijackThis y Malwares resueltos.
(Solo lectura)

Respuesta
Página 1 de 4 1 234
 
Enviar a: Herramientas
  post #1  
Antiguo 05/11/09, 06:40:58
Usuario
  
Registrado: nov 2009
Ubicación: Valencia
Mensajes: 16
Virus Beagle imposible de quitar(Solucionado)
Hola, ya se que hay mas temas sobre este virus, los he leído pero no he conseguido llegar a nada porque cada vez que intento descargar, o ejecutar programas como el malwarebytes los cierra antes de que terminen, en modo seguro me dice "run time error" y no va,..., hay alguna solución??
Muchas gracias.
Responder Con Cita
InfoSpyware

  post #2  
Antiguo 05/11/09, 08:02:42
Avatar de Leosolari
Moderador
  
Registrado: jun 2007
Ubicación: argentina
Mensajes: 17.165
Re: Virus Beagle imposible de quitar???
Hola putobeagle


Realiza lo siguiente:
  • - Descarga ComboFix.exe
    • Dada tu infecciones, debes de cambiar el nombre antes de guardarlo en tu escritorio por Combo-Fix




  • Desactiva temporalmente el Antivirus y/o Antispyware.
  • Cierra todas las ventanas abiertas.
  • Hacele doble clic al archivo ComboFix.exe y seguí las instrucciones.
  • Cuando termine, generara un registro en C:\ComboFix.txt.
    • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
    • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.
Cita:
Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
  • Reinicia y pega el reporte de C:\ComboFix.txt en este mismo mensaje.


Cita:
No vuelvas a utilizar ComboFix ni ningun otro programa antivirus hasta que no te de una respuesta...

Saludos
NO DESESPERES....SIGUE LUCHANDO.

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
Responder Con Cita
  post #3  
Antiguo 05/11/09, 12:33:59
Usuario
  
Registrado: nov 2009
Ubicación: Valencia
Mensajes: 16
Re: Virus Beagle imposible de quitar???
Muchas gracias por contestar, estoy en ello, de momento está pasando el combofix como me has dicho, en cuanto acabe te pego el txt y ya me dices mas cosas. Saludos.
Responder Con Cita
  post #4  
Antiguo 05/11/09, 13:45:26
Avatar de Leosolari
Moderador
  
Registrado: jun 2007
Ubicación: argentina
Mensajes: 17.165
Re: Virus Beagle imposible de quitar???
Ok.....pero hagas ningun otro paso despuès de que pegues el log de Combofix y antes de que te de una respuesta.

saludos
NO DESESPERES....SIGUE LUCHANDO.

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
Responder Con Cita
  post #5  
Antiguo 05/11/09, 14:14:24
Usuario
  
Registrado: nov 2009
Ubicación: Valencia
Mensajes: 16
Re: Virus Beagle imposible de quitar???
Vale esto es lo que ha salido:

ComboFix 09-11-04.05 - Eva 05/11/2009 16:40.1.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.34.3082.18.2037.1173 [GMT 1:00]
Running from: c:\users\Eva\Desktop\Combo-Fix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Created a new restore point
.
ADS - Windows: deleted 24 bytes in 1 streams.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\Eva\AppData\Roaming\drivers\downld
c:\users\Eva\AppData\Roaming\drivers\downld\115940 87.exe
c:\users\Eva\AppData\Roaming\drivers\downld\152469 44.exe
c:\users\Eva\AppData\Roaming\drivers\downld\153867 21.exe
c:\users\Eva\AppData\Roaming\drivers\downld\153871 58.exe
c:\users\Eva\AppData\Roaming\drivers\downld\153871 89.exe
c:\users\Eva\AppData\Roaming\drivers\downld\153916 35.exe
c:\users\Eva\AppData\Roaming\drivers\downld\153928 05.exe
c:\users\Eva\AppData\Roaming\drivers\downld\153930 86.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154050 67.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154059 09.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154061 59.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154328 51.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154341 77.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154350 97.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154712 43.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154725 37.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154728 81.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154733 02.exe
c:\users\Eva\AppData\Roaming\drivers\downld\154737 23.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155506 32.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155509 28.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155509 90.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155591 49.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155625 34.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155633 30.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155896 47.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155907 86.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155909 58.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155914 10.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155918 16.exe
c:\users\Eva\AppData\Roaming\drivers\downld\155918 63.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156301 92.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156321 11.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156328 13.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156567 28.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156605 34.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156611 58.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156678 66.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156694 89.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156698 48.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156704 25.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156714 39.exe
c:\users\Eva\AppData\Roaming\drivers\downld\156718 44.exe
c:\users\Eva\AppData\Roaming\drivers\downld\228510 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\257261 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\257339 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\260428 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\274296 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\301165 23.exe
c:\users\Eva\AppData\Roaming\drivers\downld\302577 04.exe
c:\users\Eva\AppData\Roaming\drivers\downld\302580 31.exe
c:\users\Eva\AppData\Roaming\drivers\downld\302627 43.exe
c:\users\Eva\AppData\Roaming\drivers\downld\302634 91.exe
c:\users\Eva\AppData\Roaming\drivers\downld\302636 63.exe
c:\users\Eva\AppData\Roaming\drivers\downld\302770 48.exe
c:\users\Eva\AppData\Roaming\drivers\downld\302780 15.exe
c:\users\Eva\AppData\Roaming\drivers\downld\302782 96.exe
c:\users\Eva\AppData\Roaming\drivers\downld\303034 59.exe
c:\users\Eva\AppData\Roaming\drivers\downld\303049 25.exe
c:\users\Eva\AppData\Roaming\drivers\downld\303057 99.exe
c:\users\Eva\AppData\Roaming\drivers\downld\303338 01.exe
c:\users\Eva\AppData\Roaming\drivers\downld\303345 19.exe
c:\users\Eva\AppData\Roaming\drivers\downld\303346 75.exe
c:\users\Eva\AppData\Roaming\drivers\downld\303351 43.exe
c:\users\Eva\AppData\Roaming\drivers\downld\303353 14.exe
c:\users\Eva\AppData\Roaming\drivers\downld\303353 30.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304151 09.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304157 17.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304159 36.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304247 50.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304293 05.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304300 23.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304442 97.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304471 67.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304475 57.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304480 56.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304487 43.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304487 58.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304785 23.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304819 40.exe
c:\users\Eva\AppData\Roaming\drivers\downld\304825 79.exe
c:\users\Eva\AppData\Roaming\drivers\downld\305144 03.exe
c:\users\Eva\AppData\Roaming\drivers\downld\305261 97.exe
c:\users\Eva\AppData\Roaming\drivers\downld\305287 87.exe
c:\users\Eva\AppData\Roaming\drivers\downld\305363 84.exe
c:\users\Eva\AppData\Roaming\drivers\downld\305380 84.exe
c:\users\Eva\AppData\Roaming\drivers\downld\305384 43.exe
c:\users\Eva\AppData\Roaming\drivers\downld\305390 36.exe
c:\users\Eva\AppData\Roaming\drivers\downld\305404 09.exe
c:\users\Eva\AppData\Roaming\drivers\downld\305411 11.exe
c:\users\Eva\AppData\Roaming\drivers\downld\306619 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\335682 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\335845 1.exe
c:\users\Eva\AppData\Roaming\drivers\downld\338554 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\341827 8.exe
c:\users\Eva\AppData\Roaming\drivers\downld\346400 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\347802 6.exe
c:\users\Eva\AppData\Roaming\drivers\downld\348858 7.exe
c:\users\Eva\AppData\Roaming\drivers\downld\350997 5.exe
c:\users\Eva\AppData\Roaming\drivers\downld\351050 6.exe
c:\users\Eva\AppData\Roaming\drivers\downld\351053 7.exe
c:\users\Eva\AppData\Roaming\drivers\downld\351838 4.exe
c:\users\Eva\AppData\Roaming\drivers\downld\351941 3.exe
c:\users\Eva\AppData\Roaming\drivers\downld\351974 1.exe
c:\users\Eva\AppData\Roaming\drivers\downld\353635 5.exe
c:\users\Eva\AppData\Roaming\drivers\downld\353735 3.exe
c:\users\Eva\AppData\Roaming\drivers\downld\353761 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\357078 4.exe
c:\users\Eva\AppData\Roaming\drivers\downld\357187 6.exe
c:\users\Eva\AppData\Roaming\drivers\downld\357271 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\360633 7.exe
c:\users\Eva\AppData\Roaming\drivers\downld\360705 5.exe
c:\users\Eva\AppData\Roaming\drivers\downld\360816 2.exe
c:\users\Eva\AppData\Roaming\drivers\downld\360845 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\360884 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\367850 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\370085 8.exe
c:\users\Eva\AppData\Roaming\drivers\downld\370271 4.exe
c:\users\Eva\AppData\Roaming\drivers\downld\370279 2.exe
c:\users\Eva\AppData\Roaming\drivers\downld\399112 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\400797 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\400813 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\407630 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\408129 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\408753 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\409438 6.exe
c:\users\Eva\AppData\Roaming\drivers\downld\412268 5.exe
c:\users\Eva\AppData\Roaming\drivers\downld\412759 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\415347 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\415539 8.exe
c:\users\Eva\AppData\Roaming\drivers\downld\415566 3.exe
c:\users\Eva\AppData\Roaming\drivers\downld\415611 6.exe
c:\users\Eva\AppData\Roaming\drivers\downld\415694 3.exe
c:\users\Eva\AppData\Roaming\drivers\downld\415695 8.exe
c:\users\Eva\AppData\Roaming\drivers\downld\418898 5.exe
c:\users\Eva\AppData\Roaming\drivers\downld\419046 7.exe
c:\users\Eva\AppData\Roaming\drivers\downld\419116 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\423202 6.exe
c:\users\Eva\AppData\Roaming\drivers\downld\423977 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\424548 9.exe
c:\users\Eva\AppData\Roaming\drivers\downld\426678 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\427645 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\432821 6.exe
c:\users\Eva\AppData\Roaming\drivers\downld\433336 4.exe
c:\users\Eva\AppData\Roaming\drivers\downld\434185 1.exe
c:\users\Eva\AppData\Roaming\drivers\downld\451607 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\459516 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\463369 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\464336 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\475662 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\476629 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\476801 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\481091 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\481637 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\481653 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\486426 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\487737 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\487971 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\494211 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\495115 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\495131 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\508454 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\509312 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\509951 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\510388 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\510497 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\510747 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\510840 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\511106 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\511121 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\542228 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\542821 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\543507 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\544225 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\544443 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\546346 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\581493 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\582772 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\583116 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\583755 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\584161 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\605268 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\605939 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\606017 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\606391 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\606734 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\606750 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\665032 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\666249 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\666592 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\671568 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\672239 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\672504 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\677808 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\680647 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\681271 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\681880 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\687527 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\688198 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\690476 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\691568 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\691646 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\702066 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\705077 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\705186 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\705795 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\706388 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\706653 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\707105 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\707838 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\708104 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\708369 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\710256 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\710506 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\711130 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\712128 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\712191 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\722378 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\723641 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\723813 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\724343 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\725342 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\736480 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\737947 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\738929 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\748461 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\750396 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\751113 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\758258 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\760068 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\760910 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\765699 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\769521 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\771908 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\779380 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\783265 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\784560 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\786837 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\789458 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\789661 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\792999 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\793982 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\794247 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\794591 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\797040 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\797851 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\802531 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\805682 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\806244 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\806259 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\807149 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\807289 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\807679 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\808209 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\808303 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\808818 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\809208 .exe
c:\users\Eva\AppData\Roaming\drivers\downld\811329 .exe
c:\users\Eva\AppData\Roaming\m\data.oct
c:\users\Eva\AppData\Roaming\m\list.oct
c:\users\Eva\AppData\Roaming\m\shared
c:\users\Eva\AppData\Roaming\m\shared\.Net Print Objects 2.0.3233.zip
c:\users\Eva\AppData\Roaming\m\shared\@PROMT_Engli sh-Portuguese_Express_Translator_7.0.zip
c:\users\Eva\AppData\Roaming\m\shared\123_Video_Co nverter_4.3.4_Key.zip
c:\users\Eva\AppData\Roaming\m\shared\3GP_Converte r_Pro_1.0.3.zip
c:\users\Eva\AppData\Roaming\m\shared\3X_DVD_Clone _Studio_2.40_[With_Crack].zip
c:\users\Eva\AppData\Roaming\m\shared\A-Z MPEG VCD DVD Video Converter 4.67.zip
c:\users\Eva\AppData\Roaming\m\shared\A9CAD_2.2.1. zip
c:\users\Eva\AppData\Roaming\m\shared\AB Commander XP 6.95.zip
c:\users\Eva\AppData\Roaming\m\shared\Aba_Daba_1.3 1.zip
c:\users\Eva\AppData\Roaming\m\shared\Admin_PC_1.4 .zip
c:\users\Eva\AppData\Roaming\m\shared\Advanced Email Extractor PRO 2.87.zip
c:\users\Eva\AppData\Roaming\m\shared\Age_of_Mytho logy_-_The_Lord_of_the_Gods_demo_campaign.zip
c:\users\Eva\AppData\Roaming\m\shared\AJ Screensaver Maker Pro 3.06.zip
c:\users\Eva\AppData\Roaming\m\shared\Andrew's_Vec tor_Plugins_Volume_19_'PointEffects'_19.1.1.zip
c:\users\Eva\AppData\Roaming\m\shared\Assign_Maste r_1.0_Patch.zip
c:\users\Eva\AppData\Roaming\m\shared\ATools 0.4.zip
c:\users\Eva\AppData\Roaming\m\shared\Authentic-ID Toolbar 1.4.1.1.zip
c:\users\Eva\AppData\Roaming\m\shared\AVG Anti-Virus Definitions June 1, 2009.zip
c:\users\Eva\AppData\Roaming\m\shared\AVG Backup4all Plugin.zip
c:\users\Eva\AppData\Roaming\m\shared\AVG.AntyViru s.PRO.relMops.zip
c:\users\Eva\AppData\Roaming\m\shared\AZdict Interface 1.4.3.zip
c:\users\Eva\AppData\Roaming\m\shared\BeerBot_1.0. zip
c:\users\Eva\AppData\Roaming\m\shared\Beesly's_Buz zwords_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\BestCrypt 8.04.4.zip
c:\users\Eva\AppData\Roaming\m\shared\Biggly Diet and Exercise 1.03.zip
c:\users\Eva\AppData\Roaming\m\shared\BitDefender. AntiVirus.Plus.v10.FR.zip
c:\users\Eva\AppData\Roaming\m\shared\CabaSoft Video to iPhone Converter 1.0.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Caracas_Traf fic_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Catfood WebCamSaver 2.00.0254.zip
c:\users\Eva\AppData\Roaming\m\shared\Check and Send 0.7.40.zip
c:\users\Eva\AppData\Roaming\m\shared\CMB_AutoDoc_ 2_build_209.zip
c:\users\Eva\AppData\Roaming\m\shared\CredMedic_1. zip
c:\users\Eva\AppData\Roaming\m\shared\CSS NavBar 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Curemo 1.1.5.zip
c:\users\Eva\AppData\Roaming\m\shared\CZ-Ppt2Pdf_2.0_build_041106_Cracked.zip
c:\users\Eva\AppData\Roaming\m\shared\DaCross 0.6.zip
c:\users\Eva\AppData\Roaming\m\shared\Delphi_and_C ++Builder_Decompiler_1.15_(Cracked).zip
c:\users\Eva\AppData\Roaming\m\shared\Developer's Backup Free Edition 2.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Dialog_Strat egy_2030.zip
c:\users\Eva\AppData\Roaming\m\shared\Digital_Phys iognomy_1.570_[KeyGen].zip
c:\users\Eva\AppData\Roaming\m\shared\DrawIt_3.2c. zip
c:\users\Eva\AppData\Roaming\m\shared\DropChute Enterprise 3.02.zip
c:\users\Eva\AppData\Roaming\m\shared\Easy Hot Key 9.0.zip
c:\users\Eva\AppData\Roaming\m\shared\EasySQLite_2 .zip
c:\users\Eva\AppData\Roaming\m\shared\Ebay Typo Auction Locator 3.9.zip
c:\users\Eva\AppData\Roaming\m\shared\eClean 2000 3.0.4.zip
c:\users\Eva\AppData\Roaming\m\shared\EGPicJpgDBF 1.1.zip
c:\users\Eva\AppData\Roaming\m\shared\EHTip_2.2.6. zip
c:\users\Eva\AppData\Roaming\m\shared\Emco EventLog Audit Professional 2.3.5.15.zip
c:\users\Eva\AppData\Roaming\m\shared\Employee Scheduler for Excel and OpenOffice 2.1.zip
c:\users\Eva\AppData\Roaming\m\shared\Enzymes_1.0. zip
c:\users\Eva\AppData\Roaming\m\shared\EW.com TV Watch.zip
c:\users\Eva\AppData\Roaming\m\shared\EzeAdMaker 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Femta 1.21.zip
c:\users\Eva\AppData\Roaming\m\shared\Fields_and_R ivers_Screensaver_1.zip
c:\users\Eva\AppData\Roaming\m\shared\Finger_Activ eX_Control_4.01_Key.zip
c:\users\Eva\AppData\Roaming\m\shared\Flash_to_PSP _Video_Converter_Suite_1.0_Build_70308.zip
c:\users\Eva\AppData\Roaming\m\shared\fonXL_Call_D isplay_Screen_Saver_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Geo data German Streets (English) 2.01.zip
c:\users\Eva\AppData\Roaming\m\shared\Google Calendar 2.2.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Grasp_The_US A_1.2.zip
c:\users\Eva\AppData\Roaming\m\shared\GRE-AT! Verbal Warfare! 1.00.zip
c:\users\Eva\AppData\Roaming\m\shared\HandyFind_2. 0.4.zip
c:\users\Eva\AppData\Roaming\m\shared\HTML Encode ActiveX 2.0.0.zip
c:\users\Eva\AppData\Roaming\m\shared\HTML Meta-data Editor 1.0.1.zip
c:\users\Eva\AppData\Roaming\m\shared\HuntingNet.C om_Feed_Reader_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\IDAutomation MICR Font Advantage 6.8 With Crack.zip
c:\users\Eva\AppData\Roaming\m\shared\Index.die_1. 5.zip
c:\users\Eva\AppData\Roaming\m\shared\InfoFries Age Calculator 1.3.zip
c:\users\Eva\AppData\Roaming\m\shared\Inglobal Office Monitor 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Kaspersky.6. 0.1.411.Fr.-.&.-.Kaspersky.Internet.Security.6.0.1.411.Fr.-.13-12-06.Incl-Keys.zip
c:\users\Eva\AppData\Roaming\m\shared\lcm_1.2.zip
c:\users\Eva\AppData\Roaming\m\shared\Likno Drop Down Menus Trees 1.1.132.zip
c:\users\Eva\AppData\Roaming\m\shared\Live Support Chat for Web Site 5.2.2.zip
c:\users\Eva\AppData\Roaming\m\shared\Location_pyr enees_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\LSFindReplac eDialogW_1.0.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Lung Mass Evaluation 1.zip
c:\users\Eva\AppData\Roaming\m\shared\Memento 0.2 Build 3.zip
c:\users\Eva\AppData\Roaming\m\shared\Microsoft_De vice_Emulator_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Mind_Mastery _Mental_Conditioning_2.0_[Key+Serial].zip
c:\users\Eva\AppData\Roaming\m\shared\MMPlayerX_2. 0.zip
c:\users\Eva\AppData\Roaming\m\shared\MSWord2Quark XPress_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Netstat live 2.11.zip
c:\users\Eva\AppData\Roaming\m\shared\NetTools_2.6 .3.zip
c:\users\Eva\AppData\Roaming\m\shared\Notepad++_3. 5.zip
c:\users\Eva\AppData\Roaming\m\shared\nWake 1.0.0.5.zip
c:\users\Eva\AppData\Roaming\m\shared\OvO_1.02.zip
c:\users\Eva\AppData\Roaming\m\shared\PageXchanger _2.0.6.zip
c:\users\Eva\AppData\Roaming\m\shared\Panda.Antivi rus.Titanium.2005.+.serials.zip
c:\users\Eva\AppData\Roaming\m\shared\PDF417_Activ eX_Control_1.3_Patch.zip
c:\users\Eva\AppData\Roaming\m\shared\Perfect Screens Pro 4.1.zip
c:\users\Eva\AppData\Roaming\m\shared\PhotoScape 3.3.zip
c:\users\Eva\AppData\Roaming\m\shared\PicoPhone 1.64.zip
c:\users\Eva\AppData\Roaming\m\shared\Picture Library 1.4 build 85.zip
c:\users\Eva\AppData\Roaming\m\shared\Racing_Math_ 1.zip
c:\users\Eva\AppData\Roaming\m\shared\Rainbow_5.07 .zip
c:\users\Eva\AppData\Roaming\m\shared\Remove Duplicate Files Now 7.93.zip
c:\users\Eva\AppData\Roaming\m\shared\RevSoftSys_S plit_File_Utility_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\RewriteWeb_2 .1.zip
c:\users\Eva\AppData\Roaming\m\shared\SamLogic_CD-Menu_Creator_5.0.3.zip
c:\users\Eva\AppData\Roaming\m\shared\Screen_Shot_ Engine_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Slideshow_XP _3.2.1496.zip
c:\users\Eva\AppData\Roaming\m\shared\Small WMA MP3 Converter 2.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Smart DVD Creator 4.11.zip
c:\users\Eva\AppData\Roaming\m\shared\SMS_Secure_A ccess_1.00.05.zip
c:\users\Eva\AppData\Roaming\m\shared\Snow Desktop 2.1.zip
c:\users\Eva\AppData\Roaming\m\shared\Sonic_Charge _MicroTonic_2.0.zip
c:\users\Eva\AppData\Roaming\m\shared\SpiceLogic_D ocument_2_Text_Converter_1.1.0.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Strong Encryption 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Sun Screensaver 1.0.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Swift AntiVirus 1.5.zip
c:\users\Eva\AppData\Roaming\m\shared\tag2find 0.10.2.5.zip
c:\users\Eva\AppData\Roaming\m\shared\The Big Tipper 1.1.zip
c:\users\Eva\AppData\Roaming\m\shared\Toolfish 2.05.zip
c:\users\Eva\AppData\Roaming\m\shared\Track 'n share your GPS adventures 2.0.2.zip
c:\users\Eva\AppData\Roaming\m\shared\Tray_Capture _2.1.0.50.zip
c:\users\Eva\AppData\Roaming\m\shared\TrayList_200 6.04_(KeyGen).zip
c:\users\Eva\AppData\Roaming\m\shared\UBT_1.1.3.zi p
c:\users\Eva\AppData\Roaming\m\shared\uCertify_Pre kit_[C1D0-470]_CIW_Professional_8.00.05.zip
c:\users\Eva\AppData\Roaming\m\shared\Unreal_Tourn ament_2004_UnWheel_Alpha_mod.zip
c:\users\Eva\AppData\Roaming\m\shared\URLBlaze 1.3.zip
c:\users\Eva\AppData\Roaming\m\shared\VCD Burner ActiveX Control 1.0 (With Crack).zip
c:\users\Eva\AppData\Roaming\m\shared\Vectorian Giotto Light 2.01 (Patch).zip
c:\users\Eva\AppData\Roaming\m\shared\Vrindamp_0.0 .1_-_Beta.zip
c:\users\Eva\AppData\Roaming\m\shared\Windows SteadyState 2.5.zip
c:\users\Eva\AppData\Roaming\m\shared\WordQuiz_5.4 .0_[Serial].zip
c:\users\Eva\AppData\Roaming\m\shared\YBDict_-_Yadabyte_Dictionary_1.02.zip
c:\users\Eva\AppData\Roaming\m\shared\ZipEnable 3.0.2.zip
c:\users\Eva\AppData\Roaming\m\srvlist.oct
c:\windows\system32\ban_list.txt
c:\users\Eva\AppData\Roaming\drivers\winupgro.exe . . . . failed to delete
c:\users\Eva\AppData\Roaming\m . . . . failed to delete
c:\windows\system32\mdelk.exe . . . . failed to delete
c:\windows\system32\wintems.exe . . . . failed to delete

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_SK9OU0S
-------\Legacy_SROSA
-------\Service_sK9Ou0s


((((((((((((((((((((((((( Files Created from 2009-10-05 to 2009-11-05 )))))))))))))))))))))))))))))))
.

2009-11-05 17:39 . 2009-11-05 17:39 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-11-05 13:00 . 2009-02-05 21:04 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-11-05 13:00 . 2009-02-05 21:11 1256296 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-05 13:00 . 2009-02-05 21:06 51792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2009-11-05 12:57 . 2009-11-05 13:00 -------- d-----w- C:\TEMP
2009-11-05 11:00 . 2009-11-05 11:00 38 ----a-w- C:\BdUninstallTool2009.11.05-12.00.22.reg
2009-11-05 10:12 . 2009-11-05 10:12 -------- d-----w- c:\users\Eva\AppData\Roaming\Malwarebytes
2009-11-05 10:10 . 2009-09-10 13:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-11-05 10:10 . 2009-11-05 10:10 4096 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-11-05 10:10 . 2009-09-10 13:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-04 23:54 . 2009-11-04 23:54 0 ----a-w- C:\ntuser.dat
2009-11-04 22:59 . 2009-11-05 14:31 7168 ----a-w- c:\windows\system32\srosa2.sys
2009-11-04 19:18 . 2009-11-04 19:24 4096 d-----w- c:\windows\BDOSCAN8
2009-11-04 19:05 . 2009-11-05 17:46 -------- d--h--w- c:\users\Eva\AppData\Roaming\m
2009-11-04 18:54 . 2009-11-05 17:33 -------- d--h--w- c:\users\Eva\AppData\Roaming\drivers
2009-11-04 18:52 . 2009-11-04 18:52 40960 ----a-r- c:\users\Eva\AppData\Roaming\Microsoft\Installer\{ 3EF8E8A8-2BCE-4B21-A632-606FD717AFB5}\NewShortcut4_D50866AD56A54212ADE05A7 5DFA42ADC_1.exe
2009-11-04 18:52 . 2009-11-04 18:52 40960 ----a-r- c:\users\Eva\AppData\Roaming\Microsoft\Installer\{ 3EF8E8A8-2BCE-4B21-A632-606FD717AFB5}\NewShortcut1_D50866AD56A54212ADE05A7 5DFA42ADC.exe
2009-11-04 18:52 . 2009-11-04 18:52 40960 ----a-r- c:\users\Eva\AppData\Roaming\Microsoft\Installer\{ 3EF8E8A8-2BCE-4B21-A632-606FD717AFB5}\ARPPRODUCTICON.exe
2009-11-03 21:26 . 2009-11-03 21:26 -------- d-----w- c:\program files\SlySoft
2009-11-02 00:39 . 2009-11-02 00:40 -------- d-----w- c:\users\Eva\Nueva carpeta
2009-11-01 10:48 . 2009-11-01 10:48 -------- d-----w- c:\program files\iPod
2009-11-01 10:48 . 2009-11-01 10:49 4096 d-----w- c:\program files\iTunes
2009-10-31 11:35 . 2009-10-31 11:35 -------- d-----w- c:\program files\Topaz Labs
2009-10-28 09:49 . 2009-10-28 09:49 2169915 ----a-w- c:\users\Eva\SetupImgBurn_2.5.0.0.exe
2009-10-28 09:00 . 2009-10-28 09:00 -------- d-----w- c:\program files\Windows Portable Devices
2009-10-28 08:59 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2009-10-28 08:59 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2009-10-28 08:59 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2009-10-28 08:57 . 2009-10-08 21:07 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2009-10-28 08:57 . 2009-10-08 21:08 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2009-10-28 08:57 . 2009-10-08 21:08 234496 ----a-w- c:\windows\system32\oleacc.dll
2009-10-28 08:55 . 2009-09-10 14:58 310784 ----a-w- c:\windows\system32\unregmp2.exe
2009-10-28 08:55 . 2009-09-10 14:59 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-10-21 09:28 . 2009-08-07 02:24 44768 ----a-w- c:\windows\system32\wups2.dll
2009-10-21 09:28 . 2009-08-07 02:24 53472 ----a-w- c:\windows\system32\wuauclt.exe
2009-10-21 09:28 . 2009-08-07 01:45 2421760 ----a-w- c:\windows\system32\wucltux.dll
2009-10-21 09:28 . 2009-08-07 02:23 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-10-21 09:28 . 2009-08-07 02:24 35552 ----a-w- c:\windows\system32\wups.dll
2009-10-21 09:28 . 2009-08-07 02:23 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-10-21 09:28 . 2009-08-07 01:44 87552 ----a-w- c:\windows\system32\wudriver.dll
2009-10-21 09:28 . 2009-08-06 17:23 171608 ----a-w- c:\windows\system32\wuwebv.dll
2009-10-21 09:28 . 2009-08-06 16:44 33792 ----a-w- c:\windows\system32\wuapp.exe
2009-10-20 09:18 . 2009-10-20 09:18 -------- d-----w- c:\users\Eva\AppData\Local\Blizzard Entertainment
2009-10-14 15:55 . 2009-10-14 15:55 -------- d-----w- c:\program files\Common Files\Adobe AIR
2009-10-14 15:52 . 2009-10-14 15:52 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2009-10-14 15:09 . 2009-10-14 15:33 4096 d-----w- c:\users\Eva\AppData\Roaming\Download Manager
2009-10-14 09:28 . 2009-09-10 16:48 218624 ----a-w- c:\windows\system32\msv1_0.dll
2009-10-14 09:28 . 2009-09-04 11:41 60928 ----a-w- c:\windows\system32\msasn1.dll
2009-10-14 09:28 . 2009-09-14 09:29 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2009-10-14 09:28 . 2009-05-08 12:53 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2009-10-10 02:56 . 2009-10-10 02:56 -------- d-----w- c:\users\Eva\AppData\Local\Mozilla

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2009-11-05 14:34 . 2008-01-21 07:23 667382 ----a-w- c:\windows\system32\perfh00A.dat
2009-11-05 14:34 . 2008-01-21 07:23 129912 ----a-w- c:\windows\system32\perfc00A.dat
2009-11-05 00:08 . 2008-02-26 08:40 8192 d--h--w- c:\program files\InstallShield Installation Information
2009-11-04 23:19 . 2009-04-22 10:46 4096 d-----w- c:\program files\Xvid
2009-11-01 10:48 . 2009-06-05 13:53 -------- d-----w- c:\program files\Common Files\Apple
2009-10-28 09:00 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-10-28 09:00 . 2009-10-28 09:00 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_ 07_00.Wdf
2009-10-28 08:59 . 2009-10-28 08:59 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_ 00.Wdf
2009-10-15 19:12 . 2008-02-26 09:15 8192 d-----w- c:\program files\Common Files\Adobe
2009-10-14 23:05 . 2006-11-02 11:18 4096 d-----w- c:\program files\Windows Mail
2009-10-14 19:25 . 2009-04-14 08:10 129848 ----a-w- c:\users\Eva\AppData\Local\GDIPFONTCACHEV1.DAT
2009-10-02 17:29 . 2009-10-02 17:29 4096 d-----w- c:\program files\Microsoft Office Outlook Connector
2009-10-02 17:29 . 2009-04-14 10:32 4096 d-----w- c:\program files\Windows Live
2009-10-02 17:28 . 2009-10-02 17:28 -------- d-----w- c:\program files\Microsoft Sync Framework
2009-10-02 17:27 . 2009-10-02 17:27 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2009-10-02 17:26 . 2009-04-14 10:33 -------- d-----w- c:\program files\Microsoft
2009-10-01 08:29 . 2009-10-03 20:27 195440 ------w- c:\windows\system32\MpSigStub.exe
2009-10-01 01:02 . 2009-10-28 08:58 2537472 ----a-w- c:\windows\system32\wpdshext.dll
2009-10-01 01:02 . 2009-10-28 08:58 30208 ----a-w- c:\windows\system32\WPDShextAutoplay.exe
2009-10-01 01:02 . 2009-10-28 08:58 334848 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2009-10-01 01:02 . 2009-10-28 08:58 87552 ----a-w- c:\windows\system32\WPDShServiceObj.dll
2009-10-01 01:02 . 2009-10-28 08:58 31232 ----a-w- c:\windows\system32\BthMtpContextHandler.dll
2009-10-01 01:01 . 2009-10-28 08:58 546816 ----a-w- c:\windows\system32\wpd_ci.dll
2009-10-01 01:01 . 2009-10-28 08:58 160256 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2009-10-01 01:01 . 2009-10-28 08:58 60928 ----a-w- c:\windows\system32\PortableDeviceConnectApi.dll
2009-10-01 01:01 . 2009-10-28 08:58 100864 ----a-w- c:\windows\system32\PortableDeviceClassExtension.d ll
2009-10-01 01:01 . 2009-10-28 08:58 196608 ----a-w- c:\windows\system32\PortableDeviceWMDRM.dll
2009-10-01 01:01 . 2009-10-28 08:58 350208 ----a-w- c:\windows\system32\WPDSp.dll
2009-10-01 01:01 . 2009-10-28 08:58 81920 ----a-w- c:\windows\system32\wpdbusenum.dll
2009-10-01 01:01 . 2009-10-28 08:58 40448 ----a-w- c:\windows\system32\drivers\WpdUsb.sys
2009-10-01 01:01 . 2009-10-28 08:58 226816 ----a-w- c:\windows\system32\WpdMtp.dll
2009-10-01 01:01 . 2009-10-28 08:58 61952 ----a-w- c:\windows\system32\WpdMtpUS.dll
2009-10-01 01:01 . 2009-10-28 08:58 33280 ----a-w- c:\windows\system32\WpdConns.dll
2009-09-30 12:52 . 2009-09-30 12:52 9916928 ----a-w- c:\windows\system32\tliadjust34.dll
2009-09-28 13:20 . 2009-06-19 10:37 -------- d-----w- c:\users\Eva\AppData\Roaming\HP
2009-09-25 02:10 . 2009-10-28 08:58 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2009-09-25 02:07 . 2009-10-28 08:58 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2009-09-25 02:04 . 2009-10-28 08:58 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2009-09-25 01:49 . 2009-10-28 08:58 1554432 ----a-w- c:\windows\system32\xpsservices.dll
2009-09-25 01:48 . 2009-10-28 08:58 351232 ----a-w- c:\windows\system32\XpsPrint.dll
2009-09-25 01:38 . 2009-10-28 08:58 847360 ----a-w- c:\windows\system32\OpcServices.dll
2009-09-25 01:36 . 2009-10-28 08:58 280064 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2009-09-25 01:35 . 2009-10-28 08:58 135680 ----a-w- c:\windows\system32\XpsRasterService.dll
2009-09-25 01:33 . 2009-10-28 08:58 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2009-09-25 01:33 . 2009-10-28 08:58 829440 ----a-w- c:\windows\system32\d3d10warp.dll
2009-09-25 01:33 . 2009-10-28 08:58 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2009-09-25 01:32 . 2009-10-28 08:58 252928 ----a-w- c:\windows\system32\dxdiag.exe
2009-09-25 01:31 . 2009-10-28 08:58 519680 ----a-w- c:\windows\system32\d3d11.dll
2009-09-25 01:31 . 2009-10-28 08:58 486912 ----a-w- c:\windows\system32\d3d10level9.dll
2009-09-25 01:31 . 2009-10-28 08:58 161280 ----a-w- c:\windows\system32\d3d10_1.dll
2009-09-25 01:31 . 2009-10-28 08:58 218112 ----a-w- c:\windows\system32\d3d10_1core.dll
2009-09-25 01:31 . 2009-10-28 08:58 1030144 ----a-w- c:\windows\system32\d3d10.dll
2009-09-25 01:31 . 2009-10-28 08:58 828928 ----a-w- c:\windows\system32\d2d1.dll
2009-09-25 01:30 . 2009-10-28 08:58 481792 ----a-w- c:\windows\system32\dxgi.dll
2009-09-25 01:30 . 2009-10-28 08:58 190464 ----a-w- c:\windows\system32\d3d10core.dll
2009-09-25 01:27 . 2009-10-28 08:58 634880 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2009-09-25 01:27 . 2009-10-28 08:58 37888 ----a-w- c:\windows\system32\cdd.dll
2009-09-25 01:27 . 2009-10-28 08:58 793088 ----a-w- c:\windows\system32\FntCache.dll
2009-09-25 01:27 . 2009-10-28 08:58 1064448 ----a-w- c:\windows\system32\DWrite.dll
2009-09-24 22:54 . 2009-10-28 08:58 258048 ----a-w- c:\windows\system32\winspool.drv
2009-09-24 22:54 . 2009-10-28 08:58 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe
2009-09-24 22:54 . 2009-10-28 08:58 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll
2009-09-19 15:26 . 2009-05-12 18:45 4096 d-----w- c:\users\Eva\AppData\Roaming\teamspeak2
2009-09-14 18:10 . 2009-09-14 16:49 4096 d-----w- c:\program files\VentSrv
2009-09-14 17:45 . 2009-05-28 11:44 4096 d-----w- c:\users\Eva\AppData\Roaming\Ventrilo
2009-09-14 16:48 . 2009-05-28 11:43 4096 d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-09-14 16:48 . 2009-09-14 16:48 659880 ----a-w- c:\users\Eva\ventrilo_srv-3.0.3-Windows.exe
2009-09-11 12:48 . 2009-06-05 13:57 -------- d-----w- c:\users\Eva\AppData\Roaming\Apple Computer
2009-09-11 12:38 . 2009-09-11 12:38 4096 d-----w- c:\program files\QuickTime
2009-09-09 10:54 . 2009-04-14 14:01 4096 d-----w- c:\program files\Microsoft Silverlight
2009-08-29 00:27 . 2009-09-02 09:59 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-29 00:14 . 2009-09-02 09:59 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-08-28 17:42 . 2009-08-28 17:42 40448 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2009-08-28 17:42 . 2009-08-28 17:42 2065696 ----a-w- c:\windows\system32\usbaaplrc.dll
2009-08-27 05:22 . 2009-10-14 09:29 916480 ----a-w- c:\windows\system32\wininet.dll
2009-08-27 05:17 . 2009-10-14 09:29 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-08-27 05:17 . 2009-10-14 09:29 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-08-27 03:42 . 2009-10-14 09:29 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-08-17 21:33 . 2009-08-17 21:33 1193832 ----a-w- c:\windows\system32\FM20.DLL
2009-08-14 16:27 . 2009-09-09 10:45 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-08-14 15:53 . 2009-09-09 10:45 17920 ----a-w- c:\windows\system32\netevent.dll
2009-08-14 13:49 . 2009-09-09 10:45 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-08-14 13:49 . 2009-09-09 10:45 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-08-14 13:49 . 2009-09-09 10:45 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-08-14 13:49 . 2009-09-09 10:45 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-08-14 13:49 . 2009-09-09 10:45 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-08-14 13:49 . 2009-09-09 10:45 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-08-14 13:49 . 2009-09-09 10:45 10240 ----a-w- c:\windows\system32\finger.exe
2009-08-14 13:48 . 2009-09-09 10:45 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2009-08-14 13:48 . 2009-09-09 10:45 105984 ----a-w- c:\windows\system32\netiohlp.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe" [2009-04-21 39408]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"WindowsWelcomeCenter"="oobefldr.dll" - c:\windows\System32\oobefldr.dll [2009-04-11 2153472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-14 1348904]
"TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2008-01-17 431456]
"SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2008-01-25 509816]
"00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2008-01-22 712704]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-02-26 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-02-26 173592]
"Persistence"="c:\windows\system32\igfxpers.ex e" [2009-02-26 150552]
"RoxWatchTray"="c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [2007-08-16 236016]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-04 417792]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.ex e" [2008-08-14 611712]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2009-10-03 39792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-10-28 141600]
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp. exe" [2009-11-05 81000]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2008-01-29 4911104]
"NDSTray.exe"="NDSTray.exe" [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Wind ows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):97,2c,13,97,a2,de,c9,01

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1604935375-1635827438-1690384552-1000]
"EnableNotificationsRef"=dword:00000003

R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\System32\drivers\RtlProt.sys [14/04/2009 9:20 25896]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\as wMonFlt.sys [05/11/2009 14:00 51792]
R2 ConfigFree Service;ConfigFree Service;c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe [25/12/2007 13:07 40960]
R2 HsfXAudioService;HsfXAudioService;c:\windows\syste m32\svchost.exe -k HsfXAudioService [21/01/2008 3:23 21504]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [03/06/2009 13:46 92008]
R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [03/12/2007 16:03 126976]
R2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE [30/03/2009 15:28 1533808]
R3 FwLnk;FwLnk Driver;c:\windows\System32\drivers\FwLnk.sys [26/02/2008 9:52 7168]
R3 RTL8187B;Adaptador de red USB 2.0 de 54 Mbps inalámbrico 802.11b/g Realtek RTL8187B;c:\windows\System32\drivers\rtl8187B.sys [14/04/2009 9:19 290304]
S3 FontCache;Servicio de caché de fuentes de Windows;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [21/01/2008 3:23 21504]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - MBR
*NewlyCreated* - SROSA
*Deregistered* - mbr
*Deregistered* - srosa

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HsfXAudioService REG_MULTI_SZ HsfXAudioService
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder

2009-11-05 c:\windows\Tasks\User_Feed_Synchronization-{CF35EC50-5AF6-4D70-A83A-501BE2871B54}.job
- c:\windows\system32\msfeedssync.exe [2009-10-14 03:41]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.es
uInternet Settings,ProxyOverride = *.local
IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: {{76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/1185-44560-9400-3/4
IE: {{8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home
FF - ProfilePath - c:\users\Eva\AppData\Roaming\Mozilla\Firefox\Profi les\li79xuoi.default\
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
.
- - - - ORPHANS REMOVED - - - -

HKCU-Run-TOSCDSPD - TOSCDSPD.EXE
AddRemove-Smart NTFS Recovery_is1 - f:\smart ntfs recovery\recovery\unins000.exe



************************************************** ************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-11-05 18:44
Windows 6.0.6002 Service Pack 2 NTFS

scanning hidden processes ...

c:\users\Eva\AppData\Roaming\hidires\flec003.exe [2988] 0x84851BB0
c:\users\Eva\AppData\Roaming\m\flec006.exe [3004] 0x84845AA8
scanning hidden autostart entries ...

scanning hidden files ...


c:\windows\system32\mdelk.exe 71684 bytes executable
c:\windows\system32\wfsintwq.sys 119188 bytes executable
c:\windows\system32\wintems.exe 71684 bytes executable
c:\users\Eva\AppData\Local\Temp\7zS9F9C.tmp\autoru n.inf 445416 bytes
c:\users\Eva\AppData\Local\Temp\pftF894~tmp\autoru n.inf 25 bytes
c:\users\Eva\AppData\Roaming\drivers\winupgro.exe 786432 bytes executable
c:\users\Eva\AppData\Roaming\hidires
c:\users\Eva\AppData\Roaming\hidires\flec003.exe 2557956 bytes executable
c:\users\Eva\AppData\Roaming\hidires\lang
c:\users\Eva\AppData\Roaming\hidires\names.txt 3939 bytes
c:\users\Eva\AppData\Roaming\hidires\WDIR
c:\users\Eva\AppData\Roaming\hidires\webserver
c:\users\Eva\AppData\Roaming\m\flec006.exe 99332 bytes executable

scan completed successfully
hidden files: 13

************************************************** ************************

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"drvsyskit"="c:\\Users\\Eva\\AppData\\Roaming\\dri vers\\winupgro.exe"
"mule_st_key"="c:\\Users\\Eva\\AppData\\Roaming\\m \\flec006.exe"
"german.exe"="c:\\Windows\\system32\\wintems.e xe"

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\s rosa]
"ImagePath"="\??\c:\windows\system32\wfsintwq. sys"
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'Explorer.exe'(2216)
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\Microsoft.Net\Framework\v3.0\WPF\Presen tationFontCache.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
c:\windows\system32\TODDSrv.exe
c:\program files\TOSHIBA\Power Saver\TosCoSrv.exe
c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\TOSHIBA\ConfigFree\NDSTray.exe
c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\iPod\bin\iPodService.exe
c:\windows\system32\sdclt.exe
.
************************************************** ************************
.
Completion time: 2009-11-05 19:02 - machine was rebooted
ComboFix-quarantined-files.txt 2009-11-05 18:01

Pre-Run: 28.958.965.760 bytes libres
Post-Run: 31.753.936.896 bytes libres

No he tocado nada mas como me has dicho.
Responder Con Cita
  post #6  
Antiguo 05/11/09, 15:04:36
Avatar de Leosolari
Moderador
  
Registrado: jun 2007
Ubicación: argentina
Mensajes: 17.165
Re: Virus Beagle imposible de quitar???
Realiza lo siguiente :
  • Clic en INICIO > EJECUTAR >
    • Y ahí pones notepad.exe y ACEPTAR
    • Ahora copia y pega el texto del cuadro de mas abajo dentro del Notepad

Código:
KillAll::

File::
C:\BdUninstallTool2009.11.05-12.00.22.reg
c:\windows\system32\srosa2.sys
c:\\Users\\Eva\\AppData\\Roaming\\drivers\\winupgro.exe
c:\\Users\\Eva\\AppData\\Roaming\\m\\flec006.exe
c:\\Windows\\system32\\wintems.exe


Rootkit::
c:\windows\system32\mdelk.exe 
c:\windows\system32\wfsintwq.sys 
c:\windows\system32\wintems.exe 
c:\users\Eva\AppData\Local\Temp\7zS9F9C.tmp\autorun.inf 
c:\users\Eva\AppData\Local\Temp\pftF894~tmp\autorun.inf 
c:\users\Eva\AppData\Roaming\drivers\winupgro.exe
c:\users\Eva\AppData\Roaming\hidires
c:\users\Eva\AppData\Roaming\hidires\flec003.exe 
c:\users\Eva\AppData\Roaming\hidires\lang
c:\users\Eva\AppData\Roaming\hidires\names.txt 
c:\users\Eva\AppData\Roaming\hidires\WDIR
c:\users\Eva\AppData\Roaming\hidires\webserver
c:\users\Eva\AppData\Roaming\m\flec006.exe
c:\windows\system32\wfsintwq.sys


Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"drvsyskit"=-
"mule_st_key"=-
"german.exe"=-

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\srosa]
"ImagePath"=-
  • Guarda este archivo con el nombre CFScript.txt
  • Arrastra y suelta el archivo CFScript.txt dentro del archivo ComboFix.exe como lo muestra el screenshot de abajo.



  • ComboFix comenzará otra vez a ejecutarse. Cuando termine generara un nuevo reporte que tendras que pegar en este mismo tema.


Luego de reiniciar, comprueba como va tu ordenador ahora

saludos
NO DESESPERES....SIGUE LUCHANDO.

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
Responder Con Cita
  post #7  
Antiguo 05/11/09, 17:38:39
Usuario
  
Registrado: nov 2009
Ubicación: Valencia
Mensajes: 16
Re: Virus Beagle imposible de quitar???
Vale te pongo el reporte:

ComboFix 09-11-04.05 - Eva 05/11/2009 20:34.2.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.34.3082.18.2037.1020 [GMT 1:00]
Running from: c:\users\Eva\Desktop\Combo-Fix.exe
Command switches used :: c:\users\Eva\Desktop\CFScript.txt
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Created a new restore point

FILE ::
"c:\\Users\\Eva\\AppData\\Roaming\\drivers\\winupg ro.exe"
"c:\\Users\\Eva\\AppData\\Roaming\\m\\flec006. exe"
"c:\\Windows\\system32\\wintems.exe"
"C:\BdUninstallTool2009.11.05-12.00.22.reg"
"c:\windows\system32\srosa2.sys"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\\Users\\Eva\\AppData\\Roaming\\drivers\\winupgr o.exe
c:\\Users\\Eva\\AppData\\Roaming\\m\\flec006.exe
c:\\Windows\\system32\\wintems.exe
C:\BdUninstallTool2009.11.05-12.00.22.reg
c:\users\Eva\AppData\Roaming\m\shared
c:\users\Eva\AppData\Roaming\m\shared\1Click DVD Ripper 2.03.zip
c:\users\Eva\AppData\Roaming\m\shared\1st_Network_ Admin_1.6.zip
c:\users\Eva\AppData\Roaming\m\shared\98.9 The Bear Listener 1.5.zip
c:\users\Eva\AppData\Roaming\m\shared\A2 Flash Slideshow Photogallery System 3.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Acker DVD to iPod Converter 2.1.88.zip
c:\users\Eva\AppData\Roaming\m\shared\Actual_Remin der_3.0_Talk_+_Weather.zip
c:\users\Eva\AppData\Roaming\m\shared\Address_Orga nizer_Deluxe_2.8.zip
c:\users\Eva\AppData\Roaming\m\shared\Adjust_Tick_ Count_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Advanced_Spe ed_Typing_2.92.zip
c:\users\Eva\AppData\Roaming\m\shared\Aglare FLV to AVI Converter 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\AJAX_JoyiSta r_WebShop_3.0_Beta.zip
c:\users\Eva\AppData\Roaming\m\shared\Atlanta Traffic Cam Viewer 1.6.zip
c:\users\Eva\AppData\Roaming\m\shared\Audio Codecs Quality Analyzer 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\AudioCommand er_3.4_KeyGen.zip
c:\users\Eva\AppData\Roaming\m\shared\BizCalc 4.0.zip
c:\users\Eva\AppData\Roaming\m\shared\BoogiePOP Enterprise 4.2.zip
c:\users\Eva\AppData\Roaming\m\shared\Book-It_3.0g2.zip
c:\users\Eva\AppData\Roaming\m\shared\Boot Wallpaper 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Bukster 1.15 Beta.zip
c:\users\Eva\AppData\Roaming\m\shared\Checksum Transformation 1.4.0.0.zip
c:\users\Eva\AppData\Roaming\m\shared\ClickFix_Lit e_for_Adobe_Audition_3.02a.zip
c:\users\Eva\AppData\Roaming\m\shared\Client_for_R emote_Administrator_2.1_KeyGen.zip
c:\users\Eva\AppData\Roaming\m\shared\Color Picker 1.02.zip
c:\users\Eva\AppData\Roaming\m\shared\Contensive_C ontent_Server_3.3.zip
c:\users\Eva\AppData\Roaming\m\shared\Cooking Aficionado Professional 3.1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Data Destroyer 1.5.zip
c:\users\Eva\AppData\Roaming\m\shared\DataMite 1.21.zip
c:\users\Eva\AppData\Roaming\m\shared\DiscSafe_2.0 .28_[KeyGen].zip
c:\users\Eva\AppData\Roaming\m\shared\Dominoes_3.1 .zip
c:\users\Eva\AppData\Roaming\m\shared\E-Mail Creations 2.1.zip
c:\users\Eva\AppData\Roaming\m\shared\Easy HHK 2.0.0.21.zip
c:\users\Eva\AppData\Roaming\m\shared\Easy HTML Snapshot 6.2.zip
c:\users\Eva\AppData\Roaming\m\shared\eccoMAGIC_1. 21.zip
c:\users\Eva\AppData\Roaming\m\shared\Einstein Explorer 1.32.zip
c:\users\Eva\AppData\Roaming\m\shared\Electronic Cosmo's MPEG Suite 1.5.zip
c:\users\Eva\AppData\Roaming\m\shared\EStudyGuide 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Expletive Deleted 1.1.zip
c:\users\Eva\AppData\Roaming\m\shared\FileFort_1.0 0.zip
c:\users\Eva\AppData\Roaming\m\shared\Filesystem Dialogs 1.9.2.5021.zip
c:\users\Eva\AppData\Roaming\m\shared\FileVan 5.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Financial Reader 2.9.510.zip
c:\users\Eva\AppData\Roaming\m\shared\Fitness Calculators 1.0 (Serial).zip
c:\users\Eva\AppData\Roaming\m\shared\Freeware Browser 3.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Friendship Management 2.0.zip
c:\users\Eva\AppData\Roaming\m\shared\GCN_(Global_ Communications_Network)_2.9.1.zip
c:\users\Eva\AppData\Roaming\m\shared\H&H English-Chinese Dictionary 3.0.4.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Halloween Screensaver 3.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Hebbian_Reca ll_1.0.45.2.zip
c:\users\Eva\AppData\Roaming\m\shared\HexEdit 2.zip
c:\users\Eva\AppData\Roaming\m\shared\HTTP Scoop 1.2.zip
c:\users\Eva\AppData\Roaming\m\shared\ID Window 1.0 [Key].zip
c:\users\Eva\AppData\Roaming\m\shared\Image Exporter (PDF Edition) 1.4.zip
c:\users\Eva\AppData\Roaming\m\shared\ImageSpace 0.5.zip
c:\users\Eva\AppData\Roaming\m\shared\ImGiant_Inst ant_Messenger_2.1.zip
c:\users\Eva\AppData\Roaming\m\shared\Japanese Name Generator 1.1.0.2.zip
c:\users\Eva\AppData\Roaming\m\shared\Karaoke camstar 1.zip
c:\users\Eva\AppData\Roaming\m\shared\Keep_It_Priv ate_2.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Kernel Recovery for SCO OpenServer 4.02.zip
c:\users\Eva\AppData\Roaming\m\shared\Keywords URL creation 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\LeaseTrak 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\LingvoSoft Talking Dictionary 2008 English - Indonesian 4.1.29.zip
c:\users\Eva\AppData\Roaming\m\shared\LingvoSoft_D ictionary_2007_English_-_Bosnian_4.0.22.zip
c:\users\Eva\AppData\Roaming\m\shared\Linos_FTP_cl ient_1.0.42.zip
c:\users\Eva\AppData\Roaming\m\shared\Live Email Validation Component 2.4.zip
c:\users\Eva\AppData\Roaming\m\shared\LOGINventory _4.5_(Key+Serial).zip
c:\users\Eva\AppData\Roaming\m\shared\Loteria MexicaNA 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Madden NFL 98 demo.zip
c:\users\Eva\AppData\Roaming\m\shared\MarZerUI 1.1.8.zip
c:\users\Eva\AppData\Roaming\m\shared\mdb - MyDataBank 2.5.zip
c:\users\Eva\AppData\Roaming\m\shared\Metrowerks Mac OS PPC Linker Update 2.2.2.zip
c:\users\Eva\AppData\Roaming\m\shared\Minigolf_Mas ter_Miniverse_demo.zip
c:\users\Eva\AppData\Roaming\m\shared\Mipsis_Maint enance_Manager_3.zip
c:\users\Eva\AppData\Roaming\m\shared\MiTeC EXE Explorer 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\MultiView 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\MyBackup_Pro _2.0_Crack.zip
c:\users\Eva\AppData\Roaming\m\shared\NCTAudioEdit or ActiveX DLL 1.4.zip
c:\users\Eva\AppData\Roaming\m\shared\Nod32.Antivi rus.v2.70.26Fr.zip
c:\users\Eva\AppData\Roaming\m\shared\ODBC View 3.4.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Oligarc 1.00.02.zip
c:\users\Eva\AppData\Roaming\m\shared\OmniCodex_1. 0.zip
c:\users\Eva\AppData\Roaming\m\shared\OraPiper 1.00.zip
c:\users\Eva\AppData\Roaming\m\shared\Orchid Medical Spa 6.0.4.zip
c:\users\Eva\AppData\Roaming\m\shared\Oven Fresh Browser Options 2.6.zip
c:\users\Eva\AppData\Roaming\m\shared\Paper Shredder 1.4.zip
c:\users\Eva\AppData\Roaming\m\shared\Payroll_Calc ulator_2006_3.8a.zip
c:\users\Eva\AppData\Roaming\m\shared\PDF Invoice Generator 1.0.5.zip
c:\users\Eva\AppData\Roaming\m\shared\PhotoCool 1.58.zip
c:\users\Eva\AppData\Roaming\m\shared\PictoWin_Mul ti_desktop_manager_2.0.1c.zip
c:\users\Eva\AppData\Roaming\m\shared\Pink_Notes_P lus_4.0_(Patch).zip
c:\users\Eva\AppData\Roaming\m\shared\Pocket DVD Wizard 5.1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Pray_For_Ame rica_Clock_Screen_Saver_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Remote Tools Framework 1.00.zip
c:\users\Eva\AppData\Roaming\m\shared\Rising_Antiv irus_2007_19.11.00.zip
c:\users\Eva\AppData\Roaming\m\shared\Saab 5 Screensaver.zip
c:\users\Eva\AppData\Roaming\m\shared\SE_Backup_1. 0_(Cracked).zip
c:\users\Eva\AppData\Roaming\m\shared\Setup_Editor _2.1.0.33.zip
c:\users\Eva\AppData\Roaming\m\shared\Shock_LED_1. 1.zip
c:\users\Eva\AppData\Roaming\m\shared\SlowBlast! Plus 1.0 [KeyGen].zip
c:\users\Eva\AppData\Roaming\m\shared\Smallvue_Tex t_Organizer_1.03.zip
c:\users\Eva\AppData\Roaming\m\shared\SolarBeam 0.9.zip
c:\users\Eva\AppData\Roaming\m\shared\Sprintbit Playlist Manager 6.1.0.0.zip
c:\users\Eva\AppData\Roaming\m\shared\SQL Dictionary French English 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\StatWin_Tota l_PE_7.6.3_With_Crack.zip
c:\users\Eva\AppData\Roaming\m\shared\StyleMaker_1 .4.zip
c:\users\Eva\AppData\Roaming\m\shared\Super Mp3 Splitter 1.6.1.zip
c:\users\Eva\AppData\Roaming\m\shared\Symantec.Nor ton.Ghost.10.2006.zip
c:\users\Eva\AppData\Roaming\m\shared\Talking E-mail 4.0.zip
c:\users\Eva\AppData\Roaming\m\shared\TCP_Port_Too lkit_1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\TEA 23.7.0.zip
c:\users\Eva\AppData\Roaming\m\shared\Teddy Keeper 1.zip
c:\users\Eva\AppData\Roaming\m\shared\Text Guard 1.1.zip
c:\users\Eva\AppData\Roaming\m\shared\The Shortcut Gadget 1.0.zip
c:\users\Eva\AppData\Roaming\m\shared\The_Undersea _Life_Screensaver_1.5_Cracked.zip
c:\users\Eva\AppData\Roaming\m\shared\Tometa_Where Is_2.1_(With_Crack).zip
c:\users\Eva\AppData\Roaming\m\shared\Try GDI+ 1.0.0.0.zip
c:\users\Eva\AppData\Roaming\m\shared\TwelveKeys_M usic_Transcription_Assistant_1.10.zip
c:\users\Eva\AppData\Roaming\m\shared\Uninstall Manager 4.30.zip
c:\users\Eva\AppData\Roaming\m\shared\Update Notifier 0.1.5.3.zip
c:\users\Eva\AppData\Roaming\m\shared\Uptime_Clock _3.9.zip
c:\users\Eva\AppData\Roaming\m\shared\Virtual_Scre en_Spy_1.2.2.zip
c:\users\Eva\AppData\Roaming\m\shared\Voxengo LF-Max 1.1.zip
c:\users\Eva\AppData\Roaming\m\shared\vURL Desktop Edition 0.2.9.zip
c:\users\Eva\AppData\Roaming\m\shared\Website Blocker 1.1.3.zip
c:\users\Eva\AppData\Roaming\m\shared\Window_Magic ian_1.1.3_[Patch].zip
c:\users\Eva\AppData\Roaming\m\shared\WN_Help_Desk _Web_8.0.3.zip
c:\users\Eva\AppData\Roaming\m\shared\Work_Order_T S_0.3.1_Key+Serial.zip
c:\users\Eva\AppData\Roaming\m\shared\World_Weathe r_Tracker_1.1.1.zip
c:\users\Eva\AppData\Roaming\m\shared\Xilisoft DVD to Apple TV Converter 5.0.34.0509.zip
c:\users\Eva\AppData\Roaming\m\shared\Zip_Disk_Jew el_Case_and_Label_Creator_for_Word_3.2.zip
c:\windows\system32\srosa2.sys
c:\users\Eva\AppData\Roaming\drivers\winupgro.exe . . . . failed to delete
c:\users\Eva\AppData\Roaming\m . . . . failed to delete
c:\windows\system32\mdelk.exe . . . . failed to delete
c:\windows\system32\wintems.exe . . . . failed to delete

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_SK9OU0S
-------\Legacy_SROSA


((((((((((((((((((((((((( Files Created from 2009-10-05 to 2009-11-05 )))))))))))))))))))))))))))))))
.

2009-11-05 20:12 . 2009-11-05 20:12 -------- d-----w- c:\users\Public\AppData\Local\temp
2009-11-05 20:12 . 2009-11-05 20:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-11-05 13:00 . 2009-02-05 21:04 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-11-05 13:00 . 2009-02-05 21:11 1256296 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-05 13:00 . 2009-02-05 21:06 51792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2009-11-05 12:57 . 2009-11-05 13:00 -------- d-----w- C:\TEMP
2009-11-05 10:12 . 2009-11-05 10:12 -------- d-----w- c:\users\Eva\AppData\Roaming\Malwarebytes
2009-11-05 10:10 . 2009-09-10 13:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-11-05 10:10 . 2009-11-05 10:10 4096 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-11-05 10:10 . 2009-09-10 13:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-04 23:54 . 2009-11-04 23:54 0 ----a-w- C:\ntuser.dat
2009-11-04 19:18 . 2009-11-04 19:24 4096 d-----w- c:\windows\BDOSCAN8
2009-11-04 19:05 . 2009-11-05 20:10 -------- d--h--w- c:\users\Eva\AppData\Roaming\m
2009-11-04 19:00 . 2009-11-05 14:31 119188 ----a-w- c:\windows\system32\wfsintwq.sys
2009-11-04 18:54 . 2009-11-05 17:33 -------- d--h--w- c:\users\Eva\AppData\Roaming\drivers
2009-11-04 18:52 . 2009-11-04 18:52 40960 ----a-r- c:\users\Eva\AppData\Roaming\Microsoft\Installer\{ 3EF8E8A8-2BCE-4B21-A632-606FD717AFB5}\NewShortcut4_D50866AD56A54212ADE05A7 5DFA42ADC_1.exe
2009-11-04 18:52 . 2009-11-04 18:52 40960 ----a-r- c:\users\Eva\AppData\Roaming\Microsoft\Installer\{ 3EF8E8A8-2BCE-4B21-A632-606FD717AFB5}\NewShortcut1_D50866AD56A54212ADE05A7 5DFA42ADC.exe
2009-11-04 18:52 . 2009-11-04 18:52 40960 ----a-r- c:\users\Eva\AppData\Roaming\Microsoft\Installer\{ 3EF8E8A8-2BCE-4B21-A632-606FD717AFB5}\ARPPRODUCTICON.exe
2009-11-03 21:26 . 2009-11-03 21:26 -------- d-----w- c:\program files\SlySoft
2009-11-02 00:39 . 2009-11-02 00:40 -------- d-----w- c:\users\Eva\Nueva carpeta
2009-11-01 10:48 . 2009-11-01 10:48 -------- d-----w- c:\program files\iPod
2009-11-01 10:48 . 2009-11-01 10:49 4096 d-----w- c:\program files\iTunes
2009-10-31 11:35 . 2009-10-31 11:35 -------- d-----w- c:\program files\Topaz Labs
2009-10-28 09:49 . 2009-10-28 09:49 2169915 ----a-w- c:\users\Eva\SetupImgBurn_2.5.0.0.exe
2009-10-28 09:00 . 2009-10-28 09:00 -------- d-----w- c:\program files\Windows Portable Devices
2009-10-28 08:59 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2009-10-28 08:59 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2009-10-28 08:59 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2009-10-28 08:57 . 2009-10-08 21:07 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2009-10-28 08:57 . 2009-10-08 21:08 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2009-10-28 08:57 . 2009-10-08 21:08 234496 ----a-w- c:\windows\system32\oleacc.dll
2009-10-28 08:55 . 2009-09-10 14:58 310784 ----a-w- c:\windows\system32\unregmp2.exe
2009-10-28 08:55 . 2009-09-10 14:59 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-10-21 09:28 . 2009-08-07 02:24 44768 ----a-w- c:\windows\system32\wups2.dll
2009-10-21 09:28 . 2009-08-07 02:24 53472 ----a-w- c:\windows\system32\wuauclt.exe
2009-10-21 09:28 . 2009-08-07 01:45 2421760 ----a-w- c:\windows\system32\wucltux.dll
2009-10-21 09:28 . 2009-08-07 02:23 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-10-21 09:28 . 2009-08-07 02:24 35552 ----a-w- c:\windows\system32\wups.dll
2009-10-21 09:28 . 2009-08-07 02:23 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-10-21 09:28 . 2009-08-07 01:44 87552 ----a-w- c:\windows\system32\wudriver.dll
2009-10-21 09:28 . 2009-08-06 17:23 171608 ----a-w- c:\windows\system32\wuwebv.dll
2009-10-21 09:28 . 2009-08-06 16:44 33792 ----a-w- c:\windows\system32\wuapp.exe
2009-10-20 09:18 . 2009-10-20 09:18 -------- d-----w- c:\users\Eva\AppData\Local\Blizzard Entertainment
2009-10-14 15:55 . 2009-10-14 15:55 -------- d-----w- c:\program files\Common Files\Adobe AIR
2009-10-14 15:52 . 2009-10-14 15:52 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2009-10-14 15:09 . 2009-10-14 15:33 4096 d-----w- c:\users\Eva\AppData\Roaming\Download Manager
2009-10-14 09:28 . 2009-09-10 16:48 218624 ----a-w- c:\windows\system32\msv1_0.dll
2009-10-14 09:28 . 2009-09-04 11:41 60928 ----a-w- c:\windows\system32\msasn1.dll
2009-10-14 09:28 . 2009-09-14 09:29 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2009-10-14 09:28 . 2009-05-08 12:53 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2009-10-10 02:56 . 2009-10-10 02:56 -------- d-----w- c:\users\Eva\AppData\Local\Mozilla

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2009-11-05 17:50 . 2008-01-21 07:23 667382 ----a-w- c:\windows\system32\perfh00A.dat
2009-11-05 17:50 . 2008-01-21 07:23 129912 ----a-w- c:\windows\system32\perfc00A.dat
2009-11-05 00:08 . 2008-02-26 08:40 8192 d--h--w- c:\program files\InstallShield Installation Information
2009-11-04 23:19 . 2009-04-22 10:46 4096 d-----w- c:\program files\Xvid
2009-11-01 10:48 . 2009-06-05 13:53 -------- d-----w- c:\program files\Common Files\Apple
2009-10-28 09:00 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-10-28 09:00 . 2009-10-28 09:00 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_ 07_00.Wdf
2009-10-28 08:59 . 2009-10-28 08:59 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_ 00.Wdf
2009-10-15 19:12 . 2008-02-26 09:15 8192 d-----w- c:\program files\Common Files\Adobe
2009-10-14 23:05 . 2006-11-02 11:18 4096 d-----w- c:\program files\Windows Mail
2009-10-14 19:25 . 2009-04-14 08:10 129848 ----a-w- c:\users\Eva\AppData\Local\GDIPFONTCACHEV1.DAT
2009-10-02 17:29 . 2009-10-02 17:29 4096 d-----w- c:\program files\Microsoft Office Outlook Connector
2009-10-02 17:29 . 2009-04-14 10:32 4096 d-----w- c:\program files\Windows Live
2009-10-02 17:28 . 2009-10-02 17:28 -------- d-----w- c:\program files\Microsoft Sync Framework
2009-10-02 17:27 . 2009-10-02 17:27 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2009-10-02 17:26 . 2009-04-14 10:33 -------- d-----w- c:\program files\Microsoft
2009-10-01 08:29 . 2009-10-03 20:27 195440 ------w- c:\windows\system32\MpSigStub.exe
2009-10-01 01:02 . 2009-10-28 08:58 2537472 ----a-w- c:\windows\system32\wpdshext.dll
2009-10-01 01:02 . 2009-10-28 08:58 30208 ----a-w- c:\windows\system32\WPDShextAutoplay.exe
2009-10-01 01:02 . 2009-10-28 08:58 334848 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2009-10-01 01:02 . 2009-10-28 08:58 87552 ----a-w- c:\windows\system32\WPDShServiceObj.dll
2009-10-01 01:02 . 2009-10-28 08:58 31232 ----a-w- c:\windows\system32\BthMtpContextHandler.dll
2009-10-01 01:01 . 2009-10-28 08:58 546816 ----a-w- c:\windows\system32\wpd_ci.dll
2009-10-01 01:01 . 2009-10-28 08:58 160256 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2009-10-01 01:01 . 2009-10-28 08:58 60928 ----a-w- c:\windows\system32\PortableDeviceConnectApi.dll
2009-10-01 01:01 . 2009-10-28 08:58 100864 ----a-w- c:\windows\system32\PortableDeviceClassExtension.d ll
2009-10-01 01:01 . 2009-10-28 08:58 196608 ----a-w- c:\windows\system32\PortableDeviceWMDRM.dll
2009-10-01 01:01 . 2009-10-28 08:58 350208 ----a-w- c:\windows\system32\WPDSp.dll
2009-10-01 01:01 . 2009-10-28 08:58 81920 ----a-w- c:\windows\system32\wpdbusenum.dll
2009-10-01 01:01 . 2009-10-28 08:58 40448 ----a-w- c:\windows\system32\drivers\WpdUsb.sys
2009-10-01 01:01 . 2009-10-28 08:58 226816 ----a-w- c:\windows\system32\WpdMtp.dll
2009-10-01 01:01 . 2009-10-28 08:58 61952 ----a-w- c:\windows\system32\WpdMtpUS.dll
2009-10-01 01:01 . 2009-10-28 08:58 33280 ----a-w- c:\windows\system32\WpdConns.dll
2009-09-30 12:52 . 2009-09-30 12:52 9916928 ----a-w- c:\windows\system32\tliadjust34.dll
2009-09-28 13:20 . 2009-06-19 10:37 -------- d-----w- c:\users\Eva\AppData\Roaming\HP
2009-09-25 02:10 . 2009-10-28 08:58 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2009-09-25 02:07 . 2009-10-28 08:58 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2009-09-25 02:04 . 2009-10-28 08:58 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2009-09-25 01:49 . 2009-10-28 08:58 1554432 ----a-w- c:\windows\system32\xpsservices.dll
2009-09-25 01:48 . 2009-10-28 08:58 351232 ----a-w- c:\windows\system32\XpsPrint.dll
2009-09-25 01:38 . 2009-10-28 08:58 847360 ----a-w- c:\windows\system32\OpcServices.dll
2009-09-25 01:36 . 2009-10-28 08:58 280064 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2009-09-25 01:35 . 2009-10-28 08:58 135680 ----a-w- c:\windows\system32\XpsRasterService.dll
2009-09-25 01:33 . 2009-10-28 08:58 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2009-09-25 01:33 . 2009-10-28 08:58 829440 ----a-w- c:\windows\system32\d3d10warp.dll
2009-09-25 01:33 . 2009-10-28 08:58 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2009-09-25 01:32 . 2009-10-28 08:58 252928 ----a-w- c:\windows\system32\dxdiag.exe
2009-09-25 01:31 . 2009-10-28 08:58 519680 ----a-w- c:\windows\system32\d3d11.dll
2009-09-25 01:31 . 2009-10-28 08:58 486912 ----a-w- c:\windows\system32\d3d10level9.dll
2009-09-25 01:31 . 2009-10-28 08:58 161280 ----a-w- c:\windows\system32\d3d10_1.dll
2009-09-25 01:31 . 2009-10-28 08:58 218112 ----a-w- c:\windows\system32\d3d10_1core.dll
2009-09-25 01:31 . 2009-10-28 08:58 1030144 ----a-w- c:\windows\system32\d3d10.dll
2009-09-25 01:31 . 2009-10-28 08:58 828928 ----a-w- c:\windows\system32\d2d1.dll
2009-09-25 01:30 . 2009-10-28 08:58 481792 ----a-w- c:\windows\system32\dxgi.dll
2009-09-25 01:30 . 2009-10-28 08:58 190464 ----a-w- c:\windows\system32\d3d10core.dll
2009-09-25 01:27 . 2009-10-28 08:58 634880 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2009-09-25 01:27 . 2009-10-28 08:58 37888 ----a-w- c:\windows\system32\cdd.dll
2009-09-25 01:27 . 2009-10-28 08:58 793088 ----a-w- c:\windows\system32\FntCache.dll
2009-09-25 01:27 . 2009-10-28 08:58 1064448 ----a-w- c:\windows\system32\DWrite.dll
2009-09-24 22:54 . 2009-10-28 08:58 258048 ----a-w- c:\windows\system32\winspool.drv
2009-09-24 22:54 . 2009-10-28 08:58 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe
2009-09-24 22:54 . 2009-10-28 08:58 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll
2009-09-19 15:26 . 2009-05-12 18:45 4096 d-----w- c:\users\Eva\AppData\Roaming\teamspeak2
2009-09-14 18:10 . 2009-09-14 16:49 4096 d-----w- c:\program files\VentSrv
2009-09-14 17:45 . 2009-05-28 11:44 4096 d-----w- c:\users\Eva\AppData\Roaming\Ventrilo
2009-09-14 16:48 . 2009-05-28 11:43 4096 d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-09-14 16:48 . 2009-09-14 16:48 659880 ----a-w- c:\users\Eva\ventrilo_srv-3.0.3-Windows.exe
2009-09-11 12:48 . 2009-06-05 13:57 -------- d-----w- c:\users\Eva\AppData\Roaming\Apple Computer
2009-09-11 12:38 . 2009-09-11 12:38 4096 d-----w- c:\program files\QuickTime
2009-09-09 10:54 . 2009-04-14 14:01 4096 d-----w- c:\program files\Microsoft Silverlight
2009-08-29 00:27 . 2009-09-02 09:59 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-29 00:14 . 2009-09-02 09:59 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-08-28 17:42 . 2009-08-28 17:42 40448 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2009-08-28 17:42 . 2009-08-28 17:42 2065696 ----a-w- c:\windows\system32\usbaaplrc.dll
2009-08-27 05:22 . 2009-10-14 09:29 916480 ----a-w- c:\windows\system32\wininet.dll
2009-08-27 05:17 . 2009-10-14 09:29 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-08-27 05:17 . 2009-10-14 09:29 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-08-27 03:42 . 2009-10-14 09:29 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-08-17 21:33 . 2009-08-17 21:33 1193832 ----a-w- c:\windows\system32\FM20.DLL
2009-08-14 16:27 . 2009-09-09 10:45 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-08-14 15:53 . 2009-09-09 10:45 17920 ----a-w- c:\windows\system32\netevent.dll
2009-08-14 13:49 . 2009-09-09 10:45 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-08-14 13:49 . 2009-09-09 10:45 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-08-14 13:49 . 2009-09-09 10:45 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-08-14 13:49 . 2009-09-09 10:45 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-08-14 13:49 . 2009-09-09 10:45 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-08-14 13:49 . 2009-09-09 10:45 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-08-14 13:49 . 2009-09-09 10:45 10240 ----a-w- c:\windows\system32\finger.exe
2009-08-14 13:48 . 2009-09-09 10:45 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2009-08-14 13:48 . 2009-09-09 10:45 105984 ----a-w- c:\windows\system32\netiohlp.dll
.

((((((((((((((((((((((((((((( SnapShot@2009-11-05_17.45.12 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-01-21 01:58 . 2009-11-05 20:18 51232 c:\windows\System32\WDI\ShutdownPerformanceDiagnos tics_SystemData.bin
+ 2006-11-02 13:05 . 2009-11-05 20:18 68752 c:\windows\System32\WDI\BootPerformanceDiagnostics _SystemData.bin
+ 2009-04-14 08:07 . 2009-11-05 20:17 32768 c:\windows\System32\config\systemprofile\AppData\R oaming\Microsoft\Windows\Cookies\index.dat
- 2009-04-14 08:07 . 2009-11-05 17:44 32768 c:\windows\System32\config\systemprofile\AppData\R oaming\Microsoft\Windows\Cookies\index.dat
- 2009-04-14 08:07 . 2009-11-05 17:44 49152 c:\windows\System32\config\systemprofile\AppData\L ocal\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-04-14 08:07 . 2009-11-05 20:17 49152 c:\windows\System32\config\systemprofile\AppData\L ocal\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-04-14 08:07 . 2009-11-05 17:44 16384 c:\windows\System32\config\systemprofile\AppData\L ocal\Microsoft\Windows\History\History.IE5\index.d at
+ 2009-04-14 08:07 . 2009-11-05 20:17 16384 c:\windows\System32\config\systemprofile\AppData\L ocal\Microsoft\Windows\History\History.IE5\index.d at
+ 2009-04-14 10:22 . 2009-11-05 20:18 8934 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1604935375-1635827438-1690384552-1000_UserData.bin
+ 2009-11-05 20:15 . 2009-11-05 20:15 2048 c:\windows\ServiceProfiles\LocalService\AppData\Lo cal\lastalive1.dat
- 2009-11-05 17:42 . 2009-11-05 17:42 2048 c:\windows\ServiceProfiles\LocalService\AppData\Lo cal\lastalive1.dat
- 2009-11-05 17:42 . 2009-11-05 17:42 2048 c:\windows\ServiceProfiles\LocalService\AppData\Lo cal\lastalive0.dat
+ 2009-11-05 20:15 . 2009-11-05 20:15 2048 c:\windows\ServiceProfiles\LocalService\AppData\Lo cal\lastalive0.dat
- 2009-04-14 15:38 . 2009-11-05 17:41 1739168 c:\windows\ServiceProfiles\LocalService\AppData\Lo cal\FontCache3.0.0.0.dat
+ 2009-04-14 15:38 . 2009-11-05 20:14 1739168 c:\windows\ServiceProfiles\LocalService\AppData\Lo cal\FontCache3.0.0.0.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe" [2009-04-21 39408]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"WindowsWelcomeCenter"="oobefldr.dll" - c:\windows\System32\oobefldr.dll [2009-04-11 2153472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-14 1348904]
"TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2008-01-17 431456]
"SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2008-01-25 509816]
"00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2008-01-22 712704]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-02-26 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-02-26 173592]
"Persistence"="c:\windows\system32\igfxpers.ex e" [2009-02-26 150552]
"RoxWatchTray"="c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [2007-08-16 236016]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-04 417792]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.ex e" [2008-08-14 611712]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2009-10-03 39792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-10-28 141600]
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp. exe" [2009-11-05 81000]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2008-01-29 4911104]
"NDSTray.exe"="NDSTray.exe" [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Wind ows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):97,2c,13,97,a2,de,c9,01

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1604935375-1635827438-1690384552-1000]
"EnableNotificationsRef"=dword:00000003

R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\System32\drivers\RtlProt.sys [14/04/2009 9:20 25896]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\as wMonFlt.sys [05/11/2009 14:00 51792]
R2 ConfigFree Service;ConfigFree Service;c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe [25/12/2007 13:07 40960]
R2 HsfXAudioService;HsfXAudioService;c:\windows\syste m32\svchost.exe -k HsfXAudioService [21/01/2008 3:23 21504]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [03/06/2009 13:46 92008]
R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [03/12/2007 16:03 126976]
R2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE [30/03/2009 15:28 1533808]
R3 FwLnk;FwLnk Driver;c:\windows\System32\drivers\FwLnk.sys [26/02/2008 9:52 7168]
R3 RTL8187B;Adaptador de red USB 2.0 de 54 Mbps inalámbrico 802.11b/g Realtek RTL8187B;c:\windows\System32\drivers\rtl8187B.sys [14/04/2009 9:19 290304]
S3 FontCache;Servicio de caché de fuentes de Windows;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [21/01/2008 3:23 21504]

--- Other Services/Drivers In Memory ---

*Deregistered* - mbr
*Deregistered* - srosa

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HsfXAudioService REG_MULTI_SZ HsfXAudioService
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder

2009-11-05 c:\windows\Tasks\User_Feed_Synchronization-{CF35EC50-5AF6-4D70-A83A-501BE2871B54}.job
- c:\windows\system32\msfeedssync.exe [2009-10-14 03:41]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.es
uInternet Settings,ProxyOverride = *.local
IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: {{76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/1185-44560-9400-3/4
IE: {{8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home
FF - ProfilePath - c:\users\Eva\AppData\Roaming\Mozilla\Firefox\Profi les\li79xuoi.default\
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
.

************************************************** ************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-11-05 21:17
Windows 6.0.6002 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...


c:\windows\system32\mdelk.exe 71684 bytes executable
c:\windows\system32\wintems.exe 71684 bytes executable
c:\users\Eva\AppData\Local\Temp\7zS9F9C.tmp\autoru n.inf 445416 bytes
c:\users\Eva\AppData\Local\Temp\pftF894~tmp\autoru n.inf 25 bytes
c:\users\Eva\AppData\Roaming\drivers\winupgro.exe 786432 bytes executable
c:\users\Eva\AppData\Roaming\hidires
c:\users\Eva\AppData\Roaming\hidires\flec003.exe 2557956 bytes executable
c:\users\Eva\AppData\Roaming\hidires\lang
c:\users\Eva\AppData\Roaming\hidires\names.txt 3939 bytes
c:\users\Eva\AppData\Roaming\hidires\WDIR
c:\users\Eva\AppData\Roaming\hidires\webserver
c:\users\Eva\AppData\Roaming\m\flec006.exe 99332 bytes executable

scan completed successfully
hidden files: 12

************************************************** ************************

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"drvsyskit"="c:\\Users\\Eva\\AppData\\Roaming\\dri vers\\winupgro.exe"
"mule_st_key"="c:\\Users\\Eva\\AppData\\Roaming\\m \\flec006.exe"
"german.exe"="c:\\Windows\\system32\\wintems.e xe"

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\s rosa]
"ImagePath"="\??\c:\windows\system32\wfsintwq. sys"
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'Explorer.exe'(3780)
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\Microsoft.Net\Framework\v3.0\WPF\Presen tationFontCache.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
c:\windows\system32\TODDSrv.exe
c:\program files\TOSHIBA\Power Saver\TosCoSrv.exe
c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\TOSHIBA\ConfigFree\NDSTray.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\iPod\bin\iPodService.exe
c:\windows\system32\sdclt.exe
.
************************************************** ************************
.
Completion time: 2009-11-05 21:29 - machine was rebooted
ComboFix-quarantined-files.txt 2009-11-05 20:29
ComboFix2.txt 2009-11-05 18:02

Pre-Run: 31.789.858.816 bytes libres
Post-Run: 31.754.698.752 bytes libres

Y ahora voy a reiniciar a ver qué tal.
Responder Con Cita
  post #8  
Antiguo 05/11/09, 17:45:20
Usuario
  
Registrado: nov 2009
Ubicación: Valencia
Mensajes: 16
Re: Virus Beagle imposible de quitar???
Vale, he reiniciado, y han aparecido unas 4 pantallas negras tipo ms-dos, que han desaparecido solas, aparentemente todo está bien, pero internet va un poco lento, y el avast no funciona, dice que no es una aplicación win32 válida, qué debo hacer ahora, está todo ya?, debo desinstalar e instalar de nuevo el avast?, o todavía hay que hacer algo mas para limpiar mi ordenador del virus beagle?

Ante todo muchisimas gracias por tu ayuda, espero respuesta.
Responder Con Cita
  post #9  
Antiguo 05/11/09, 18:15:38
Avatar de Leosolari
Moderador
  
Registrado: jun 2007
Ubicación: argentina
Mensajes: 17.165
Re: Virus Beagle imposible de quitar???
Hola de nuevo



Espera,......no te apures...que es un reporte que debo analizar en profundidad...
NO DESESPERES....SIGUE LUCHANDO.

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
Responder Con Cita
  post #10  
Antiguo 05/11/09, 18:21:13
Avatar de Angel Doze
Warrior
  
Registrado: feb 2007
Ubicación: Mexico
Mensajes: 5.708
Re: Virus Beagle imposible de quitar???
Hola putobeagle,

Disculpa la intromision, pero siempre puedes usar FiXbagle, nuestra herramienta especial para eliminar el Worm Bagle.

Descargar FS-FixBagle

Omite el paso, ya lo utilizaste y no te soluciono el problema

Salu2!

Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog

* Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando.
* Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
* No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.
Responder Con Cita
Respuesta
Página 1 de 4 1 234

« Tema Anterior | Próximo Tema »
Herramientas

Reglas del foro
No puedes crear nuevos temas
No puedes responder temas
No puedes subir adjuntos
No puedes editar tus mensajes
BB code is activado
Las caritas están activado
Código [IMG] está activado
Código HTML está desactivado
Trackbacks are desactivado
Pingbacks are activado
Refbacks are activado

Temas Similares
Tema Autor Foro Respuestas Último mensaje
Desesperado con mi PC, ayuda por favor. Moli_Malone Foro de Virus y Spywares 8 24/08/09 16:55:03
No puedo instalar antivirus (Solucionado) agueda.mercedes Temas Solucionados 36 05/01/09 09:19:47
virus persistentes (Solucionado) malu lara Temas Solucionados 24 05/12/08 20:08:06
estoy ke kemo el pc porfa ayudenme !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! (Solucionado) Infernal_Metal Foro de Windows 27 21/08/08 21:06:55
Nuevo Usuario con Varios Virus Hiei Foro de Virus y Spywares 8 21/04/07 06:35:43




Todas las horas son GMT -4. La hora es 00:54:51.

Sobre Infospyware - Contáctanos - Políticas del Foro - Staff - Archivo - Blog  

Powered by: InfoSpyware, Versión 3.8.4
Copyright © 2004 - 2009, ForoSpyware.com
© Copyright 2005 - 2009 InfoSpyware ® Todos los derechos reservados.
InfoSpyware es miembro de ASAP - Alliance of Security Analysis Professionals

 

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31