• Registrarse
  • Iniciar sesión


  • Página 2 de 2 PrimeroPrimero 12
    Resultados 11 al 14 de 14

    Problema con WIN32/Sirefef

    anda muy bien, y ya no me saltan carteles de nod32 a cada rato, muchas gracias por la ayuda!!!...

    1. #11
      Usuario Avatar de zerosn
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      8

      Re: Problema con WIN32/Sirefef

      anda muy bien, y ya no me saltan carteles de nod32 a cada rato,

      muchas gracias por la ayuda!!!

    2. #12
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Problema con WIN32/Sirefef

      Hola:


      Realiza lo siguiente para eliminar los ultimos restos:


      1.-Abrir el Notepad (Bloc de Notas)
      • Ir a INICIO > EJECUTAR >
      • Y ahí pones notepad.exe y ACEPTAR

      2.-Ahora copia y pega estos archivos dentro del Notepad

      Código:
      KillAll::
      
      ClearJavaCache:: 
      
      Folder::
      c:\windows\SysWow64\%APPDATA%
      
      FireFox::
      FF - ProfilePath - c:\users\Totoy\AppData\Roaming\Mozilla\Firefox\Profiles\dti4zh4l.default\
      FF - user.js: content.switch.threshold - 600000
      FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=111015
      FF - user.js: extensions.BabylonToolbar_i.babExt - 
      FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
      FF - user.js: extensions.BabylonToolbar_i.id - 082e86a100000000000000ff2e40fa90
      FF - user.js: extensions.BabylonToolbar_i.hardId - 082e86a100000000000000ff2e40fa90
      FF - user.js: extensions.BabylonToolbar_i.instlDay - 15534
      FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
      FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
      FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1723:04
      FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
      FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
      FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
      FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
      FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
      FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
      3.- Graba este archivo con el nombre CFScript.txt y déjalo en tu escritorio.

      4.- Arrastrar y soltar el archivo CFScript.txt dentro del archivo ComboFix.exe como lo muestra la animación de abajo. Esto activara ComboFix nuevamente.

      • Reinicia tu PC y nos dejas un el nuevo reporte de ComboFix, comentándonos como esta funcionado todo actualmente?



      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #13
      Usuario Avatar de zerosn
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      8

      Re: Problema con WIN32/Sirefef

      ComboFix 12-09-24.03 - Totoy 25/09/2012 18:14:29.3.6 - x64
      Microsoft Windows 7 Ultimate 6.1.7601.1.1252.54.3082.18.8190.5925 [GMT -3:00]
      Running from: c:\users\Totoy\Downloads\ComboFix.exe
      Command switches used :: c:\users\Totoy\Desktop\CFScript.txt
      AV: ESET NOD32 Antivirus 5.0 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
      SP: ESET NOD32 Antivirus 5.0 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
      SP: Spybot - Search and Destroy *Enabled/Outdated* {1EAF1D03-5480-F3B2-EB14-11F0F5EE2699}
      SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\_ctypes.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\_elementtree.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\_hashlib.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\_socket.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\_ssl.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\pyexpat.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\pysqlite2._sqlite.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\python26.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\pythoncom26.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\pywintypes26.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\select.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\unicodedata.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\win32api.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\win32com.shell.shell.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\win32crypt.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\win32event.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\win32file.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\win32inet.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\win32pdh.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\win32process.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\win32security.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\windows._cacheinvalidation.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wx._controls_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wx._core_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wx._gdi_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wx._html2.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wx._misc_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wx._windows_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wx._wizard.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wxbase293u_net_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wxbase293u_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wxmsw293u_adv_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wxmsw293u_core_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wxmsw293u_html_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI27762\wxmsw293u_webview_vc.dll
      c:\windows\SysWow64\%APPDATA%
      c:\windows\SysWow64\%APPDATA%\Microsoft\Windows\IETldCache\index.dat
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-08-25 to 2012-09-25 )))))))))))))))))))))))))))))))
      .
      .
      2012-09-25 21:20 . 2012-09-25 21:20 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-09-21 02:07 . 2012-09-21 20:17 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-09-15 17:19 . 2012-08-22 18:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2012-09-15 17:19 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
      2012-09-15 17:19 . 2012-08-22 18:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
      2012-09-15 06:26 . 2012-09-15 16:19 -------- d-----w- c:\programdata\Spybot - Search & Destroy
      2012-09-15 06:25 . 2009-01-25 16:14 17272 ----a-w- c:\windows\system32\sdnclean64.exe
      2012-09-15 06:25 . 2012-09-15 06:25 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
      2012-09-15 06:08 . 2012-09-15 06:08 -------- d-----w- c:\users\Totoy\AppData\Roaming\Malwarebytes
      2012-09-15 06:08 . 2012-09-15 06:08 -------- d-----w- c:\programdata\Malwarebytes
      2012-09-15 06:08 . 2012-09-15 06:08 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
      2012-09-15 06:08 . 2012-09-07 20:04 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-09-15 05:50 . 2012-09-15 05:50 203 ----a-w- C:\VIRUS.bat
      2012-09-15 05:46 . 2012-09-15 05:46 -------- d-----w- c:\program files\Microsoft Xbox 360 Accessories
      2012-09-08 01:51 . 2012-09-08 01:51 -------- d-----w- C:\ACTUAL
      2012-09-08 01:44 . 2012-09-08 01:51 -------- d-----w- C:\sicontawin
      2012-09-03 01:42 . 2012-09-15 05:40 -------- d-----w- c:\users\Administrador
      2012-08-31 03:42 . 2012-08-31 03:51 -------- d-----w- C:\BitConta39GN
      2012-08-31 03:41 . 2012-08-31 03:42 -------- d-----w- C:\Instalar_BitConta
      2012-08-30 05:16 . 2012-08-30 05:16 -------- d-----w- c:\users\Totoy\AppData\Roaming\postgresql
      2012-08-30 05:09 . 2012-08-30 05:09 -------- d-----w- c:\program files (x86)\PostgreSQL
      2012-08-30 04:30 . 2012-08-30 04:52 -------- d-----w- C:\ServidorOXP
      2012-08-30 04:11 . 2012-08-30 04:11 916456 ----a-w- c:\windows\system32\deployJava1.dll
      2012-08-30 04:11 . 2012-08-30 04:11 289768 ----a-w- c:\windows\system32\javaws.exe
      2012-08-30 04:11 . 2012-08-30 04:11 1034216 ----a-w- c:\windows\system32\npDeployJava1.dll
      2012-08-30 04:11 . 2012-08-30 04:11 189416 ----a-w- c:\windows\system32\javaw.exe
      2012-08-30 04:11 . 2012-08-30 04:11 188904 ----a-w- c:\windows\system32\java.exe
      2012-08-30 04:11 . 2012-08-30 04:11 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
      2012-08-30 04:08 . 2012-09-09 10:04 -------- d-----w- c:\program files\Java
      2012-08-30 03:11 . 2012-08-30 03:11 -------- d-----w- c:\users\postgres
      2012-08-28 17:09 . 2012-08-28 17:09 -------- d-----w- c:\programdata\Battle.net
      2012-08-27 08:47 . 2012-08-27 08:46 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-09-21 08:22 . 2012-04-06 23:24 696240 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2012-09-21 08:22 . 2011-09-14 22:30 73136 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2012-09-21 00:44 . 2011-09-14 22:12 25640 ----a-w- c:\windows\gdrv.sys
      2012-09-16 06:00 . 2012-07-18 20:04 64462936 ----a-w- c:\windows\system32\MRT.exe
      2012-09-15 17:15 . 2011-09-21 03:23 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
      2012-08-27 08:46 . 2011-09-14 22:29 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
      2012-07-23 21:36 . 2012-07-23 21:36 2048 ----a-w- c:\windows\SysWow64\winver.exe
      2012-07-23 21:36 . 2012-07-23 21:36 833024 ----a-w- c:\windows\SysWow64\user32.dll
      2012-07-23 21:36 . 2012-07-23 21:36 410624 ----a-w- c:\windows\SysWow64\systemcpl.dll
      2012-07-23 21:36 . 2012-07-23 21:36 1536 ----a-w- c:\windows\SysWow64\sppcomapi.dll
      2012-07-23 21:36 . 2012-07-23 21:36 113543 ----a-w- c:\windows\SysWow64\slmgr.vbs
      2012-07-23 21:36 . 2012-07-23 21:36 113543 ----a-w- c:\windows\system32\slmgr.vbs
      2012-07-18 20:02 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
      2012-07-18 20:02 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
      2012-07-18 18:15 . 2012-08-16 06:38 3148800 ----a-w- c:\windows\system32\win32k.sys
      2012-07-16 06:46 . 2012-07-16 06:46 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
      2012-07-16 06:46 . 2012-07-16 06:46 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
      2012-07-16 06:46 . 2012-07-16 06:46 89088 ----a-w- c:\windows\system32\ie4uinit.exe
      2012-07-16 06:46 . 2012-07-16 06:46 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
      2012-07-16 06:46 . 2012-07-16 06:46 85504 ----a-w- c:\windows\system32\iesetup.dll
      2012-07-16 06:46 . 2012-07-16 06:46 82432 ----a-w- c:\windows\system32\icardie.dll
      2012-07-16 06:46 . 2012-07-16 06:46 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
      2012-07-16 06:46 . 2012-07-16 06:46 76800 ----a-w- c:\windows\system32\tdc.ocx
      2012-07-16 06:46 . 2012-07-16 06:46 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
      2012-07-16 06:46 . 2012-07-16 06:46 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
      2012-07-16 06:46 . 2012-07-16 06:46 65024 ----a-w- c:\windows\system32\pngfilt.dll
      2012-07-16 06:46 . 2012-07-16 06:46 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
      2012-07-16 06:46 . 2012-07-16 06:46 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
      2012-07-16 06:46 . 2012-07-16 06:46 534528 ----a-w- c:\windows\system32\ieapfltr.dll
      2012-07-16 06:46 . 2012-07-16 06:46 49664 ----a-w- c:\windows\system32\imgutil.dll
      2012-07-16 06:46 . 2012-07-16 06:46 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
      2012-07-16 06:46 . 2012-07-16 06:46 48640 ----a-w- c:\windows\system32\mshtmler.dll
      2012-07-16 06:46 . 2012-07-16 06:46 452608 ----a-w- c:\windows\system32\dxtmsft.dll
      2012-07-16 06:46 . 2012-07-16 06:46 448512 ----a-w- c:\windows\system32\html.iec
      2012-07-16 06:46 . 2012-07-16 06:46 403248 ----a-w- c:\windows\system32\iedkcs32.dll
      2012-07-16 06:46 . 2012-07-16 06:46 39936 ----a-w- c:\windows\system32\iernonce.dll
      2012-07-16 06:46 . 2012-07-16 06:46 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
      2012-07-16 06:46 . 2012-07-16 06:46 367104 ----a-w- c:\windows\SysWow64\html.iec
      2012-07-16 06:46 . 2012-07-16 06:46 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
      2012-07-16 06:46 . 2012-07-16 06:46 30720 ----a-w- c:\windows\system32\licmgr10.dll
      2012-07-16 06:46 . 2012-07-16 06:46 282112 ----a-w- c:\windows\system32\dxtrans.dll
      2012-07-16 06:46 . 2012-07-16 06:46 267776 ----a-w- c:\windows\system32\ieaksie.dll
      2012-07-16 06:46 . 2012-07-16 06:46 249344 ----a-w- c:\windows\system32\webcheck.dll
      2012-07-16 06:46 . 2012-07-16 06:46 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
      2012-07-16 06:46 . 2012-07-16 06:46 222208 ----a-w- c:\windows\system32\msls31.dll
      2012-07-16 06:46 . 2012-07-16 06:46 197120 ----a-w- c:\windows\system32\msrating.dll
      2012-07-16 06:46 . 2012-07-16 06:46 165888 ----a-w- c:\windows\system32\iexpress.exe
      2012-07-16 06:46 . 2012-07-16 06:46 163840 ----a-w- c:\windows\system32\ieakui.dll
      2012-07-16 06:46 . 2012-07-16 06:46 161792 ----a-w- c:\windows\SysWow64\msls31.dll
      2012-07-16 06:46 . 2012-07-16 06:46 160256 ----a-w- c:\windows\system32\wextract.exe
      2012-07-16 06:46 . 2012-07-16 06:46 160256 ----a-w- c:\windows\system32\ieakeng.dll
      2012-07-16 06:46 . 2012-07-16 06:46 152064 ----a-w- c:\windows\SysWow64\wextract.exe
      2012-07-16 06:46 . 2012-07-16 06:46 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
      2012-07-16 06:46 . 2012-07-16 06:46 149504 ----a-w- c:\windows\system32\occache.dll
      2012-07-16 06:46 . 2012-07-16 06:46 145920 ----a-w- c:\windows\system32\iepeers.dll
      2012-07-16 06:46 . 2012-07-16 06:46 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
      2012-07-16 06:46 . 2012-07-16 06:46 12288 ----a-w- c:\windows\system32\mshta.exe
      2012-07-16 06:46 . 2012-07-16 06:46 11776 ----a-w- c:\windows\SysWow64\mshta.exe
      2012-07-16 06:46 . 2012-07-16 06:46 114176 ----a-w- c:\windows\system32\admparse.dll
      2012-07-16 06:46 . 2012-07-16 06:46 111616 ----a-w- c:\windows\system32\iesysprep.dll
      2012-07-16 06:46 . 2012-07-16 06:46 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
      2012-07-16 06:46 . 2012-07-16 06:46 10752 ----a-w- c:\windows\system32\msfeedssync.exe
      2012-07-16 06:46 . 2012-07-16 06:46 103936 ----a-w- c:\windows\system32\inseng.dll
      2012-07-16 06:46 . 2012-07-16 06:46 101888 ----a-w- c:\windows\SysWow64\admparse.dll
      2012-07-16 06:41 . 2011-11-02 20:03 207872 ----a-w- c:\programdata\Microsoft\VBExpress\10.0\3082\ResourceCache.dll
      2012-07-12 18:31 . 2011-12-05 19:08 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
      2012-07-12 18:31 . 2011-09-21 03:23 382288 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
      2012-07-04 22:16 . 2012-08-16 06:38 73216 ----a-w- c:\windows\system32\netapi32.dll
      2012-07-04 22:13 . 2012-08-16 06:38 59392 ----a-w- c:\windows\system32\browcli.dll
      2012-07-04 22:13 . 2012-08-16 06:38 136704 ----a-w- c:\windows\system32\browser.dll
      2012-07-04 21:14 . 2012-08-16 06:38 41984 ----a-w- c:\windows\SysWow64\browcli.dll
      2012-06-29 10:04 . 2012-08-14 13:03 9133488 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{57A1B2CA-5017-4DE1-B138-41D923C539F7}\mpengine.dll
      2006-05-03 15:06 163328 --sha-r- c:\windows\SysWOW64\flvDX.dll
      2007-02-21 16:47 31232 --sha-r- c:\windows\SysWOW64\msfDX.dll
      2008-03-16 18:30 216064 --sha-r- c:\windows\SysWOW64\nbDX.dll
      2010-01-07 03:00 107520 --sha-r- c:\windows\SysWOW64\TAKDSDecoder.dll
      .
      .
      ------- Sigcheck -------
      Note: Unsigned files aren't necessarily malware.
      .
      [7] 2010-11-20 . FE70103391A64039A921DBFFF9C7AB1B . 1008128 . . [6.1.7601.17514] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
      [7] 2009-07-14 . 72D7B3EA16946E8F0CF7458150031CC6 . 1008640 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_292d5de8870d85d9\user32.dll
      [-] 2010-11-20 . E573BD9AB55C8E333C202B9E255F972E . 1008640 . . [6.1.7601.17514] .. c:\windows\system32\user32.dll
      .
      [-] 2012-07-23 . 2C9CC9F492CA596B1B9FC1AE5E916356 . 833024 . . [6.1.7601.17514] .. c:\windows\SysWOW64\user32.dll
      [7] 2010-11-20 . 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 . 833024 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
      [7] 2009-07-14 . E8B0FFC209E504CB7E79FC24E6C085F0 . 833024 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_3382083abb6e47d4\user32.dll
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
      "uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-09-19 896912]
      "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-02-13 3481408]
      "GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2012-09-06 15668432]
      "ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-04-17 196608]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "BCU"="c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-08-04 346320]
      "NUSB3MON"="c:\program files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2009-11-20 106496]
      "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-05-05 102400]
      "KMCONFIG"="c:\program files (x86)\Keyboard Driver\StartAutorun.exe" [2007-03-06 212992]
      "Lycosa"="c:\program files (x86)\Razer\Lycosa\razerhid.exe" [2007-11-20 147456]
      "SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2012-08-30 3904536]
      .
      c:\users\Totoy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      CurseClientStartup.ccip [2012-3-17 0]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableLUA"= 0 (0x0)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\SDWinLogon]
      SDWinLogon.dll [BU]
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
      "aux1"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
      BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
      Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
      "ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
      .
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 gupdate;Google Update Servicio (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-25 116648]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
      R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-21 250288]
      R3 gupdatem;Google Update Servicio (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-25 116648]
      R3 LGDDCDevice;LGDDCDevice;c:\program files (x86)\LG Soft India\forteManager\bin\I2CDriver.sys [2009-04-24 14336]
      R3 LGII2CDevice;LGII2CDevice;c:\program files (x86)\LG Soft India\forteManager\bin\PII2CDriver.sys [2009-04-24 18432]
      R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys [2009-07-10 31744]
      R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-09 114144]
      R3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [2012-06-11 18360]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
      R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
      R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
      R3 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe [2012-04-20 736104]
      R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-09-17 1255736]
      R4 AxisCameraStation;AXIS Camera Station Service;c:\program files (x86)\Axis Communications\AXIS Camera Station\AcsService.exe [2007-06-27 11776]
      R4 ES lite Service;ES lite Service for program management.;c:\program files (x86)\Gigabyte\EasySaver\ESSVR.EXE [2009-08-24 68136]
      R4 MSSQLServerADHelper100;Servicio auxiliar de SQL Active Directory;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-23 61976]
      R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
      R4 postgresql-8.3;postgresql-8.3;C:/Program Files (x86)/PostgreSQL/8.3/bin/pg_ctl.exe runservice -N postgresql-8.3 -D C:/Program Files (x86)/PostgreSQL/8.3/data -w [x]
      R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 311656]
      R4 SQLAgent$SQLEXPRESS;Agente SQL Server (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 427880]
      S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
      S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-03-03 283200]
      S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
      S2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;c:\program files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
      S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-05-05 202752]
      S2 BCUService;Browser Configuration Utility Service;c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]
      S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
      S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-06 974944]
      S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 137144]
      S2 KMWDSERVICE;Keyboard And Mouse Communication Service;c:\program files (x86)\Keyboard Driver\KMWDSrv.exe [2007-04-05 208896]
      S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-07 399432]
      S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-07 676936]
      S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-08-30 1074720]
      S2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-08-30 1358360]
      S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-03-22 166528]
      S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2012-05-29 2143072]
      S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-05-05 6789632]
      S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-05-05 221184]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-07 25928]
      S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 75776]
      S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 177152]
      S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-08-20 239616]
      S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
      S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2011-11-09 11856]
      .
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-09-25 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-06 08:22]
      .
      2012-09-21 c:\windows\Tasks\DriverScanner.job
      - c:\program files (x86)\Uniblue\DriverScanner\dsmonitor.exe [2012-03-01 14:22]
      .
      2012-09-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-25 03:09]
      .
      2012-09-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-25 03:09]
      .
      2012-09-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3552707504-3053943316-1066882160-1001Core.job
      - c:\users\Totoy\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-05 03:02]
      .
      2012-09-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3552707504-3053943316-1066882160-1001UA.job
      - c:\users\Totoy\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-05 03:02]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
      2012-09-06 18:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
      2012-09-06 18:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
      2012-09-06 18:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
      2012-09-06 18:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-03-12 10134560]
      "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-06 4030008]
      "XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-09-30 825184]
      .
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
      UxTuneUp
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = about:blank
      mLocal Page = c:\windows\SysWOW64\blank.htm
      IE: Download with &Media Finder - c:\program files (x86)\Media Finder\hook.html
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
      TCP: DhcpNameServer = 192.168.1.1
      DPF: {5C37F274-31B1-4185-9CA4-878F7D5B7779} - hxxp://169.254.102.68/MediaClientAxCtrl.cab
      FF - ProfilePath - c:\users\Totoy\AppData\Roaming\Mozilla\Firefox\Profiles\dti4zh4l.default\
      FF - user.js: network.http.max-persistent-connections-per-server - 4
      FF - user.js: nglayout.initialpaint.delay - 600
      FF - user.js: content.notify.interval - 600000
      FF - user.js: content.max.tokenizing.time - 1800000
      FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
      .
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\postgresql-8.3]
      "ImagePath"="C:/Program Files (x86)/PostgreSQL/8.3/bin/pg_ctl.exe runservice -N \"postgresql-8.3\" -D \"C:/Program Files (x86)/PostgreSQL/8.3/data\" -w"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\postgresql-8.3]
      "ImagePath"="C:/Program Files (x86)/PostgreSQL/8.3/bin/pg_ctl.exe runservice -N \"postgresql-8.3\" -D \"C:/Program Files (x86)/PostgreSQL/8.3/data\" -w"
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\windows\SysWOW64\PnkBstrA.exe
      c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
      c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      c:\program files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
      c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
      c:\program files (x86)\Keyboard Driver\KMConfig.exe
      c:\program files (x86)\Keyboard Driver\KMProcess.exe
      c:\program files (x86)\DAEMON Tools Lite\DTShellHlp.exe
      .
      **************************************************************************
      .
      Completion time: 2012-09-25 19:01:37 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-09-25 22:01
      ComboFix2.txt 2012-09-25 21:11
      ComboFix3.txt 2012-09-22 09:04
      .
      Pre-Run: 329.161.060.352 bytes libres
      Post-Run: 328.984.436.736 bytes libres
      .
      - - End Of File - - 9131B5C8DB870ACD35BEB274BAFB457D

    4. #14
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Problema con WIN32/Sirefef

      Hola zerosn:




      Para terminar solo te quedaría desinstalar CF de la siguiente manera:

      • Ir a Inicio > Ejecutar
      • Escribir lo siguiente: ComboFix /Uninstall como muestra la imagen debajo:

      • Esto activara el desinstalador de ComboFix abriendo su pantalla principal y luego de unos segundos veras ("ComboFix is uninstalled")


      Nota: Si no funciona ese método de desinstalación descarga y ejecuta OTC.exe, pulsa en CleanUp!, luego en "Yes", y reinicia tu PC.


      Nos comentas si todo esta en orden para dar por resuelto el tema.



      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 2 de 2 PrimeroPrimero 12