• Registrarse
  • Iniciar sesión


  • Página 2 de 2 PrimeroPrimero 12
    Resultados 11 al 14 de 14

    www_getwindowinfo no puedo eliminarlo

    sigue abriendome la ventana del IE, aqui el reporte del ComboFix despues de usar el script que me pasaron ComboFix 13-03-05.01 - Adrian 06/03/2013 17:23:42.3.2 - x86 Microsoft Windows 7 Starter 6.1.7601.1.1252.52.3082.18.1787.630 [GMT -6:00] Running ...

    1. #11
      Usuario Avatar de anmerob
      Registrado
      nov 2012
      Ubicación
      chiapas, mexico
      Mensajes
      8

      Re: www_getwindowinfo no puedo eliminarlo

      sigue abriendome la ventana del IE, aqui el reporte del ComboFix despues de usar el script que me pasaron

      ComboFix 13-03-05.01 - Adrian 06/03/2013 17:23:42.3.2 - x86
      Microsoft Windows 7 Starter 6.1.7601.1.1252.52.3082.18.1787.630 [GMT -6:00]
      Running from: c:\users\Adrian\Downloads\ComboFix.exe
      Command switches used :: c:\users\Adrian\Downloads\CFScript.txt
      AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
      SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
      SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
      SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      FILE ::
      "c:\progra~1\MYWEBF~2\bar\1.bin\5abarsvc.exe"
      "c:\program files\WildTangent Games\App\GamesAppService.exe"
      "c:\windows\DeleteOnReboot.bat"
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\progra~1\MYWEBF~2\bar\1.bin\5abarsvc.exe
      c:\program files\EazelBar
      c:\program files\EazelBar\Configuration\banners\0.html
      c:\program files\EazelBar\Configuration\banners\1.html
      c:\program files\EazelBar\Configuration\banners\bannerHTML.html
      c:\program files\EazelBar\Configuration\banners\window.css
      c:\program files\EazelBar\Configuration\banners\window.js
      c:\program files\EazelBar\Configuration\configuration.xml
      c:\program files\EazelBar\Configuration\dynamicConfiguration.xml
      c:\program files\EazelBar\Configuration\images\amazon.png
      c:\program files\EazelBar\Configuration\images\angryCows.png
      c:\program files\EazelBar\Configuration\images\baidu.png
      c:\program files\EazelBar\Configuration\images\blogger.png
      c:\program files\EazelBar\Configuration\images\bomb.png
      c:\program files\EazelBar\Configuration\images\bubble.png
      c:\program files\EazelBar\Configuration\images\bug.png
      c:\program files\EazelBar\Configuration\images\chess.png
      c:\program files\EazelBar\Configuration\images\citysiege.png
      c:\program files\EazelBar\Configuration\images\comment.png
      c:\program files\EazelBar\Configuration\images\dashboard.png
      c:\program files\EazelBar\Configuration\images\ebay.png
      c:\program files\EazelBar\Configuration\images\facebook.png
      c:\program files\EazelBar\Configuration\images\facebookFriends.png
      c:\program files\EazelBar\Configuration\images\facebookWall.png
      c:\program files\EazelBar\Configuration\images\flights.png
      c:\program files\EazelBar\Configuration\images\google.png
      c:\program files\EazelBar\Configuration\images\handsofwar.png
      c:\program files\EazelBar\Configuration\images\hotels.png
      c:\program files\EazelBar\Configuration\images\isoballx.png
      c:\program files\EazelBar\Configuration\images\live.png
      c:\program files\EazelBar\Configuration\images\logo.png
      c:\program files\EazelBar\Configuration\images\msn.png
      c:\program files\EazelBar\Configuration\images\photo.png
      c:\program files\EazelBar\Configuration\images\qq.png
      c:\program files\EazelBar\Configuration\images\raze2.png
      c:\program files\EazelBar\Configuration\images\ruby.png
      c:\program files\EazelBar\Configuration\images\shadowess.png
      c:\program files\EazelBar\Configuration\images\sport_basketball.png
      c:\program files\EazelBar\Configuration\images\stuntcrazy.png
      c:\program files\EazelBar\Configuration\images\sudos.png
      c:\program files\EazelBar\Configuration\images\tetris.png
      c:\program files\EazelBar\Configuration\images\travels.png
      c:\program files\EazelBar\Configuration\images\trophy.png
      c:\program files\EazelBar\Configuration\images\twitter.png
      c:\program files\EazelBar\Configuration\images\utilsBarSearch.png
      c:\program files\EazelBar\Configuration\images\wikipedia.png
      c:\program files\EazelBar\Configuration\images\yahoo.png
      c:\program files\EazelBar\Configuration\images\yourlogo.png
      c:\program files\EazelBar\Configuration\images\youtube.png
      c:\program files\EazelBar\Configuration\LatestVersion.xml
      c:\program files\EazelBar\Configuration\skin\chevron_button.png
      c:\program files\EazelBar\Configuration\skin\dropdown_menu_triangle.png
      c:\program files\EazelBar\Configuration\skin\searchbox.png
      c:\program files\EazelBar\Configuration\skin\searchbox.psd
      c:\program files\EazelBar\Configuration\skin\searchbox_button.psd
      c:\program files\EazelBar\Configuration\skin\searchbox_button_hover.png
      c:\program files\EazelBar\Configuration\skin\searchbox_button_normal.png
      c:\program files\EazelBar\Configuration\skin\searchbox_dropdown_button_normal.png
      c:\program files\EazelBar\Configuration\skin\searchbox_input_background.png
      c:\program files\EazelBar\Configuration\skin\searchbox_input_left.png
      c:\program files\EazelBar\Configuration\skin\searchbox_input_middle.png
      c:\program files\EazelBar\Configuration\skin\separator.png
      c:\program files\EazelBar\Configuration\skin\splitter.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton.psd
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ff_hover_c.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ff_hover_l.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ff_hover_r.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ff_normal_c.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ff_normal_l.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ff_normal_r.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ie_hover_c.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ie_hover_l.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ie_hover_r.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ie_normal_c.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ie_normal_l.png
      c:\program files\EazelBar\Configuration\skin\toolbarbutton_ie_normal_r.png
      c:\program files\EazelBar\Configuration\skin\toolbarbuttonhl.png
      c:\program files\EazelBar\Toolbar64.dll
      c:\program files\EazelBar\ToolbarUpdaterService.exe
      c:\program files\EazelBar\uninstall.exe
      c:\program files\WildTangent Games\App\GamesAppService.exe
      c:\windows\DeleteOnReboot.bat
      .
      Infected copy of c:\windows\system32\Services.exe was found and disinfected
      Restored copy from - c:\windows\erdnt\cache\services.exe
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      -------\Service_GamesAppService
      -------\Service_MyWebFace_5aService
      -------\Service_Updater Service for EazelBar
      .
      .
      ((((((((((((((((((((((((( Files Created from 2013-02-06 to 2013-03-06 )))))))))))))))))))))))))))))))
      .
      .
      2013-03-06 23:35 . 2013-03-06 23:35 -------- d-----w- c:\users\Default\AppData\Local\temp
      2013-03-06 18:11 . 2009-01-25 18:14 15224 ----a-w- c:\windows\system32\sdnclean.exe
      2013-03-06 18:11 . 2013-03-06 18:11 -------- d-----w- c:\program files\Spybot - Search & Destroy 2
      2013-03-06 17:36 . 2013-03-06 17:36 -------- d-----w- c:\users\Adrian\Doctor Web
      2013-03-06 15:27 . 2013-02-08 00:45 6954968 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C0FD6F29-584D-46A0-BFC5-0E31A19D6B80}\mpengine.dll
      2013-03-06 05:53 . 2013-03-06 05:53 -------- d-----w- c:\program files\CCleaner
      2013-03-06 05:31 . 2013-03-06 23:39 -------- d-----w- c:\users\Adrian\AppData\Local\temp
      2013-03-06 00:03 . 2013-03-06 00:03 -------- d-----w- c:\users\Adrian\AppData\Roaming\Malwarebytes
      2013-03-05 23:59 . 2013-03-05 23:59 -------- d-----w- c:\programdata\Malwarebytes
      2013-03-05 23:59 . 2013-03-05 23:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
      2013-03-05 23:59 . 2012-12-14 22:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
      2013-03-01 16:38 . 2013-02-08 00:45 6954968 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
      2013-02-16 14:04 . 2013-01-08 22:01 768000 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
      2013-02-15 15:36 . 2013-01-04 03:00 2347008 ----a-w- c:\windows\system32\win32k.sys
      2013-02-15 15:36 . 2013-01-05 05:00 3967848 ----a-w- c:\windows\system32\ntkrnlpa.exe
      2013-02-15 15:36 . 2013-01-05 05:00 3913064 ----a-w- c:\windows\system32\ntoskrnl.exe
      2013-02-15 15:36 . 2013-01-03 05:05 1293672 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2013-02-15 15:36 . 2013-01-03 05:04 187752 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
      2013-02-15 15:36 . 2013-01-04 04:50 169984 ----a-w- c:\windows\system32\winsrv.dll
      2013-02-05 16:34 . 2013-02-05 16:34 -------- d-----w- c:\program files\Common Files\Skype
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2013-02-28 01:43 . 2012-04-19 22:40 691568 ----a-w- c:\windows\system32\FlashPlayerApp.exe
      2013-02-28 01:43 . 2012-02-14 01:48 71024 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
      2013-01-30 10:53 . 2012-02-14 00:06 232336 ------w- c:\windows\system32\MpSigStub.exe
      2013-01-20 21:59 . 2013-01-20 21:59 195296 ----a-w- c:\windows\system32\drivers\MpFilter.sys
      2013-01-20 21:59 . 2011-04-27 21:25 100328 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
      2012-12-16 14:13 . 2013-01-08 00:17 295424 ----a-w- c:\windows\system32\atmfd.dll
      2012-12-16 14:13 . 2013-01-08 00:17 34304 ----a-w- c:\windows\system32\atmlib.dll
      2012-12-07 12:26 . 2013-01-28 18:02 308736 ----a-w- c:\windows\system32\Wpc.dll
      2012-12-07 12:20 . 2013-01-28 18:02 2576384 ----a-w- c:\windows\system32\gameux.dll
      2012-12-07 10:46 . 2013-01-28 18:02 43520 ----a-w- c:\windows\system32\csrr.rs
      2012-12-07 10:46 . 2013-01-28 18:02 30720 ----a-w- c:\windows\system32\usk.rs
      2012-12-07 10:46 . 2013-01-28 18:02 45568 ----a-w- c:\windows\system32\oflc-nz.rs
      2012-12-07 10:46 . 2013-01-28 18:02 44544 ----a-w- c:\windows\system32\pegibbfc.rs
      2012-12-07 10:46 . 2013-01-28 18:02 20480 ----a-w- c:\windows\system32\pegi-pt.rs
      2012-12-07 10:46 . 2013-01-28 18:02 23552 ----a-w- c:\windows\system32\oflc.rs
      2012-12-07 10:46 . 2013-01-28 18:02 20480 ----a-w- c:\windows\system32\pegi-fi.rs
      2012-12-07 10:46 . 2013-01-28 18:02 46592 ----a-w- c:\windows\system32\fpb.rs
      2012-12-07 10:46 . 2013-01-28 18:02 20480 ----a-w- c:\windows\system32\pegi.rs
      2012-12-07 10:46 . 2013-01-28 18:02 21504 ----a-w- c:\windows\system32\grb.rs
      2012-12-07 10:46 . 2013-01-28 18:02 40960 ----a-w- c:\windows\system32\cob-au.rs
      2012-12-07 10:46 . 2013-01-28 18:02 15360 ----a-w- c:\windows\system32\djctq.rs
      2012-12-07 10:46 . 2013-01-28 18:02 55296 ----a-w- c:\windows\system32\cero.rs
      2012-12-07 10:46 . 2013-01-28 18:02 51712 ----a-w- c:\windows\system32\esrb.rs
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
      @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
      [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
      2012-10-20 21:04 220632 ----a-w- c:\users\Adrian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
      @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
      [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
      2012-10-20 21:04 220632 ----a-w- c:\users\Adrian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
      @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
      [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
      2012-10-20 21:04 220632 ----a-w- c:\users\Adrian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
      @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
      2012-11-13 23:32 129272 ----a-w- c:\users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
      @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
      2012-11-13 23:32 129272 ----a-w- c:\users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
      @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
      [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
      2012-11-13 23:32 129272 ----a-w- c:\users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2009-05-05 222496]
      "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-10-31 39408]
      "HP Officejet Pro 8600 (NET)"="c:\program files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" [2011-09-09 1804648]
      "Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-01-08 18705664]
      "Spybot-S&D Cleaning"="c:\program files\Spybot - Search & Destroy 2\SDCleaner.exe" [2012-11-13 3713032]
      "klgratis.exe"="c:\program files\KG Monitor\klgratis.exe" [2012-05-03 1182720]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-03-04 336384]
      "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI.exe" [2011-01-11 5442152]
      "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-10-14 2299176]
      "AtherosBtStack"="c:\program files\Bluetooth Suite\BtvStack.exe" [2011-04-13 498848]
      "AthBtTray"="c:\program files\Bluetooth Suite\AthBtTray.exe" [2011-04-13 302240]
      "HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-11-09 586296]
      "HPOSD"="c:\program files\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2010-12-13 318520]
      "HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-07-21 8192]
      "RIMBBLaunchAgent.exe"="c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-09-01 90448]
      "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
      "FUFAXSTM"="c:\program files\Epson Software\FAX Utility\FUFAXSTM.exe" [2009-12-03 847872]
      "ArcSoft Connection Service"="c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-28 207424]
      "ArcSoft MediaImpression Monitor"="c:\program files\Kodak\MediaImpression\ArcMonitor.exe" [2010-11-12 73728]
      "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736]
      "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 947152]
      "ControlCenter4"="c:\program files\ControlCenter4\BrCcBoot.exe" [2011-04-20 139264]
      "BrStsMon00"="c:\program files\Browny02\Brother\BrStMonW.exe" [2010-06-10 2621440]
      "IndexSearch"="c:\program files\Nuance\PaperPort\IndexSearch.exe" [2010-03-09 46368]
      "PaperPort PTD"="c:\program files\Nuance\PaperPort\pptd40nt.exe" [2010-03-09 29984]
      "PPort12reminder"="c:\program files\Nuance\PaperPort\Ereg\Ereg.exe" [2010-02-09 328992]
      "PDFHook"="c:\program files\Nuance\PDF Viewer Plus\pdfpro5hook.exe" [2010-03-06 636192]
      "PDF5 Registry Controller"="c:\program files\Nuance\PDF Viewer Plus\RegistryController.exe" [2010-03-06 62752]
      "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-09-17 254896]
      "HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2011-03-24 49208]
      "SDTray"="c:\program files\Spybot - Search & Destroy 2\SDTray.exe" [2012-11-13 3825176]
      .
      c:\users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      Dropbox.lnk - c:\users\Adrian\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-1-20 28539272]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
      "midi2"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
      BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean.exe
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
      @="Service"
      .
      R1 MpKsl1e8ec065;MpKsl1e8ec065;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C42B95B1-21D6-4EFB-8108-C8647392451F}\MpKsl1e8ec065.sys [x]
      R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
      R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
      R2 XobniService;XobniService;c:\program files\Xobni\XobniService.exe [x]
      R3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [x]
      R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
      R3 NisSrv;Inspección de red de Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [x]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
      R3 RTL8187;Realtek RTL8187 Wireless 802.11g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8187.sys [x]
      R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [x]
      R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [x]
      R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [x]
      R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [x]
      R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [x]
      R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
      R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
      S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys [x]
      S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys [x]
      S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSrv.exe [x]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
      S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
      S2 AMD Reservation Manager;AMD Reservation Manager;c:\program files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [x]
      S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files\Bluetooth Suite\Ath_CoexAgent.exe [x]
      S2 AtherosSvc;AtherosSvc;c:\program files\Bluetooth Suite\adminservice.exe [x]
      S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
      S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
      S2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
      S2 IconMan_R;IconMan_R;c:\program files\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
      S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
      S2 PDFProFiltSrvPP;PDFProFiltSrvPP;c:\program files\Nuance\PaperPort\PDFProFiltSrvPP.exe [x]
      S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [x]
      S3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [x]
      S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [x]
      S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [x]
      S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [x]
      S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [x]
      S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [x]
      S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [x]
      S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [x]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
      S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [x]
      S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
      S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
      LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
      GPSvcGroup REG_MULTI_SZ GPSvc
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
      2013-03-06 20:13 1630672 ----a-w- c:\program files\Google\Chrome\Application\25.0.1364.152\Installer\chrmstp.exe
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2013-03-06 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-19 01:43]
      .
      2013-03-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2012-10-31 19:16]
      .
      2013-03-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2012-10-31 19:16]
      .
      2013-03-05 c:\windows\Tasks\HPCeeScheduleForAdrian.job
      - c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13 20:15]
      .
      .
      ------- Supplementary Scan -------
      .
      uStart Page = Google
      mStart Page = Google
      uInternet Settings,ProxyOverride = *.local
      IE: &Enviar a OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
      IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
      TCP: DhcpNameServer = 192.168.1.254
      TCP: Interfaces\{EF3349D9-FE20-4308-B8E2-8621FE0FD464}: NameServer = 200.33.146.241,200.33.146.249
      FF - ProfilePath - c:\users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\yjyxj7ef.default\
      FF - prefs.js: browser.search.defaulturl - Google
      FF - prefs.js: browser.search.selectedEngine - Google
      FF - prefs.js: browser.startup.homepage - hxxp://google.com
      FF - prefs.js: keyword.URL - hxxps://www.google.com/search?q=
      .
      - - - - ORPHANS REMOVED - - - -
      .
      AddRemove-EazelBar - c:\program files\EazelBar\uninstall.exe
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_171_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_171_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      --------------------- DLLs Loaded Under Running Processes ---------------------
      .
      - - - - - - - > 'Explorer.exe'(2344)
      c:\users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
      c:\program files\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dll
      c:\program files\Bluetooth Suite\AthCopyHook.dll
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files\Microsoft Security Client\MsMpEng.exe
      c:\windows\system32\atieclxx.exe
      c:\windows\system32\atibtmon.exe
      c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
      c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
      c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      c:\program files\Bonjour\mDNSResponder.exe
      c:\program files\Microsoft\BingBar\SeaPort.EXE
      c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
      c:\windows\system32\taskhost.exe
      c:\windows\system32\conhost.exe
      c:\program files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
      c:\program files\Hewlett-Packard\Shared\hpqWmiEx.exe
      c:\program files\iPod\bin\iPodService.exe
      c:\program files\Windows Media Player\wmpnetwk.exe
      c:\program files\CyberLink\YouCam\YCMMirage.exe
      c:\windows\system32\sppsvc.exe
      c:\program files\Internet Explorer\IExplore.exe
      c:\program files\Internet Explorer\IExplore.exe
      c:\program files\Google\Google Toolbar\GoogleToolbarUser_32.exe
      c:\windows\system32\msfeedssync.exe
      .
      **************************************************************************
      .
      Completion time: 2013-03-06 17:44:01 - machine was rebooted
      ComboFix-quarantined-files.txt 2013-03-06 23:43
      ComboFix2.txt 2013-03-06 20:50
      .
      Pre-Run: 249,828,446,208 bytes libres
      Post-Run: 249,618,964,480 bytes libres
      .
      - - End Of File - - 44C8D6D321D1A2166109911CE14EB948

    2. #12
      Moderador Gral.
      Avatar de @Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      58.637

      Re: www_getwindowinfo no puedo eliminarlo

      Hola

      Desinstalá CF de la siguiente manera:
      • Ir a Inicio > Ejecutar
      • Escribir lo siguiente: ComboFix /Uninstall como muestra la imagen debajo:

      • Esto activara el desinstalador de ComboFix abriendo su pantalla principal y luego de unos segundos veras ("ComboFix is uninstalled")



      Si No podes desinstalalrlo asì, Descargá OTC.exe en el escritorio.

      Lo ejecutás y presionás Cleanup para Desinstalar ComboFix y sus carpetas creadas.

      Eso reiniciará tu pc.



      Nos comentas como sigue Todo ahora



      Saludos
      Síguenos en Twitter y hazte nuestro amigo en Facebook.

    3. #13
      Usuario Avatar de anmerob
      Registrado
      nov 2012
      Ubicación
      chiapas, mexico
      Mensajes
      8

      Re: www_getwindowinfo no puedo eliminarlo

      Hola de nuevo, hice lo que me dijiste pero todavia sigue saliendo esa ventana del IE con el www_getwindowinfo. Que sigue?

    4. #14
      Moderador Gral.
      Avatar de @Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      58.637

      Re: www_getwindowinfo no puedo eliminarlo

      Hola


      Desinstalà Internet Explorer 9 (Por defecto, quedarà la Versiòn 8)


      ¿Cómo se instala o desinstala Internet Explorer 9?



      Despuès de reiniciar el Ordenador, Descargá e instalá la herramienta CCleaner según Su manual.


      Con esta Herramienta vas a realizar las siguientes acciones:



      ° Vas a Su Pestaña Limpiador, presionas Analizar, esperá a que lo haga completamente y luego pulsas Ejecutar El Limpiador, para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.



      ------------------------------------------------
      ------------------------------------------------


      Vas a Su pestaña Registro y Pulsas Buscar Problemas, esperá a que termine y luego Pulsas Reparar Seleccionados, para limpiar todo el registro de Windows.



      Haces correr nuevamente Adwcleaner, como te lo habia Solicitado antes.


      Reinicias y volves con Su reporte.






      Saludos
      Síguenos en Twitter y hazte nuestro amigo en Facebook.

    Página 2 de 2 PrimeroPrimero 12