No puedo contra la doble tilde - Página 2

jbex · #11 23-ene-2010, 00:49

Abre el notepad - no utilice otro tipo de editor de texto que el Bloc de notas o el script fallará.
- Clic en inicio -> ejecutar y escribe: notepad.exe
- Clic en aceptar

Copia/pega el texto de la casilla de abajo en el notepad:

Código:

KillAll::
File::
c:\users\Alvaro\AppData\Local\GDIPFONTCACHEV1.DAT
c:\windows\system32\drivers\Msft_User_lgSSBW_01_00 _00.Wdf
c:\windows\system32\drivers\Msft_User_lgSSQVGA_01_ 00_00.Wdf
c:\windows\system32\drivers\Msft_User_LgLcdSSDrive r_01_00_00.Wdf

Ve a la ventana del Bloc de notas y haz clic en Editar -> Pegar
- A continuación, haz clic en Archivo -> Guardar
- Nombre del archivo CFScript.txt
- Guarde el archivo en el escritorio
Arrastra el archivo que acaba de crear ... CFScript.txt y soltar en el icono principal ComboFix.exe como se indica a continuación.
Espera a que ComboFix termine de ejecutarse.
Esto iniciará de nuevo ComboFix.

Después de reiniciar el sistema (en caso de que pida reiniciar), pega el contenido de Combofix.txt en la próxima respuesta.

Recuerda revisar el archivo DIFxAPI.dll y el escaner.
Un saludo

Albaco · #12 25-ene-2010, 20:40

ComboFix 10-01-24.05 - Alvaro 25/01/2010 16:01:49.5.8 - x86
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.34.3082.18.3070.2035 [GMT 1:00]
Running from: c:\users\Alvaro\Desktop\ComboFix.exe
Command switches used :: c:\users\Alvaro\Desktop\CFScript.txt
SP: Spybot - Search and Destroy *enabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}

FILE ::
"c:\users\Alvaro\AppData\Local\GDIPFONTCACHEV1.DAT "
"c:\windows\system32\drivers\Msft_User_LgLcdSSDriv e r_01_00_00.Wdf"
"c:\windows\system32\drivers\Msft_User_lgSSBW_01_0 0 _00.Wdf"
"c:\windows\system32\drivers\Msft_User_lgSSQVGA_01 _ 00_00.Wdf"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\Alvaro\AppData\Local\GDIPFONTCACHEV1.DAT

.
((((((((((((((((((((((((( Files Created from 2009-12-25 to 2010-01-25 )))))))))))))))))))))))))))))))
.

2010-01-25 15:06 . 2010-01-25 15:06 8224 ----a-w- c:\users\Alvaro\AppData\Local\GDIPFONTCACHEV1.DAT
2010-01-25 15:05 . 2010-01-25 15:06 -------- d-----w- c:\users\Alvaro\AppData\Local\temp
2010-01-25 15:05 . 2010-01-25 15:05 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-01-25 15:05 . 2010-01-25 15:05 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-01-23 13:16 . 2010-01-23 13:16 -------- d-----w- c:\program files\Common Files\Java
2010-01-23 13:16 . 2010-01-23 13:16 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-01-23 13:16 . 2010-01-23 13:16 -------- d-----w- c:\program files\Java
2010-01-22 12:59 . 2009-12-19 09:02 977920 ----a-w- c:\windows\system32\wininet.dll
2010-01-21 23:40 . 2010-01-21 23:41 -------- d-----w- C:\Lop SD
2010-01-21 10:33 . 2010-01-21 10:33 -------- d-----w- c:\program files\ESET
2010-01-21 09:50 . 2010-01-21 09:59 -------- d-----w- C:\HijackThis
2010-01-21 09:32 . 2006-06-19 11:01 69632 ----a-w- c:\windows\system32\ztvcabinet.dll
2010-01-21 09:32 . 2006-05-25 13:52 162304 ----a-w- c:\windows\system32\ztvunrar36.dll
2010-01-21 09:32 . 2005-08-25 23:50 77312 ----a-w- c:\windows\system32\ztvunace26.dll
2010-01-21 09:32 . 2003-02-02 18:06 153088 ----a-w- c:\windows\system32\UNRAR3.dll
2010-01-21 09:32 . 2002-03-05 23:00 75264 ----a-w- c:\windows\system32\unacev2.dll
2010-01-20 13:21 . 2010-01-20 13:21 -------- d-----w- c:\programdata\Logitech
2010-01-13 05:12 . 2009-10-19 14:10 108544 ----a-w- c:\windows\system32\t2embed.dll
2010-01-13 05:12 . 2009-10-19 14:10 70656 ----a-w- c:\windows\system32\fontsub.dll
2010-01-08 11:15 . 2010-01-08 11:16 -------- d-----w- c:\users\Alvaro\AppData\Local\Logitech
2010-01-05 00:32 . 2010-01-05 00:32 -------- d-----w- c:\users\Alvaro\AppData\Local\WebDKPSync
2010-01-04 14:38 . 2010-01-04 14:41 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-01-03 13:43 . 2003-06-19 00:31 18944 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\mdippr.d ll
2010-01-03 13:43 . 2003-06-19 00:31 17920 ----a-w- c:\windows\system32\mdimon.dll
2010-01-03 13:42 . 2010-01-03 13:42 -------- d-----w- c:\program files\Microsoft Works
2010-01-03 13:42 . 2010-01-03 13:42 -------- d-----w- c:\windows\PCHEALTH
2010-01-03 13:42 . 2010-01-03 13:42 -------- d-----w- c:\program files\Microsoft.NET
2010-01-03 13:41 . 2010-01-03 13:41 -------- d-----r- C:\MSOCache
2009-12-29 10:58 . 2009-12-29 10:59 -------- d-----w- c:\users\Alvaro\AppData\Roaming\Media Player Classic
2009-12-29 10:14 . 2009-12-29 10:14 321320 ----a-w- c:\programdata\Microsoft\Windows Defender\LocalCopy\{B2D4F083-A414-E92C-9367-F46179B85545}-SteamServiceTmp.exe
2009-12-27 20:58 . 2009-12-27 20:58 -------- d-----w- c:\users\Alvaro\AppData\Roaming\runic games

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2010-01-25 15:06 . 2009-12-19 17:20 -------- d-----w- c:\program files\Steam
2010-01-25 15:06 . 2009-12-19 11:43 -------- d-----w- c:\programdata\NVIDIA
2010-01-25 15:06 . 2009-12-17 20:20 16608 ----a-w- c:\windows\gdrv.sys
2010-01-25 14:43 . 2009-07-14 08:48 694148 ----a-w- c:\windows\system32\perfh00A.dat
2010-01-25 14:43 . 2009-07-14 08:48 134242 ----a-w- c:\windows\system32\perfc00A.dat
2010-01-24 01:04 . 2009-12-19 17:20 -------- d-----w- c:\program files\Common Files\Steam
2010-01-20 13:21 . 2009-12-17 22:31 -------- d-----w- c:\program files\Logitech
2010-01-14 21:27 . 2009-12-18 19:39 -------- d-----w- c:\program files\World of Warcraft
2010-01-14 10:12 . 2009-12-17 20:26 181120 ------w- c:\windows\system32\MpSigStub.exe
2010-01-08 11:38 . 2010-01-08 11:38 0 ---ha-w- c:\windows\system32\drivers\Msft_User_lgSSBW_01_00 _00.Wdf
2010-01-08 11:38 . 2010-01-08 11:38 0 ---ha-w- c:\windows\system32\drivers\Msft_User_lgSSQVGA_01_ 00_00.Wdf
2010-01-08 11:15 . 2010-01-08 11:15 0 ---ha-w- c:\windows\system32\drivers\Msft_User_LgLcdSSDrive r_01_00_00.Wdf
2010-01-06 11:01 . 2009-12-17 20:33 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-04 14:50 . 2009-12-22 14:58 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2009-12-29 23:58 . 2009-12-17 22:58 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment
2009-12-22 01:52 . 2009-12-22 01:52 -------- d-----w- c:\program files\eMule
2009-12-19 23:33 . 2009-12-19 23:33 -------- d-----w- c:\program files\Common Files\Adobe
2009-12-19 22:59 . 2009-12-19 22:59 -------- d-----w- c:\program files\WBFS
2009-12-19 22:51 . 2009-12-19 21:22 -------- d-----w- c:\users\Alvaro\AppData\Roaming\ImgBurn
2009-12-19 17:34 . 2009-12-19 17:34 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_ 00.Wdf
2009-12-19 11:43 . 2009-12-19 11:43 -------- d-----w- c:\program files\NVIDIA Corporation
2009-12-19 11:43 . 2009-12-19 11:43 -------- d-----w- c:\program files\AGEIA Technologies
2009-12-19 11:43 . 2009-12-17 21:36 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-12-18 22:59 . 2009-12-18 22:51 -------- d-----w- c:\programdata\Blizzard Entertainment
2009-12-18 00:16 . 2009-12-18 00:16 -------- d-----w- c:\programdata\Blizzard
2009-12-18 00:06 . 2009-12-18 00:06 -------- d-----w- c:\program files\ImgBurn
2009-12-17 22:54 . 2009-12-17 22:54 53248 ----a-r- c:\users\Alvaro\AppData\Roaming\Microsoft\Installe r\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2009-12-17 22:54 . 2009-12-17 22:53 -------- d-----w- c:\program files\Common Files\Logishrd
2009-12-17 22:53 . 2009-12-17 22:53 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_0 1005.Wdf
2009-12-17 22:53 . 2009-12-17 22:24 -------- d-----w- c:\programdata\LogiShrd
2009-12-17 22:49 . 2009-12-17 21:37 -------- d-----w- c:\users\Alvaro\AppData\Roaming\Ventrilo
2009-12-17 22:35 . 2009-12-17 22:35 1232496 ----a-w- c:\programdata\Google\Google Toolbar\Component\GoogleCld_D9AEC8D4D1915047.dll
2009-12-17 22:35 . 2009-12-17 22:34 -------- d-----w- c:\program files\Google
2009-12-17 22:32 . 2009-12-17 22:32 -------- d-----w- c:\users\Alvaro\AppData\Roaming\Leadertech
2009-12-17 22:15 . 2009-12-17 22:15 -------- d--h--w- c:\programdata\CanonBJ
2009-12-17 21:44 . 2009-12-17 21:44 -------- d-----w- c:\program files\Alwil Software
2009-12-17 21:36 . 2009-12-17 21:36 -------- d-----w- c:\program files\Ventrilo
2009-12-17 20:37 . 2009-12-17 20:37 319456 ----a-w- c:\windows\DIFxAPI.dll
2009-12-17 20:37 . 2009-12-17 20:37 -------- d-----w- c:\program files\Realtek
2009-12-17 20:37 . 2009-12-17 20:37 319488 ----a-w- c:\windows\HideWin.exe
2009-12-17 20:34 . 2009-12-17 20:34 -------- d-----w- c:\program files\Intel
2009-12-17 20:33 . 2009-12-17 20:33 -------- d-----w- c:\program files\Browser Configuration Utility
2009-12-17 20:33 . 2009-12-17 20:33 -------- d-----w- c:\program files\GIGABYTE
2009-12-17 20:33 . 2009-12-17 20:33 -------- d-----w- c:\program files\Common Files\InstallShield
2009-12-17 20:14 . 2009-12-17 20:14 -------- d-sh--we c:\programdata\Plantillas
2009-12-17 20:14 . 2009-12-17 20:14 -------- d-sh--we c:\programdata\Menú Inicio
2009-12-17 20:14 . 2009-12-17 20:14 -------- d-sh--we c:\programdata\Favoritos
2009-12-17 20:14 . 2009-12-17 20:14 -------- d-sh--we c:\programdata\Escritorio
2009-12-17 20:14 . 2009-12-17 20:14 -------- d-sh--we c:\programdata\Documentos
2009-12-17 20:14 . 2009-12-17 20:14 -------- d-sh--we c:\programdata\Datos de programa
2009-12-17 20:14 . 2009-12-17 20:14 -------- d-sh--we c:\program files\Archivos comunes
2009-12-16 15:05 . 2009-12-22 15:14 471040 ----a-w- c:\users\Alvaro\AppData\Roaming\Mozilla\Firefox\Pr ofiles\cqccllu0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\DictionaryCompressionFF.d ll
2009-12-16 15:05 . 2009-12-22 15:14 347136 ----a-w- c:\users\Alvaro\AppData\Roaming\Mozilla\Firefox\Pr ofiles\cqccllu0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll
2009-12-16 15:05 . 2009-12-22 15:14 340992 ----a-w- c:\users\Alvaro\AppData\Roaming\Mozilla\Firefox\Pr ofiles\cqccllu0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll
2009-12-16 15:05 . 2009-12-22 15:14 43008 ----a-w- c:\users\Alvaro\AppData\Roaming\Mozilla\Firefox\Pr ofiles\cqccllu0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
2009-12-16 15:05 . 2009-12-22 15:14 1452032 ----a-w- c:\users\Alvaro\AppData\Roaming\Mozilla\Firefox\Pr ofiles\cqccllu0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
2009-11-24 23:54 . 2009-12-17 21:44 1280480 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-24 23:50 . 2009-12-17 21:44 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-11-24 23:50 . 2009-12-17 21:44 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-11-24 23:49 . 2009-12-17 21:44 53328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2009-11-24 23:49 . 2009-12-17 21:44 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-24 23:48 . 2009-12-17 21:44 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-11-24 23:47 . 2009-12-17 21:44 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-11-23 16:37 . 2009-11-23 16:37 14856 ----a-w- c:\windows\system32\drivers\LGVirHid.sys
2009-11-23 16:37 . 2009-11-23 16:37 19720 ----a-w- c:\windows\system32\drivers\LGBusEnum.sys
2009-11-20 19:33 . 2009-11-20 19:33 812648 ----a-w- c:\windows\system32\nvsvc.dll
2009-11-20 19:33 . 2009-11-20 19:33 66664 ----a-w- c:\windows\system32\nvshext.dll
2009-11-20 19:33 . 2009-11-20 19:33 1323624 ----a-w- c:\windows\system32\nvsvcr.dll
2009-11-20 19:33 . 2009-11-20 19:33 12685928 ----a-w- c:\windows\system32\nvcpl.dll
2009-11-20 19:33 . 2009-11-20 19:33 122984 ----a-w- c:\windows\system32\nvvsvc.exe
2009-11-20 19:33 . 2009-11-20 19:33 110184 ----a-w- c:\windows\system32\nvmctray.dll
2009-10-29 07:22 . 2009-12-17 22:14 2048 ----a-w- c:\windows\system32\tzres.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb 108c86c\WinMail.exe
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe" [2009-12-17 39408]
"Steam"="c:\program files\Steam\Steam.exe" [2009-12-19 1217808]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2008-07-24 6265376]
"Skytel"="Skytel.exe" [2008-07-24 1833504]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]
"avast!"="c:\program files\Alwil Software\Avast4\ashDisp.exe" [2009-11-24 81000]
"Logitech G35"="c:\program files\Logitech\G35\G35.exe" [2009-06-30 1811728]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-07-17 55824]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"Launch LgDeviceAgent"="c:\program files\Logitech\GamePanel Software\LgDevAgt.exe" [2009-12-10 357384]
"Launch LCDMon"="c:\program files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" [2009-12-10 1573384]
"Launch LGDCore"="c:\program files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" [2009-12-10 3203080]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-01-11 246504]

c:\users\Alvaro\AppData\Roaming\Microsoft\Windows\ Start Menu\Programs\Startup\
CurseClientStartup.ccip [2010-1-5 0]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
SetPointII.lnk - c:\program files\Logitech\SetPoint II\SetpointII.exe [2007-8-30 319488]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [17/12/2009 22:44 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswF sBlk.sys [17/12/2009 22:44 20560]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\as wMonFlt.sys [17/12/2009 22:44 53328]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [04/01/2010 15:38 1153368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [20/11/2009 19:17 240232]
R3 LADF_DHP2;G35 DHP2 Filter Driver;c:\windows\System32\drivers\ladfDHP2i386.sy s [28/05/2009 11:07 53520]
R3 LADF_SBVM;G35 SBVM Filter Driver;c:\windows\System32\drivers\ladfSBVMi386.sy s [28/05/2009 11:07 334992]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\System32\drivers\LGBusEnum.sys [23/11/2009 17:37 19720]
R3 LGPBTDD;LGPBTDD.sys Display Driver;c:\windows\System32\drivers\LGPBTDD.sys [01/07/2009 11:51 23432]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\System32\drivers\LGVirHid.sys [23/11/2009 17:37 14856]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\System32\drivers\Rt86win7.sys [01/03/2009 23:05 139776]
S2 GEST Service;GEST Service for program management.;c:\program files\GIGABYTE\EnergySaver\GSvr.exe [17/12/2009 21:33 68136]
S2 gupdate;Servicio Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [17/12/2009 23:35 135664]
.
Contents of the 'Scheduled Tasks' folder

2010-01-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-17 22:35]

2010-01-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-17 22:35]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.es/
IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_5F1A 57F0B9B89E2E.dll/cmsidewiki.html
FF - ProfilePath - c:\users\Alvaro\AppData\Roaming\Mozilla\Firefox\Pr ofiles\cqccllu0.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.es/
FF - component: c:\users\Alvaro\AppData\Roaming\Mozilla\Firefox\Pr ofiles\cqccllu0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\DictionaryCompressionFF.d ll
FF - component: c:\users\Alvaro\AppData\Roaming\Mozilla\Firefox\Pr ofiles\cqccllu0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.d ll
FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dv.dll
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PC W\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\WUDFHost.exe
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\windows\system32\conhost.exe
c:\windows\system32\conhost.exe
c:\windows\RtHDVCpl.exe
c:\program files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
c:\windows\Microsoft.NET\Framework\v2.0.50727\dfsv c.exe
c:\program files\Logitech\GamePanel Software\Applets\LCDCountdown.exe
c:\program files\Logitech\GamePanel Software\Applets\LCDMedia.exe
c:\program files\Logitech\GamePanel Software\Applets\LCDPop3.exe
c:\program files\Logitech\GamePanel Software\Applets\LCDRSS.exe
c:\program files\Logitech\GamePanel Software\Applets\ColorOnly\LCDMovieViewer.exe
c:\program files\Logitech\GamePanel Software\Applets\ColorOnly\LCDYT.exe
c:\program files\Logitech\GamePanel Software\Applets\ColorOnly\LCDPictureViewer.exe
c:\program files\Logitech\GamePanel Software\Applets\LCDClock.exe
c:\program files\Windows Media Player\WMPSideShowGadget.exe
c:\program files\Common Files\Steam\SteamService.exe
c:\program files\Windows Media Player\wmplayer.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\taskhost.exe
.
************************************************** ************************
.
Completion time: 2010-01-25 16:08:21 - machine was rebooted
ComboFix-quarantined-files.txt 2010-01-25 15:08
ComboFix2.txt 2010-01-22 14:46
ComboFix3.txt 2010-01-21 23:50
ComboFix4.txt 2010-01-21 18:18
ComboFix5.txt 2010-01-25 14:14

Pre-Run: 334.976.454.656 bytes libres
Post-Run: 334.868.344.832 bytes libres

- - End Of File - - 30AF2C0B4808A7FEA418928470E97479

jbex · #13 26-ene-2010, 17:03

Realiza un escaneo a tu sistema desde el modo seguro con funciones de red con FREE ANTIVIRUS online: ActiveScan 2.0 - PANDA SECURITY

La verdad es que miro tu log y veo que vuelve a crear los archivos eliminados, síntoma de que esta en memoria.

A ver si logramos algo de esta manera.

Un saludo

Albaco · #14 01-feb-2010, 11:46

El Panda security en modo aprueba de fallos no encuentra nada.

facaor · #15 01-feb-2010, 19:37

Vamos ha probrar a limpiar inutilizando el sistema operativo, es decir tratar de limpiar tu PC, a parte del Windows, o sin que este en juego. Para ello:

Dr.Web LiveCD o Kaspersky Rescue Disk LiveCD . Un saludo.