((((((((((((((((((((((((((((((((( Cargando Puntos Reg ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* entradas vacías & entradas legítimas predeterminadas no son mostradas

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"CTDVDDet"="C:\Archivos de programa\Creative\SBAudigy2\DVDAudio\CTDVDDet.EXE" [2002-09-29 19:00]
"CTHelper"="CTHELPER.EXE" [2002-11-13 06:11 C:\WINDOWS\system32\CTHELPER.EXE]
"AsioReg"="REGSVR32.exe" [2004-08-19 09:43 C:\WINDOWS\system32\regsvr32.exe]
"SBDrvDet"="C:\Archivos de programa\Creative\SB Drive Det\SBDrvDet.exe" [2002-12-03 12:06]
"UpdReg"="C:\WINDOWS\UpdReg.EXE" [2000-05-10 19:00]
"CTStartup"="C:\Archivos de programa\Creative\Splash Screen\CTEaxSpl.exe" [2002-09-12 19:04]
"IMJPMIG8.2"="msime82.exe" []
"PCSuiteTrayApplication"="C:\ARCHIV~1\Nokia\NOKIAP ~1\LAUNCH~1.exe" [2006-04-26 02:29]
"FG_Monitor"="C:\Archivos de programa\Folder Guard Pro\FGKey.exe" [2007-02-24 18:00]
"Amok web bash obj"="C:\Documents and Settings\All Users\Datos de programa\seek film amok web\32 JUGS.exe" [2007-10-22 13:25]
"Acrobat Assistant 7.0"="C:\Archivos de programa\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [2004-12-14 02:12]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 09:42]
"MsServer"="msfun80.exe" []
"Kind info"="C:\DOCUME~1\edohen\DATOSD~1\AMENDE~1\burn dash chic.exe" [2007-10-09 10:24]
"msnmsgr"="C:\Archivos de programa\MSN Messenger\msnmsgr.exe" [2007-01-19 06:55]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DfLogon]
LogonDll.dll 2004-04-13 11:04 49152 C:\WINDOWS\system32\LogonDll.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\reset5]
reset5.dll 2002-09-09 16:30 17408 C:\WINDOWS\system32\reset5.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Caffe-Server]
f:\programas\antaciber\antamedia 5211 con crack\crack caffe 5\server.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
"C:\Archivos de programa\MSN Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
"C:\Archivos de programa\Winamp\winampa.exe"

R0 DeepFrz;DeepFrz;C:\WINDOWS\system32\drivers\DeepFr z.sys
R0 viamraid;viamraid;C:\WINDOWS\system32\DRIVERS\viam raid.sys
R2 FGUARD32;FGUARD32;\??\C:\Archivos de programa\Folder Guard Pro\FGUARD32.SYS
R2 SMTPSVC;Protocolo simple de transferencia de correo (SMTP);C:\WINDOWS\system32\inetsrv\inetinfo.exe
R3 ctgame;Game Port;C:\WINDOWS\system32\DRIVERS\ctgame.sys
S3 usb2vcom;Nokia CA-42 USB;C:\WINDOWS\system32\DRIVERS\usb2vcom.sys

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{06096525-66e6-11dc-99d3-00e07df1da7c}]
Auto\command - fun.xls.exe
AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{531b6b71-66e3-11dc-99d1-00138f6ea0cb}]
Auto\command - H:\fun.xls.exe
AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{7e8f5d86-66f0-11dc-9562-806d6172696f}]
Auto\command - C:\fun.xls.exe
AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{8ce1ccf7-7b47-11dc-9bdc-00e07df1da7c}]
Auto\command - J:\fun.xls.exe
AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{8ce1ccf8-7b47-11dc-9bdc-00e07df1da7c}]
Auto\command - H:\fun.xls.exe
AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{aa8ebcfd-675f-11dc-99db-00e07df1da7c}]
Auto\command - H:\fun.xls.exe
AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{aa8ebd00-675f-11dc-99db-00e07df1da7c}]
Auto\command - H:\fun.xls.exe
AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{f8e5036c-6744-11dc-99d9-00e07df1da7c}]
Auto\command - H:\fun.xls.exe
AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe

*Newly Created Service* - CATCHME
.
Contenido de carpeta 'Tareas Programadas'
"2007-10-22 18:00:00 C:\WINDOWS\Tasks\AA9738D09188AD30.job"
"2007-10-22 18:09:36 C:\WINDOWS\Tasks\Comprobar actualizaciones de Windows Live Toolbar.job"
.
************************************************** ************************

catchme 0.3.1232 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-22 14:20:20
Windows 5.1.2600 Service Pack 2 NTFS

escaneando procesos ocultos ...

escaneando entradas ocultas de autostart ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
CTStartup = "C:\Archivos de programa\Creative\Splash Screen\CTEaxSpl.EXE" /run??????????????????????h?@?x??????wD??????sx??s\ Z??????y??w????@@@????|D@@?????>??w?????97?H?????? |???|???????|L(?s?97??????/?s????????D???????????????????3????????????+?s@@@? D???`|?w??????@
IMJPMIG8.2 = msime82.exe???.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
MsServer = msfun80.exe???.

escaneando archivos ocultos ...

el escaneo se completo con exito
archivos ocultos: 0

************************************************** ************************
.
Tiempo completado: 2007-10-22 14:21:22
.
--- E O F ---