Foro de Spyware - Ver Mensaje Individual - El ordenador va muy lento y la conexion a internet se desconecta sola

Tema: El ordenador va muy lento y la conexion a internet se desconecta sola

Ver Mensaje Individual

post #10 (permalink)

02/12/07, 09:06:08

Aitor77

Usuario

Registrado: nov 2007

Ubicación: España

Mensajes: 13

Re: El ordenador va muy lento y la conexion a internet se desconecta sola

Hola, muchas gracias, lo de la pantalla azul ya lo he solucionado. El ordenador va ahora algo mejor pero no paran de salirme avisos de que tengo un virus y me aparece una pagina de internet para que me descargue un anti-virus. Te dejo el nuevo log del combofix

ComboFix 07-11-19.4C - Aitor 2007-12-02 14:45:17.6 - NTFSx86
Se ejecuta desde: C:\Documents and Settings\Aitor\Escritorio\ComboFix.exe
.

(((((((((((((((((((((((((((((((((((( Otras eliminaciones )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Live Safety Center.lnk
C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Online Security Guide.lnk
C:\WINDOWS\system32\ntos.exe
C:\WINDOWS\system32\uuliojzh.dllbox
C:\WINDOWS\system32\wsnpoem\audio.dll
C:\WINDOWS\system32\wsnpoem\video.dll
C:\WINDOWS\system32\wsnpoem

.
(((((((((((((((((( Archivos creados desde 2007-11-02 - 2007-12-02 )))))))))))))))))))))))))))))))))
.

2007-12-02 14:54 43,341 --a------ C:\8e9w3l6u1g1.exe
2007-12-02 14:54 20,810 ---hs---- C:\WINDOWS\system32\uuliojzh.dllbox
2007-12-02 12:16 13,681 --ahs---- C:\WINDOWS\system32\oqstv.ini
2007-12-02 12:16 13,579 --ahs---- C:\WINDOWS\system32\oqstv.ini2
2007-12-02 12:07 9,728 --a------ C:\symantec.exe
2007-12-02 12:00 793,724 ---hs---- C:\WINDOWS\system32\jkputqiy.ini
2007-12-02 12:00 85,056 --a------ C:\WINDOWS\system32\yiqtupkj.dll
2007-12-02 11:52 145,984 --a------ C:\WINDOWS\system32\uuliojzh.dll
2007-12-02 11:49 71,232 --a------ C:\WINDOWS\system32\ylvpnyga.exe
2007-12-01 15:03 <DIR> d--h----- C:\Archivos de programa\Archivos comunes\Carlson
2007-12-01 14:50 4,096 -ra------ C:\WINDOWS\system32\ksuser.dll
2007-12-01 14:49 134,272 --a------ C:\WINDOWS\system32\drivers\portcls.sys
2007-12-01 14:40 182,880 --a------ C:\WINDOWS\system32\iuengine.dll
2007-12-01 14:24 195,072 --a------ C:\WINDOWS\system32\E0chis.exe
2007-12-01 14:08 569,856 -r-hs---- C:\WINDOWS\Mrshield.exe
2007-12-01 14:00 569,856 --a------ C:\WINDOWS\system32\ths.exe
2007-12-01 13:58 58,820 -ra------ C:\WINDOWS\system32\scrcs.exe
2007-12-01 13:46 54,784 --ah----- C:\WINDOWS\system32\pdhtek.exe
2007-12-01 13:45 59,050 --ah----- C:\WINDOWS\system32\kfktkd.exe
2007-12-01 13:42 <DIR> d-------- C:\Archivos de programa\fjhgfdsdfg
2007-12-01 13:42 991,314 --a------ C:\WINDOWS\system32\eg.exe
2007-12-01 13:41 <DIR> d-------- C:\WINDOWS\SystemTemp
2007-12-01 13:41 548,864 --a------ C:\WINDOWS\system32\Syst3m32.exe
2007-12-01 13:32 39,936 --a------ C:\WINDOWS\system32\ljjhhfd.dll
2007-12-01 13:32 37,376 --a------ C:\WINDOWS\system32\qomjkhi.dll
2007-12-01 13:32 37,376 --a------ C:\WINDOWS\system32\efcayyx.dll
2007-12-01 13:30 41,888 --a------ C:\sdnux.exe
2007-12-01 13:28 150,016 --a--c--- C:\WINDOWS\system32\dllcache\winzm.ime
2007-12-01 13:28 150,016 --a--c--- C:\WINDOWS\system32\dllcache\winsp.ime
2007-12-01 13:28 150,016 --a--c--- C:\WINDOWS\system32\dllcache\winpy.ime
2007-12-01 13:28 129,536 --a--c--- C:\WINDOWS\system32\dllcache\tsprof.exe
2007-12-01 13:28 101,888 --a--c--- C:\WINDOWS\system32\dllcache\srusbusd.dll
2007-12-01 13:28 73,728 --a--c--- C:\WINDOWS\system32\dllcache\wam51.dll
2007-12-01 13:28 49,664 --a--c--- C:\WINDOWS\system32\dllcache\wamreg51.dll
2007-12-01 13:28 42,496 --a--c--- C:\WINDOWS\system32\dllcache\sspifilt.dll
2007-12-01 13:28 40,960 --a--c--- C:\WINDOWS\system32\dllcache\ssinc51.dll
2007-12-01 13:28 9,216 --a--c--- C:\WINDOWS\system32\dllcache\wamps51.dll
2007-12-01 13:27 205,824 --a--c--- C:\WINDOWS\system32\dllcache\EXCH_seo.dll
2007-12-01 13:27 138,240 --a--c--- C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe
2007-12-01 13:27 132,096 --a--c--- C:\WINDOWS\system32\dllcache\quser.exe
2007-12-01 13:27 130,048 --a--c--- C:\WINDOWS\system32\dllcache\register.exe
2007-12-01 13:27 124,928 --a--c--- C:\WINDOWS\system32\dllcache\query.exe
2007-12-01 13:27 121,856 --a--c--- C:\WINDOWS\system32\dllcache\migregdb.exe
2007-12-01 13:27 92,416 --a--c--- C:\WINDOWS\system32\dllcache\mga.sys
2007-12-01 13:27 92,032 --a--c--- C:\WINDOWS\system32\dllcache\mga.dll
2007-12-01 13:27 80,896 --a--c--- C:\WINDOWS\system32\dllcache\rwia330.dll
2007-12-01 13:27 80,896 --a--c--- C:\WINDOWS\system32\dllcache\rwia001.dll
2007-12-01 13:27 78,336 --a--c--- C:\WINDOWS\system32\dllcache\metada51.dll
2007-12-01 13:27 73,728 --a--c--- C:\WINDOWS\system32\dllcache\quick.ime
2007-12-01 13:27 65,536 --a--c--- C:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll
2007-12-01 13:27 57,856 --a--c--- C:\WINDOWS\system32\dllcache\EXCH_scripto.dll
2007-12-01 13:27 53,248 --a--c--- C:\WINDOWS\system32\dllcache\nextlink.dll
2007-12-01 13:27 38,912 --a--c--- C:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll
2007-12-01 13:27 34,304 --a--c--- C:\WINDOWS\system32\dllcache\md5filt.dll
2007-12-01 13:27 26,624 --a--c--- C:\WINDOWS\system32\dllcache\rw330ext.dll
2007-12-01 13:27 26,624 --a--c--- C:\WINDOWS\system32\dllcache\mdsync.dll
2007-12-01 13:27 26,112 --a--c--- C:\WINDOWS\system32\dllcache\EXCH_seos.dll
2007-12-01 13:27 25,088 --a--c--- C:\WINDOWS\system32\dllcache\rw001ext.dll
2007-12-01 13:27 24,576 --a--c--- C:\WINDOWS\system32\dllcache\romanime.ime
2007-12-01 13:27 15,872 --a--c--- C:\WINDOWS\system32\dllcache\padrs404.dll
2007-12-01 13:27 9,216 --a--c--- C:\WINDOWS\system32\dllcache\EXCH_rwnh.dll
2007-12-01 13:27 7,168 --a--c--- C:\WINDOWS\system32\dllcache\pwsdata.dll
2007-12-01 13:27 4,096 --a--c--- C:\WINDOWS\system32\dllcache\rpcref.dll
2007-12-01 13:26 471,102 --a--c--- C:\WINDOWS\system32\dllcache\imskdic.dll
2007-12-01 13:26 174,592 --a--c--- C:\WINDOWS\system32\dllcache\imscinst.exe
2007-12-01 13:26 151,552 --a--c--- C:\WINDOWS\system32\dllcache\fpadmcgi.exe
2007-12-01 13:26 129,536 --a--c--- C:\WINDOWS\system32\dllcache\iische51.dll
2007-12-01 13:26 60,928 --a--c--- C:\WINDOWS\system32\dllcache\iisclex4.dll
2007-12-01 13:26 21,504 --a--c--- C:\WINDOWS\system32\dllcache\iisadmin.dll
2007-12-01 13:25 595,456 --a--c--- C:\WINDOWS\system32\dllcache\cintsetp.exe
2007-12-01 13:25 201,216 --a--c--- C:\WINDOWS\system32\dllcache\cintime.dll
2007-12-01 13:25 172,544 --a--c--- C:\WINDOWS\system32\dllcache\iisui.dll
2007-12-01 13:25 143,360 --a--c--- C:\WINDOWS\system32\dllcache\shtml.exe
2007-12-01 13:25 95,744 --a--c--- C:\WINDOWS\system32\dllcache\certmap.ocx
2007-12-01 13:25 27,136 --a--c--- C:\WINDOWS\system32\dllcache\admexs.dll
2007-12-01 13:25 21,504 --a--c--- C:\WINDOWS\system32\dllcache\cintlgnt.ime
2007-12-01 13:25 20,536 --a--c--- C:\WINDOWS\system32\dllcache\shtml.dll
2007-12-01 13:25 19,456 --a--c--- C:\WINDOWS\system32\dllcache\agt0411.dll
2007-12-01 13:25 7,168 --a--c--- C:\WINDOWS\system32\dllcache\wamregps.dll
2007-12-01 13:25 6,144 --a--c--- C:\WINDOWS\system32\dllcache\ftpsapi2.dll
2007-12-01 13:21 <DIR> d-------- C:\WINDOWS\LastGood
2007-12-01 13:19 749 -rah----- C:\WINDOWS\system32\sapi.cpl.manifest
2007-12-01 13:19 749 -rah----- C:\WINDOWS\system32\nwc.cpl.manifest
2007-12-01 13:19 749 -rah----- C:\WINDOWS\system32\ncpa.cpl.manifest
2007-12-01 13:18 1,126,400 --a--c--- C:\WINDOWS\system32\dllcache\conf.exe
2007-12-01 13:18 933,888 --a--c--- C:\WINDOWS\system32\dllcache\moviemk.exe
2007-12-01 13:18 488,448 --a--c--- C:\WINDOWS\system32\dllcache\rstrui.exe
2007-12-01 13:18 417,792 --a--c--- C:\WINDOWS\system32\dllcache\dlimport.exe
2007-12-01 13:18 348,160 --a--c--- C:\WINDOWS\system32\dllcache\setup_wm.exe
2007-12-01 13:18 262,144 --a--c--- C:\WINDOWS\system32\dllcache\msconfig.exe
2007-12-01 13:18 196,608 --a--c--- C:\WINDOWS\system32\dllcache\icwtutor.exe
2007-12-01 13:18 183,296 --a--c--- C:\WINDOWS\system32\dllcache\setup50.exe
2007-12-01 13:18 172,544 --a--c--- C:\WINDOWS\system32\dllcache\msimn.exe
2007-12-01 13:18 162,304 --a--c--- C:\WINDOWS\system32\dllcache\srdiag.exe
2007-12-01 13:18 159,744 --a--c--- C:\WINDOWS\system32\dllcache\icwhelp.dll
2007-12-01 13:18 158,208 --a--c--- C:\WINDOWS\system32\dllcache\wab.exe
2007-12-01 13:18 155,648 --a--c--- C:\WINDOWS\system32\dllcache\mnmsrvc.exe
2007-12-01 13:18 147,456 --a--c--- C:\WINDOWS\system32\dllcache\icwrmind.exe
2007-12-01 13:18 143,360 --a--c--- C:\WINDOWS\system32\dllcache\msoobe.exe
2007-12-01 13:18 142,848 --a--c--- C:\WINDOWS\system32\dllcache\wabmig.exe

.
(((((((((((((((((((((((((((((((((((((( Reporte Find3M )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
2007-12-02 13:55 54,784 ---ha-w C:\WINDOWS\system32\asxbhi.exe
2007-12-02 13:54 43,520 ----a-w C:\WINDOWS\system32\ftp.exe
2007-12-02 13:54 17,920 ----a-w C:\WINDOWS\system32\tftp.exe
2007-12-02 10:58 76,864 ----a-w C:\WINDOWS\system32\iheqjahs.dll
2007-12-02 10:52 145,984 ----a-w C:\WINDOWS\system32\axsxkofr.dll
2007-12-02 10:46 1,941,504 ----a-w C:\WINDOWS\mixer.exe
2007-12-01 15:12 245,760 ----a-w C:\WINDOWS\system32\wscript.exe
2007-12-01 15:12 177,152 ----a-w C:\WINDOWS\system32\wextract.exe
2007-12-01 15:12 146,432 ----a-w C:\WINDOWS\system32\wpabaln.exe
2007-12-01 15:12 144,896 ----a-w C:\WINDOWS\system32\wpnpinst.exe
2007-12-01 15:12 143,360 ----a-w C:\WINDOWS\system32\xcopy.exe
2007-12-01 15:12 140,800 ----a-w C:\WINDOWS\twunk_32.exe
2007-12-01 15:12 131,072 ----a-w C:\WINDOWS\taskman.exe
2007-12-01 15:12 126,976 ----a-w C:\WINDOWS\system32\winmsd.exe
2007-12-01 15:12 123,392 ----a-w C:\WINDOWS\system32\winhlp32.exe
2007-12-01 15:12 120,832 ----a-w C:\WINDOWS\system32\write.exe
2007-12-01 15:12 119,296 ----a-w C:\WINDOWS\system32\winver.exe
2007-12-01 14:34 204,800 ----a-w C:\WINDOWS\system32\usrmlnka.exe
2007-12-01 14:34 196,608 ----a-w C:\WINDOWS\system32\usrshuta.exe
2007-12-01 14:34 188,416 ----a-w C:\WINDOWS\system32\usrprbda.exe
2007-12-01 14:34 152,064 ----a-w C:\WINDOWS\system32\typeperf.exe
2007-12-01 14:34 148,992 ----a-w C:\WINDOWS\system32\vssadmin.exe
2007-12-01 14:34 137,728 ----a-w C:\WINDOWS\system32\userinit.exe
2007-12-01 14:34 131,584 ----a-w C:\WINDOWS\system32\ups.exe
2007-12-01 14:34 130,048 ----a-w C:\WINDOWS\system32\upnpcont.exe
2007-12-01 14:34 119,296 ----a-w C:\WINDOWS\system32\unlodctr.exe
2007-12-01 14:33 347,648 ----a-w C:\WINDOWS\system32\tracerpt.exe
2007-12-01 14:33 323,072 ----a-w C:\WINDOWS\system32\progman.exe
2007-12-01 14:33 249,344 ----a-w C:\WINDOWS\system32\taskmgr.exe
2007-12-01 14:33 247,808 ----a-w C:\WINDOWS\system32\rsvp.exe
2007-12-01 14:33 235,008 ----a-w C:\WINDOWS\system32\schtasks.exe
2007-12-01 14:33 220,160 ----a-w C:\WINDOWS\system32\sysocmgr.exe
2007-12-01 14:33 219,136 ----a-w C:\WINDOWS\system32\rsnotify.exe
2007-12-01 14:33 212,480 ----a-w C:\WINDOWS\system32\scardsvr.exe
2007-12-01 14:33 200,704 ----a-w C:\WINDOWS\system32\smlogsvc.exe
2007-12-01 14:33 189,952 ----a-w C:\WINDOWS\system32\tlntsess.exe
2007-12-01 14:33 189,952 ----a-w C:\WINDOWS\system32\rtcshare.exe
2007-12-01 14:33 188,416 ----a-w C:\WINDOWS\system32\telnet.exe
2007-12-01 14:33 187,392 ----a-w C:\WINDOWS\system32\sdbinst.exe
2007-12-01 14:33 185,856 ----a-w C:\WINDOWS\system32\shrpubw.exe
2007-12-01 14:33 185,344 ----a-w C:\WINDOWS\system32\systeminfo.exe
2007-12-01 14:33 183,808 ----a-w C:\WINDOWS\system32\tlntsvr.exe
2007-12-01 14:33 178,176 ----a-w C:\WINDOWS\system32\rsopprov.exe
2007-12-01 14:33 177,152 ----a-w C:\WINDOWS\system32\rdshost.exe
2007-12-01 14:33 175,104 ----a-w C:\WINDOWS\system32\tlntadmn.exe
2007-12-01 14:33 169,984 ----a-w C:\WINDOWS\system32\rasphone.exe
2007-12-01 14:33 169,472 ----a-w C:\WINDOWS\system32\packager.exe
2007-12-01 14:33 168,448 ----a-w C:\WINDOWS\system32\rsm.exe
2007-12-01 14:33 166,400 ----a-w C:\WINDOWS\system32\syncapp.exe
2007-12-01 14:33 165,376 ----a-w C:\WINDOWS\system32\reg.exe
2007-12-01 14:33 164,352 ----a-w C:\WINDOWS\system32\rsmui.exe
2007-12-01 14:33 160,768 ----a-w C:\WINDOWS\system32\proquota.exe
2007-12-01 14:33 159,232 ----a-w C:\WINDOWS\system32\rdpclip.exe
2007-12-01 14:33 157,184 ----a-w C:\WINDOWS\system32\osuninst.exe
2007-12-01 14:33 153,088 ----a-w C:\WINDOWS\system32\syskey.exe
2007-12-01 14:33 149,504 ----a-w C:\WINDOWS\system32\ping6.exe
2007-12-01 14:33 148,992 ----a-w C:\WINDOWS\system32\relog.exe
2007-12-01 14:33 148,992 ----a-w C:\WINDOWS\system32\regini.exe
2007-12-01 14:33 148,480 ----a-w C:\WINDOWS\system32\shmgrate.exe
2007-12-01 14:33 147,456 ----a-w C:\WINDOWS\system32\tracert6.exe
2007-12-01 14:33 146,432 ----a-w C:\WINDOWS\system32\sc.exe
2007-12-01 14:33 144,896 ----a-w C:\WINDOWS\system32\sethc.exe
2007-12-01 14:33 140,800 ----a-w C:\WINDOWS\system32\routemon.exe
2007-12-01 14:33 139,776 ----a-w C:\WINDOWS\system32\rsmsink.exe
2007-12-01 14:33 139,264 ----a-w C:\WINDOWS\system32\sort.exe
2007-12-01 14:33 139,264 ----a-w C:\WINDOWS\system32\skeys.exe
2007-12-01 14:33 138,240 ----a-w C:\WINDOWS\system32\qwinsta.exe
2007-12-01 14:33 138,240 ----a-w C:\WINDOWS\system32\proxycfg.exe
2007-12-01 14:33 137,728 ----a-w C:\WINDOWS\system32\pathping.exe
2007-12-01 14:33 136,704 ----a-w C:\WINDOWS\system32\route.exe
2007-12-01 14:33 136,704 ----a-w C:\WINDOWS\system32\rcp.exe
2007-12-01 14:33 136,192 ----a-w C:\WINDOWS\system32\stimon.exe
2007-12-01 14:33 136,192 ----a-w C:\WINDOWS\system32\setup.exe
2007-12-01 14:33 135,168 ----a-w C:\WINDOWS\system32\savedump.exe
2007-12-01 14:33 134,656 ----a-w C:\WINDOWS\system32\tcpsvcs.exe
2007-12-01 14:33 134,144 ----a-w C:\WINDOWS\system32\qprocess.exe
2007-12-01 14:33 133,632 ----a-w C:\WINDOWS\system32\shutdown.exe
2007-12-01 14:33 133,120 ----a-w C:\WINDOWS\system32\ping.exe
2007-12-01 14:33 132,608 ----a-w C:\WINDOWS\system32\secedit.exe
2007-12-01 14:33 132,096 ----a-w C:\WINDOWS\system32\runas.exe
2007-12-01 14:33 131,072 ----a-w C:\WINDOWS\system32\taskman.exe
2007-12-01 14:33 130,560 ----a-w C:\WINDOWS\system32\pentnt.exe
2007-12-01 14:33 130,048 ----a-w C:\WINDOWS\system32\rsh.exe
2007-12-01 14:33 129,536 ----a-w C:\WINDOWS\system32\perfmon.exe
2007-12-01 14:33 128,512 ----a-w C:\WINDOWS\system32\tcmsetup.exe
2007-12-01 14:33 128,512 ----a-w C:\WINDOWS\system32\rexec.exe
2007-12-01 14:33 128,000 ----a-w C:\WINDOWS\system32\runonce.exe
2007-12-01 14:33 128,000 ----a-w C:\WINDOWS\system32\replace.exe
2007-12-01 14:33 127,488 ----a-w C:\WINDOWS\system32\rdsaddin.exe
2007-12-01 14:33 126,976 ----a-w C:\WINDOWS\system32\tracert.exe
2007-12-01 14:33 126,976 ----a-w C:\WINDOWS\system32\rasdial.exe
2007-12-01 14:33 126,976 ----a-w C:\WINDOWS\system32\rasautou.exe
2007-12-01 14:33 125,952 ----a-w C:\WINDOWS\system32\spiisupd.exe
2007-12-01 14:33 125,440 ----a-w C:\WINDOWS\system32\sfc.exe
2007-12-01 14:33 124,928 ----a-w C:\WINDOWS\system32\regsvr32.exe
2007-12-01 14:33 124,416 ----a-w C:\WINDOWS\system32\subst.exe
2007-12-01 14:33 124,416 ----a-w C:\WINDOWS\system32\print.exe
2007-12-01 14:33 122,368 ----a-w C:\WINDOWS\system32\recover.exe
2007-12-01 14:33 119,808 ----a-w C:\WINDOWS\system32\regwiz.exe
2007-12-01 14:33 118,784 ----a-w C:\WINDOWS\system32\regedt32.exe
.

((((((((((((((((((((((((((((( snapshot_2007-12-02_12.17.33.95 )))))))))))))))))))))))))))))))))))))))))
.
- 2007-12-02 11:13:18 43,520 -c--a-w C:\WINDOWS\system32\dllcache\ftp.exe
+ 2007-12-02 13:54:20 43,520 -c--a-w C:\WINDOWS\system32\dllcache\ftp.exe
- 2007-12-02 11:13:18 17,920 -c--a-w C:\WINDOWS\system32\dllcache\tftp.exe
+ 2007-12-02 13:54:20 17,920 -c--a-w C:\WINDOWS\system32\dllcache\tftp.exe
.
((((((((((((((((((((((((((((((((( Cargando Puntos Reg ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* entradas vac¡as & entradas leg¡timas predeterminadas no son mostradas

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A95B2816-1D7E-4561-A202-68C0DE02353A}]
2007-12-02 11:52 145984 --a------ C:\WINDOWS\system32\uuliojzh.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{d4cf599d-9bac-45ce-84c5-9a730085ff21}]
2007-12-02 11:58 76864 --a------ C:\WINDOWS\System32\iheqjahs.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA9163CF-D8C8-4205-8545-49BB4EAE0058}]
2007-11-30 21:22 324192 --a------ C:\WINDOWS\System32\vtsqo.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{11A69AE4-FBED-4832-A2BF-45AF82825583}"= C:\WINDOWS\system32\uuliojzh.dll [2007-12-02 11:52 145984]

[HKEY_CLASSES_ROOT\clsid\{11a69ae4-fbed-4832-a2bf-45af82825583}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{11A69AE4-FBED-4832-A2BF-45AF82825583}"= C:\WINDOWS\system32\uuliojzh.dll [2007-12-02 11:52 145984]

[HKEY_CLASSES_ROOT\clsid\{11a69ae4-fbed-4832-a2bf-45af82825583}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\ctfmon.exe" [2002-09-09 18:51]
"SUPERAntiSpyware"="C:\Archivos de programa\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-11-30 21:38]
"MsnMsgr"="C:\Archivos de programa\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:54]
"MicroSoft Legal Syst3m32"="Syst3m32.exe" [2007-12-01 13:41 C:\WINDOWS\system32\Syst3m32.exe]
"WMI Standard Event Consumer - hosting"="C:\WINDOWS\System32\wbem\scrcs.exe" [2007-12-01 11:48]
"HOT FIX"="E0chis.exe" [2007-12-01 15:31 C:\WINDOWS\system32\E0chis.exe]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\RunOnce]
"HOT FIX"="E0chis.exe" [2007-12-01 15:31 C:\WINDOWS\system32\E0chis.exe]
"MicroSoft Legal Syst3m32"="Syst3m32.exe" [2007-12-01 13:41 C:\WINDOWS\system32\Syst3m32.exe]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\RunServices]
"WMI Standard Event Consumer - hosting"="C:\WINDOWS\System32\wbem\scrcs.exe" [2007-12-01 11:48]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"C-Media Mixer"="Mixer.exe" [2007-12-02 11:46 C:\WINDOWS\mixer.exe]
"Adobe Reader Speed Launcher"="C:\Archivos de programa\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 18:51]
"QuickTime Task"="C:\Archivos de programa\QuickTime\QTTask.exe" [2007-11-30 21:35]
"SunJavaUpdateSched"="C:\Archivos de programa\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11]
"Advanced DHTML Enable"="C:\WINDOWS\System32\mlycnlbr.exe" [2007-12-01 13:32]
"MicroSoft Legal Syst3m32"="Syst3m32.exe" [2007-12-01 13:41 C:\WINDOWS\system32\Syst3m32.exe]
"kiss"="C:\Archivos de programa\fjhgfdsdfg\pingy.exe" [2007-09-14 05:14]
"WMI Standard Event Consumer - hosting"="C:\WINDOWS\System32\wbem\scrcs.exe" [2007-12-01 11:48]
"HOT FIX"="E0chis.exe" [2007-12-01 15:31 C:\WINDOWS\system32\E0chis.exe]
"1476f6e6"="C:\WINDOWS\System32\yiqtupkj.dll" [2007-12-02 12:00]
"Windows Network Firewall"="C:\WINDOWS\System32\firewall.exe" [2002-09-09 18:51]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\RunOnce]
"MicroSoft Legal Syst3m32"="Syst3m32.exe" [2007-12-01 13:41 C:\WINDOWS\system32\Syst3m32.exe]
"HOT FIX"="E0chis.exe" [2007-12-01 15:31 C:\WINDOWS\system32\E0chis.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\RunServices]
"WMI Standard Event Consumer - hosting"="C:\WINDOWS\System32\wbem\scrcs.exe" [2007-12-01 11:48]
"Windows Update"="ssms.exe" []
"MicroSoft Legal Syst3m32"="Syst3m32.exe" [2007-12-01 13:41 C:\WINDOWS\system32\Syst3m32.exe]
"HOT FIX"="E0chis.exe" [2007-12-01 15:31 C:\WINDOWS\system32\E0chis.exe]
"smsger"="C:\WINDOWS\System32\Win.exe" []

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2002-09-09 18:51]
"Auto File System Conversion Utility"="C:\WINDOWS\System32\wbem\scricon.exe" [2007-11-30 19:01]
"WMI Standard Event Consumer - hosting"="C:\WINDOWS\System32\wbem\scrcs.exe" [2007-12-01 11:48]
"MicroSoft Legal Syst3m32"="Syst3m32.exe" [2007-12-01 13:41 C:\WINDOWS\system32\Syst3m32.exe]
"HOT FIX"="E0chis.exe" [2007-12-01 15:31 C:\WINDOWS\system32\E0chis.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\RunOnce]
"tscuninstall"="C:\WINDOWS\system32\tscupgrd.e xe" [2007-12-01 15:33]
"MicroSoft Legal Syst3m32"="Syst3m32.exe" [2007-12-01 13:41 C:\WINDOWS\system32\Syst3m32.exe]
"HOT FIX"="E0chis.exe" [2007-12-01 15:31 C:\WINDOWS\system32\E0chis.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\RunServices]
"Auto File System Conversion Utility"="C:\WINDOWS\System32\wbem\scricon.exe" [2007-11-30 19:01]
"WMI Standard Event Consumer - hosting"="C:\WINDOWS\System32\wbem\scrcs.exe" [2007-12-01 11:48]

[hklm\software\microsoft\windows\currentversion\exp lorer\shellexecutehooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Archivos de programa\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Archivos de programa\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Archivos de programa\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\uuliojzh]
uuliojzh.dll 2007-12-02 11:52 145984 C:\WINDOWS\system32\uuliojzh.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\lsa]
"Authentication Packages"= msv1_0 C:\WINDOWS\System32\vtsqo.dll
"WMI Standard Event Consumer - hosting"= C:\WINDOWS\System32\wbem\scrcs.exe

R2 Microsoft register shield;Microsoft register shield;"C:\WINDOWS\Mrshield.exe"
S1 d666a91c.sys;d666a91c.sys;\??\C:\WINDOWS\System32\ drivers\d666a91c.sys
S1 f9d29464.sys;f9d29464.sys;\??\C:\WINDOWS\System32\ drivers\f9d29464.sys
S2 Micr0s0ft Agent;Micr0s0ft Agent;"C:\WINDOWS\System32\dllcache\sxch0st.exe"
S2 Microsoft Media;Microsoft Media;"C:\WINDOWS\System32\dllcache\Rtsecar.exe"
S2 MSN RAV;MSN RAV;"C:\WINDOWS\system\msnrav.exe"
S3 ctl_w32;ctl_w32;\??\C:\WINDOWS\System32\drivers\ct l_w32.sys

*Newly Created Service* - RUNTIME
.
Contenido de carpeta 'Tareas Programadas'
"2007-11-26 20:02:32 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
.
************************************************** ************************

catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-02 14:56:12
Windows 5.1.2600 Service Pack 1 NTFS

escaneando procesos ocultos ...

C:\Archivos de programa\Internet Explorer\IEXPLORE.EXE [4808] 0x8149B9D0

escaneando entradas ocultas de autostart ...

escaneando archivos ocultos ...

C:\WINDOWS\system32\unrptl.bat 128 bytes

el escaneo se completo con exito
archivos ocultos: 1

************************************************** ************************
.
Tiempo completado: 2007-12-02 14:59:14 - machine was rebooted
C:\ComboFix2.txt ... 2007-12-02 12:19
C:\ComboFix3.txt ... 2007-11-30 19:07
.
--- E O F ---