• Registrarse
  • Iniciar sesión


  • Resultados 1 al 6 de 6

    problema con hotmail (Solucionado)

    Resumen del tema: problema con hotmail (Solucionado) - hola, si bien no spy nuevo en el foro es mi primera consulta. quisiera saber si alguien me puede ayudar. mi cuenta de hotmail manda a mis contactos un correo "raro". pense que era un ...

      
    1. #1
      Usuario Avatar de rugrinba
      Registrado
      sep 2008
      Ubicación
      Paraná
      Mensajes
      3

      problema con hotmail (Solucionado)

      hola, si bien no spy nuevo en el foro es mi primera consulta. quisiera saber si alguien me puede ayudar. mi cuenta de hotmail manda a mis contactos un correo "raro". pense que era un virus de mi pc, entonces analice con nod32 y kaspersky, y nada. me decidi a formatear y hacer una instalacion nueva de windows, pero el problema continua.
      este es el correo que se manda:
      Heya,how are you doing recently ? I would like to introduce you a very good company which i knew.Their website is electbay.com .They can offer you all kinds of electronical products which you need like laptops ,gps ,TV LCD,cell phones,ps3,MP3/4,motorcycles etc........Please take some time to have a check ,there must be somethings you 'd like to purchase .
      Their contact email: [email protected] . MSN: [email protected]
      Hope you have a good mood in shopping from their company !
      Regards 6 u



      Logfile of Trend Micro HijackThis v2.0.3 (BETA)
      Scan saved at 02:03:49 p.m., on 28/01/2010
      Platform: Unknown Windows (WinNT 6.01.3504)
      MSIE: Internet Explorer v8.00 (8.00.7600.16385)
      Boot mode: Normal

      Running processes:
      C:\Windows\system32\taskhost.exe
      C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
      C:\Windows\system32\Dwm.exe
      C:\Windows\Explorer.EXE
      C:\Program Files\PowerISO\PWRISOVM.EXE
      C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
      C:\Windows\SOUNDMAN.EXE
      C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
      C:\Program Files\Windows Live\Messenger\msnmsgr.exe
      C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
      C:\Program Files\Windows Sidebar\sidebar.exe
      C:\Windows\VPro530.exe
      C:\Program Files\Windows Live\Contacts\wlcomm.exe
      C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtblfs.exe
      C:\Windows\system32\wuauclt.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
      O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll
      O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
      O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Users\Matias\AppData\Roaming\FlashGetBHO\FlashGetBHO3.dll
      O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
      O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
      O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
      O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
      O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
      O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
      O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
      O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe"
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
      O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
      O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
      O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICIO LOCAL')
      O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICIO LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
      O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
      O4 - Global Startup: VPro530.lnk = ?
      O9 - Extra button: &Teclado virtual - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
      O9 - Extra button: Compro&bar direcciones URL - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
      O13 - Gopher Prefix:
      O15 - Trusted Zone: http://software.kuaiche.com
      O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
      O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
      O20 - AppInit_DLLs: ??? ?,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll
      O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
      O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
      O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
      O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
      O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
      O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
      O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
      O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
      O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
      O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
      O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
      O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
      O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
      O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
      O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
      O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
      O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
      O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
      O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
      O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
      O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

      --
      End of file - 20852 bytes

      si alguien me puede ayudar le estoy agradecido

    2. #2
      Ex-Colaborador Avatar de GPastor
      Registrado
      mar 2005
      Ubicación
      Perú
      Mensajes
      23.111

      Re: problema con hotmail

      Hola, tu log está limpio, para descartar infecciones sigue estos pasos:

      Descarga, actualiza y ejecuta el programa:
      Descarga CCleaner y ejecútalo usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos, y luego usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).


      - Descarga la herramienta ComboFix.exe y guárdala en el escritorio.
      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Cierra todas las ventanas abiertas.
      • Haz doble clic al archivo ComboFix.exe y sigue las instrucciones.
      • Cuando termine, generará un registro en C:\ComboFix.txt.
        • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
        • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.
      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
      • Reinicia y pega el reporte de C:\ComboFix.txt en este mismo mensaje.


      Saludos

    3. #3
      Usuario Avatar de rugrinba
      Registrado
      sep 2008
      Ubicación
      Paraná
      Mensajes
      3

      Re: problema con hotmail

      hola. gracias por tu ayuda. pase Malwarebytes y me dio limpio. te pego el resultado de ComboFix

      ComboFix 10-01-31.05 - Matias 01/02/2010 11:46:08.1.2 - x86
      Microsoft Windows 7 Ultimate 6.1.7600.0.1252.54.3082.18.1983.1455 [GMT -3:00]
      Running from: c:\descargas\ComboFix.exe
      .

      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .

      c:\program files\FlashGet Network
      c:\program files\FlashGet Network\FlashGet 3\adns.dll
      c:\program files\FlashGet Network\FlashGet 3\btcoreu.dll
      c:\program files\FlashGet Network\FlashGet 3\BugReport.dll
      c:\program files\FlashGet Network\FlashGet 3\BugReport.exe
      c:\program files\FlashGet Network\FlashGet 3\cd1.ico
      c:\program files\FlashGet Network\FlashGet 3\ckcore.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\14_43260.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\28_83260.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\atrc.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\Codecs.zip
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\cook.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\ddnt3260.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\dnet3260.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\drv1.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\drv2.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\drvc.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\hxltcolor.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\raac.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\ralf.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\rv10.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\rv20.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\rv30.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\rv40.dll
      c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\sipr.dll
      c:\program files\FlashGet Network\FlashGet 3\commonlib.dll
      c:\program files\FlashGet Network\FlashGet 3\componentskrnl.dll
      c:\program files\FlashGet Network\FlashGet 3\config\clients.met
      c:\program files\FlashGet Network\FlashGet 3\config\cryptkey.dat
      c:\program files\FlashGet Network\FlashGet 3\config\emfriends.met
      c:\program files\FlashGet Network\FlashGet 3\config\known.met
      c:\program files\FlashGet Network\FlashGet 3\config\known2_64.met
      c:\program files\FlashGet Network\FlashGet 3\config\preferences.ini
      c:\program files\FlashGet Network\FlashGet 3\config\server.met
      c:\program files\FlashGet Network\FlashGet 3\config\server_met.old
      c:\program files\FlashGet Network\FlashGet 3\corestat.dll
      c:\program files\FlashGet Network\FlashGet 3\dbghelp.dll
      c:\program files\FlashGet Network\FlashGet 3\fg.ico
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\default.htm
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\FGResDetector.conf
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\banner.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\bullet.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\close.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\closelabel.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\download-icon.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\explorer.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\ftp.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\image.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\introTextBg.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\loading.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\nextlabel.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\prevlabel.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\software.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\vod.gif
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\FGResDetector.exe
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\about.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\ftplist_tree_icon.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\option_icon.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\quickop_hide.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\quickop_show.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\statusbar_bk.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\tasktab_close.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_back.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_bk.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_close.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_forward.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_refresh.png
      c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\lang\l.eng.xml
      c:\program files\FlashGet Network\FlashGet 3\FGSoftware.exe
      c:\program files\FlashGet Network\FlashGet 3\Flashget3.exe
      c:\program files\FlashGet Network\FlashGet 3\FlashGet3.xpi
      c:\program files\FlashGet Network\FlashGet 3\FlashGetBHO3.dll
      c:\program files\FlashGet Network\FlashGet 3\FlashGetHook.dll
      c:\program files\FlashGet Network\FlashGet 3\fnsArchive.dll
      c:\program files\FlashGet Network\FlashGet 3\fnsDirectuix.dll
      c:\program files\FlashGet Network\FlashGet 3\fnsLanguage.dll
      c:\program files\FlashGet Network\FlashGet 3\fnslanguage_en.dll
      c:\program files\FlashGet Network\FlashGet 3\fnsScheduler.dll
      c:\program files\FlashGet Network\FlashGet 3\fnsSecurity.dll
      c:\program files\FlashGet Network\FlashGet 3\fnsSkinX.dll
      c:\program files\FlashGet Network\FlashGet 3\fnsStatistics.dll
      c:\program files\FlashGet Network\FlashGet 3\game.ico
      c:\program files\FlashGet Network\FlashGet 3\gb2312-unicode.dic
      c:\program files\FlashGet Network\FlashGet 3\gdiplus.dll
      c:\program files\FlashGet Network\FlashGet 3\GetAllUrl.htm
      c:\program files\FlashGet Network\FlashGet 3\GetUrl.htm
      c:\program files\FlashGet Network\FlashGet 3\GoogleToolbarInstaller_download_signed.exe
      c:\program files\FlashGet Network\FlashGet 3\libem.dll
      c:\program files\FlashGet Network\FlashGet 3\license.txt
      c:\program files\FlashGet Network\FlashGet 3\lst_tz.bin
      c:\program files\FlashGet Network\FlashGet 3\P2PCfg.ini
      c:\program files\FlashGet Network\FlashGet 3\p2pcore.dll
      c:\program files\FlashGet Network\FlashGet 3\p2score.dll
      c:\program files\FlashGet Network\FlashGet 3\pncrt.dll
      c:\program files\FlashGet Network\FlashGet 3\pup.dat
      c:\program files\FlashGet Network\FlashGet 3\RdOldDb.dll
      c:\program files\FlashGet Network\FlashGet 3\RealMediaSplitter.ax
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\BarSet.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\btn_check.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\btn_normal.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\btn_radio.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\desktoplink.ico
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\login_line.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\menu_icon.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\option_line.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\option_page_line.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\skin.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\SuspendLogo.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\SuspendNoLogo.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_backgrand.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_cancle.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_catgroy.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_group.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_new.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_open.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_option.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_pause.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_recly.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_start.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbarbutton_left.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbarbutton_middle.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbarbutton_right.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\top_logotitle.gif
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\torrent.ico
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\userinfo_head.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\VistaStyleListItems.bmp
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\preview.png
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\skin.xml
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\sound\loginfailed.wav
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\sound\loginsucc.wav
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\sound\msgnotify.wav
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\sound\notify.wav
      c:\program files\FlashGet Network\FlashGet 3\skin\international\default\topmain.png
      c:\program files\FlashGet Network\FlashGet 3\SnapShot.dll
      c:\program files\FlashGet Network\FlashGet 3\storage.dll
      c:\program files\FlashGet Network\FlashGet 3\SysOptimize.exe
      c:\program files\FlashGet Network\FlashGet 3\uninst.exe
      c:\program files\FlashGet Network\FlashGet 3\VodCore.dll
      c:\program files\FlashGet Network\FlashGet 3\zlib.dll
      c:\programdata\hpe867E.dll
      c:\users\Matias\AppData\Roaming\BITS
      c:\users\Matias\AppData\Roaming\BITS\BITS.ini
      c:\users\Matias\AppData\Roaming\BITS\DHTTable.dat
      c:\users\Matias\AppData\Roaming\BITS\ProxyList.ini
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140320.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140320.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140343.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140343.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140344.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140344.torrent.~tmp
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140344.torrent.bits
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140344.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140344.torrent.seeds
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116140344.torrent.statistic
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155126.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155126.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155223.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155223.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155253.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155253.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155254.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155254.torrent.~tmp
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155254.torrent.bits
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155254.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155254.torrent.hybridlist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155254.torrent.seeds
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155254.torrent.statistic
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155716.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155716.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155755.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155755.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155756.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155756.torrent.~tmp
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155756.torrent.bits
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155756.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100116155756.torrent.statistic
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100119104701.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100119104701.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100119104702.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100119104702.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100119172256.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100119172256.torrent.filelist
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100122135106.torrent
      c:\users\Matias\AppData\Roaming\BITS\Torrent\20100122135106.torrent.filelist
      c:\users\Matias\AppData\Roaming\FlashGetBHO
      c:\users\Matias\AppData\Roaming\FlashGetBHO\FlashGetBHO3.dll
      c:\users\Matias\AppData\Roaming\FlashGetBHO\FlashGetHook.dll
      c:\users\Matias\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
      c:\users\Matias\AppData\Roaming\FlashGetBHO\GetUrl.htm
      c:\users\Matias\AppData\Roaming\inst.exe
      c:\windows\f2.exe
      E:\khq

      .
      ((((((((((((((((((((((((( Files Created from 2010-01-01 to 2010-02-01 )))))))))))))))))))))))))))))))
      .

      2010-02-01 14:55 . 2010-02-01 14:55 -------- d-----w- c:\users\Matias\AppData\Local\temp
      2010-02-01 14:55 . 2010-02-01 14:55 -------- d-----w- c:\users\Default\AppData\Local\temp
      2010-02-01 14:31 . 2010-02-01 14:31 -------- d-----w- c:\program files\CCleaner
      2010-01-28 17:57 . 2010-01-28 17:57 -------- d-----w- C:\FarmVilleTools
      2010-01-28 17:24 . 2010-02-01 14:39 -------- d-----w- c:\programdata\Spybot - Search & Destroy
      2010-01-28 17:24 . 2010-01-28 17:27 -------- d-----w- c:\program files\Spybot - Search & Destroy
      2010-01-28 17:11 . 2010-01-28 17:11 5115824 ----a-w- c:\programdata\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
      2010-01-28 16:59 . 2010-01-28 16:59 388096 ----a-r- c:\users\Matias\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
      2010-01-28 16:59 . 2010-01-28 16:59 -------- d-----w- c:\program files\TrendMicro
      2010-01-28 14:31 . 2009-10-31 05:45 2614272 ----a-w- c:\windows\explorer.exe
      2010-01-28 14:31 . 2009-10-28 06:17 285696 ----a-w- c:\windows\system32\winlogon.exe
      2010-01-27 18:10 . 2010-01-27 18:10 80400 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav9exec\9.0.0.736\fssync.dll
      2010-01-27 18:10 . 2010-01-27 18:10 311312 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav9exec\9.0.0.736\sys\i386\6.0\klif.sys
      2010-01-27 18:10 . 2010-01-27 18:10 109072 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav9exec\9.0.0.736\mzvkbd3.dll
      2010-01-27 18:10 . 2010-01-27 18:10 80400 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.736\fssync.dll
      2010-01-27 18:10 . 2010-01-27 18:10 109072 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.736\mzvkbd3.dll
      2010-01-27 18:10 . 2010-01-27 18:10 311312 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.736\sys\i386\6.0\klif.sys
      2010-01-27 17:53 . 2010-01-27 17:53 108059 ----a-w- c:\windows\system32\drivers\klin.dat
      2010-01-27 17:53 . 2010-01-27 17:53 95259 ----a-w- c:\windows\system32\drivers\klick.dat
      2010-01-27 17:52 . 2010-02-01 13:59 -------- d-----w- c:\programdata\Kaspersky Lab
      2010-01-27 17:52 . 2010-01-27 17:52 -------- d-----w- c:\program files\Kaspersky Lab
      2010-01-27 17:43 . 2010-01-27 17:43 -------- d-----w- c:\programdata\Kaspersky Lab Setup Files
      2010-01-22 16:58 . 2010-01-22 16:58 -------- d-----w- c:\program files\Realtek AC97
      2010-01-22 16:58 . 2005-07-12 18:55 81920 ----a-w- c:\windows\SOUNDMAN.EXE
      2010-01-22 16:58 . 2005-07-15 20:40 3640000 ----a-w- c:\windows\system32\drivers\alcxwdm.sys
      2010-01-22 16:58 . 2005-05-18 16:38 40960 ----a-w- c:\windows\system32\ChCfg.exe
      2010-01-22 16:58 . 2005-06-02 19:31 294912 ----a-w- c:\windows\alcupd.exe
      2010-01-22 16:46 . 2010-01-22 16:46 -------- d-----w- c:\users\Matias\AppData\Roaming\Blitware
      2010-01-22 16:46 . 2010-01-22 16:46 -------- d-----w- c:\program files\Driver Robot
      2010-01-22 15:55 . 2010-01-22 15:55 -------- d-----w- c:\users\Matias\dwhelper
      2010-01-21 21:08 . 2009-12-19 09:02 977920 ----a-w- c:\windows\system32\wininet.dll
      2010-01-19 19:57 . 2010-01-19 19:57 -------- d-----w- c:\programdata\Office Genuine Advantage
      2010-01-17 16:44 . 2010-01-17 18:45 -------- d-----w- c:\users\Matias\AppData\Roaming\MyPhoneExplorer
      2010-01-17 16:42 . 2010-01-17 16:44 -------- d-----w- c:\program files\MyPhoneExplorer
      2010-01-16 17:00 . 2010-01-16 17:00 -------- d-----w- c:\program files\QuickSFV
      2010-01-15 14:39 . 2010-01-15 14:39 -------- d-----w- c:\programdata\Nokia
      2010-01-15 14:38 . 2010-01-15 14:36 24418280 ----a-w- c:\programdata\Installations\{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}\NokiaSoftwareUpdaterSetup_es_lta.exe
      2010-01-15 14:37 . 2010-01-15 14:37 36864 ----a-w- c:\programdata\Installations\{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}\Installer\CommonCustomActions\Sleep.exe
      2010-01-15 14:37 . 2010-01-15 14:37 3351812 ----a-w- c:\programdata\Installations\{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}\Installer\CommonCustomActions\msxml6Exec.exe
      2010-01-15 14:37 . 2010-01-15 14:37 3203453 ----a-w- c:\programdata\Installations\{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}\Installer\CommonCustomActions\vcredistExec.exe
      2010-01-15 14:28 . 2010-01-15 14:30 -------- d-----w- c:\users\Matias\AppData\Roaming\Nokia
      2010-01-15 14:28 . 2010-01-15 14:31 -------- d-----w- c:\users\Matias\AppData\Roaming\PC Suite
      2010-01-15 14:28 . 2010-01-15 14:30 -------- d-----w- c:\programdata\PC Suite
      2010-01-15 14:23 . 2008-08-26 12:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
      2010-01-15 14:22 . 2010-01-15 14:23 -------- dc----w- c:\windows\system32\DRVSTORE
      2010-01-15 14:22 . 2010-01-15 14:22 -------- d-----w- c:\program files\PC Connectivity Solution
      2010-01-15 14:22 . 2010-01-16 15:24 -------- d-----w- c:\program files\Nokia
      2010-01-15 14:20 . 2010-01-15 14:18 34525744 ----a-w- c:\programdata\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Nokia_PC_Suite_7_1_40_1_wu_spa_co.exe
      2010-01-15 14:20 . 2010-01-15 14:20 95232 ----a-w- c:\programdata\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\pcswpcsi.exe
      2010-01-15 14:20 . 2010-01-15 14:20 8192 ----a-w- c:\programdata\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstCCD.exe
      2010-01-15 14:20 . 2010-01-15 14:20 61440 ----a-w- c:\programdata\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
      2010-01-15 14:20 . 2010-01-15 14:20 10240 ----a-w- c:\programdata\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCS.exe
      2010-01-15 14:18 . 2010-01-15 14:36 -------- d-----w- c:\programdata\Installations
      2010-01-13 19:18 . 2009-10-19 14:10 108544 ----a-w- c:\windows\system32\t2embed.dll
      2010-01-13 19:18 . 2009-10-19 14:10 70656 ----a-w- c:\windows\system32\fontsub.dll
      2010-01-13 00:27 . 2009-04-09 18:03 57407 ----a-w- c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}\components\FlashgetXpi.dll
      2010-01-12 16:07 . 2010-01-12 18:07 305 ----a-w- c:\windows\system32\secushr.dat
      2010-01-12 16:06 . 2010-01-12 16:06 -------- d-----w- c:\users\Matias\AppData\Roaming\FlashGet
      2010-01-12 15:34 . 2010-01-15 14:23 -------- d-----w- c:\program files\DIFX
      2010-01-12 15:33 . 2008-02-15 14:49 155648 ----a-w- c:\windows\VPro530.exe
      2010-01-12 15:33 . 2010-01-12 15:33 -------- d-----w- c:\windows\Philips
      2010-01-11 22:21 . 2010-01-11 22:21 -------- d-----w- c:\users\Matias\AppData\Roaming\ArcSoft
      2010-01-11 22:21 . 2010-01-11 22:21 -------- d-----w- c:\program files\Common Files\ArcSoft
      2010-01-11 22:21 . 2010-01-11 22:21 -------- d-----w- c:\program files\Philips_VLounge
      2010-01-11 22:21 . 1995-08-01 07:44 212480 ----a-w- c:\windows\PCDLIB32.DLL
      2010-01-11 22:21 . 2010-01-22 16:57 -------- d-----w- c:\program files\Common Files\InstallShield
      2010-01-11 22:21 . 2010-01-12 15:34 -------- d-----w- c:\program files\Philips
      2010-01-11 22:20 . 2010-01-12 15:33 -------- d-----w- c:\program files\Common Files\SPC530NC
      2010-01-10 04:15 . 2010-01-10 04:22 -------- d-----w- c:\users\Matias\AppData\Local\Microsoft Games
      2010-01-08 17:52 . 2010-01-29 14:29 -------- d-----w- c:\users\Matias\AppData\Local\Diagnostics
      2010-01-08 15:33 . 2010-01-08 15:33 -------- d-----w- c:\users\Matias\AppData\Roaming\aerix
      2010-01-08 00:54 . 2010-01-08 01:00 -------- d-----w- c:\program files\Windows Live Safety Center
      2010-01-06 19:33 . 2010-01-06 19:33 -------- d-----w- c:\users\Matias\AppData\Local\Google
      2010-01-06 19:33 . 2009-12-16 19:05 340992 ----a-w- c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll
      2010-01-06 19:33 . 2009-12-16 19:05 43008 ----a-w- c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
      2010-01-06 19:33 . 2009-12-16 19:05 347136 ----a-w- c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll
      2010-01-06 19:33 . 2009-12-16 19:05 1452032 ----a-w- c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
      2010-01-06 19:33 . 2009-12-16 19:05 471040 ----a-w- c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\DictionaryCompressionFF.dll
      2010-01-06 15:54 . 2008-12-04 04:25 120832 ----a-w- c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}\plugins\npietab.dll
      2010-01-02 15:13 . 2008-05-21 17:30 7680 ----a-w- c:\windows\system32\drivers\SPC530m.sys
      2010-01-02 15:13 . 2008-05-21 17:30 486912 ----a-w- c:\windows\system32\drivers\SPC530.sys

      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2010-01-28 17:12 . 2009-12-18 13:35 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
      2010-01-27 15:51 . 2009-12-03 16:28 -------- d-----w- c:\program files\JDownloader 0.7
      2010-01-26 18:42 . 2009-12-04 02:16 140376 ----a-w- c:\users\Matias\AppData\Local\GDIPFONTCACHEV1.DAT
      2010-01-26 14:40 . 2009-07-14 08:48 694148 ----a-w- c:\windows\system32\perfh00A.dat
      2010-01-26 14:40 . 2009-07-14 08:48 134242 ----a-w- c:\windows\system32\perfc00A.dat
      2010-01-23 15:23 . 2010-01-01 01:06 -------- d-----w- c:\program files\sXe Injected
      2010-01-22 16:58 . 2009-12-05 20:44 -------- d--h--w- c:\program files\InstallShield Installation Information
      2010-01-22 14:39 . 2009-12-04 13:59 -------- d-----w- c:\programdata\Messenger Plus!
      2010-01-22 14:35 . 2009-12-04 11:52 -------- d-----w- c:\program files\Messenger Plus! Live
      2010-01-15 14:31 . 2010-01-15 14:31 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
      2010-01-15 14:30 . 2010-01-15 14:30 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
      2010-01-15 14:11 . 2010-01-15 14:11 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
      2010-01-14 14:12 . 2009-12-04 12:08 181120 ------w- c:\windows\system32\MpSigStub.exe
      2010-01-13 22:46 . 2009-12-04 12:24 -------- d-----w- c:\programdata\Microsoft Help
      2010-01-08 20:27 . 2010-01-08 20:27 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ggsemc_01007.Wdf
      2010-01-08 20:21 . 2009-12-05 20:44 -------- d-----w- c:\program files\Sony Ericsson
      2010-01-07 19:07 . 2009-12-18 13:35 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
      2010-01-07 19:07 . 2009-12-18 13:35 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
      2010-01-06 20:00 . 2009-12-04 13:22 -------- d-----w- c:\users\Matias\AppData\Roaming\DMCache
      2010-01-02 15:13 . 2010-01-02 15:13 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_phaudlwr_01005.Wdf
      2010-01-01 01:04 . 2010-01-01 01:01 -------- d-----w- c:\program files\Counter-Strike 1.6
      2009-12-28 17:49 . 2009-12-28 01:15 -------- d-----w- c:\programdata\WinZip
      2009-12-24 23:16 . 2009-12-24 23:16 -------- d-----w- c:\program files\ESET
      2009-12-24 21:42 . 2009-12-04 02:23 -------- d-----w- c:\program files\UlisesSoft
      2009-12-21 04:05 . 2009-12-04 02:18 -------- d-----w- c:\users\Matias\AppData\Roaming\Vso
      2009-12-18 17:39 . 2009-12-18 17:39 -------- d-----w- c:\program files\Real Alternative
      2009-12-18 13:35 . 2009-12-18 13:35 -------- d-----w- c:\users\Matias\AppData\Roaming\Malwarebytes
      2009-12-18 13:35 . 2009-12-18 13:35 -------- d-----w- c:\programdata\Malwarebytes
      2009-12-07 13:41 . 2009-12-07 13:41 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ggsemc_01005.Wdf
      2009-12-06 18:16 . 2009-12-04 12:29 -------- d-----w- c:\program files\Microsoft Works
      2009-12-05 20:46 . 2009-12-05 20:46 -------- d-----w- c:\programdata\BVRP Software
      2009-12-05 20:44 . 2009-12-05 20:44 -------- d-----w- c:\programdata\Sony Ericsson
      2009-12-05 20:23 . 2009-12-05 20:23 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
      2009-12-05 17:30 . 2009-12-05 17:30 -------- d-----w- c:\program files\Apple Software Update
      2009-12-05 17:30 . 2009-12-05 17:30 -------- d-----w- c:\programdata\Apple
      2009-12-05 15:05 . 2009-12-05 15:05 -------- d-----w- c:\program files\Ashampoo
      2009-12-04 15:50 . 2009-12-04 15:50 -------- d-----w- c:\users\Matias\AppData\Roaming\Media Player Classic
      2009-12-04 13:29 . 2009-12-04 13:29 36864 ----a-w- c:\users\Matias\AppData\Roaming\Autodesk\AutoCAD 2010\R18.0\enu\ContextualTabSelectorRules.dll
      2009-12-04 13:28 . 2009-12-04 13:28 -------- d-----w- c:\programdata\FLEXnet
      2009-12-04 13:25 . 2009-12-04 13:25 -------- d-----w- c:\program files\7-Zip
      2009-12-04 13:22 . 2009-12-04 13:16 -------- d-----w- c:\program files\Common Files\Autodesk Shared
      2009-12-04 13:22 . 2009-12-04 13:16 -------- d-----w- c:\program files\AutoCAD 2010
      2009-12-04 13:19 . 2009-12-04 13:19 -------- d-----w- c:\program files\Common Files\Macrovision Shared
      2009-12-04 12:55 . 2009-12-04 12:55 -------- d-----w- c:\users\Matias\AppData\Roaming\TuneUp Software
      2009-12-04 12:50 . 2009-12-04 12:50 -------- d-sh--w- c:\programdata\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
      2009-12-04 12:29 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
      2009-12-04 12:27 . 2009-12-04 12:27 -------- d-----w- c:\program files\Microsoft.NET
      2009-12-04 12:25 . 2009-12-04 12:25 -------- d-----w- c:\program files\Microsoft Visual Studio 8
      2009-12-04 12:06 . 2009-12-03 16:28 -------- d-----w- c:\program files\USDownloader
      2009-12-04 12:03 . 2009-12-04 12:04 411368 ----a-w- c:\windows\system32\deploytk.dll
      2009-12-04 12:03 . 2009-12-04 12:03 -------- d-----w- c:\program files\Java
      2009-12-04 12:02 . 2009-12-04 12:02 -------- d-----w- c:\program files\Common Files\Adobe
      2009-12-04 11:52 . 2009-12-04 11:52 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
      2009-12-04 02:22 . 2009-12-04 02:22 0 ----a-w- c:\windows\nsreg.dat
      2009-12-04 02:20 . 2009-12-04 02:20 -------- d-----w- c:\program files\Microsoft
      2009-12-04 02:20 . 2009-12-04 02:20 -------- d-----w- c:\program files\Windows Live
      2009-12-04 02:20 . 2009-12-04 02:20 -------- d-----w- c:\program files\PowerISO
      2009-12-04 02:20 . 2009-12-04 02:20 -------- d-----w- c:\program files\Windows Live SkyDrive
      2009-12-04 02:18 . 2009-12-04 02:18 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
      2009-12-04 02:18 . 2009-12-04 02:18 47360 ----a-w- c:\users\Matias\AppData\Roaming\pcouffin.sys
      2009-12-04 02:18 . 2009-12-04 02:18 47360 ----a-w- c:\users\Matias\AppData\Roaming\pcouffin.sys
      2009-12-04 02:18 . 2009-12-04 02:18 -------- d-----w- c:\program files\VSO
      2009-12-04 02:17 . 2009-12-04 02:17 -------- d-----w- c:\users\Matias\AppData\Roaming\Ashampoo
      2009-12-04 02:17 . 2009-12-04 02:17 -------- d-----w- c:\programdata\ashampoo
      2009-12-04 02:16 . 2009-12-04 02:16 -------- d-----w- c:\program files\Common Files\Windows Live
      2009-12-04 02:10 . 2009-12-04 02:10 -------- d-----w- c:\program files\TSM
      2009-12-04 02:06 . 2009-12-04 02:06 -------- d-sh--we c:\programdata\Plantillas
      2009-12-04 02:06 . 2009-12-04 02:06 -------- d-sh--we c:\programdata\Menú Inicio
      2009-12-04 02:06 . 2009-12-04 02:06 -------- d-sh--we c:\programdata\Favoritos
      2009-12-04 02:06 . 2009-12-04 02:06 -------- d-sh--we c:\programdata\Escritorio
      2009-12-04 02:06 . 2009-12-04 02:06 -------- d-sh--we c:\programdata\Documentos
      2009-12-04 02:06 . 2009-12-04 02:06 -------- d-sh--we c:\programdata\Datos de programa
      2009-12-04 02:06 . 2009-12-04 02:06 -------- d-sh--we c:\program files\Archivos comunes
      2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
      2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
      .

      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4

      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-12-30 3883856]
      "Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2009-04-01 405504]
      "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2008-03-14 233472]
      "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
      "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-01-07 1394000]
      "SoundMan"="SOUNDMAN.EXE" [2005-07-12 81920]
      "AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe" [2009-10-20 340456]

      c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
      VPro530.lnk - c:\windows\VPro530.exe [2010-1-12 155648]

      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)

      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
      "AppInit_DLLs"=c:\progra~1\KASPER~1\KASPER~1\mzvkbd3.dll

      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
      "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
      "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe"
      "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

      [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
      "DisableMonitoring"=dword:00000001

      R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\System32\drivers\klbg.sys [14/10/2009 08:18 p.m. 36880]
      R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\System32\drivers\klim6.sys [14/09/2009 01:46 p.m. 21520]
      R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [10/12/2009 12:32 p.m. 1044808]
      R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\System32\drivers\klmouflt.sys [02/10/2009 06:39 p.m. 19472]
      R3 phaudlwr;Philips Audio Filter;c:\windows\System32\drivers\phaudlwr.sys [07/05/2008 09:40 a.m. 88704]
      R3 SPC530;Philips SPC530NC PC Camera;c:\windows\System32\drivers\SPC530.sys [02/01/2010 12:13 p.m. 486912]
      R3 SPC530m;Philips SPC530NC PC Cameram;c:\windows\System32\drivers\SPC530m.sys [02/01/2010 12:13 p.m. 7680]
      R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14/10/2009 07:24 a.m. 10064]
      S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\System32\drivers\ggflt.sys [09/12/2008 06:33 a.m. 13224]
      S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\System32\drivers\nmwcdnsu.sys [06/10/2009 11:56 a.m. 136704]
      S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\System32\drivers\nmwcdnsuc.sys [06/10/2009 11:56 a.m. 8320]
      S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\System32\drivers\s0017bus.sys [05/12/2009 05:45 p.m. 86824]
      S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\System32\drivers\s0017mdfl.sys [05/12/2009 05:45 p.m. 15016]
      S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\System32\drivers\s0017mdm.sys [05/12/2009 05:45 p.m. 114600]
      S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\System32\drivers\s0017mgmt.sys [05/12/2009 05:45 p.m. 108328]
      S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\System32\drivers\s0017nd5.sys [05/12/2009 05:45 p.m. 26024]
      S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\System32\drivers\s0017obex.sys [05/12/2009 05:45 p.m. 104616]
      S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\System32\drivers\s0017unic.sys [05/12/2009 05:45 p.m. 109736]

      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
      UxTuneUp
      .
      Contents of the 'Scheduled Tasks' folder

      2010-01-22 c:\windows\Tasks\Driver Robot.job
      - c:\program files\Driver Robot\1.1.0.14\DriverRobot.exe [2010-01-22 16:53]
      .
      .
      ------- Supplementary Scan -------
      .
      Trusted Zone: kuaiche.com\software
      FF - ProfilePath - c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\
      FF - prefs.js: browser.startup.homepage - www.google.com.ar
      FF - component: c:\program files\Mozilla Firefox\extensions\[email protected]\components\KavLinkFilter.dll
      FF - component: c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\DictionaryCompressionFF.dll
      FF - component: c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
      FF - component: c:\users\Matias\AppData\Roaming\Mozilla\Firefox\Profiles\vxghrkjv.default\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}\components\FlashgetXpi.dll
      FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll

      ---- FIREFOX POLICIES ----
      FF - user.js: network.http.max-persistent-connections-per-server - 4
      FF - user.js: nglayout.initialpaint.delay - 600
      FF - user.js: content.notify.interval - 600000
      FF - user.js: content.max.tokenizing.time - 1800000
      FF - user.js: content.switch.threshold - 600000
      .
      - - - - ORPHANS REMOVED - - - -

      AddRemove-FlashGet 3.3 - c:\program files\FlashGet Network\FlashGet 3\uninst.exe


      .
      --------------------- LOCKED REGISTRY KEYS ---------------------

      [HKEY_USERS\.Default\Software\Autodesk\Autodesk Digital Signatures]
      @DACL=(02 0000)

      [HKEY_USERS\S-1-5-21-925249268-2476479520-477117502-1001\Software\PowerISO\SCDEmu]
      @DACL=(02 0000)
      "DiskCount"=dword:00000001
      "FLAGS"=dword:00000001
      "ImageName1"=""
      "ImageName2"=""
      "ImageName3"=""
      "ImageName4"=""
      "ImageName5"=""
      "ImageName6"=""
      "ImageName7"=""
      "ImageName0"="d:\\BGHe-Nova.iso"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Answer]
      @DACL=(02 0000)
      "1"="ATA<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Clients]
      @DACL=(02 0000)

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Fax]
      @DACL=(02 0000)
      "CL1FCS"="2"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Hangup]
      @DACL=(02 0000)
      "1"="ATH<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Init]
      @DACL=(02 0000)
      "1"="AT<cr>"
      "2"="AT &F<cr>"
      "3"="AT V1E0S0=0&D2&C1<cr>"
      "4"="AT +CMEE=1<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Monitor]
      @DACL=(02 0000)
      "1"="ATS0=0<cr>"
      "2"="None"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Settings]
      @DACL=(02 0000)
      "Compression_Off"="+DS=0;+DR=0;"
      "Compression_On"="+DS=3,0,2048,32;+DR=1;"
      "CompatibilityFlags"=hex:01,00,00,00
      "CallSetupFailTimer"="S7=<#>;"
      "DialPrefix"="D"
      "DialSuffix"=";"
      "Prefix"="AT"
      "Terminator"="<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\Answer]
      @DACL=(02 0000)
      "1"="ATA<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\Clients]
      @DACL=(02 0000)

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\Fax]
      @DACL=(02 0000)
      "CL1FCS"="2"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\Hangup]
      @DACL=(02 0000)
      "1"="ATH<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\Init]
      @DACL=(02 0000)
      "1"="AT<cr>"
      "2"="AT &F<cr>"
      "3"="AT V1E0S0=0&D2&C1<cr>"
      "4"="AT +CMEE=1<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\Monitor]
      @DACL=(02 0000)
      "1"="ATS0=0<cr>"
      "2"="None"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\Settings]
      @DACL=(02 0000)
      "Compression_Off"="+DS=0;+DR=0;"
      "Compression_On"="+DS=3,0,2048,32;+DR=1;"
      "CompatibilityFlags"=hex:01,00,00,00
      "CallSetupFailTimer"="S7=<#>;"
      "DialPrefix"="D"
      "DialSuffix"=";"
      "Prefix"="AT"
      "Terminator"="<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\Answer]
      @DACL=(02 0000)
      "1"="ATA<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\Hangup]
      @DACL=(02 0000)
      "1"="ATH<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\Init]
      @DACL=(02 0000)
      "1"="AT&F<cr>"
      "2"="AT E0 V1 &D2 &C1 &S0 S0=0 +dr=1<cr>"
      "3"="AT+IFC=2,2;+CVHU=1<cr>"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\Monitor]
      @DACL=(02 0000)
      "1"="ATS0=0<cr>"
      "2"="None"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\Settings]
      @DACL=(02 0000)
      "Prefix"="AT"
      "Terminator"="<cr>"
      "DialPrefix"="D"
      "DialSuffix"=";"
      "FlowControl_Off"="&K0"
      "FlowControl_Hard"="&K3"
      "FlowControl_Soft"="&K4"
      "Modulation_CCITT"="B0"
      "Modulation_Bell"="B1"
      "Pulse"="P"
      "Tone"="T"
      "Blind_Off"="X5"
      "Blind_On"="X3"
      "CallSetupFailTimer"="S7=<#>"
      "Compression_On"="+DS=3,0;"
      "Compression_Off"="+DS=0,0;"

      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      Completion time: 2010-02-01 11:58:37
      ComboFix-quarantined-files.txt 2010-02-01 14:58

      Pre-Run: 9.642.770.432 bytes libres
      Post-Run: 10.030.981.120 bytes libres

      - - End Of File - - 2338CBDCF02E6A34D3437D7BAB7A8B14



      te comento que encontré un hilo de un problema similar http://www.forospyware.com/t238712.html , y hice el cambio de contraseña del correo. ahora toca esperar a ver si soluciona con eso o será otra cosa. gracias nuevamente por tu ayuda.

    4. #4
      Ex-Colaborador Avatar de GPastor
      Registrado
      mar 2005
      Ubicación
      Perú
      Mensajes
      23.111

      Re: problema con hotmail

      ComboFix ya se encargó de eliminar la infección, coméntanos como está funcionando el sistema ahora.

    5. #5
      Usuario Avatar de rugrinba
      Registrado
      sep 2008
      Ubicación
      Paraná
      Mensajes
      3

      Re: problema con hotmail

      hola de nuevo, gracias por tu ayuda, hasta el momento va todo bien, no se han mandado mensajes raros desde hotmail. mil gracias.

    6. #6
      Ex-Colaborador Avatar de GPastor
      Registrado
      mar 2005
      Ubicación
      Perú
      Mensajes
      23.111

      Re: problema con hotmail

      Para terminar solo te quedaría desinstalar CF de la siguiente manera:

      • Ir a Inicio > Ejecutar
      • Escribir lo siguiente: ComboFix /Uninstall como muestra la imagen debajo:

      • Esto activara el desinstalador de ComboFix abriendo su pantalla principal y luego de unos segundos veras ("ComboFix is uninstalled")


      Por último te recomiendo suscribirte por email al feed de nuestro Blog de InfoSpyware para estar al tanto de las nuevas amenazas que circulan por la red y así en un futuro puedas prevenirlas.
      Saludos