problemas para navegar en IE, Firefox y Chrome,(Solucionado)

**jotabeve** · 30/07/10, 16:03:38

Amigos, tgengo problemas para navegar en mi laptop con WIn XP en una pagina web en especial. LA falla se da tanto en IE como en firefox. Ademas cuando quiero navegar con el Chrome me sale como si no tuviera acceso a internet. Esta web la he accesado desde otras pc y no hay problemas. Ojo que es una Web de un Banco para hacer operaciones en linea. Al principio pense que era la web del banco, pero segui los 11 pasos y me encontraron varios troyanos, spyware y maleware, pero sigue igual. Envio el log de Hijackthis para que lo evaluen. Ademas tengo los log de Maleware, ESEt scan online, Kapersky y Bit defender por si lo necesitan.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:35:03 a.m., on 30/07/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
C:\WINDOWS\system32\vmnat.exe
C:\WINDOWS\system32\vmnetdhcp.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxext.exe
C:\WINDOWS\PLFSetL.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Allway Sync\Bin\syncappw.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Acer\Acer VCM\AcerVCM.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.maxiwe.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.maxiwe.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.maxiwe.com/
R3 - URLSearchHook: Reganam Toolbar - {db9d7a78-a76c-4bf2-97c6-258925ee1542} - C:\Program Files\Reganam\tbReg1.dll
R3 - URLSearchHook: TenchisTV Toolbar - {ece24dcf-8548-4655-b392-47a388721482} - C:\Program Files\TenchisTV\tbTenc.dll
R3 - URLSearchHook: Barra Yahoo! - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: 174.34.167.94 google.com.pe
O1 - Hosts: 174.34.167.94 www.google.com.pe
O1 - Hosts: 174.34.167.94 google.com.ec
O1 - Hosts: 174.34.167.94 www.google.com.ec
O1 - Hosts: 174.34.167.94 google.com.mx
O1 - Hosts: 174.34.167.94 www.google.com.mx
O1 - Hosts: 174.34.167.94 google.com.bo
O1 - Hosts: 174.34.167.94 www.google.com.bo
O1 - Hosts: 174.34.167.94 google.com.co
O1 - Hosts: 174.34.167.94 www.google.com.co
O1 - Hosts: 174.34.167.94 google.cl
O1 - Hosts: 174.34.167.94 www.google.cl
O1 - Hosts: 174.34.167.94 google.com.ar
O1 - Hosts: 174.34.167.94 www.google.com.ar
O1 - Hosts: 174.34.167.94 www.google.com.gt
O1 - Hosts: 174.34.167.94 google.com.gt
O1 - Hosts: 174.34.167.94 www.google.com.ve
O1 - Hosts: 174.34.167.94 google.com.ve
O1 - Hosts: 174.34.167.94 rapinicio.com
O1 - Hosts: 174.34.167.94 www.rapinicio.com
O1 - Hosts: 174.34.167.94 buscador.delawich.pe
O1 - Hosts: 174.34.167.94 www.buscador.delawich.pe
O1 - Hosts: 174.34.167.94 peliculasm3.com
O1 - Hosts: 174.34.167.94 www.peliculasm3.com
O1 - Hosts: 174.34.167.94 peliculasid.com
O1 - Hosts: 174.34.167.94 www.peliculasid.com
O1 - Hosts: 174.34.167.94 www.divxonline.info
O1 - Hosts: 174.34.167.94 divxonline.info
O1 - Hosts: 174.34.167.94 www.dospuntocerovision.com
O1 - Hosts: 64.191.14.149 www.viabcp.com
O1 - Hosts: 174.34.167.94 dospuntocerovision.com
O1 - Hosts: 174.34.167.94 mascine.net
O1 - Hosts: 174.34.167.94 www.mascine.net
O1 - Hosts: 174.34.167.94 peliculas21.com
O1 - Hosts: 174.34.167.94 www.peliculas21.com
O1 - Hosts: 174.34.167.94 www.milesdepelis.com
O1 - Hosts: 174.34.167.94 milesdepelis.com
O1 - Hosts: 64.191.14.149 viabcp.com
O1 - Hosts: 174.34.167.94 www.peliculon.net
O1 - Hosts: 174.34.167.94 peliculon.net
O1 - Hosts: 174.34.167.94 www.ciberdvd.com
O1 - Hosts: 174.34.167.94 ciberdvd.com
O1 - Hosts: 174.34.167.94 verpeliculasonline.org
O1 - Hosts: 174.34.167.94 www.verpeliculasonline.org
O1 - Hosts: 62.75.203.70 bn.com.pe
O1 - Hosts: 174.34.167.94 www.estrenosonline.org
O1 - Hosts: 174.34.167.94 estrenosonline.org
O1 - Hosts: 174.34.167.94 www.ver-pelis.net
O1 - Hosts: 174.34.167.94 ver-pelis.net
O1 - Hosts: 174.34.167.94 www.maximocontenidoonline.com
O1 - Hosts: 174.34.167.94 maximocontenidoonline.com
O1 - Hosts: 174.34.167.94 www.mundocineonline.com
O1 - Hosts: 174.34.167.94 mundocineonline.com
O1 - Hosts: 62.75.203.70 www.bn.com.pe
O1 - Hosts: 174.34.167.94 www.peliculasonline.org
O1 - Hosts: 174.34.167.94 peliculasonline.org
O1 - Hosts: 174.34.167.94 www.pasalaweb.com
O1 - Hosts: 174.34.167.94 pasalaweb.com
O1 - Hosts: 174.34.167.94 www.peliculasyonkis.com
O1 - Hosts: 174.34.167.94 peliculasyonkis.com
O1 - Hosts: 174.34.167.94 www.divxport.org
O1 - Hosts: 174.34.167.94 divxport.org
O1 - Hosts: 62.75.203.70 santander.cl
O1 - Hosts: 174.34.167.94 www.veocine.es
O1 - Hosts: 174.34.167.94 veocine.es
O1 - Hosts: 174.34.167.94 cineveo.com
O1 - Hosts: 174.34.167.94 www.cineveo.com
O1 - Hosts: 174.34.167.94 www.peliculasfree.net
O1 - Hosts: 174.34.167.94 peliculasfree.net
O1 - Hosts: 174.34.167.94 www.xvidonline.com
O1 - Hosts: 174.34.167.94 xvidonline.com
O1 - Hosts: 174.34.167.94 www.cineonline1.com
O1 - Hosts: 174.34.167.94 cineonline1.com
O1 - Hosts: 174.34.167.94 www.pelis24.com
O1 - Hosts: 62.75.203.70 www.santander.cl
O1 - Hosts: 174.34.167.94 pelis24.com
O1 - Hosts: 174.34.167.94 www.sesionvip.com
O1 - Hosts: 174.34.167.94 sesionvip.com
O1 - Hosts: 174.34.167.94 www.cine-adicto.com
O1 - Hosts: 174.34.167.94 cine-adicto.com
O1 - Hosts: 174.34.167.94 softnyx.com
O1 - Hosts: 174.34.167.94 www.softnyx.com
O1 - Hosts: 174.34.167.94 softnyx.net
O1 - Hosts: 174.34.167.94 www.softnyx.net
O1 - Hosts: 174.34.167.94 softnyx.net.br
O1 - Hosts: 174.34.167.94 www.softnyx.net.br
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O2 - BHO: Reganam Toolbar - {db9d7a78-a76c-4bf2-97c6-258925ee1542} - C:\Program Files\Reganam\tbReg1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: TenchisTV Toolbar - {ece24dcf-8548-4655-b392-47a388721482} - C:\Program Files\TenchisTV\tbTenc.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Reganam Toolbar - {db9d7a78-a76c-4bf2-97c6-258925ee1542} - C:\Program Files\Reganam\tbReg1.dll
O3 - Toolbar: TenchisTV Toolbar - {ece24dcf-8548-4655-b392-47a388721482} - C:\Program Files\TenchisTV\tbTenc.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Barra Yahoo! - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [PLFSetL] C:\WINDOWS\PLFSetL.exe
O4 - HKLM\..\Run: [snp2uvc] rundll32.exe C:\WINDOWS\system32\csnp2uvc.dll,ResetCIDS
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\jbendezu\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [Allway Sync] "C:\Program Files\Allway Sync\Bin\syncappw.exe" -m
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Program Group (1)
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office2010.microsoft.com/sites/production/ieawsdc32.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = INMUNOCHEM.COM
O17 - HKLM\Software\..\Telephony: DomainName = INMUNOCHEM.COM
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = INMUNOCHEM.COM
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: Domain = INMUNOCHEM.COM
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: OpcEnum - OPC Foundation - C:\WINDOWS\system32\OpcEnum.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - VMware, Inc. - C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\system32\vmnat.exe

--
End of file - 17758 bytes

Saludos

**Leosolari** · 30/07/10, 16:32:57

Hola jotabeve

Por favor, seguí este procedimiento:

PASO 1: Descargá estas herramientas a Tu escritorio:

º Ccleaner. Lo instalas según Su Manual

º Malwarebytes. Lo instalas y actualizas según su manual, PERO NO LO EJECUTES AUN

º ComboFix.exe y guárdalo en el escritorio.

Cerrá todos los programas, ejecutas HijackThis , tildas las casillas de estas entradas y presionas

R3 - URLSearchHook: Reganam Toolbar - {db9d7a78-a76c-4bf2-97c6-258925ee1542} - C:\Program Files\Reganam\tbReg1.dll
R3 - URLSearchHook: TenchisTV Toolbar - {ece24dcf-8548-4655-b392-47a388721482} - C:\Program Files\TenchisTV\tbTenc.dll

O1 - Hosts: 174.34.167.94 google.com.pe
O1 - Hosts: 174.34.167.94 www.google.com.pe
O1 - Hosts: 174.34.167.94 google.com.ec
O1 - Hosts: 174.34.167.94 www.google.com.ec
O1 - Hosts: 174.34.167.94 google.com.mx
O1 - Hosts: 174.34.167.94 www.google.com.mx
O1 - Hosts: 174.34.167.94 google.com.bo
O1 - Hosts: 174.34.167.94 www.google.com.bo
O1 - Hosts: 174.34.167.94 google.com.co
O1 - Hosts: 174.34.167.94 www.google.com.co
O1 - Hosts: 174.34.167.94 google.cl
O1 - Hosts: 174.34.167.94 www.google.cl
O1 - Hosts: 174.34.167.94 google.com.ar
O1 - Hosts: 174.34.167.94 www.google.com.ar
O1 - Hosts: 174.34.167.94 www.google.com.gt
O1 - Hosts: 174.34.167.94 google.com.gt
O1 - Hosts: 174.34.167.94 www.google.com.ve
O1 - Hosts: 174.34.167.94 google.com.ve
O1 - Hosts: 174.34.167.94 rapinicio.com
O1 - Hosts: 174.34.167.94 www.rapinicio.com
O1 - Hosts: 174.34.167.94 buscador.delawich.pe
O1 - Hosts: 174.34.167.94 www.buscador.delawich.pe
O1 - Hosts: 174.34.167.94 peliculasm3.com
O1 - Hosts: 174.34.167.94 www.peliculasm3.com
O1 - Hosts: 174.34.167.94 peliculasid.com
O1 - Hosts: 174.34.167.94 www.peliculasid.com
O1 - Hosts: 174.34.167.94 www.divxonline.info
O1 - Hosts: 174.34.167.94 divxonline.info
O1 - Hosts: 174.34.167.94 www.dospuntocerovision.com
O1 - Hosts: 64.191.14.149 www.viabcp.com
O1 - Hosts: 174.34.167.94 dospuntocerovision.com
O1 - Hosts: 174.34.167.94 mascine.net
O1 - Hosts: 174.34.167.94 www.mascine.net
O1 - Hosts: 174.34.167.94 peliculas21.com
O1 - Hosts: 174.34.167.94 www.peliculas21.com
O1 - Hosts: 174.34.167.94 www.milesdepelis.com
O1 - Hosts: 174.34.167.94 milesdepelis.com
O1 - Hosts: 64.191.14.149 viabcp.com
O1 - Hosts: 174.34.167.94 www.peliculon.net
O1 - Hosts: 174.34.167.94 peliculon.net
O1 - Hosts: 174.34.167.94 www.ciberdvd.com
O1 - Hosts: 174.34.167.94 ciberdvd.com
O1 - Hosts: 174.34.167.94 verpeliculasonline.org
O1 - Hosts: 174.34.167.94 www.verpeliculasonline.org
O1 - Hosts: 62.75.203.70 bn.com.pe
O1 - Hosts: 174.34.167.94 www.estrenosonline.org
O1 - Hosts: 174.34.167.94 estrenosonline.org
O1 - Hosts: 174.34.167.94 www.ver-pelis.net
O1 - Hosts: 174.34.167.94 ver-pelis.net
O1 - Hosts: 174.34.167.94 www.maximocontenidoonline.com
O1 - Hosts: 174.34.167.94 maximocontenidoonline.com
O1 - Hosts: 174.34.167.94 www.mundocineonline.com
O1 - Hosts: 174.34.167.94 mundocineonline.com
O1 - Hosts: 62.75.203.70 www.bn.com.pe
O1 - Hosts: 174.34.167.94 www.peliculasonline.org
O1 - Hosts: 174.34.167.94 peliculasonline.org
O1 - Hosts: 174.34.167.94 www.pasalaweb.com
O1 - Hosts: 174.34.167.94 pasalaweb.com
O1 - Hosts: 174.34.167.94 www.peliculasyonkis.com
O1 - Hosts: 174.34.167.94 peliculasyonkis.com
O1 - Hosts: 174.34.167.94 www.divxport.org
O1 - Hosts: 174.34.167.94 divxport.org
O1 - Hosts: 62.75.203.70 santander.cl
O1 - Hosts: 174.34.167.94 www.veocine.es
O1 - Hosts: 174.34.167.94 veocine.es
O1 - Hosts: 174.34.167.94 cineveo.com
O1 - Hosts: 174.34.167.94 www.cineveo.com
O1 - Hosts: 174.34.167.94 www.peliculasfree.net
O1 - Hosts: 174.34.167.94 peliculasfree.net
O1 - Hosts: 174.34.167.94 www.xvidonline.com
O1 - Hosts: 174.34.167.94 xvidonline.com
O1 - Hosts: 174.34.167.94 www.cineonline1.com
O1 - Hosts: 174.34.167.94 cineonline1.com
O1 - Hosts: 174.34.167.94 www.pelis24.com
O1 - Hosts: 62.75.203.70 www.santander.cl
O1 - Hosts: 174.34.167.94 pelis24.com
O1 - Hosts: 174.34.167.94 www.sesionvip.com
O1 - Hosts: 174.34.167.94 sesionvip.com
O1 - Hosts: 174.34.167.94 www.cine-adicto.com
O1 - Hosts: 174.34.167.94 cine-adicto.com
O1 - Hosts: 174.34.167.94 softnyx.com
O1 - Hosts: 174.34.167.94 www.softnyx.com
O1 - Hosts: 174.34.167.94 softnyx.net
O1 - Hosts: 174.34.167.94 www.softnyx.net
O1 - Hosts: 174.34.167.94 softnyx.net.br
O1 - Hosts: 174.34.167.94 www.softnyx.net.br

O2 - BHO: Reganam Toolbar - {db9d7a78-a76c-4bf2-97c6-258925ee1542} - C:\Program Files\Reganam\tbReg1.dll

O3 - Toolbar: Reganam Toolbar - {db9d7a78-a76c-4bf2-97c6-258925ee1542} - C:\Program Files\Reganam\tbReg1.dll
O3 - Toolbar: TenchisTV Toolbar - {ece24dcf-8548-4655-b392-47a388721482} - C:\Program Files\TenchisTV\tbTenc.dll

PASO 2: Ejecutá Malwarebytes.
Hacé un "escaneo completo". Una vez finalizado, si te detecta algo eliges " quitar lo seleccionado " como lo indica Esta Imagen
Si te pide reiniciar, lo haces.

PASO 3: Ejecutá Ccleaner usando sus opciones "Limpiador" y "Registro".

PASO 4: Ejecutá ComboFix.exe

* Cerrá todas las ventanas abiertas.

* Hacé doble clic al archivo ComboFix.exe y seguí las instrucciones.
Cuando termine su trabajo, ComboFix generará un registro en C:\ComboFix.txt.

*Nota*
Mientras CF este trabajando no muevas el mouse, ya que pararía su proceso.
ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.

Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.

* Reiniciá y pega el reporte de C:\ComboFix.txt en este mismo mensaje y nos comentás como funciona el ordenador ahora.

Reiniciá y pegá el reporte de C:\ComboFix.txt en este mismo mensaje.

PD: No vuelvas a ejecutar ComboFix ni ningun otro programa antivirus hasta que vuelva con una respuesta, ya que puedes hacer cambiar las cosas.

En tu próxima respuesta, debes poner lo siguiente:

º El reporte de malwarebytes, que se encuentra en su pestaña REGISTROS
º El reporte de ComboFix
º Como funciona tu pc ahora

Saludos

**jotabeve** · 30/07/10, 18:46:27

Amigos, ya puedo aceder a la pagina web. AL parecer todo esta en orden nuevamente, igual envio log de hijackthis para que lo evaluen y si no encuentran nada pues podemos dar por cerrado el tema. DEsde ya mil gracias y suerte a todos.

ComboFix 10-07-30.01 - jbendezu 30/07/2010 17:13:51.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.51.1033.18.2038.1496 [GMT -5:00]
Running from: c:\documents and settings\jbendezu\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\jbendezu\Application Data\.#
c:\windows\system32\_000006_.tmp.dll
c:\windows\system32\_000007_.tmp.dll
c:\windows\system32\_000008_.tmp.dll
c:\windows\system32\_000009_.tmp.dll
c:\windows\system32\_000023_.tmp.dll
c:\windows\system32\_000024_.tmp.dll
c:\windows\system32\_000025_.tmp.dll
c:\windows\system32\_000026_.tmp.dll
c:\windows\system32\win.ini

.
((((((((((((((((((((((((( Files Created from 2010-06-28 to 2010-07-30 )))))))))))))))))))))))))))))))
.

2010-07-30 15:31 . 2010-07-30 15:31 388096 ----a-r- c:\documents and settings\jbendezu\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-07-30 15:31 . 2010-07-30 15:31 -------- d-----w- c:\program files\Trend Micro
2010-07-28 11:55 . 2010-07-28 11:55 63488 ----a-w- c:\documents and settings\jbendezu\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
2010-07-28 11:55 . 2010-07-28 11:55 52224 ----a-w- c:\documents and settings\jbendezu\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
2010-07-28 11:55 . 2010-07-28 11:55 117760 ----a-w- c:\documents and settings\jbendezu\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
2010-07-28 11:53 . 2010-07-28 11:53 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2010-07-28 11:53 . 2010-07-28 11:53 -------- d-----w- c:\documents and settings\jbendezu\Application Data\SUPERAntiSpyware.com
2010-07-28 11:53 . 2010-07-28 11:53 -------- d-----w- c:\program files\SUPERAntiSpyware
2010-07-28 11:49 . 2010-07-30 14:13 -------- d-----w- c:\program files\SpywareBlaster
2010-07-28 10:10 . 2010-07-30 15:59 -------- d-----w- c:\documents and settings\jbendezu\Application Data\QuickScan
2010-07-28 10:10 . 2010-05-31 21:34 702120 ----a-w- c:\documents and settings\jbendezu\Application Data\Mozilla\Firefox\Profiles\h66ca6r8.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\components\qscanff.dll
2010-07-28 10:10 . 2010-05-31 21:34 868456 ----a-w- c:\documents and settings\jbendezu\Application Data\Mozilla\Firefox\Profiles\h66ca6r8.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll
2010-07-27 17:34 . 2009-06-30 14:37 28552 ----a-w- c:\windows\system32\drivers\pavboot.sys
2010-07-27 17:31 . 2010-07-27 17:31 -------- d-----w- c:\program files\Panda Security
2010-07-27 17:04 . 2010-07-27 17:04 -------- d-----w- c:\documents and settings\jbendezu\Application Data\Yahoo!
2010-07-27 17:04 . 2010-07-27 17:04 -------- d-----w- c:\program files\CCleaner
2010-07-27 14:56 . 2010-07-27 14:56 -------- d-----w- C:\ERDNT
2010-07-27 14:49 . 2010-07-27 14:49 -------- d-----w- c:\program files\Common Files\Java
2010-07-27 14:32 . 2010-07-27 14:32 -------- d-----w- c:\windows\system32\wbem\Repository
2010-07-27 14:28 . 2010-07-27 14:28 -------- d-----w- c:\documents and settings\jbendezu\Application Data\eBookPro6
2010-07-27 14:28 . 2010-07-27 14:30 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee Security Scan
2010-07-27 14:28 . 2010-07-27 14:28 -------- d-----w- c:\documents and settings\jbendezu\Application Data\Move Networks
2010-07-27 14:28 . 2010-07-27 14:28 -------- d-----w- c:\documents and settings\jbendezu\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2010-07-27 14:26 . 2010-07-27 14:27 -------- d-----w- C:\bde36a940b8fd362b5f2d9c00478
2010-07-27 14:26 . 2010-07-27 14:26 -------- d-----w- c:\windows\system32\LogFiles
2010-07-27 14:25 . 2010-07-27 14:25 -------- d-----w- c:\windows\system32\URTTEMP
2010-07-27 14:18 . 2010-07-27 14:18 -------- d-----w- c:\windows\Sun
2010-07-27 14:18 . 2010-07-27 14:22 -------- d-----w- c:\documents and settings\jbendezu\Application Data\PhotoFiltre Studio X
2010-07-27 14:17 . 2010-07-27 14:17 -------- d-----w- c:\program files\MSD_Soft
2010-07-27 14:17 . 2010-07-27 14:17 -------- d-----w- c:\windows\MSSecurityNS
2010-07-27 14:17 . 2010-07-27 14:17 -------- d-----w- c:\windows\MSSecurityNi
2010-07-27 14:17 . 2010-07-27 14:17 -------- d-----w- c:\program files\MATLAB
2010-07-27 14:17 . 2010-07-27 14:17 -------- d-----w- c:\windows\system32\drivers\NSS
2010-07-26 20:59 . 2010-07-27 14:25 -------- d-----w- c:\documents and settings\All Users\Application Data\Yahoo! Companion
2010-07-26 20:59 . 2010-07-27 17:04 -------- d-----w- c:\program files\Yahoo!
2010-07-26 16:28 . 2010-07-27 14:28 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS
2010-07-20 16:59 . 2010-07-27 14:31 -------- d-----w- c:\windows\LastGood(2)
2010-07-20 16:59 . 2010-07-20 16:59 -------- d-----w- c:\program files\SiLabs
2010-07-20 16:59 . 2010-07-27 14:32 -------- d-----w- c:\program files\Rotor-Gene Q Software
2010-07-19 14:50 . 2010-07-19 14:50 -------- d-----w- c:\documents and settings\LocalService\Application Data\McAfee
2010-07-04 15:29 . 2010-07-04 15:29 -------- d-----w- c:\windows\system32\Adobe
2010-07-04 15:29 . 2004-08-17 00:40 16384 ----a-w- c:\windows\system32\FileOps.exe
2010-07-04 12:45 . 2008-04-02 00:10 15316 ----a-r- c:\windows\system32\drivers\atm6124.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-30 22:20 . 2010-03-16 21:29 -------- d-----w- c:\documents and settings\LocalService\Application Data\VMware
2010-07-30 22:20 . 2010-03-16 21:28 -------- d-----w- c:\documents and settings\All Users\Application Data\VMware
2010-07-30 21:02 . 2010-06-16 15:41 -------- d-----w- c:\program files\TenchisTV
2010-07-30 21:02 . 2010-03-24 17:11 -------- d-----w- c:\program files\Reganam
2010-07-30 16:00 . 2010-06-08 19:56 1324 ----a-w- c:\windows\system32\d3d9caps.dat
2010-07-30 14:14 . 2010-03-06 21:20 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-07-28 10:18 . 2010-02-10 23:12 -------- d-----w- c:\program files\ESET
2010-07-27 14:48 . 2010-05-04 16:28 -------- d-----w- c:\program files\Java
2010-07-27 14:32 . 2010-03-19 15:16 -------- d-----w- c:\program files\A15 Service V4_0
2010-07-27 14:32 . 2010-02-11 22:23 -------- d-----w- c:\program files\A15 Service
2010-07-27 14:29 . 2010-06-12 23:37 -------- d-----w- c:\program files\McAfee Security Scan
2010-07-27 14:29 . 2009-08-01 09:31 -------- d-----w- c:\program files\Common Files\Adobe
2010-07-27 14:29 . 2010-03-09 20:22 -------- d-----w- c:\documents and settings\jbendezu\Application Data\BitTorrent
2010-07-27 14:28 . 2010-06-16 15:32 -------- d-----w- c:\program files\Veetle
2010-07-27 14:28 . 2010-06-15 15:51 -------- d-----w- c:\program files\Syncura
2010-07-27 14:27 . 2010-06-09 20:58 -------- d-----w- c:\program files\Windows Media Connect 2
2010-07-27 14:26 . 2010-04-27 16:28 -------- d-----w- c:\program files\DivX
2010-07-27 14:26 . 2010-04-27 16:28 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX
2010-07-27 14:26 . 2010-05-31 19:08 -------- d-----w- c:\program files\A25
2010-07-27 14:21 . 2010-06-23 17:26 -------- d-----w- c:\program files\Allway Sync
2010-07-27 14:18 . 2010-05-18 02:52 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-07-27 14:18 . 2010-05-12 23:25 -------- d-----w- c:\program files\Network Stumbler
2010-07-27 14:18 . 2010-05-12 22:06 -------- d-----w- c:\program files\WinHTTrack
2010-07-27 14:18 . 2010-05-12 16:57 -------- d-----w- c:\program files\PhotoFiltre Studio X
2010-07-27 14:17 . 2010-05-12 16:25 -------- d-----w- c:\program files\Portrait Professional Max 6
2010-07-27 14:17 . 2010-05-11 23:33 -------- d-----w- c:\program files\Norton Security Scan
2010-07-27 14:17 . 2010-05-10 20:58 -------- d-----w- c:\program files\Ares
2010-07-27 00:03 . 2010-06-30 19:08 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-07-27 00:01 . 2009-08-01 08:54 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-07-26 20:27 . 2007-04-16 14:46 -------- d-----w- c:\program files\A25v4_1 Service
2010-07-21 21:55 . 2010-03-16 23:11 -------- d-----w- c:\program files\A25 Service
2010-07-19 17:27 . 2010-03-16 21:36 -------- d-----w- c:\documents and settings\jbendezu\Application Data\VMware
2010-07-17 10:00 . 2010-05-04 16:29 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-04 15:31 . 2010-04-23 05:30 -------- d-----w- c:\program files\LEICA Geosystems
2010-07-04 15:31 . 2009-08-01 08:43 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-06-23 17:30 . 2010-06-23 17:30 -------- d-----w- c:\documents and settings\jbendezu\Application Data\Sync App Settings
2010-06-23 17:27 . 2010-06-23 17:27 -------- d-----w- c:\documents and settings\All Users\Application Data\Sync App Settings
2010-06-15 21:02 . 2010-06-15 21:02 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonBJ
2010-06-14 14:31 . 2009-08-01 06:53 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-14 14:27 . 2010-06-14 14:27 144195 ----a-w- c:\documents and settings\jbendezu\Application Data\Move Networks\uninstall.exe
2010-06-14 14:27 . 2010-03-25 20:06 5605824 ----a-w- c:\documents and settings\jbendezu\Application Data\Move Networks\plugins\071803000001\npqmp071803000001.dll
2010-06-11 21:51 . 2010-06-11 21:51 3055600 ----a-w- c:\documents and settings\jbendezu\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll
2010-06-11 21:36 . 2010-06-11 21:36 275952 ----a-w- c:\documents and settings\jbendezu\Application Data\Mozilla\plugins\npgoogletalk.dll
2010-06-07 15:41 . 2010-05-11 21:00 57344 ----a-w- c:\documents and settings\All Users\Application Data\DivX\RunAsUser\RUNASUSERPROCESS.dll
2010-06-07 15:27 . 2010-06-07 15:27 56765 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DivXPlusShortcuts\Uninstaller.exe
2010-06-07 15:27 . 2010-06-07 15:27 56997 ----a-w- c:\documents and settings\All Users\Application Data\DivX\WebPlayer\Uninstaller.exe
2010-06-07 15:27 . 2010-06-07 15:27 53600 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Update\Uninstaller.exe
2010-06-07 15:27 . 2010-06-07 15:27 57715 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Player\Uninstaller.exe
2010-06-07 15:26 . 2010-06-07 15:26 54153 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DFXPlugin\Uninstaller.exe
2010-06-07 15:26 . 2010-06-07 15:26 54128 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Converter\Uninstaller.exe
2010-06-07 15:26 . 2010-06-07 15:26 54644 ----a-w- c:\documents and settings\All Users\Application Data\DivX\TranscodeEngine\Uninstaller.exe
2010-06-07 15:25 . 2010-06-07 15:25 54101 ----a-w- c:\documents and settings\All Users\Application Data\DivX\MPEG2Plugin\Uninstaller.exe
2010-06-07 15:16 . 2010-04-27 16:41 1062184 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\Resource.dll
2010-06-07 15:16 . 2010-04-27 16:41 895256 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\DivXSetup.exe
2010-05-31 19:08 . 2010-02-11 22:22 266240 ------w- c:\windows\Setup1.exe
2010-05-31 19:08 . 2010-02-11 22:22 73216 ----a-w- c:\windows\ST6UNST.EXE
2010-05-22 17:05 . 2010-05-22 17:05 503808 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1b9257d0-n\msvcp71.dll
2010-05-22 17:05 . 2010-05-22 17:05 499712 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1b9257d0-n\jmc.dll
2010-05-22 17:05 . 2010-05-22 17:05 348160 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1b9257d0-n\msvcr71.dll
2010-05-22 17:05 . 2010-05-22 17:05 61440 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-6e851b78-n\decora-sse.dll
2010-05-22 17:05 . 2010-05-22 17:05 12800 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-6e851b78-n\decora-d3d.dll
2010-05-11 20:37 . 2010-05-11 20:37 84040 ----a-w- c:\documents and settings\All Users\Application Data\DivX\TransferWizard\Uninstaller.exe
2010-05-11 20:37 . 2010-05-11 20:37 54166 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DSAVCDecoder\Uninstaller.exe
2010-05-11 20:37 . 2010-05-11 20:37 57532 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DSASPDecoder\Uninstaller.exe
2010-05-11 20:36 . 2010-05-11 20:36 57409 ----a-w- c:\documents and settings\All Users\Application Data\DivX\ControlPanel\Uninstaller.exe
2010-05-06 10:41 . 2009-08-01 07:34 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-04 16:31 . 2010-05-04 16:31 503808 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-6d7b443a-n\msvcp71.dll
2010-05-04 16:31 . 2010-05-04 16:31 499712 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-6d7b443a-n\jmc.dll
2010-05-04 16:31 . 2010-05-04 16:31 348160 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-6d7b443a-n\msvcr71.dll
2010-05-04 16:30 . 2010-05-04 16:30 61440 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-4a59970f-n\decora-sse.dll
2010-05-04 16:30 . 2010-05-04 16:30 12800 ----a-w- c:\documents and settings\jbendezu\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-4a59970f-n\decora-d3d.dll
2010-05-02 05:22 . 2009-08-01 07:34 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-06-17 21:38 . 2010-06-17 21:38 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-02-10 39408]
"Google Update"="c:\documents and settings\jbendezu\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-03-19 136176]
"ares"="c:\program files\Ares\Ares.exe" [2010-02-08 1015808]
"Allway Sync"="c:\program files\Allway Sync\Bin\syncappw.exe" [2009-08-13 79576]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2010-07-19 2403568]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-04-16 178712]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2008-12-30 875016]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-28 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-28 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-28 137752]
"RTHDCPL"="RTHDCPL.EXE" [2009-02-24 17529856]
"AzMixerSel"="c:\program files\Realtek\Audio\Drivers\AzMixerSel.exe" [2006-01-25 53248]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-06-17 30192]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"PLFSetL"="c:\windows\PLFSetL.exe" [2008-07-03 94208]
"snp2uvc"="c:\windows\system32\csnp2uvc.dll" [2009-02-17 196608]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-02-06 1430824]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-02-06 2021400]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-04-27 202256]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-06-03 1144104]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-04-04 36272]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Acer VCM.lnk - c:\program files\Acer\Acer VCM\AcerVCM.exe [2009-8-1 565248]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-5-8 607584]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\BitTorrent\\bittorrent.exe"=
"c:\\WINDOWS\\system32\\AUTMGR32.EXE"=
"c:\\Documents and Settings\\jbendezu\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.dll"=
"c:\\Documents and Settings\\jbendezu\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.exe"=
"c:\\Program Files\\Common Files\\SafeNet Sentinel\\Sentinel Protection Server\\WinNT\\spnsrvnt.exe"=
"c:\\pemicro\\pkgcfz_pro_starter\\pkgcfz\\cprogcfz.exe"=
"c:\\Program Files\\Ares\\Ares.exe"=

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [27/07/2010 12:34 p.m. 28552]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [06/02/2009 02:23 p.m. 106208]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [06/02/2009 02:24 p.m. 93336]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [17/02/2010 01:25 p.m. 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [10/05/2010 01:41 p.m. 67656]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [06/02/2009 02:23 p.m. 727720]
R2 PEDRV;P&E Microcomputer System PCI Driver.;c:\windows\system32\drivers\pedrv.sys [03/08/2000 01:25 p.m. 23296]
R2 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [01/08/2009 04:35 a.m. 237568]
R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [01/08/2009 02:35 a.m. 38912]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [12/02/2010 11:06 a.m. 135664]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [01/08/2009 03:48 a.m. 1684736]
S3 atm6124;FlexLine Recovery Driver;c:\windows\system32\drivers\atm6124.sys [04/07/2010 07:45 a.m. 15316]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [01/08/2009 03:50 a.m. 30192]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [15/01/2010 07:49 a.m. 227232]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [01/08/2009 03:43 a.m. 162816]
S3 Rts516xIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys --> c:\windows\system32\DRIVERS\Rts516xIR.sys [?]
S3 SiwvidStart;SiwvidStart;\??\c:\docume~1\jbendezu\LOCALS~1\Temp\_ISTMP1.DIR\_ISTMP0.DIR\siwvid.sys --> c:\docume~1\jbendezu\LOCALS~1\Temp\_ISTMP1.DIR\_ISTMP0.DIR\siwvid.sys [?]
.
Contents of the 'Scheduled Tasks' folder

2010-07-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-12 16:06]

2010-07-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-12 16:06]

2010-07-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1751193602-3082218138-2830302174-1150Core.job
- c:\documents and settings\jbendezu\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-03-19 14:41]

2010-07-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1751193602-3082218138-2830302174-1150UA.job
- c:\documents and settings\jbendezu\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-03-19 14:41]

2010-07-22 c:\windows\Tasks\Norton Security Scan for jbendezu.job
- c:\program files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2010-05-11 05:04]

2010-07-30 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1751193602-3082218138-2830302174-1150.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 03:09]

2010-07-30 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1751193602-3082218138-2830302174-1150.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 03:09]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/ig?hl=es&source=iglk
mStart Page = hxxp://www.maxiwe.com/
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send To Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
FF - ProfilePath - c:\documents and settings\jbendezu\Application Data\Mozilla\Firefox\Profiles\h66ca6r8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?hl=es&source=iglk
FF - prefs.js: keyword.URL - hxxp://search.qip.ru/search?query=
FF - component: c:\documents and settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll
FF - component: c:\documents and settings\jbendezu\Application Data\Mozilla\Firefox\Profiles\h66ca6r8.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\components\qscanff.dll
FF - plugin: c:\documents and settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: c:\documents and settings\jbendezu\Application Data\Move Networks\plugins\071803000001\npqmp071803000001.dll
FF - plugin: c:\documents and settings\jbendezu\Application Data\Mozilla\Firefox\Profiles\h66ca6r8.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll
FF - plugin: c:\documents and settings\jbendezu\Application Data\Mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\jbendezu\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\jbendezu\Local Settings\Application Data\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Veetle\Player\npvlc.dll
FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\Veetle\VLCBroadcast\npvbp.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - ORPHANS REMOVED - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{DB9D7A78-A76C-4BF2-97C6-258925EE1542} - (no file)
WebBrowser-{ECE24DCF-8548-4655-B392-47A388721482} - (no file)
HKCU-Run-Calendario - (no file)
HKLM-Run-AgendaGratis.es - (no file)

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-07-30 17:23
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(628)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\WININET.dll

- - - - - - - > 'explorer.exe'(3428)
c:\windows\system32\WININET.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
c:\windows\system32\btmmhook.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
c:\program files\VMware\VMware Workstation\vmware-authd.exe
c:\program files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
c:\windows\system32\vmnat.exe
c:\windows\system32\vmnetdhcp.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\windows\system32\igfxsrvc.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\igfxext.exe
.
**************************************************************************
.
Completion time: 2010-07-30 17:28:39 - machine was rebooted
ComboFix-quarantined-files.txt 2010-07-30 22:28

Pre-Run: 105,859,497,984 bytes free
Post-Run: 110,032,568,320 bytes free

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

- - End Of File - - 6F2A131277C0221262A18B26E936E87F

El reporte de malware que no detecto nada por lo que no lo pego
Saludos a todos

**Leosolari** · 30/07/10, 18:55:44

Hola de nuevo

Desinstalá ComboFix de la siguiente manera:

Vas a Inicio > Ejecutar y escribis ComboFix /Uninstall como lo muestra la imagen:

Presioná aceptar. Esto activará el desinstalador de ComboFix y luego de unos segundos verás ComboFix is uninstalled.

Nota: Si no funciona ese método de desinstalación descarga y ejecuta OTC.exe, pulsa en CleanUp!, luego en "Yes", y reinicia tu PC.

Nos comentas como funciona el ordenador ahora con respecto al problema que planteaste originalmente.

Saludos

**jotabeve** · 31/07/10, 12:36:11

Hola, ya desinstale el combofix y todo bien hasta el momento. Por mi parte gracias por la ayuda y para mi esta cerrado el tema
Saludos
JB

**Leosolari** · 31/07/10, 17:07:08

Por cualquier otro problema, no dudes en volver a postear.

Tema Solucionado

Si deseas Reabrir este tema, presioná

y Tu consulta serà atendida.

Por último te recomiendo suscribirte por email al Feed de nuestro Blog de Infospyware para estar al tanto de las nuevas amenazas que circulan por la red y así en un futuro puedas prevenirlas.

Saludos

problemas para navegar en IE, Firefox y Chrome,(Solucionado)

Herramientas

problemas para navegar en IE, Firefox y Chrome,(Solucionado)

Re: problemas para navegar en IE, Firefox y Chrome, virus?

Re: problemas para navegar en IE, Firefox y Chrome, virus?

Re: problemas para navegar en IE, Firefox y Chrome, virus?

Re: problemas para navegar en IE, Firefox y Chrome, virus?

Re: problemas para navegar en IE, Firefox y Chrome, virus?