Solucionado No abre Google.com

Tema en 'Logs HijackThis' comenzado por MillyRamirez, 21/8/11.

Estado del tema:
No está abierto para más respuestas.
  1. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Hola a todos, ante todo gracias por las recomendaciones que me dieron anteriormente, las cuales funcionaron a las mil maravillas. tilice el malwarebytes y ccleaner y soluciono parte del problema, ya que ciertas paginas no las permite abrir, como por ejemplo google.com, pero si lo hace en google.es, asi mismo, cuando algun programa me pide que reescriba la palabra o datos que aparecen en el recuadro de seguridad, no me salen nada en el rectangulo, es decir aparece vacio. Podrian darme una mano por favor??? Gracias y espero sus respuestas.
     
  2. Kbite

    Kbite Administrador Administrador

  3. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Gracias por responderme, pero sigo teniendo el mismo problema, ya he corrido el programa Malwarebytes y tambien el antivirus (AVAST free edition) y no hay ninguna infeccion, tambien borre los archivos temporales y limpie las cookies con %Temp% y con Ccleaner respectivamente, y sigo teniendo el mismo problema, no me permite abrir la pagina Google, solo Google, que mas debo de hacer por favor, podrias orientarme???, a que se debe que algunas paginas no permite que se abran, si no he modificado nada del sistema. Agradecere tu valiosa opinion.
     
  4. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Me olvide de decirte que cuando abro la pagina de google.com, me sale el mensaje de error: http 400 bad request.
     
  5. Caito

    Caito Nuevo Miembro Miembro

    Ejecuta el Hijack:
    ve a "Open the misc. tools section"
    busca "open host file manager"
    busca "open in notepad"
    me pones eso en tu próximo post
    Saludos
    Caito
    Pd : nos debes un log del hijack....
     
  6. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Hola Caito, gracias de antemano por tu respuesta. Aca te mando los reportes para que por favor los analises. Tambien corri el ccleaner, borrando cookies, etc. Espero tu respuesta.
    Malwarebytes' Anti-Malware 1.51.1.1800
    Malwarebytes : Free anti-malware, anti-virus and spyware removal download

    Database version: 7513

    Windows 6.0.6002 Service Pack 2
    Internet Explorer 9.0.8112.16421

    8/22/2011 6:34:24 PM
    mbam-log-2011-08-22 (18-34-24).txt

    Scan type: Full scan (C:\|)
    Objects scanned: 277445
    Time elapsed: 2 hour(s), 7 minute(s), 16 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 0

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    (No malicious items detected)

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    (No malicious items detected)

    Folders Infected:
    (No malicious items detected)

    Files Infected:
    (No malicious items detected)

    QuickScan Beta 32-bit v0.9.9.99
    -------------------------------
    Scan date: Mon Aug 22 15:53:47 2011
    Machine ID: EADE7FB2



    No infection found.
    -------------------



    Processes
    ---------
    Agere Soft Modem Call Progress Service 1416 C:\Windows\System32\agrsmsvc.exe
    Alps Pointing-device Driver 3548 C:\Program Files\Apoint2K\Apoint.exe
    Alps Pointing-device Driver for Windows 1096 C:\Program Files\Apoint2K\ApntEx.exe
    ApMsgFwd 2476 C:\Program Files\Apoint2K\ApMsgFwd.exe
    avast! Antivirus 1716 C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    avast! Antivirus 2212 C:\Program Files\AVAST Software\Avast\AvastUI.exe
    Bluetooth Stack for Windows by TOSHIBA 2708 C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
    ConfigFree(TM) 1612 C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
    ConfigFree(TM) 2668 C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
    ConfigFree(TM) Tray 3452 C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
    En-us 3396 C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
    Flash® Player Installer/Uninstaller 2888 C:\Windows\System32\Macromed\Flash\FlashUtil10v_ActiveX.exe
    HD Audio Control Panel 3260 C:\Windows\RtHDVCpl.exe
    Intel(R) Common User Interface 792 C:\Windows\System32\hkcmd.exe
    Intel(R) Common User Interface 3364 C:\Windows\System32\igfxpers.exe
    Intel(R) Common User Interface 3580 C:\Windows\System32\igfxsrvc.exe
    Intel(R) Common User Interface 3084 C:\Windows\System32\igfxtray.exe
    KeNotify Application 2328 C:\Program Files\Toshiba\Utilities\KeNotify.exe
    mcci+McciCMService 2240 C:\Program Files\Common Files\Motive\McciCMService.exe
    Microsoft Search Enhancement Pack 2420 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    Microsoft® Windows® Operating System 2232 C:\Windows\explorer.exe
    Microsoft® Windows® Operating System 592 C:\Windows\System32\csrss.exe
    Microsoft® Windows® Operating System 644 C:\Windows\System32\csrss.exe
    Microsoft® Windows® Operating System 680 C:\Windows\System32\services.exe
    Microsoft® Windows® Operating System 1332 C:\Windows\System32\SLsvc.exe
    Microsoft® Windows® Operating System 524 C:\Windows\System32\smss.exe
    Microsoft® Windows® Operating System 264 C:\Windows\System32\spoolsv.exe
    Microsoft® Windows® Operating System 2216 C:\Windows\System32\taskeng.exe
    Microsoft® Windows® Operating System 3936 C:\Windows\System32\taskeng.exe
    Microsoft® Windows® Operating System 2924 C:\Windows\System32\wbem\unsecapp.exe
    Microsoft® Windows® Operating System 3912 C:\Windows\System32\wbem\WmiPrvSE.exe
    Microsoft® Windows® Operating System 636 C:\Windows\System32\wininit.exe
    Microsoft® Windows® Operating System 780 C:\Windows\System32\winlogon.exe
    TDCSrv Application 2660 C:\Windows\System32\TODDSrv.exe
    TOSHIBA DVD Player 2556 C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
    TOSHIBA Power Saver 2684 C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
    TOSHIBA S.M.A.R.T. Log Service 2780 C:\Program Files\Toshiba\SMARTLogService\TosIPCSrv.exe
    Windows® Internet Explorer 1516 C:\Program Files\Internet Explorer\iexplore.exe
    Windows® Internet Explorer 4060 C:\Program Files\Internet Explorer\iexplore.exe
    Windows® Internet Explorer 3780 C:\Program Files\Internet Explorer\iexplore.exe
    Windows® Internet Explorer 4044 C:\Program Files\Internet Explorer\iexplore.exe
    Windows® Search 2080 C:\Windows\System32\SearchFilterHost.exe
    Windows® Search 1268 C:\Windows\System32\SearchProtocolHost.exe
    (verified) Microsoft® .NET Framework 944 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    (verified) Microsoft® Windows® Operating System 1100 C:\Program Files\Windows Media Player\wmpnscfg.exe
    (verified) Microsoft® Windows® Operating System 3024 C:\Windows\ehome\ehmsas.exe
    (verified) Microsoft® Windows® Operating System 3620 C:\Windows\ehome\ehtray.exe
    (verified) Microsoft® Windows® Operating System 544 C:\Windows\servicing\TrustedInstaller.exe
    (verified) Microsoft® Windows® Operating System 2188 C:\Windows\System32\dwm.exe
    (verified) Microsoft® Windows® Operating System 692 C:\Windows\System32\lsass.exe
    (verified) Microsoft® Windows® Operating System 700 C:\Windows\System32\lsm.exe
    (verified) Microsoft® Windows® Operating System 2820 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 1316 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 1748 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 888 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 1780 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 1176 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 1160 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 2332 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 2372 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 2400 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 2528 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 1028 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 1120 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 1588 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 304 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 1372 C:\Windows\System32\svchost.exe
    (verified) Microsoft® Windows® Operating System 996 C:\Windows\System32\svchost.exe
    (verified) Windows® Search 2844 C:\Windows\System32\SearchIndexer.exe


    Network activity
    ----------------
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.41
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.41
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 74.125.127.95
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.41
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.41
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.41
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.41
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 184.25.156.124
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 74.125.224.73
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 184.25.156.124
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.90
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 74.125.127.96
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 74.125.224.154
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 69.171.224.12
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.75
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.75
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 72.247.218.75
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 216.137.37.45
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 216.137.37.86
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 216.137.37.45
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 74.125.224.154
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 216.137.37.45
    Process AvastSvc.exe (1716) connected on port 80 (HTTP) --> 69.171.224.12
    Process iexplore.exe (3780) connected on port 443 (HTTP over SSL) --> 74.125.224.159
    Process iexplore.exe (3780) connected on port 443 (HTTP over SSL) --> 74.125.127.96
    Process iexplore.exe (3780) connected on port 443 (HTTP over SSL) --> 74.125.224.138
    Process iexplore.exe (3780) connected on port 443 (HTTP over SSL) --> 74.125.224.138

    Process wininit.exe (636) listens on ports: 49152 (RPC)
    Process services.exe (680) listens on ports: 49161 (RPC)
    Process lsass.exe (692) listens on ports: 49153 (RPC)
    Process svchost.exe (996) listens on ports: 135 (RPC)
    Process svchost.exe (1120) listens on ports: 49154 (RPC)
    Process svchost.exe (1176) listens on ports: 49156 (RPC)


    Autoruns and critical files
    ---------------------------
    Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
    Adobe Reader and Acrobat Manager C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    Alps Pointing-device Driver C:\Program Files\Apoint2K\Apoint.exe
    avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastUI.exe
    Bluetooth Stack for Windows by Toshiba C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
    HD Audio Control Panel C:\Windows\RtHDVCpl.exe
    Intel(R) Common User Interface C:\Windows\System32\hkcmd.exe
    Intel(R) Common User Interface C:\Windows\system32\igfxdev.dll
    Intel(R) Common User Interface C:\Windows\System32\igfxpers.exe
    Intel(R) Common User Interface C:\Windows\System32\igfxtray.exe
    Internet Explorer C:\Program Files\Internet Explorer
    KeNotify Application C:\Program Files\Toshiba\Utilities\KeNotify.exe
    Microsoft® Windows® Operating System C:\Windows\system32\BROWSEUI.dll
    Realtek Voice Manager C:\Windows\Skytel.exe
    SVPWUTIL Application C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe
    TOSHIBA Flash Cards C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
    TOSHIBA Power Saver C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE
    TOSHIBA Zooming Utility C:\Program Files\Toshiba\SmoothView\SmoothView.exe
    Windows® Internet Explorer c:\windows\system32\webcheck.dll
    (verified) Microsoft® Windows® Operating System C:\Program Files\Windows Media Player\wmpnscfg.exe
    (verified) Microsoft® Windows® Operating System C:\Windows\ehome\ehtray.exe
    (verified) Microsoft® Windows® Operating System c:\windows\system32\userinit.exe
    (verified) Windows Defender C:\Program Files\Windows Defender\MSASCui.exe


    Browser plugins
    ---------------
    AcroIEHelperShim Library c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
    Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
    Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll
    avast! WebRep c:\program files\avast software\avast\aswwebrepie.dll
    BitDefender QuickScan C:\Windows\Downloaded Program Files\qsax.dll
    Java(TM) Platform SE 6 U3 c:\program files\java\jre1.6.0_03\bin\ssv.dll
    Microsoft Search Enhancement Pack c:\program files\microsoft\search enhancement pack\search helper\sepsearchhelperie.dll
    Microsoft® CoReXT c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
    Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
    Windows Live Messenger Companion c:\program files\windows live\companion\companioncore.dll
    Windows® Internet Explorer C:\Windows\System32\ieframe.dll
    (verified) Microsoft® Windows® Operating System C:\Windows\system32\mswsock.dll
    (verified) Microsoft® Windows® Operating System C:\Windows\system32\napinsp.dll
    (verified) Microsoft® Windows® Operating System C:\Windows\system32\NLAapi.dll
    (verified) Microsoft® Windows® Operating System C:\Windows\system32\pnrpnsp.dll
    (verified) Microsoft® Windows® Operating System C:\Windows\System32\winrnr.dll
    (verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll
    (verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll
    (verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll
    (verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll
    (verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll
    (verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll
    (verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll


    Missing files
    -------------
    File not found: NDSTray.exe
    --> HKLM\Software\Microsoft\Windows\CurrentVersion\Run\"NDSTray.exe"

    File not found: TOSCDSPD.EXE
    --> HKCU\Software\Microsoft\Windows\CurrentVersion\Run\"TOSCDSPD"


    Scan
    ----
    MD5: 4393dcb856a2a109e266e6f59e2ef31a C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
    MD5: 69169586efad19f53c2012ffd8fdcf45 C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
    MD5: c70a900ec26d9cac356972dea1e23d66 C:\Program Files\Apoint2K\ApCommon.DLL
    MD5: cbef22b03619b8941df18d2e451369a8 C:\Program Files\Apoint2K\ApDual.dll
    MD5: 49993b0d37ff56a57c9eae352db195f8 C:\Program Files\Apoint2K\ApMain.DLL
    MD5: 62446ec17655601442529d54608fdce7 C:\Program Files\Apoint2K\ApMouse.dll
    MD5: 7890a95bba6ee9eb0e4539f5270a6201 C:\Program Files\Apoint2K\ApMsgFwd.exe
    MD5: 99a7b10500920e5cc79b700927b18bc1 C:\Program Files\Apoint2K\ApntEx.exe
    MD5: 6838faa4b684e8294a2c165aaf5b3f60 C:\Program Files\Apoint2K\Apoint.exe
    MD5: 2dc5494e1cbf8684a0ff450bf117a398 C:\Program Files\Apoint2K\ApOthers.dll
    MD5: 09ffc1f6a2b53a921bbad62a498d4504 C:\Program Files\Apoint2K\ApPad.dll
    MD5: 8312791b839a6d38f6ea0cb4dc22f3e2 C:\Program Files\Apoint2K\ApStick.dll
    MD5: f7fb3becfc1f11bba5063e1474761933 C:\Program Files\Apoint2K\ApString.dll
    MD5: 4afb0f5533405bf53f26423bf8726ba9 C:\Program Files\Apoint2K\EzAuto.dll
    MD5: d54644c1fc37ec94cf3fad916503c4ea C:\Program Files\Apoint2K\EzCapt.dll
    MD5: a0b2b8f5fa5c39ae1e19b2593e4c1ab2 C:\Program Files\Apoint2K\EzLaunch.dll
    MD5: 08914bc785004fb29cb58ff435ec0a7b C:\Program Files\AVAST Software\Avast\1033\Base.dll
    MD5: afde47adfc785bffe2ccaebd31617871 C:\Program Files\AVAST Software\Avast\1033\UILangRes.dll
    MD5: 48d892b1b3adb0a6502095ab0014d368 C:\Program Files\AVAST Software\Avast\Aavm4h.dll
    MD5: b14242184207da229a3ac25168ffc44a C:\Program Files\AVAST Software\Avast\AavmRpch.dll
    MD5: 14e6721d9883753a3c4bcf0159fa9ca8 C:\Program Files\AVAST Software\Avast\AhResBhv.dll
    MD5: 8b476d677dfe35efe7b3edbf377f0038 C:\Program Files\AVAST Software\Avast\AhResJs.dll
    MD5: 958eae9951d450c33785aaa3e8c18643 C:\Program Files\AVAST Software\Avast\AhResMai.dll
    MD5: fae73418fe3e9d62d1dc275c1a6470f7 C:\Program Files\AVAST Software\Avast\AhResMes.dll
    MD5: ea273c786c0f7537b84cb91dafc33079 C:\Program Files\AVAST Software\Avast\AhResNS.dll
    MD5: 8941988b4aaf4713a3b3fcb294b2edf7 C:\Program Files\AVAST Software\Avast\AhResP2P.dll
    MD5: a333dd2e324c6ba76a3d3e4bbcb94f3c C:\Program Files\AVAST Software\Avast\AhResStd.dll
    MD5: 9fb89dbf8a2a3c26d036b8569b154590 C:\Program Files\AVAST Software\Avast\AhResWS.dll
    MD5: ace9981252e1f262ac276b7615ef6feb C:\Program Files\AVAST Software\Avast\ashBase.dll
    MD5: effc885db306a3677cc3a62647c6ad08 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
    MD5: f0fe90c1f71fe7f6ddeaef8c0b6c4a24 C:\Program Files\AVAST Software\Avast\ashServ.dll
    MD5: f24bdd5c07249766e15078d6a7bf9055 C:\Program Files\AVAST Software\Avast\ashShell.dll
    MD5: 96ffbb4c8e32325c1b49a393284f77ee C:\Program Files\AVAST Software\Avast\ashTask.dll
    MD5: 53fa4e859b6440eaf6673e813caa7c4e C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
    MD5: af4a3cca045eee5f7a2280284052e361 C:\Program Files\AVAST Software\Avast\ashWebSv.dll
    MD5: 5a312e660ba43a3233efc11146d3a318 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
    MD5: 9ad6a0464da99fada8677f495ff84043 C:\Program Files\AVAST Software\Avast\aswAux.dll
    MD5: 3992d00ea19fcde5710e31b1768efa20 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
    MD5: a822e400eb848449368a2d6c99dee8e8 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
    MD5: d662f9567979fcacac8301b6ce18971b C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
    MD5: 19c6484fd56c29dee30f1c6f8cbd374d C:\Program Files\AVAST Software\Avast\aswData.dll
    MD5: 2fd69aee607066766930ceb925db0459 C:\Program Files\AVAST Software\Avast\aswDld.dll
    MD5: dc9ec6dbb7b5ac6d1ec070df4e8ed903 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
    MD5: 95ffe45120788d0bac3071a913172a58 C:\Program Files\AVAST Software\Avast\aswIdle.dll
    MD5: fd2d867fe775cc5357cecf2f14515b61 C:\Program Files\AVAST Software\Avast\aswLog.dll
    MD5: 464fdfa22c63d742de476a83042d53f9 C:\Program Files\AVAST Software\Avast\aswProperty.dll
    MD5: acd4e66d0abdcd3e74a1673cdeb38fcc C:\Program Files\AVAST Software\Avast\aswSqLt.dll
    MD5: f01e06906743d0bc93d51328f4cdb8ce C:\Program Files\AVAST Software\Avast\aswUtil.dll
    MD5: 75d85bd73b985dd443ea640c0a907b4f c:\program files\avast software\avast\aswwebrepie.dll
    MD5: d16c826f375a44802bf317982e81a7e2 C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    MD5: e7cf222185411c6a3e68273c452b3283 C:\Program Files\AVAST Software\Avast\AvastUI.exe
    MD5: d28f68d1b224e4b254fd5fcecc941340 C:\Program Files\AVAST Software\Avast\CommonRes.dll
    MD5: 6790b7cf78c1da03b85b1794a54e29e6 C:\Program Files\AVAST Software\Avast\defs\11082201\algo.dll
    MD5: d7dc1ac528e44ef1634930559266d0e1 C:\Program Files\AVAST Software\Avast\defs\11082201\arPot.dll
    MD5: 708a975cdacc2b844e3727dd28a24333 C:\Program Files\AVAST Software\Avast\defs\11082201\aswAR.dll
    MD5: 4a438391a6df4ae046c89165dc39637c C:\Program Files\AVAST Software\Avast\defs\11082201\aswCmnBS.dll
    MD5: f7bd12731bf9cb9196f65ed39eaca1fc C:\Program Files\AVAST Software\Avast\defs\11082201\aswCmnIS.dll
    MD5: e4bd1e2459fa897af867f667eec62d1e C:\Program Files\AVAST Software\Avast\defs\11082201\aswCmnOS.dll
    MD5: 3a9059c2ad07b25e3c458eee722e641a C:\Program Files\AVAST Software\Avast\defs\11082201\aswEngin.dll
    MD5: 473200d01189051a3f0e7207f1984f0d C:\Program Files\AVAST Software\Avast\defs\11082201\aswRawFs.dll
    MD5: a762ec3fc03d8c9f4dd65682b783a089 C:\Program Files\AVAST Software\Avast\defs\11082201\aswRep.dll
    MD5: 7d15bf4c00d970739492dcd53f3a0a75 C:\Program Files\AVAST Software\Avast\defs\11082201\aswScan.dll
    MD5: fa97ad1885871c3184427138b7c1dd41 C:\Program Files\AVAST Software\Avast\snxhk.dll
    MD5: 203a74767eb81f96a5166b1933db46d0 c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
    MD5: 47c1de0a890613ffcff1d67648eedf90 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    MD5: cf39a105cd553eed31e2255aff4c6742 c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
    MD5: fb01d4ae207b9efdbabfc55dc95c7e31 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    MD5: fb4125937b07247e236bdb49b91102bf C:\Program Files\Common Files\Motive\McciCMService.exe
    MD5: a1659e4d08fe8d0f0bc61960d8c0369e C:\Program Files\Internet Explorer\ieproxy.dll
    MD5: 7d8e146a863d62c8f88128a30872a18f C:\Program Files\Internet Explorer\IEShims.dll
    MD5: 904e13ba41af2e353a32cf351ca53639 C:\Program Files\Internet Explorer\iexplore.exe
    MD5: 4393dcb856a2a109e266e6f59e2ef31a C:\Program Files\Internet Explorer\plugins\nppdf32.dll
    MD5: d787e3123fad2bd58ab45b9a5c360acd c:\program files\java\jre1.6.0_03\bin\ssv.dll
    MD5: 723ba0aec942e91c0a9ce146e73deceb C:\Program Files\Jumpstart\jswpsapi.exe
    MD5: 55f2927c9a5d7e2237a103dcbcd374a8 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
    MD5: ddf15a42e27e8efe27b18fd403151a86 C:\Program Files\Microsoft Fix it Center\Matsvc.exe
    MD5: c3e42cbf8215171a524d123a54ae3233 c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
    MD5: 16a252022535b680046f6e34e136d378 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    MD5: a4ad1aa4c57409480c1d84bbca6becf0 c:\program files\microsoft\search enhancement pack\search helper\sepsearchhelperie.dll
    MD5: ce0999910d37f61f2314c998f4f9d1d4 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
    MD5: 2e7315b147e524e055026e6634b14ea6 C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
    MD5: ac2a63b20bec16f8cf59a47e57cf2f47 C:\Program Files\Toshiba\ConfigFree\CFP2API.dll
    MD5: 596e452b5152ec9afe8153d296459d2b C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
    MD5: f064d3da9bcec02d9782d39446603dca C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
    MD5: af914ff5558b30409a0272977fb956b2 C:\Program Files\Toshiba\ConfigFree\CFUPNP.dll
    MD5: c328b03e5dc2b83a37b62971018bffd7 C:\Program Files\TOSHIBA\ConfigFree\CFWLAPI.dll
    MD5: c3e53c4c5c1b3c8d38956edb4e5a5f0f C:\Program Files\TOSHIBA\ConfigFree\IpAdrSet.dll
    MD5: 09ab39b3164c3e3ab48dc81e914203d3 C:\Program Files\TOSHIBA\ConfigFree\NDSAPI.dll
    MD5: b79ccb942ba0ca2351cd9c4b29f01ac3 C:\Program Files\Toshiba\ConfigFree\NDSNLS.dll
    MD5: 42764a4fd5e4726cfcef3e5c2222de9d C:\Program Files\Toshiba\ConfigFree\NDSParts.dll
    MD5: dbc3e8226be6fe67fae94025c80fe907 C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
    MD5: 1260f67fcb873afab1ef448c433c50ad C:\Program Files\Toshiba\ConfigFree\OpenProp.dll
    MD5: e9e5692f51d6032a1105c7be27fc0bae C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
    MD5: da6903958cbdc091ffcbbca70ccff34c C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
    MD5: 254cfbf1daa777825b139cfa1a4c8b7d C:\Program Files\Toshiba\Power Saver\TPwrFunc.dll
    MD5: b0674ae101707d21f9e30484d6465704 C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE
    MD5: 387ecaf254ab992eea44091194551a4b C:\Program Files\Toshiba\Power Saver\TPwrReg.dll
    MD5: 22690dffc7f2a18279a7a0489aa02bac C:\Program Files\Toshiba\SMARTLogService\TosIPCSrv.exe
    MD5: 4e72f2dc0a0b2d48c70f7ee5d3b84b93 C:\Program Files\Toshiba\SmoothView\SmoothView.exe
    MD5: 137149b37e9c9dbde30e4c40867252e4 C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
    MD5: afd400aebcab252c99e60991ff00d9d2 C:\Program Files\Toshiba\Utilities\KeNotify.exe
    MD5: e8fe2998200dbd6fa80d253f136713ba C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe
    MD5: 7d1f2afe12bafc4c18c5a0e3c6866e38 c:\program files\windows defender\mprtplug.dll
    MD5: 0ee505f20817f13dea0c6907a94469d2 c:\program files\windows live\companion\companioncore.dll
    MD5: 40cdfad174b3d5e80f95dda003c0b97f C:\Program Files\Windows Live\Family Safety\fsssvc.exe
    MD5: 6067acef367e79914af628fa1e9b5330 C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
    MD5: 640777e7399b65e7903ab8bf51b84781 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7E412DDC-79B7-4CF5-969E-0C9B84A94C32}\mpengine.dll
    MD5: 9bd4dcb5412921864a7aacdedfbd1923 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
    MD5: 07c02c892e8e1a72d6bf35004f0e9c5e C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
    MD5: 6dbf2ac2bdaff355995ab25eccc4cfe1 C:\Toshiba\IVP\ISM\pinger.exe
    MD5: e1292c1ed4deb17b8a9b586d22cb2061 c:\Toshiba\IVP\swupdate\swupdtmr.exe
    MD5: 0c9fffc25f797f8c7c3f99bc12cfa411 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\f6deb187f24bb3185841092b89fbfdbb\mscorlib.ni.dll
    MD5: e95d18effdad33f6779f91d381939753 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\cbe5fbb2e20534d89c0588cc05418840\PresentationCore.ni.dll
    MD5: c0a413231da51c2d5f90db8da0076ea9 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\b350a5cb539f16b07028cfa6483ee886\PresentationFontCache.ni.exe
    MD5: 49eadb24f0442ec1eed68c2c6bbdfa76 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\1cc11918d8dd561391bba05c61de7573\System.ServiceProcess.ni.dll
    MD5: 2d779ec9611bd0bc27a2ab55ac9f481d C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b9ea0d414c4861120bfb7365d8ec0939\System.ni.dll
    MD5: 5a99137fdb7b868eb3215218b69ee252 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\9afe86eee3ddf79c5f6cf5d85873c464\WindowsBase.ni.dll
    MD5: 823451876778f382b23afe20ef2ddc20 C:\Windows\Downloaded Program Files\qsax.dll
    MD5: f3432e0c2d2c257d07d43fd57a0cde6a C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
    MD5: f5df6846f30e9f54ea60ccaeb3fb2055 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
    MD5: 99c1d6b7c36c891ec099aa8d120185c4 C:\Windows\RtHDVCpl.exe
    MD5: f6dfdfd5bc950275de3b285e108cb974 C:\Windows\servicing\CbsApi.dll
    MD5: c8612e58fb7fcfa5eea4e39f7b8cbc17 C:\Windows\Skytel.exe
    MD5: e9b9c1b98c8d6d48407e1c1203eac659 C:\Windows\System32\adsldpc.dll
    MD5: 031da76a5a7dc13f015dd3491394865e C:\Windows\system32\advpack.dll
    MD5: 39e435c90c9c4f780fa0ed05ca3c3a1b C:\Windows\System32\agrsmsvc.exe
    MD5: f31eebc1a1c81fd04005489cc3dcdfe7 C:\Windows\system32\basesrv.dll
    MD5: f21f255b91ca4f04e4250decd2067cbb c:\windows\system32\bitsperf.dll
    MD5: d333058925ce305e39de8d5ad2b52a46 C:\Windows\system32\CLUSAPI.DLL
    MD5: 74f26fc01b180d4a99a168ed69c30a53 C:\Windows\system32\cmd.exe
    MD5: 93e317d7ad783d8eaee2e3500bfe889d C:\Windows\System32\credui.dll
    MD5: ca111717010609a03b2720fcb1634daa C:\Windows\system32\CSRSRV.dll
    MD5: abca209eba02cb59233614db83b4f50d C:\Windows\System32\csrss.exe
    MD5: 3dfeec45e5f22993216083fb777719d5 C:\Windows\system32\d2d1.dll
    MD5: 8b02d2ecc7ef6e1f6af08459e3f741f6 C:\Windows\system32\d3d10.dll
    MD5: 29e4ea31c6debe5efb384eefa4f1ef63 C:\Windows\system32\d3d10_1.dll
    MD5: 556f1cbe9ba19e2ccd6f8d9af71af5c7 C:\Windows\system32\d3d10_1core.dll
    MD5: 9c7094f537782a82b6a29b4a7172e180 C:\Windows\system32\d3d10core.dll
    MD5: 04802864f51046e93471083a24469ace C:\Windows\system32\D3D10Level9.dll
    MD5: 85e861d0b88db2b54acb0839654c09f7 C:\Windows\System32\DNSAPI.dll
    MD5: 57d762f6f5974af0da2be88a3349baaa c:\windows\system32\dnsrslvr.dll
    MD5: 4ebdd20afc19aaecba2893d128dd5ecd C:\Windows\system32\dpx.dll
    MD5: 3911b972b55fea0478476b2e777b29fa C:\Windows\system32\drivers\afd.sys
    MD5: ce91b158fa490cf4c4d487a4130f4660 C:\Windows\system32\DRIVERS\AGRSM.sys
    MD5: 7c2f57bce81fa74933f0e1c84a97c9db C:\Windows\system32\DRIVERS\Apfiltr.sys
    MD5: ff83c93aeee8b0cf4b464ca667a67acd C:\Windows\system32\drivers\aswMonFlt.sys
    MD5: ca6078dda7cf80fec230d9478bbe6c1b C:\Windows\system32\DRIVERS\athr.sys
    MD5: 35f376253f687bde63976ccb3f2108ca C:\Windows\system32\DRIVERS\bowser.sys
    MD5: 622c41a07ca7e6dd91770f50d532cb6c C:\Windows\System32\Drivers\dfsc.sys
    MD5: 4f59c172c094e1a1d46463a8dc061cbd C:\Windows\system32\DRIVERS\Dot4.sys
    MD5: 80bf3ba09f6f2523c8f6b7cc6dbf7bd5 C:\Windows\system32\DRIVERS\Dot4Prt.sys
    MD5: c55004ca6b419b6695970dfe849b122f C:\Windows\system32\DRIVERS\dot4usb.sys
    MD5: c68ac676b0ef30cfbb1080adce49eb1f C:\Windows\System32\drivers\dxgkrnl.sys
    MD5: d909075fa72c090f27aa926c32cb4612 C:\Windows\system32\DRIVERS\fssfltr.sys
    MD5: 3c64042b95e583b366ba4e5d2450235e C:\Windows\system32\drivers\hidusb.sys
    MD5: 038815297078d236d8cc064c295a74c6 C:\Windows\system32\DRIVERS\igdkmd32.sys
    MD5: 7e72514a3a1c5a9f3bff0660b3866c2b C:\Windows\system32\DRIVERS\jswpslwf.sys
    MD5: e8ca038f51f7761bd6e3a3b0b8014263 C:\Windows\system32\drivers\kr10i.sys
    MD5: 6a4adb9186dd0e114e623daf57e42b31 C:\Windows\system32\drivers\kr10n.sys
    MD5: 515fc18cabee0158a324b08b1c2667cf C:\Windows\system32\DRIVERS\LPCFilter.sys
    MD5: 1e94971c4b446ab2290deb71d01cf0c2 C:\Windows\system32\DRIVERS\mrxsmb.sys
    MD5: 4fccb34d793b116423209c0f8b7a3b03 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    MD5: c3cb1b40ad4a0124d617a1199b0b9d7c C:\Windows\system32\DRIVERS\mrxsmb20.sys
    MD5: 35d5458d9a1b26b2005abffbf4c1c5e7 C:\Windows\system32\DRIVERS\NETw3v32.sys
    MD5: dc450992eba6f914080c1f7fbeeed72c C:\Windows\system32\drivers\PalmUSBD.sys
    MD5: f7bb4e7a7c02ab4a2672937e124e306e C:\Windows\System32\Drivers\PxHelp20.sys
    MD5: 8a4341616976e47712b60f18c7049dcc C:\Windows\system32\drivers\RTKVHDA.sys
    MD5: f875e277a79ef9d6f3ac89abb557a689 C:\Windows\system32\DRIVERS\Rtlh86.sys
    MD5: 41987f9fc0e61adf54f581e15029ad91 C:\Windows\System32\DRIVERS\srv.sys
    MD5: ff33aff99564b1aa534f58868cbe41ef C:\Windows\System32\DRIVERS\srv2.sys
    MD5: 7605c0e1d01a08f3ecd743f38b834a44 C:\Windows\System32\DRIVERS\srvnet.sys
    MD5: 2756186e287139310997090797e0182b C:\Windows\System32\drivers\tcpip.sys
    MD5: 1825bceb47bf41c5a9f0e44de82fc27a C:\Windows\system32\DRIVERS\tdcmdpst.sys
    MD5: e4c85c291ddb3dc5e4a2f227ca465ba6 C:\Windows\system32\drivers\tifm21.sys
    MD5: 1ea5f27c29405bf49799feca77186da9 C:\Windows\system32\DRIVERS\tos_sps32.sys
    MD5: 8d624d3bd1f2d78bd1c01a2d4e954b4e C:\Windows\system32\DRIVERS\tosporte.sys
    MD5: e90ace3b4fa7a85f992bc21eb779c407 C:\Windows\System32\Drivers\tosrfcom.sys
    MD5: 5c4103544612e5011ef46301b93d1aa6 C:\Windows\system32\DRIVERS\tosrfec.sys
    MD5: 792a8b80f8188aba4b2be271583f3e46 C:\Windows\system32\DRIVERS\TVALZ_O.SYS
    MD5: 3b929a72aaea96dc0150d3a6da268c89 C:\Windows\System32\Drivers\UVCFTR_S.SYS
    MD5: 6843926aff733d46a04f9d4e1c1a6b14 C:\Windows\system32\DWrite.dll
    MD5: aaae543c535ed596ecad2ab8761c2c6f C:\Windows\system32\dxgi.dll
    MD5: 4312debdacbe338f0b90e7f08e7672be C:\Windows\system32\Dxtmsft.dll
    MD5: ca493a92da9880b6f1a89c3dbd54ba5b C:\Windows\system32\Dxtrans.dll
    MD5: b8a21907fe2f1a113f3487d9ab60bef9 C:\Windows\system32\en-us\tQuery.dll.mui
    MD5: abaeaee763e287bdd39094c4165e1f3f C:\Windows\system32\fdproxy.dll
    MD5: a9542ff2e9a82cf100e5729ec79068f0 C:\Windows\system32\FltLib.dll
    MD5: 8ce364388c8eca59b14b539179276d44 c:\windows\system32\fntcache.dll
    MD5: a0266b3b37d78717c207715e681155e8 C:\Windows\System32\hccutils.DLL
    MD5: b4b59ac042ee3733a862f26cbc0b17fc C:\Windows\system32\hidphone.tsp
    MD5: 005176b5f303abd897cc0be501a2dc34 C:\Windows\System32\hkcmd.exe
    MD5: b1b02e97ba31bba22d2142ad0c565580 C:\Windows\System32\hpfll6en.dll
    MD5: 6fe5c4b61ec85d746adfa9fff8c2ac58 C:\Windows\System32\hpz3llhn.dll
    MD5: 510c138564486ff926a3f773205c63d1 c:\windows\system32\hpzinw12.dll
    MD5: 37e5e8ffbad35605daeec3224ea0e465 c:\windows\system32\hpzipm12.dll
    MD5: 0c84b6affa7486422235584110d7176f c:\windows\system32\ICAAPI.dll
    MD5: ee9d715af1b928982f417238b9914484 C:\Windows\system32\ieapfltr.dll
    MD5: d5c9f778d0ed2954eb83e1cf87dc0b65 C:\Windows\System32\ieframe.dll
    MD5: ab0e44c70c5c732c1e312eaeabecc1d5 C:\Windows\system32\iertutil.dll
    MD5: 417011fac541c62837d29d1c9f834156 C:\Windows\system32\IEUI.dll
    MD5: 4e5464ec70a2be2b250aee6670cc326b C:\Windows\system32\igdumd32.dll
    MD5: fd3d1416a3f877579395c750c4646dd2 C:\Windows\system32\igfxdev.dll
    MD5: abcf731d199e8612cdd3768a39941910 C:\Windows\System32\igfxpers.exe
    MD5: 302fa017f821568405dabb4dfc4c5f81 C:\Windows\System32\igfxres.dll
    MD5: 4bd93dc3e55a77808df36af322425dc3 C:\Windows\System32\igfxress.dll
    MD5: 792abc1cb4e5bc538c0dae212e005449 C:\Windows\system32\igfxsrvc.dll
    MD5: ac34d2de70642eaa646eb6834b226248 C:\Windows\System32\igfxsrvc.exe
    MD5: 5b636388f65b3d73a50bb397f275cf34 C:\Windows\system32\igfxTMM.dll
    MD5: 8261fe097983cbb223ddb6f349755bf7 C:\Windows\System32\igfxtray.exe
    MD5: dfae18c675d71fd06d57dc69d2913975 c:\windows\system32\inetsrv\apphostsvc.dll
    MD5: cfebba297b36cbb7c52c5ff592f6f0fe c:\windows\system32\inetsrv\IISRES.DLL
    MD5: 52ecae4129916223a7c4fab216d43bf8 c:\windows\system32\inetsrv\IISUTIL.dll
    MD5: 163fec5765d0421be8a11cacdc9534df C:\Windows\system32\inetsrv\iisw3adm.dll
    MD5: f34c83591c0e70e3e434f312edcd6b72 c:\windows\system32\inetsrv\nativerd.dll
    MD5: 4be78e80530451f5ff970bd109c6df77 C:\Windows\System32\jscript9.dll
    MD5: 574b473facaa0e91702b86578440b525 C:\Windows\system32\kernel32.dll
    MD5: 74c2f29cc612b2b34231bebd824d2fb2 C:\Windows\system32\keyiso.dll
    MD5: 953193a9dea40348c1086d171f6440ae C:\Windows\system32\kmddsp.tsp
    MD5: ca0b849566776a17f35f0339be17dfd9 C:\Windows\system32\Ktmw32.dll
    MD5: 19ffad68a02af1bf0bc336ee26cd6767 c:\windows\system32\l2gpstore.dll
    MD5: 35d40113e4a5b961b6ce5c5857702518 c:\windows\system32\lmhsvc.dll
    MD5: c09b9238479d17274a8cfb9216bcca09 C:\Windows\system32\Macromed\Flash\Flash10v.ocx
    MD5: 8400840121404a15c923ed4ecbb9db84 C:\Windows\system32\Macromed\Flash\FlashUtil10v_ActiveX.dll
    MD5: 461a87d7a4304bda228cf1dbb86d3ce9 C:\Windows\System32\Macromed\Flash\FlashUtil10v_ActiveX.exe
    MD5: ef24642d5fb52a1eef56de9e47cbb993 C:\Windows\system32\MFC42.DLL
    MD5: bf142d4f8c61ed3629a9cdd7ba867900 C:\Windows\System32\mfplat.dll
    MD5: b4f5de3dad8e6b97272f45db97674878 C:\Windows\System32\mgmtapi.dll
    MD5: 2e837f3d406224df131c34bc8f71621e C:\Windows\system32\modemui.dll
    MD5: 56e315acfb08a177b4d01e42b9044db5 C:\Windows\System32\MPRAPI.dll
    MD5: 7940c04ce581288a3498d57ec4ee47d2 C:\Windows\System32\msfeeds.dll
    MD5: e6d5c7e4aac0c682169aa5021386eff3 C:\Windows\system32\MSHTML.dll
    MD5: aab5feaabf4cb6f76d794203831c8d94 C:\Windows\system32\Msidle.dll
    MD5: 35aae2e841aa1a949775168e119482c9 C:\Windows\system32\msls31.dll
    MD5: 5e41139ec6efbcaffd96d46925e544ab c:\windows\system32\mspatcha.dll
    MD5: abe9eea1eabea0711610a637a7b1c25d C:\Windows\system32\msprivs.dll
    MD5: ff41e1ac301f51e16f61ad7c0f45467c C:\Windows\System32\msshsq.dll
    MD5: 2fa16465f64db54b1f7f511395eb4fd7 C:\Windows\system32\NCObjAPI.DLL
    MD5: f4d9ed6bd74ad7cc0bec83c43a1cb76b c:\windows\system32\ncsi.dll
    MD5: 2f6776acefe41ee889c464ea407918f2 C:\Windows\system32\ndptsp.tsp
    MD5: 6bc5fcef351e4cb5a269c1e84b5a06da C:\Windows\system32\netcfgx.dll
    MD5: 95daecf0fb120a7b5da679cc54e37dde C:\Windows\system32\netlogon.dll
    MD5: 4bf053944e973c073339be841c9ecf28 C:\Windows\System32\NETRAP.dll
    MD5: 8bb86f0c7eea2bded6fe095d0b4ca9bd c:\windows\system32\nsisvc.dll
    MD5: 708fb84003732e220c23cdf207f5a329 C:\Windows\system32\ntdll.dll
    MD5: 862363973dcbcc31dd161ef41a69153c C:\Windows\system32\ODBC32.dll
    MD5: 9586e7cb2255a8b097a7e4538202585e C:\Windows\system32\ole32.dll
    MD5: de4cd76c254e143f40e62952788d3be7 C:\Windows\system32\OLEAUT32.dll
    MD5: f0062778f50838145ac46b384ffb4fa3 C:\Windows\system32\pcadm.dll
    MD5: 21322832c99e8de85bd047689a2a69db C:\Windows\system32\pnpts.dll
    MD5: e340845c8e96d107c36420065d7a5733 C:\Windows\system32\printcom.dll
    MD5: 2dd6af8e97f59c9d39329bbc2a81f13f C:\Windows\System32\RASDLG.dll
    MD5: 88225070dd2f7b0b2ed51e7935078641 C:\Windows\system32\RASQEC.DLL
    MD5: b9f3ff52b84fd9e3cafb29b8ee385e5b C:\Windows\system32\RESUTILS.DLL
    MD5: ab530fdd34c67b497a20171d1234cfe9 C:\Windows\system32\RICHED32.DLL
    MD5: 824d940cd81a2814d4862c2ad62facdd C:\Windows\system32\RtkAPO.dll
    MD5: 2ab58991862153a248779174d4e4212b C:\Windows\system32\schannel.dll
    MD5: 1a58069db21d05eb2ab58ee5753ebe8d c:\windows\system32\schedsvc.dll
    MD5: 0a990afb9f2726323d61c8ecb8b70b17 C:\Windows\system32\security.dll
    MD5: 167ac31450c0c53a01fa1491e94d7678 C:\Windows\system32\SHDOCVW.dll
    MD5: 33ae914c24f546aabf281ba7b138186d C:\Windows\system32\SHELL32.dll
    MD5: 9176285122b7b849fec2aa1b72a8f7a8 C:\Windows\system32\SHLWAPI.dll
    MD5: c7230fbee14437716701c15be02c27b8 C:\Windows\system32\SHSVCS.dll
    MD5: 900f31bd5a7db32b3db8a09dd4d53667 C:\Windows\system32\spool\PRTPROCS\W32X86\hpfpp6en.dll
    MD5: 801decf3a583c270e5c398fcd082e3dd C:\Windows\system32\spool\PRTPROCS\W32X86\hpzpplhn.dll
    MD5: 8554097e5136c3bf9f69fe578a1b35f4 C:\Windows\System32\spoolsv.exe
    MD5: 43aef7355d24090ca7c24c83846bd981 C:\Windows\system32\SPP.dll
    MD5: bf7e4d6f60a6d9e866432855c6f8c262 c:\windows\system32\sqmapi.dll
    MD5: bc8e5f6aaf447364a6f6a00d3f8faf29 C:\Windows\system32\SrClient.dll
    MD5: 1bf5eebfd518dd7298434d8c862f825d c:\windows\system32\srvsvc.dll
    MD5: 452341e471d2d961229dfe0842957272 C:\Windows\system32\SSCORE.DLL
    MD5: b5950df243837d8217f4e597919b224a C:\Windows\system32\stobject.dll
    MD5: 9f433f65d10043295f42dd015b189426 C:\Windows\system32\SxsStore.dll
    MD5: 71f5a7104fdf16c0ac5283a6ce666553 C:\Windows\system32\SYSNTFY.dll
    MD5: 2a6a2c09ecc2cb495628e45f1379ece8 C:\Windows\system32\taskcomp.dll
    MD5: 3d50c4b10352367d5cb20ed1f50f8da2 C:\Windows\System32\taskeng.exe
    MD5: 52e129522c1775dbb8cc252e7a0655c7 C:\Windows\system32\taskschd.dll
    MD5: e662722d5c50ad1c0e201499e405fd73 C:\Windows\System32\tbtmon.dll
    MD5: 61fb95b6f2a8715282e05c92e4527c5a C:\Windows\System32\tbtmon98Language.dll
    MD5: 5091452dc719281cf1dd69367e13b494 C:\Windows\System32\tcpmib.dll
    MD5: 8a38b5e8493a9d103083b8620ac5f3a1 C:\Windows\System32\tdh.dll
    MD5: c5ac715b65b01788abc22d10749dddd8 C:\Windows\System32\TODDSrv.exe
    MD5: 2cdef39641bc63a337b6ea13e61b32c6 C:\Windows\System32\TosBdAPI.dll
    MD5: c385d4d4ec16e637aa4d2d18a06e80c9 C:\Windows\System32\TosBtAPI.dll
    MD5: de955d6a5097dc306af8c9f67e9a5f2d C:\Windows\System32\TosBtHcrpAPI.dll
    MD5: f8873d15018f411588bec02c1725bada C:\Windows\system32\tspkg.dll
    MD5: e45051c374f845edf3db02a35ba13193 C:\Windows\system32\umb.dll
    MD5: 0b71899e60d1265229bf3d080eab573d C:\Windows\system32\unimdmat.dll
    MD5: dfbaadf1b624dc71e88d34d86b3595be C:\Windows\system32\uniplat.dll
    MD5: d217b0da82fdd942c048749993275ac6 C:\Windows\system32\urlmon.dll
    MD5: 0bf0bb276f17b6ad61a8694d2551ec28 C:\Windows\System32\usbmon.dll
    MD5: 80fff14f1757b9af8be9d314fc1ae88b C:\Windows\system32\USP10.dll
    MD5: dc3ae9f1554dcd97f90983ddbdacd83d C:\Windows\system32\vsstrace.dll
    MD5: 103bcc1647a220ef3959eb4e094afbb1 C:\Windows\system32\VXDIF.DLL
    MD5: 2c3b09e586bda2cc49a292be7badc589 C:\Windows\system32\wbem\wmiutils.dll
    MD5: e7d0f91e44d9d3b2116fa549bdcdb756 c:\windows\system32\WDSCORE.dll
    MD5: 5193de33f3284c447e0d31dafbf92570 c:\windows\system32\webcheck.dll
    MD5: 0745d6ead386710110817fbec03f5161 C:\Windows\system32\wfapigp.dll
    MD5: 73fe2e5fa55088a241aa2732f5d387d6 C:\Windows\system32\wiarpc.dll
    MD5: 2c7332c222d1fe1fc57d622699a8c001 C:\Windows\system32\WININET.dll
    MD5: 101ba3ea053480bb5d957ef37c06b5ed C:\Windows\System32\wininit.exe
    MD5: 5ec8fb83f31aa2d6f421f02c3f4f4475 C:\Windows\System32\winspool.drv
    MD5: 9a7a3bc8dc7e7ecaba2478ced4c38cbd C:\Windows\system32\winsrv.dll
    MD5: 92283d9e33ec5f41ecc0b430b7459241 C:\Windows\system32\wls0wndh.dll
    MD5: 0727200f10320a6ba7e59433094fbba7 C:\Windows\system32\WMALFXGFXDSP.dll
    MD5: bfe74095684093f14d24801c8c0d16e3 C:\Windows\system32\WMI.dll
    MD5: f0321da5203f1e71917f3b7a13dc4912 C:\Windows\system32\WMsgAPI.dll
    MD5: 399bb52ad0668472717498e97cf28341 c:\windows\system32\WUDFPlatform.dll
    MD5: 1908cc7673f72601affdca022689cedf C:\Windows\System32\XmlLite.dll
    MD5: a58374d1a487c3cf98355ba92c0188c0 C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6002.18005_none_0b4ada54c46c45b0\cbscore.dll
    MD5: 47071dd42f703390b205b33b11dab65c C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6002.18005_none_0b4ada54c46c45b0\DrUpdate.dll
    MD5: 971b711e37cf2cedce57b54384640e54 C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6002.18005_none_0b4ada54c46c45b0\wcp.dll
    MD5: e7d0f91e44d9d3b2116fa549bdcdb756 C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6002.18005_none_0b4ada54c46c45b0\wdscore.dll
    MD5: 380e6b396644edcdfa07e52d7d95ef99 C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6002.18005_none_0b4ada54c46c45b0\wrpint.dll
    MD5: b425b079cff251aeab63a9ee41371d1f C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4016_none_d0893820442e7fe4\MSVCR80.dll
    MD5: 1b7524806d0270b81360c63a2fa047cb C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL
    MD5: ccc2e312486ae6b80970211da472268b C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL
    MD5: 4c39358ebdd2ffcd9132a30e1ec31e16 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCP90.dll
    MD5: cdbe9690cf2b8409facad94fac9479c9 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCR90.dll
    MD5: ca6ade4f7761bb15b3325356dc3b82bb C:\Windows\WinSxS\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
    MD5: fbfca1a574d47ee575448b719cbbf2e4 C:\Windows\WinSxS\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
    MD5: 35acd5ea63d75e97dd0e9a1629e582b2 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\COMCTL32.dll
    MD5: be3c082837866c4c291adaf163c10ea6 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
    MD5: b5b09091b0e33c396ceec8995515bd41 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll


    No file uploaded.

    Scan finished - communication took 3 sec
    Total traffic - 0.02 MB sent, 1.45 KB recvd
    Scanned 886 files and modules - 96 seconds
     
  7. viru

    viru Super Moderador Super Moderador

    El informe del Malwarebytes ha salido limpio.
    Necesitamos el informe del Hijackthis y el informe del archivo hosts (lo que te había pedido caito en su último post)

    Saludos.
     
  8. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Por favor disculpa mi ignorancia, pero como lo hago??
     
  9. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Ya lo encontre, lo hare y pongo la informacion. Lo siento, no habia visto ese detalle. Graaaaacccciiiiiiiaaaaaaaaaaaaa!!!!!!!!!!
     
  10. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Listo ya encontre y corri el HijackThis y aca les pongo el informe que me dio. Espero que esto ayude a ver cual es el problema en esta bendita maquina, que me tiene cabezona.

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 3:31:37 PM, on 8/23/2011
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v9.00 (9.00.8112.16421)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\RtHDVCpl.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
    C:\Windows\System32\igfxtray.exe
    C:\Windows\System32\hkcmd.exe
    C:\Program Files\Apoint2K\Apoint.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Apoint2K\Apntex.exe
    C:\Windows\system32\wuauclt.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil10v_ActiveX.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Trend Micro\HiJackThis\HiJackThis.exe
    C:\Windows\system32\SearchProtocolHost.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Home - Welcome to Toshiba
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Yahoo! en Español
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O1 - Hosts: ::1 localhost
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
    O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
    O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
    O4 - HKLM\..\Run: [Skytel] Skytel.exe
    O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
    O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
    O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
    O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
    O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
    O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
    O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
    O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
    O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (BitDefender QuickScan Control) - http://quickscan.bitdefender.com/qsax/qsax.cab
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
    O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Jumpstart Wifi Protected Setup (jswpsapi) - Atheros Communications, Inc. - C:\Program Files\Jumpstart\jswpsapi.exe
    O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
    O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
    O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
    O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
    O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
    O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
     
  11. Caito

    Caito Nuevo Miembro Miembro

    Ejecuta el Hijack:
    ve a "Open the misc. tools section"
    busca "open host file manager"
    busca "open in notepad"
    me pones eso en tu próximo post
    Saludos
    Caito
     
  12. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Y el ultimo
    # Copyright (c) 1993-2006 Microsoft Corp.
    #
    # This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
    #
    # This file contains the mappings of IP addresses to host names. Each
    # entry should be kept on an individual line. The IP address should
    # be placed in the first column followed by the corresponding host name.
    # The IP address and the host name should be separated by at least one
    # space.
    #
    # Additionally, comments (such as these) may be inserted on individual
    # lines or following the machine name denoted by a '#' symbol.
    #
    # For example:
    #
    # 102.54.94.97 rhino.acme.com # source server
    # 38.25.63.10 x.acme.com # x client host

    127.0.0.1 localhost
    ::1 localhost
    74.125.45.100 4-open-davinci.com
    74.125.45.100 securitysoftwarepayments.com
    74.125.45.100 privatesecuredpayments.com
    74.125.45.100 secure.privatesecuredpayments.com
    74.125.45.100 getantivirusplusnow.com
    74.125.45.100 secure-plus-payments.com
    74.125.45.100 Welcome to www.getantivirusplusnow.com - Parking Service By Active-Domain.com
    74.125.45.100 www.secure-plus-payments.com
    74.125.45.100 www.getavplusnow.com
    74.125.45.100 safebrowsing-cache.google.com
    74.125.45.100 urs.microsoft.com
    74.125.45.100 www.securesoftwarebill.com
    74.125.45.100 secure.paysecuresystem.com
    74.125.45.100 paysoftbillsolution.com
    74.125.45.100 protected.maxisoftwaremart.com
    204.152.194.252 Google
    204.152.194.252 google.com
    204.152.194.252 google.com.au
    204.152.194.252 Google
    204.152.194.252 google.be
    204.152.194.252 Google
    204.152.194.252 google.com.br
    204.152.194.252 Google
    204.152.194.252 google.ca
    204.152.194.252 Google
    204.152.194.252 google.ch
    204.152.194.252 Google
    204.152.194.252 google.de
    204.152.194.252 Google
    204.152.194.252 google.dk
    204.152.194.252 Google
    204.152.194.252 google.fr
    204.152.194.252 Google
    204.152.194.252 google.ie
    204.152.194.252 Google
    204.152.194.252 google.it
    204.152.194.252 Google
    204.152.194.252 google.co.jp
    204.152.194.252 Google
    204.152.194.252 google.nl
    204.152.194.252 Google
    204.152.194.252 google.no
    204.152.194.252 Google
    204.152.194.252 google.co.nz
    204.152.194.252 Google
    204.152.194.252 google.pl
    204.152.194.252 Google
    204.152.194.252 google.se
    204.152.194.252 Google
    204.152.194.252 google.co.uk
    204.152.194.252 Google
    204.152.194.252 google.co.za
    204.152.194.252 Google
    204.152.194.252 Google Analytics | Official Website
    204.152.194.252 Bing
    204.152.194.252 search.yahoo.com
    204.152.194.252 Yahoo! Search - Web Search
    204.152.194.252 uk.search.yahoo.com
    204.152.194.252 ca.search.yahoo.com
    204.152.194.252 de.search.yahoo.com
    204.152.194.252 fr.search.yahoo.com
    204.152.194.252 au.search.yahoo.com
     
  13. viru

    viru Super Moderador Super Moderador

    Descarga el programa HostsXpert
    http://www.trucoswindows.net/descargas/hostsxpert/
    Creá una carpeta : C:\HostsXpert
    Descomprime el programa acá: C:\HostsXpert
    Haz clic en HostsXpert.exe para que se inicie el programa
    Click "Make Hosts Writable?" si aparece esto arriba a la derecha
    Click Restore MS Hosts file y OK
    Click en X para cerrar el programa.
    Reinicia y nos cuentas

    Saludos.
     
  14. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Gracias por sus indicaciones, pero dejenme decirle que el problema persiste, no me permite correr el hostsXpert, apesar de que he borrado y vuelto a instalar, no me da el reporte, lo mismo pasa con el host. Habra alguna otra forma, por favor? espero sus respuestas.
     
  15. LordSauron

    LordSauron Señor Oscuro Miembro

    Espera a que te digan viru o Caito que saben más del tema (además ha habido algún problema con el programa alguna vez), pero he encontrado varios casos como éste que se han solucionado con el ComboFix.

    Un saludo
     
  16. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Gracias por tu interes, esperare a que Viru o Caito me respondan.
     
  17. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    Host File

    # Copyright (c) 1993-2006 Microsoft Corp.
    #
    # This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
    #
    # This file contains the mappings of IP addresses to host names. Each
    # entry should be kept on an individual line. The IP address should
    # be placed in the first column followed by the corresponding host name.
    # The IP address and the host name should be separated by at least one
    # space.
    #
    # Additionally, comments (such as these) may be inserted on individual
    # lines or following the machine name denoted by a '#' symbol.
    #
    # For example:
    #
    # 102.54.94.97 rhino.acme.com # source server
    # 38.25.63.10 x.acme.com # x client host

    127.0.0.1 localhost
    ::1 localhost
    74.125.45.100 4-open-davinci.com
    74.125.45.100 securitysoftwarepayments.com
    74.125.45.100 privatesecuredpayments.com
    74.125.45.100 secure.privatesecuredpayments.com
    74.125.45.100 getantivirusplusnow.com
    74.125.45.100 secure-plus-payments.com
    74.125.45.100 Welcome to www.getantivirusplusnow.com - Parking Service By Active-Domain.com
    74.125.45.100 www.secure-plus-payments.com
    74.125.45.100 www.getavplusnow.com
    74.125.45.100 safebrowsing-cache.google.com
    74.125.45.100 urs.microsoft.com
    74.125.45.100 www.securesoftwarebill.com
    74.125.45.100 secure.paysecuresystem.com
    74.125.45.100 paysoftbillsolution.com
    74.125.45.100 protected.maxisoftwaremart.com
    204.152.194.252 Google
    204.152.194.252 google.com
    204.152.194.252 google.com.au
    204.152.194.252 Google
    204.152.194.252 google.be
    204.152.194.252 Google
    204.152.194.252 google.com.br
    204.152.194.252 Google
    204.152.194.252 google.ca
    204.152.194.252 Google
    204.152.194.252 google.ch
    204.152.194.252 Google
    204.152.194.252 google.de
    204.152.194.252 Google
    204.152.194.252 google.dk
    204.152.194.252 Google
    204.152.194.252 google.fr
    204.152.194.252 Google
    204.152.194.252 google.ie
    204.152.194.252 Google
    204.152.194.252 google.it
    204.152.194.252 Google
    204.152.194.252 google.co.jp
    204.152.194.252 Google
    204.152.194.252 google.nl
    204.152.194.252 Google
    204.152.194.252 google.no
    204.152.194.252 Google
    204.152.194.252 google.co.nz
    204.152.194.252 Google
    204.152.194.252 google.pl
    204.152.194.252 Google
    204.152.194.252 google.se
    204.152.194.252 Google
    204.152.194.252 google.co.uk
    204.152.194.252 Google
    204.152.194.252 google.co.za
    204.152.194.252 Google
    204.152.194.252 Google Analytics | Official Website
    204.152.194.252 Bing
    204.152.194.252 search.yahoo.com
    204.152.194.252 Yahoo! Search - Web Search
    204.152.194.252 uk.search.yahoo.com
    204.152.194.252 ca.search.yahoo.com
    204.152.194.252 de.search.yahoo.com
    204.152.194.252 fr.search.yahoo.com
    204.152.194.252 au.search.yahoo.com
     
  18. viru

    viru Super Moderador Super Moderador

    Ve a Inicio\ Mi Pc\ Disco Local (C:)\ Windows\ system32\ drivers\ etc\... doble clic en Hosts y cuando te pregunte con que programa deseas abrirlo, elige el Bloc de notas
    Te aparecerá tu archivo hosts...

    Elimina lo que te he marcado en rojo
    Cierras el archivo y guarda los cambios.

    Si esto no resulta, pasaremos el programa Combofix, como bien ha recomendado el compañero LordSauron

    Saludos.
     
  19. MillyRamirez

    MillyRamirez Nuevo Miembro Miembro

    No aparece

    Ya busque el Host file, en c:/windows/system32/drivers/etc/hostfile y este no aparece, asi es que bajare el programa combofix. Les aviso. Gracias
     
  20. viru

    viru Super Moderador Super Moderador

    Descarga la utilidad ComboFix
    http://www.trucoswindows.net/descargas/herramienta-combofix-exe/

    Desactiva temporalmente el Antivirus y/o Antispyware.
    Cierra todas las ventanas abiertas.

    *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
    *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.

    -Ejecuta ComboFix.exe para iniciar el programa.

    -Se abrirá la ventana del programa en modo MS-DOS. Pulsa inmediatamente la tecla "Y" (Yes) y después sobre ENTER para iniciar el proceso de detección y limpieza.

    -Los iconos del Escritorio desaparecerán (esto es normal) y aparecerá el mensaje "Performing a scan of your machine".

    - A continuación, aparecerá el mensaje "Preparing a log report" "This takes a while. So, please be patient".

    -Seguidamente, aparecerán los mensajes "Almost done..." "A report of Combofix's actions would be produced at C:\Combofix.txt".

    -Se paciente y espera a que la ventana del programa se cierre sola y se muestre el archivo C:\Combofix.txt. Los iconos del Escritorio volverán a su sitio sin necesidad de tener que reiniciar el PC.

    -Por último, el informe combofix.txt mostrará los archivos detectados y eliminados, ese reporte lo pegas aquí.

    - Además pon un nuevo log del hijackThis.

    Saludos.
     
Estado del tema:
No está abierto para más respuestas.

Comparte esta página