Solucionado becausaldevel.info

Estado
Cerrado para nuevas respuestas

mariela

Miembro
Miembro
becausaldevel pone carteles como que hay mensajes no leidos y luego si presionas alli te lleva a una pagina donde se sienten muchos ruidos, mi amigo enseguida cerro, pero siguen apareciendo los mensajes que por supuesto no abre
escritorio-18-11-18-2.pngescritorio-18-11-18-3.png
Aun no ha terminado el eset online por eso solo les pongo el hijackthis, gracias desde yaLogfile of Trend Micro HijackThis v2.0.5
Insertar CODE, HTML o PHP:
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 10:32:59 p.m., on 18/11/2018
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)

FIREFOX: 58.0.2 (x86 es-ES)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Walter\AppData\Roaming\uTorrent\uTorrent.exe
C:\Users\Walter\AppData\Roaming\uTorrent\updates\3.5.4_44846\utorrentie.exe
C:\Users\Walter\AppData\Roaming\uTorrent\updates\3.5.4_44846\utorrentie.exe
C:\Windows\system32\taskhost.exe
D:\KMPlayer\KMPlayer.exe
C:\Program Files\TeamViewer\TeamViewer.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Walter\Downloads\HijackThis.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Linkzb - Navegación Segura.
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
--
End of file - 19758 bytes
 

mariela

Miembro
Miembro
Aqui los resultados de Eset online
Insertar CODE, HTML o PHP:
C:\Archivos de programa\Bandoo\Bandoo.exe    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Bandoo\BandooGo.exe    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Bandoo\BandooUI.exe    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Bandoo\BndCore.exe    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Bandoo\ExtensionsManager.exe    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Bandoo\InstallerHelper.dll    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Bandoo\Plugins\AIM\AIMPlugin.dll    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Bandoo\Plugins\IE\ieplugin.dll    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Bandoo\Plugins\MSN\msnplugin.dll    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Bandoo\Plugins\Yahoo\YahooPlugin.dll    una variante de Win32/Adware.Bandoo.AA aplicación  
C:\Archivos de programa\Conduit\Community Alerts\Alert.dll    Win32/Toolbar.Conduit.Y aplicación potencialmente indeseable  
C:\Archivos de programa\Online_Radio_America\Online_Radio_AmericaToolbarHelper.exe    una variante de Win32/Toolbar.Conduit.AU aplicación potencialmente indeseable  
C:\Archivos de programa\Online_Radio_America\tbOnli.dll    una variante de Win32/Toolbar.Conduit.B aplicación potencialmente indeseable  
C:\Archivos de programa\Unlocker\eBay_shortcuts_1016.exe    Win32/Adware.ADON aplicación potencialmente indeseable  
C:\Program Files\USB Disk Security\linkzb.exe    una variante de Win32/Adware.Linkzb.A aplicación  
C:\Users\Walter\AppData\Roaming\uTorrent\updates\3.5.3_44428.exe    una variante de MSIL/WebCompanion.A aplicación potencialmente indeseable,una variante de Win32/WebCompanion.B aplicación potencialmente indeseable  
C:\Users\Walter\Downloads\cleaner_ava.exe    una variante de Win32/Adware.ELEX.PQ aplicación  
C:\Users\Walter\Downloads\install-flashplayer__4607_i507935978_il1914.exe    una variante de Win32/Amonetize.AJ aplicación potencialmente indeseable  
C:\Users\Walter\Downloads\Installer_for_VAFPlayer.exe    una variante de MSIL/DomaIQ.AB aplicación potencialmente indeseable  
C:\Users\Walter\Downloads\java_setup.exe    una variante de Win32/AdWare.iBryte.AM aplicación  
C:\Users\Walter\Downloads\Open.exe    Win32/CoinMiner.AJI Troyano  
C:\Users\Walter\Downloads\Scrabble (1).exe    una variante de Win32/FirseriaInstaller.C aplicación potencialmente indeseable  
C:\Users\Walter\Downloads\Scrabble.exe    una variante de Win32/FirseriaInstaller.C aplicación potencialmente indeseable  
C:\Users\Walter\Downloads\Sin confirmar 196901.crdownload    una variante de Generik.IIECUOD Troyano  
C:\Users\Walter\Downloads\Sin confirmar 273322.crdownload    una variante de Generik.IIECUOD Troyano  
C:\Users\Walter\Downloads\Sin confirmar 950166.crdownload    una variante de Generik.IIECUOD Troyano  
C:\Users\Walter\Downloads\SweetImSetup.exe    una variante de Win32/SweetIM.C aplicación potencialmente indeseable  
C:\Users\Walter\Downloads\yet_another_cleaner (1).exe    una variante de Win32/Adware.ELEX.PQ aplicación  
C:\Users\Walter\Downloads\yet_another_cleaner.exe    una variante de Win32/Adware.ELEX.PQ aplicación  
C:\Users\Walter\Downloads\yet_another_cleaner_mat.exe    una variante de Win32/Adware.ELEX.PCG aplicación  
D:\Documents\DOCUMENTOS WALTER\Setup.iso    una variante de Win32/SoftPulse.AH aplicación potencialmente indeseable  
D:\Program Files\uTorrent\uTorrent.exe    una variante de Win32/Toolbar.Conduit.AX aplicación potencialmente indeseable  
D:\Users\Walter\Desktop\sOPORTE REMOTO\Stremio_Setup.exe    Win32/InstallCore.Gen.A aplicación potencialmente indeseable  
D:\util\aresregular_211_installer.exe    una variante de Win32/Toolbar.Conduit.B aplicación potencialmente indeseable,Win32/Toolbar.Conduit.Y aplicación potencialmente indeseable,Win32/Toolbar.Conduit.A aplicación potencialmente indeseable  
Ubicaciones de inicio automático    una variante de Win32/Adware.Linkzb.A aplicación
Termino de escanear y me pone que encontró 35 amenazas de las cuales elimino 34.
 

Kbite

Aprender y compartir
Administrador
Hola mariela.

Parece que tienes el navegador secuestrado. Veo una entrada en el HijackThis que se debe eliminar, si no lo ha hecho ya el ESET OnLine:

○» Cierra todas las aplicaciones y ejecuta el HiackThis.

○» Haz clic en el botón "Do a system scan only"

○» Selecciona las casillas de las siguientes entradas y presiona el botón Fix Checked:
Insertar CODE, HTML o PHP:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Linkzb - Navegación Segura
○» Cierra el HijackThis.

Pero te dejo una herramienta específica para este tipo de problemas, es muy eficaz: AdwCleaner. Eliminar Barras de herramientas, Secuestradores de web de Inicio y malware

No está de más analizar con Malwarebytes:

○» Haz correr en su Modo completo el MalwareBytes Anti-Malware | Seguridad. (Actualizalo, y al acabar el escaneo elije la opción Eliminar, después guarda el report y lo pegas)

En tu respuesta nos dices si se solucionó el problema y nos dejas el informe del HijackThis, AdwCleaner y Malwarebytes para ver que eliminó.

Saludos, Kbite
 

mariela

Miembro
Miembro
Ya esta terminado te dejo los logs, la entrada es lo primero que elimine con hijackthis.
Insertar CODE, HTML o PHP:
# -------------------------------#
 Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------#
 Build:    09-25-2018
# Database: 2018-11-14.2 (Cloud)
# Support:  Customer Support & Help Center
## -------------------------------#
 Mode: Scan
# -------------------------------# 
Start:    11-19-2018
# Duration: 00:00:10
# OS:       Windows 7 Ultimate
# Scanned:  32073
# Detected: 5

***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.DriverPack         C:\Users\Walter\AppData\Roaming\DRPSu
***** [ Files ] *****
PUP.Optional.Reimage            C:\Users\Walter\Downloads\ReimageRepair.exe
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.DriverPack         HKCU\Software\drpsuPUP.Optional.DriverPack         HKLM\Software\drpsuPUP.Optional.Linkzb             HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\linkzb.net
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.


########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Insertar CODE, HTML o PHP:
Malwarebyteswww.malwarebytes.com
-Detalles del registro-Fecha del análisis: 19/11/18Hora del análisis: 22:25Archivo de registro: 394f040c-ec63-11e8-bc6c-001966db00cd.json
-Información del software-Versión: 3.6.1.2711Versión de los componentes: 1.0.482Versión del paquete de actualización: 1.0.7927Licencia: Prueba
-Información del sistema-SO: Windows 7CPU: x86Sistema de archivos: NTFSUsuario: Walter-PC\Walter
-Resumen del análisis-Tipo de análisis: Análisis de amenazasAnálisis iniciado por:: ManualResultado: CompletadoObjetos analizados: 159737Amenazas detectadas: 1Amenazas en cuarentena: 1Tiempo transcurrido: 2 min, 4 seg
-Opciones de análisis-Memoria: ActivadoInicio: ActivadoSistema de archivos: ActivadoArchivo: ActivadoRootkits: DesactivadoHeurística: ActivadoPUP: DetectarPUM: Detectar
-Detalles del análisis-Proceso: 0(No hay elementos maliciosos detectados)
Módulo: 0(No hay elementos maliciosos detectados)
Clave del registro: 1PUP.Optional.DriverPack, HKU\S-1-5-21-1720148601-1334496735-2384554882-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\ZONEMAP\DOMAINS\drp.su, En cuarentena, [936], [472299],1.0.7927
Valor del registro: 0(No hay elementos maliciosos detectados)
Datos del registro: 0(No hay elementos maliciosos detectados)
Secuencia de datos: 0(No hay elementos maliciosos detectados)
Carpeta: 0(No hay elementos maliciosos detectados)
Archivo: 0(No hay elementos maliciosos detectados)
Sector físico: 0(No hay elementos maliciosos detectados)
WMI: 0(No hay elementos maliciosos detectados)

(end)
Logfile of Trend Micro HijackThis v2.0.5
Insertar CODE, HTML o PHP:
Scan saved at 10:34:46 p.m., on 19/11/2018
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)

FIREFOX: 58.0.2 (x86 es-ES)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\TeamViewer\TeamViewer.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Users\Walter\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: Windows Update (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
--
End of file - 18366 bytes
 

Kbite

Aprender y compartir
Administrador
Hola Mariela.

El log de HijackThis se ve limpio. Pero no se si utilizaste bien el AdwCleaner, fíjate que el informe dice # Mode: Scan (escanear) cuando debería decir # Mode: Clean (limpiar), si tienes dudas pasa de nuevo el AdwCleaner.

De haber limpiado correctamente ya nos dirás si el problema desapareció.

Saludos, Kbite
 

mariela

Miembro
Miembro
Lo abri nuevamente estaban en cuarentena los archivos, elimine la cuarentena pero sigue apareciendo este cartel de forma mas espaciada

ndice.jpg
 

jbex

El que peca y reza empata
Administrador
Hola Mariela abre Chrome. En la esquina superior derecha, haga clic en el botón del menú principal de Chrome, representado por tres puntos verticales . Cuando aparezca el menú desplegable, haga clic en Configuración .
Ahora debería aparecer el menú de Configuración de Chrome, desplázate hasta la parte inferior de la página y haz clic en Avanzado.
En la sección Privacidad y seguridad , haz clic en Configuración de contenido .
Haz clic en Notificaciones .
Busca el sitio Becausaldevel.info y haz clic en el botón de tres puntos verticales al lado, luego haz clic en Eliminar .
Es raro que si has pasado AdwCleaner no te lo haya limpiado.
Escanea el sistema con Hitman Pro - Descargar programas - software
Un saludo
 

mariela

Miembro
Miembro
realice lo que me indicaste en el navegador, pase el programa que me dijiste dejo reportes:
Insertar CODE, HTML o PHP:
HitmanPro 3.8.0.295
www.hitmanpro.com

   Computer name . . . . : WALTER-PC
   Windows . . . . . . . : 6.1.0.7600.X86/2
   User name . . . . . . : Walter-PC\Walter
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Trial (31 days left)

   Scan date . . . . . . : 2018-11-21 10:55:21
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 4m 19s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 1
   Traces  . . . . . . . : 255

   Objects scanned . . . : 719.118
   Files scanned . . . . : 19.114
   Remnants scanned  . . : 211.782 files / 488.222 keys

Malware _____________________________________________________________________

   C:\Users\Walter\Desktop\Zuma Deluxe.exe -> Quarantined
      Size . . . . . . . : 9.875.289 bytes
      Age  . . . . . . . : 465.6 days (2017-08-12 20:36:43)
      Entropy  . . . . . : 8.0
      SHA-256  . . . . . : 382941E29AC0568AE357767D909B87F1973F63D33A9DD8227DC4E78B6A6B9842
    > HitmanPro  . . . . : App/Behav-381
      Fuzzy  . . . . . . : 109.0


Cookies _____________________________________________________________________

   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:2o7.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:360yield.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:50136351.log.optimizely.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:abmr.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:acuityplatform.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.traffique.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adaptv.advertising.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:addthis.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adfarm1.adition.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adform.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adgrx.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adhigh.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adingo.jp
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adnxs.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.avocet.io
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.linkedin.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.yieldmo.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adscale.de
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsrvr.org
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsymptotic.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:agkn.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:basebanner.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidr.io
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidswitch.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:bizrate.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:bluekai.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:c.appier.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:camporno.es
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:canalporno.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:connexity.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:contextweb.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:creative-serving.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:crwdcntrl.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ctnsnet.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:cxense.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:delivery.trafficforce.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:demdex.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:directv.122.2o7.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:dlx.addthis.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:domdex.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:donpornogratis.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:dotomi.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:dpm.demdex.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:drporno.xxx
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:drpornogratis.xxx
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:drpornogratisx.xxx
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:dsp.linksynergy.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:erne.co
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ero-advertising.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:eus.rubiconproject.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:everesttech.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:exoclick.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:eyereturn.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:eyeviewads.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:fotosxxx.org
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:fusionporno.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:gm.demdex.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:gmlaar.112.2o7.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:go.flx1.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:googleadservices.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:gssprt.jp
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:gwallet.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:igodigital.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:imrworldwide.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:in.getclicky.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ipredictive.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:justporno.es
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:krxd.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:lijit.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:linksynergy.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:match.rundsp.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:mathtag.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ml314.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:mookie1.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:mxptint.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:nexac.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:openx.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:outbrain.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:owneriq.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:pagefair.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:pixel-eu.rubiconproject.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:pixel-us-east.rubiconproject.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:pixel.rubiconproject.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:pool.admedo.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:pornhub.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:pornq.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:postrelease.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:prisacom.112.2o7.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:prisacom.d3.sc.omtrdc.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:pswec.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:pubmatic.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:realadultsexgame.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:rfihub.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:rlcdn.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:rubiconproject.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:scorecardresearch.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:serviporno.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:simpli.fi
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:sitescout.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:skimresources.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:smartadserver.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:solucionesmultimedialatam.sc.omtrdc.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:sss.xxx
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:taboola.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:tapad.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:tidaltv.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.boltads.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.clickstracker3.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.dalenetwork.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.eyes-market.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:tremorhub.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:turn.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:txxx.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:univide.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:upornia.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:videosdemaduras.xxx
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:videospornomexicanos.co
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:w55c.net
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:weborama.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.camporno.es
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.videosdeabuelas.xxx
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:xiti.com
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:yadro.ru
   C:\Users\Walter\AppData\Local\Google\Chrome\User Data\Default\Cookies:yieldlab.net
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\Low\walter@doubleclick[1].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\Low\walter@scorecardresearch[2].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\Low\walter@taboola[1].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\Low\walter@trc.taboola[1].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@adnxs[1].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@bidswitch[1].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@casalemedia[2].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@d.adroll[1].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@doubleclick[2].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@lijit[1].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@openx[2].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@pixel.rubiconproject[1].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@pubmatic[2].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@rubiconproject[1].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@scorecardresearch[2].txt
   C:\Users\Walter\AppData\Roaming\Microsoft\Windows\Cookies\walter@scorecardresearch[3].txt
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:254a.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:acuityplatform.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ad.360yield.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adaptv.advertising.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adbrn.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:addthis.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adfarm1.adition.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adform.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adgrx.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adhigh.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adingo.jp
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adnxs.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ads.avocet.io
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ads.betweendigital.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ads.deliverimp.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ads.pubmatic.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ads.stickyadstv.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ads.yieldmo.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adsrvr.org
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adsymptotic.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:adtechus.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:advertising.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:agkn.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:atdmt.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:atemda.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:basebanner.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:bidr.io
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:bidswitch.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:bluekai.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:bs.serving-sys.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:c.appier.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:casalemedia.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:connexity.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:contextweb.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:creative-serving.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:crwdcntrl.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:cxense.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:demdex.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:dlx.addthis.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:dmtry.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:dotomi.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:doubleclick.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:dpm.demdex.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:dsp.linksynergy.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:erne.co
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:everesttech.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:eyeviewads.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:go.sonobi.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:gssprt.jp
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:gwallet.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ipredictive.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:korrelate.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:krxd.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:lijit.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:linksynergy.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:match.adsby.bidtheatre.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:match.rundsp.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:mathtag.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ml314.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:mmstat.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:mookie1.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:mxptint.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:nexac.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:openx.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:openx.sexsearch.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:optimatic.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:owneriq.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:pagefair.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:partners.tremorhub.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:pixel.rubiconproject.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:pool.admedo.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:postrelease.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:pubmatic.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:revsci.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:rfihub.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:rlcdn.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:ru4.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:rubiconproject.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:scorecardresearch.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:serving-sys.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:simpli.fi
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:sitescout.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:skimresources.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:smartadserver.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:statse.webtrendslive.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:taboola.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:tap.rubiconproject.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:tap2-cdn.rubiconproject.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:tapad.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:tidaltv.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:track.clktrkrd.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:track.freemmo2017.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:track.jump2.top
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:tremorhub.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:tribalfusion.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:turn.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:virool.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:w55c.net
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:weborama.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:weborama.fr
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:wtp101.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:www.googleadservices.com
   C:\Users\Walter\AppData\Roaming\Mozilla\Firefox\Profiles\ccwd4qu8.default\cookies.sqlite:www.smartadserver.com
Insertar CODE, HTML o PHP:
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 11:07:48 a.m., on 21/11/2018
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)

FIREFOX: 58.0.2 (x86 es-ES)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files\TeamViewer\TeamViewer.exe
C:\Users\Walter\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: Windows Update (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 18482 bytes
 

mariela

Miembro
Miembro
Insertar CODE, HTML o PHP:
# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build:    09-25-2018
# Database: 2018-11-19.1 (Cloud)
# Support:  Customer Support & Help Center
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    11-21-2018
# Duration: 00:00:11
# OS:       Windows 7 Ultimate
# Scanned:  32104
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1522 octets] - [19/11/2018 22:09:18]
AdwCleaner[C00].txt - [1612 octets] - [19/11/2018 22:10:55]
AdwCleaner[S01].txt - [1375 octets] - [20/11/2018 11:29:35]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########
 

Kbite

Aprender y compartir
Administrador
Hola mariela.

El log de HijackThis está limpio. El HitmanPro eliminó una amenaza y la puso en la Cuarentena. Pero no nos dices si se solucionó el problema.

Saludos, Kbite
 
Estado
Cerrado para nuevas respuestas
Arriba Pie