search.conduit infection

[errequeerre]

Hi,

My computer's become infected with search.conduit.

I ran Malwarebytes and it detected some malware files and deleted them. I know they were associated with this search.conduit thing because they cropped up at the same time.

However, one thing the software does not seem to get rid of is search.conduit having control over my browser (Firefox). I've followed different methods (resetting the search.conduit lines in about:config) and it won't disappear.

These are the logs as required (thanks for your help!):

DDS

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 1.6.0_31

Run by PROPIETARIO at 16:21:01 on 2012-04-07

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.34.3082.18.4095.1484 [GMT 2:00]

.

AV: Kaspersky PURE *Enabled/Updated* {56547CC9-C9B2-849D-8FEF-A496150D6A06}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Kaspersky PURE *Enabled/Updated* {ED359D2D-EF88-8B13-B55F-9FE46E8A20BB}

FW: Kaspersky PURE *Enabled* {6E6FFDEC-83DD-85C5-A4B0-0DA3EBDE2D7D}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe

C:\Program Files (x86)\Bonjour\mDNSResponder.exe

C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe

C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe

C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe

C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\System32\svchost.exe -k HPZ12

C:\Program Files (x86)\SITECOM\300N USB Wireless LAN Utility\RtlService.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe

C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe

C:\Program Files (x86)\SITECOM\300N USB Wireless LAN Utility\RtWlan.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\svchost.exe -k HPService

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\WUDFHost.exe

C:\Windows\System32\rundll32.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Windows\WindowsMobile\wmdc.exe

C:\Program Files (x86)\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exe

C:\Windows\system32\svchost.exe -k WindowsMobile

C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files (x86)\Radio Downloader\Radio Downloader.exe

C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe

C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

C:\Program Files (x86)\Mindjet\MindManager 6\MmReminderService.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUI.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe

C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe

C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe

C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe

C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE

C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Longman\LDOCE5\ldoce5.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE

C:\Windows\splwow64.exe

C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://mystart.incredimail.com/?a=6R7MTMRjMG

uDefault_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0c0a&m=imedia_s3220&r=17361210g616pe445v105y45012298

mDefault_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0c0a&m=imedia_s3220&r=17361210g616pe445v105y45012298

mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0c0a&m=imedia_s3220&r=17361210g616pe445v105y45012298

uInternet Settings,ProxyOverride = *.local

uURLSearchHooks: Barra Yahoo!: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll

uURLSearchHooks: H - No File

uURLSearchHooks: H - No File

uURLSearchHooks: H - No File

uURLSearchHooks: H - No File

mWinlogon: Userinit=userinit.exe,

BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll

BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\ievkbd.dll

BHO: SwissAcademic.Citavi.Picker.IEPicker: {609d670f-b735-4da7-ac6d-f3bd358e325e} - mscoree.dll

BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: CmjBrowserHelperObject Object: {ac41d38f-b56d-40ad-94e0-b493d130c959} - C:\Program Files (x86)\Mindjet\MindManager 6\Mm6InternetExplorer.dll

BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: QUICKfind BHO Object: {c08df07a-3e49-4e25-9ab0-d3882835f153} - C:\PROGRA~2\IDM\QUICKF~1\PlugIns\IEHelp.dll

BHO: Complitly: {d27fc31c-6e3d-4305-8d53-acdaefa5f862} - C:\Users\PROPIETARIO\AppData\Roaming\Complitly\Complitly.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: FilterBHO Class: {e33cf602-d945-461a-83f0-819f76a199f8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll

BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll

BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

TB: Barra Yahoo!: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll

TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

TB: {D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} - No File

TB: {30F9B915-B755-4826-820B-08FBA6BD249D} - No File

TB: {1392B8D2-5C05-419F-A8F6-B9F15A596612} - No File

TB: {BA14329E-9550-4989-B3F2-9732E92D17CC} - No File

EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll

uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

uRun: [pdfSaver3] "C:\Program Files (x86)\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exe"

uRun: [incrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [Radio Downloader] "C:\Program Files (x86)\Radio Downloader\Radio Downloader.exe" /hidemainwindow

uRun: [iSUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler

mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

mRun: [Hotkey Utility] C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe

mRun: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

mRun: [pdfSaver3]

mRun: [MMReminderService] C:\Program Files (x86)\Mindjet\MindManager 6\MMReminderService.exe

mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

mRun: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking11\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking11\Ereg.ini"

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe"

mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot

mRun: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide

mRun: [Freecorder FLV Service] "C:\Program Files (x86)\Freecorder\FLVSrvc.exe" /run

mRun: [RegistrarUsrDNIeCertStoreDLL] "C:\Program Files (x86)\DNIe\udcs.exe"

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

StartupFolder: C:\Users\PROPIE~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\RECORT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: &Citavi Picker... - file://C:\ProgramData\Swiss Academic Software\Citavi Picker\Internet Explorer\ShowContextMenu.html

IE: &Enviar a OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

IE: Agregar al componente Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\ie_banner_deny.htm

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: E&xportar a Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

IE: {4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll

IE: {531B9DC0-D8EE-4c76-A6EE-6C1E50569655} - {AC41D38F-B56D-40AD-94E0-B493D130C959} - C:\Program Files (x86)\Mindjet\MindManager 6\Mm6InternetExplorer.dll

IE: {619D670F-B735-4da7-AC6D-F3BD358E325E} - {609D670F-B735-4da7-AC6D-F3BD358E325E} - mscoree.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll

IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

LSP: %SYSTEMROOT%\system32\nvLsp.dll

DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 80.58.61.250 80.58.61.254

TCP: Interfaces\{DDB36EF5-5A0D-491D-B245-9A43A706F182} : DhcpNameServer = 80.58.61.250 80.58.61.254

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll, C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll

{02478D38-C3F9-4efb-9B51-7695ECA05670}

{0347C33E-8762-4905-BF09-768834316C61}

{18DF081C-E8AD-4283-A596-FA578C2EBDC3}

{3049C3E9-B461-4BC5-8870-4C09146192CA}

{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}

{609D670F-B735-4da7-AC6D-F3BD358E325E}

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{AC41D38F-B56D-40AD-94E0-B493D130C959}

{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

{C08DF07A-3E49-4E25-9AB0-D3882835F153}

{D27FC31C-6E3D-4305-8D53-ACDAEFA5F862}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

{E33CF602-D945-461A-83F0-819F76A199F8}

{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}

{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}

{EF99BD32-C1FB-11D2-892F-0090271D4F88}

TB-X64: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

TB-X64: {D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} - No File

TB-X64: {30F9B915-B755-4826-820B-08FBA6BD249D} - No File

TB-X64: {1392B8D2-5C05-419F-A8F6-B9F15A596612} - No File

TB-X64: {BA14329E-9550-4989-B3F2-9732E92D17CC} - No File

EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File

mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

mRun-x64: [Hotkey Utility] C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe

mRun-x64: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

mRun-x64: [pdfSaver3]

mRun-x64: [MMReminderService] C:\Program Files (x86)\Mindjet\MindManager 6\MMReminderService.exe

mRun-x64: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

mRun-x64: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun-x64: [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking11\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking11\Ereg.ini"

mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun-x64: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe"

mRun-x64: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot

mRun-x64: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide

mRun-x64: [Freecorder FLV Service] "C:\Program Files (x86)\Freecorder\FLVSrvc.exe" /run

mRun-x64: [RegistrarUsrDNIeCertStoreDLL] "C:\Program Files (x86)\DNIe\udcs.exe"

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

AppInit_DLLs-X64: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll, C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\PROPIETARIO\AppData\Roaming\Mozilla\Firefox\Profiles\qtk8g3cb.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3079332&SearchSource=3&q={searchTerms}

FF - prefs.js: browser.search.selectedEngine - ReversoES Customized Web Search

FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT3079332&SearchSource=13

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/?loc=ff_address_bar&search=

FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru\components\abhelperxpcom.dll

FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\kavlinkfilter.dll

FF - component: C:\Users\PROPIETARIO\AppData\Roaming\Mozilla\Firefox\Profiles\qtk8g3cb.default\extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}\components\RadioWMPCoreGecko19.dll

FF - component: C:\Users\PROPIETARIO\AppData\Roaming\Mozilla\Firefox\Profiles\qtk8g3cb.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll

FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\NOS\bin\np_gp.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

FF - plugin: C:\Users\PROPIETARIO\AppData\Roaming\Mozilla\Firefox\Profiles\qtk8g3cb.default\extensions\DeviceDetection@logitech.com\plugins\npLogitechDeviceDetection.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll

.

============= SERVICES / DRIVERS ===============

.

R0 CSCrySec;InfoWatch Encrypt Sector Library driver;C:\Windows\system32\DRIVERS\CSCrySec.sys --> C:\Windows\system32\DRIVERS\CSCrySec.sys [?]

R0 KLBG;Kaspersky Lab Boot Guard Driver;C:\Windows\system32\DRIVERS\klbg.sys --> C:\Windows\system32\DRIVERS\klbg.sys [?]

R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]

R1 CSVirtualDiskDrv;InfoWatch Virtual Disk driver;C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys --> C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys [?]

R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\system32\DRIVERS\klim6.sys --> C:\Windows\system32\DRIVERS\klim6.sys [?]

R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]

R2 AVP;Kaspersky PURE;C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe [2010-10-1 348760]

R2 CSObjectsSrv;Servicio de control de CryptoStorage;C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [2009-12-21 743992]

R2 DragonSvc;Dragon Service;C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe [2010-11-29 296808]

R2 Greg_Service;GRegService;C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-8-28 1150496]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-4-6 652360]

R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-6-11 2214504]

R2 Realtek11nSU;Realtek11nSU;C:\Program Files (x86)\SITECOM\300N USB Wireless LAN Utility\RtlService.exe [2010-12-20 40960]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-5-20 378472]

R2 TeamViewer6;TeamViewer 6;C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2010-12-20 2228008]

R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe [2012-1-18 450848]

R2 Updater Service;Updater Service;C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-3-18 243232]

R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\system32\DRIVERS\klmouflt.sys --> C:\Windows\system32\DRIVERS\klmouflt.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]

R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;C:\Windows\system32\DRIVERS\RTL8192su.sys --> C:\Windows\system32\DRIVERS\RTL8192su.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Servicio Google Update (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-1-16 135664]

S3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-9 169312]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-3-31 253600]

S3 gupdatem;Servicio de Google Update (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-1-16 135664]

S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\system32\DRIVERS\lvrs64.sys --> C:\Windows\system32\DRIVERS\lvrs64.sys [?]

S3 LVUVC64;Logitech HD Webcam C270(UVC);C:\Windows\system32\DRIVERS\lvuvc64.sys --> C:\Windows\system32\DRIVERS\lvuvc64.sys [?]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]

S3 WatAdminSvc;Servicio de tecnologías de activación de Windows;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

.

=============== Created Last 30 ================

.

2012-04-07 11:10:17 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{510F84CB-33EC-46D3-9B98-CAF773857579}\offreg.dll

2012-04-07 10:58:11 -------- d-----w- C:\Users\PROPIETARIO\AppData\Roaming\Curiolab

2012-04-07 10:57:29 -------- d-----w- C:\Program Files (x86)\Exterminate It!

2012-04-07 10:32:15 -------- d-----w- C:\_OTL

2012-04-06 18:40:58 -------- d-----w- C:\Users\PROPIETARIO\AppData\Roaming\Malwarebytes

2012-04-06 18:40:47 -------- d-----w- C:\ProgramData\Malwarebytes

2012-04-06 18:40:46 23152 ----a-w- C:\Windows\System32\drivers\mbam.sys

2012-04-06 18:40:46 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2012-04-06 10:03:11 8669240 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{510F84CB-33EC-46D3-9B98-CAF773857579}\mpengine.dll

2012-04-05 17:58:55 -------- d-----w- C:\Program Files (x86)\UnH Solutions

2012-04-05 10:39:04 936960 ----a-w- C:\Windows\System32\dniecsp.dll

2012-04-05 10:39:04 55808 ----a-w- C:\Windows\System32\regDNIeCSP.exe

2012-04-03 14:55:24 98360 ----atw- C:\Users\PROPIETARIO\AppData\Roaming\Microsoft\~DFK167bde9.tmp

2012-04-03 14:55:24 26200 ----atw- C:\Users\PROPIETARIO\AppData\Roaming\Microsoft\qwadjb.dll

2012-04-03 14:55:24 18724 ----atw- C:\Users\PROPIETARIO\AppData\Roaming\Microsoft\bass.dll

2012-04-03 14:55:24 16952 ----atw- C:\Users\PROPIETARIO\AppData\Roaming\Microsoft\1eaadjc.dll

2012-04-03 14:55:24 15416 ----atw- C:\Users\PROPIETARIO\AppData\Roaming\Microsoft\rsaadjd.dll

2012-04-03 14:55:24 14392 ----atw- C:\Users\PROPIETARIO\AppData\Roaming\Microsoft\kfgresk.dll

2012-04-03 14:55:24 13984 ----atw- C:\Users\PROPIETARIO\AppData\Roaming\Microsoft\mjcriu.dll

2012-04-03 14:55:24 10808 ----atw- C:\Users\PROPIETARIO\AppData\Roaming\Microsoft\peaadje.dll

2012-04-03 14:53:42 -------- d-----w- C:\Program Files (x86)\MP3 My MP3 3.1

2012-03-31 08:53:05 418464 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-03-29 13:08:08 -------- d-----w- C:\Users\PROPIETARIO\.oces

2012-03-27 23:29:14 -------- d-----w- C:\Users\PROPIETARIO\.swt

2012-03-27 23:29:12 -------- d-----w- C:\Users\PROPIETARIO\AppData\Roaming\Azureus

2012-03-27 23:28:47 -------- d-----w- C:\Program Files (x86)\Vuze

2012-03-27 00:09:29 -------- d-----w- C:\Program Files\SyncToy 2.1

2012-03-18 16:48:28 -------- d-----w- C:\Users\PROPIETARIO\AppData\Roaming\iSpring Solutions

2012-03-18 14:49:47 -------- d-----w- C:\Program Files (x86)\iSpring

2012-03-18 14:49:47 -------- d-----w- C:\Program Files (x86)\Common Files\iSpring Solutions

2012-03-18 01:31:03 -------- d-----w- C:\Users\PROPIETARIO\AppData\Roaming\Matus Tomlein

2012-03-18 01:31:02 -------- d-----w- C:\Users\PROPIETARIO\.Synkron

2012-03-18 00:35:52 592824 ----a-w- C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll

2012-03-18 00:35:52 44472 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozglue.dll

2012-03-16 13:34:38 -------- d-----w- C:\Program Files (x86)\ColorDetector200

2012-03-14 15:36:56 5559152 ----a-w- C:\Windows\System32\ntoskrnl.exe

2012-03-14 15:36:55 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2012-03-14 15:36:55 3913584 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2012-03-14 09:24:22 3145728 ----a-w- C:\Windows\System32\win32k.sys

2012-03-14 09:24:20 1544192 ----a-w- C:\Windows\System32\DWrite.dll

2012-03-14 09:24:20 1077248 ----a-w- C:\Windows\SysWow64\DWrite.dll

2012-03-14 09:23:54 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll

2012-03-14 09:23:54 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys

2012-03-14 09:23:54 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys

2012-03-14 09:23:54 1031680 ----a-w- C:\Windows\System32\rdpcore.dll

2012-03-14 09:23:52 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe

2012-03-14 09:23:52 77312 ----a-w- C:\Windows\System32\rdpwsx.dll

2012-03-14 09:23:52 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll

2012-03-13 09:38:02 162392 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\KavLinkFilter.dll

2012-03-13 00:23:14 269272 ----a-w- C:\updater.exe

2012-03-09 12:32:16 -------- d-----w- C:\Users\PROPIETARIO\AppData\Roaming\kompozer.net

2012-03-09 12:32:16 -------- d-----w- C:\Users\PROPIETARIO\AppData\Local\kompozer.net

2012-03-09 12:31:52 -------- d-----w- C:\Program Files (x86)\KompoZer

2012-03-09 12:23:52 -------- d-----w- C:\Users\PROPIETARIO\AppData\Roaming\KompoZer

.

==================== Find3M ====================

.

2012-04-05 10:37:07 761344 ----a-w- C:\Windows\System32\UsrDNIeCertStore.dll

2012-03-31 08:53:05 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-02-23 08:18:36 279656 ------w- C:\Windows\System32\MpSigStub.exe

2012-02-17 13:50:20 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-02-16 10:42:01 2106216 ----a-w- C:\D3DCompiler_43.dll

2012-02-16 10:42:00 1998168 ----a-w- C:\d3dx9_43.dll

2012-02-16 10:41:55 626688 ----a-w- C:\msvcr80.dll

2012-02-16 10:41:55 548864 ----a-w- C:\msvcp80.dll

2012-02-16 10:41:55 479232 ----a-w- C:\msvcm80.dll

2012-01-18 05:23:12 38958 ----a-w- C:\Windows\System32\Repository.reg

2003-03-21 12:45:22 250544 ----a-w- C:\Program Files (x86)\Common Files\keyhelp.ocx

.

============= FINISH: 16:22:50,80 ===============

ATTACH

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume2

Install Date: 18/12/2010 13:24:42

System Uptime: 07/04/2012 12:37:15 (4 hours ago)

.

Motherboard: Packard Bell | | WMCP78M

Processor: AMD Phenom II X6 1035T Processor | CPU 1 | 2600/200mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 288 GiB total, 142,273 GiB free.

D: is FIXED (NTFS) - 288 GiB total, 116,653 GiB free.

E: is CDROM (CDFS)

G: is Removable

H: is Removable

I: is Removable

J: is Removable

L: is Removable

.

==== Disabled Device Manager Items =============

.

Class GUID: {36fc9e60-c465-11cf-8056-444553540000}

Description: Unknown Device

Device ID: USB\VID_0000&PID_0000\5&220E4A40&0&4

Manufacturer: (Controladora de host USB estándar)

Name: Unknown Device

PNP Device ID: USB\VID_0000&PID_0000\5&220E4A40&0&4

Service:

.

==== System Restore Points ===================

.

RP221: 31/03/2012 2:13:30 - Windows Update

RP222: 03/04/2012 10:41:52 - Windows Update

RP223: 05/04/2012 12:31:58 - Configurado Instalable módulo criptográfico DNIe

RP224: 05/04/2012 12:37:17 - Instalado Instalable módulo criptográfico DNIe

RP225: 06/04/2012 12:02:31 - Windows Update

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

1600

1600_Help

1600Trb

4Media DVD to MP4 Converter 6

Acrobat.com

Adobe AIR

Adobe Photoshop Elements 8.0

Adobe Reader 9.5.0 MUI

Adobe Shockwave Player 11.6

Advertising Center

AIO_CDB_ProductContext

AIO_CDB_Software

AIO_Scan

Amazon Kindle

Apple Application Support

Apple Software Update

Aspi Installer

Audacity 1.2.6

AVS Audio Editor version 6.1

AVS DVD Copy version 4.1.1

AVS Screen Capture version 2.0.1

AVS Update Manager 1.0

AVS Video Converter 7

AVS Video Editor 5

AVS Video Recorder 2.4

AVS4YOU Software Navigator 1.4

Barra Yahoo!

Bejeweled 2 Deluxe

Blasterball 3

Bob the Builder Can-Do-Zoo

Bootstrapper

BufferChm

Build-a-lot 2

CameraHelperMsi

Chicken Invaders 3 - Revenge of the Yolk

Cisco EAP-FAST Module

Cisco LEAP Module

Cisco PEAP Module

Citavi

Color Detector 2.0

Complitly

Compresor WinRAR

Copy

D3DX10

DebugMode Wink

Destinations

DeviceDiscovery

DocProc

Dragon NaturallySpeaking 11

eBay Worldwide

EclipseCrossword

erLT

Escape Rosecliff Island

eXe -- eLearning XHTML editor

Exterminate It!

Faerie Solitaire

FATE - The Traitor Soul

Fax

FileZilla Client 3.5.3

Freecorder 5

Galería fotográfica de Windows Live

Google Chrome

Google Update Helper

GPBaseService2

Hotkey Utility

HotPotatoes v 6.3.0.4

HP Update

HPDiagnosticAlert

HPPhotoGadget

HPPhotoSmartDiscLabelContent1

HPPhotosmartEssential

HPProductAssistant

HPSSupply

Identity Card

ImagXpress

IncrediMail

IncrediMail 2.0

Insaniquarium Deluxe

Instalable módulo criptográfico DNIe

iSpring Free 6

Java Auto Updater

Java 6 Update 31

Jewel Quest

Jewel Quest Solitaire 3

Junk Mail filter update

Kaspersky PURE

KompoZer 0.8b3

Langenscheidt Vokabeltrainer 4.0 Französisch

LingoFox

Living 3D Fireplace 2.0

Logitech SetPoint

Longman Dictionary of Contemporary English 5th Edition

LWS Facebook

LWS Gallery

LWS Help_main

LWS Launcher

LWS Motion Detection

LWS Pictures And Video

LWS Twitter

LWS Video Mask Maker

LWS Webcam Software

LWS WLM Plugin

LWS YouTube Plugin

Mahjongg Artifacts

Malwarebytes Anti-Malware versión 1.60.1.1000

MarketResearch

Markin v 4.1.2.1

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Access MUI (Spanish) 2007

Microsoft Office Excel 2007 Help Actualización (KB963678)

Microsoft Office Excel MUI (English) 2007

Microsoft Office Excel MUI (Spanish) 2007

Microsoft Office File Validation Add-In

Microsoft Office Groove MUI (Spanish) 2007

Microsoft Office Home and Student 2007

Microsoft Office InfoPath MUI (Spanish) 2007

Microsoft Office Language Pack 2007 - Spanish/Español

Microsoft Office O MUI (Spanish) 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office OneNote MUI (Spanish) 2007

Microsoft Office Outlook 2007 Help Actualización (KB963677)

Microsoft Office Outlook MUI (Spanish) 2007

Microsoft Office Powerpoint 2007 Help Actualización (KB963669)

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office PowerPoint MUI (Spanish) 2007

Microsoft Office PowerPoint Viewer 2007 (Spanish)

Microsoft Office Proof (Basque) 2007

Microsoft Office Proof (Catalan) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Galician) 2007

Microsoft Office Proof (Portuguese (Brazil)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing (Spanish) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher 2007

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Publisher MUI (Spanish) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared MUI (Spanish) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)

Microsoft Office SharePoint Designer MUI (Spanish) 2007

Microsoft Office Suite Activation Assistant

Microsoft Office Word 2007 Help Actualización (KB963665)

Microsoft Office Word MUI (English) 2007

Microsoft Office Word MUI (Spanish) 2007

Microsoft Office X MUI (Spanish) 2007

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Works

Mindjet MindManager Pro 6

Minitab 16

Minitab Software Update Manager

Minitab16

MobiOne 1.2.2

Mobipocket Creator 4.2

Mobipocket Reader 6.2

MoodleCron

Mozilla Firefox 11.0 (x86 es-ES)

MP3MyMP3 3.1

MSVCRT

MSVCRT_amd64

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Nero 9 Essentials

Nero ControlCenter

Nero DiscSpeed

Nero DiscSpeed Help

Nero DriveSpeed

Nero DriveSpeed Help

Nero Express Help

Nero InfoTool

Nero InfoTool Help

Nero Installer

Nero Online Upgrade

Nero StartSmart

Nero StartSmart Help

Nero StartSmart OEM

NeroExpress

neroxml

Norton Online Backup

Notepad++

NVIDIA 3D Vision Controller Driver

NVIDIA ForceWare Network Access Manager

NVIDIA PhysX

NVIDIA Stereoscopic 3D Driver

Oxford Advanced Learner's Dictionary - 7th edition

Packard Bell Game Console

Packard Bell Games

Packard Bell InfoCentre

Packard Bell Recovery Management

Packard Bell Registration

Packard Bell ScreenSaver

Packard Bell Software Suite SE

Packard Bell Updater

Paquete de compatibilidad para 2007 Office system

PDF-XChange 3.0

Penguins!

Photo Notifier and Animation Creator

Polar Bowler

Polar Golfer

Polar Pool

PrettyMay Call Recorder for Skype - Professional 4.0.0.818

QUICKfind server v1.1

QuickTime

Radio Downloader

RealNetworks - Microsoft Visual C++ 2008 Runtime

RealPlayer

Realtek High Definition Audio Driver

RealUpgrade 1.1

Router inalámbrico

Scan

Security Update for CAPICOM (KB931906)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition

Security Update for Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (KB2478663)

Security Update for Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (KB2518870)

Sitecom 300N USB Wireless LAN Driver and Utility

Skype Click to Call

Skype™ 5.5

SmartWebPrinting

Software de cámara Web Logitech

SoftwareManager

SolutionCenter

Spotify

Stanza

Status

SWF Opener

swMSM

System Requirements Lab

TeamViewer 6

Toolbox

TrayApp

UnloadSupport

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition

Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 Help (KB963665)

Virtual Families

Virtual Villagers - A New Home

VLC media player 1.1.5

Vokabeltrainer-Update 4.0.46

Vuze

WebReg

Welcome Center

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Mail

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live Sync

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Windows Media Player Firefox Plugin

Yahtzee

Zuma Deluxe

.

==== Event Viewer Messages From Past Week ========

.

07/04/2012 12:32:15, Error: Service Control Manager [7034] - El servicio NVIDIA Stereoscopic 3D Driver Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

05/04/2012 19:09:59, Error: Microsoft-Windows-Smartcard-Server [610] - El lector de tarjeta inteligente 'SYNNIX STD200 0' rechazó el IOCTL GET_STATE: La operación de E/S se anuló por una salida de subproceso o por una solicitud de aplicación.. Si el error continúa, es posible que la tarjeta inteligente o el lector no funcionen correctamente. Encabezado de comando: XX XX XX XX

.

==== End Of File ===========================

[Maniac]

Hello errequeerre! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

• If you are a paying customer, you have the privilege to contact the help desk at support@malwarebytes.org or here (http://helpdesk.malwarebytes.org/home). If you choose this option to get help, please let me know.
  
• I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  
• Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  
• Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  
• Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  

Step 1

• Launch Malwarebytes' Anti-Malware
  
• Go to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.
  
• Go to Scanner tab and select Perform Quick Scan, then click Scan.
  
• The scan may take some time to finish,so please be patient.
  
• When the scan is complete, click OK, then Show Results to view the results.
  
• Make sure that everything is checked, and click Remove Selected.
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  
• Copy&Paste the entire report in your next reply.
  

Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.

Step 2

Download OTL to your Desktop

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  
• Please tick the Scan All users. Next, click the Quick Scan button. The scan wont take long.
  
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic.
    

In your next reply, post the following log files:

• Malwarebytes' Anti-Malware log
  
• OTL log with Extras.txt

[Maurice Naggar]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!