SYN_SENT Y LAST_ACK EN NETSTAT

Cerrado
shewi232
Mensajes: 5
Registrado: 13 Mar 2018, 18:28

SYN_SENT Y LAST_ACK EN NETSTAT

Mensaje por shewi232 » 13 Mar 2018, 18:39

Necesito una ayuda, ya hace tiempo hago un netstat -nbt y me dice: Syn_Sent o LAST_ACK

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 02:35:36 p.m., on 13/03/2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:

Código: Seleccionar todo

C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe
C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AcroTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\OpenOffice 4\program\scalc.exe
C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
C:\Program Files (x86)\OpenOffice 4\program\soffice.bin
C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?linkid=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Norton Identity Safety - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine32\22.12.1.15\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.12.1.15\coIEPlg.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKLM\..\Run: [BrStsInd00] C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe /AUTORUN
O4 - HKCU\..\Run: [Speech Recognition] "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
O8 - Extra context menu item: &Anexar destino de vínculo a PDF existente - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Agregar página web a PDF existente - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir &página web a PDF de Adobe - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir destino de vínculo a Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIECaptureSelLinks.html
O17 - HKLM\System\CCS\Services\Tcpip\..\{48CAE6C0-E564-4BF9-BA09-564CC251D89B}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{48CAE6C0-E564-4BF9-BA09-564CC251D89B}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{48CAE6C0-E564-4BF9-BA09-564CC251D89B}: NameServer = 8.8.8.8,8.8.4.4
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: Symantec Eraser Service (EraserSvc11730) - Unknown owner - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\NS.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE
O23 - Service: Norton Security (NortonSecurity) - Symantec Corporation - C:\Program Files (x86)\Norton Security\Engine\22.12.1.15\NortonSecurity.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 23848 bytes

Avatar de Usuario
msc hotline sat
Mensajes: 93500
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Loh Hijackthis

Mensaje por msc hotline sat » 13 Mar 2018, 19:35

Sobre el mensaje del NETSTAT donde se indica:
SYN_SENT – El socket intenta iniciar una conexión.
LAST_ACK – La conexión remota ha finalizado, y se espera que se cierre el socket. Esperando el "acknowledgement" (reconocimiento)

Lo cual es síntoma de una conexión remota, que puede ser efectuada por algun usuario externo ...

Aparte de ello, en los procesos en uso se ven muchos Chrome.exe que no son logicos, pues cada uno consume su CPU..., y se ven muchas entradas de servicios O23 que no son lógicas, pero empieza por los lanzamientos de tantos Chrome.exe simultaneos, que te estan comiendo prestaciones, a ver si es que abres muchas ventanas de dicha aplicación sin cerrar la que ya tienes abierta, y ello no es recomendable.

En cualquier caso, dinos si usas dicho Chrome, no sea que ni eso esté hecho por tí, y solo uses el Internet Explorer ??? En tal caso el Chrome puede que lo esté ejecutando alguien en remoto !!!

Y si eres tú el que está abriendo dichas sesiones de Chrome, sin cerrar laa que tengas abierta, ya sabes, antes de abrir una nueva, cierra la que hayas abierto antes.

Saludos
ms, 13-3-2018

shewi232
Mensajes: 5
Registrado: 13 Mar 2018, 18:28

Re: SYN_SENT Y LAST_ACK EN NETSTAT

Mensaje por shewi232 » 14 Mar 2018, 12:49

Hola, Primero que nada muchas gracias por responder, Se agradece muchisimo la atencion.

Con respecto a los Chrome, al hacer ese test no tenia tantos abiertos, tenia 1 pestaña abierta, No se si tiene algo que ver que en su momento sufri un Ataque DDOS ya hace unas semanas, Jamas me lo pude sacar o bloquear, por mas que activara algun Firewall u algun archivo .bat , Mi conexion no es la misma desde entonces, hay dias que llego a perder 40 paquetes, Por lo que yo se este tipo de Ataques lo hacen por algun tipo de pagina, no estoy muy bien informado, pero es lo que me dijeron.
Si me podrias decir algun metodo para poder quitarme el DDOS y evitarlos, ya que los que me lo hicieron no son personas expertas en el tema

Avatar de Usuario
msc hotline sat
Mensajes: 93500
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: SYN_SENT Y LAST_ACK EN NETSTAT

Mensaje por msc hotline sat » 15 Mar 2018, 09:32

Pues como que ya hace años que hemos sustituido el HJT por nuestro SPROCES, mucho mas exhaustivo, descargalo de esta web y tras ejecutarlo, pulsa SALIR y te creará un informe en c:\sproclog.txt

http://www.zonavirus.com/descargas/sproces.asp

Con un COPIAR Y PEGAR, pegas el contenido de dicho fichero SPROCLOG.TXT a la respuesta de este Tema y lo analizaremos, a ver si vemos algo con lo que podamos saber cual es la causa de tu problema.

Tras verlo, lo analizaremos e informaremos

saludos

ms, 15-3-2018

shewi232
Mensajes: 5
Registrado: 13 Mar 2018, 18:28

Re: SYN_SENT Y LAST_ACK EN NETSTAT

Mensaje por shewi232 » 16 Mar 2018, 16:43

Aqui te dejo lo que me pediste, Muchas gracias por tu atencion! sinceramente no se nada de esto, Mil gracias

(16-3-2018 15:41:53 GMT)
SProces v9.1 (c)2017 S.G.H. / Satinfo S.L.
-------------------------------------------

Código: Seleccionar todo

Sistema Operativo: Windows 7 Ultimate (v6.1)  (64 bits)
Internet Explorer: (v8.0.7601.17514) 0
Equipo: DIEGO-PC
Usuario: Diego
Sesión de Usuario: Diego

63 Procesos Activos:
C:\WINDOWS\SYSTEM32\SMSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\WININIT.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
C:\WINDOWS\SYSTEM32\SERVICES.EXE
C:\WINDOWS\SYSTEM32\LSASS.EXE
C:\WINDOWS\SYSTEM32\LSM.EXE
C:\WINDOWS\SYSTEM32\WINLOGON.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\AUDIODG.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\IGFXCUISERVICE.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\TASKHOST.EXE
C:\WINDOWS\SYSTEM32\DWM.EXE
C:\PROGRAM FILES (X86)\COMMON FILES\ADOBE\ARM\1.0\ARMSVC.EXE
C:\PROGRAM FILES (X86)\COMMON FILES\ADOBE\ADOBE DESKTOP COMMON\ELEVATIONMANAGER\ADOBEUPDATESERVICE.EXE
C:\PROGRAM FILES (X86)\COMMON FILES\ADOBE\ADOBEGCCLIENT\AGSSERVICE.EXE
C:\WINDOWS\SYSTEM32\HECISERVER.EXE
C:\WINDOWS\SYSTEM32\RAVCPL64.EXE
C:\WINDOWS\SYSWOW64\NLSSRV32.EXE
C:\WINDOWS\SYSTEM32\NORTONSECURITY.EXE
C:\PROGRAM FILES (X86)\INTEL\INTEL(R) USB 3.0 EXTENSIBLE HOST CONTROLLER DRIVER\APPLICATION\IUSB3MON.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\PROGRAM FILES (X86)\BROWNYIND\BROTHER\BRINDICATOR.EXE
C:\WINDOWS\SYSTEM32\NORTONSECURITY.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\PRESENTATIONFONTCACHE.EXE
C:\PROGRAM FILES (X86)\BROWNY02\BRYNSVC.EXE
C:\WINDOWS\SYSTEM32\SEARCHINDEXER.EXE
C:\WINDOWS\SYSTEM32\IGFXEM.EXE
C:\WINDOWS\SYSTEM32\IGFXHK.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\WINDOWS\SYSWOW64\CMD.EXE
C:\WINDOWS\SYSTEM32\CONHOST.EXE
C:\WINDOWS\SYSTEM32\CONATHST.EXE
C:\WINDOWS\SYSTEM32\NACL64.EXE
C:\WINDOWS\SYSTEM32\NACL64.EXE
C:\WINDOWS\SYSTEM32\EXPLORER.EXE
C:\PROGRAM FILES (X86)\OPENOFFICE 4\PROGRAM\SOFFICE.EXE
C:\PROGRAM FILES (X86)\OPENOFFICE 4\PROGRAM\SOFFICE.BIN
C:\WINDOWS\SYSTEM32\SPLWOW64.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
D:\TS\TS3CLIENT_WIN32.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\WINDOWS\SYSTEM32\SEARCHPROTOCOLHOST.EXE
C:\WINDOWS\SYSTEM32\SEARCHFILTERHOST.EXE
C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
C:\USERS\DIEGO\DESKTOP\SPROCES.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?linkid=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
F2 - REG:system.ini: UserInit=userinit.exe (HKLM x86)
O1 - Hosts: 127.0.0.1            176.31.241.10
O1 - Hosts: 127.0.0.1            54.68.188.84
O1 - Hosts: 127.0.0.1            54.221.244.28
O1 - Hosts: 127.0.0.1            40.77.226.250
O1 - Hosts: 127.0.0.1            54.187.37.182
O1 - Hosts: 127.0.0.1            serwer2.paka-service.com
O1 - Hosts: 127.0.0.1            thislineskipsanyemptylines
O1 - Hosts: 127.0.0.1            mirillis.com
O1 - Hosts: 127.0.0.1            ns386119.ovh.net
O1 - Hosts: 127.0.0.1            mirillis.pl
O1 - Hosts: 127.0.0.1            mirillis.eu
O1 - Hosts: 127.0.0.1            www.mirillis.com
O1 - Hosts: 127.0.0.1            updates.mirillis.com  
O1 - Hosts: 127.0.0.1            54.148.249.18
O1 - Hosts: 127.0.0.1                   bandicam.com
O1 - Hosts: 127.0.0.1                   ssl.bandisoft.com
O2 - BHO: Norton Identity Safety - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.12.1.15\coIEPlg.dll (MD5: 443A70960B84B9377ADCD502EE1E9014)
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll (MD5: E855FFA6A24DE6B73091A85A1569D180)
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll (MD5: E855FFA6A24DE6B73091A85A1569D180)
O2 - BHO (x86): Norton Identity Safety - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine32\22.12.1.15\coIEPlg.dll (MD5: 51EE5E059BC5060C41B9A962639A69E5)
O2 - BHO (x86): Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll (MD5: 0FB6713F16190B20A18D74FAA56525C9)
O2 - BHO (x86): Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll (MD5: 6EEF5139D265045752464E0078B82BC8)
O2 - BHO (x86): Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll (MD5: D4B0D1DDD86F4E5C1ABE2B82640A7DFA)
O2 - BHO (x86): SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll (MD5: 6EEF5139D265045752464E0078B82BC8)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.12.1.15\coIEPlg.dll (MD5: 443A70960B84B9377ADCD502EE1E9014)
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll (MD5: E855FFA6A24DE6B73091A85A1569D180)
O3 - Toolbar (x86): Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.12.1.15\coIEPlg.dll (MD5: 51EE5E059BC5060C41B9A962639A69E5)
O3 - Toolbar (x86): Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll (MD5: 6EEF5139D265045752464E0078B82BC8)
O4 - HKCU\..\Run: [Speech Recognition] "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup (MD5: 173D93AB55B6602C115E1E0BCDA3BDBC)
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s (MD5: 37C6C318D6AFAFA2EBA99820EDF21DA6)
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe" (MD5: FC53CA749AD9BA4D51192B4694421D55)
O4 - HKLM\..\Wow6432Node\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" (MD5: BD2C0CDD525902E3033DAA8D08D0F015)
O4 - HKLM\..\Wow6432Node\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN (MD5: A12927788DE1555B598DFD16B4FA3F8B)
O4 - HKLM\..\Wow6432Node\..\Run: [BrStsInd00] C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe /AUTORUN (MD5: 9DEF1B844FF294FE5900711764F82B72)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio Local')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio Local') (MD5: 0FA760BF380B08D0B67B5507CD8B32AA)
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red') (MD5: 0FA760BF380B08D0B67B5507CD8B32AA)
O8 - Extra context menu item: &Anexar destino de vínculo a PDF existente - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Agregar página web a PDF existente - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir &página web a PDF de Adobe - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir destino de vínculo a Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIECaptureSelLinks.html
O13 - Gopher Prefix: NULL2
O17 - HKLM\System\CCS\Services\Tcpip\..\{48CAE6C0-E564-4BF9-BA09-564CC251D89B}: NameServer = 8.8.8.8,8.8.4.4
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)
O21 - SSODL (x86): WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)

Información Adicional:
----------------------
Acceso Rapido ('Diego'): Google Chrome.lnk = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  (MD5: D7578B9B4AC064894A8935DD09DE0260)
Acceso Rapido ('Diego'): Launch Internet Explorer Browser.lnk = C:\Program Files (x86)\Internet Explorer\iexplore.exe  (MD5: C613E69C3B191BB02C7A191741A1D024)
Acceso Rapido ('Diego'): PokerStars.lnk = C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe  (MD5: 650F2A4F220572BACF16C6D9A802963F)
Acceso Rapido ('Diego'): Shows Desktop.lnk =  
Acceso Rapido ('Diego'): Window Switcher.lnk =  
Ext.Google Chrome. ('Diego') Id: aohghmighlieiainnegkcijnfilokake 
Ext.Google Chrome. ('Diego') Id: apdfllckaahabafndbhieahigkjlhalf 
Ext.Google Chrome. ('Diego') Id: blpcfgokakmgnkcojhhkbfbldkacnbeo 
Ext.Google Chrome. ('Diego') Id: cjabmdjcfcfdmffimndhafhblfmpjdpe C:\Program Files (x86)\Norton Security\Engine\22.12.1.15\Exts\Chrome.crx
Ext.Google Chrome. ('Diego') Id: coobgpohoikkiipiblmjeljniedjpjpf 
Ext.Google Chrome. ('Diego') Id: deildingfnmdbbgbnbhnjodhkhgoggdm 
Ext.Google Chrome. ('Diego') Id: efaidnbmnnnibpcajpcglclefindmkaj 
Ext.Google Chrome. ('Diego') Id: ghbmnnjooekpmoecnnnilnnbdlolhkhi 
Ext.Google Chrome. ('Diego') Id: habiadhabcemdbhcbhmjokhoigoefnph 
Ext.Google Chrome. ('Diego') Id: iikflkcanblccfahdhdonehdalibjnif NULL2
Ext.Google Chrome. ('Diego') Id: nmmhkkegccagdldgiimedpiccmgmieda 
Ext.Google Chrome. ('Diego') Id: pjkljhegncpnkpknbcohdijeoejaedia 
Ext.Google Chrome. ('Diego') Id: pkedcjkdefgpdelpbcmbmeomcjbeemfm 
DataBases Google Chrome. ('Diego'): Databases.db
DataBases Google Chrome. ('Diego'): Databases.db-journal

Listado de Servicios (Carga Automatica):
----------------------------------------
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (MD5: CA805DA983594B01F3554464B2E5158F)
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (MD5: BA4D7EFDEA4603C52851F2FD872C3AF5)
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (MD5: 58A5D48F16E89575C21C0B14A15D4383)
O23 - Service: Symantec Eraser Service (EraserSvc11730) - Unknown owner - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\NS.exe (file missing)
O23 - Service: Google Update Servicio (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (MD5: E1B44A75947137F4143308D566889837)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Intel Corporation - C:\WINDOWS\system32\igfxCUIService.exe (MD5: A3BB563FFC9D4E2F86700C6B660A18DD)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe (MD5: 768DD5CB66952BC4A3BD474757AEE34F)
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE (MD5: 60D90CD961FE8074C47A7D8AC1192020)
O23 - Service: Norton Security (NortonSecurity) - Unknown owner - C:\Program Files (x86)\Norton Security\Engine\22.12.1.15\NortonSecurity.exe" /s "NortonSecurity" /m "C:\Program Files (x86)\Norton Security\Engine\22.12.1.15\diMaster.dll (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe (MD5: 22CC2A61BC77C5972B58756049AA254E)

Listado de Servicios (Carga Manual):
------------------------------------
O23 - Service: adp94xx - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adp94xx.sys (MD5: 2F6B34B83843F0C5118B63AC634F5BF4)
O23 - Service: adpahci - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpahci.sys (MD5: 597F78224EE9224EA1A13D6350CED962)
O23 - Service: adpu320 - Adaptec, Inc. - C:\WINDOWS\system32\drivers\adpu320.sys (MD5: E109549C90F62FB570B9540C4B148E54)
O23 - Service: aliide - Acer Laboratories Inc. - C:\WINDOWS\system32\drivers\aliide.sys (MD5: 5812713A477A3AD7363C7438CA2EE038)
O23 - Service: amdsata - Advanced Micro Devices - C:\WINDOWS\system32\drivers\amdsata.sys (MD5: 6EC6D772EAE38DC17C14AED9B178D24B)
O23 - Service: amdsbs - AMD Technologies Inc. - C:\WINDOWS\system32\drivers\amdsbs.sys (MD5: F67F933E79241ED32FF46A4F29B5120B)
O23 - Service: arc - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arc.sys (MD5: C484F8CEB1717C540242531DB7845C4E)
O23 - Service: arcsas - Adaptec, Inc. - C:\WINDOWS\system32\drivers\arcsas.sys (MD5: 019AF6924AEFE7839F61C830227FE79C)
O23 - Service: Broadcom NetXtreme II VBD (b06bdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\bxvbda.sys (MD5: 3E5B191307609F7514148C6832BB0842)
O23 - Service: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60a) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\b57nd60a.sys (MD5: B5ACE6968304A3900EEB1EBFD9622DF2)
O23 - Service: Brother USB Mass-Storage Lower Filter Driver (BrFiltLo) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltLo.sys (MD5: F09EEE9EDC320B5E1501F749FDE686C8)
O23 - Service: Brother USB Mass-Storage Upper Filter Driver (BrFiltUp) - Brother Industries, Ltd. - C:\WINDOWS\system32\drivers\BrFiltUp.sys (MD5: B114D3098E9BDB8BEA8B053685831BE6)
O23 - Service: Brother MFC Serial Port Interface Driver (WDM) (Brserid) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\Brserid.sys (MD5: 43BEA8D483BF1870F018E2D02E06A5BD)
O23 - Service: Brother WDM Serial driver (BrSerWdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrSerWdm.sys (MD5: A6ECA2151B08A09CACECA35C07F05B42)
O23 - Service: Brother MFC USB Fax Only Modem (BrUsbMdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbMdm.sys (MD5: B79968002C277E869CF38BD22CD61524)
O23 - Service: Brother MFC USB Serial WDM Driver (BrUsbSer) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbSer.sys (MD5: A87528880231C54E75EA7A44943B38BF)
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe (MD5: 0471D5669F18C50E552B2BC0CB15E7B3)
O23 - Service: cmdide - CMD Technology, Inc. - C:\WINDOWS\system32\drivers\cmdide.sys (MD5: E19D3F095812725D88F9001985B94EDD)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe (MD5: A8491F1E111725EA5CC4EF8DA5585918)
O23 - Service: cpuz138 - Unknown owner - C:\Users\Diego\AppData\Local\Temp\cpuz138\cpuz138_x64.sys (file missing)
O23 - Service: DroidCam Virtual Audio (DroidCam) - Dev47Apps - C:\WINDOWS\SYSTEM32\DRIVERS\droidcam.sys (MD5: 8078AC9954094E43E93E976AC6CB4BA4)
O23 - Service: DroidCam Source 3 (DroidCamVideo) - Dev47Apps - C:\WINDOWS\SYSTEM32\DRIVERS\droidcamvideo.sys (MD5: DEA6132C81EE004EECB4F23889D9295F)
O23 - Service: Broadcom NetXtreme II 10 GigE VBD (ebdrv) - Broadcom Corporation - C:\WINDOWS\system32\drivers\evbda.sys (MD5: DC5D737F51BE844D8C82C695EB17372F)
O23 - Service: elxstor - Emulex - C:\WINDOWS\system32\drivers\elxstor.sys (MD5: 0E5DA5369A0FCAEA12456DD852545184)
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (MD5: E1B44A75947137F4143308D566889837)
O23 - Service: Hauppauge Consumer Infrared Receiver (hcw85cir) - Hauppauge Computer Works, Inc. - C:\WINDOWS\system32\drivers\hcw85cir.sys (MD5: F2523EF6460FC42405B12248338AB2F0)
O23 - Service: HpSAMD - Hewlett-Packard Company - C:\WINDOWS\system32\drivers\HpSAMD.sys (MD5: 39D2ABCD392F3D8A6DCE7B60AE7B8EFC)
O23 - Service: iaStorV - Intel Corporation - C:\WINDOWS\system32\drivers\iaStorV.sys (MD5: 3DF4395A7CF8B7A72A5F4606366B8C2D)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (MD5: 83FF82FE209E7997067B375DAD6CF23D)
O23 - Service: igfx - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\igdkmd64.sys (MD5: 076023219E918D34585B231029A44571)
O23 - Service: iirsp - Intel Corp./ICP vortex GmbH - C:\WINDOWS\system32\drivers\iirsp.sys (MD5: 5C18831C61933628F5BB0EA2675B9D21)
O23 - Service: Service for Realtek HD Audio (WDM) (IntcAzAudAddService) - Realtek Semiconductor Corp. - C:\WINDOWS\SYSTEM32\drivers\RTKVHD64.sys (MD5: 01262E2BE97708F54666E700482027DE)
O23 - Service: Sonido Intel(R) para pantallas (IntcDAud) - Intel(R) Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\IntcDAud.sys (MD5: 8AEEE0F4D210B61F917CFEA9653973C4)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe (MD5: 7C9ED65324CF268ACBA8024257F782D8)
O23 - Service: Controlador del concentrador Intel(R) USB 3.0 (iusb3hub) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iusb3hub.sys (MD5: 7FA5B403137665EB244C701757DABC38)
O23 - Service: Controlador de la controladora de host Intel(R) USB 3.0 eXtensible (iusb3xhc) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\iusb3xhc.sys (MD5: D0C84B2D35D396694BF5C93CAE989E59)
O23 - Service: LSI_FC - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_fc.sys (MD5: 1A93E54EB0ECE102495A51266DCDB6A6)
O23 - Service: LSI_SAS - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas.sys (MD5: 1047184A9FDC8BDBFF857175875EE810)
O23 - Service: LSI_SAS2 - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_sas2.sys (MD5: 30F5C0DE1EE8B5BC9306C1F0E4A75F93)
O23 - Service: LSI_SCSI - LSI Corporation - C:\WINDOWS\system32\drivers\lsi_scsi.sys (MD5: 0504EACAFF0D3C8AED161C4B0D369D4A)
O23 - Service: megasas - LSI Corporation - C:\WINDOWS\system32\drivers\megasas.sys (MD5: A55805F747C6EDB6A9080D7C633BD0F4)
O23 - Service: MegaSR - LSI Corporation, Inc. - C:\WINDOWS\system32\drivers\MegaSR.sys (MD5: BAF74CE0072480C3B6B7C13B2A94D6B3)
O23 - Service: nfrd960 - IBM Corporation - C:\WINDOWS\system32\drivers\nfrd960.sys (MD5: 77889813BE4D166CDAB78DDBA990DA92)
O23 - Service: nvraid - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvraid.sys (MD5: 5D9FD91F3D38DC9DA01E3CB5FA89CD48)
O23 - Service: nvstor - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvstor.sys (MD5: F7CD50FE7139F07E77DA8AC8033D1832)
O23 - Service: ql2300 - QLogic Corporation - C:\WINDOWS\system32\drivers\ql2300.sys (MD5: A53A15A11EBFD21077463EE2C7AFEEF0)
O23 - Service: ql40xx - QLogic Corporation - C:\WINDOWS\system32\drivers\ql40xx.sys (MD5: 4F6D12B51DE1AAEFF7DC58C4D75423C8)
O23 - Service: Realtek 8167 NT Driver (RTL8167) - Realtek                                             - C:\WINDOWS\SYSTEM32\DRIVERS\Rt64win7.sys (MD5: D2D055E7ED70A5EE885D17D35DF97E80)
O23 - Service: SiSRaid2 - Silicon Integrated Systems Corp. - C:\WINDOWS\system32\drivers\SiSRaid2.sys (MD5: 843CAF1E5FDE1FFD5FF768F23A51E2E1)
O23 - Service: SiSRaid4 - Silicon Integrated Systems - C:\WINDOWS\system32\drivers\sisraid4.sys (MD5: 6A6C106D42E9FFFF8B9FCB4F754F6DA4)
O23 - Service: Symantec Real Time Storage Protection x64 (SRTSP) - Symantec Corporation - C:\WINDOWS\System32\Drivers\NGCx64\160C010.00F\SRTSP64.SYS (MD5: 3FF94366996E0C47563DE5BF56060049)
O23 - Service: stexstor - Promise Technology - C:\WINDOWS\system32\drivers\stexstor.sys (MD5: F3817967ED533D08327DC73BC4D5542A)
O23 - Service: SymEvent - Symantec Corporation - C:\Windows\system32\Drivers\SYMEVENT64x86.SYS (MD5: 3C5EE783F01CA2B5F0D3E19366F83134)
O23 - Service: Intel(R) Trusted Execution Engine Interface  (TXEIx64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\TXEIx64.sys (MD5: E624283C1A2F9BB4688A002914CC00A7)
O23 - Service: VGPU - Unknown owner - C:\WINDOWS\SYSTEM32\drivers\rdvgkmd.sys (file missing)
O23 - Service: viaide - VIA Technologies, Inc. - C:\WINDOWS\system32\drivers\viaide.sys (MD5: E5689D93FFE4E5D66C0178761240DD54)
O23 - Service: vsmraid - VIA Technologies Inc.,Ltd - C:\WINDOWS\system32\drivers\vsmraid.sys (MD5: 5E2016EA6EBACA03C04FEAC5F330D997)
O23 - Service: WO Mic Device (wovad_micarray) - Windows (R) Win 7 DDK provider - C:\WINDOWS\SYSTEM32\drivers\womic.sys (MD5: 5D552D191E5E64C413F5051CA84385AD)

Listado de Servicios (Deshabilitados):
--------------------------------------

 68 Servicios.
 10 de Carga Automatica.
 58 de Carga Manual.
  0 Deshabilitados.

Listado de Programas Instalados:
--------------------------------
Notepad++ (64-bit x64) -> D:\Notepad++\uninstall.exe
Scribus 1.4.6 (64bit) -> C:\Program Files\Scribus 1.4.6\uninst.exe
WinRAR 5.50 (64-bit) -> D:\Winrar\uninstall.exe
Wondershare Filmora(Build 8.4.0) -> "C:\Program Files (x86)\Wondershare\Wondershare Filmora (Spanish ES)\unins000.exe"
Intel(R) Trusted Execution Engine -> "C:\ProgramData\Intel\Package Cache\{176E2755-0A17-42C6-88E2-192AB2131278}\Setup.exe" -uninstall
Intel(R) Trusted Execution Engine -> MsiExec.exe /I{2D6248C0-4693-4CAB-9922-F05E4015F62A}
Intel(R) Trusted Execution Engine Driver -> MsiExec.exe /I{6307E820-0317-4DCE-AAE0-7B6CAD867055}
Epic Games Launcher Prerequisites (x64) -> MsiExec.exe /X{66C5838F-B854-4A55-89E6-A6138747A4DF}
Nitro Pro -> MsiExec.exe /X{7B07DF6A-CEED-458C-BDD0-AC98933C6799}
Zombie Night Terror -> "D:\Zombie Night Terror\unins000.exe"
Zula -> "D:\Zula\unins000.exe"
Adobe Creative Cloud -> "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe"
Adobe Flash Player 27 PPAPI -> C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_159_pepper.exe -maintain pepperplugin
Bandisoft MPEG-1 Decoder -> "C:\Program Files (x86)\BandiMPEG1\uninstall.exe"
Cheating-Death 4.33.4 -> D:\Cheating-Death\UninstCD.exe
Counter-Strike 1.6 -> D:\csgo\Uninstal.exe
Google Chrome -> "C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\Installer\setup.exe" --uninstall --system-level --verbose-logging
Adobe Illustrator CC 2018 -> "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HDCore\Uninstaller.exe" --uninstall=1 --sapCode=ILST --productVersion=22.0.1 --productPlatform=win64 --productAdobeCode={ILST-22.0.1-64-ADBEADBEADBEADBEADBEA} --productName="Illustrator CC" --mode=2
Action! -> "C:\Program Files (x86)\Mirillis\Action!\uninstall.exe"
Norton Security -> "C:\Program Files (x86)\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NGC\562C4DD5\22.12.1.15\InstStub.exe" /X /ARP
OBS Studio -> D:\OBS\obs-studio\uninstall.exe
Open Broadcaster Software -> C:\Program Files (x86)\OBS\uninstall.exe
Adobe Photoshop CC 2018 -> "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HDCore\Uninstaller.exe" --uninstall=1 --sapCode=PHSP --productVersion=19.0 --productPlatform=win64 --productAdobeCode={PHSP-19.0-64-ADBEADBEADBEADBEADBEADB} --productName="Photoshop CC" --mode=2
PokerStars -> "C:\Program Files (x86)\PokerStars\PokerStarsUninstall.exe" /u:PokerStars
Adobe Premiere Pro CC 2018 -> "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HDCore\Uninstaller.exe" --uninstall=1 --sapCode=PPRO --productVersion=12.0.0 --productPlatform=win64 --productAdobeCode={PPRO-12.0.0-64-ADBEADBEADBEADBEADBEA} --productName="Premiere Pro CC" --mode=2
S.I.Ap. -> C:\Windows\ST5UNST.EXE -n "d:\AFIPST5UNST.LOG"  
miSimplificación -> C:\Windows\ST5UNST.EXE -n "d:\AFIP\miSimplificaciónST5UNST.LOG"  
Tablas de Bienes para GFPBP v8.0 -> C:\Windows\ST5UNST.EXE -n "d:\AFIP\GPFBPST5UNST.LOG"  
I.V.A. -> C:\Windows\ST5UNST.EXE -n "d:\AFIP\IVAST5UNST.LOG"  
TeamSpeak 3 Client -> "D:\ts\uninstall.exe"
WO Mic Client -> "C:\Program Files (x86)\WOMic\uninstall.exe"
Minecraft -> MsiExec.exe /X{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}
Intel(R) USB 3.0 eXtensible Host Controller Driver -> C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Uninstall\setup.exe -uninstall
Java 8 Update 161 -> MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F32180161F0}
Skype™ 7.40 -> MsiExec.exe /X{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}
HL-1200 series -> "C:\Program Files (x86)\InstallShield Installation Information\{3D91358F-DE2D-46A2-AE8B-888C482B51C9}\Setup.exe"  -runfromtemp -l0x000a UNINSTALL Reg=DSLs-PRT -removeonly
HiJackThis -> MsiExec.exe /X{45A66726-69BC-466B-A7A4-12FCBA4883D7}
Wondershare Helper Compact 2.6.0 -> "C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\unins000.exe"
Photoshop Cs6 versión Final -> "D:\Photoshop Cs6\unins000.exe"
Google Update Helper -> MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
OpenOffice 4.1.2 -> MsiExec.exe /I{74BBCD30-EB17-4909-B59F-65E0DD2B7E95}
Nitro Pro -> "C:\ProgramData\Package Cache\{76ba0d04-d03a-4aca-9a16-3ae5ecd6f32f}\nitro_pro11.exe"  /uninstall
Realtek Ethernet Controller Driver -> C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.exe -runfromtemp -removeonly
Adobe Photoshop CS6 versión 13.0.1 -> "D:\Adobe Photoshop CS6\unins000.exe"
Backup and Sync from Google -> MsiExec.exe /X{AC62F3F2-61A2-4357-93EC-C308E3FEDF4E}
Adobe Refresh Manager -> MsiExec.exe /I{AC76BA86-0804-1033-1959-001824265200}
Adobe Acrobat DC -> MsiExec.exe /I{AC76BA86-1033-FFFF-7760-0C0F074E4100}
Adobe Acrobat Reader DC - Español -> MsiExec.exe /I{AC76BA86-7AD7-1034-7B44-AC0F074E4100}
Launcher Prerequisites (x64) -> "C:\ProgramData\Package Cache\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}\LauncherPrereqSetup_x64.exe"  /uninstall
Intel(R) Processor Graphics -> "C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe" -uninstall
Realtek High Definition Audio Driver -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe"  -removeonly
Rules of Survival version 1.134042.136949 -> "D:\ros\unins000.exe"
Discord -> C:\Users\Diego\AppData\Local\Discord\Update.exe --uninstall

Avatar de Usuario
msc hotline sat
Mensajes: 93500
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: SYN_SENT Y LAST_ACK EN NETSTAT

Mensaje por msc hotline sat » 16 Mar 2018, 17:58

Pues nos parece que el problema pueden darsela la multitud de extensiones que tiene instaladas, por lo que puede desactivarlas y ver si asi ya no tiene estos accesos remotos que indica.

No vemos otras causas conocidas al respecto, si bien los nombres de los ficheros instalados y/o residentes pueden no ser reales, y ocultarse un malware bajo un nombre falso.

Dinos si tras desactivar dichas extensiones y reiniciar, se han terminado los problemas, gracias.


saludos

ms, 15-3-2018

shewi232
Mensajes: 5
Registrado: 13 Mar 2018, 18:28

Re: SYN_SENT Y LAST_ACK EN NETSTAT

Mensaje por shewi232 » 16 Mar 2018, 19:28

Okey No me aparecen los SYN_SENT ni los LAST_ACK

Pero me suelen hacer DDOS Muy seguido, como puedo sacarme el DDOS?

Avatar de Usuario
msc hotline sat
Mensajes: 93500
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: SYN_SENT Y LAST_ACK EN NETSTAT

Mensaje por msc hotline sat » 17 Mar 2018, 06:46

Los DDoS son ataques remotos que deberias poder evitar con un cortafuegos, mejor de hardware, ya que los que te estan atacando parece que son profesionales (pero maliciosos), y están intentando acceder de nuevo a tu sistema, y quien persevera, logra ...

De momento mira de entrar lo menos posible en internet, para que no puedan ir probando.

Sobre todo no reinstales de momento las extensiones, pues parece que alguna ee ellas les permitía llegar a tu sistema.

Saludos

ms, 17-3-2018

shewi232
Mensajes: 5
Registrado: 13 Mar 2018, 18:28

Re: SYN_SENT Y LAST_ACK EN NETSTAT

Mensaje por shewi232 » 17 Mar 2018, 16:40

Muchisimas gracias!!! Gracias por la atencion,se agradece!

Avatar de Usuario
msc hotline sat
Mensajes: 93500
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: SYN_SENT Y LAST_ACK EN NETSTAT

Mensaje por msc hotline sat » 17 Mar 2018, 20:03

Ahora solo ver si con el cortafuegos por hardware queda resuelto totalmente el problema, no sea que se haya añadido algo mas mientras eras accesible remotamente, claro.

Si volvieras a detectar accesos remotos, comentanoslo, gracias

Con lo indicado damos por resuelto el problema y cerramos el Tema, pero si necesitas comentar algo mas al respecto, abre nuevo Tema con el mismo asunto, y seguiremos con conocimiento de causa

saludos
ms, 17-3-2018

Cerrado

Volver a “Foro HijackThis - copia y pega tu log”