Foro de InfoSpyware

Uso de CPU y Ventilador Interno

escocesar — Wed, 16 May 2012 23:21:51 GMT

Hola,

Tengo una computadora Gateway Intel Core i3, 3.10 GHZ, 4GB Ram y 63 Bits.

Mi computadora es relativamente nueva, solo tiene algunos meses de comprarla pero mi pregunta es, por que despues de un rato empieza a tener ruidos extra�os aparentemente de un ventilador dentro de la maquina.

Hay alguna forma de saber que pasa o por que eso ?

Nota: Tambien aveces mi uso de CPU llega a 60-70% y no se si sea por las ventanas abiertas.

Por favor ayuda, cambie de procesador y ahora mi PC se apaga tras pocos segundos.

rogerfor — Wed, 16 May 2012 23:05:15 GMT

Buenas tardes, tengo una PC con Mother Board BioStar (http://www.biostar.com.tw/app/en/mb/introduction.php?S_ID=314&tab=6) y un procesador Celeron 430 de 1.8Ghz la cosa es que un amigo me regalo un procesador Intel Celeron D 2.66Ghz y si pueden apreciar en la pagina del fabricante de mi MB el que tengo es el ultimo y el que me regalaron esta 3 escalones mas arriba, y asumo que si lo soporta por que esta ah� pero cuando lo pongo se supone que si lo reconoce en la bios pero se apaga tras pocos segundos de estar encendida pero si vuelvo a poner el otro procesador todo funciona normalmente, espero puedan ayudarme a saber por que es si es por que necesita mas enfriamiento o cosas as� para ver que le hago, les agradecer� mucho su ayuda.

No conecta a Internet

princesmane — Wed, 16 May 2012 23:04:44 GMT

Hola!!! nuevamente molestando con una consulta... hace unos meses tuve problemas con la actualizacion del nod32 ya que se habia desactualizado y se habia activado otro antivirus tambien, cuestion que no podia hacer nada en la pc... gracias a ustedes pude hacerla funcionar nuevamente tuve que instalar el iexplore.exe y algunas cosas mas que no recuerdo, pero se soluciono, o al menos es lo que yo creia porque si bien se activo nuevamente la pc y puedo utilizar todos los programas no se que paso pero no hay forma de que me pueda conectar a internet, me diced que me ponga en contacto con el administrador de red, pero internet si funciona porque en otra pc funciona con wi fi... agradeceria que me ayuden!!!! estoy preocupadaaaaa... no puedo terminar de arreglar mi pc... GRACIAS!!!!!!!!

No puedo abrir .exe en modo "normal"

mercu_13 — Wed, 16 May 2012 23:03:27 GMT

Hola, como andan?
Posteo ac� ya que me pasa algo y no se como solucionarlo.
Resulta que me descargue un instalador que pesa mas de 1gb.
Al intentar abrirlo se me traba la carpeta y tengo que cerrar el proceso explorer.exe y despu�s volver a abrirlo.

Despu�s, al ver que no hab�a caso, inicia en modo seguro y ah� si los pod�a abrir al instante. Entonces lo que hice fue volver a iniciar en modo seguro, pasar el Malwarebytes Anti-Malware , borre las infecciones y pase el CCleaner.
Reinicie y sigue igual.

Iba a poner el registro que me tiro el Malwarebytes Anti-Malware pero ni idea donde se guarda.

Saludos y gracias!

La PC se congela sin mas.

spyguru — Wed, 16 May 2012 22:22:30 GMT

Hola..
Me gustaria que me ayudaran a saber el por que de este asunto.
Se congela la pantalla, se acelera mi procesador y el teclado no responde, ni el cursor, el disco duro deja de funcionar y solo tengo que reiniciar.

Mis espec:
AMD phenom II x6 1055t @3.5 GHZ con cooler de stock
8 GB de RAM a 1600 mhz
HDD 320 gb WD caviar blue
Tarjeta de video XFX HD6870
Fuente Cooler Master 500 w

Pues me pasa mas seguido cuando trato de descomprimir archivos grandes..
Y cuando uso AVIRA para escanear..
Aveces de la nada..
::Help::

Ayuda windows xp se reinicia solo

ciberalexis — Wed, 16 May 2012 22:22:10 GMT

Hola quisiera que me ayudaran a arreglar mi computadora porfavor tengo windows xp y siempre que prendo la computadora aparece windows cargando y despues un pantallazo azul que dura como 2 segundos y despues me sale una pantalla que dice iniciar windows de un modo seguro, pero no inicia hasta despues de varios intentos y despues cuando esta en el escritorio me sale una opcion donde dice que windows se ha recuperado de un error grave. he visto que tal vez se solucione reinstalandolo con el disco original de windows pero no lo tengo y la verdad no quiero gastar en un cibercafe para arreglar el problema:Eh::Eh::Eh::Eh::Eh:

por favor tienen que ayudarme tengo miedo que windows ya no inicie y otra pregunta es como hacer una copia de seguridad si es que tengo que reiniciar windows

Troyano de la SGAE

Marsixx — Wed, 16 May 2012 22:17:52 GMT

Cita:

Originalmente publicado por Iceman20 (Mensaje 1985123)

Hola buenas tengo un pc de un cliente con el Virus xD

Creo que ejecuta el proceso llamado
FSnapshot_x86.exe
Bueno ma�ana ya me rompo la cabeza, que ya es la hora de cerrar la tienda Saludos.::pensar::

::Help:: Hola, tengo �ste virus que ayer se metio en mi ordenador, trate de iniciarlo en la forma "modo seguro" pero no hay caso siempre aparece la pagina de SGAE, si alguien tiene la solucion por favor que la explique de forma detallada ya que no controlo demasiado del tema, desde ya muchas gracias.

Re: Eliminar Virus de la Polic�a (Ransomware)

Caraca_ScZ — Wed, 16 May 2012 22:16:16 GMT

Buenas, tengo el mismo problema en el hd externo de un compa�ero.

El virus ha conseguido penetrar en un hd externo donde guardaba mucha musica en mp3 y le ha encriptado casi todos los ficheros.

Por lo que comentais, el programa necesita al menos un archivo original para poder conseguir la clave de encriptacion y desencriptar dicho archivo.

Mi pregunta es, �una vez facilitado un archivo original, ya te desencripta todos los ficheros encriptados?

P.D.: tengo una nueva imagen del virus de la policia que no esta en vuestro album del facebook, �donde os la subo o mando?

Gracias de antemano por vuestra ayuda.

Saludos

Problema con booteo Compaq

ReedComputers — Wed, 16 May 2012 22:10:38 GMT

Hola queria ver si me podian ayudar con un problema raro en mi compaq CQ10-1020la, resulta que hace un tiempo la netbook prendia hasta la parte q muestra la Q grande con las opciones de sellecionar el dispositivo de booteo o si quiero entrr a la configuracon de la BIOS y antes directamente no me entraba ni a la BIOS, actualmente le cambie la pila y puedo ingresar a la BIOS pero una vez q guardo los cambios y en el momento q deberia sellecionar el dispositivo de booteo (ya sea el disco o la lectora externa) se queda la pantalla negra con una rayita horizontal blanca q parpadea y no avanza mas de eso...
Quiesiera saber si a alquien le a pasado algo parecido y como lo podria solucionar. Muchas Gracias

Ayuda con virus SGAE

Mirove — Wed, 16 May 2012 22:08:13 GMT

Hola.
Mi portatil se ha infectado con el virus de la SGAE. No entiendo demasiado de ordenadores, pero he leido un poco por ahi, he ejecutado el OTL y esto es lo que me sale:

-------------------------------------------------------------------------------------------------------

OTL logfile created on: 16/05/2012 23:46:38 - Run 1
OTL by OldTimer - Version 3.2.43.0 Folder = D:\
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000c0a | Country: Espa�a | Language: ESN | Date Format: dd/MM/yyyy

3,90 Gb Total Physical Memory | 3,42 Gb Available Physical Memory | 87,62% Memory free
7,80 Gb Paging File | 7,32 Gb Available in Paging File | 93,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 280,79 Gb Total Space | 46,66 Gb Free Space | 16,62% Space Free | Partition Type: NTFS
Drive D: | 14,90 Gb Total Space | 1,19 Gb Free Space | 7,97% Space Free | Partition Type: FAT32
Drive F: | 1,99 Gb Total Space | 1,98 Gb Free Space | 99,77% Space Free | Partition Type: FAT32

Computer Name: ROSA-HP | User Name: Rosa | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/05/16 23:30:22 | 000,595,456 | ---- | M] (OldTimer Tools) -- D:\OTL.exe

========== Modules (No Company Name) ==========

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2012/03/07 02:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2011/03/28 03:18:53 | 001,028,096 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2010/06/29 20:52:12 | 004,181,256 | ---- | M] (Motorola, Inc.) [On_Demand | Stopped] -- C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe -- (Bluetooth Device Manager)
SRV:64bit: - [2010/05/20 22:28:14 | 000,677,128 | ---- | M] (Motorola, Inc.) [Auto | Stopped] -- C:\Program Files\Motorola\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV:64bit: - [2010/05/20 22:28:12 | 001,096,968 | ---- | M] (Motorola, Inc.) [On_Demand | Stopped] -- C:\Program Files\Motorola\Bluetooth\audiosrv.exe -- (Bluetooth Media Service)
SRV:64bit: - [2010/01/29 06:15:24 | 000,244,736 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\st wrt64.inf_amd64_neutral_21dba265e7e67cda\stacsv64. exe -- (STacSV)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV:64bit: - [2009/03/03 12:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\st wrt64.inf_amd64_neutral_21dba265e7e67cda\AESTSr64. exe -- (AESTFilters)
SRV - [2012/05/04 02:43:44 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/03/28 03:18:52 | 000,647,680 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/03/04 06:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R)
SRV - [2010/01/29 06:15:24 | 000,244,736 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\windows\System32\DriverStore\FileRepository\stw rt64.inf_amd64_neutral_21dba265e7e67cda\STacSV64.e xe -- (STacSV)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/03/03 12:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Stopped] -- C:\windows\System32\DriverStore\FileRepository\stw rt64.inf_amd64_neutral_21dba265e7e67cda\AESTSr64.e xe -- (AESTFilters)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/03/07 02:04:06 | 000,819,032 | ---- | M] (AVAST Software) [File_System | System | Stopped] -- C:\windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012/03/07 02:04:04 | 000,337,240 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012/03/07 02:02:20 | 000,053,080 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012/03/07 02:01:57 | 000,059,224 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012/03/07 02:01:52 | 000,069,976 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012/03/07 02:01:32 | 000,024,408 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/02/24 11:14:42 | 000,203,320 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.)
DRV:64bit: - [2012/02/24 11:14:42 | 000,099,384 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.)
DRV:64bit: - [2011/06/02 07:47:22 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:64bit: - [2011/06/02 07:47:22 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV:64bit: - [2011/06/02 07:47:22 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV:64bit: - [2010/07/09 00:45:22 | 003,232,768 | ---- | M] (Motorola, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btmusb.sys -- (BTMUSB)
DRV:64bit: - [2010/06/29 18:01:38 | 000,931,168 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr28x.sys -- (netr28x)
DRV:64bit: - [2010/06/04 02:18:56 | 001,379,376 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/05/21 04:06:38 | 000,096,384 | ---- | M] (Realtek Semiconductor Corp.) [2 MP Fixed] [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rtsuvc.sys -- (rtsuvc)
DRV:64bit: - [2010/05/12 10:37:32 | 000,107,912 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/05/12 10:37:32 | 000,027,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/05/04 00:44:02 | 000,331,880 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010/04/10 01:53:04 | 000,052,736 | ---- | M] (Motorola, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btmcom.sys -- (BTMCOM)
DRV:64bit: - [2010/03/19 13:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/03/15 05:45:26 | 000,145,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel(R)
DRV:64bit: - [2010/03/04 05:51:40 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/02/16 22:24:20 | 000,025,912 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV:64bit: - [2010/01/29 06:15:24 | 000,505,856 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2010/01/25 15:51:02 | 007,842,272 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 01:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/07/14 01:21:48 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2009/06/10 23:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCOM/14
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPCOM/14
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE:64bit: - HKLM\..\SearchScopes\{86E05349-2C39-4464-8A26-DB23162599A4}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=I E-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=341&systemid=406&sr=0&q={searchTe rms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCOM/14
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPCOM/14
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKLM\..\SearchScopes\{86E05349-2C39-4464-8A26-DB23162599A4}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=I E-SearchBox
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=341&systemid=406&sr=0&q={searchTe rms}

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVer sion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Inter net Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCOM/14
IE - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.es/
IE - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\..\SearchScopes,DefaultScope = {A0F630BA-0073-48AC-B640-ED1B9955D104}
IE - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=341&systemid=406&sr=0&q={searchTe rms}
IE - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\..\SearchScopes\{A0F630BA-0073-48AC-B640-ED1B9955D104}: "URL" = http://start.funmoods.com/results.php?f=4&a=bf4&q={searchTerms}
IE - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\..\SearchScopes\{D4C69A5E-7CD7-403B-8E8E-CD95C26BCB65}: "URL" = http://www.google.es/search?q={searchTerms}&rls=com.microsoft:{language }&ie={inputEncoding}&oe={outputEncoding}&startInde x={startIndex?}&startPage={startPage}
IE - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search"
FF - prefs.js..browser.search.order.1: "Search Results"
FF - prefs.js..browser.startup.homepage: "http://www.searchnu.com/406"
FF - prefs.js..keyword.URL: "http://dts.search-results.com/sr?src=ffb&appid=341&systemid=406&sr=0&q="
FF - prefs.js..network.proxy.type: 0

FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Rosa\AppData\Local\Facebook\Video\Skype\n pFacebookVideoCalling.dll (Skype Limited)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extens ions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012/03/21 16:18:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extens ions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/05/14 00:22:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/05/04 02:43:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/05/14 00:22:24 | 000,000,000 | ---D | M]

[2012/03/27 06:00:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rosa\AppData\Roaming\mozilla\Extensions
[2012/05/02 15:54:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rosa\AppData\Roaming\mozilla\Firefox\Prof iles\s5ofxj81.default\extensions
[2012/03/27 06:00:51 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Users\Rosa\AppData\Roaming\mozilla\Firefox\Prof iles\s5ofxj81.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
[2012/03/28 19:44:33 | 000,000,000 | ---D | M] (Funmoods.com) -- C:\Users\Rosa\AppData\Roaming\mozilla\Firefox\Prof iles\s5ofxj81.default\extensions\ffxtlbr@funmoods. com
[2012/03/28 19:44:33 | 000,000,000 | ---D | M] (CodecC) -- C:\Users\Rosa\AppData\Roaming\mozilla\Firefox\Prof iles\s5ofxj81.default\extensions\info@allpremiumpl ay.info
[2012/03/27 06:06:19 | 000,001,797 | ---- | M] () -- C:\Users\Rosa\AppData\Roaming\Mozilla\Firefox\Prof iles\s5ofxj81.default\searchplugins\funmoods.xml
[2012/03/27 06:00:44 | 000,002,519 | ---- | M] () -- C:\Users\Rosa\AppData\Roaming\Mozilla\Firefox\Prof iles\s5ofxj81.default\searchplugins\Search_Results .xml
[2012/03/27 06:00:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012/05/04 02:43:44 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/03/02 02:40:54 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/03/02 02:40:54 | 000,007,072 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\diec2.xml
[2012/03/02 02:40:54 | 000,001,060 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\huubs.xml
[2012/03/02 02:40:54 | 000,001,057 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\llibres.xml
[2012/03/27 06:00:44 | 000,002,519 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml
[2012/03/02 02:40:54 | 000,001,162 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-ca.xml

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (DataMngr) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\Datamngr\x64\BROWSE~1.DLL (Bandoo Media, inc)
O2 - BHO: (DivX Plus Web Player HTML5 ) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Funmoods Helper Object) - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\Program Files (x86)\Funmoods\funmoods\1.5.12.2\bh\funmoods.dll (Funmoods BHO)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx. dll ()
O2 - BHO: (DataMngr) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\Datamngr\BROWSE~1.DLL (Bandoo Media, inc)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (CodecC Class) - {C2DDED92-74EC-4032-961A-EB23B25BF542} - C:\ProgramData\CodecC\bhoclass.dll (Injector)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx. dll ()
O3 - HKLM\..\Toolbar: (Funmoods Toolbar) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\Program Files (x86)\Funmoods\funmoods\1.5.12.2\funmoodsTlbr.dll (Funmoods)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files\Motorola\Bluetooth\btmshell.dll (Motorola, Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DATAMNGR] C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE (Bandoo Media, inc)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000..\Run: [bAJSbCvnhbErK13] C:\Users\Rosa\AppData\Roaming\WINSnapshot_x86.exe ()
O4 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000..\Run: [Facebook Update] C:\Users\Rosa\AppData\Local\Facebook\Update\Facebo okUpdate.exe (Facebook Inc.)
O4 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe (Samsung)
O4 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDL R.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer: NoDesktop = 1
O7 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: DisableTaskMgr = 1
O7 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: DisableRegistryTools = 1
O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O9:64bit: - Extra Button: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm ()
O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm ()
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (DivXBrowserPlugin Object)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfac es\{53B9A158-C509-4F6F-AB4F-5BA65E3397A2}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfac es\{FE0632A1-F6E2-40B0-B2D0-9C4243A37B07}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DL L (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DL L (Microsoft Corporation)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll) - C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll (Bandoo Media, inc)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll) - C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll (Bandoo Media, inc)
O20 - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\datamngr.dll) - C:\PROGRA~2\SEARCH~1\Datamngr\datamngr.dll (Bandoo Media, inc)
O20 - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\IEBHO.dll) - C:\PROGRA~2\SEARCH~1\Datamngr\IEBHO.dll (Bandoo Media, inc)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysNative\SystemPropertiesPerformance.e xe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000 Winlogon: Shell - (C:\Users\Rosa\AppData\Roaming\WINSnapshot_x86.exe ) - C:\Users\Rosa\AppData\Roaming\WINSnapshot_x86.exe ()
O20 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000 Winlogon: UserInit - (C:\Users\Rosa\AppData\Roaming\WINSnapshot_x86.exe ) - C:\Users\Rosa\AppData\Roaming\WINSnapshot_x86.exe ()
O20 - HKU\S-1-5-21-1285894154-3819945735-4291217377-1000 Winlogon: UserInit - (C:\WINDOWS\System32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O31 - SafeBoot: UseAlternatShell - 1
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{52308f7b-0b8a-11e1-b79e-78e3b549b90a}\Shell - "" = AutoRun
O33 - MountPoints2\{52308f7b-0b8a-11e1-b79e-78e3b549b90a}\Shell\AutoRun\command - "" = D:\LaunchU3.exe -a
O33 - MountPoints2\{bdcba226-fb74-11e0-b1d0-78e3b549b90a}\Shell - "" = AutoRun
O33 - MountPoints2\{bdcba226-fb74-11e0-b1d0-78e3b549b90a}\Shell\AutoRun\command - "" = H:\setup.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/05/15 21:46:30 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{EAAB6DFE-1FEC-46B4-BFD8-17064CB49089}
[2012/05/15 21:46:10 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{9735F48C-9FB6-4616-8806-76F79C4178D8}
[2012/05/14 00:23:54 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\DDMSettings
[2012/05/14 00:21:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2012/05/14 00:20:50 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2012/05/14 00:20:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DivX Shared
[2012/05/14 00:18:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DivX
[2012/05/14 00:18:02 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2012/05/13 21:05:02 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{F287DE56-71E8-458F-9A47-5453867FD8A6}
[2012/05/13 21:04:32 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{09E05761-1911-4940-9CBD-3165CB71C23C}
[2012/05/12 13:39:14 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{FA7FA9D8-ED4C-42DA-8D5C-A2DB0F9B135E}
[2012/05/12 13:39:00 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{CD1652CB-FEE1-44C1-978F-D525015F50E2}
[2012/05/11 14:46:25 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{A9E2C447-8265-4207-81AC-DFE3E00F41A2}
[2012/05/11 14:46:15 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{428B3AD8-2751-49F3-B72F-25D6A48EE375}
[2012/05/10 11:16:15 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{DF407D64-3DA8-4751-971B-D64DD45962D7}
[2012/05/10 11:16:03 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{F17F48D9-E91A-4A91-AD59-DA3C79E4BFB5}
[2012/05/09 23:39:10 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{284C09AB-AA38-4A01-8DE5-20EF7FAB5F9E}
[2012/05/09 17:17:58 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{C70233E2-8E34-443D-96DA-C5B64558DBA8}
[2012/05/09 17:17:35 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{6DDDEC90-7487-40A4-B048-12BD65B81E60}
[2012/05/08 15:47:13 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{2AA75F15-236D-4542-90A0-DEFF93600EAD}
[2012/05/08 15:46:49 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{2779F7D9-703D-45DD-B04D-216BA1713823}
[2012/05/08 11:50:25 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{ED6C30CC-0CFC-4D97-B4D8-BF51BB9C616F}
[2012/05/07 17:32:17 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{E5853FE0-CBF0-489F-8C76-0FC47DB7BF65}
[2012/05/07 17:32:06 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{D7A4A5C1-D59D-4C20-B954-9FFF587D63A5}
[2012/05/07 06:52:58 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{798E66DA-9439-48EF-A4CB-0E108F1064DA}
[2012/05/07 06:52:36 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{070547DA-9B89-419D-BCA1-D3575DF01908}
[2012/05/07 02:14:25 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{44507A1C-74DE-4261-83D1-53A2D6E8C04E}
[2012/05/07 02:14:10 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{BFBB072C-FEE7-4492-96FB-144E292ECB69}
[2012/05/06 17:09:43 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{49A01132-4766-4969-B54E-F8743B48CE3C}
[2012/05/06 17:09:29 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{1886994B-15BE-4BCC-A7B1-8C1510FACC5F}
[2012/05/06 04:38:29 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{BCFF0821-88D1-4857-8CAE-9BA69D9779DF}
[2012/05/06 04:38:05 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{9600237B-5C88-481B-8A34-8EB4D3CC77DD}
[2012/05/04 13:31:35 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{3889641A-DC6F-4A3D-923C-63DC6BFFF772}
[2012/05/04 13:31:00 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{14FE29FF-94A8-4F9F-9A4A-26D5853EF7EA}
[2012/05/04 02:43:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/05/04 02:43:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012/05/03 18:43:10 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{8EECADC6-851D-4C9E-8B72-BE1879F8256C}
[2012/05/03 18:42:53 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{8BB5E518-5A1A-4401-8C51-18D4686CCB70}
[2012/05/03 14:14:08 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{717EB360-8D99-4782-80BE-1E8CEFD6ACEA}
[2012/05/03 14:13:45 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{4AB8FD8A-846C-4387-9161-B7932DB4A3B6}
[2012/05/02 13:42:36 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{51A9D6B0-FCED-4913-A8F8-8B3C7610349B}
[2012/05/02 13:42:13 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{1FE9FB4B-ED60-4A54-B365-5E0FCACA5DAF}
[2012/05/01 15:51:03 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{5D8C1B84-542A-48CF-A3EE-265646807960}
[2012/05/01 15:50:40 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{1D252C58-CB05-451B-A1B1-D3865292AB04}
[2012/05/01 05:30:43 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{CFF38796-4134-40B4-B16D-8CCF106B5A75}
[2012/05/01 05:30:11 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{A59E41CF-9E10-4E2C-B662-618EFDB9D9F5}
[2012/04/30 12:50:33 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{D4F387C1-B5A5-4279-97DD-3826A8A71F64}
[2012/04/30 12:50:15 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{29FECA41-8B46-4621-964B-5239867A0583}
[2012/04/29 20:51:39 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{76047538-7812-4593-9A54-E7BA9B725574}
[2012/04/29 20:51:26 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{E4FC5BBB-32E5-4BDF-8D1E-0434C9DC5529}
[2012/04/29 19:59:13 | 000,000,000 | ---D | C] -- C:\Users\Rosa\Desktop\Hoy he ido con mi motoOOO
[2012/04/29 19:49:26 | 000,000,000 | ---D | C] -- C:\Temp
[2012/04/29 19:48:58 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\Samsung
[2012/04/29 19:48:40 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Roaming\Samsung
[2012/04/29 19:48:38 | 000,000,000 | ---D | C] -- C:\Users\Rosa\Documents\samsung
[2012/04/29 19:46:16 | 000,203,320 | ---- | C] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\windows\SysNative\drivers\ssudmdm.sys
[2012/04/29 19:46:16 | 000,099,384 | ---- | C] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\windows\SysNative\drivers\ssudbus.sys
[2012/04/29 19:45:23 | 000,177,640 | ---- | C] (MCCI Corporation) -- C:\windows\SysNative\drivers\ssadmdm.sys
[2012/04/29 19:45:23 | 000,013,800 | ---- | C] (MCCI Corporation) -- C:\windows\SysNative\drivers\ssadwhnt.sys
[2012/04/29 19:45:23 | 000,013,800 | ---- | C] (MCCI Corporation) -- C:\windows\SysNative\drivers\ssadwh.sys
[2012/04/29 19:45:22 | 000,157,672 | ---- | C] (MCCI Corporation) -- C:\windows\SysNative\drivers\ssadbus.sys
[2012/04/29 19:45:22 | 000,016,872 | ---- | C] (MCCI Corporation) -- C:\windows\SysNative\drivers\ssadmdfl.sys
[2012/04/29 19:45:22 | 000,013,288 | ---- | C] (MCCI Corporation) -- C:\windows\SysNative\drivers\ssadcmnt.sys
[2012/04/29 19:45:22 | 000,013,288 | ---- | C] (MCCI Corporation) -- C:\windows\SysNative\drivers\ssadcm.sys
[2012/04/29 19:43:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2012/04/29 19:43:33 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\windows\SysWow64\Redemption.dll
[2012/04/29 19:43:08 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\windows\SysWow64\dgderapi.dll
[2012/04/29 19:43:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MarkAny
[2012/04/29 19:41:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2012/04/29 19:41:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung
[2012/04/29 19:39:57 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\Downloaded Installations
[2012/04/29 12:20:39 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\Facebook
[2012/04/29 11:31:06 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{5817773E-B3E9-49A2-8AF8-B91E17871F13}
[2012/04/29 11:30:53 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{2A258A67-DE04-4E4B-84CE-B0418B50B925}
[2012/04/28 15:28:13 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{F806F5C5-4741-4162-9B80-463819C864C5}
[2012/04/28 15:28:02 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{57AA7176-E4E1-4867-A29E-AA691C4BD443}
[2012/04/28 12:25:43 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{44E16D54-7ACA-4989-9908-8881C4B7D85D}
[2012/04/28 12:25:29 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{D8A6BD8B-E074-4AEA-B1EA-EAFD0002D605}
[2012/04/28 01:49:50 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{B781E84C-9C50-488A-B877-DF5966228640}
[2012/04/28 01:49:31 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{2DF8D433-C3A2-4CA3-B19A-745A57BB7DC8}
[2012/04/27 13:10:31 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{FB5FED0F-DB89-43AE-B026-E2F69C6F9028}
[2012/04/27 13:10:17 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{027A71D0-3FC6-4592-BF9C-EABF956E3EBF}
[2012/04/27 05:07:59 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{8F4A1A44-8742-4694-964C-4214579592B3}
[2012/04/27 05:07:47 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{0E6AC75C-4E9E-4978-A5D8-EF57E3D31570}
[2012/04/27 02:00:36 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{CAAB4EFD-DAC9-4819-BD6C-DB42410CDE5C}
[2012/04/27 02:00:23 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{E2A5C738-9D40-48B6-85AA-9691FEA7CFCA}
[2012/04/26 21:15:19 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{0A0FB70A-FB7D-4849-BC68-826224072732}
[2012/04/26 21:15:06 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{4FD400F9-4F8C-4DBE-8FD2-293A838E09F6}
[2012/04/26 14:04:26 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{C4DD794B-732A-47DC-B24C-C355402669A6}
[2012/04/26 14:04:14 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{4EBE4039-6CB8-4794-83CA-5A3AD70893A2}
[2012/04/26 02:25:18 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{A1799DB7-DF45-42B7-860A-CDB6EA753E9A}
[2012/04/26 02:25:06 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{7D4868A5-CE33-4FC6-9D09-405F2B71A377}
[2012/04/25 21:37:06 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{5ADA4740-1550-4D24-8032-76B2AAA4EABD}
[2012/04/25 21:36:54 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{7B42EB84-16D6-4E7A-868B-0FDDCF60773E}
[2012/04/25 13:37:28 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{042E3103-06B3-4E82-A313-4CECA66BD1E6}
[2012/04/25 13:37:16 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{D05791F9-7076-4126-94E3-AC444EE084CF}
[2012/04/25 01:43:42 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{AC537E63-29F5-454F-984F-C986491BFE94}
[2012/04/25 01:43:29 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{C93E8F6D-DD59-46BC-BBD8-1624361749C2}
[2012/04/24 20:37:26 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{C31A02D2-1670-4D3A-B5E2-50C8C242829F}
[2012/04/24 20:37:01 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{9351743C-2C1C-43DC-9FAC-2D3F26E92ADB}
[2012/04/24 16:40:52 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{750C8E33-0893-49B4-8A14-85F775A69A6F}
[2012/04/24 16:40:25 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{D86E655B-C728-482E-9B8B-04EE369E8117}
[2012/04/23 20:12:42 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{F301C16C-E932-4A16-9D4C-FE7A984F301C}
[2012/04/23 20:12:16 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{E08942DD-48EE-4D50-821D-8CF73987FCB8}
[2012/04/23 00:57:09 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{380F39E4-0D2B-44C6-AB6F-345199D8DD90}
[2012/04/23 00:56:54 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{8BF6BFC9-1158-41C2-A922-4BB9A0291AF3}
[2012/04/22 19:35:29 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{016022A5-6320-417E-9DB7-4A63B8CF7198}
[2012/04/22 19:35:05 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{FB8E5119-7972-46E1-8A59-2B4D3B119EF9}
[2012/04/22 17:28:37 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{14275631-D5F1-46C1-B5B8-EEB0D8381F43}
[2012/04/22 17:28:25 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{9D7F940E-E047-4242-969F-0D2033569BF6}
[2012/04/22 05:23:04 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{7E819869-5573-42EC-B947-5ACBC81A4BC6}
[2012/04/22 05:22:50 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{EC0DBFBE-A7D3-477D-B9E4-41CE46BE50A8}
[2012/04/21 13:50:35 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{A3591189-95DC-469E-AB09-785577C6880F}
[2012/04/21 13:50:21 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{CB110C22-74B3-4F78-A34C-386708BA3B4B}
[2012/04/21 02:10:02 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{DE7014A1-6D6F-4720-B3D1-261414365776}
[2012/04/21 02:09:49 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{ACDD52CE-6008-4122-82E5-CC2464453BAE}
[2012/04/20 15:02:28 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{12C1A219-8125-44A0-90E0-A2AC867CD0A4}
[2012/04/20 15:02:16 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{DB05AF37-4A4E-4864-8D95-FBF9621BEEC7}
[2012/04/20 05:26:26 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{7C2C21E1-F77D-4A68-8D58-2D5FF531239A}
[2012/04/20 05:26:02 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{ED5428B4-25E7-49F2-B1FA-5CC04AAAE985}
[2012/04/19 15:58:04 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{1ECB76EA-2B94-49FD-852F-7CABC614ADC3}
[2012/04/19 15:57:47 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{327D2756-B67A-45EC-BF37-79B8C107A2A4}
[2012/04/18 16:59:51 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{6BA5CE4D-67A6-444F-9580-D38D8FCC7C31}
[2012/04/18 16:59:39 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{582468CC-7A19-40F4-9DF9-D64254904B58}
[2012/04/17 08:52:34 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{6BDEED0B-5984-49AC-B023-3EF18B76D24D}
[2012/04/17 08:52:22 | 000,000,000 | ---D | C] -- C:\Users\Rosa\AppData\Local\{EC104039-CD68-4E81-AD86-2804D26EB8D8}

========== Files - Modified Within 30 Days ==========

[2012/05/16 23:42:42 | 002,457,678 | ---- | M] () -- C:\windows\SysNative\perfh00A.dat
[2012/05/16 23:42:42 | 001,134,548 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2012/05/16 23:42:42 | 000,727,494 | ---- | M] () -- C:\windows\SysNative\perfc00A.dat
[2012/05/16 23:42:42 | 000,608,078 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2012/05/16 23:42:42 | 000,004,568 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2012/05/16 23:40:30 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012/05/16 23:40:22 | 4190,388,224 | -HS- | M] () -- C:\hiberfil.sys
[2012/05/16 01:55:57 | 000,273,920 | ---- | M] () -- C:\Users\Rosa\AppData\Roaming\WINSnapshot_x86.exe
[2012/05/16 00:25:02 | 000,000,924 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1285894154-3819945735-4291217377-1000UA.job
[2012/05/15 21:52:55 | 000,019,536 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/15 21:52:55 | 000,019,536 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/15 12:25:00 | 000,000,902 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1285894154-3819945735-4291217377-1000Core.job
[2012/05/14 20:28:19 | 313,399,628 | ---- | M] () -- C:\Users\Rosa\Desktop\Game of Thrones 2x07 A Man Without Honor.avi
[2012/05/14 19:49:49 | 286,228,480 | ---- | M] () -- C:\Users\Rosa\Desktop\GameofThrones2x07AManWithout Honor.avi
[2012/05/14 17:53:28 | 707,792,896 | ---- | M] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x07.HDTV.Xv iD-break.MP3.avi
[2012/05/14 00:22:33 | 000,002,120 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2012/05/14 00:22:33 | 000,001,611 | ---- | M] () -- C:\Users\Rosa\Desktop\DivX Movies.lnk
[2012/05/14 00:21:59 | 000,001,116 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2012/05/12 06:14:51 | 708,462,592 | ---- | M] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x06.HDTV.Xv iD-break.MP3.avi
[2012/05/11 22:04:51 | 713,138,176 | ---- | M] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x05.HDTV.Xv iD-break.MP3.avi
[2012/05/11 20:29:48 | 733,032,448 | ---- | M] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x04.HDTV.Xv iD-break.MP3.avi
[2012/05/11 19:00:20 | 731,269,120 | ---- | M] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x03.HDTV.Xv iD-break.MP3.avi
[2012/05/11 06:10:16 | 734,881,792 | ---- | M] () -- C:\Users\Rosa\Desktop\Generation Kill 1x02.avi
[2012/05/09 01:08:05 | 733,607,936 | ---- | M] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x01.HDTV.Xv iD-break.MP3.avi

========== Files Created - No Company Name ==========

[2012/05/16 01:56:02 | 000,273,920 | ---- | C] () -- C:\Users\Rosa\AppData\Roaming\WINSnapshot_x86.exe
[2012/05/14 19:53:49 | 313,399,628 | ---- | C] () -- C:\Users\Rosa\Desktop\Game of Thrones 2x07 A Man Without Honor.avi
[2012/05/14 18:46:58 | 286,228,480 | ---- | C] () -- C:\Users\Rosa\Desktop\GameofThrones2x07AManWithout Honor.avi
[2012/05/14 16:36:15 | 707,792,896 | ---- | C] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x07.HDTV.Xv iD-break.MP3.avi
[2012/05/14 00:22:33 | 000,001,611 | ---- | C] () -- C:\Users\Rosa\Desktop\DivX Movies.lnk
[2012/05/14 00:21:59 | 000,001,116 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2012/05/14 00:21:13 | 000,002,120 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2012/05/12 04:57:51 | 708,462,592 | ---- | C] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x06.HDTV.Xv iD-break.MP3.avi
[2012/05/11 20:46:58 | 713,138,176 | ---- | C] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x05.HDTV.Xv iD-break.MP3.avi
[2012/05/11 19:10:16 | 733,032,448 | ---- | C] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x04.HDTV.Xv iD-break.MP3.avi
[2012/05/11 17:40:39 | 731,269,120 | ---- | C] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x03.HDTV.Xv iD-break.MP3.avi
[2012/05/11 04:59:18 | 734,881,792 | ---- | C] () -- C:\Users\Rosa\Desktop\Generation Kill 1x02.avi
[2012/05/08 23:48:05 | 733,607,936 | ---- | C] () -- C:\Users\Rosa\Desktop\Generation.Kill.1x01.HDTV.Xv iD-break.MP3.avi
[2012/04/29 22:10:50 | 576,780,288 | ---- | C] () -- C:\Users\Rosa\Desktop\Black.Mirror.S01E02.HDTV.Xvi D-RiVER.avi
[2012/04/29 22:10:28 | 366,989,312 | ---- | C] () -- C:\Users\Rosa\Desktop\Black.Mirror.S01E01.HDTV.Xvi D-RiVER.avi
[2012/04/29 12:20:49 | 000,000,924 | ---- | C] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1285894154-3819945735-4291217377-1000UA.job
[2012/04/29 12:20:49 | 000,000,902 | ---- | C] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1285894154-3819945735-4291217377-1000Core.job
[2012/03/28 22:11:08 | 000,030,568 | ---- | C] () -- C:\windows\MusiccityDownload.exe
[2012/03/28 22:11:06 | 000,974,848 | ---- | C] () -- C:\windows\SysWow64\cis-2.4.dll
[2012/03/28 22:11:06 | 000,081,920 | ---- | C] () -- C:\windows\SysWow64\issacapi_bs-2.3.dll
[2012/03/28 22:11:06 | 000,065,536 | ---- | C] () -- C:\windows\SysWow64\issacapi_pe-2.3.dll
[2012/03/28 22:11:06 | 000,057,344 | ---- | C] () -- C:\windows\SysWow64\issacapi_se-2.3.dll
[2011/03/28 03:23:55 | 000,014,051 | ---- | C] () -- C:\windows\SysWow64\RaCoInst.dat

< End of report >

�Qu� se supone que tengo que hacer a partir de aqu�???? Por favor ser comprensivos y explicarmelo paso a paso. Muchisimas gracias!!!!

PC funciona muy mal

Sensors — Wed, 16 May 2012 21:57:47 GMT

Todo empez� a andar desastrosamente, me tira variso errores, prob� con varios programas para detectar malwares y no salt� nada. Pego el log a ver si pueden ayudarme. Muchas gracias!

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 06:53:21 p.m., on 16/05/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Archivos de programa\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Archivos de programa\EPSON\Ink Monitor\InkMonitor.exe
C:\Archivos de programa\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Archivos de programa\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Archivos de programa\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Archivos de programa\Archivos comunes\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Archivos de programa\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\E_S00RP1.EXE
C:\Archivos de programa\Java\jre6\bin\jqs.exe
C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Archivos de programa\Panda Security\Panda Cloud Antivirus\PSANHost.exe
C:\Archivos de programa\Super_DVD_Creator_9.8\NMSAccessU.exe
C:\Archivos de programa\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\msiexec.exe
C:\Archivos de programa\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eis.esnips.com/page/search/?client_uuid=bda82ac0-85c3-4b48-b0d2-41fde8d1391d
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://eis.esnips.com/page/search/?client_uuid=bda82ac0-85c3-4b48-b0d2-41fde8d1391d
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=71126
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = V�nculos
R3 - URLSearchHook: Softonic ES Toolbar - {c2ed826e-8903-4a9d-b0df-3a8fb8ea918a} - C:\Archivos de programa\Softonic_ES\prxtbSof2.dll
O1 - Hosts: 109.169.64.156 avvillas.com.co
O1 - Hosts: 109.169.64.156 www.avvillas.com.co
O1 - Hosts: 109.169.64.156 bancocajasocial.com
O1 - Hosts: 109.169.64.156 www.bancocajasocial.com
O1 - Hosts: 109.169.64.156 bancodebogota.com
O1 - Hosts: 109.169.64.156 www.bancodebogota.com
O1 - Hosts: 109.169.64.156 bancodeoccidente.com.co
O1 - Hosts: 109.169.64.156 www.bancodeoccidente.com.co
O1 - Hosts: 109.169.64.156 bbva.com.co
O1 - Hosts: 109.169.64.156 www.bbva.com.co
O1 - Hosts: 109.169.64.156 davivienda.com
O1 - Hosts: 109.169.64.156 www.davivienda.com
O1 - Hosts: 109.169.64.156 colmena.com.co
O1 - Hosts: 109.169.64.156 www.colmena.com.co
O1 - Hosts: 109.169.64.156 colpatria.com
O1 - Hosts: 109.169.64.156 www.colpatria.com
O1 - Hosts: 109.169.37.131 bancopopular.com.co
O1 - Hosts: 109.169.37.131 www.bancopopular.com.co
O1 - Hosts: 109.169.37.131 grupobancolombia.com
O1 - Hosts: 109.169.37.131 www.grupobancolombia.com
O1 - Hosts: 109.169.37.131 bancoagrario.gov.co
O1 - Hosts: 109.169.37.131 www.sudameris.com.co
O1 - Hosts: 109.169.37.131 bancosantander.com.co
O1 - Hosts: 109.169.37.131 www.bancosantander.com.co
O1 - Hosts: 184.22.104.96 banesco.com
O1 - Hosts: 184.22.104.96 www.banesco.com
O1 - Hosts: 184.22.104.96 bfc.com.ve
O1 - Hosts: 184.22.104.96 www.bfc.com.ve
O1 - Hosts: 66.154.118.135 provincial.com
O1 - Hosts: 66.154.118.135 www.provincial.com
O1 - Hosts: 184.82.204.108 bodinternet.com
O1 - Hosts: 184.82.204.108 www.bodinternet.com
O1 - Hosts: 184.82.204.108 bnc.com.ve
O1 - Hosts: 184.82.204.108 www.bnc.com.ve
O1 - Hosts: 184.82.204.108 bancomercantil.com
O1 - Hosts: 184.82.204.108 www.bancomercantil.com
O1 - Hosts: 109.169.64.156 avvillas.com.co
O1 - Hosts: 109.169.64.156 www.avvillas.com.co
O1 - Hosts: 109.169.64.156 bancocajasocial.com
O1 - Hosts: 109.169.64.156 www.bancocajasocial.com
O1 - Hosts: 109.169.64.156 bancodebogota.com
O1 - Hosts: 109.169.64.156 www.bancodebogota.com
O1 - Hosts: 109.169.64.156 bancodeoccidente.com.co
O1 - Hosts: 109.169.64.156 www.bancodeoccidente.com.co
O1 - Hosts: 109.169.64.156 bbva.com.co
O1 - Hosts: 109.169.64.156 www.bbva.com.co
O1 - Hosts: 109.169.64.156 davivienda.com
O1 - Hosts: 109.169.64.156 www.davivienda.com
O1 - Hosts: 109.169.64.156 colmena.com.co
O1 - Hosts: 109.169.64.156 www.colmena.com.co
O1 - Hosts: 109.169.64.156 colpatria.com
O1 - Hosts: 109.169.64.156 www.colpatria.com
O1 - Hosts: 109.169.37.131 bancopopular.com.co
O1 - Hosts: 109.169.37.131 www.bancopopular.com.co
O1 - Hosts: 109.169.37.131 grupobancolombia.com
O1 - Hosts: 109.169.37.131 www.grupobancolombia.com
O1 - Hosts: 109.169.37.131 bancoagrario.gov.co
O1 - Hosts: 109.169.37.131 www.sudameris.com.co
O1 - Hosts: 109.169.37.131 bancosantander.com.co
O1 - Hosts: 109.169.37.131 www.bancosantander.com.co
O1 - Hosts: 184.22.104.96 banesco.com
O1 - Hosts: 184.22.104.96 www.banesco.com
O1 - Hosts: 184.22.104.96 bfc.com.ve
O1 - Hosts: 184.22.104.96 www.bfc.com.ve
O1 - Hosts: 66.154.118.135 provincial.com
O1 - Hosts: 66.154.118.135 www.provincial.com
O1 - Hosts: 184.82.204.108 bodinternet.com
O1 - Hosts: 184.82.204.108 www.bodinternet.com
O1 - Hosts: 184.82.204.108 bnc.com.ve
O1 - Hosts: 184.82.204.108 www.bnc.com.ve
O1 - Hosts: 184.82.204.108 bancomercantil.com
O1 - Hosts: 184.82.204.108 www.bancomercantil.com
O1 - Hosts: 109.169.64.156 avvillas.com.co
O1 - Hosts: 109.169.64.156 www.avvillas.com.co
O1 - Hosts: 109.169.64.156 bancocajasocial.com
O1 - Hosts: 109.169.64.156 www.bancocajasocial.com
O1 - Hosts: 109.169.64.156 bancodebogota.com
O1 - Hosts: 109.169.64.156 www.bancodebogota.com
O1 - Hosts: 109.169.64.156 bancodeoccidente.com.co
O1 - Hosts: 109.169.64.156 www.bancodeoccidente.com.co
O1 - Hosts: 109.169.64.156 davivienda.com
O1 - Hosts: 109.169.64.156 www.davivienda.com
O1 - Hosts: 109.169.64.156 colmena.com.co
O1 - Hosts: 109.169.64.156 www.colmena.com.co
O1 - Hosts: 109.169.64.156 colpatria.com
O1 - Hosts: 109.169.64.156 www.colpatria.com
O1 - Hosts: 109.169.37.131 bbva.com.co
O1 - Hosts: 109.169.37.131 www.bbva.com.co
O1 - Hosts: 109.169.37.131 bancopopular.com.co
O1 - Hosts: 109.169.37.131 www.bancopopular.com.co
O1 - Hosts: 109.169.37.131 grupobancolombia.com
O1 - Hosts: 109.169.37.131 www.grupobancolombia.com
O1 - Hosts: 109.169.37.131 bancoagrario.gov.co
O1 - Hosts: 109.169.37.131 www.sudameris.com.co
O1 - Hosts: 109.169.37.131 bancosantander.com.co
O1 - Hosts: 109.169.37.131 www.bancosantander.com.co
O1 - Hosts: 184.22.104.96 banesco.com
O1 - Hosts: 184.22.104.96 www.banesco.com
O1 - Hosts: 184.22.104.96 bfc.com.ve
O1 - Hosts: 184.22.104.96 www.bfc.com.ve
O1 - Hosts: 66.154.118.135 provincial.com
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Archivos de programa\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live Aplicaci�n auxiliar de inicio de sesi�n - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: eSnipBHO - {B530A9A4-1722-4D16-AAD6-AA85E3AD2ADE} - (no file)
O2 - BHO: Softonic ES - {c2ed826e-8903-4a9d-b0df-3a8fb8ea918a} - C:\Archivos de programa\Softonic_ES\prxtbSof2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Archivos de programa\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Archivos de programa\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dl l
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Softonic ES Toolbar - {c2ed826e-8903-4a9d-b0df-3a8fb8ea918a} - C:\Archivos de programa\Softonic_ES\prxtbSof2.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Archivos de programa\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Ink Monitor] C:\Archivos de programa\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [EPSON Stylus CX4500 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9 AL.EXE /P26 "EPSON Stylus CX4500 Series" /O6 "USB001" /M "Stylus CX4500"
O4 - HKLM\..\Run: [Detectando autom�ticamente EPSON Stylus CX4500 Series en MPC] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9 AL.EXE /P60 "Detectando autom�ticamente EPSON Stylus CX4500 Series en MPC" /O16 "\\MPC\EPSONSty.2" /M "Stylus CX4500"
O4 - HKLM\..\Run: [Detectando autom�ticamente EPSON Stylus CX4500 Series (Copiar 1) en MPC] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9 AL.EXE /P71 "Detectando autom�ticamente EPSON Stylus CX4500 Series (Copiar 1) en MPC" /O16 "\\MPC\EPSONSty.3" /M "Stylus CX4500"
O4 - HKLM\..\Run: [avast] "C:\Archivos de programa\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1259014301062
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARCHIV~1\ARCHIV~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Precargador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demonio de cach� de las categor�as de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Archivos de programa\Archivos comunes\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Archivos de programa\Archivos comunes\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Archivos de programa\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Servicio Bonjour (Bonjour Service) - Apple Inc. - C:\Archivos de programa\Bonjour\mDNSResponder.exe
O23 - Service: Servicio del administrador de discos l�gicos (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: EPSON V3 Service2(03) (EPSON_PM_RPCV2_01) - SEIKO EPSON CORPORATION - C:\WINDOWS\system32\E_S00RP1.EXE
O23 - Service: Registro de sucesos (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Archivos de programa\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Archivos de programa\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Servicio COM de grabaci�n de CD de IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Servicio del iPod (iPod Service) - Apple Inc. - C:\Archivos de programa\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Archivos de programa\Java\jre6\bin\jqs.exe
O23 - Service: Escritorio remoto compartido de NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Panda Cloud Antivirus Service (NanoServiceMain) - Panda Security, S.L. - C:\Archivos de programa\Panda Security\Panda Cloud Antivirus\PSANHost.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Archivos de programa\Super_DVD_Creator_9.8\NMSAccessU.exe
O23 - Service: Plug and Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Administrador de sesi�n de Ayuda de escritorio remoto (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Tarjeta inteligente (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Archivos de programa\Skype\Updater\Updater.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Archivos de programa\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Registros y alertas de rendimiento (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Instant�neas de volumen (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Adaptador de rendimiento de WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe

--
End of file - 15383 bytes

reparacion de inicio no soluciona el problema

f14_o — Wed, 16 May 2012 21:56:44 GMT

hola, mi problema es con un disco duro.El tema es que cambi� el disco duro de una notebook a una netbook, pero al iniciarla luego de colocar el disco, inicia la Reparaci�n de inicio, que despu�s de unos minutos me dice que no puede solucionar el problema automaticamente...

A qu� se debe esto?y se puede solucionar sin perder lo que contiene guardado el disco??

Desde ya muchas gracias.

Virus de la doble tilde....''

Aleco1 — Wed, 16 May 2012 21:42:35 GMT

Buenas!!! Soy nuevo en el foro y tambien estoy afectado por este virus, estuve leyendo muchos post sobre esto, ya tengo las herramientas cccleaner, mbam, hijackthis y el DT - Kill. Tuve que conseguirlos mediante otra pc ya que aparentemente el virus me bloqueo el acceso a las webs relacionadas. En el modo Normal hice correr DT - Kill sin ningun registro ni reinicios posteriores, obviamente no me deja ejecutar mbam (solo en modo seguro). Pero sigo teniendo el mismo problema. Leyendo este post quisiera saber si me pueden colaborar con los pasos correctos para evitar el caso de KAMILA06.?

No puedo abrir el Epson Scan

Ezequielstein — Wed, 16 May 2012 21:38:25 GMT

Me compr� una multifunci�n Epson L200 y cuando intento abrir el Epson Scan me sale el siguiente mensaje:

No se puede comunicar con el esc�ner.
Compruebe que el esc�ner est� encendido, correctamente instalado y conectado y que no presenta errores.
Si desea m�s informaci�n, consulte Soluci�n de problemas en el Manual de usuario.
Aceptar

Ya prob� reinstalando los drivers y no pasa nada.

::Help::

Gracias de antemano.

Peticiones de conexi�n telef�nica

Amoedus — Wed, 16 May 2012 21:32:35 GMT

Hola,

hace unos d�as instal� un software llamado Ginger de correcci�n gramatical en Ingl�s para Word y otros procesadores de texto. Desde entonces me aparecen unas llamadas incesantes pidi�ndome conexi�n telef�nica cuando no estoy conectado, desde este programa y tambi�n desde el Acrobat Reader. Hoy he desinstalado ambos programas y desde hace unos minutos no me da problemas, pero antes se me colg� el PC. Puede deberse esto a alg�n tipo de virus?,