Mi pc se traba (Terminado)

**cbocci722** · 24/05/12, 01:18:53

Hola! Como va! Soy nuevo en el foro y como tengo este problema que no logro solucionar estuve visitando foros y este me pareció el mejor y mas útil!
Mi problema es el siguiente, mi pc se traba, el uso del cpu llega casi al 100% y cuando, por ej., pongo musica suena como un disco rallado o algo similar, ni hablar si ejecuto juegos pesados como el virtua tennis 4 (siempre lo juego con mis amigos ) o el crysis, etc.. Intente formateando la pc, limpiando todo el cpu. la ram con borradores, pinceles; el procesador, y todas sus correspondientes cosas. Aca dejo una capturas de el administrador de tareas... Uso windows xp, antivirus eset 5( creo que es el ultimo) reproductor de musica AIMP2... Anteriormente antes de formatear usaba el antivirus avast y hacia lo mismo (aclaro esto porque en los procesos el actual antivirus que tengo es que el que mas uso de cpu tiene) pero igual no creo que sea algo de esto...
Pase ccleaner y no paso nada... Bueno no hacia falta porque formatee la pc..

Un abrazo grande y espero su pronta respuesta, lo de el log nose bien con que programa hacerlo o como se hace asi que si necesitan eso me dicen bien como es .
Saludos!

**Invy** · 24/05/12, 01:59:16

Hola y bienvenid@

Te recomiendo que leas estos puntos de interes:

Políticas del Foro de InfoSpyware. Un punto a leer es el 2.6;)
Políticas Foro Oficial de HijackThis en español.
¿Cómo subir imágenes al Foro? *TUTORIAL*

Antes de comenzar por favor, evita el escribir subrayado todas las palabras, se complica un poco su lectura

Vamos a realizar estos pasos en modo normal, es importante que leas con detenemiento

y sin ejecutarlas haz lo siguiente:

Descarga en tú escritorio el TDSSKiller pero NO la ejecutes aún.
Descarga, instala y actualiza el Malwarebytes.

Ahora vamos a realizar estos pasos:

1º- Ejecutamos el TDSSKiller según su manual.

Recuerda marcar ambas opciones:

Una vez terminado copia su reporte.

2º- Ejecutamos el Malwarebytes y realizamos lo siguiente:

Pestaña "Actualización" y luego al botón "Actualizar"
Pestaña "Escáner" y luego a "Escaneo Completo" y seguido a "Escanear"
Una vez acabado le das a la opción "Mostrar Resultados" y seguidamente a "Quitar elementos Seleccionado"
Sí te pide reiniciar hazlo.
Copia su último reporte ubicado en la pestaña "Registro"

3º-

Analiza tú máquina con ESET Online Scanner siguiendo los pasos con detenimiento

Bien, una vez acabado el nod32 peganos tambien el reporte, una vez que lo tengamos ya continuamos con más pasos sí fuese necesario

Resumen:

Colocar el reporte del Malwarebytes.
Colocar el reporte del TDSSkiller.
Colocar el reporte del ESET Online Scanner.
Comentar como va el ordenador.

Un saludo.

**cbocci722** · 24/05/12, 02:32:39

Gracias por las respuestas! Ya estoy haciendo el segundo paso... Pude apreciar que cuando analizo la parte de "SXE INJECTED" (un programa para jugar counter strike online) detecto 3 amenazas... Ya subo los log's. Gracias nuevamente... Muy atento

Reporte Log de TDSSKILLER:
03:03:33.0046 3324 TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30
03:03:33.0812 3324 ============================================================
03:03:33.0812 3324 Current date / time: 2012/05/24 03:03:33.0812
03:03:33.0812 3324 SystemInfo:
03:03:33.0812 3324
03:03:33.0812 3324 OS Version: 5.1.2600 ServicePack: 3.0
03:03:33.0812 3324 Product type: Workstation
03:03:33.0812 3324 ComputerName: BOCCI-1083A9B11
03:03:33.0812 3324 UserName: bocci
03:03:33.0812 3324 Windows directory: C:\WINDOWS
03:03:33.0812 3324 System windows directory: C:\WINDOWS
03:03:33.0812 3324 Processor architecture: Intel x86
03:03:33.0812 3324 Number of processors: 2
03:03:33.0812 3324 Page size: 0x1000
03:03:33.0812 3324 Boot type: Normal boot
03:03:33.0812 3324 ============================================================
03:03:35.0812 3324 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
03:03:35.0812 3324 Drive \Device\Harddisk1\DR3 - Size: 0x7F800000 (1.99 Gb), SectorSize: 0x200, Cylinders: 0x104, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
03:03:35.0828 3324 ============================================================
03:03:35.0828 3324 \Device\Harddisk0\DR0:
03:03:35.0828 3324 MBR partitions:
03:03:35.0828 3324 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x63FFA80
03:03:35.0843 3324 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x63FFAFE, BlocksNum 0xC615102
03:03:35.0843 3324 \Device\Harddisk1\DR3:
03:03:35.0843 3324 MBR partitions:
03:03:35.0843 3324 ============================================================
03:03:35.0859 3324 C: <-> \Device\Harddisk0\DR0\Partition0
03:03:35.0890 3324 D: <-> \Device\Harddisk0\DR0\Partition1
03:03:35.0890 3324 ============================================================
03:03:35.0890 3324 Initialize success
03:03:35.0890 3324 ============================================================
03:04:28.0296 2472 ============================================================
03:04:28.0296 2472 Scan started
03:04:28.0296 2472 Mode: Manual; SigCheck; TDLFS;
03:04:28.0296 2472 ============================================================
03:04:29.0265 2472 Abiosdsk - ok
03:04:29.0265 2472 abp480n5 - ok
03:04:29.0343 2472 ACPI (cf2a07e1751a2d612d7e13aa431ab057) C:\WINDOWS\system32\DRIVERS\ACPI.sys
03:04:32.0687 2472 ACPI - ok
03:04:32.0718 2472 ACPIEC (1c905333c0b9f3d7c68ddf25e54b00f9) C:\WINDOWS\system32\drivers\ACPIEC.sys
03:04:32.0828 2472 ACPIEC - ok
03:04:32.0828 2472 adpu160m - ok
03:04:32.0921 2472 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
03:04:33.0078 2472 aec - ok
03:04:33.0140 2472 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
03:04:33.0296 2472 AFD - ok
03:04:33.0296 2472 Aha154x - ok
03:04:33.0296 2472 aic78u2 - ok
03:04:33.0312 2472 aic78xx - ok
03:04:33.0328 2472 Alerter (fedca791a089d4e15084da10f38bce45) C:\WINDOWS\system32\alrsvc.dll
03:04:33.0453 2472 Alerter - ok
03:04:33.0468 2472 ALG (764b7a1e6ae2d70416a7932f3b97ac99) C:\WINDOWS\System32\alg.exe
03:04:33.0546 2472 ALG - ok
03:04:33.0546 2472 AliIde - ok
03:04:33.0546 2472 amsint - ok
03:04:33.0625 2472 AppMgmt (30cd42bfcdafefe8567b9e527dd3ae08) C:\WINDOWS\System32\appmgmts.dll
03:04:33.0734 2472 AppMgmt - ok
03:04:33.0734 2472 asc - ok
03:04:33.0734 2472 asc3350p - ok
03:04:33.0750 2472 asc3550 - ok
03:04:33.0781 2472 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
03:04:33.0906 2472 AsyncMac - ok
03:04:33.0968 2472 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
03:04:34.0062 2472 atapi - ok
03:04:34.0078 2472 Atdisk - ok
03:04:34.0109 2472 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
03:04:34.0250 2472 Atmarpc - ok
03:04:34.0296 2472 AudioSrv (a37f6480b06c37db69bbff045cf9f55b) C:\WINDOWS\System32\audiosrv.dll
03:04:34.0406 2472 AudioSrv - ok
03:04:34.0421 2472 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
03:04:34.0531 2472 audstub - ok
03:04:34.0562 2472 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
03:04:34.0656 2472 Beep - ok
03:04:34.0812 2472 BITS (8ee9639c01b92490e09638caa1b16c3c) C:\WINDOWS\system32\qmgr.dll
03:04:35.0109 2472 BITS - ok
03:04:35.0156 2472 Browser (e28818bd591f8af8fbe9897472b9665e) C:\WINDOWS\System32\browser.dll
03:04:35.0265 2472 Browser - ok
03:04:35.0281 2472 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
03:04:35.0390 2472 cbidf2k - ok
03:04:35.0421 2472 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
03:04:35.0531 2472 CCDECODE - ok
03:04:35.0531 2472 cd20xrnt - ok
03:04:35.0546 2472 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
03:04:35.0656 2472 Cdaudio - ok
03:04:35.0687 2472 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
03:04:35.0796 2472 Cdfs - ok
03:04:35.0843 2472 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
03:04:35.0984 2472 Cdrom - ok
03:04:35.0984 2472 Changer - ok
03:04:36.0015 2472 ClipSrv (0c3bf68ab94cefd64b333b326f84510e) C:\WINDOWS\system32\clipsrv.exe
03:04:36.0140 2472 ClipSrv - ok
03:04:36.0140 2472 CmdIde - ok
03:04:36.0140 2472 COMSysApp - ok
03:04:36.0156 2472 Cpqarray - ok
03:04:36.0187 2472 CryptSvc (e423c9c1946c656e0e4840210a0a8681) C:\WINDOWS\System32\cryptsvc.dll
03:04:36.0296 2472 CryptSvc - ok
03:04:36.0296 2472 dac2w2k - ok
03:04:36.0312 2472 dac960nt - ok
03:04:36.0437 2472 DcomLaunch (53d02effa72ca5c57687bee20610aba6) C:\WINDOWS\system32\rpcss.dll
03:04:36.0625 2472 DcomLaunch - ok
03:04:36.0718 2472 ddsxeiservice (38a1d9267952a00ba528776cade5dc5e) C:\Archivos de programa\sXe Injected\ddsxei.sys
03:04:36.0734 2472 ddsxeiservice ( UnsignedFile.Multi.Generic ) - warning
03:04:36.0734 2472 ddsxeiservice - detected UnsignedFile.Multi.Generic (1)
03:04:36.0796 2472 Dhcp (2ddfb3a5679fa02366686ecb1af622f0) C:\WINDOWS\System32\dhcpcsvc.dll
03:04:36.0921 2472 Dhcp - ok
03:04:36.0968 2472 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
03:04:37.0078 2472 Disk - ok
03:04:37.0093 2472 dmadmin - ok
03:04:37.0390 2472 dmboot (c252a99c0a78b39faa2e2d1d048b1050) C:\WINDOWS\system32\drivers\dmboot.sys
03:04:37.0953 2472 dmboot - ok
03:04:38.0015 2472 dmio (33b4d4039cd2cb25351a7bf13b2988d9) C:\WINDOWS\system32\drivers\dmio.sys
03:04:38.0156 2472 dmio - ok
03:04:38.0187 2472 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
03:04:38.0281 2472 dmload - ok
03:04:38.0312 2472 dmserver (40d0520ddaa9312c5dddd8c7c99d8325) C:\WINDOWS\System32\dmserver.dll
03:04:38.0437 2472 dmserver - ok
03:04:38.0468 2472 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
03:04:38.0593 2472 DMusic - ok
03:04:38.0625 2472 Dnscache (e903d6c886ca0c86164bf778589f7c6e) C:\WINDOWS\System32\dnsrslvr.dll
03:04:38.0734 2472 Dnscache - ok
03:04:38.0796 2472 Dot3svc (412134c50e2063d882ef1634676e2b25) C:\WINDOWS\System32\dot3svc.dll
03:04:38.0937 2472 Dot3svc - ok
03:04:38.0937 2472 dpti2o - ok
03:04:38.0968 2472 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
03:04:39.0093 2472 drmkaud - ok
03:04:39.0156 2472 eamon (8c2b6bbc82ad12cd9a2e73e5dcbba705) C:\WINDOWS\system32\DRIVERS\eamon.sys
03:04:39.0281 2472 eamon - ok
03:04:39.0296 2472 EapHost (fc3fe3654588e597fff395c305062c46) C:\WINDOWS\System32\eapsvc.dll
03:04:39.0421 2472 EapHost - ok
03:04:39.0484 2472 ehdrv (5412ed24fffca64e2f0168399b86c952) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
03:04:39.0546 2472 ehdrv - ok
03:04:39.0921 2472 ekrn (ad4faade819e0da9933bea7c01d2c763) C:\Archivos de programa\ESET\ESET NOD32 Antivirus\ekrn.exe
03:04:40.0484 2472 ekrn - ok
03:04:40.0531 2472 epfwtdir (cf1108161dfedd82ae811307a3763e1c) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
03:04:40.0593 2472 epfwtdir - ok
03:04:40.0625 2472 ERSvc (d96623dd7ce1ea9e4de7285d740e14f6) C:\WINDOWS\System32\ersvc.dll
03:04:40.0718 2472 ERSvc - ok
03:04:40.0781 2472 Eventlog (d658a8c2fc7b2ad53d1259741a09ee04) C:\WINDOWS\system32\services.exe
03:04:40.0906 2472 Eventlog - ok
03:04:41.0000 2472 EventSystem (76abf3bb5a6d684641ec92b28240811d) C:\WINDOWS\system32\es.dll
03:04:41.0156 2472 EventSystem - ok
03:04:41.0250 2472 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
03:04:41.0375 2472 Fastfat - ok
03:04:41.0437 2472 FastUserSwitchingCompatibility (ca70edbf32032ea53f114cb930741cb5) C:\WINDOWS\System32\shsvcs.dll
03:04:41.0578 2472 FastUserSwitchingCompatibility - ok
03:04:41.0609 2472 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
03:04:41.0703 2472 Fdc - ok
03:04:41.0734 2472 Fips (e5e61f2c07344e91dbfb7eafde549ab4) C:\WINDOWS\system32\drivers\Fips.sys
03:04:41.0843 2472 Fips - ok
03:04:41.0875 2472 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
03:04:41.0984 2472 Flpydisk - ok
03:04:42.0046 2472 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
03:04:42.0156 2472 FltMgr - ok
03:04:42.0171 2472 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
03:04:42.0281 2472 Fs_Rec - ok
03:04:42.0328 2472 Ftdisk (cc5f3af5711a1c7c8fa1d43bb16b401a) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
03:04:42.0453 2472 Ftdisk - ok
03:04:42.0500 2472 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
03:04:42.0625 2472 Gpc - ok
03:04:42.0687 2472 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
03:04:42.0828 2472 HDAudBus - ok
03:04:42.0890 2472 helpsvc (6b5e1788abf15177a20c6c76c11382bb) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
03:04:43.0000 2472 helpsvc - ok
03:04:43.0031 2472 HidServ (158aedf024cd58fea03be2d7d62abc9c) C:\WINDOWS\System32\hidserv.dll
03:04:43.0140 2472 HidServ - ok
03:04:43.0156 2472 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
03:04:43.0250 2472 hidusb - ok
03:04:43.0312 2472 hkmsvc (8f80b5fb68e1e767d872cb9a8cad5b5d) C:\WINDOWS\System32\kmsvc.dll
03:04:43.0421 2472 hkmsvc - ok
03:04:43.0437 2472 hpn - ok
03:04:43.0531 2472 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
03:04:43.0718 2472 HTTP - ok
03:04:43.0734 2472 HTTPFilter (0406b351908a8c143b6b6bb8834d4920) C:\WINDOWS\System32\w3ssl.dll
03:04:43.0828 2472 HTTPFilter - ok
03:04:43.0843 2472 i2omgmt - ok
03:04:43.0843 2472 i2omp - ok
03:04:43.0875 2472 i8042prt (4a2490a66e8271901e89dd5fb79748ae) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
03:04:44.0015 2472 i8042prt - ok
03:04:44.0062 2472 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
03:04:44.0171 2472 Imapi - ok
03:04:44.0171 2472 ini910u - ok
03:04:44.0187 2472 IntelIde - ok
03:04:44.0218 2472 intelppm (49a060498c09db18c3ea9939789005ab) C:\WINDOWS\system32\DRIVERS\intelppm.sys
03:04:44.0328 2472 intelppm - ok
03:04:44.0343 2472 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
03:04:44.0515 2472 Ip6Fw - ok
03:04:44.0531 2472 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
03:04:44.0703 2472 IpFilterDriver - ok
03:04:44.0765 2472 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
03:04:44.0890 2472 IpInIp - ok
03:04:44.0937 2472 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
03:04:45.0078 2472 IpNat - ok
03:04:45.0125 2472 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
03:04:45.0265 2472 IPSec - ok
03:04:45.0281 2472 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
03:04:45.0343 2472 IRENUM - ok
03:04:45.0390 2472 isapnp (0f3d281b0410fe5d482aada37d20524b) C:\WINDOWS\system32\DRIVERS\isapnp.sys
03:04:45.0500 2472 isapnp - ok
03:04:45.0625 2472 JavaQuickStarterService (5472d771c0197355c1d347f20392b982) C:\Archivos de programa\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
03:04:45.0671 2472 JavaQuickStarterService - ok
03:04:45.0718 2472 Kbdclass (188ddd286bc0daea6984858c6a4d7bbf) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
03:04:45.0812 2472 Kbdclass - ok
03:04:45.0843 2472 kbdhid (72efebecf76eb1dccc5ba9ea746d90e8) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
03:04:45.0968 2472 kbdhid - ok
03:04:46.0031 2472 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
03:04:46.0187 2472 kmixer - ok
03:04:46.0234 2472 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
03:04:46.0343 2472 KSecDD - ok
03:04:46.0390 2472 LanmanServer (1814a50472885db3036cd2097f2bb77c) C:\WINDOWS\System32\srvsvc.dll
03:04:46.0515 2472 LanmanServer - ok
03:04:46.0578 2472 lanmanworkstation (26a6587e6eacd49a77a4ae11aa490493) C:\WINDOWS\System32\wkssvc.dll
03:04:46.0718 2472 lanmanworkstation - ok
03:04:46.0718 2472 lbrtfdc - ok
03:04:46.0750 2472 LmHosts (01af2112ff79aa613b6621a75c4e9277) C:\WINDOWS\System32\lmhsvc.dll
03:04:46.0843 2472 LmHosts - ok
03:04:47.0000 2472 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Archivos de programa\Microsoft Office\Office12\GrooveAuditService.exe
03:04:47.0031 2472 Microsoft Office Groove Audit Service - ok
03:04:47.0062 2472 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
03:04:47.0156 2472 mnmdd - ok
03:04:47.0187 2472 mnmsrvc (85ada209695a677c9d60962cde10696b) C:\WINDOWS\system32\mnmsrvc.exe
03:04:47.0296 2472 mnmsrvc - ok
03:04:47.0328 2472 Modem (9024556e739b8469d2b8f5f0e4c9bc9f) C:\WINDOWS\system32\drivers\Modem.sys
03:04:47.0453 2472 Modem - ok
03:04:47.0468 2472 Mouclass (6fd36b4994a2363659a65c9f970cfdb7) C:\WINDOWS\system32\DRIVERS\mouclass.sys
03:04:47.0562 2472 Mouclass - ok
03:04:47.0593 2472 mouhid (8ee532e516b2d23d686cfc1cc0a15c25) C:\WINDOWS\system32\DRIVERS\mouhid.sys
03:04:47.0687 2472 mouhid - ok
03:04:47.0718 2472 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
03:04:47.0812 2472 MountMgr - ok
03:04:47.0812 2472 mraid35x - ok
03:04:47.0875 2472 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
03:04:48.0000 2472 MRxDAV - ok
03:04:48.0156 2472 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
03:04:48.0453 2472 MRxSmb - ok
03:04:48.0515 2472 MSDTC (975bd2762bf355a572597cc54d97ba93) C:\WINDOWS\system32\msdtc.exe
03:04:48.0625 2472 MSDTC - ok
03:04:48.0640 2472 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
03:04:48.0734 2472 Msfs - ok
03:04:48.0750 2472 MSIServer - ok
03:04:48.0765 2472 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
03:04:48.0859 2472 MSKSSRV - ok
03:04:48.0890 2472 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
03:04:48.0984 2472 MSPCLOCK - ok
03:04:49.0000 2472 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
03:04:49.0093 2472 MSPQM - ok
03:04:49.0125 2472 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
03:04:49.0218 2472 mssmbios - ok
03:04:49.0234 2472 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
03:04:49.0343 2472 MSTEE - ok
03:04:49.0390 2472 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
03:04:49.0484 2472 Mup - ok
03:04:49.0531 2472 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
03:04:49.0656 2472 NABTSFEC - ok
03:04:49.0765 2472 napagent (fd578fcc03bbd76af1e62202e6670d29) C:\WINDOWS\System32\qagentrt.dll
03:04:49.0937 2472 napagent - ok
03:04:50.0015 2472 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
03:04:50.0140 2472 NDIS - ok
03:04:50.0156 2472 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
03:04:50.0250 2472 NdisIP - ok
03:04:50.0281 2472 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
03:04:50.0343 2472 NdisTapi - ok
03:04:50.0359 2472 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
03:04:50.0484 2472 Ndisuio - ok
03:04:50.0515 2472 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
03:04:50.0687 2472 NdisWan - ok
03:04:50.0718 2472 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
03:04:50.0812 2472 NDProxy - ok
03:04:50.0843 2472 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
03:04:50.0953 2472 NetBIOS - ok
03:04:51.0015 2472 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
03:04:51.0171 2472 NetBT - ok
03:04:51.0234 2472 NetDDE (96b009e5b163850cf94dc333ed2bee93) C:\WINDOWS\system32\netdde.exe
03:04:51.0359 2472 NetDDE - ok
03:04:51.0359 2472 NetDDEdsdm (96b009e5b163850cf94dc333ed2bee93) C:\WINDOWS\system32\netdde.exe
03:04:51.0453 2472 NetDDEdsdm - ok
03:04:51.0484 2472 Netlogon (671aca589da3733fac878a751c5bf0ed) C:\WINDOWS\system32\lsass.exe
03:04:51.0562 2472 Netlogon - ok
03:04:51.0671 2472 Netman (a48884c9359ee9f1fc8f3f0d93fb1d95) C:\WINDOWS\System32\netman.dll
03:04:51.0812 2472 Netman - ok
03:04:51.0906 2472 Nla (ad893c9d3a09081d55a4bdfbc66ad592) C:\WINDOWS\System32\mswsock.dll
03:04:52.0000 2472 Nla - ok
03:04:52.0031 2472 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
03:04:52.0125 2472 Npfs - ok
03:04:52.0328 2472 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
03:04:52.0687 2472 Ntfs - ok
03:04:52.0687 2472 NtLmSsp (671aca589da3733fac878a751c5bf0ed) C:\WINDOWS\system32\lsass.exe
03:04:52.0765 2472 NtLmSsp - ok
03:04:52.0781 2472 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
03:04:52.0875 2472 Null - ok
03:04:57.0328 2472 nv (7b5a17bd54bb9142843dbe99a1caaed8) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
03:05:05.0984 2472 nv - ok
03:05:06.0734 2472 NVSvc (5150b108ea88831e1c599603d8b89621) C:\WINDOWS\system32\nvsvc32.exe
03:05:06.0781 2472 NVSvc - ok
03:05:06.0859 2472 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
03:05:06.0968 2472 NwlnkFlt - ok
03:05:06.0984 2472 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
03:05:07.0093 2472 NwlnkFwd - ok
03:05:07.0343 2472 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\ODSERV.EXE
03:05:07.0578 2472 odserv - ok
03:05:07.0640 2472 ose (5a432a042dae460abe7199b758e8606c) C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE
03:05:07.0687 2472 ose - ok
03:05:07.0734 2472 Parport (e7855cbd8bd1fda085a3f92cff7906e2) C:\WINDOWS\system32\DRIVERS\parport.sys
03:05:07.0843 2472 Parport - ok
03:05:07.0875 2472 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
03:05:07.0968 2472 PartMgr - ok
03:05:07.0984 2472 ParVdm (fad44d704ecd7d39ad01415b8bb34204) C:\WINDOWS\system32\drivers\ParVdm.sys
03:05:08.0078 2472 ParVdm - ok
03:05:08.0125 2472 PCI (f11bc84ae6c7b003b5e0c8eeb4a1f444) C:\WINDOWS\system32\DRIVERS\pci.sys
03:05:08.0218 2472 PCI - ok
03:05:08.0218 2472 PCIDump - ok
03:05:08.0250 2472 PCIIde (33d63f0a9021acb4d75d83b646b93a30) C:\WINDOWS\system32\DRIVERS\pciide.sys
03:05:08.0328 2472 PCIIde - ok
03:05:08.0390 2472 Pcmcia (f50c27cca56dc97b3a45e7f0059bd2ba) C:\WINDOWS\system32\drivers\Pcmcia.sys
03:05:08.0515 2472 Pcmcia - ok
03:05:08.0531 2472 PDCOMP - ok
03:05:08.0531 2472 PDFRAME - ok
03:05:08.0531 2472 PDRELI - ok
03:05:08.0546 2472 PDRFRAME - ok
03:05:08.0546 2472 perc2 - ok
03:05:08.0546 2472 perc2hib - ok
03:05:08.0609 2472 PlugPlay (d658a8c2fc7b2ad53d1259741a09ee04) C:\WINDOWS\system32\services.exe
03:05:08.0703 2472 PlugPlay - ok
03:05:08.0734 2472 PolicyAgent (671aca589da3733fac878a751c5bf0ed) C:\WINDOWS\system32\lsass.exe
03:05:08.0812 2472 PolicyAgent - ok
03:05:08.0843 2472 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
03:05:08.0968 2472 PptpMiniport - ok
03:05:08.0968 2472 ProtectedStorage (671aca589da3733fac878a751c5bf0ed) C:\WINDOWS\system32\lsass.exe
03:05:09.0062 2472 ProtectedStorage - ok
03:05:09.0093 2472 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
03:05:09.0203 2472 PSched - ok
03:05:09.0234 2472 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
03:05:09.0343 2472 Ptilink - ok
03:05:09.0375 2472 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
03:05:09.0375 2472 PxHelp20 - ok
03:05:09.0375 2472 ql1080 - ok
03:05:09.0390 2472 Ql10wnt - ok
03:05:09.0390 2472 ql12160 - ok
03:05:09.0390 2472 ql1240 - ok
03:05:09.0406 2472 ql1280 - ok
03:05:09.0437 2472 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
03:05:09.0546 2472 RasAcd - ok
03:05:09.0593 2472 RasAuto (8345c6f52f38a95b950b9b3d064ae3ee) C:\WINDOWS\System32\rasauto.dll
03:05:09.0703 2472 RasAuto - ok
03:05:09.0734 2472 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
03:05:09.0828 2472 Rasl2tp - ok
03:05:09.0906 2472 RasMan (b279f6a9ea3acb5844c103ed2db65b44) C:\WINDOWS\System32\rasmans.dll
03:05:10.0046 2472 RasMan - ok
03:05:10.0062 2472 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
03:05:10.0187 2472 RasPppoe - ok
03:05:10.0203 2472 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
03:05:10.0328 2472 Raspti - ok
03:05:10.0390 2472 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
03:05:10.0515 2472 Rdbss - ok
03:05:10.0531 2472 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
03:05:10.0640 2472 RDPCDD - ok
03:05:10.0718 2472 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
03:05:10.0859 2472 rdpdr - ok
03:05:10.0937 2472 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
03:05:11.0093 2472 RDPWD - ok
03:05:11.0171 2472 RDSessMgr (6193e6b05336c277ea4db39afa46bc23) C:\WINDOWS\system32\sessmgr.exe
03:05:11.0343 2472 RDSessMgr - ok
03:05:11.0375 2472 redbook (20950948970a0ea329b4254052bcf093) C:\WINDOWS\system32\DRIVERS\redbook.sys
03:05:11.0515 2472 redbook - ok
03:05:11.0562 2472 RemoteAccess (1b7481d377bd7997452352f82f4cffed) C:\WINDOWS\System32\mprdim.dll
03:05:11.0671 2472 RemoteAccess - ok
03:05:11.0703 2472 RpcLocator (9fccbdbaa0cf915aac0132de1c9566b3) C:\WINDOWS\system32\locator.exe
03:05:11.0812 2472 RpcLocator - ok
03:05:11.0953 2472 RpcSs (53d02effa72ca5c57687bee20610aba6) C:\WINDOWS\system32\rpcss.dll
03:05:12.0125 2472 RpcSs - ok
03:05:12.0187 2472 RSVP (5e38212c2c00dc342e2281d2f6bfb746) C:\WINDOWS\system32\rsvp.exe
03:05:12.0312 2472 RSVP - ok
03:05:12.0359 2472 RTLE8023xp (00fd6811350e175585abcf7d4a61dd90) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
03:05:12.0500 2472 RTLE8023xp - ok
03:05:12.0531 2472 SamSs (671aca589da3733fac878a751c5bf0ed) C:\WINDOWS\system32\lsass.exe
03:05:12.0609 2472 SamSs - ok
03:05:12.0656 2472 SCardSvr (a50e4dd0e2a9df762807c84153b4953a) C:\WINDOWS\System32\SCardSvr.exe
03:05:12.0765 2472 SCardSvr - ok
03:05:12.0859 2472 Schedule (51be25c404d3dd344c6079de715e4977) C:\WINDOWS\system32\schedsvc.dll
03:05:13.0000 2472 Schedule - ok
03:05:13.0031 2472 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
03:05:13.0109 2472 Secdrv - ok
03:05:13.0109 2472 seclogon (b62c489373a1e1b949fc0faa90f3b47a) C:\WINDOWS\System32\seclogon.dll
03:05:13.0203 2472 seclogon - ok
03:05:13.0234 2472 SENS (a95a27c874b0931a6f8f656924f4a14a) C:\WINDOWS\system32\sens.dll
03:05:13.0343 2472 SENS - ok
03:05:13.0359 2472 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
03:05:13.0468 2472 serenum - ok
03:05:13.0500 2472 Serial (f41b42b92ae9c1191858c3f80cc24a9c) C:\WINDOWS\system32\DRIVERS\serial.sys
03:05:13.0609 2472 Serial - ok
03:05:13.0625 2472 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
03:05:13.0718 2472 Sfloppy - ok
03:05:13.0828 2472 SharedAccess (4a4ef3ee166fad4a04b1d767ad986329) C:\WINDOWS\System32\ipnathlp.dll
03:05:14.0109 2472 SharedAccess - ok
03:05:14.0171 2472 ShellHWDetection (ca70edbf32032ea53f114cb930741cb5) C:\WINDOWS\System32\shsvcs.dll
03:05:14.0265 2472 ShellHWDetection - ok
03:05:14.0265 2472 Simbad - ok
03:05:14.0296 2472 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
03:05:14.0390 2472 SLIP - ok
03:05:14.0390 2472 Sparrow - ok
03:05:14.0421 2472 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
03:05:14.0500 2472 splitter - ok
03:05:14.0546 2472 Spooler (cdd2dc6ae65084481e723e746c20539a) C:\WINDOWS\system32\spoolsv.exe
03:05:14.0656 2472 Spooler - ok
03:05:14.0687 2472 sr (ccb3065c3ee63a4515fe84af9e78d1dd) C:\WINDOWS\system32\DRIVERS\sr.sys
03:05:14.0734 2472 sr - ok
03:05:14.0812 2472 srservice (0f30eec6013fcf76693405ec4a7df899) C:\WINDOWS\system32\srsvc.dll
03:05:14.0906 2472 srservice - ok
03:05:15.0015 2472 Srv (5252605079810904e31c332e241cd59b) C:\WINDOWS\system32\DRIVERS\srv.sys
03:05:15.0281 2472 Srv - ok
03:05:15.0328 2472 SSDPSRV (b622a432ef02895de4aa38ac8b85fa4c) C:\WINDOWS\System32\ssdpsrv.dll
03:05:15.0390 2472 SSDPSRV - ok
03:05:15.0562 2472 STacSV (f01f2d9c9d0ff3e0f84f23f7a105e922) c:\archivos de programa\idt\v114_ecs_d_6207.2v7_6099.8xp_g2.0v_rc_sdc\wdm\STacSV.exe
03:05:15.0671 2472 STacSV - ok
03:05:16.0140 2472 STHDA (c6301d9fb30c312f8fae0c29c97d5051) C:\WINDOWS\system32\drivers\sthda.sys
03:05:17.0015 2472 STHDA - ok
03:05:17.0140 2472 stisvc (7226422c95fdf8aa6092ee964912b0df) C:\WINDOWS\system32\wiaservc.dll
03:05:17.0406 2472 stisvc - ok
03:05:17.0515 2472 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
03:05:17.0609 2472 streamip - ok
03:05:17.0625 2472 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
03:05:17.0718 2472 swenum - ok
03:05:17.0765 2472 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
03:05:17.0906 2472 swmidi - ok
03:05:17.0906 2472 SwPrv - ok
03:05:17.0921 2472 symc810 - ok
03:05:17.0921 2472 symc8xx - ok
03:05:17.0921 2472 sym_hi - ok
03:05:17.0937 2472 sym_u3 - ok
03:05:17.0984 2472 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
03:05:18.0078 2472 sysaudio - ok
03:05:18.0140 2472 SysmonLog (f1f6ee807f0112aae2259b253b6ddf89) C:\WINDOWS\system32\smlogsvc.exe
03:05:18.0265 2472 SysmonLog - ok
03:05:18.0359 2472 TapiSrv (04a5b8ea326951db27df60a14f2999ff) C:\WINDOWS\System32\tapisrv.dll
03:05:18.0531 2472 TapiSrv - ok
03:05:18.0671 2472 Tcpip (5f296ea480515a8de6ce2e6d7afd5481) C:\WINDOWS\system32\DRIVERS\tcpip.sys
03:05:18.0890 2472 Tcpip ( UnsignedFile.Multi.Generic ) - warning
03:05:18.0890 2472 Tcpip - detected UnsignedFile.Multi.Generic (1)
03:05:18.0921 2472 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
03:05:19.0015 2472 TDPIPE - ok
03:05:19.0031 2472 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
03:05:19.0125 2472 TDTCP - ok
03:05:19.0156 2472 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
03:05:19.0296 2472 TermDD - ok
03:05:19.0421 2472 TermService (288b20d56d5f0ec4bcc77fbfa5a81740) C:\WINDOWS\System32\termsrv.dll
03:05:19.0625 2472 TermService - ok
03:05:19.0703 2472 Themes (ca70edbf32032ea53f114cb930741cb5) C:\WINDOWS\System32\shsvcs.dll
03:05:19.0796 2472 Themes - ok
03:05:19.0812 2472 TosIde - ok
03:05:19.0843 2472 TrkWks (321761d0d12ee5285ce79ac175cba672) C:\WINDOWS\system32\trkwks.dll
03:05:19.0953 2472 TrkWks - ok
03:05:20.0000 2472 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
03:05:20.0109 2472 Udfs - ok
03:05:20.0109 2472 ultra - ok
03:05:20.0250 2472 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
03:05:20.0562 2472 Update - ok
03:05:20.0640 2472 upnphost (7594203f459abdb5fe53c08d6b1bd53b) C:\WINDOWS\System32\upnphost.dll
03:05:20.0750 2472 upnphost - ok
03:05:20.0765 2472 UPS (575bafeb33af057b13a10579d0dc884a) C:\WINDOWS\System32\ups.exe
03:05:20.0875 2472 UPS - ok
03:05:20.0906 2472 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
03:05:21.0000 2472 usbccgp - ok
03:05:21.0015 2472 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
03:05:21.0109 2472 usbehci - ok
03:05:21.0187 2472 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
03:05:21.0281 2472 usbhub - ok
03:05:21.0328 2472 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
03:05:21.0421 2472 usbstor - ok
03:05:21.0437 2472 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
03:05:21.0546 2472 usbuhci - ok
03:05:21.0578 2472 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
03:05:21.0671 2472 VgaSave - ok
03:05:21.0687 2472 ViaIde - ok
03:05:21.0703 2472 VolSnap (c41ffdc191e6c832e2e53c967eae0a16) C:\WINDOWS\system32\drivers\VolSnap.sys
03:05:21.0796 2472 VolSnap - ok
03:05:21.0906 2472 VSS (60f28de3fae525d026e4d66405b80db8) C:\WINDOWS\System32\vssvc.exe
03:05:22.0046 2472 VSS - ok
03:05:22.0109 2472 W32Time (c71cfacdbfadd819736f61f5738bddc1) C:\WINDOWS\system32\w32time.dll
03:05:22.0250 2472 W32Time - ok
03:05:22.0265 2472 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
03:05:22.0390 2472 Wanarp - ok
03:05:22.0390 2472 WDICA - ok
03:05:22.0437 2472 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
03:05:22.0562 2472 wdmaud - ok
03:05:22.0609 2472 WebClient (340a4fd9017d1ebd1f6dc435282a39dc) C:\WINDOWS\System32\webclnt.dll
03:05:22.0703 2472 WebClient - ok
03:05:22.0859 2472 winmgmt (a5fc75cab140cf6a78e16c3681001872) C:\WINDOWS\system32\wbem\WMIsvc.dll
03:05:23.0031 2472 winmgmt - ok
03:05:23.0062 2472 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\mspmsnsv.dll
03:05:23.0125 2472 WmdmPmSN - ok
03:05:23.0359 2472 Wmi (992c944cd2d05bb9919258e48695af07) C:\WINDOWS\System32\advapi32.dll
03:05:23.0656 2472 Wmi - ok
03:05:23.0734 2472 WmiApSrv (ca1a5270acc0062b13f62ca5a0cd8da8) C:\WINDOWS\system32\wbem\wmiapsrv.exe
03:05:23.0859 2472 WmiApSrv - ok
03:05:24.0203 2472 WMPNetworkSvc (6782482a8ca4b5b5dab4ef0ad78db08f) C:\Archivos de programa\Windows Media Player\WMPNetwk.exe
03:05:24.0750 2472 WMPNetworkSvc - ok
03:05:24.0843 2472 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
03:05:24.0937 2472 WSTCODEC - ok
03:05:24.0953 2472 wuauserv (0b8fc4d0f9d6964713e81ad558b50a71) C:\WINDOWS\system32\wuauserv.dll
03:05:25.0078 2472 wuauserv - ok
03:05:25.0109 2472 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
03:05:25.0187 2472 WudfPf - ok
03:05:25.0218 2472 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
03:05:25.0265 2472 WudfRd - ok
03:05:25.0296 2472 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
03:05:25.0328 2472 WudfSvc - ok
03:05:25.0500 2472 WZCSVC (d2caf9ff9da12f0cc6398c6e331015e4) C:\WINDOWS\System32\wzcsvc.dll
03:05:25.0812 2472 WZCSVC - ok
03:05:25.0875 2472 xmlprov (14fdadcf05a37582399daf1da1de1c7b) C:\WINDOWS\System32\xmlprov.dll
03:05:26.0000 2472 xmlprov - ok
03:05:26.0156 2472 ZSMC303 (7a0cff877a7d3eb99b68d92b6cc992d9) C:\WINDOWS\system32\Drivers\usbVM303.sys
03:05:26.0390 2472 ZSMC303 ( UnsignedFile.Multi.Generic ) - warning
03:05:26.0390 2472 ZSMC303 - detected UnsignedFile.Multi.Generic (1)
03:05:26.0406 2472 MBR (0x1B8) (792f61657fece3d17a9122b4ee282847) \Device\Harddisk0\DR0
03:05:26.0984 2472 \Device\Harddisk0\DR0 - ok
03:05:27.0000 2472 MBR (0x1B8) (2e3619a1e8c6963eee89f8c089cea5b3) \Device\Harddisk1\DR3
03:05:29.0265 2472 \Device\Harddisk1\DR3 - ok
03:05:29.0281 2472 Boot (0x1200) (44bded51303be62b0b6e13b43676baa8) \Device\Harddisk0\DR0\Partition0
03:05:29.0281 2472 \Device\Harddisk0\DR0\Partition0 - ok
03:05:29.0296 2472 Boot (0x1200) (26f20f205f7953c6462385ac5e05beb2) \Device\Harddisk0\DR0\Partition1
03:05:29.0312 2472 \Device\Harddisk0\DR0\Partition1 - ok
03:05:29.0312 2472 ============================================================
03:05:29.0312 2472 Scan finished
03:05:29.0312 2472 ============================================================
03:05:29.0421 3960 Detected object count: 3
03:05:29.0421 3960 Actual detected object count: 3
03:07:42.0218 3960 ddsxeiservice ( UnsignedFile.Multi.Generic ) - skipped by user
03:07:42.0218 3960 ddsxeiservice ( UnsignedFile.Multi.Generic ) - User select action: Skip
03:07:42.0218 3960 Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user
03:07:42.0218 3960 Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip
03:07:42.0218 3960 ZSMC303 ( UnsignedFile.Multi.Generic ) - skipped by user
03:07:42.0218 3960 ZSMC303 ( UnsignedFile.Multi.Generic ) - User select action: Skip
03:09:27.0546 3104 Deinitialize success

Reporte Log de Malwarebytes Anti-malware:
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Versión de la Base de Datos: v2012.05.24.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
bocci :: BOCCI-1083A9B11 [administrador]

24/05/2012 03:17:01 a.m.
mbam-log-2012-05-24 (03-17-01).txt

Tipos de Análisis: Análisis Completo
Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opciones de análisis desactivados: P2P
Objetos examinados: 199837
Tiempo transcurrido: 29 minuto(s), 52 segundo(s)

Procesos en Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Módulos de Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Claves del Registro Detectados: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\sXe Injected (Rogue.WormsRemover) -> En cuarentena y eliminado con éxito.

Valores del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Elementos de Datos del Registro Detectados: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyDocs (PUM.Hijack.StartMenu) -> Malo: (0) Bueno: (1) -> En cuarentena y reparado con éxito.

Carpetas Detectadas: 0
(No se han detectado elementos maliciosos)

Archivos Detectados: 5
C:\Archivos de programa\sXe Injected\uninstall.exe (Rogue.WormsRemover) -> En cuarentena y eliminado con éxito.
C:\Documents and Settings\bocci\7zS78E.tmp\Luna 2000.exe (Trojan.Spambot) -> En cuarentena y eliminado con éxito.
C:\Documents and Settings\Default User\7zS78E.tmp\Luna 2000.exe (Trojan.Spambot) -> En cuarentena y eliminado con éxito.
C:\RECYCLER\S-1-5-21-1935655697-1960408961-1801674531-1003\Dc10.exe (Rogue.WormsRemover) -> En cuarentena y eliminado con éxito.
C:\WINDOWS\system32\config\systemprofile\7zS78E.tmp\Luna 2000.exe (Trojan.Spambot) -> En cuarentena y eliminado con éxito.

fin)

Reporte Log de Eset Online Sanner
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=8ce7740ba57ba948ab07601b924aba77
# end=stopped
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-05-24 08:59:23
# local_time=2012-05-24 03:59:23 (-0500, Hora est. del Pacífico de SA)
# country="Peru"
# lang=3082
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=crash
# scanned=437
# found=0
# cleaned=0
# scan_time=33
# nod_component=V3 Build:0x30000000
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=8ce7740ba57ba948ab07601b924aba77
# end=stopped
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-05-24 09:50:57
# local_time=2012-05-24 04:50:57 (-0500, Hora est. del Pacífico de SA)
# country="Peru"
# lang=3082
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=crash
# scanned=17284
# found=0
# cleaned=0
# scan_time=3033
# nod_component=V3 Build:0x30000000
(yo lo finalice porque quedo colgado en 99% :S )

**Invy** · 24/05/12, 03:55:44

Realiza un análisis completo con Panda ActiveScan 2.0

*IMPORTANTE* al finalizar presiona el símbolo Exportar a:

y en tu próxima respuesta pegas el reporte.

Si tu navegador es Internet Explorer 9, Habilitar la vista de compatibilidad para que te permita ejecutar el online.
Si tu navegador es Firefox 4 instalas IEtab 2 para que te permita realizar el análisis.

**cbocci722** · 24/05/12, 04:04:47

Gracias por contestar!
Leiste los reportes? que dicen? no se si leiste el primer post, yo la formatee a la pc, osea no puede ser un problema de hadware? puede haber quedado alun virus o malware en la pc siendo que la formatee anteriormente?

**Invy** · 24/05/12, 04:16:31

Hola.

Sí, te indico que se han detectado algunos archivos infectado. Sí acabas de formatear y aparecen infecciones pueden ser por varias causas ( entre otras)

- Tienes un USB infectado.
- alguna carpeta de backup con archivos infectado.
- Has visitado página web infectada.
- Has abierto algun correo con dato adjunto infectado.
- Otros.

Realiza el análisis de panda, sí este da OK, daremos un repaso a tú ordenador .

**cbocci722** · 24/05/12, 04:27:05

Malware. FILE: C:\DOCUMENTS AND SETTINGS\BOCCI\COOKIES\[email protected][2].TXT to be deleted.

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER[NOSMMYPICTURES] to be changed to: 0

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER[NOSMMYDOCS] to be changed to: 0

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER[NORECENTDOCSMENU] to be changed to: 0

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[START_SHOWRECENTDOCS] to be changed to: 1

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[START_SHOWMYPICS] to be changed to: 1

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[START_SHOWMYMUSIC] to be changed to: 1

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[HIDEFILEEXT] to be changed to: 0

este nose si es otro reporte o el mismo

Malware. FILE: C:\DOCUMENTS AND SETTINGS\BOCCI\COOKIES\[email protected][2].TXT to be deleted.

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER[NOSMMYPICTURES] to be changed to: 0

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER[NOSMMYDOCS] to be changed to: 0

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER[NORECENTDOCSMENU] to be changed to: 0

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[START_SHOWRECENTDOCS] to be changed to: 1

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[START_SHOWMYPICS] to be changed to: 1

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[START_SHOWMYMUSIC] to be changed to: 1

Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[HIDEFILEEXT] to be changed to: 0

**Invy** · 24/05/12, 04:28:34

Hola.

Copia el reporte completo sin modificar nada

de panda online tal y como indica su manual

**cbocci722** · 24/05/12, 04:29:53

no modifique nada ese es el reporte que me aparecio.. lo copie y lo pegue

**Invy** · 24/05/12, 04:33:34

Pero has analizado con panda online o te has descargado el antivirus panda y has realizado un análisis?

Ese no es un reporte de panda completo, el reporte es como este:

Código HTML:

;*************************************************   **************************************************   **************************************************   ******************************
ANALYSIS: 2012-05-17 00:06:56
PROTECTIONS: 1
MALWARE: 0
SUSPECTS: 2
;*************************************************   **************************************************   **************************************************   ******************************
PROTECTIONS
Description                                  Version                       Active    Updated
;=================================================   ==================================================   ==================================================   ==============================
Microsoft Security Essentials                                              Yes       Yes
;=================================================   ==================================================   ==================================================   ==============================
MALWARE
Id        Description                        Type                Active    Severity  Disinfectable  Disinfected Location
;=================================================   ==================================================   ==================================================   ==============================
;=================================================   ==================================================   ==================================================   ==============================
SUSPECTS
Sent      Location
;=================================================   ==================================================   ==================================================   ==============================
No        c:\program files\browsercompanion\uninstall.exe
No        c:\users\mili\downloads\2x07_ a man without honor   game of thrones online subtitulado - miragameofthrones.com_setup.exe
;=================================================   ==================================================   ==================================================   ==============================
VULNERABILITIES
Id        Severity       Description
;=================================================   ==================================================   ==================================================   ==============================
;=================================================   ==================================================   ==================================================   ==============================

Sí no es igual como este vuelve a anlizar tú máquina, de todas formas es muy raro que lo hayas analizado en pocos minutos

Mi pc se traba (Terminado)

Herramientas

Mi pc se traba (Terminado)

Re: Mi pc se traba

Re: Mi pc se traba

Re: Mi pc se traba

Re: Mi pc se traba

Re: Mi pc se traba

Re: Mi pc se traba

Re: Mi pc se traba

Re: Mi pc se traba

Re: Mi pc se traba