• Registrarse
  • Iniciar sesión


  • Página 2 de 3 PrimeroPrimero 123 ÚltimoÚltimo
    Resultados 11 al 20 de 22

    Explorador de windows se congela

    Hola JPABLOSP con el permiso de MsTheKing98. Pega el reporte de ComboFix que lo encontrás en...C:\ComboFix.txt...

    1. #11
      Ex-Colaborador Avatar de Damianl_77
      Registrado
      ene 2008
      Ubicación
      Argentina
      Mensajes
      23.694

      Re: Explorador de windows se congela

      Hola JPABLOSP con el permiso de MsTheKing98.

      Pega el reporte de ComboFix que lo encontrás en...C:\ComboFix.txt

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    2. #12
      Usuario Avatar de JPABLOSP
      Registrado
      dic 2007
      Ubicación
      peru
      Mensajes
      27

      Re: Explorador de windows se congela

      Cita Originalmente publicado por Damianl_77 Ver Mensaje
      Hola JPABLOSP con el permiso de MsTheKing98.

      Pega el reporte de ComboFix que lo encontrás en...C:\ComboFix.txt

      Hola

      disculpe la demora tuve que viajar

      bueno acabo de pasarle el combofix este es el reporte

      ComboFix 12-08-24.02 - Pablin 24/08/2012 15:55:52.2.2 - x86
      Running from: c:\users\Pablin\Desktop\ComboFix.exe
      AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
      SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
      SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\users\Pablin\AppData\Local\Temp\jna3143761824769657999.dll
      c:\users\Pablin\AppData\Roaming\.#
      c:\users\Pablin\mp3DC216.exe
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-07-24 to 2012-08-24 )))))))))))))))))))))))))))))))
      .
      .
      2012-08-24 21:04 . 2012-08-24 21:04 -------- d-----w- c:\users\Public\AppData\Local\temp
      2012-08-24 21:04 . 2012-08-24 21:04 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-08-24 07:11 . 2012-08-24 07:11 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A12A4264-C654-4FA4-B8FB-9915537525F8}\offreg.dll
      2012-08-24 07:10 . 2012-08-01 22:51 7023536 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A12A4264-C654-4FA4-B8FB-9915537525F8}\mpengine.dll
      2012-08-13 23:10 . 2012-08-13 23:10 -------- d-----w- c:\users\Pablin\AppData\Local\Apple Computer
      2012-08-03 14:50 . 2012-08-08 13:45 -------- d-----w- c:\program files\CamStudio 2.6b
      2012-08-03 14:50 . 2010-10-24 05:56 49664 ----a-w- c:\windows\system32\CamCodec.dll
      2012-08-02 18:39 . 2012-08-08 13:45 -------- d-----w- c:\program files\Cheat Engine 6.2
      2012-07-31 21:29 . 2012-07-31 21:54 -------- d-----w- C:\UsbFix
      2012-07-27 19:42 . 2012-07-27 19:42 -------- d-----w- c:\users\Pablin\AppData\Roaming\SUPERAntiSpyware.com
      2012-07-27 19:42 . 2012-07-27 19:42 -------- d-----w- c:\program files\SUPERAntiSpyware
      2012-07-27 19:42 . 2012-07-27 19:42 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
      2012-07-26 20:03 . 2012-07-26 20:03 -------- d-----w- c:\program files\bobyte
      2012-07-26 19:56 . 2012-07-26 19:56 -------- d-----w- c:\users\Pablin\AppData\Roaming\Malwarebytes
      2012-07-26 19:53 . 2012-07-26 19:53 -------- d-----w- c:\programdata\Malwarebytes
      2012-07-26 19:53 . 2012-07-03 18:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-07-26 19:53 . 2012-07-27 13:12 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-08-21 09:13 . 2012-04-13 14:07 355632 ----a-w- c:\windows\system32\drivers\aswSP.sys
      2012-08-21 09:13 . 2012-04-13 14:07 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
      2012-08-21 09:13 . 2012-04-13 14:07 729752 ----a-w- c:\windows\system32\drivers\aswSnx.sys
      2012-08-21 09:13 . 2012-04-13 14:07 58680 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
      2012-08-21 09:13 . 2012-02-27 14:53 44784 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
      2012-08-21 09:13 . 2012-04-13 14:07 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
      2012-08-21 09:12 . 2011-12-13 20:56 41224 ----a-w- c:\windows\avastSS.scr
      2012-08-21 09:12 . 2012-04-13 14:06 227648 ----a-w- c:\windows\system32\aswBoot.exe
      2012-08-14 18:58 . 2012-04-09 14:01 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
      2012-08-14 18:58 . 2011-12-13 22:17 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
      2012-07-31 20:33 . 2012-04-19 15:49 13088 ----a-w- c:\users\Pablin\advanced_ip_scanner_MAC.bin
      2012-07-11 23:22 . 2011-12-30 23:53 83392 ----a-w- c:\windows\system32\LMIRfsClientNP.dll
      2012-07-11 23:22 . 2011-12-30 23:53 52128 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\LMIproc.dll
      2012-07-11 23:22 . 2011-12-30 23:53 30624 ----a-w- c:\windows\system32\LMIport.dll
      2012-07-11 23:22 . 2011-12-30 23:53 87456 ----a-w- c:\windows\system32\LMIinit.dll
      2012-06-14 23:31 . 2012-06-11 15:55 583733 ----a-w- c:\windows\system32\~.tmp
      2012-05-31 17:25 . 2011-12-13 20:57 237072 ------w- c:\windows\system32\MpSigStub.exe
      2012-07-20 12:57 . 2011-12-14 17:41 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
      @="{472083B0-C522-11CF-8763-00608CC02F24}"
      [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
      2012-08-21 09:12 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RoboForm"="c:\program files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [2012-06-14 109336]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-03 98304]
      "tvncontrol"="c:\program files\TightVNC\tvnserver.exe" [2010-07-08 815704]
      "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
      "LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2011-09-16 63048]
      "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      "SoftwareSASGeneration"= 1 (0x1)
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
      "aux1"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
      Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
      @=""
      .
      [HKLM\~\startupfolder\C:^Users^Pablin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registros de Seagate NA0C4734.lnk]
      path=c:\users\Pablin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registros de Seagate NA0C4734.lnk
      backup=c:\windows\pss\Registros de Seagate NA0C4734.lnk.Startup
      backupExtension=.Startup
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
      2012-01-03 13:10 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
      2010-03-06 08:44 500208 ------w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
      2010-02-22 09:57 406992 ----a-w- c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
      2012-02-21 02:28 59240 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
      2010-03-13 19:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
      2007-06-28 00:03 152872 ----a-w- c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCBoot]
      2011-07-23 15:36 1434624 ----a-w- c:\ccboot\CCBoot.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
      2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
      2012-07-11 20:46 138096 ----atw- c:\users\Pablin\AppData\Local\Facebook\Update\FacebookUpdate.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPUsageTrackingLEDM]
      2009-08-04 22:21 30264 ----a-w- c:\program files\HP\HP UT LEDM\bin\hppusg.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
      2012-03-08 23:50 4280184 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
      2007-03-01 20:57 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
      2012-04-10 23:05 3089488 ----a-w- c:\program files\Pando Networks\Media Booster\PMB.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
      2012-04-19 01:56 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seagate Dashboard]
      2011-06-01 16:42 79112 ----a-w- c:\program files\Seagate\Seagate Dashboard\MemeoLauncher.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
      2012-08-21 00:04 1353080 ----a-w- c:\program files\Steam\Steam.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
      2012-07-09 23:38 4777856 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
      2010-02-19 18:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
      2012-03-05 21:49 740216 ----a-w- c:\program files\uTorrent\uTorrent.exe
      .
      R2 gupdate;Google Update Servicio (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
      R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
      R3 BthAvrcp;Perfil AVRCP Bluetooth;c:\windows\system32\DRIVERS\BthAvrcp.sys [x]
      R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
      R3 GGSAFERDriver;GGSAFER Driver;c:\program files\Garena Plus\Room\safedrv.sys [x]
      R3 gupdatem;Google Update Servicio (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
      R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [x]
      R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [x]
      R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
      R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
      R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
      S1 aswSnx;aswSnx; [x]
      S1 aswSP;aswSP; [x]
      S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [x]
      S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [x]
      S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [x]
      S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
      S2 aswFsBlk;aswFsBlk; [x]
      S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
      S2 CCBoot;CCBoot;c:\ccboot\CCBoot.exe [x]
      S2 HP LaserJet Service;HP LaserJet Service;c:\program files\HP\HPLaserJetService\HPLaserJetService.exe [x]
      S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [x]
      S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn\x86\LMIGuardianSvc.exe [x]
      S2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\RaInfo.sys [x]
      S2 SeagateDashboardService;Seagate Dashboard Service;c:\program files\Seagate\Seagate Dashboard\SeagateDashboardService.exe [x]
      S2 TGCM_ImportWiFiSvc;TGCM_ImportWiFiSvc;c:\program files\Movistar\Escritorio Movistar Latam\ImpWiFiSvc.exe [x]
      S2 tvnserver;TightVNC Server;c:\program files\TightVNC\tvnserver.exe [x]
      S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
      S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
      S3 e1kexpress;Controlador de conexión de red PCI Express Intel(R) PRO/1000 K;c:\windows\system32\DRIVERS\e1k6032.sys [x]
      S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
      HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-08-24 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-09 18:58]
      .
      2012-08-24 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3257761072-557425364-3069674434-1000Core.job
      - c:\users\Pablin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-05-10 20:46]
      .
      2012-08-24 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3257761072-557425364-3069674434-1000UA.job
      - c:\users\Pablin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-05-10 20:46]
      .
      2012-08-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2011-12-13 20:57]
      .
      2012-08-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2011-12-13 20:57]
      .
      .
      ------- Supplementary Scan -------
      .
      TCP: Interfaces\{49176CB2-1DA0-4E01-91FD-BD30E22FC23C}: NameServer = 192.168.0.1
      DPF: {8DD728F1-7A97-4606-968A-F3F27D05ED33} - hxxp://192.168.0.33/Digia2.cab
      FF - ProfilePath - c:\users\Pablin\AppData\Roaming\Mozilla\Firefox\Profiles\kg4v1wj3.default\
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      --------------------- DLLs Loaded Under Running Processes ---------------------
      .
      - - - - - - - > 'Explorer.exe'(3892)
      c:\program files\FileZilla FTP Client\fzshellext.dll
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files\AVAST Software\Avast\AvastSvc.exe
      c:\windows\system32\atieclxx.exe
      c:\program files\LogMeIn\x86\RaMaint.exe
      c:\program files\LogMeIn\x86\LogMeIn.exe
      c:\windows\System32\vds.exe
      c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
      c:\windows\system32\WUDFHost.exe
      c:\windows\servicing\TrustedInstaller.exe
      c:\windows\system32\taskhost.exe
      c:\windows\system32\conhost.exe
      c:\windows\system32\sppsvc.exe
      c:\program files\Windows Media Player\wmpnetwk.exe
      .
      **************************************************************************
      .
      Completion time: 2012-08-24 16:13:56 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-08-24 21:13
      ComboFix2.txt 2012-06-26 23:11
      ComboFix3.txt 2012-04-19 16:56
      ComboFix4.txt 2011-11-18 22:18
      .
      Pre-Run: 28,113,838,080 bytes libres
      Post-Run: 29,666,537,472 bytes libres
      .
      - - End Of File - - 999A6BAEA0EC826A14B1B176B1E0AC7A

    3. #13
      Ex-Colaborador Avatar de Damianl_77
      Registrado
      ene 2008
      Ubicación
      Argentina
      Mensajes
      23.694

      Re: Explorador de windows se congela

      En realidad no te pedi que ejecutes ComboFix, lo que te pedí es que pegues el reporte que tenias, de todas formas como pasaron varios días desde mi ultima respuesta, fue mejor que lo vuelvas a ejecutar para tener un reporte mas actualizado

      Realiza estos pasos

      • Clic en INICIO > EJECUTAR >
      • Y ahí pones notepad.exe y ACEPTAR
      • Ahora copia y pega estos archivos dentro del Notepad (menos la palabra código)




      Código:
      KillAll::
      
      
      Folder::
      c:\users\Pablin\AppData\Local\Facebook
      
      ClearJavaCache::
      
      Registry::
      [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
      
      AtJob::
      c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3257761072-557425364-3069674434-1000UA.job


      • Graba este archivo con el nombre CFScript.txt y déjalo en tu escritorio.
      • Antes de usar el CFScript....
      • Desactiva temporalmente el Antivirus y/o Antispyware..
      • Cierra todas las ventanas abiertas. Arrastras el block de notas al icono de ComboFix que tenes en el escritorio, como muestra la imagen de abajo.



      • ComboFix comenzará otra vez a ejecutarse, Cuando termine este generara un reporte que tendrías que pegar en este mismo mensaje.

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #14
      Usuario Avatar de JPABLOSP
      Registrado
      dic 2007
      Ubicación
      peru
      Mensajes
      27

      Re: Explorador de windows se congela

      Hola
      si entendi la respuesta anterior solo que el reporte habia sido eliminado

      bueno aqui lo solicitado

      ComboFix 12-08-25.04 - Pablin 25/08/2012 9:29.3.2 - x86
      Microsoft Windows 7 Professional 6.1.7601.1.1252.51.3082.18.2029.971 [GMT -5:00]
      Running from: c:\users\Pablin\Desktop\ComboFix.exe
      Command switches used :: c:\users\Pablin\Desktop\CFScript.txt
      AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
      SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
      SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\users\Pablin\AppData\Local\Facebook
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\FacebookCrashHandler.exe
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdate.exe
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdateHelper.msi
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ar.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bg.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bn.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ca.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_cs.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_da.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_de.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_el.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en-GB.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es-419.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_et.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fa.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fi.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fil.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fr.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_gu.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hi.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hr.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hu.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_id.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_is.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_it.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_iw.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ja.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_kn.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ko.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lt.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lv.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ml.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_mr.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ms.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_nl.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_no.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_or.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pl.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-BR.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-PT.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ro.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ru.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sk.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sl.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sr.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sv.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ta.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_te.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_th.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_tr.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_uk.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ur.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_vi.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-CN.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-TW.dll
      c:\users\Pablin\AppData\Local\Facebook\Update\FacebookUpdate.exe
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\FacebookVideoCalling
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\call256.dbb
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\callmember256.dbb
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\chatmsg1024.dbb
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\config.lck
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\config.xml
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\contactgroup256.dbb
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\conversation256.dbb
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\index2.dat
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\main.lock
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\participant256.dbb
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\fb#3aac7vsvd0abkianm71wdzfsxdum-b5rc_sacpxqfqift7z14ne_5_wpzy4xxvzpvgp5c\profile256.dbb
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\shared.lck
      c:\users\Pablin\AppData\Local\Facebook\Video\Common\shared.xml
      c:\users\Pablin\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
      c:\users\Pablin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
      c:\users\Pablin\AppData\Local\Facebook\Video\Skype\third-party_attributions.txt
      c:\users\Pablin\AppData\Local\Temp\jna7707400438415573242.dll
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-07-25 to 2012-08-25 )))))))))))))))))))))))))))))))
      .
      .
      2012-08-25 14:37 . 2012-08-25 14:37 -------- d-----w- c:\users\Public\AppData\Local\temp
      2012-08-25 14:37 . 2012-08-25 14:37 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-08-24 07:11 . 2012-08-24 21:18 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A12A4264-C654-4FA4-B8FB-9915537525F8}\offreg.dll
      2012-08-24 07:10 . 2012-08-01 22:51 7023536 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A12A4264-C654-4FA4-B8FB-9915537525F8}\mpengine.dll
      2012-08-13 23:10 . 2012-08-13 23:10 -------- d-----w- c:\users\Pablin\AppData\Local\Apple Computer
      2012-08-03 14:50 . 2012-08-08 13:45 -------- d-----w- c:\program files\CamStudio 2.6b
      2012-08-03 14:50 . 2010-10-24 05:56 49664 ----a-w- c:\windows\system32\CamCodec.dll
      2012-08-02 18:39 . 2012-08-08 13:45 -------- d-----w- c:\program files\Cheat Engine 6.2
      2012-07-31 21:29 . 2012-07-31 21:54 -------- d-----w- C:\UsbFix
      2012-07-27 19:42 . 2012-07-27 19:42 -------- d-----w- c:\users\Pablin\AppData\Roaming\SUPERAntiSpyware.com
      2012-07-27 19:42 . 2012-07-27 19:42 -------- d-----w- c:\program files\SUPERAntiSpyware
      2012-07-27 19:42 . 2012-07-27 19:42 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
      2012-07-26 20:03 . 2012-07-26 20:03 -------- d-----w- c:\program files\bobyte
      2012-07-26 19:56 . 2012-07-26 19:56 -------- d-----w- c:\users\Pablin\AppData\Roaming\Malwarebytes
      2012-07-26 19:53 . 2012-07-26 19:53 -------- d-----w- c:\programdata\Malwarebytes
      2012-07-26 19:53 . 2012-07-03 18:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-07-26 19:53 . 2012-07-27 13:12 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-08-21 09:13 . 2012-04-13 14:07 355632 ----a-w- c:\windows\system32\drivers\aswSP.sys
      2012-08-21 09:13 . 2012-04-13 14:07 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
      2012-08-21 09:13 . 2012-04-13 14:07 729752 ----a-w- c:\windows\system32\drivers\aswSnx.sys
      2012-08-21 09:13 . 2012-04-13 14:07 58680 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
      2012-08-21 09:13 . 2012-02-27 14:53 44784 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
      2012-08-21 09:13 . 2012-04-13 14:07 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
      2012-08-21 09:12 . 2011-12-13 20:56 41224 ----a-w- c:\windows\avastSS.scr
      2012-08-21 09:12 . 2012-04-13 14:06 227648 ----a-w- c:\windows\system32\aswBoot.exe
      2012-08-14 18:58 . 2012-04-09 14:01 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
      2012-08-14 18:58 . 2011-12-13 22:17 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
      2012-07-31 20:33 . 2012-04-19 15:49 13088 ----a-w- c:\users\Pablin\advanced_ip_scanner_MAC.bin
      2012-07-11 23:22 . 2011-12-30 23:53 83392 ----a-w- c:\windows\system32\LMIRfsClientNP.dll
      2012-07-11 23:22 . 2011-12-30 23:53 52128 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\LMIproc.dll
      2012-07-11 23:22 . 2011-12-30 23:53 30624 ----a-w- c:\windows\system32\LMIport.dll
      2012-07-11 23:22 . 2011-12-30 23:53 87456 ----a-w- c:\windows\system32\LMIinit.dll
      2012-06-14 23:31 . 2012-06-11 15:55 583733 ----a-w- c:\windows\system32\~.tmp
      2012-05-31 17:25 . 2011-12-13 20:57 237072 ------w- c:\windows\system32\MpSigStub.exe
      2012-07-20 12:57 . 2011-12-14 17:41 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
      @="{472083B0-C522-11CF-8763-00608CC02F24}"
      [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
      2012-08-21 09:12 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RoboForm"="c:\program files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [2012-06-14 109336]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-03 98304]
      "tvncontrol"="c:\program files\TightVNC\tvnserver.exe" [2010-07-08 815704]
      "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
      "LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2011-09-16 63048]
      "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      "SoftwareSASGeneration"= 1 (0x1)
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
      "aux1"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
      Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
      @=""
      .
      [HKLM\~\startupfolder\C:^Users^Pablin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registros de Seagate NA0C4734.lnk]
      path=c:\users\Pablin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registros de Seagate NA0C4734.lnk
      backup=c:\windows\pss\Registros de Seagate NA0C4734.lnk.Startup
      backupExtension=.Startup
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
      2012-01-03 13:10 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
      2010-03-06 08:44 500208 ------w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
      2010-02-22 09:57 406992 ----a-w- c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
      2012-02-21 02:28 59240 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
      2010-03-13 19:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
      2007-06-28 00:03 152872 ----a-w- c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCBoot]
      2011-07-23 15:36 1434624 ----a-w- c:\ccboot\CCBoot.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
      2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPUsageTrackingLEDM]
      2009-08-04 22:21 30264 ----a-w- c:\program files\HP\HP UT LEDM\bin\hppusg.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
      2012-03-08 23:50 4280184 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
      2007-03-01 20:57 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
      2012-04-10 23:05 3089488 ----a-w- c:\program files\Pando Networks\Media Booster\PMB.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
      2012-04-19 01:56 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seagate Dashboard]
      2011-06-01 16:42 79112 ----a-w- c:\program files\Seagate\Seagate Dashboard\MemeoLauncher.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
      2012-08-21 00:04 1353080 ----a-w- c:\program files\Steam\Steam.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
      2012-07-09 23:38 4777856 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
      2010-02-19 18:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
      2012-03-05 21:49 740216 ----a-w- c:\program files\uTorrent\uTorrent.exe
      .
      R2 gupdate;Google Update Servicio (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
      R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
      R3 BthAvrcp;Perfil AVRCP Bluetooth;c:\windows\system32\DRIVERS\BthAvrcp.sys [x]
      R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
      R3 GGSAFERDriver;GGSAFER Driver;c:\program files\Garena Plus\Room\safedrv.sys [x]
      R3 gupdatem;Google Update Servicio (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
      R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [x]
      R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [x]
      R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
      R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
      R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
      S1 aswSnx;aswSnx; [x]
      S1 aswSP;aswSP; [x]
      S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [x]
      S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [x]
      S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [x]
      S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
      S2 aswFsBlk;aswFsBlk; [x]
      S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
      S2 CCBoot;CCBoot;c:\ccboot\CCBoot.exe [x]
      S2 HP LaserJet Service;HP LaserJet Service;c:\program files\HP\HPLaserJetService\HPLaserJetService.exe [x]
      S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [x]
      S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn\x86\LMIGuardianSvc.exe [x]
      S2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\RaInfo.sys [x]
      S2 SeagateDashboardService;Seagate Dashboard Service;c:\program files\Seagate\Seagate Dashboard\SeagateDashboardService.exe [x]
      S2 TGCM_ImportWiFiSvc;TGCM_ImportWiFiSvc;c:\program files\Movistar\Escritorio Movistar Latam\ImpWiFiSvc.exe [x]
      S2 tvnserver;TightVNC Server;c:\program files\TightVNC\tvnserver.exe [x]
      S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
      S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
      S3 e1kexpress;Controlador de conexión de red PCI Express Intel(R) PRO/1000 K;c:\windows\system32\DRIVERS\e1k6032.sys [x]
      S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
      HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-08-25 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-09 18:58]
      .
      2012-08-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2011-12-13 20:57]
      .
      2012-08-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2011-12-13 20:57]
      .
      .
      ------- Supplementary Scan -------
      .
      TCP: Interfaces\{49176CB2-1DA0-4E01-91FD-BD30E22FC23C}: NameServer = 192.168.0.1
      DPF: {8DD728F1-7A97-4606-968A-F3F27D05ED33} - hxxp://192.168.0.33/Digia2.cab
      FF - ProfilePath - c:\users\Pablin\AppData\Roaming\Mozilla\Firefox\Profiles\kg4v1wj3.default\
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files\AVAST Software\Avast\AvastSvc.exe
      c:\windows\system32\atieclxx.exe
      c:\windows\system32\taskhost.exe
      c:\program files\LogMeIn\x86\RaMaint.exe
      c:\program files\LogMeIn\x86\LogMeIn.exe
      c:\windows\System32\vds.exe
      c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
      c:\windows\system32\WUDFHost.exe
      c:\windows\system32\conhost.exe
      c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
      c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
      c:\program files\Windows Media Player\wmpnetwk.exe
      c:\windows\servicing\TrustedInstaller.exe
      c:\windows\system32\sppsvc.exe
      .
      **************************************************************************
      .
      Completion time: 2012-08-25 09:43:43 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-08-25 14:43
      ComboFix2.txt 2012-08-24 21:13
      ComboFix3.txt 2012-06-26 23:11
      ComboFix4.txt 2012-04-19 16:56
      ComboFix5.txt 2012-08-25 14:28
      .
      Pre-Run: 20,391,747,584 bytes libres
      Post-Run: 20,384,411,648 bytes libres
      .
      - - End Of File - - BB49CEBF7AB2D4C9F41BE06BA4D77625

    5. #15
      Ex-Colaborador Avatar de Damianl_77
      Registrado
      ene 2008
      Ubicación
      Argentina
      Mensajes
      23.694

      Re: Explorador de windows se congela

      Si no entendiste no te preocupes

      Tendrías que comentar como se encuentra funcionando la PC en estos momentos

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #16
      Usuario Avatar de JPABLOSP
      Registrado
      dic 2007
      Ubicación
      peru
      Mensajes
      27

      Re: Explorador de windows se congela

      Parecia que ya pero, esta peor

      saludos

    7. #17
      Ex-Colaborador Avatar de Damianl_77
      Registrado
      ene 2008
      Ubicación
      Argentina
      Mensajes
      23.694

      Re: Explorador de windows se congela

      Realizá lo siguiente:

      Descargar OTL en el escritorio.
      • Haga doble clic sobre el icono para ejecutarla.
        • Asegúrese de que todas las ventanas estén cerradas y que no se interrumpa la ejecución.
      • Marque la opción Analizar todos
      • Haga clic en el botón Analizar.
      • No modifique alguna otra configuración a menos que se le indique.
      • Sea paciente, el escaneo se puede llevar un tiempo.
        • Cuando finalice la exploración, se abrirán dos ventanas con el block de notas: OTL.Txt y Extras.Txt, estos se guardan en el escritorio.
        • Copie (Editar-> Seleccionar todo, Editar-> Copiar) el contenido del archivo OTL.txt y péguelo en la siguiente respuesta.
      • Cierre la herramienta al terminar el proceso.


      Salu2!!.

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #18
      Usuario Avatar de JPABLOSP
      Registrado
      dic 2007
      Ubicación
      peru
      Mensajes
      27

      Re: Explorador de windows se congela

      Lo solicitado

      PARTE 1
      OTL logfile created on: 05/09/2012 03:27:57 p.m. - Run 1
      OTL by OldTimer - Version 3.2.61.0 Folder = C:\Users\Pablin\Desktop
      Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 0000280a | Country: Perú | Language: ESR | Date Format: dd/MM/yyyy

      1.98 Gb Total Physical Memory | 0.62 Gb Available Physical Memory | 31.17% Memory free
      3.96 Gb Paging File | 2.46 Gb Available in Paging File | 62.13% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 439.45 Gb Total Space | 40.79 Gb Free Space | 9.28% Space Free | Partition Type: NTFS
      Drive D: | 244.14 Gb Total Space | 117.53 Gb Free Space | 48.14% Space Free | Partition Type: NTFS
      Drive G: | 492.06 Gb Total Space | 68.26 Gb Free Space | 13.87% Space Free | Partition Type: NTFS
      Drive H: | 247.91 Gb Total Space | 30.15 Gb Free Space | 12.16% Space Free | Partition Type: NTFS
      Drive J: | 931.51 Gb Total Space | 414.10 Gb Free Space | 44.45% Space Free | Partition Type: NTFS

      Computer Name: SOP-PC | User Name: Pablin | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - [2012/09/05 15:26:35 | 000,599,040 | ---- | M] (OldTimer Tools) -- C:\Users\Pablin\Desktop\OTL.exe
      PRC - [2012/08/31 20:45:35 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
      PRC - [2012/08/31 09:52:22 | 000,021,432 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
      PRC - [2012/08/31 09:52:14 | 003,524,536 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
      PRC - [2012/08/31 09:52:12 | 000,964,024 | ---- | M] (Samsung) -- C:\Program Files\Samsung\Kies\Kies.exe
      PRC - [2012/08/21 04:12:26 | 004,282,728 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
      PRC - [2012/08/21 04:12:25 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      PRC - [2012/07/11 18:23:19 | 000,136,616 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\ramaint.exe
      PRC - [2012/07/11 18:22:32 | 000,374,184 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
      PRC - [2012/06/15 12:45:21 | 001,535,176 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_3_300_257.exe
      PRC - [2012/06/14 16:39:46 | 000,109,336 | ---- | M] (Siber Systems) -- C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
      PRC - [2012/02/17 10:37:46 | 015,963,936 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
      PRC - [2012/01/03 0842 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
      PRC - [2011/09/16 1450 | 000,390,528 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LogMeIn.exe
      PRC - [2011/09/16 1450 | 000,063,048 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
      PRC - [2011/08/11 18:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
      PRC - [2011/07/23 10:36:40 | 001,434,624 | ---- | M] (Youngzsoft) -- C:\CCBoot\CCBoot.exe
      PRC - [2011/06/09 13:06:06 | 000,507,624 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
      PRC - [2011/06/01 11:42:28 | 000,014,088 | ---- | M] (Memeo) -- C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe
      PRC - [2011/02/25 00:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
      PRC - [2010/11/20 07:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
      PRC - [2010/09/29 08:08:58 | 000,200,624 | ---- | M] (Telefónica I+D) -- C:\Program Files\Movistar\Escritorio Movistar Latam\ImpWiFiSvc.exe
      PRC - [2010/07/08 08:28:56 | 000,815,704 | ---- | M] (GlavSoft LLC.) -- C:\Program Files\TightVNC\tvnserver.exe
      PRC - [2010/07/08 08:28:56 | 000,493,656 | ---- | M] (TightVNC Group) -- C:\Program Files\TightVNC\vncviewer.exe
      PRC - [2010/04/07 15:57:42 | 000,099,896 | R--- | M] (HP) -- C:\Windows\System32\HPSIsvc.exe
      PRC - [2010/03/02 23:12:32 | 000,372,736 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
      PRC - [2010/03/02 23:11:58 | 000,172,032 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
      PRC - [2009/06/24 10:57:04 | 000,136,704 | ---- | M] (HP) -- C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe


      ========== Modules (No Company Name) ==========

      MOD - [2012/09/03 14:44:08 | 000,115,137 | ---- | M] () -- C:\Users\Pablin\AppData\Local\Temp\fbe2808e-2380-4f14-a1fa-3fa9c3a364e8\CliSecureRT.dll
      MOD - [2012/09/03 14:38:39 | 000,762,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\1378a1c9290882206f4d5a6561bfc5d7\System.Runtime.Remoting.ni.dll
      MOD - [2012/09/03 14:36:09 | 015,399,936 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\3a216a4a613adc3bbfcc0b643301f029\Kies.Theme.ni.dll
      MOD - [2012/09/03 14:36:00 | 000,608,256 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePodcast\843718248e29fd2361e1fc2a436cd87b\DevicePodcast.ni.dll
      MOD - [2012/09/03 14:35:59 | 000,290,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceVideo\185fbd46650f053020d7721638d38f87\DeviceVideo.ni.dll
      MOD - [2012/09/03 14:35:56 | 000,367,104 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePhoto\13815056ebee8b8afa9342474d69afdd\DevicePhoto.ni.dll
      MOD - [2012/09/03 14:35:55 | 002,778,112 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PodcastService\26ad52037a5e2ae0840c5c6b9a0424f7\PodcastService.ni.dll
      MOD - [2012/09/03 14:35:55 | 000,299,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceMusic\86fe46bf53e4754de001f055d571904c\DeviceMusic.ni.dll
      MOD - [2012/09/03 14:35:53 | 000,461,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\VideoManager\661660948ec1e224cf5b1d32582cb50d\VideoManager.ni.dll
      MOD - [2012/09/03 14:35:52 | 001,143,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Podcaster\79345d3e7e10f30b66665eb66b25bcdd\Podcaster.ni.dll
      MOD - [2012/09/03 14:35:50 | 000,607,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PhotoManager\24b5fcc6040dc5f8906288cff1f28bbe\PhotoManager.ni.dll
      MOD - [2012/09/03 14:35:34 | 005,678,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceHost\b81f71f7a2e07282b5aa77857c4df0e5\DeviceHost.ni.dll
      MOD - [2012/09/03 14:35:29 | 000,033,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\6bae8a17e17d3915e0d62dbe083f0af6\Kies.Common.DeviceServiceLib.FirmwareUpdate.FirmwareUpdateAgentHelper.ni.dll
      MOD - [2012/09/03 14:35:25 | 001,843,712 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Phonebook\c07ec72fab1a4e9c4319f4ecc05b765c\Phonebook.ni.dll
      MOD - [2012/09/03 14:35:08 | 001,007,104 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CPKTMusicPlugin\3582ba0b7dd6a0d9aae4a3a98c793517\CPKTMusicPlugin.ni.dll
      MOD - [2012/09/03 14:35:04 | 000,964,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\MusicManager\90085f50844b5ea4f7524b359b23b8bc\MusicManager.ni.dll
      MOD - [2012/09/03 14:34:59 | 000,320,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\EBookManager\afa14f2ce4bd806c9ed003495597bfda\EBookManager.ni.dll
      MOD - [2012/09/03 14:34:58 | 000,391,168 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\BATPlugin\8f20efcbe17a47359075594ffa97bade\BATPlugin.ni.dll
      MOD - [2012/09/03 14:34:57 | 000,031,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AllShareController\ce5d61d5e803548d099bc8adfd324ef2\AllShareController.ni.dll
      MOD - [2012/09/03 14:34:50 | 000,507,392 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MediaDB\d61f17400c04c107142e4bb8bbbe55db\Kies.Common.MediaDB.ni.dll
      MOD - [2012/09/03 14:34:49 | 000,064,000 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.AllShare\309526017063dbcdc9cba8b8aa88db14\Kies.Common.AllShare.ni.dll
      MOD - [2012/09/03 14:34:49 | 000,029,184 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.StoreMa#\903749c41196d3db0152ce479e60b171\Kies.Common.StoreManager.ni.dll
      MOD - [2012/09/03 14:34:48 | 000,232,960 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\eb21089b9e167802a28b0148479dbe72\ASF_cSharpAPI.ni.dll
      MOD - [2012/09/03 14:34:46 | 000,278,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\3cd0da66a004a8504aa986c13c346255\Kies.Common.DeviceServiceLib.FirmwareUpdate.Common.ni.dll
      MOD - [2012/09/03 14:34:45 | 000,189,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\038e6e766ad8453553c5b8015a112b01\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll
      MOD - [2012/09/03 14:34:44 | 000,565,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\f2d7d03de022bd4dd6c3636af133606b\Kies.Common.DeviceServiceLib.FileService.ni.dll
      MOD - [2012/09/03 14:34:44 | 000,174,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DevFileServ#\579cb53de38ef2dd9f9843850fd9ff80\Interop.DevFileServiceLib.ni.dll
      MOD - [2012/09/03 14:34:43 | 000,566,784 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\9715978ac1fdd53aa8902f3f4586a23c\Kies.Common.DeviceServiceLib.DeviceDataService.ni.dll
      MOD - [2012/09/03 14:34:41 | 000,184,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\f51f3d1d3bad861fb6bea19af003374f\Kies.Common.DeviceServiceLib.Interface.ni.dll
      MOD - [2012/09/03 14:34:40 | 001,025,536 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\78c0412d27ea958921eeef756cee86b2\Kies.Common.DeviceService.ni.dll
      MOD - [2012/09/03 14:34:40 | 000,902,656 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\d6b885fc53f0ffb002f385ccb4bdc0d5\Kies.Common.DeviceServiceLib.DeviceManagement.ni.dll
      MOD - [2012/09/03 14:34:34 | 001,218,560 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\888be382c48887c830026806a9587e31\System.Management.ni.dll
      MOD - [2012/09/03 14:34:32 | 002,188,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Multime#\9a9d0135bcc07b45332e61ebb4563464\Kies.Common.Multimedia.ni.dll
      MOD - [2012/09/03 14:34:30 | 000,052,224 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.MP3FileInfo#\a76703621ac67f3cda0554cb794e29ce\Interop.MP3FileInfoCOMLib.ni.dll
      MOD - [2012/09/03 14:34:30 | 000,032,256 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.OGGFileInfo#\9c88ec5183986cb5c635115a534f5ca8\Interop.OGGFileInfoCOMLib.ni.dll
      MOD - [2012/09/03 14:34:29 | 000,030,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.PRPLAYERCOR#\45f25a54fd24e2feaba13e5d43efd4d2\Interop.PRPLAYERCORELib.ni.dll
      MOD - [2012/09/03 14:34:28 | 000,171,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.P3MPINTERFA#\e7121f68e1785a81149beb009386d980\Interop.P3MPINTERFACECTRLLib.ni.dll
      MOD - [2012/09/03 14:34:22 | 000,183,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MainUI\1b2950977ebe85ec9980e659e41d4356\Kies.Common.MainUI.ni.dll
      MOD - [2012/09/03 14:34:20 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DBManag#\202119e0559448081f478136b1b0f425\Kies.Common.DBManager.ni.dll
      MOD - [2012/09/03 14:34:19 | 000,530,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ICSharpCode.SharpZi#\e5772845aa430768323e6f4d759be7e5\ICSharpCode.SharpZipLib.ni.dll
      MOD - [2012/09/03 14:34:19 | 000,395,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CabLib\8203919fd114e85d1de5673be3a77b39\CabLib.ni.dll
      MOD - [2012/09/03 14:34:19 | 000,201,728 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Util\1f781c8617249b3ac8f4e232b712157e\Kies.Common.Util.ni.dll
      MOD - [2012/09/03 14:34:17 | 001,728,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\20f425ce74279686e5939b41c3129168\Kies.UI.ni.dll
      MOD - [2012/09/03 14:34:17 | 000,052,224 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DeviceSearc#\d518911c76ac162ccbe750d8ffb7f13f\Interop.DeviceSearchLib.ni.dll
      MOD - [2012/09/03 14:34:16 | 001,437,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Locale\d2a32c4a62853037eca6ba301ba9e308\Kies.Locale.ni.dll
      MOD - [2012/09/03 14:34:15 | 000,078,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\0ddd2b1f8b2702abd5d3bdaf23e79544\Kies.MVVM.ni.dll
      MOD - [2012/09/03 14:34:14 | 000,119,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\GongSolutions.Wpf.D#\f08e896210532d2ba848bcd28071d5bd\GongSolutions.Wpf.DragDrop.ni.dll
      MOD - [2012/09/03 14:34:12 | 001,185,280 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Interface\0cffa0dca0087204c1e792743b6bed9d\Kies.Interface.ni.dll
      MOD - [2012/09/03 14:33:51 | 000,221,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\e22a430b2e0330417e92cedec7980a33\System.ServiceProcess.ni.dll
      MOD - [2012/09/03 14:33:45 | 000,771,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\aca12def31ef54d4b1f528bf280d584e\System.Runtime.Remoting.ni.dll
      MOD - [2012/09/03 14:33:42 | 001,674,240 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies\d6f5b1fbdb755660b35c1a9808237e01\Kies.ni.exe
      MOD - [2012/09/03 14:33:32 | 001,782,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\a07e3882af9ea368a54742fc19c86662\System.Xaml.ni.dll
      MOD - [2012/09/03 14:20:19 | 018,019,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\aceee343625b7f4576e6d48fb91977e3\PresentationFramework.ni.dll
      MOD - [2012/09/03 14:20:03 | 011,469,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\5eb81f84116fecd08f3acf0603204457\PresentationCore.ni.dll
      MOD - [2012/09/03 14:19:58 | 000,595,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\eaeaf5f980c23f6075820513748695d9\PresentationFramework.Aero.ni.dll
      MOD - [2012/09/03 14:19:45 | 000,982,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\f7bbdea460b86c08496e471d808bd386\System.Configuration.ni.dll
      MOD - [2012/09/03 14:19:37 | 013,197,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\33d45f88d59de3b84f2ed79095e29f41\System.Windows.Forms.ni.dll
      MOD - [2012/09/03 14:19:34 | 007,070,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\22d54437cf1de9478f5c2c23f07eb9d6\System.Core.ni.dll
      MOD - [2012/09/03 14:19:26 | 001,665,536 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5654b44c3d45f7863f6d3d218a87967a\System.Drawing.ni.dll
      MOD - [2012/09/03 14:19:25 | 003,881,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\8729094857a3f3185deec237ef30b087\WindowsBase.ni.dll
      MOD - [2012/09/03 14:19:22 | 005,617,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\1084708d3872b8e64f7ec88145298b2d\System.Xml.ni.dll
      MOD - [2012/09/03 14:19:18 | 009,092,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ff7c4aa829c327b186ef85cff3289bdf\System.ni.dll
      MOD - [2012/09/03 14:19:07 | 014,415,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\90842cf922c71c82718ba71d5801c30c\mscorlib.ni.dll
      MOD - [2012/08/31 20:45:33 | 002,242,528 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
      MOD - [2012/08/31 09:52:22 | 000,021,432 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
      MOD - [2012/06/15 12:45:21 | 009,459,912 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_3_300_257.dll
      MOD - [2012/04/14 03:19:31 | 011,833,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\507b4ca18da9d2fde2e51a1f04593443\System.Web.ni.dll
      MOD - [2012/04/14 03:19:04 | 012,433,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\262285b3d0afafc5059f3fe9be69bff5\System.Windows.Forms.ni.dll
      MOD - [2012/04/14 03:18:58 | 001,590,784 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\8177623eac8f15cf95b587625439eac7\System.Drawing.ni.dll
      MOD - [2012/02/23 10:56:35 | 000,603,648 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswOtl.dll
      MOD - [2012/02/15 03:25:29 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a1c4a635721f85bef0ea4194b888b871\System.Runtime.Remoting.ni.dll
      MOD - [2012/02/15 03:24:46 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\9866d1f6178e1cde25642f1ac293ff8d\System.Xml.ni.dll
      MOD - [2012/02/15 03:24:42 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\e620323cacb5b6bfd93fd28d263440e4\System.Configuration.ni.dll
      MOD - [2012/02/15 03:24:41 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\faf4e8730ecbd07570111bb7c3b20565\System.ni.dll
      MOD - [2012/01/01 03:01:33 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll
      MOD - [2011/12/13 13:36:43 | 001,708,032 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Wizard\2.0.3713.40579__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Wizard.dll
      MOD - [2011/12/13 13:36:43 | 000,827,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3713.40458__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,655,360 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.3713.40549__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,491,520 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3713.40531__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
      MOD - [2011/12/13 13:36:43 | 000,409,600 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3713.40492__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
      MOD - [2011/12/13 13:36:43 | 000,380,928 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3713.40390__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,356,352 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3713.40478__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HydraVision.Wizard\2.0.3713.40562__90ba9c70f846762e\CLI.Aspect.HydraVision.Wizard.dll
      MOD - [2011/12/13 13:36:43 | 000,241,664 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiDesk.HydraVision.Dashboard\2.0.3713.40561__90ba9c70f846762e\CLI.Aspect.MultiDesk.HydraVision.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MDProp.HydraVision.Dashboard\2.0.3713.40559__90ba9c70f846762e\CLI.Aspect.MDProp.HydraVision.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3713.40421__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
      MOD - [2011/12/13 13:36:43 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3713.40422__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,163,840 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeskMan.HydraVision.Dashboard\2.0.3713.40558__90ba9c70f846762e\CLI.Aspect.DeskMan.HydraVision.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,151,552 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Settings.HydraVision.Dashboard\2.0.3713.40580__90ba9c70f846762e\CLI.Aspect.Settings.HydraVision.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,147,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Grid.HydraVision.Dashboard\2.0.3713.40552__90ba9c70f846762e\CLI.Aspect.Grid.HydraVision.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3713.40479__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
      MOD - [2011/12/13 13:36:43 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3713.40457__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3713.40465__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.3713.40547__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3713.40502__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3713.40402__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3713.40470__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3713.40532__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:43 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3713.40477__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3713.40454__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3713.40413__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
      MOD - [2011/12/13 13:36:43 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3713.40465__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Settings.HydraVision.Runtime\2.0.3713.40580__90ba9c70f846762e\CLI.Aspect.Settings.HydraVision.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Grid.HydraVision.Runtime\2.0.3713.40551__90ba9c70f846762e\CLI.Aspect.Grid.HydraVision.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeskMan.HydraVision.Runtime\2.0.3713.40557__90ba9c70f846762e\CLI.Aspect.DeskMan.HydraVision.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiDesk.HydraVision.Runtime\2.0.3713.40560__90ba9c70f846762e\CLI.Aspect.MultiDesk.HydraVision.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MDProp.HydraVision.Runtime\2.0.3713.40559__90ba9c70f846762e\CLI.Aspect.MDProp.HydraVision.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Settings.HydraVision.Shared\2.0.3713.40580__90ba9c70f846762e\CLI.Aspect.Settings.HydraVision.Shared.dll
      MOD - [2011/12/13 13:36:43 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3713.40403__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,013,312 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Runtime\2.0.3713.40579__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,012,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeskMan.HydraVision.Shared\2.0.3713.40557__90ba9c70f846762e\CLI.Aspect.DeskMan.HydraVision.Shared.dll
      MOD - [2011/12/13 13:36:43 | 000,011,776 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.3713.40550__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll
      MOD - [2011/12/13 13:36:43 | 000,010,240 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MDProp.HydraVision.Shared\2.0.3713.40558__90ba9c70f846762e\CLI.Aspect.MDProp.HydraVision.Shared.dll
      MOD - [2011/12/13 13:36:43 | 000,010,240 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Grid.HydraVision.Shared\2.0.3713.40551__90ba9c70f846762e\CLI.Aspect.Grid.HydraVision.Shared.dll
      MOD - [2011/12/13 13:36:43 | 000,009,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiDesk.HydraVision.Shared\2.0.3713.40560__90ba9c70f846762e\CLI.Aspect.MultiDesk.HydraVision.Shared.dll
      MOD - [2011/12/13 13:36:43 | 000,008,704 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.3713.40550__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll
      MOD - [2011/12/13 13:36:43 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Wizard\2.0.3713.40555__90ba9c70f846762e\CLI.Caste.HydraVision.Wizard.dll
      MOD - [2011/12/13 13:36:43 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.3713.40550__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll
      MOD - [2011/12/13 13:36:42 | 001,294,336 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Dashboard\2.0.3713.40574__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:42 | 000,741,376 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3713.40571__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll
      MOD - [2011/12/13 13:36:42 | 000,577,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3713.40515__90ba9c70f846762e\CLI.Component.Systemtray.dll
      MOD - [2011/12/13 13:36:42 | 000,573,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3713.40423__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:42 | 000,405,504 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3713.40412__90ba9c70f846762e\CLI.Component.Wizard.dll
      MOD - [2011/12/13 13:36:42 | 000,397,312 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3713.40456__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:42 | 000,372,736 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3713.40450__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:42 | 000,270,336 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
      MOD - [2011/12/13 13:36:42 | 000,151,552 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3713.40379__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3713.40523__90ba9c70f846762e\MOM.Implementation.dll
      MOD - [2011/12/13 13:36:42 | 000,098,304 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3713.40376__90ba9c70f846762e\CLI.Foundation.dll
      MOD - [2011/12/13 13:36:42 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3713.40520__90ba9c70f846762e\LOG.Foundation.Implementation.dll
      MOD - [2011/12/13 13:36:42 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3713.40501__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3713.40455__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:42 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.3713.40547__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3713.40444__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3713.40477__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3713.40417__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3713.40455__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3713.40402__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
      MOD - [2011/12/13 13:36:42 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3713.40456__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:42 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3713.40540__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
      MOD - [2011/12/13 13:36:42 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3713.40381__90ba9c70f846762e\CLI.Foundation.Private.dll
      MOD - [2011/12/13 13:36:42 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3713.40530__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3713.40428__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:42 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3713.40469__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3713.40379__90ba9c70f846762e\LOG.Foundation.Private.dll
      MOD - [2011/12/13 13:36:42 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3713.40467__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
      MOD - [2011/12/13 13:36:42 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3713.40375__90ba9c70f846762e\LOG.Foundation.dll
      MOD - [2011/12/13 13:36:42 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3713.40403__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3713.40522__90ba9c70f846762e\CLI.Foundation.XManifest.dll
      MOD - [2011/12/13 13:36:42 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3713.40403__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3713.40417__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3713.40378__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.VeryLargeDesktop.Graphics.Shared\2.0.3713.40465__90ba9c70f846762e\CLI.Aspect.VeryLargeDesktop.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3713.40464__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3713.40380__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
      MOD - [2011/12/13 13:36:42 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll
      MOD - [2011/12/13 13:36:42 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3713.40378__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3713.40388__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3713.40377__90ba9c70f846762e\APM.Foundation.dll
      MOD - [2011/12/13 13:36:42 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
      MOD - [2011/12/13 13:36:42 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
      MOD - [2011/12/13 13:36:42 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3713.40412__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3713.40401__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,015,360 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3713.40376__90ba9c70f846762e\NEWAEM.Foundation.dll
      MOD - [2011/12/13 13:36:42 | 000,011,776 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3713.40411__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
      MOD - [2011/12/13 13:36:42 | 000,009,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Shared\2.0.3713.40531__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,008,192 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3713.40382__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3713.40377__90ba9c70f846762e\CLI.Component.Client.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3713.40387__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
      MOD - [2011/12/13 13:36:42 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3713.40383__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
      MOD - [2011/12/13 13:36:42 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
      MOD - [2011/12/13 13:36:42 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3713.40377__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3713.40388__90ba9c70f846762e\DEM.Graphics.dll
      MOD - [2011/12/13 13:36:42 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3713.40529__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,006,144 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3713.40384__90ba9c70f846762e\AEM.Server.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,006,144 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3713.40382__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,005,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3713.40380__90ba9c70f846762e\MOM.Foundation.dll
      MOD - [2011/12/13 13:36:42 | 000,005,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3713.40381__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,005,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3713.40540__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,005,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3713.40389__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
      MOD - [2011/12/13 13:36:42 | 000,005,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3713.40383__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
      MOD - [2011/12/13 13:36:41 | 001,220,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3713.40397__90ba9c70f846762e\CLI.Component.Dashboard.dll
      MOD - [2011/12/13 13:36:41 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3713.40386__90ba9c70f846762e\CLI.Component.Runtime.dll
      MOD - [2011/12/13 13:36:41 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3713.40386__90ba9c70f846762e\APM.Server.dll
      MOD - [2011/12/13 13:36:41 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3713.40388__90ba9c70f846762e\CLI.Component.SkinFactory.dll
      MOD - [2011/12/13 13:36:41 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3713.40382__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
      MOD - [2011/12/13 13:36:41 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3713.40384__90ba9c70f846762e\AEM.Server.dll
      MOD - [2011/12/13 13:36:41 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3713.40395__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
      MOD - [2011/12/13 13:36:41 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
      MOD - [2011/12/13 13:36:41 | 000,019,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3713.40522__90ba9c70f846762e\CCC.Implementation.dll
      MOD - [2011/12/13 13:36:41 | 000,010,240 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3713.40395__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
      MOD - [2011/12/13 13:36:41 | 000,008,704 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3713.40419__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
      MOD - [2011/05/22 12:21:36 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
      MOD - [2011/03/17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
      MOD - [2010/12/21 01:15:30 | 001,041,248 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll
      MOD - [2010/11/12 18:35:23 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_es_b77a5c561934e089\System.Windows.Forms.resources.dll
      MOD - [2010/11/12 18:35:21 | 000,307,200 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_es_b77a5c561934e089\mscorlib.resources.dll
      MOD - [2010/11/04 20:59:43 | 000,208,896 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_es_b77a5c561934e089\System.resources.dll
      MOD - [2009/12/12 15:12:03 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
      MOD - [2009/11/24 13:36:36 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
      MOD - [2009/06/21 23:26:00 | 000,305,664 | ---- | M] () -- C:\Program Files\TeraCopy\TeraCopyExt.dll


      ========== Services (SafeList) ==========

      SRV - [2012/09/03 17:41:11 | 000,250,568 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
      SRV - [2012/08/31 20:45:34 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
      SRV - [2012/08/21 08:14:02 | 000,529,744 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
      SRV - [2012/08/21 04:12:25 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
      SRV - [2012/07/11 18:23:19 | 000,136,616 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\ramaint.exe -- (LMIMaint)
      SRV - [2012/07/11 18:22:32 | 000,374,184 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe -- (LMIGuardianSvc)
      SRV - [2012/01/03 0842 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
      SRV - [2011/12/17 03:01:15 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
      SRV - [2011/09/16 1450 | 000,390,528 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\LogMeIn.exe -- (LogMeIn)
      SRV - [2011/08/11 18:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
      SRV - [2011/07/23 10:36:40 | 001,434,624 | ---- | M] (Youngzsoft) [Auto | Running] -- C:\CCBoot\CCBoot.exe -- (CCBoot)
      SRV - [2011/06/12 11:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
      SRV - [2011/06/01 11:42:28 | 000,014,088 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe -- (SeagateDashboardService)
      SRV - [2010/09/29 08:08:58 | 000,200,624 | ---- | M] (Telefónica I+D) [Auto | Running] -- C:\Program Files\Movistar\Escritorio Movistar Latam\ImpWiFiSvc.exe -- (TGCM_ImportWiFiSvc)
      SRV - [2010/07/08 08:28:56 | 000,815,704 | ---- | M] (GlavSoft LLC.) [Auto | Running] -- C:\Program Files\TightVNC\tvnserver.exe -- (tvnserver)
      SRV - [2010/04/07 15:57:42 | 000,099,896 | R--- | M] (HP) [Auto | Running] -- C:\Windows\System32\HPSIsvc.exe -- (HPSIService)
      SRV - [2010/03/02 23:11:58 | 000,172,032 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
      SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
      SRV - [2009/07/13 20:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
      SRV - [2009/07/13 20:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
      SRV - [2009/07/13 20:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
      SRV - [2009/07/13 20:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
      SRV - [2009/06/24 10:57:04 | 000,136,704 | ---- | M] (HP) [Auto | Running] -- C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe -- (HP LaserJet Service)


      ========== Driver Services (SafeList) ==========

      DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena Plus\Room\safedrv.sys -- (GGSAFERDriver)
      DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
      DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Pablin\AppData\Local\Temp\catchme.sys -- (catchme)
      DRV - [2012/08/21 04:13:15 | 000,729,752 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
      DRV - [2012/08/21 04:13:15 | 000,355,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
      DRV - [2012/08/21 04:13:15 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
      DRV - [2012/08/21 04:13:14 | 000,058,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
      DRV - [2012/08/21 04:13:14 | 000,044,784 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
      DRV - [2012/08/21 04:13:13 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
      DRV - [2012/07/31 05:42:48 | 000,181,344 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudobex.sys -- (ssudobex)
      DRV - [2012/07/31 05:42:48 | 000,181,344 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
      DRV - [2012/07/31 05:42:48 | 000,083,168 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
      DRV - [2012/07/11 18:22:36 | 000,083,392 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\Windows\System32\LMIRfsClientNP.dll -- (LMIRfsClientNP)
      DRV - [2012/06/27 03:37:56 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
      DRV - [2012/06/27 03:37:56 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus)
      DRV - [2012/06/27 03:37:56 | 000,114,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadserd.sys -- (ssadserd)
      DRV - [2012/06/27 03:37:56 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadadb.sys -- (androidusb)
      DRV - [2012/06/27 03:37:56 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl)
      DRV - [2011/09/16 1450 | 000,047,640 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
      DRV - [2011/09/16 1450 | 000,012,856 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files\LogMeIn\x86\rainfo.sys -- (LMIInfo)
      DRV - [2011/07/22 11:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
      DRV - [2011/07/12 16:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
      DRV - [2010/11/20 07:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
      DRV - [2010/11/20 07:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
      DRV - [2010/11/20 07:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
      DRV - [2010/11/20 05:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
      DRV - [2010/11/20 04:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
      DRV - [2010/11/20 04:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
      DRV - [2010/11/20 04:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
      DRV - [2010/11/11 07:47:30 | 000,085,632 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
      DRV - [2010/11/11 07:47:30 | 000,072,832 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)
      DRV - [2010/03/02 23:22:26 | 005,340,160 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atipmdag.sys -- (amdkmdag)
      DRV - [2010/03/02 22:07:16 | 000,152,064 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
      DRV - [2010/01/28 09:33:30 | 000,100,352 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
      DRV - [2009/08/13 08:23:02 | 000,022,528 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthAvrcp.sys -- (BthAvrcp)
      DRV - [2009/07/13 18:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
      DRV - [2009/07/13 18:12:52 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
      DRV - [2009/07/13 17:02:52 | 000,164,864 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1k6032.sys -- (e1kexpress)
      DRV - [2009/02/10 17:23:02 | 000,082,320 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
      DRV - [2008/07/19 10:40:48 | 000,040,832 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (HECI)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



      IE - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
      IE - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-pe
      IE - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\..\SearchScopes\${searchCLSID}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
      IE - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.useDBForOrder: true
      FF - prefs.js..extensions.enabledAddons: [email protected]:2012.08.22b
      FF - prefs.js..extensions.enabledAddons: [email protected]:1.0.0.932
      FF - prefs.js..extensions.enabledAddons: [email protected]:1.5
      FF - prefs.js..extensions.enabledAddons: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}:6.0.33
      FF - prefs.js..extensions.enabledAddons: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
      FF - prefs.js..extensions.enabledAddons: [email protected]:7.0.1466
      FF - user.js - File not found

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
      FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Pablin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll File not found
      FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Pablin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
      FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/03/20 15:45:58 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/08/24 08:45:58 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/31 20:45:36 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/05/24 14:47:44 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{22119944-ED35-4ab1-910B-E619EA06A115}: C:\Program Files\Siber Systems\AI RoboForm\Firefox [2012/06/14 16:40:42 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/31 20:45:36 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/05/24 14:47:44 | 000,000,000 | ---D | M]

      [2011/12/14 12:41:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pablin\AppData\Roaming\Mozilla\Extensions
      [2012/08/24 16:15:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pablin\AppData\Roaming\Mozilla\Firefox\Profiles\kg4v1wj3.default\extensions
      [2012/05/23 08:56:34 | 000,000,000 | ---D | M] (LogMeIn, Inc. Remote Access Plugin) -- C:\Users\Pablin\AppData\Roaming\Mozilla\Firefox\Profiles\kg4v1wj3.default\extensions\[email protected]
      [2012/06/26 18:20:13 | 000,000,000 | ---D | M] (VideoFileDownload - Download YouTube Videos) -- C:\Users\Pablin\AppData\Roaming\Mozilla\Firefox\Profiles\kg4v1wj3.default\extensions\[email protected]
      [2012/08/24 16:15:01 | 000,021,521 | ---- | M] () (No name found) -- C:\Users\Pablin\AppData\Roaming\Mozilla\Firefox\Profiles\kg4v1wj3.default\extensions\[email protected]
      [2011/12/23 10:31:11 | 000,002,065 | ---- | M] () -- C:\Users\Pablin\AppData\Roaming\Mozilla\Firefox\Profiles\kg4v1wj3.default\searchplugins\bsqueda-de-vdeos-en-youtube.xml
      [2012/08/03 17:58:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
      [2012/08/06 09:14:15 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
      [2012/08/24 08:45:58 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
      [2012/03/20 15:45:58 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video&gt -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
      [2012/08/31 20:45:35 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
      [2012/06/26 15:33:44 | 000,002,352 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
      [2012/08/31 20:45:31 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
      [2012/07/20 07:57:24 | 000,003,882 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\drae.xml
      [2012/01/17 08:48:16 | 000,001,143 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-es.xml
      [2012/08/31 20:45:31 | 000,002,253 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
      [2012/01/17 08:48:16 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-es.xml
      [2012/01/17 08:48:16 | 000,001,102 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-es.xml

      ========== Chrome ==========

      CHR - homepage: http://search.babylon.com/?affID=112560&tt=060612_6_&babsrc=HP_ss&mntrId=2607e21900000000000000248113562d
      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
      CHR - homepage: http://search.babylon.com/?affID=112560&tt=060612_6_&babsrc=HP_ss&mntrId=2607e21900000000000000248113562d
      CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Pablin\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.83\gcswf32.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
      CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.83\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.83\pdf.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
      CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
      CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
      CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
      CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
      CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
      CHR - plugin: Nexon Game Controller (Enabled) = C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
      CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
      CHR - plugin: Default Plug-in (Enabled) = default_plugin
      CHR - Extension: Troll Emoticons = C:\Users\Pablin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hndllphbhpadfpoikpaofkkkpkpnmjik\4.6.7_0\
      CHR - Extension: avast! WebRep = C:\Users\Pablin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1466_0\
      CHR - Extension: \u003Cvideo\u003E de HTML5 de DivX Plus Web Player = C:\Users\Pablin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\

      O1 HOSTS File: ([2012/08/25 09:39:52 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 localhost
      O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
      O2 - BHO: (RoboForm Toolbar Helper) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
      O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O3 - HKLM\..\Toolbar: (&RoboForm Toolbar) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
      O3 - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\..\Toolbar\WebBrowser: (&RoboForm Toolbar) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
      O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
      O4 - HKLM..\Run: [LogMeIn GUI] C:\Program Files\LogMeIn\x86\LogMeInSystray.exe (LogMeIn, Inc.)
      O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
      O4 - HKLM..\Run: [tvncontrol] C:\Program Files\TightVNC\tvnserver.exe (GlavSoft LLC.)
      O4 - HKU\S-1-5-21-3257761072-557425364-3069674434-1000..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup File not found
      O4 - HKU\S-1-5-21-3257761072-557425364-3069674434-1000..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
      O4 - HKU\S-1-5-21-3257761072-557425364-3069674434-1000..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
      O4 - HKU\S-1-5-21-3257761072-557425364-3069674434-1000..\Run: [RoboForm] C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (Siber Systems)
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
      O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
      O7 - HKU\S-1-5-21-3257761072-557425364-3069674434-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: Rellenar Formularios - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra 'Tools' menuitem : Rellenar Formularios - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra Button: Guardar - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra 'Tools' menuitem : Guardar Formularios - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra Button: Mostrar Barra de Herramientas - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra 'Tools' menuitem : Mostrar Barra de Herramientas - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O9 - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.0.cab (DLM Control)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
      O16 - DPF: {8DD728F1-7A97-4606-968A-F3F27D05ED33} http://192.168.0.33/Digia2.cab (Digia2 Control)
      O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
      O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.5.1.0.cab (SysInfo Class)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{49176CB2-1DA0-4E01-91FD-BD30E22FC23C}: NameServer = 192.168.0.1
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O32 - AutoRun File - [2012/07/31 16:49:28 | 000,000,000 | R--D | M] - C:\Autorun.inf -- [ NTFS ]
      O32 - AutoRun File - [2012/07/31 16:49:28 | 000,000,000 | R--D | M] - D:\Autorun.inf -- [ NTFS ]
      O32 - AutoRun File - [2012/07/31 16:49:28 | 000,000,000 | R--D | M] - G:\Autorun.inf -- [ NTFS ]
      O32 - AutoRun File - [2012/07/31 16:49:28 | 000,000,000 | R--D | M] - H:\Autorun.inf -- [ NTFS ]
      O32 - AutoRun File - [2012/07/31 16:49:28 | 000,000,000 | RHSD | M] - J:\Autorun.inf -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = ComFile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

    9. #19
      Usuario Avatar de JPABLOSP
      Registrado
      dic 2007
      Ubicación
      peru
      Mensajes
      27

      Re: Explorador de windows se congela

      Parte 2

      ......
      ========== files/folders - created within 30 days ==========

      [2012/09/05 15:26:33 | 000,599,040 | ---- | c] (oldtimer tools) -- c:\users\pablin\desktop\otl.exe
      [2012/09/05 1510 | 000,000,000 | ---d | c] -- c:\programdata\apn
      [2012/09/05 15:08:45 | 013,336,184 | ---- | c] (dsnet corp) -- c:\users\pablin\desktop\atube_catcher.exe
      [2012/09/05 08:59:32 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{e5a01a42-00a2-49d6-9f63-1e5ff3ba4102}
      [2012/09/04 07:08:30 | 000,000,000 | ---d | c] -- c:\users\pablin\desktop\storage hp manuales
      [2012/09/03 18:28:13 | 000,000,000 | ---d | c] -- c:\temp
      [2012/09/03 14:43:50 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\samsung
      [2012/09/03 14:43:38 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\roaming\samsung
      [2012/09/03 14:42:53 | 000,000,000 | ---d | c] -- c:\users\pablin\documents\samsung
      [2012/09/03 14:31:48 | 000,581,192 | ---- | c] (microsoft corporation) -- c:\windows\system32\winusbcoinstaller.dll
      [2012/09/03 14:31:48 | 000,181,344 | ---- | c] (devguru co., ltd.(www.devguru.co.kr)) -- c:\windows\system32\drivers\ssudobex.sys
      [2012/09/03 14:31:48 | 000,181,344 | ---- | c] (devguru co., ltd.(www.devguru.co.kr)) -- c:\windows\system32\drivers\ssudmdm.sys
      [2012/09/03 14:31:47 | 000,083,168 | ---- | c] (devguru co., ltd.(www.devguru.co.kr)) -- c:\windows\system32\drivers\ssudbus.sys
      [2012/09/03 14:30:34 | 001,416,680 | ---- | c] (microsoft corporation) -- c:\windows\system32\wdfcoinstaller01005.dll
      [2012/09/03 14:30:34 | 001,416,680 | ---- | c] (microsoft corporation) -- c:\windows\system32\drivers\wdfcoinstaller01005.dll
      [2012/09/03 14:30:34 | 000,136,808 | ---- | c] (mcci corporation) -- c:\windows\system32\drivers\ssadmdm.sys
      [2012/09/03 14:30:34 | 000,121,064 | ---- | c] (mcci corporation) -- c:\windows\system32\drivers\ssadbus.sys
      [2012/09/03 14:30:34 | 000,012,776 | ---- | c] (mcci corporation) -- c:\windows\system32\drivers\ssadmdfl.sys
      [2012/09/03 14:30:34 | 000,010,472 | ---- | c] (mcci corporation) -- c:\windows\system32\drivers\ssadcmnt.sys
      [2012/09/03 14:30:34 | 000,010,472 | ---- | c] (mcci corporation) -- c:\windows\system32\drivers\ssadcm.sys
      [2012/09/03 14:30:34 | 000,010,344 | ---- | c] (mcci corporation) -- c:\windows\system32\drivers\ssadwhnt.sys
      [2012/09/03 14:30:34 | 000,010,344 | ---- | c] (mcci corporation) -- c:\windows\system32\drivers\ssadwh.sys
      [2012/09/03 14:30:33 | 000,114,280 | ---- | c] (mcci corporation) -- c:\windows\system32\drivers\ssadserd.sys
      [2012/09/03 14:30:33 | 000,030,312 | ---- | c] (google inc) -- c:\windows\system32\drivers\ssadadb.sys
      [2012/09/03 14:27:05 | 000,000,000 | ---d | c] -- c:\programdata\microsoft\windows\start menu\programs\samsung
      [2012/09/03 14:26:53 | 004,659,712 | ---- | c] (dmitry streblechenko) -- c:\windows\system32\redemption.dll
      [2012/09/03 14:25:11 | 000,821,824 | ---- | c] (devguru co., ltd.) -- c:\windows\system32\dgderapi.dll
      [2012/09/03 14:25:11 | 000,000,000 | ---d | c] -- c:\program files\markany
      [2012/09/03 14:23:30 | 000,000,000 | ---d | c] -- c:\programdata\samsung
      [2012/09/03 14:23:30 | 000,000,000 | ---d | c] -- c:\program files\samsung
      [2012/09/03 14:09:51 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\downloaded installations
      [2012/09/03 13:47:45 | 094,954,360 | ---- | c] (samsung electronics co., ltd. ) -- c:\users\pablin\desktop\kies_2.3.3.12085_7_5.exe
      [2012/09/03 10:01:43 | 000,000,000 | ---d | c] -- c:\users\pablin\desktop\validacion
      [2012/09/01 08:34:06 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{5a2aca95-2a23-4f7e-b3fa-58708053e581}
      [2012/08/28 14:12:51 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{55713402-1931-4263-94ee-fa43f4105ed1}
      [2012/08/28 10:04:34 | 000,330,240 | ---- | c] ((주)마크애니) -- c:\windows\masetupcaller.dll
      [2012/08/28 10:04:34 | 000,200,704 | ---- | c] ( (c) musiccity) -- c:\windows\system32\muzwmts.dll
      [2012/08/28 10:04:34 | 000,172,032 | ---- | c] (musiccity co.ltd.) -- c:\windows\system32\muzapp.exe
      [2012/08/28 10:04:34 | 000,135,168 | ---- | c] (musiccity co.ltd.) -- c:\windows\system32\muzaf1.dll
      [2012/08/28 10:04:34 | 000,122,880 | ---- | c] ((c) musiccity) -- c:\windows\system32\muzeffect.ax
      [2012/08/28 10:04:34 | 000,118,784 | ---- | c] ((주)마크애니) -- c:\windows\system32\madrm.dll
      [2012/08/28 10:04:34 | 000,110,592 | ---- | c] ((c) musiccity) -- c:\windows\system32\muzmp4sp.ax
      [2012/08/28 10:04:34 | 000,090,112 | ---- | c] ((주)마크애니) -- c:\windows\mamcitydownload.ocx
      [2012/08/28 10:04:34 | 000,049,152 | ---- | c] ((주) 마크애니) -- c:\windows\system32\majguilib.dll
      [2012/08/28 10:04:34 | 000,045,056 | ---- | c] ((주) 마크애니) -- c:\windows\system32\maxmlproto.dll
      [2012/08/28 10:04:34 | 000,040,960 | ---- | c] (telechips inc.,) -- c:\windows\system32\mttelechip.dll
      [2012/08/28 10:04:32 | 000,569,344 | ---- | c] ((c) musiccity) -- c:\windows\system32\muzdecode.ax
      [2012/08/28 10:04:32 | 000,491,520 | ---- | c] (musiccity co.ltd.) -- c:\windows\system32\muzapp.dll
      [2012/08/28 10:04:32 | 000,352,256 | ---- | c] (sample corporation) -- c:\windows\system32\mslur71.dll
      [2012/08/28 10:04:32 | 000,258,048 | ---- | c] ((c) peeringportal) -- c:\windows\system32\muzoggsp.ax
      [2012/08/28 10:04:32 | 000,245,760 | ---- | c] (teruten inc.) -- c:\windows\system32\msclib.dll
      [2012/08/28 10:04:32 | 000,155,648 | ---- | c] (teruten inc.) -- c:\windows\system32\msflib.dll
      [2012/08/28 10:04:32 | 000,131,072 | ---- | c] ((c) musiccity) -- c:\windows\system32\muzmpgsp.ax
      [2012/08/28 10:04:32 | 000,057,344 | ---- | c] (marktek) -- c:\windows\system32\mk_lyric.dll
      [2012/08/28 10:04:32 | 000,057,344 | ---- | c] (marktek inc.) -- c:\windows\system32\mtxsyncicon.dll
      [2012/08/28 10:04:32 | 000,045,320 | ---- | c] (markany) -- c:\windows\system32\mamacextract.dll
      [2012/08/28 10:04:32 | 000,045,056 | ---- | c] ((주) 마크애니) -- c:\windows\system32\macxmlproto.dll
      [2012/08/28 10:04:32 | 000,024,576 | ---- | c] ((주)마크애니) -- c:\windows\system32\masetupcleaner.exe
      [2012/08/28 08:04:42 | 000,638,976 | ---- | c] (eset) -- c:\users\pablin\desktop\esetuninstaller.exe
      [2012/08/27 08:37:58 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{ffef5475-9c3e-4bf9-b6a0-95e0391eaaed}
      [2012/08/25 17:50:17 | 000,000,000 | ---d | c] -- c:\users\pablin\desktop\crack only
      [2012/08/25 11:49:14 | 000,000,000 | ---d | c] -- c:\users\pablin\temp
      [2012/08/25 10:05:57 | 000,000,000 | ---d | c] -- c:\programdata\hp
      [2012/08/25 09:54:52 | 000,000,000 | -hsd | c] -- c:\config.msi
      [2012/08/25 09:40:01 | 000,000,000 | -hsd | c] -- c:\$recycle.bin
      [2012/08/25 09:28:12 | 000,000,000 | ---d | c] -- c:\combofix
      [2012/08/25 09:00:21 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{2ae5a4e5-86ed-41f0-90b0-f664bd5f31fb}
      [2012/08/24 15:51:42 | 004,738,846 | r--- | c] (swearware) -- c:\users\pablin\desktop\combofix.exe
      [2012/08/24 09:42:48 | 003,644,064 | ---- | c] (teamviewer gmbh) -- c:\users\pablin\desktop\teamviewer_setup_es.exe
      [2012/08/24 08:25:47 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{095f537c-622a-43d9-8534-07050976d14a}
      [2012/08/23 08:17:18 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{7f50d1ad-ac84-46f8-9e7b-167ebfb3a8bb}
      [2012/08/22 08:29:44 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{1f8b45e7-a1e9-41d5-a630-9b531d9c788d}
      [2012/08/21 15:21:57 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{2b6b5f8c-6148-47b7-95b1-ed84f309fc21}
      [2012/08/21 12:48:09 | 002,906,880 | ---- | c] (piriform ltd) -- c:\users\pablin\desktop\rcsetup143.exe
      [2012/08/20 08:23:25 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{526949a8-0366-4b89-9cf8-60ce2177082c}
      [2012/08/17 10:41:22 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{992770cc-83f4-4246-9a71-84dfd9c8dc27}
      [2012/08/17 10:41:00 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{3c061d31-b200-457f-85a7-5b5a0f3d7266}
      [2012/08/16 08:22:48 | 000,000,000 | ---d | c] -- c:\users\pablin\desktop\accesos directos
      [2012/08/16 08:12:30 | 000,000,000 | ---d | c] -- c:\users\pablin\desktop\desistalador
      [2012/08/16 08:09:41 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{24790eb7-2e38-4a36-b0a0-9068a8df2539}
      [2012/08/16 08:09:27 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{6b7eb78d-4884-4651-952c-525653c0773c}
      [2012/08/15 08:27:25 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{ef8df362-0664-48a3-af6d-5c43ef6bd1b5}
      [2012/08/14 20:26:56 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{2306e8a5-c780-46b2-a7eb-ab7875fd41ab}
      [2012/08/14 15:11:05 | 004,140,192 | ---- | c] (adobe systems incorporated) -- c:\users\pablin\desktop\install_flash_player_11_plugin_32bit.exe
      [2012/08/14 08:26:27 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{e58d7eb4-06ae-4134-84b8-da0e44eb4545}
      [2012/08/13 20:25:58 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{acf7c90f-d039-482c-af10-a45d46caf5ec}
      [2012/08/13 1820 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\apple computer
      [2012/08/13 08:25:25 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{1de2dd9e-78ac-4d99-8bb6-41ca8b2e14bf}
      [2012/08/13 08:25:13 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{60c3af81-5989-4d5a-8406-a37365c6c3b8}
      [2012/08/10 11:47:51 | 000,000,000 | ---d | c] -- c:\users\pablin\desktop\videos 2
      [2012/08/10 08:28:47 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{3614421a-4bd9-48e7-8eef-5a027e90a9b1}
      [2012/08/10 08:28:34 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{4bc47f6f-b932-444e-bd38-af34690834c7}
      [2012/08/09 16:38:30 | 000,000,000 | ---d | c] -- c:\users\pablin\documents\activision
      [2012/08/09 16:27:36 | 000,000,000 | ---d | c] -- c:\users\pablin\desktop\videos vig
      [2012/08/09 0803 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{5c750cfa-cc63-4393-940e-c994260825c6}
      [2012/08/09 08:09:50 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{6a052029-fa8f-41ff-9ae6-c68a2687e9ee}
      [2012/08/08 09:03:35 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{37915937-11f9-466a-a97b-3fd3abd816ec}
      [2012/08/08 09:03:22 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{f348088e-36eb-4130-b7b8-9e589a26956a}
      [2012/08/08 08:40:24 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{3906a918-1ad4-402a-92e5-0c0bcc8b41f0}
      [2012/08/08 08:40:11 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{723000da-fe3a-4bf4-ace4-22f6af1c5a9e}
      [2012/08/08 08:28:36 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{ac767cbb-8697-43c1-bde8-12c9081052f8}
      [2012/08/08 08:28:23 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{e2cf4937-f0eb-4124-8c67-08ae03af07bc}
      [2012/08/07 08:14:15 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{62638540-725e-4dcd-bf77-52ee9c550fa0}
      [2012/08/07 08:14:03 | 000,000,000 | ---d | c] -- c:\users\pablin\appdata\local\{cda69b6f-e8ad-4b31-ae68-247fb633d715}
      [1 c:\windows\system32\*.tmp files -> c:\windows\system32\*.tmp -> ]

      ========== files - modified within 30 days ==========

      [2012/09/05 15:26:35 | 000,599,040 | ---- | m] (oldtimer tools) -- c:\users\pablin\desktop\otl.exe
      [2012/09/05 15:26:00 | 000,001,024 | ---- | m] () -- c:\windows\tasks\googleupdatetaskmachineua.job
      [2012/09/05 1558 | 000,001,109 | ---- | m] () -- c:\users\public\desktop\atube catcher.lnk
      [2012/09/05 15:09:36 | 013,336,184 | ---- | m] (dsnet corp) -- c:\users\pablin\desktop\atube_catcher.exe
      [2012/09/05 15:08:49 | 000,016,272 | -h-- | m] () -- c:\windows\system32\7b296fb0-376b-497e-b012-9c450e1b7327-5p-1.c7483456-a289-439d-8115-601632d005a0
      [2012/09/05 15:08:49 | 000,016,272 | -h-- | m] () -- c:\windows\system32\7b296fb0-376b-497e-b012-9c450e1b7327-5p-0.c7483456-a289-439d-8115-601632d005a0
      [2012/09/05 15:02:35 | 000,001,020 | ---- | m] () -- c:\windows\tasks\googleupdatetaskmachinecore.job
      [2012/09/05 15:01:02 | 000,067,584 | --s- | m] () -- c:\windows\bootstat.dat
      [2012/09/05 15:00:50 | 1595,916,288 | -hs- | m] () -- c:\hiberfil.sys
      [2012/09/05 14:48:00 | 000,000,838 | ---- | m] () -- c:\windows\tasks\adobe flash player updater.job
      [2012/09/05 09:55:46 | 000,707,200 | ---- | m] () -- c:\windows\system32\perfh00a.dat
      [2012/09/05 09:55:46 | 000,618,714 | ---- | m] () -- c:\windows\system32\perfh009.dat
      [2012/09/05 09:55:46 | 000,138,768 | ---- | m] () -- c:\windows\system32\perfc00a.dat
      [2012/09/05 09:55:46 | 000,107,034 | ---- | m] () -- c:\windows\system32\perfc009.dat
      [2012/09/04 17:30:03 | 000,000,000 | -h-- | m] () -- c:\windows\system32\drivers\msft_kernel_ssadadb_01005.wdf
      [2012/09/04 16:28:58 | 009,750,782 | ---- | m] () -- c:\users\pablin\desktop\recibo 10001.tif
      [2012/09/04 16:28:25 | 000,002,293 | ---- | m] () -- c:\users\public\desktop\google chrome.lnk
      [2012/09/03 17:41:10 | 000,696,520 | ---- | m] (adobe systems incorporated) -- c:\windows\system32\flashplayerapp.exe
      [2012/09/03 17:41:10 | 000,073,416 | ---- | m] (adobe systems incorporated) -- c:\windows\system32\flashplayercplapp.cpl
      [2012/09/03 14:41:42 | 000,001,903 | ---- | m] () -- c:\users\public\desktop\samsung kies.lnk
      [2012/09/03 14:36:15 | 000,000,000 | -h-- | m] () -- c:\windows\system32\drivers\msft_kernel_winusb_01007.wdf
      [2012/09/03 13:52:36 | 094,954,360 | ---- | m] (samsung electronics co., ltd. ) -- c:\users\pablin\desktop\kies_2.3.3.12085_7_5.exe
      [2012/09/03 12:42:13 | 000,075,376 | ---- | m] () -- c:\users\pablin\desktop\autofail.png
      [2012/09/03 12:17:22 | 000,089,685 | ---- | m] () -- c:\users\pablin\desktop\551917_464208010277439_1525577349_n.jpg
      [2012/09/03 10:01:33 | 000,042,315 | ---- | m] () -- c:\users\pablin\desktop\validacion.zip
      [2012/08/28 10:05:04 | 004,659,712 | ---- | m] (dmitry streblechenko) -- c:\windows\system32\redemption.dll
      [2012/08/28 10:04:34 | 000,330,240 | ---- | m] ((주)마크애니) -- c:\windows\masetupcaller.dll
      [2012/08/28 10:04:34 | 000,200,704 | ---- | m] ( (c) musiccity) -- c:\windows\system32\muzwmts.dll
      [2012/08/28 10:04:34 | 000,172,032 | ---- | m] (musiccity co.ltd.) -- c:\windows\system32\muzapp.exe
      [2012/08/28 10:04:34 | 000,143,360 | ---- | m] () -- c:\windows\system32\3daudio.ax
      [2012/08/28 10:04:34 | 000,135,168 | ---- | m] (musiccity co.ltd.) -- c:\windows\system32\muzaf1.dll
      [2012/08/28 10:04:34 | 000,122,880 | ---- | m] ((c) musiccity) -- c:\windows\system32\muzeffect.ax
      [2012/08/28 10:04:34 | 000,118,784 | ---- | m] ((주)마크애니) -- c:\windows\system32\madrm.dll
      [2012/08/28 10:04:34 | 000,110,592 | ---- | m] ((c) musiccity) -- c:\windows\system32\muzmp4sp.ax
      [2012/08/28 10:04:34 | 000,090,112 | ---- | m] ((주)마크애니) -- c:\windows\mamcitydownload.ocx
      [2012/08/28 10:04:34 | 000,081,920 | ---- | m] () -- c:\windows\system32\issacapi_bs-2.3.dll
      [2012/08/28 10:04:34 | 000,065,536 | ---- | m] () -- c:\windows\system32\issacapi_pe-2.3.dll
      [2012/08/28 10:04:34 | 000,057,344 | ---- | m] () -- c:\windows\system32\issacapi_se-2.3.dll
      [2012/08/28 10:04:34 | 000,049,152 | ---- | m] ((주) 마크애니) -- c:\windows\system32\majguilib.dll
      [2012/08/28 10:04:34 | 000,045,056 | ---- | m] ((주) 마크애니) -- c:\windows\system32\maxmlproto.dll
      [2012/08/28 10:04:34 | 000,040,960 | ---- | m] (telechips inc.,) -- c:\windows\system32\mttelechip.dll
      [2012/08/28 10:04:34 | 000,030,568 | ---- | m] () -- c:\windows\musiccitydownload.exe
      [2012/08/28 10:04:32 | 000,974,848 | ---- | m] () -- c:\windows\system32\cis-2.4.dll
      [2012/08/28 10:04:32 | 000,821,824 | ---- | m] (devguru co., ltd.) -- c:\windows\system32\dgderapi.dll
      [2012/08/28 10:04:32 | 000,569,344 | ---- | m] ((c) musiccity) -- c:\windows\system32\muzdecode.ax
      [2012/08/28 10:04:32 | 000,491,520 | ---- | m] (musiccity co.ltd.) -- c:\windows\system32\muzapp.dll
      [2012/08/28 10:04:32 | 000,352,256 | ---- | m] (sample corporation) -- c:\windows\system32\mslur71.dll
      [2012/08/28 10:04:32 | 000,258,048 | ---- | m] ((c) peeringportal) -- c:\windows\system32\muzoggsp.ax
      [2012/08/28 10:04:32 | 000,245,760 | ---- | m] (teruten inc.) -- c:\windows\system32\msclib.dll
      [2012/08/28 10:04:32 | 000,155,648 | ---- | m] (teruten inc.) -- c:\windows\system32\msflib.dll
      [2012/08/28 10:04:32 | 000,131,072 | ---- | m] ((c) musiccity) -- c:\windows\system32\muzmpgsp.ax
      [2012/08/28 10:04:32 | 000,057,344 | ---- | m] (marktek) -- c:\windows\system32\mk_lyric.dll
      [2012/08/28 10:04:32 | 000,057,344 | ---- | m] (marktek inc.) -- c:\windows\system32\mtxsyncicon.dll
      [2012/08/28 10:04:32 | 000,045,320 | ---- | m] (markany) -- c:\windows\system32\mamacextract.dll
      [2012/08/28 10:04:32 | 000,045,056 | ---- | m] ((주) 마크애니) -- c:\windows\system32\macxmlproto.dll
      [2012/08/28 10:04:32 | 000,024,576 | ---- | m] ((주)마크애니) -- c:\windows\system32\masetupcleaner.exe
      [2012/08/28 08:04:45 | 000,638,976 | ---- | m] (eset) -- c:\users\pablin\desktop\esetuninstaller.exe
      [2012/08/25 09:39:52 | 000,000,027 | ---- | m] () -- c:\windows\system32\drivers\etc\hosts
      [2012/08/25 09:27:18 | 004,738,846 | r--- | m] (swearware) -- c:\users\pablin\desktop\combofix.exe
      [2012/08/24 14:55:56 | 004,156,449 | ---- | m] () -- c:\users\pablin\desktop\reportes julio 2012.csv
      [2012/08/24 09:47:10 | 003,644,064 | ---- | m] (teamviewer gmbh) -- c:\users\pablin\desktop\teamviewer_setup_es.exe
      [2012/08/24 08:46:02 | 000,002,577 | ---- | m] () -- c:\windows\system32\config.nt
      [2012/08/23 16:41:16 | 000,024,324 | ---- | m] () -- c:\users\pablin\desktop\punto pe - dominios en el perú.pdf
      [2012/08/22 16:09:54 | 000,695,594 | ---- | m] () -- c:\users\pablin\desktop\alfil.png
      [2012/08/21 14:23:33 | 000,001,994 | -h-- | m] () -- c:\users\pablin\documents\default.rdp
      [2012/08/21 12:48:55 | 000,001,760 | ---- | m] () -- c:\users\public\desktop\recuva.lnk
      [2012/08/21 12:48:39 | 002,906,880 | ---- | m] (piriform ltd) -- c:\users\pablin\desktop\rcsetup143.exe
      [2012/08/21 04:13:15 | 000,729,752 | ---- | m] (avast software) -- c:\windows\system32\drivers\aswsnx.sys
      [2012/08/21 04:13:15 | 000,355,632 | ---- | m] (avast software) -- c:\windows\system32\drivers\aswsp.sys
      [2012/08/21 04:13:15 | 000,054,232 | ---- | m] (avast software) -- c:\windows\system32\drivers\aswtdi.sys
      [2012/08/21 04:13:14 | 000,058,680 | ---- | m] (avast software) -- c:\windows\system32\drivers\aswmonflt.sys
      [2012/08/21 04:13:14 | 000,044,784 | ---- | m] (avast software) -- c:\windows\system32\drivers\aswrdr2.sys
      [2012/08/21 04:13:13 | 000,021,256 | ---- | m] (avast software) -- c:\windows\system32\drivers\aswfsblk.sys
      [2012/08/21 04:12:33 | 000,041,224 | ---- | m] (avast software) -- c:\windows\avastss.scr
      [2012/08/21 04:12:23 | 000,227,648 | ---- | m] (avast software) -- c:\windows\system32\aswboot.exe
      [2012/08/17 15:22:18 | 000,111,200 | ---- | m] () -- c:\users\pablin\desktop\traffic view internet.tif
      [2012/08/16 15:18:55 | 089,340,632 | ---- | m] () -- c:\users\pablin\desktop\avast_free_antivirus_setup.exe
      [2012/08/16 08:37:50 | 000,249,416 | ---- | m] () -- c:\users\pablin\desktop\escritotio remoto.png
      [2012/08/14 15:12:05 | 004,140,192 | ---- | m] (adobe systems incorporated) -- c:\users\pablin\desktop\install_flash_player_11_plugin_32bit.exe
      [2012/08/14 13:17:56 | 133,419,702 | ---- | m] () -- c:\users\pablin\desktop\eeeee.avi
      [2012/08/14 12:57:30 | 133,823,514 | ---- | m] () -- c:\users\pablin\desktop\wwww.ifv
      [2012/08/14 12:53:42 | 133,194,326 | ---- | m] () -- c:\users\pablin\desktop\qqq.avi
      [2012/08/10 10:12:00 | 024,125,904 | ---- | m] ( ) -- c:\users\pablin\desktop\k-lite_codec_pack_910_mega.exe
      [1 c:\windows\system32\*.tmp files -> c:\windows\system32\*.tmp -> ]

      ========== files created - no company name ==========

      [2012/09/05 1558 | 000,001,109 | ---- | c] () -- c:\users\public\desktop\atube catcher.lnk
      [2012/09/04 17:30:03 | 000,000,000 | -h-- | c] () -- c:\windows\system32\drivers\msft_kernel_ssadadb_01005.wdf
      [2012/09/04 16:28:33 | 009,750,782 | ---- | c] () -- c:\users\pablin\desktop\recibo 10001.tif
      [2012/09/03 14:41:41 | 000,001,903 | ---- | c] () -- c:\users\public\desktop\samsung kies.lnk
      [2012/09/03 14:36:15 | 000,000,000 | -h-- | c] () -- c:\windows\system32\drivers\msft_kernel_winusb_01007.wdf
      [2012/09/03 12:42:12 | 000,075,376 | ---- | c] () -- c:\users\pablin\desktop\autofail.png
      [2012/09/03 12:17:21 | 000,089,685 | ---- | c] () -- c:\users\pablin\desktop\551917_464208010277439_1525577349_n.jpg
      [2012/09/03 10:01:27 | 000,042,315 | ---- | c] () -- c:\users\pablin\desktop\validacion.zip
      [2012/08/28 10:04:34 | 000,143,360 | ---- | c] () -- c:\windows\system32\3daudio.ax
      [2012/08/28 10:04:34 | 000,081,920 | ---- | c] () -- c:\windows\system32\issacapi_bs-2.3.dll
      [2012/08/28 10:04:34 | 000,065,536 | ---- | c] () -- c:\windows\system32\issacapi_pe-2.3.dll
      [2012/08/28 10:04:34 | 000,057,344 | ---- | c] () -- c:\windows\system32\issacapi_se-2.3.dll
      [2012/08/28 10:04:34 | 000,030,568 | ---- | c] () -- c:\windows\musiccitydownload.exe
      [2012/08/28 10:04:32 | 000,974,848 | ---- | c] () -- c:\windows\system32\cis-2.4.dll
      [2012/08/24 14:55:51 | 004,156,449 | ---- | c] () -- c:\users\pablin\desktop\reportes julio 2012.csv
      [2012/08/23 16:41:15 | 000,024,324 | ---- | c] () -- c:\users\pablin\desktop\punto pe - dominios en el perú.pdf
      [2012/08/22 16:09:53 | 000,695,594 | ---- | c] () -- c:\users\pablin\desktop\alfil.png
      [2012/08/21 12:48:55 | 000,001,760 | ---- | c] () -- c:\users\public\desktop\recuva.lnk
      [2012/08/16 14:59:34 | 089,340,632 | ---- | c] () -- c:\users\pablin\desktop\avast_free_antivirus_setup.exe
      [2012/08/16 11:59:36 | 000,111,200 | ---- | c] () -- c:\users\pablin\desktop\traffic view internet.tif
      [2012/08/16 08:37:50 | 000,249,416 | ---- | c] () -- c:\users\pablin\desktop\escritotio remoto.png
      [2012/08/14 13:17:54 | 133,419,702 | ---- | c] () -- c:\users\pablin\desktop\eeeee.avi
      [2012/08/14 12:56:04 | 133,823,514 | ---- | c] () -- c:\users\pablin\desktop\wwww.ifv
      [2012/08/14 12:53:17 | 133,194,326 | ---- | c] () -- c:\users\pablin\desktop\qqq.avi
      [2012/08/10 09:48:19 | 024,125,904 | ---- | c] ( ) -- c:\users\pablin\desktop\k-lite_codec_pack_910_mega.exe
      [2012/08/03 17:45:03 | 000,000,600 | ---- | c] () -- c:\users\pablin\appdata\roaming\winscp.rnd
      [2012/07/24 15:32:39 | 000,000,166 | ---- | c] () -- c:\windows\convertercore.ini
      [2012/07/06 12:30:38 | 000,000,600 | ---- | c] () -- c:\users\pablin\appdata\local\putty.rnd
      [2012/07/05 15:30:38 | 000,007,634 | ---- | c] () -- c:\users\pablin\appdata\local\resmon.resmoncfg
      [2012/06/04 18:15:32 | 000,192,730 | ---- | c] () -- c:\windows\system32\tldvrlng.ini
      [2012/05/14 15:07:41 | 000,045,270 | ---- | c] () -- c:\users\pablin\appdata\roaming\room_v3.dat
      [2012/05/07 10:13:21 | 000,052,736 | r--- | c] () -- c:\windows\system32\hp1100sms.dll
      [2012/05/07 10:13:20 | 001,511,424 | ---- | c] () -- c:\windows\system32\hp1100sm.exe
      [2012/05/07 10:13:20 | 000,284,160 | ---- | c] () -- c:\windows\system32\mvhlewsi.dll
      [2012/05/07 10:13:20 | 000,147,456 | ---- | c] () -- c:\windows\system32\hp1100lm.dll
      [2012/04/19 11:46:32 | 000,208,896 | ---- | c] () -- c:\windows\mbr.exe
      [2012/04/19 11:46:31 | 000,256,000 | ---- | c] () -- c:\windows\pev.exe
      [2012/04/19 11:46:31 | 000,098,816 | ---- | c] () -- c:\windows\sed.exe
      [2012/04/19 11:46:31 | 000,080,412 | ---- | c] () -- c:\windows\grep.exe
      [2012/04/19 11:46:31 | 000,068,096 | ---- | c] () -- c:\windows\zip.exe
      [2012/04/19 10:49:37 | 000,013,088 | ---- | c] () -- c:\users\pablin\advanced_ip_scanner_mac.bin
      [2012/04/17 09:28:03 | 000,650,752 | ---- | c] () -- c:\windows\system32\xvidcore.dll
      [2012/04/17 09:28:03 | 000,243,200 | ---- | c] () -- c:\windows\system32\xvidvfw.dll
      [2012/04/17 09:27:51 | 000,079,360 | ---- | c] () -- c:\windows\system32\ff_vfw.dll
      [2012/01/26 16:38:41 | 000,116,224 | ---- | c] () -- c:\windows\system32\pdfcmnnt.dll
      [2011/12/23 12:01:09 | 000,009,216 | ---- | c] () -- c:\users\pablin\appdata\local\dcbc2a71-70d8-4dan-ehr8-e0d61dea3fdf.ini
      [2011/12/23 12:00:59 | 000,175,616 | ---- | c] () -- c:\windows\system32\unrar.dll
      [2011/12/19 10:17:53 | 000,066,048 | ---- | c] () -- c:\windows\system32\printbrmui.exe
      [2011/12/13 13:37:31 | 000,000,000 | ---- | c] () -- c:\windows\ativpsrm.bin
      [2011/12/13 13:34:04 | 000,001,105 | ---- | c] () -- c:\windows\system32\atipblag.dat
      [2011/04/09 18:55:28 | 000,179,261 | ---- | c] () -- c:\windows\system32\xlive.dll.cat
      [2011/03/12 00:25:00 | 000,139,264 | ---- | c] () -- c:\windows\system32\tlplay.dll

      ========== alternate data streams ==========

      @alternate data stream - 177 bytes -> c:\programdata\temp:fb1b13d8

      < end of report >

    10. #20
      Ex-Colaborador Avatar de Damianl_77
      Registrado
      ene 2008
      Ubicación
      Argentina
      Mensajes
      23.694

      Re: Explorador de windows se congela

      Ejecutá OTL.exe


      Copiá y Pegá el código que está dentro del recuadro de abajo en la sección Análisis Personalizado / Código de Reparación


      Código:
      :OTL
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      [2012/08/24 16:15:01 | 000,021,521 | ---- | M] () (No name found) -- C:\Users\Pablin\AppData\Roaming\Mozilla\Firefox\Profiles\kg4v1wj3.default\extensions\[email protected]
      [2012/06/26 15:33:44 | 000,002,352 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
      CHR - homepage: http://search.babylon.com/?affID=112560&tt=060612_6_&babsrc=HP_ss&mntrId=2607e21900000000000000248113562d
      CHR - Extension: Troll Emoticons = C:\Users\Pablin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hndllphbhpadfpoikpaofkkkpkpnmjik\4.6.7_0\
      O2 - BHO: (RoboForm Toolbar Helper) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O3 - HKLM\..\Toolbar: (&RoboForm Toolbar) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
      O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
      [1 c:\windows\system32\*.tmp files -> c:\windows\system32\*.tmp -> ]
      @alternate data stream - 177 bytes -> c:\programdata\temp:fb1b13d8
      
      :commands
      [resethosts]
      [emptyflash]
      [emptytemp]
      [emptyjava]
      [Reboot]

      Presioná el Botón Reparar para lanzar la eliminación. Presionas OK.

      OTL va a Reiniciar el ordenador para completar la eliminación.


      Guardas el nuevo reporte generado. Lo copias y pegas en Tu próxima respuesta y nos comentas como sigue la PC ahora.

      El reporte lo encontras en:
      C:\ _ OTL\MovedFiles\xxx_xxx.txt

      Blog | Antivirus Online | Eliminar Malwares | Antivirus Gratis


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.