• Registrarse
  • Iniciar sesión


  • Página 5 de 6 PrimeroPrimero 123456 ÚltimoÚltimo
    Resultados 41 al 50 de 56

    windows no arranca

    Perdonad el retraso. Respecto a la restauración, al principio pareció que iba bién pero después, al reiniciarse e intentar arrancar el ordenador en modo normal vi que todo seguía igual. Por lo tanto, puede decirse ...

    1. #41
      Usuario Avatar de Akolito
      Registrado
      mar 2010
      Ubicación
      Gipuzkoa
      Mensajes
      34

      Re: windows no arranca

      Perdonad el retraso.

      Respecto a la restauración, al principio pareció que iba bién pero después, al reiniciarse e intentar arrancar el ordenador en modo normal vi que todo seguía igual. Por lo tanto, puede decirse que aunque lo intenté, la restauración del sistema no se llegó a completar o no funcionó.

      Ahora procederé a usar el ComboFix.

      Gracias y hasta ahorita.

    2. #42
      Usuario Avatar de Akolito
      Registrado
      mar 2010
      Ubicación
      Gipuzkoa
      Mensajes
      34

      Re: windows no arranca

      Buenas, aquí está el reporte de Combofix:

      ComboFix 12-08-28.03 - Besteak 28/08/2012 22:23:28.1.2 - x86 NETWORK
      Microsoft Windows XP Professional 5.1.2600.3.1252.34.1033.18.2046.1587 [GMT 2:00]
      Running from: c:\documents and settings\Besteak\My Documents\Deskargak\ComboFix.exe
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      C:\Autorun.inf
      c:\documents and settings\All Users\Start Menu\Programs\Startup\TrayMin315.exe.lnk
      c:\documents and settings\Besteak\Application Data\OfferBox
      c:\documents and settings\Besteak\Application Data\OfferBox\config.dat
      c:\documents and settings\Besteak\Application Data\OfferBox\config.xml
      c:\documents and settings\Besteak\WINDOWS
      c:\program files\OfferBox
      c:\program files\OfferBox\OfferBox.exe
      c:\program files\OfferBox\OfferBoxEngine.dll
      c:\program files\OfferBox\[email protected]\components\OfferBoxXpCom.dll
      C:\readme.txt
      c:\windows\iun6002.exe
      c:\windows\ST6UNST.000
      c:\windows\system32\components
      c:\windows\system32\components\flx0.dll
      c:\windows\system32\components\flx1.dll
      c:\windows\system32\components\flx10.dll
      c:\windows\system32\components\flx11.dll
      c:\windows\system32\components\flx12.dll
      c:\windows\system32\components\flx13.dll
      c:\windows\system32\components\flx14.dll
      c:\windows\system32\components\flx15.dll
      c:\windows\system32\components\flx16.dll
      c:\windows\system32\components\flx17.dll
      c:\windows\system32\components\flx18.dll
      c:\windows\system32\components\flx19.dll
      c:\windows\system32\components\flx2.dll
      c:\windows\system32\components\flx20.dll
      c:\windows\system32\components\flx21.dll
      c:\windows\system32\components\flx22.dll
      c:\windows\system32\components\flx23.dll
      c:\windows\system32\components\flx24.dll
      c:\windows\system32\components\flx25.dll
      c:\windows\system32\components\flx26.dll
      c:\windows\system32\components\flx27.dll
      c:\windows\system32\components\flx28.dll
      c:\windows\system32\components\flx29.dll
      c:\windows\system32\components\flx3.dll
      c:\windows\system32\components\flx30.dll
      c:\windows\system32\components\flx31.dll
      c:\windows\system32\components\flx32.dll
      c:\windows\system32\components\flx33.dll
      c:\windows\system32\components\flx34.dll
      c:\windows\system32\components\flx35.dll
      c:\windows\system32\components\flx36.dll
      c:\windows\system32\components\flx37.dll
      c:\windows\system32\components\flx38.dll
      c:\windows\system32\components\flx39.dll
      c:\windows\system32\components\flx4.dll
      c:\windows\system32\components\flx40.dll
      c:\windows\system32\components\flx41.dll
      c:\windows\system32\components\flx42.dll
      c:\windows\system32\components\flx43.dll
      c:\windows\system32\components\flx44.dll
      c:\windows\system32\components\flx45.dll
      c:\windows\system32\components\flx46.dll
      c:\windows\system32\components\flx47.dll
      c:\windows\system32\components\flx48.dll
      c:\windows\system32\components\flx49.dll
      c:\windows\system32\components\flx5.dll
      c:\windows\system32\components\flx50.dll
      c:\windows\system32\components\flx6.dll
      c:\windows\system32\components\flx7.dll
      c:\windows\system32\components\flx8.dll
      c:\windows\system32\components\flx9.dll
      c:\windows\system32\MUI\0C0A\tourstart.exe
      c:\windows\system32\ndisapi.dll
      c:\windows\system32\URTTemp
      c:\windows\system32\URTTemp\fusion.dll
      c:\windows\system32\URTTemp\mscoree.dll
      c:\windows\system32\URTTemp\mscoree.dll.local
      c:\windows\system32\URTTemp\mscorsn.dll
      c:\windows\system32\URTTemp\mscorwks.dll
      c:\windows\system32\URTTemp\msvcr71.dll
      c:\windows\system32\URTTemp\regtlib.exe
      c:\windows\system32\ympgcdc.cfg
      c:\windows\XSxS
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-07-28 to 2012-08-28 )))))))))))))))))))))))))))))))
      .
      .
      2012-08-28 20:18 . 2012-08-28 20:18 0 ----a-w- c:\windows\RAVTC.TMP
      2012-08-26 13:44 . 2012-08-26 13:44 -------- d-----w- c:\windows\LastGood.Tmp
      2012-08-25 17:55 . 2012-08-26 13:03 -------- d-----w- c:\program files\SUPERAntiSpyware
      2012-08-25 17:55 . 2012-08-25 17:55 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERSetup
      2012-08-23 19:23 . 2012-08-23 19:23 -------- d-----w- C:\_OTM
      2012-08-22 16:50 . 2012-08-22 16:50 -------- d-----w- c:\program files\ESET
      2012-08-21 16:27 . 2012-08-21 16:56 -------- d-----w- c:\documents and settings\Besteak\DoctorWeb
      2012-08-19 16:27 . 2012-08-19 16:27 -------- d-----w- c:\documents and settings\Besteak\Application Data\SUPERAntiSpyware.com
      2012-08-19 16:27 . 2012-08-19 16:27 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
      2012-08-16 18:02 . 2012-08-23 17:13 -------- d-----w- c:\documents and settings\Besteak\Application Data\GlarySoft
      2012-08-16 17:59 . 2012-08-26 13:03 -------- d-----w- c:\program files\Glary Utilities
      2012-08-16 17:57 . 2012-08-16 17:57 -------- d-----w- c:\program files\Sophos
      2012-08-16 17:46 . 2012-08-23 17:53 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-08-10 19:59 . 2012-08-26 13:03 -------- d-----w- c:\program files\Argente - Registry Cleaner
      2012-08-10 19:51 . 2012-08-26 13:03 -------- d-----w- C:\Lop SD
      2012-08-09 16:19 . 2012-08-09 16:19 -------- d-----w- c:\documents and settings\Besteak\Application Data\Malwarebytes
      2012-08-09 16:19 . 2012-08-09 16:19 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
      2012-08-09 16:19 . 2012-08-09 16:29 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
      2012-08-09 16:19 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-08-09 15:55 . 2012-08-09 15:55 -------- d-----w- c:\documents and settings\Besteak\Application Data\QuickScan
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-06-13 13:19 . 2006-03-15 12:00 1866112 ----a-w- c:\windows\system32\win32k.sys
      2012-06-05 15:50 . 2008-04-14 00:12 1372672 ------w- c:\windows\system32\msxml6.dll
      2012-06-05 15:50 . 2006-03-15 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
      2012-06-04 04:32 . 2006-03-15 12:00 152576 ----a-w- c:\windows\system32\schannel.dll
      2012-06-02 13:19 . 2007-06-20 00:52 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
      2012-06-02 13:19 . 2007-06-20 00:52 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
      2012-06-02 13:19 . 2007-01-04 14:14 329240 ----a-w- c:\windows\system32\wucltui.dll
      2012-06-02 13:19 . 2007-01-04 14:14 210968 ----a-w- c:\windows\system32\wuweb.dll
      2012-06-02 13:19 . 2007-01-04 14:14 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
      2012-06-02 13:19 . 2007-06-20 00:52 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
      2012-06-02 13:19 . 2007-01-04 14:14 53784 ----a-w- c:\windows\system32\wuauclt.exe
      2012-06-02 13:19 . 2007-01-04 14:14 35864 ----a-w- c:\windows\system32\wups.dll
      2012-06-02 13:19 . 2006-03-15 12:00 97304 ----a-w- c:\windows\system32\cdm.dll
      2012-06-02 13:19 . 2005-05-26 03:16 45080 ----a-w- c:\windows\system32\wups2.dll
      2012-06-02 13:19 . 2007-06-20 00:52 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
      2012-06-02 13:19 . 2007-01-04 14:14 577048 ----a-w- c:\windows\system32\wuapi.dll
      2012-06-02 13:19 . 2007-01-04 14:14 1933848 ----a-w- c:\windows\system32\wuaueng.dll
      2012-06-02 13:18 . 2008-05-03 10:40 275696 ----a-w- c:\windows\system32\mucltui.dll
      2012-06-02 13:18 . 2008-05-03 10:40 17136 ----a-w- c:\windows\system32\mucltui.dll.mui
      2012-06-02 13:18 . 2005-05-26 03:19 214256 ----a-w- c:\windows\system32\muweb.dll
      2012-05-31 13:22 . 2006-03-15 12:00 599040 ----a-w- c:\windows\system32\crypt32.dll
      2004-07-09 02:08 . 2004-07-09 02:08 472576 ----a-w- c:\program files\dxsetup.exe
      2004-07-09 02:08 . 2004-07-09 02:08 2242560 ----a-w- c:\program files\dsetup32.dll
      2004-07-09 01:03 . 2004-07-09 01:03 62976 ----a-w- c:\program files\DSETUP.dll
      2003-11-10 17:11 . 2007-01-04 15:13 5632 ----a-w- c:\program files\DotNetInstaller.exe
      2012-05-14 16:37 . 2011-05-15 14:48 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\bf4458a7-43f6-46cd-aeaa-57b3932922bd.com" [2012-08-25 4777856]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "ShowWnd"="ShowWnd.exe" [2003-09-18 36864]
      "Telefonica"="c:\program files\Telefonica\bin\sprtcmd.exe" [2005-10-06 192512]
      "BigDogPath"="c:\windows\VM_STI.EXE" [2004-06-09 40960]
      "CertificateRegistration"="aetcrss1.exe" [2005-10-31 28672]
      "CHotkey"="mHotkey.exe" [2004-10-20 550912]
      "Dit"="Dit.exe" [2004-07-20 90112]
      "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]
      "ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
      "InCD"="c:\program files\Ahead\InCD\InCD.exe" [2005-05-13 1397760]
      "MedionVFD"="c:\program files\Medion Info Display\MdionLCM.exe" [2006-04-17 184320]
      "NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
      "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-09-17 8491008]
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
      "RegistrarUsrDNIeCertStoreDLL"="c:\program files\DNIe\udcs.exe" [2009-03-02 37888]
      .
      c:\documents and settings\All Users\Start Menu\Programs\Startup\
      Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2007-9-25 110592]
      HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2006-2-19 288472]
      .
      [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
      "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
      2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
      @=""
      .
      [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
      "ctfmon.exe"=c:\windows\system32\ctfmon.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
      "CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" /s
      "HP Software Update"=c:\program files\HP\HP Software Update\HPWuSchd2.exe
      "NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
      "NvMediaCenter"=RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
      "nwiz"=nwiz.exe /install
      "PrinTray"=c:\windows\System32\spool\DRIVERS\W32X86\2\printray.exe
      "QuickTime Task"="c:\program files\QuickTime\qttask.exe" -atboottime
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
      "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" -osboot
      .
      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
      "%windir%\\system32\\sessmgr.exe"=
      "c:\\Program Files\\MVM 2004 - Colin McRae Rally 2.0\\CMR2.exe"=
      "c:\\Program Files\\Java\\j2re1.4.2\\bin\\javaw.exe"=
      "c:\\Program Files\\eMule\\emule.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
      "c:\\Program Files\\Electronic Arts\\EADM\\Core.exe"=
      "c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
      "c:\\Program Files\\Telefonica\\AsistCfg69\\awcbrwsr.exe"=
      "c:\\Program Files\\Messenger\\msmsgs.exe"=
      "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
      "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
      "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
      "c:\\Program Files\\Skype\\Phone\\Skype.exe"=
      .
      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
      "1700:TCP"= 1700:TCP:MioNet Remote Drive Access
      "1641:TCP"= 1641:TCP:MioNet Remote Drive Verification
      .
      R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [12/08/2011 1:38 116608]
      R3 X10Hid;X10 Hid Device;c:\windows\system32\drivers\x10hid.sys [04/01/2007 17:31 7040]
      S0 11050859;11050859;c:\windows\system32\drivers\08953663.sys --> c:\windows\system32\drivers\08953663.sys [?]
      S0 ykjrml;ykjrml;c:\windows\system32\drivers\ifyq.sys --> c:\windows\system32\drivers\ifyq.sys [?]
      S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22/07/2011 18:27 12880]
      S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12/07/2011 23:55 67664]
      S2 gupdate1c8c25dcfa8495e;Google Update Service (gupdate1c8c25dcfa8495e);c:\program files\Google\Update\GoogleUpdate.exe [11/07/2008 20:36 133104]
      S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [09/08/2012 18:19 655944]
      S2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [05/07/2012 18:41 3048136]
      S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [29/02/2012 8:50 158856]
      S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [26/09/2007 20:06 61776]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [09/08/2012 18:19 22344]
      S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [14/05/2012 18:38 129976]
      S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe -k nosGetPlusHelper [15/03/2006 14:00 14336]
      S3 RkPavproc1;RkPavproc1;c:\windows\system32\drivers\RkPavproc1.sys [11/12/2009 13:49 16952]
      S3 RkPavproc2;RkPavproc2;c:\windows\system32\drivers\RkPavproc2.sys [11/12/2009 14:02 16952]
      S3 SCRx31 USB Smart Card Reader;SCRx31 USB Smart Card Reader;c:\windows\system32\drivers\scrccid.sys [12/05/2003 23:28 47100]
      S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [15/01/2012 20:07 208384]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
      nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\aetsprov]
      2005-10-27 08:33 20480 ----a-w- c:\windows\system32\aetsprov.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\Credential Manager]
      2005-12-16 13:18 1241088 ----a-w- c:\windows\system32\aetcmgr.dll
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-08-26 c:\windows\Tasks\GlaryInitialize.job
      - c:\program files\Glary Utilities\initialize.exe [2012-08-16 06:46]
      .
      2012-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2008-07-11 03:25]
      .
      2012-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2008-07-11 03:25]
      .
      2012-08-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-117609710-725345543-1004Core.job
      - c:\documents and settings\Besteak\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-11-22 14:59]
      .
      2012-08-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-117609710-725345543-1004UA.job
      - c:\documents and settings\Besteak\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-11-22 14:59]
      .
      2012-08-26 c:\windows\Tasks\PandaUSBVaccine.job
      - c:\program files\Panda USB Vaccine\RunInteractiveWin.exe [2010-12-07 15:45]
      .
      2012-08-26 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1123561945-117609710-725345543-1004.job
      - c:\program files\Real\RealUpgrade\realupgrade.exe [2010-06-03 01:02]
      .
      2012-07-23 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1123561945-117609710-725345543-1004.job
      - c:\program files\Real\RealUpgrade\realupgrade.exe [2010-06-03 01:02]
      .
      2012-08-26 c:\windows\Tasks\User_Feed_Synchronization-{84EBA7D7-0FE4-4B31-BE3C-3A1F6D5CDE6A}.job
      - c:\windows\system32\msfeedssync.exe [2007-08-13 17:36]
      .
      .
      ------- Supplementary Scan -------
      .
      uStart Page = hxxp://www.google.es/
      IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
      TCP: DhcpNameServer = 192.168.1.1
      DPF: {A7EFA878-3B78-457F-BBCC-71944F4AF0F0} - hxxp://www.osanet.euskadi.net/appcont/eskura/CAB/FirmaTexto.CAB
      FF - ProfilePath - c:\documents and settings\Besteak\Application Data\Mozilla\Firefox\Profiles\0t1btlsk.default\
      FF - prefs.js: browser.search.selectedEngine - Fissa
      FF - prefs.js: browser.startup.homepage - hxxp://eu.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:eu:official
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Notify-avldr - (no file)
      SafeBoot-11050859.sys
      SafeBoot-75337971.sys
      AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
      .
      .
      .
      **************************************************************************
      .
      catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2012-08-28 22:26
      Windows 5.1.2600 Service Pack 3 NTFS
      .
      scanning hidden processes ...
      .
      scanning hidden autostart entries ...
      .
      scanning hidden files ...
      .
      scan completed successfully
      hidden files: 0
      .
      **************************************************************************
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\h–€|ÿÿÿÿ¤•€|ù•A~*]
      "A0C0110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
      .
      --------------------- DLLs Loaded Under Running Processes ---------------------
      .
      - - - - - - - > 'winlogon.exe'(960)
      c:\program files\SUPERAntiSpyware\SASWINLO.DLL
      c:\windows\system32\WININET.dll
      c:\windows\SYSTEM32\avldr.dll
      .
      Completion time: 2012-08-28 22:28:40
      ComboFix-quarantined-files.txt 2012-08-28 20:28
      .
      Pre-Run: 41.798.619.136 bytes free
      Post-Run: 41.789.353.984 bytes free
      .
      WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
      [boot loader]
      timeout=2
      default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
      [operating systems]
      c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
      UnsupportedDebug="do not select this" /debug
      multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect
      .
      - - End Of File - - 6B9D45C4CDF0E0673A83B88EE2CD3A9C


      ¿Algo malo?
      Última edición por Fer21021 fecha: 28/08/12 a las 22:00:24

    3. #43
      Ex-Colaborador Avatar de Fer21021
      Registrado
      abr 2008
      Ubicación
      Argentina
      Mensajes
      6.216

      Re: windows no arranca

      Buenas,


      Paso 1:

      1.-Abrir el Notepad (Bloc de Notas)
      • Ir a INICIO > EJECUTAR >
      • Y ahí pones notepad.exe y ACEPTAR

      2.-Ahora copia y pega estos archivos dentro del Notepad

      Código:
      KillAll::
      
      File::
      c:\windows\RAVTC.TMP
      c:\windows\system32\drivers\08953663.sys
      c:\windows\system32\drivers\ifyq.sys
      
      Driver::
      08953663
      11050859
      ifyq
      ykjrml
      
      Firefox::
      FF - ProfilePath - c:\documents and settings\Besteak\Application Data\Mozilla\Firefox\Profiles\0t1btlsk.default\
      FF - prefs.js: browser.search.selectedEngine - Fissa
      
      ClearJavaCache::
      3.- Graba este archivo con el nombre CFScript.txt y déjalo en tu escritorio.

      4.- Arrastrar y soltar el archivo CFScript.txt dentro del archivo ComboFix.exe como lo muestra la animación de abajo. Esto activara ComboFix nuevamente.

      • Reinicia tu PC y nos dejas un el nuevo reporte de ComboFix, comentándonos como esta funcionado todo actualmente?




      Paso 2:
      Vuelve a pasar TddsKiller y cura o elimina lo que encuentre.

      Trae los reportes de ComboFix y TddsKiller, y comenta si continua el problema.


      Saludos.
      »» »» »».......Persevera y triunfarás........«« «« ««

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #44
      Usuario Avatar de Akolito
      Registrado
      mar 2010
      Ubicación
      Gipuzkoa
      Mensajes
      34

      Re: windows no arranca

      Estimados compañeros,

      Este es el reporte de ComboFix:

      ComboFix 12-08-28.03 - Besteak 31/08/2012 20:07:36.2.2 - x86 NETWORK
      Microsoft Windows XP Professional 5.1.2600.3.1252.34.1033.18.2046.1598 [GMT 2:00]
      Running from: c:\documents and settings\Besteak\Desktop\ComboFix.exe
      Command switches used :: c:\documents and settings\Besteak\Desktop\CFScript.txt
      .
      FILE ::
      "c:\windows\RAVTC.TMP"
      "c:\windows\system32\drivers\08953663.sys"
      "c:\windows\system32\drivers\ifyq.sys"
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      -------\Service_11050859
      -------\Service_ykjrml
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-07-28 to 2012-08-31 )))))))))))))))))))))))))))))))
      .
      .
      2012-08-26 13:44 . 2012-08-26 13:44 -------- d-----w- c:\windows\LastGood.Tmp
      2012-08-25 17:55 . 2012-08-26 13:03 -------- d-----w- c:\program files\SUPERAntiSpyware
      2012-08-25 17:55 . 2012-08-25 17:55 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERSetup
      2012-08-23 19:23 . 2012-08-23 19:23 -------- d-----w- C:\_OTM
      2012-08-22 16:50 . 2012-08-22 16:50 -------- d-----w- c:\program files\ESET
      2012-08-21 16:27 . 2012-08-21 16:56 -------- d-----w- c:\documents and settings\Besteak\DoctorWeb
      2012-08-19 16:27 . 2012-08-19 16:27 -------- d-----w- c:\documents and settings\Besteak\Application Data\SUPERAntiSpyware.com
      2012-08-19 16:27 . 2012-08-19 16:27 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
      2012-08-16 18:02 . 2012-08-23 17:13 -------- d-----w- c:\documents and settings\Besteak\Application Data\GlarySoft
      2012-08-16 17:59 . 2012-08-26 13:03 -------- d-----w- c:\program files\Glary Utilities
      2012-08-16 17:57 . 2012-08-16 17:57 -------- d-----w- c:\program files\Sophos
      2012-08-16 17:46 . 2012-08-23 17:53 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-08-10 19:59 . 2012-08-26 13:03 -------- d-----w- c:\program files\Argente - Registry Cleaner
      2012-08-10 19:51 . 2012-08-26 13:03 -------- d-----w- C:\Lop SD
      2012-08-09 16:19 . 2012-08-09 16:19 -------- d-----w- c:\documents and settings\Besteak\Application Data\Malwarebytes
      2012-08-09 16:19 . 2012-08-09 16:19 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
      2012-08-09 16:19 . 2012-08-09 16:29 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
      2012-08-09 16:19 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-08-09 15:55 . 2012-08-09 15:55 -------- d-----w- c:\documents and settings\Besteak\Application Data\QuickScan
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-06-13 13:19 . 2006-03-15 12:00 1866112 ----a-w- c:\windows\system32\win32k.sys
      2012-06-05 15:50 . 2008-04-14 00:12 1372672 ------w- c:\windows\system32\msxml6.dll
      2012-06-05 15:50 . 2006-03-15 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
      2012-06-04 04:32 . 2006-03-15 12:00 152576 ----a-w- c:\windows\system32\schannel.dll
      2004-07-09 02:08 . 2004-07-09 02:08 472576 ----a-w- c:\program files\dxsetup.exe
      2004-07-09 02:08 . 2004-07-09 02:08 2242560 ----a-w- c:\program files\dsetup32.dll
      2004-07-09 01:03 . 2004-07-09 01:03 62976 ----a-w- c:\program files\DSETUP.dll
      2003-11-10 17:11 . 2007-01-04 15:13 5632 ----a-w- c:\program files\DotNetInstaller.exe
      2012-05-14 16:37 . 2011-05-15 14:48 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\bf4458a7-43f6-46cd-aeaa-57b3932922bd.com" [2012-08-25 4777856]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "ShowWnd"="ShowWnd.exe" [2003-09-18 36864]
      "Telefonica"="c:\program files\Telefonica\bin\sprtcmd.exe" [2005-10-06 192512]
      "BigDogPath"="c:\windows\VM_STI.EXE" [2004-06-09 40960]
      "CertificateRegistration"="aetcrss1.exe" [2005-10-31 28672]
      "CHotkey"="mHotkey.exe" [2004-10-20 550912]
      "Dit"="Dit.exe" [2004-07-20 90112]
      "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]
      "ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
      "InCD"="c:\program files\Ahead\InCD\InCD.exe" [2005-05-13 1397760]
      "MedionVFD"="c:\program files\Medion Info Display\MdionLCM.exe" [2006-04-17 184320]
      "NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
      "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-09-17 8491008]
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
      "RegistrarUsrDNIeCertStoreDLL"="c:\program files\DNIe\udcs.exe" [2009-03-02 37888]
      .
      c:\documents and settings\All Users\Start Menu\Programs\Startup\
      Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2007-9-25 110592]
      HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2006-2-19 288472]
      .
      [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
      "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
      2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
      @=""
      .
      [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
      "ctfmon.exe"=c:\windows\system32\ctfmon.exe
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
      "CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" /s
      "HP Software Update"=c:\program files\HP\HP Software Update\HPWuSchd2.exe
      "NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
      "NvMediaCenter"=RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
      "nwiz"=nwiz.exe /install
      "PrinTray"=c:\windows\System32\spool\DRIVERS\W32X86\2\printray.exe
      "QuickTime Task"="c:\program files\QuickTime\qttask.exe" -atboottime
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
      "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" -osboot
      .
      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
      "%windir%\\system32\\sessmgr.exe"=
      "c:\\Program Files\\MVM 2004 - Colin McRae Rally 2.0\\CMR2.exe"=
      "c:\\Program Files\\Java\\j2re1.4.2\\bin\\javaw.exe"=
      "c:\\Program Files\\eMule\\emule.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
      "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
      "c:\\Program Files\\Electronic Arts\\EADM\\Core.exe"=
      "c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
      "c:\\Program Files\\Telefonica\\AsistCfg69\\awcbrwsr.exe"=
      "c:\\Program Files\\Messenger\\msmsgs.exe"=
      "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
      "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
      "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
      "c:\\Program Files\\Skype\\Phone\\Skype.exe"=
      .
      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
      "1700:TCP"= 1700:TCP:MioNet Remote Drive Access
      "1641:TCP"= 1641:TCP:MioNet Remote Drive Verification
      .
      R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [12/08/2011 1:38 116608]
      R3 X10Hid;X10 Hid Device;c:\windows\system32\drivers\x10hid.sys [04/01/2007 17:31 7040]
      S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22/07/2011 18:27 12880]
      S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12/07/2011 23:55 67664]
      S2 gupdate1c8c25dcfa8495e;Google Update Service (gupdate1c8c25dcfa8495e);c:\program files\Google\Update\GoogleUpdate.exe [11/07/2008 20:36 133104]
      S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [09/08/2012 18:19 655944]
      S2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [05/07/2012 18:41 3048136]
      S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [29/02/2012 8:50 158856]
      S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [26/09/2007 20:06 61776]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [09/08/2012 18:19 22344]
      S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [14/05/2012 18:38 129976]
      S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe -k nosGetPlusHelper [15/03/2006 14:00 14336]
      S3 RkPavproc1;RkPavproc1;c:\windows\system32\drivers\RkPavproc1.sys [11/12/2009 13:49 16952]
      S3 RkPavproc2;RkPavproc2;c:\windows\system32\drivers\RkPavproc2.sys [11/12/2009 14:02 16952]
      S3 SCRx31 USB Smart Card Reader;SCRx31 USB Smart Card Reader;c:\windows\system32\drivers\scrccid.sys [12/05/2003 23:28 47100]
      S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [15/01/2012 20:07 208384]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
      nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\aetsprov]
      2005-10-27 08:33 20480 ----a-w- c:\windows\system32\aetsprov.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\Credential Manager]
      2005-12-16 13:18 1241088 ----a-w- c:\windows\system32\aetcmgr.dll
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-08-26 c:\windows\Tasks\GlaryInitialize.job
      - c:\program files\Glary Utilities\initialize.exe [2012-08-16 06:46]
      .
      2012-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2008-07-11 03:25]
      .
      2012-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2008-07-11 03:25]
      .
      2012-08-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-117609710-725345543-1004Core.job
      - c:\documents and settings\Besteak\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-11-22 14:59]
      .
      2012-08-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-117609710-725345543-1004UA.job
      - c:\documents and settings\Besteak\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-11-22 14:59]
      .
      2012-08-26 c:\windows\Tasks\PandaUSBVaccine.job
      - c:\program files\Panda USB Vaccine\RunInteractiveWin.exe [2010-12-07 15:45]
      .
      2012-08-26 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1123561945-117609710-725345543-1004.job
      - c:\program files\Real\RealUpgrade\realupgrade.exe [2010-06-03 01:02]
      .
      2012-07-23 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1123561945-117609710-725345543-1004.job
      - c:\program files\Real\RealUpgrade\realupgrade.exe [2010-06-03 01:02]
      .
      2012-08-26 c:\windows\Tasks\User_Feed_Synchronization-{84EBA7D7-0FE4-4B31-BE3C-3A1F6D5CDE6A}.job
      - c:\windows\system32\msfeedssync.exe [2007-08-13 17:36]
      .
      .
      ------- Supplementary Scan -------
      .
      uStart Page = hxxp://www.google.es/
      IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
      TCP: DhcpNameServer = 192.168.1.1
      DPF: {A7EFA878-3B78-457F-BBCC-71944F4AF0F0} - hxxp://www.osanet.euskadi.net/appcont/eskura/CAB/FirmaTexto.CAB
      FF - ProfilePath - c:\documents and settings\Besteak\Application Data\Mozilla\Firefox\Profiles\0t1btlsk.default\
      FF - prefs.js: browser.startup.homepage - hxxp://eu.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:eu:official
      .
      .
      **************************************************************************
      .
      catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2012-08-31 20:15
      Windows 5.1.2600 Service Pack 3 NTFS
      .
      scanning hidden processes ...
      .
      scanning hidden autostart entries ...
      .
      scanning hidden files ...
      .
      scan completed successfully
      hidden files: 0
      .
      **************************************************************************
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\h–€|ÿÿÿÿ¤•€|ù•A~*]
      "A0C0110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
      .
      --------------------- DLLs Loaded Under Running Processes ---------------------
      .
      - - - - - - - > 'winlogon.exe'(584)
      c:\program files\SUPERAntiSpyware\SASWINLO.DLL
      c:\windows\system32\WININET.dll
      .
      - - - - - - - > 'explorer.exe'(1988)
      c:\windows\system32\WININET.dll
      c:\windows\system32\ieframe.dll
      .
      Completion time: 2012-08-31 20:20:29 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-08-31 18:20
      ComboFix2.txt 2012-08-28 20:28
      .
      Pre-Run: 46.083.215.360 bytes free
      Post-Run: 45.927.731.200 bytes libres
      .
      - - End Of File - - D5028265B766638760E343A21CBFAFBC
      Y este el de TDSSKiller:

      20:23:36.0578 0552 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
      20:23:36.0750 0552 ============================================================
      20:23:36.0750 0552 Current date / time: 2012/08/31 20:23:36.0750
      20:23:36.0750 0552 SystemInfo:
      20:23:36.0750 0552
      20:23:36.0750 0552 OS Version: 5.1.2600 ServicePack: 3.0
      20:23:36.0750 0552 Product type: Workstation
      20:23:36.0750 0552 ComputerName: TXISTI-12E6D967
      20:23:36.0750 0552 UserName: Besteak
      20:23:36.0750 0552 Windows directory: C:\WINDOWS
      20:23:36.0750 0552 System windows directory: C:\WINDOWS
      20:23:36.0750 0552 Processor architecture: Intel x86
      20:23:36.0750 0552 Number of processors: 2
      20:23:36.0750 0552 Page size: 0x1000
      20:23:36.0750 0552 Boot type: Safe boot with network
      20:23:36.0750 0552 ============================================================
      20:23:37.0359 0552 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
      20:23:37.0390 0552 ============================================================
      20:23:37.0390 0552 \Device\Harddisk0\DR0:
      20:23:37.0406 0552 MBR partitions:
      20:23:37.0406 0552 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xCD87368
      20:23:37.0421 0552 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xCD873E6, BlocksNum 0x186A241A
      20:23:37.0421 0552 ============================================================
      20:23:37.0437 0552 C: <-> \Device\Harddisk0\DR0\Partition1
      20:23:37.0500 0552 D: <-> \Device\Harddisk0\DR0\Partition2
      20:23:37.0500 0552 ============================================================
      20:23:37.0500 0552 Initialize success
      20:23:37.0500 0552 ============================================================
      20:23:46.0906 0404 ============================================================
      20:23:46.0906 0404 Scan started
      20:23:46.0906 0404 Mode: Manual; SigCheck; TDLFS;
      20:23:46.0906 0404 ============================================================
      20:23:47.0812 0404 ================ Scan system memory ========================
      20:23:47.0812 0404 System memory - ok
      20:23:47.0812 0404 ================ Scan services =============================
      20:23:47.0890 0404 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
      20:23:48.0140 0404 !SASCORE - ok
      20:23:48.0484 0404 Abiosdsk - ok
      20:23:48.0500 0404 abp480n5 - ok
      20:23:48.0546 0404 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
      20:23:49.0781 0404 ACPI - ok
      20:23:49.0828 0404 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
      20:23:49.0953 0404 ACPIEC - ok
      20:23:49.0968 0404 adpu160m - ok
      20:23:50.0015 0404 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
      20:23:50.0109 0404 aec - ok
      20:23:50.0156 0404 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
      20:23:50.0187 0404 AFD - ok
      20:23:50.0203 0404 Aha154x - ok
      20:23:50.0234 0404 aic78u2 - ok
      20:23:50.0250 0404 aic78xx - ok
      20:23:50.0296 0404 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
      20:23:50.0390 0404 Alerter - ok
      20:23:50.0421 0404 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
      20:23:50.0515 0404 ALG - ok
      20:23:50.0531 0404 AliIde - ok
      20:23:50.0562 0404 amsint - ok
      20:23:50.0609 0404 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
      20:23:50.0703 0404 AppMgmt - ok
      20:23:50.0718 0404 asc - ok
      20:23:50.0750 0404 asc3350p - ok
      20:23:50.0781 0404 asc3550 - ok
      20:23:50.0906 0404 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
      20:23:50.0921 0404 aspnet_state - ok
      20:23:50.0968 0404 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
      20:23:51.0062 0404 AsyncMac - ok
      20:23:51.0093 0404 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
      20:23:51.0187 0404 atapi - ok
      20:23:51.0218 0404 Atdisk - ok
      20:23:51.0265 0404 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
      20:23:51.0343 0404 Atmarpc - ok
      20:23:51.0375 0404 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
      20:23:51.0468 0404 AudioSrv - ok
      20:23:51.0515 0404 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
      20:23:51.0625 0404 audstub - ok
      20:23:51.0671 0404 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
      20:23:51.0781 0404 Beep - ok
      20:23:51.0812 0404 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
      20:23:51.0921 0404 BITS - ok
      20:23:51.0953 0404 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
      20:23:52.0046 0404 Browser - ok
      20:23:52.0062 0404 catchme - ok
      20:23:52.0125 0404 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
      20:23:52.0218 0404 cbidf2k - ok
      20:23:52.0250 0404 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
      20:23:52.0343 0404 CCDECODE - ok
      20:23:52.0359 0404 cd20xrnt - ok
      20:23:52.0406 0404 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
      20:23:52.0500 0404 Cdaudio - ok
      20:23:52.0546 0404 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
      20:23:52.0625 0404 Cdfs - ok
      20:23:52.0656 0404 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
      20:23:52.0750 0404 Cdrom - ok
      20:23:52.0765 0404 Changer - ok
      20:23:52.0812 0404 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
      20:23:52.0906 0404 CiSvc - ok
      20:23:52.0953 0404 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
      20:23:53.0031 0404 ClipSrv - ok
      20:23:53.0078 0404 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      20:23:53.0078 0404 clr_optimization_v2.0.50727_32 - ok
      20:23:53.0093 0404 CmdIde - ok
      20:23:53.0125 0404 COMSysApp - ok
      20:23:53.0187 0404 Cpqarray - ok
      20:23:53.0234 0404 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
      20:23:53.0328 0404 CryptSvc - ok
      20:23:53.0343 0404 dac2w2k - ok
      20:23:53.0375 0404 dac960nt - ok
      20:23:53.0421 0404 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
      20:23:53.0453 0404 DcomLaunch - ok
      20:23:53.0484 0404 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
      20:23:53.0578 0404 Dhcp - ok
      20:23:53.0609 0404 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
      20:23:53.0703 0404 Disk - ok
      20:23:53.0718 0404 dmadmin - ok
      20:23:53.0781 0404 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
      20:23:53.0921 0404 dmboot - ok
      20:23:53.0953 0404 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
      20:23:54.0046 0404 dmload - ok
      20:23:54.0093 0404 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
      20:23:54.0171 0404 dmserver - ok
      20:23:54.0203 0404 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
      20:23:54.0296 0404 DMusic - ok
      20:23:54.0328 0404 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
      20:23:54.0359 0404 Dnscache - ok
      20:23:54.0390 0404 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
      20:23:54.0484 0404 Dot3svc - ok
      20:23:54.0500 0404 dpti2o - ok
      20:23:54.0531 0404 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
      20:23:54.0625 0404 drmkaud - ok
      20:23:54.0671 0404 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
      20:23:54.0750 0404 EapHost - ok
      20:23:54.0828 0404 [ 8301243BDE5B6CD316D79C0191D50D9A ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
      20:23:54.0875 0404 ehRecvr - ok
      20:23:54.0890 0404 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
      20:23:54.0921 0404 ehSched - ok
      20:23:54.0968 0404 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
      20:23:55.0062 0404 ERSvc - ok
      20:23:55.0093 0404 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
      20:23:55.0125 0404 Eventlog - ok
      20:23:55.0156 0404 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
      20:23:55.0171 0404 EventSystem - ok
      20:23:55.0218 0404 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
      20:23:55.0312 0404 Fastfat - ok
      20:23:55.0343 0404 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
      20:23:55.0375 0404 FastUserSwitchingCompatibility - ok
      20:23:55.0406 0404 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
      20:23:55.0500 0404 Fdc - ok
      20:23:55.0546 0404 [ E9648254056BCE81A85380C0C3647DC4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
      20:23:55.0625 0404 FETNDIS - ok
      20:23:55.0671 0404 [ A583BC166495B07F704533754CE29CBD ] FETNDISB C:\WINDOWS\system32\DRIVERS\fetnd5b.sys
      20:23:55.0703 0404 FETNDISB - ok
      20:23:55.0734 0404 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
      20:23:55.0828 0404 Fips - ok
      20:23:55.0859 0404 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
      20:23:55.0953 0404 Flpydisk - ok
      20:23:56.0000 0404 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
      20:23:56.0093 0404 FltMgr - ok
      20:23:56.0156 0404 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
      20:23:56.0171 0404 FontCache3.0.0.0 - ok
      20:23:56.0187 0404 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
      20:23:56.0296 0404 Fs_Rec - ok
      20:23:56.0328 0404 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
      20:23:56.0421 0404 Ftdisk - ok
      20:23:56.0437 0404 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
      20:23:56.0531 0404 Gpc - ok
      20:23:56.0578 0404 [ C807DE3B18B7F638DCA7C235B00900AC ] GTwinUSB C:\WINDOWS\system32\Drivers\GTwinUSB.sys
      20:23:56.0609 0404 GTwinUSB - ok
      20:23:56.0687 0404 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c8c25dcfa8495e C:\Program Files\Google\Update\GoogleUpdate.exe
      20:23:56.0687 0404 gupdate1c8c25dcfa8495e - ok
      20:23:56.0734 0404 [ 2558130AF8D68FC313F2427DE4DDC3AA ] HdAudAddService C:\WINDOWS\system32\drivers\viahduaa.sys
      20:23:56.0765 0404 HdAudAddService - ok
      20:23:56.0796 0404 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
      20:23:56.0890 0404 HDAudBus - ok
      20:23:56.0953 0404 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
      20:23:57.0046 0404 helpsvc - ok
      20:23:57.0078 0404 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
      20:23:57.0171 0404 HidServ - ok
      20:23:57.0218 0404 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
      20:23:57.0312 0404 HidUsb - ok
      20:23:57.0343 0404 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
      20:23:57.0437 0404 hkmsvc - ok
      20:23:57.0453 0404 hpn - ok
      20:23:57.0500 0404 [ D03D10F7DED688FECF50F8FBF1EA9B8A ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
      20:23:57.0546 0404 HPZid412 - ok
      20:23:57.0593 0404 [ 89F41658929393487B6B7D13C8528CE3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
      20:23:57.0625 0404 HPZipr12 - ok
      20:23:57.0656 0404 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
      20:23:57.0703 0404 HPZius12 - ok
      20:23:57.0734 0404 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
      20:23:57.0765 0404 HTTP - ok
      20:23:57.0812 0404 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
      20:23:57.0906 0404 HTTPFilter - ok
      20:23:57.0937 0404 i2omgmt - ok
      20:23:57.0953 0404 i2omp - ok
      20:23:58.0000 0404 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
      20:23:58.0093 0404 i8042prt - ok
      20:23:58.0156 0404 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      20:23:58.0203 0404 idsvc - ok
      20:23:58.0250 0404 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
      20:23:58.0328 0404 Imapi - ok
      20:23:58.0375 0404 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
      20:23:58.0468 0404 ImapiService - ok
      20:23:58.0500 0404 ini910u - ok
      20:23:58.0546 0404 IntelIde - ok
      20:23:58.0593 0404 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
      20:23:58.0671 0404 intelppm - ok
      20:23:58.0703 0404 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
      20:23:58.0796 0404 Ip6Fw - ok
      20:23:58.0843 0404 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
      20:23:58.0953 0404 IpFilterDriver - ok
      20:23:58.0984 0404 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
      20:23:59.0062 0404 IpInIp - ok
      20:23:59.0093 0404 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
      20:23:59.0187 0404 IpNat - ok
      20:23:59.0218 0404 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
      20:23:59.0312 0404 IPSec - ok
      20:23:59.0343 0404 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
      20:23:59.0437 0404 IRENUM - ok
      20:23:59.0484 0404 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
      20:23:59.0578 0404 isapnp - ok
      20:23:59.0671 0404 [ E731921DB2E17DCD3DB472FAD5549C57 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
      20:23:59.0687 0404 JavaQuickStarterService - ok
      20:23:59.0703 0404 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
      20:23:59.0796 0404 Kbdclass - ok
      20:23:59.0828 0404 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
      20:23:59.0921 0404 kbdhid - ok
      20:23:59.0953 0404 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
      20:24:00.0062 0404 kmixer - ok
      20:24:00.0093 0404 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
      20:24:00.0140 0404 KSecDD - ok
      20:24:00.0171 0404 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
      20:24:00.0203 0404 lanmanserver - ok
      20:24:00.0234 0404 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
      20:24:00.0281 0404 lanmanworkstation - ok
      20:24:00.0296 0404 lbrtfdc - ok
      20:24:00.0375 0404 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
      20:24:00.0453 0404 LmHosts - ok
      20:24:00.0484 0404 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
      20:24:00.0515 0404 MBAMProtector - ok
      20:24:00.0578 0404 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
      20:24:00.0609 0404 MBAMService - ok
      20:24:00.0656 0404 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
      20:24:00.0671 0404 McrdSvc - ok
      20:24:00.0750 0404 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
      20:24:00.0765 0404 MDM - ok
      20:24:00.0796 0404 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
      20:24:00.0890 0404 Messenger - ok
      20:24:00.0937 0404 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
      20:24:01.0031 0404 mnmdd - ok
      20:24:01.0062 0404 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
      20:24:01.0156 0404 mnmsrvc - ok
      20:24:01.0187 0404 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
      20:24:01.0281 0404 Modem - ok
      20:24:01.0312 0404 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
      20:24:01.0406 0404 Mouclass - ok
      20:24:01.0453 0404 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
      20:24:01.0546 0404 mouhid - ok
      20:24:01.0578 0404 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
      20:24:01.0671 0404 MountMgr - ok
      20:24:01.0703 0404 [ 96AA8BA23142CC8E2B30F3CAE0C80254 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
      20:24:01.0718 0404 MozillaMaintenance - ok
      20:24:01.0734 0404 mraid35x - ok
      20:24:01.0781 0404 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
      20:24:01.0875 0404 MRxDAV - ok
      20:24:01.0921 0404 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
      20:24:01.0968 0404 MRxSmb - ok
      20:24:02.0000 0404 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
      20:24:02.0093 0404 MSDTC - ok
      20:24:02.0140 0404 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
      20:24:02.0234 0404 Msfs - ok
      20:24:02.0250 0404 MSIServer - ok
      20:24:02.0281 0404 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
      20:24:02.0359 0404 MSKSSRV - ok
      20:24:02.0390 0404 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
      20:24:02.0484 0404 MSPCLOCK - ok
      20:24:02.0515 0404 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
      20:24:02.0609 0404 MSPQM - ok
      20:24:02.0640 0404 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
      20:24:02.0718 0404 mssmbios - ok
      20:24:02.0750 0404 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
      20:24:02.0843 0404 MSTEE - ok
      20:24:02.0890 0404 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
      20:24:02.0921 0404 Mup - ok
      20:24:02.0968 0404 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
      20:24:03.0062 0404 NABTSFEC - ok
      20:24:03.0109 0404 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
      20:24:03.0203 0404 napagent - ok
      20:24:03.0312 0404 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
      20:24:03.0406 0404 NDIS - ok
      20:24:03.0578 0404 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
      20:24:03.0687 0404 NdisIP - ok
      20:24:03.0718 0404 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
      20:24:03.0750 0404 NdisTapi - ok
      20:24:03.0765 0404 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
      20:24:03.0859 0404 Ndisuio - ok
      20:24:03.0875 0404 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
      20:24:03.0984 0404 NdisWan - ok
      20:24:04.0015 0404 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
      20:24:04.0046 0404 NDProxy - ok
      20:24:04.0078 0404 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
      20:24:04.0187 0404 NetBIOS - ok
      20:24:04.0218 0404 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
      20:24:04.0312 0404 NetBT - ok
      20:24:04.0359 0404 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
      20:24:04.0453 0404 NetDDE - ok
      20:24:04.0484 0404 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
      20:24:04.0578 0404 NetDDEdsdm - ok
      20:24:04.0609 0404 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
      20:24:04.0703 0404 Netlogon - ok
      20:24:04.0734 0404 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
      20:24:04.0828 0404 Netman - ok
      20:24:04.0875 0404 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
      20:24:04.0890 0404 NetTcpPortSharing - ok
      20:24:04.0921 0404 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
      20:24:04.0968 0404 Nla - ok
      20:24:05.0031 0404 [ F44ADDBF29905CB19F52FC9FE6A0EFA1 ] nosGetPlusHelper C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
      20:24:05.0046 0404 nosGetPlusHelper - ok
      20:24:05.0062 0404 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
      20:24:05.0156 0404 Npfs - ok
      20:24:05.0203 0404 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
      20:24:05.0296 0404 Ntfs - ok
      20:24:05.0328 0404 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
      20:24:05.0406 0404 NtLmSsp - ok
      20:24:05.0468 0404 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
      20:24:05.0578 0404 NtmsSvc - ok
      20:24:05.0593 0404 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
      20:24:05.0703 0404 Null - ok
      20:24:05.0875 0404 [ 5950E6CC9FB3FABB61604D395DBC8550 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
      20:24:06.0156 0404 nv - ok
      20:24:06.0203 0404 [ 9FE764D5EECCA13B0932FAB81A4A5A6F ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
      20:24:06.0234 0404 NVSvc - ok
      20:24:06.0265 0404 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
      20:24:06.0359 0404 NwlnkFlt - ok
      20:24:06.0390 0404 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
      20:24:06.0484 0404 NwlnkFwd - ok
      20:24:06.0515 0404 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      20:24:06.0531 0404 ose - ok
      20:24:06.0562 0404 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
      20:24:06.0656 0404 Parport - ok
      20:24:06.0703 0404 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
      20:24:06.0781 0404 PartMgr - ok
      20:24:06.0828 0404 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
      20:24:06.0921 0404 ParVdm - ok
      20:24:06.0953 0404 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
      20:24:07.0046 0404 PCI - ok
      20:24:07.0062 0404 PCIDump - ok
      20:24:07.0109 0404 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
      20:24:07.0203 0404 PCIIde - ok
      20:24:07.0234 0404 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
      20:24:07.0328 0404 Pcmcia - ok
      20:24:07.0343 0404 PDCOMP - ok
      20:24:07.0375 0404 PDFRAME - ok
      20:24:07.0406 0404 PDRELI - ok
      20:24:07.0437 0404 PDRFRAME - ok
      20:24:07.0453 0404 perc2 - ok
      20:24:07.0484 0404 perc2hib - ok
      20:24:07.0578 0404 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
      20:24:07.0593 0404 PlugPlay - ok
      20:24:07.0609 0404 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
      20:24:07.0687 0404 PolicyAgent - ok
      20:24:07.0734 0404 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
      20:24:07.0828 0404 PptpMiniport - ok
      20:24:07.0859 0404 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
      20:24:07.0937 0404 ProtectedStorage - ok
      20:24:07.0984 0404 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
      20:24:08.0078 0404 PSched - ok
      20:24:08.0109 0404 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
      20:24:08.0218 0404 Ptilink - ok
      20:24:08.0250 0404 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
      20:24:08.0265 0404 PxHelp20 - ok
      20:24:08.0281 0404 ql1080 - ok
      20:24:08.0312 0404 Ql10wnt - ok
      20:24:08.0328 0404 ql12160 - ok
      20:24:08.0359 0404 ql1240 - ok
      20:24:08.0390 0404 ql1280 - ok
      20:24:08.0437 0404 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
      20:24:08.0531 0404 RasAcd - ok
      20:24:08.0562 0404 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
      20:24:08.0656 0404 RasAuto - ok
      20:24:08.0687 0404 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
      20:24:08.0781 0404 Rasl2tp - ok
      20:24:08.0812 0404 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
      20:24:08.0906 0404 RasMan - ok
      20:24:08.0937 0404 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
      20:24:09.0015 0404 RasPppoe - ok
      20:24:09.0031 0404 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
      20:24:09.0140 0404 Raspti - ok
      20:24:09.0171 0404 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
      20:24:09.0265 0404 Rdbss - ok
      20:24:09.0281 0404 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
      20:24:09.0390 0404 RDPCDD - ok
      20:24:09.0453 0404 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
      20:24:09.0546 0404 rdpdr - ok
      20:24:09.0593 0404 [ 6589DB6E5969F8EEE594CF71171C5028 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
      20:24:09.0640 0404 RDPWD - ok
      20:24:09.0671 0404 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
      20:24:09.0765 0404 RDSessMgr - ok
      20:24:09.0796 0404 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
      20:24:09.0890 0404 redbook - ok
      20:24:09.0921 0404 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
      20:24:10.0031 0404 RemoteAccess - ok
      20:24:10.0062 0404 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
      20:24:10.0156 0404 RemoteRegistry - ok
      20:24:10.0203 0404 [ A8589AC63921952AE9C4DC230F940849 ] RkPavproc1 C:\WINDOWS\system32\drivers\RkPavproc1.sys
      20:24:10.0218 0404 RkPavproc1 - ok
      20:24:10.0250 0404 [ A8589AC63921952AE9C4DC230F940849 ] RkPavproc2 C:\WINDOWS\system32\drivers\RkPavproc2.sys
      20:24:10.0265 0404 RkPavproc2 - ok
      20:24:10.0296 0404 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
      20:24:10.0390 0404 RpcLocator - ok
      20:24:10.0421 0404 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
      20:24:10.0437 0404 RpcSs - ok
      20:24:10.0500 0404 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
      20:24:10.0593 0404 RSVP - ok
      20:24:10.0625 0404 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
      20:24:10.0703 0404 SamSs - ok
      20:24:10.0750 0404 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
      20:24:10.0750 0404 SASDIFSV - ok
      20:24:10.0781 0404 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
      20:24:10.0796 0404 SASKUTIL - ok
      20:24:10.0828 0404 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
      20:24:10.0937 0404 SCardSvr - ok
      20:24:10.0968 0404 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
      20:24:11.0062 0404 Schedule - ok
      20:24:11.0109 0404 [ 7CF0DBB4A3591F707E34A75FBDE1F039 ] SCRx31 USB Smart Card Reader C:\WINDOWS\system32\DRIVERS\scrccid.sys
      20:24:11.0140 0404 SCRx31 USB Smart Card Reader - ok
      20:24:11.0187 0404 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
      20:24:11.0281 0404 Secdrv - ok
      20:24:11.0312 0404 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
      20:24:11.0406 0404 seclogon - ok
      20:24:11.0453 0404 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
      20:24:11.0546 0404 SENS - ok
      20:24:11.0562 0404 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
      20:24:11.0671 0404 serenum - ok
      20:24:11.0687 0404 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
      20:24:11.0781 0404 Serial - ok
      20:24:11.0859 0404 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
      20:24:11.0953 0404 Sfloppy - ok
      20:24:12.0000 0404 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
      20:24:12.0093 0404 SharedAccess - ok
      20:24:12.0125 0404 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
      20:24:12.0156 0404 ShellHWDetection - ok
      20:24:12.0171 0404 Simbad - ok
      20:24:12.0375 0404 [ 0F97E7A47A52F4A36969F0FC319654C2 ] Skype C2C Service C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
      20:24:12.0515 0404 Skype C2C Service - ok
      20:24:12.0562 0404 [ 6128E98EAAED364ED1A32708D2FD22CB ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
      20:24:12.0578 0404 SkypeUpdate - ok
      20:24:12.0609 0404 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
      20:24:12.0703 0404 SLIP - ok
      20:24:12.0734 0404 Sparrow - ok
      20:24:12.0765 0404 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
      20:24:12.0859 0404 splitter - ok
      20:24:12.0906 0404 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
      20:24:12.0937 0404 Spooler - ok
      20:24:12.0984 0404 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
      20:24:13.0062 0404 sr - ok
      20:24:13.0093 0404 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
      20:24:13.0187 0404 srservice - ok
      20:24:13.0234 0404 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
      20:24:13.0265 0404 Srv - ok
      20:24:13.0312 0404 [ 2D4027C46B4C6E45875E3C4BA3F67492 ] sscdbus C:\WINDOWS\system32\DRIVERS\sscdbus.sys
      20:24:13.0328 0404 sscdbus - ok
      20:24:13.0375 0404 [ F548F1EBA107BC19E91189E6A460BD0E ] sscdmdfl C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
      20:24:13.0421 0404 sscdmdfl - ok
      20:24:13.0437 0404 [ 71D348D53597379DFE1DE255D70AF13C ] sscdmdm C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
      20:24:13.0453 0404 sscdmdm - ok
      20:24:13.0500 0404 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
      20:24:13.0578 0404 SSDPSRV - ok
      20:24:13.0609 0404 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
      20:24:13.0703 0404 stisvc - ok
      20:24:13.0734 0404 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
      20:24:13.0843 0404 streamip - ok
      20:24:13.0875 0404 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
      20:24:13.0953 0404 swenum - ok
      20:24:14.0000 0404 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
      20:24:14.0078 0404 swmidi - ok
      20:24:14.0093 0404 SwPrv - ok
      20:24:14.0140 0404 symc810 - ok
      20:24:14.0156 0404 symc8xx - ok
      20:24:14.0187 0404 sym_hi - ok
      20:24:14.0218 0404 sym_u3 - ok
      20:24:14.0265 0404 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
      20:24:14.0343 0404 sysaudio - ok
      20:24:14.0375 0404 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
      20:24:14.0468 0404 SysmonLog - ok
      20:24:14.0515 0404 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
      20:24:14.0609 0404 TapiSrv - ok
      20:24:14.0640 0404 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
      20:24:14.0656 0404 Tcpip - ok
      20:24:14.0703 0404 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
      20:24:14.0796 0404 TDPIPE - ok
      20:24:14.0828 0404 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
      20:24:14.0921 0404 TDTCP - ok
      20:24:14.0953 0404 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
      20:24:15.0046 0404 TermDD - ok
      20:24:15.0093 0404 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
      20:24:15.0187 0404 TermService - ok
      20:24:15.0218 0404 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
      20:24:15.0234 0404 Themes - ok
      20:24:15.0265 0404 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
      20:24:15.0343 0404 TlntSvr - ok
      20:24:15.0375 0404 TosIde - ok
      20:24:15.0406 0404 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
      20:24:15.0500 0404 TrkWks - ok
      20:24:15.0562 0404 [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35 C:\WINDOWS\system32\DRIVERS\uagp35.sys
      20:24:15.0656 0404 uagp35 - ok
      20:24:15.0687 0404 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
      20:24:15.0781 0404 Udfs - ok
      20:24:15.0796 0404 ultra - ok
      20:24:15.0859 0404 [ 9651E5D850B6F6BD7C77C70AA06F02BF ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
      20:24:15.0890 0404 UMWdf - ok
      20:24:15.0921 0404 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
      20:24:16.0031 0404 Update - ok
      20:24:16.0062 0404 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
      20:24:16.0156 0404 upnphost - ok
      20:24:16.0187 0404 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
      20:24:16.0281 0404 UPS - ok
      20:24:16.0328 0404 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
      20:24:16.0421 0404 usbccgp - ok
      20:24:16.0437 0404 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
      20:24:16.0531 0404 usbehci - ok
      20:24:16.0562 0404 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
      20:24:16.0656 0404 usbhub - ok
      20:24:16.0703 0404 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
      20:24:16.0796 0404 usbprint - ok
      20:24:16.0828 0404 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
      20:24:16.0921 0404 usbscan - ok
      20:24:16.0968 0404 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
      20:24:17.0062 0404 usbstor - ok
      20:24:17.0093 0404 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
      20:24:17.0187 0404 usbuhci - ok
      20:24:17.0218 0404 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
      20:24:17.0296 0404 VgaSave - ok
      20:24:17.0328 0404 [ 2558130AF8D68FC313F2427DE4DDC3AA ] VIAHdAudAddService C:\WINDOWS\system32\drivers\viahduaa.sys
      20:24:17.0343 0404 VIAHdAudAddService - ok
      20:24:17.0375 0404 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
      20:24:17.0468 0404 ViaIde - ok
      20:24:17.0500 0404 [ C8EE49FA76EB7C41A9CDDFE58151A74E ] videX32 C:\WINDOWS\system32\DRIVERS\videX32.sys
      20:24:17.0531 0404 videX32 - ok
      20:24:17.0578 0404 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
      20:24:17.0671 0404 VolSnap - ok
      20:24:17.0703 0404 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
      20:24:17.0796 0404 VSS - ok
      20:24:17.0828 0404 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
      20:24:17.0921 0404 W32Time - ok
      20:24:17.0968 0404 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
      20:24:18.0078 0404 Wanarp - ok
      20:24:18.0093 0404 WDICA - ok
      20:24:18.0125 0404 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
      20:24:18.0218 0404 wdmaud - ok
      20:24:18.0250 0404 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
      20:24:18.0343 0404 WebClient - ok
      20:24:18.0421 0404 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
      20:24:18.0515 0404 winmgmt - ok
      20:24:18.0593 0404 [ B9715B9C18BC6C8F4B66733D208CC9F7 ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
      20:24:18.0625 0404 WmdmPmSN - ok
      20:24:18.0687 0404 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
      20:24:18.0734 0404 Wmi - ok
      20:24:18.0781 0404 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
      20:24:18.0875 0404 WmiApSrv - ok
      20:24:18.0921 0404 [ BBAEACA1FFA3C86361CF0998474F6C3A ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys
      20:24:18.0937 0404 WpdUsb - ok
      20:24:18.0984 0404 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
      20:24:19.0062 0404 WS2IFSL - ok
      20:24:19.0109 0404 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
      20:24:19.0203 0404 wscsvc - ok
      20:24:19.0234 0404 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
      20:24:19.0312 0404 WSTCODEC - ok
      20:24:19.0343 0404 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
      20:24:19.0437 0404 wuauserv - ok
      20:24:19.0484 0404 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
      20:24:19.0593 0404 WZCSVC - ok
      20:24:19.0625 0404 [ 81E8DA36CE70858898D5EB81E28A47D2 ] X10Hid C:\WINDOWS\system32\Drivers\x10hid.sys
      20:24:19.0656 0404 X10Hid - ok
      20:24:19.0703 0404 [ FCBC27869092850CDB75139F3818653A ] xfilt C:\WINDOWS\system32\DRIVERS\xfilt.sys
      20:24:19.0734 0404 xfilt - ok
      20:24:19.0765 0404 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
      20:24:19.0843 0404 xmlprov - ok
      20:24:19.0890 0404 [ 7481637A50A0468CF46C719672BC7EAA ] ZSMC301b C:\WINDOWS\system32\Drivers\usbVM31b.sys
      20:24:19.0906 0404 ZSMC301b - ok
      20:24:19.0937 0404 ================ Scan global ===============================
      20:24:19.0968 0404 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
      20:24:20.0000 0404 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
      20:24:20.0000 0404 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
      20:24:20.0031 0404 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
      20:24:20.0031 0404 [Global] - ok
      20:24:20.0031 0404 ================ Scan MBR ==================================
      20:24:20.0062 0404 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
      20:24:20.0281 0404 \Device\Harddisk0\DR0 - ok
      20:24:20.0281 0404 ================ Scan VBR ==================================
      20:24:20.0296 0404 [ 2D14113D1EDB3E79FB3ACA9940068630 ] \Device\Harddisk0\DR0\Partition1
      20:24:20.0296 0404 \Device\Harddisk0\DR0\Partition1 - ok
      20:24:20.0343 0404 [ 36DA53FAB133A0CBC6EE00843B01B763 ] \Device\Harddisk0\DR0\Partition2
      20:24:20.0343 0404 \Device\Harddisk0\DR0\Partition2 - ok
      20:24:20.0343 0404 ============================================================
      20:24:20.0343 0404 Scan finished
      20:24:20.0343 0404 ============================================================
      20:24:20.0468 0128 Detected object count: 0
      20:24:20.0468 0128 Actual detected object count: 0
      20:24:41.0015 0536 Deinitialize success

      Siento informaros que el problema parece persistir. Gracias por el esfuerzo que estáis haciendo, de veras.

      ¿Algún otro paso a seguir antes de tirar la toalla?

    5. #45
      Ex-Colaborador Avatar de Fer21021
      Registrado
      abr 2008
      Ubicación
      Argentina
      Mensajes
      6.216

      Re: windows no arranca

      Buenas,

      El reporte esta limpio, solo te voy a pedir un paso más para asegurar que esta limpio el equipo.
      Tienes el cd de instalación de Windows?


      1.-
      Desinstala ComboFix de la siguiente manera:

      • Ir a Inicio > Ejecutar
      • Escribir lo siguiente: ComboFix /Uninstall como muestra la imagen debajo:

      • Esto activara el desinstalador de ComboFix abriendo su pantalla principal y luego de unos segundos veras ("ComboFix is uninstalled")



      2.-
      Este programa me dará info, para ver si algo no esta en orden.

      Descarga OTL By OldTimer

      >>> Para Ejecutar OTL

      • Cerrar todos programas que tengas abiertos y hacer doble click en el ícono de OTL para ejecutarlo.
      • Dejarlo correr y esperar a que aparezca el menú de OTL..
      • Cuando salga el menú de OTL, debes cambiar debajo de: "Tipo de Análisis" poniendo Resultado Mínimo.
      • Marcar la casilla Analizar Todos.
      • Marcar las opciones: Buscar LOP y Buscar Purity.
      • Marcar las Opciones >> Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
      • Copiar y Pegar las lineas del siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

        NOTA: No copiar la palabra Cita.
        netsvcs
        msconfig
        %SYSTEMDRIVE%\*.*
        CREATERESTOREPOINT
      • Por favor No cambies el resto de la configuración a menos que te lo solicitemos.




      • Presionar el botón >> .
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
      • Copiar y pegar el contenido del archivo OTL.txt en tu próxima respuesta.



      Saludos
      »» »» »».......Persevera y triunfarás........«« «« ««

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #46
      Usuario Avatar de Akolito
      Registrado
      mar 2010
      Ubicación
      Gipuzkoa
      Mensajes
      34

      Re: windows no arranca

      Hola,

      El CD de windows creo que lo tengo (es un CD que por lo que parece deja el PC como recién salido de fábrica).

      El reporte de OTL aquí lo tenéis:

      OTL logfile created on: 02/09/2012 15:17:16 - Run 1
      OTL by OldTimer - Version 3.2.59.1 Folder = C:\Documents and Settings\Besteak\My Documents\Deskargak
      Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
      Internet Explorer (Version = 7.0.5730.13)
      Locale: 00000C0A | Country: Spain | Language: ESN | Date Format: dd/MM/yyyy

      2,00 Gb Total Physical Memory | 1,69 Gb Available Physical Memory | 84,81% Memory free
      4,85 Gb Paging File | 4,77 Gb Available in Paging File | 98,38% Paging File free
      Paging file location(s): C:\pagefile.sys 3069 3069 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
      Drive C: | 102,76 Gb Total Space | 46,75 Gb Free Space | 45,49% Space Free | Partition Type: NTFS
      Drive D: | 195,32 Gb Total Space | 42,95 Gb Free Space | 21,99% Space Free | Partition Type: NTFS

      Computer Name: TXISTI-12E6D967 | User Name: Besteak | Logged in as Administrator.
      Boot Mode: SafeMode with Networking | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Documents and Settings\Besteak\My Documents\Deskargak\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
      PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)


      ========== Modules (No Company Name) ==========


      ========== Services (SafeList) ==========

      SRV - (Skype C2C Service) -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
      SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
      SRV - (nosGetPlusHelper) -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll (NOS Microsystems Ltd.)


      ========== Driver Services (SafeList) ==========

      DRV - (WDICA) -- File not found
      DRV - (PDRFRAME) -- File not found
      DRV - (PDRELI) -- File not found
      DRV - (PDFRAME) -- File not found
      DRV - (PDCOMP) -- File not found
      DRV - (PCIDump) -- File not found
      DRV - (lbrtfdc) -- File not found
      DRV - (i2omgmt) -- File not found
      DRV - (Changer) -- File not found
      DRV - (catchme) -- C:\ComboFix\catchme.sys File not found
      DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
      DRV - (VIAHdAudAddService) -- C:\WINDOWS\system32\drivers\viahduaa.sys (VIA Technologies, Inc.)
      DRV - (HdAudAddService) -- C:\WINDOWS\system32\drivers\viahduaa.sys (VIA Technologies, Inc.)
      DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
      DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
      DRV - (RkPavproc2) -- C:\WINDOWS\system32\drivers\RkPavproc2.sys (Panda Security, S.L.)
      DRV - (RkPavproc1) -- C:\WINDOWS\system32\drivers\RkPavproc1.sys (Panda Security, S.L.)
      DRV - (xfilt) -- C:\WINDOWS\system32\drivers\xfilt.sys (VIA Technologies,Inc)
      DRV - (videX32) -- C:\WINDOWS\system32\drivers\videX32.sys (VIA Technologies, Inc.)
      DRV - (sscdmdm) -- C:\WINDOWS\system32\drivers\sscdmdm.sys (MCCI)
      DRV - (sscdmdfl) -- C:\WINDOWS\system32\drivers\sscdmdfl.sys (MCCI)
      DRV - (sscdbus) -- C:\WINDOWS\system32\drivers\sscdbus.sys (MCCI)
      DRV - (X10Hid) -- C:\WINDOWS\system32\drivers\x10hid.sys (X10 Wireless Technology, Inc.)
      DRV - (ZSMC301b) -- C:\WINDOWS\system32\drivers\usbVM31b.sys (VM)
      DRV - (SCRx31 USB Smart Card Reader) -- C:\WINDOWS\system32\drivers\scrccid.sys (SCM Microsystems Inc.)
      DRV - (GTwinUSB) -- C:\WINDOWS\system32\drivers\GTwinUSB.sys (Gemplus)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


      IE - HKU\S-1-5-21-1123561945-117609710-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.es/
      IE - HKU\S-1-5-21-1123561945-117609710-725345543-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-1123561945-117609710-725345543-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
      IE - HKU\S-1-5-21-1123561945-117609710-725345543-1004\..\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}: "URL" = http://www.fissa.com/en/results/?s=b&c=1012178981&suid=El58Moora&d=5&pid=23&q={searchTerms}
      IE - HKU\S-1-5-21-1123561945-117609710-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.useDBForOrder: true
      FF - prefs.js..browser.startup.homepage: "http://eu.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:eu:official"
      FF - prefs.js..extensions.enabledItems: [email protected]:2.2.0.1
      FF - prefs.js..extensions.enabledItems: [email protected]:1.3.1
      FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2
      FF - prefs.js..extensions.enabledItems: [email protected]:3.8
      FF - prefs.js..extensions.enabledItems: {DB2EA31C-58F5-48b7-8D60-CB0739257904}:0.20
      FF - prefs.js..extensions.enabledItems: [email protected]:1.0
      FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.1
      FF - prefs.js..extensions.enabledItems: [email protected]:4.0.1
      FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.91
      FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
      FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
      FF - user.js - File not found

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll File not found
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
      FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/Photosynth,version=2.0: C:\Program Files\Photosynth\npPhotosynthMozilla.dll ()
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@nosltd.com/getPlus+(R),version=1.6.2.91: C:\Program Files\NOS\bin\np_gp.dll (NOS Microsystems Ltd.)
      FF - HKLM\Software\MozillaPlugins\@pandasoftware.com/totalscan: C:\Program Files\Panda Security\TotalScan\npwrapper.dll (Panda Security)
      FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.775: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.775: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=1.0.0.0: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.775: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Documents and Settings\Besteak\Local Settings\Application Data\Google\Update\1.2.183.39\npGoogleOneClick8.dll (Google Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/05/14 18:37:56 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/06/01 17:09:20 | 000,000,000 | ---D | M]

      [2008/06/18 09:53:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Extensions
      [2012/08/09 18:26:33 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Firefox\Profiles\0t1btlsk.default\extensions
      [2010/12/03 23:21:35 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Firefox\Profiles\0t1btlsk.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
      [2012/04/05 10:07:37 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Firefox\Profiles\0t1btlsk.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
      [2012/01/01 23:35:28 | 000,000,000 | ---D | M] (Diccionari catalÃ* (general)) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Firefox\Profiles\0t1btlsk.default\extensions\[email protected]
      [2011/06/10 20:37:57 | 000,000,000 | ---D | M] (British English Dictionary) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Firefox\Profiles\0t1btlsk.default\extensions\[email protected]
      [2011/05/22 13:12:55 | 000,000,000 | ---D | M] (Diccionario de Español/España) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Firefox\Profiles\0t1btlsk.default\extensions\[email protected]
      [2011/01/01 13:57:43 | 000,000,000 | ---D | M] (Xuxen) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Firefox\Profiles\0t1btlsk.default\extensions\[email protected]
      [2012/06/15 16:03:15 | 000,000,000 | ---D | M] (Euskalbar) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Firefox\Profiles\0t1btlsk.default\extensions\[email protected]
      [2011/05/15 16:48:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Besteak\Application Data\mozilla\Firefox\Profiles\0t1btlsk.default\extensions\nostmp
      [2011/12/04 18:20:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
      [2012/07/19 18:18:44 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
      [2011/05/15 16:49:08 | 000,164,858 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\BESTEAK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\0T1BTLSK.DEFAULT\EXTENSIONS\{37E4D8EA-8BDA-4831-8EA1-89053939A250}.XPI
      [2012/07/19 18:23:04 | 000,084,004 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\BESTEAK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\0T1BTLSK.DEFAULT\EXTENSIONS\{DB2EA31C-58F5-48B7-8D60-CB0739257904}.XPI
      [2010/07/09 02:26:36 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
      [2012/05/14 18:37:55 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
      [2010/11/12 19:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
      [2012/04/24 19:33:55 | 000,001,525 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
      [2012/04/24 19:33:55 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
      [2012/04/24 19:33:55 | 000,000,749 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-es.xml
      [2012/04/24 19:33:55 | 000,001,352 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\elebila.xml
      [2012/04/24 19:33:55 | 000,001,360 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-eu.xml

      ========== Chrome ==========

      CHR - default_search_provider: Google ()
      CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}

      O1 HOSTS File: ([2012/08/31 20:15:47 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 localhost
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
      O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O4 - HKLM..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE (BIGDOG)
      O4 - HKLM..\Run: [CertificateRegistration] C:\WINDOWS\System32\aetcrss1.exe (A.E.T. Europe B.V.)
      O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe ()
      O4 - HKLM..\Run: [Dit] C:\WINDOWS\Dit.exe (ICSI Technology Ltd.)
      O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
      O4 - HKLM..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe (Nero AG)
      O4 - HKLM..\Run: [MedionVFD] C:\Program Files\Medion Info Display\MdionLCM.exe (Dritek System Inc.)
      O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
      O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
      O4 - HKLM..\Run: [RegistrarUsrDNIeCertStoreDLL] C:\Program Files\DNIe\udcs.exe ()
      O4 - HKLM..\Run: [ShowWnd] C:\WINDOWS\ShowWnd.exe ()
      O4 - HKLM..\Run: [Telefonica] C:\Program Files\Telefonica\bin\sprtcmd.exe (SupportSoft, Inc.)
      O4 - HKU\S-1-5-21-1123561945-117609710-725345543-1004..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\bf4458a7-43f6-46cd-aeaa-57b3932922bd.com (SUPERAntiSpyware.com)
      O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
      O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O7 - HKU\S-1-5-21-1123561945-117609710-725345543-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-21-1123561945-117609710-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O7 - HKU\S-1-5-21-1123561945-117609710-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
      O7 - HKU\S-1-5-21-1123561945-117609710-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O7 - HKU\S-1-5-21-1123561945-117609710-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O9 - Extra Button: PDFill PDF Editor - {FB858B22-55E2-413f-87F5-30ADC5552151} - C:\Program Files\PlotSoft\PDFill\DownloadPDF.exe (PlotSoft LLC)
      O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
      O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
      O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
      O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Value error.)
      O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} http://www.nanoscan.com/as/cabs/ascstubie.cab (TotalScan Installer Class)
      O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1170264609531 (MUWebControl Class)
      O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} http://212.170.22.153:8080/activex/AMC.cab (Reg Error: Value error.)
      O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} http://www3.ca.com/securityadvisor/virusinfo/webscan.cab (WScanCtl Class)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
      O16 - DPF: {A7EFA878-3B78-457F-BBCC-71944F4AF0F0} http://www.osanet.euskadi.net/appcont/eskura/CAB/FirmaTexto.CAB (FirmarTexto.Firma)
      O16 - DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.4.2/jinstall-1_4_2-windows-i586.cab (Reg Error: Value error.)
      O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
      O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Value error.)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1E5A8E1F-970D-4634-80F2-E58A502AD13A}: DhcpNameServer = 192.168.1.1
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
      O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
      O18 - Protocol\Handler\x-owacid {0215258f-f0a8-49de-bf1b-0ff02eda8807} - C:\Program Files\Microsoft\Outlook Web Access SMIME Client\mimectl.dll (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
      O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
      O24 - Desktop Components:0 () - http://www.rebelion.org/kalendario/ENERO.jpg
      O24 - Desktop Components:1 (My Current Home Page) - About:Home
      O24 - Desktop WallPaper: C:\Documents and Settings\Besteak\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
      O24 - Desktop BackupWallPaper: C:\Documents and Settings\Besteak\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
      O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2007/01/04 16:16:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
      O32 - AutoRun File - [2007/10/06 09:13:36 | 000,000,000 | ---D | M] - C:\AUTORUN -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

      NetSvcs: 6to4 - File not found
      NetSvcs: Ias - File not found
      NetSvcs: Iprip - File not found
      NetSvcs: Irmon - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: WmdmPmSp - File not found


      CREATERESTOREPOINT
      Unable to start System Restore Service. Error code 10

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/08/31 20:20:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
      [2012/08/28 22:53:53 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Besteak\Recent
      [2012/08/28 22:22:05 | 000,000,000 | RHSD | C] -- C:\cmdcons
      [2012/08/28 22:13:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
      [2012/08/26 15:03:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware
      [2012/08/26 15:03:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Sophos
      [2012/08/26 15:03:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Glary Utilities
      [2012/08/26 15:03:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Argente - Registry Cleaner
      [2012/08/25 19:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
      [2012/08/25 19:55:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERSetup
      [2012/08/24 13:28:40 | 002,211,928 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Besteak\My Documents\TDSSKiller.exe
      [2012/08/23 21:23:31 | 000,000,000 | ---D | C] -- C:\_OTM
      [2012/08/22 18:50:02 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
      [2012/08/21 18:27:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Besteak\DoctorWeb
      [2012/08/20 17:33:26 | 002,212,440 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Besteak\Desktop\TDSSKiller.exe
      [2012/08/19 18:27:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Besteak\Application Data\SUPERAntiSpyware.com
      [2012/08/19 18:27:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
      [2012/08/16 20:02:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Besteak\Application Data\GlarySoft
      [2012/08/16 19:59:15 | 000,000,000 | ---D | C] -- C:\Program Files\Glary Utilities
      [2012/08/16 19:57:46 | 000,000,000 | ---D | C] -- C:\Program Files\Sophos
      [2012/08/16 19:46:26 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
      [2012/08/10 21:59:02 | 000,000,000 | ---D | C] -- C:\Program Files\Argente - Registry Cleaner
      [2012/08/10 21:51:47 | 000,000,000 | ---D | C] -- C:\Lop SD
      [2012/08/09 18:19:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Besteak\Application Data\Malwarebytes
      [2012/08/09 18:19:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
      [2012/08/09 18:19:07 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
      [2012/08/09 18:19:07 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
      [2012/08/09 17:55:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Besteak\Application Data\QuickScan
      [2012/08/09 17:48:43 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
      [2007/01/04 17:13:13 | 000,005,632 | ---- | C] (InstallShield Software Corporation) -- C:\Program Files\DotNetInstaller.exe
      [2004/07/09 04:08:36 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dxsetup.exe
      [2004/07/09 04:08:34 | 002,242,560 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dsetup32.dll
      [2004/07/09 03:03:10 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Program Files\DSETUP.dll
      [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
      [1 C:\Documents and Settings\Besteak\Desktop\*.tmp files -> C:\Documents and Settings\Besteak\Desktop\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2012/09/02 15:08:26 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
      [2012/09/02 15:08:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
      [2012/08/31 20:15:47 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
      [2012/08/28 22:54:47 | 000,028,036 | ---- | M] () -- C:\Documents and Settings\Besteak\My Documents\cc_20120828_225415.reg
      [2012/08/28 22:22:09 | 000,000,325 | RHS- | M] () -- C:\boot.ini
      [2012/08/26 15:36:42 | 000,001,074 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
      [2012/08/26 15:32:32 | 000,001,174 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-117609710-725345543-1004UA.job
      [2012/08/26 15:28:57 | 000,000,282 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1123561945-117609710-725345543-1004.job
      [2012/08/26 15:28:52 | 000,000,518 | ---- | M] () -- C:\WINDOWS\tasks\PandaUSBVaccine.job
      [2012/08/26 15:28:48 | 000,001,070 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
      [2012/08/26 15:28:47 | 000,000,316 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
      [2012/08/26 15:17:28 | 000,000,426 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{84EBA7D7-0FE4-4B31-BE3C-3A1F6D5CDE6A}.job
      [2012/08/25 20:08:37 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
      [2012/08/24 13:28:40 | 002,211,928 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Besteak\My Documents\TDSSKiller.exe
      [2012/08/21 21:43:37 | 000,002,198 | ---- | M] () -- C:\Documents and Settings\Besteak\Desktop\DrWeb.csv
      [2012/08/20 17:33:26 | 002,212,440 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Besteak\Desktop\TDSSKiller.exe
      [2012/08/19 17:40:18 | 000,000,935 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Panda Cloud Cleaner.lnk
      [2012/08/16 19:59:17 | 000,000,741 | ---- | M] () -- C:\Documents and Settings\Besteak\Desktop\Glary Utilities.lnk
      [2012/08/10 21:59:03 | 000,000,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Argente - Registry Cleaner.lnk
      [2012/08/09 19:12:09 | 000,035,894 | ---- | M] () -- C:\Documents and Settings\Besteak\My Documents\cc_20120809_191203.reg
      [2012/08/09 18:29:08 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/08/03 15:20:38 | 000,001,122 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-117609710-725345543-1004Core.job
      [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
      [1 C:\Documents and Settings\Besteak\Desktop\*.tmp files -> C:\Documents and Settings\Besteak\Desktop\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2012/08/28 22:54:20 | 000,028,036 | ---- | C] () -- C:\Documents and Settings\Besteak\My Documents\cc_20120828_225415.reg
      [2012/08/28 22:22:09 | 000,000,209 | ---- | C] () -- C:\Boot.bak
      [2012/08/28 22:22:06 | 000,260,272 | RHS- | C] () -- C:\cmldr
      [2012/08/25 19:55:42 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
      [2012/08/21 21:43:37 | 000,002,198 | ---- | C] () -- C:\Documents and Settings\Besteak\Desktop\DrWeb.csv
      [2012/08/19 17:40:18 | 000,000,935 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Panda Cloud Cleaner.lnk
      [2012/08/16 19:59:18 | 000,000,316 | ---- | C] () -- C:\WINDOWS\tasks\GlaryInitialize.job
      [2012/08/16 19:59:17 | 000,000,741 | ---- | C] () -- C:\Documents and Settings\Besteak\Desktop\Glary Utilities.lnk
      [2012/08/10 21:59:03 | 000,000,813 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Argente - Registry Cleaner.lnk
      [2012/08/09 19:12:05 | 000,035,894 | ---- | C] () -- C:\Documents and Settings\Besteak\My Documents\cc_20120809_191203.reg
      [2012/08/09 18:29:07 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/02/15 18:40:20 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
      [2010/12/16 19:42:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
      [2010/02/28 16:53:55 | 000,008,627 | ---- | C] () -- C:\Documents and Settings\Besteak\PAV_FOG.OPC
      [2009/10/13 14:12:36 | 000,178,448 | ---- | C] () -- C:\Documents and Settings\Besteak\Start Menu.ace
      [2007/10/27 17:48:01 | 000,000,393 | ---- | C] () -- C:\Documents and Settings\Besteak\.kiki.cfg
      [2007/10/27 17:45:58 | 000,002,316 | ---- | C] () -- C:\Documents and Settings\Besteak\.kiki.hsc
      [2007/08/31 14:06:51 | 000,000,085 | ---- | C] () -- C:\Documents and Settings\Besteak\.edu.xtec.properties
      [2007/08/03 15:46:19 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
      [2007/02/01 16:32:59 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Besteak\NULL
      [2007/01/04 19:03:19 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\Besteak\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2007/01/04 16:31:12 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Besteak\Local Settings\Application Data\fusioncache.dat
      [2004/07/22 10:51:34 | 003,432,656 | ---- | C] () -- C:\Program Files\ManagedDX.CAB
      [2004/07/19 22:58:36 | 001,156,363 | ---- | C] () -- C:\Program Files\BDANT.cab
      [2004/07/19 22:53:26 | 000,976,020 | ---- | C] () -- C:\Program Files\BDAXP.cab
      [2004/07/09 14:17:16 | 013,265,040 | ---- | C] () -- C:\Program Files\dxnt.cab
      [2004/07/09 09:13:48 | 015,493,481 | ---- | C] () -- C:\Program Files\DirectX.cab
      [2004/07/09 09:13:46 | 000,703,080 | ---- | C] () -- C:\Program Files\BDA.cab

      ========== LOP Check ==========

      [2009/04/09 22:38:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
      [2012/06/12 16:18:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\boost_interprocess
      [2011/01/14 18:28:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
      [2007/01/07 11:17:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MSScanAppDataDir
      [2012/08/28 22:18:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Panda Security
      [2011/09/17 18:28:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Panda Software
      [2009/03/23 08:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlotSoft
      [2008/03/07 1812 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\sentinel
      [2010/11/01 19:37:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SSScanAppDataDir
      [2012/08/25 19:55:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SUPERSetup
      [2012/01/15 18:59:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}
      [2011/01/04 10:38:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\Audacity
      [2009/04/09 22:38:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\Babylon
      [2007/06/07 23:08:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\blaxxun interactive
      [2009/01/10 02:06:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\Crayon Physics Deluxe
      [2010/12/17 20:11:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\FissaSearch
      [2011/03/27 16:35:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\GetRightToGo
      [2012/08/23 19:13:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\GlarySoft
      [2012/06/04 18:07:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\Image Zone Express
      [2011/01/15 13:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\IObit
      [2010/12/18 10:34:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\moovida-1
      [2010/01/22 18:24:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\OpenOffice.org
      [2009/07/09 22:47:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\Printer Info Cache
      [2012/08/09 17:55:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\QuickScan
      [2012/08/26 15:03:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\Samsung
      [2007/06/20 15:21:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\SecondLife
      [2012/08/22 18:41:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Besteak\Application Data\Uniblue
      [2007/01/04 17:33:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\X10 Commander
      [2012/08/26 15:28:47 | 000,000,316 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
      [2012/08/26 15:28:52 | 000,000,518 | ---- | M] () -- C:\WINDOWS\Tasks\PandaUSBVaccine.job
      [2012/08/26 15:17:28 | 000,000,426 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{84EBA7D7-0FE4-4B31-BE3C-3A1F6D5CDE6A}.job

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2007/01/04 16:16:52 | 000,000,960 | -HS- | M] () -- C:\2lnjao3o.sys
      [2000/11/08 12:25:24 | 000,002,868 | -H-- | M] () -- C:\AAFRAME-11.HTM
      [2008/04/06 14:02:39 | 000,000,275 | ---- | M] () -- C:\Acceso directo a Disco local (D).lnk
      [2007/01/04 17:38:16 | 000,000,033 | ---- | M] () -- C:\ALCSetup.log
      [2008/04/27 18:24:29 | 000,000,161 | ---- | M] () -- C:\antiv.exe
      [2007/01/04 16:16:52 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
      [2007/01/04 1647 | 000,000,209 | ---- | M] () -- C:\Boot.bak
      [2012/08/28 22:22:09 | 000,000,325 | RHS- | M] () -- C:\boot.ini
      [2004/08/03 23:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr
      [2007/08/03 15:49:57 | 000,000,074 | ---- | M] () -- C:\CMLoader.log
      [2012/08/31 20:20:29 | 000,013,926 | ---- | M] () -- C:\ComboFix.txt
      [2007/01/04 16:16:52 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
      [2007/12/29 11:41:16 | 000,003,532 | ---- | M] () -- C:\drmHeader.bin
      [2007/08/30 20:17:38 | 000,000,157 | ---- | M] () -- C:\error.txt
      [2000/11/15 14:58:00 | 000,007,007 | -H-- | M] () -- C:\EUSKARA HOBETZEN.GIF
      [2000/10/06 12:50:00 | 000,002,134 | -H-- | M] () -- C:\FONDO-TITULO.GIF
      [2002/11/11 14:59:18 | 344,338,033 | ---- | M] () -- C:\GTAINSTALLER.exe
      [2005/11/25 23:38:48 | 174,838,062 | ---- | M] (Arobas Music ) -- C:\Guitar Pro full 5.0 with RMS.exe
      [2000/11/15 15:55:00 | 000,007,533 | ---- | M] () -- C:\HASIERA.HTM
      [2007/01/04 16:16:52 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
      [2000/11/15 15:26:14 | 000,005,876 | -H-- | M] () -- C:\KREDITUAK.HTM
      [2012/08/10 21:54:01 | 000,017,795 | ---- | M] () -- C:\lopR.txt
      [2000/11/10 12:36:50 | 000,000,443 | -H-- | M] () -- C:\MARKO-NABEGADOREA.HTM
      [2007/01/04 16:16:52 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
      [2000/11/15 14:45:46 | 000,029,121 | -H-- | M] () -- C:\NABEGADOREA.HTM
      [2010/06/12 20:19:47 | 016,603,136 | ---- | M] () -- C:\nowy.avi
      [2010/06/12 20:49:38 | 000,963,584 | ---- | M] () -- C:\nowy_00002.avi
      [2010/06/12 20:22:31 | 000,045,056 | ---- | M] () -- C:\nowy_00003.avi
      [2010/06/12 20:24:33 | 006,133,760 | ---- | M] () -- C:\nowy_00004.avi
      [2010/06/12 20:28:26 | 009,430,528 | ---- | M] () -- C:\nowy_00005.avi
      [2006/03/15 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
      [2009/03/08 17:24:05 | 000,250,048 | RHS- | M] () -- C:\ntldr
      [2012/09/02 15:08:16 | 3218,079,744 | -HS- | M] () -- C:\pagefile.sys
      [2008/04/18 16:19:37 | 000,329,264 | ---- | M] (RealNetworks, Inc.) -- C:\RealPlayer11GOLD_es.exe
      [2008/10/24 20:32:20 | 000,001,140 | ---- | M] () -- C:\RNDIS.log
      [2000/10/09 11:36:22 | 000,000,181 | -H-- | M] () -- C:\SARRERA-LAGUNTZA
      [2000/11/15 15:46:26 | 000,014,040 | -H-- | M] () -- C:\SARRERA-LAGUNTZA.HTM
      [2010/01/08 21:37:50 | 000,000,167 | ---- | M] () -- C:\Setup.log
      [2000/09/29 15:39:58 | 000,000,043 | -H-- | M] () -- C:\SHIM.GIF
      [2008/03/16 1450 | 000,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
      [2008/03/16 16:29:22 | 000,000,172 | -H-- | M] () -- C:\sqmdata01.sqm
      [2008/06/01 15:42:49 | 000,000,268 | -H-- | M] () -- C:\sqmdata02.sqm
      [2008/09/07 22:18:04 | 000,000,268 | -H-- | M] () -- C:\sqmdata03.sqm
      [2008/09/16 11:23:58 | 000,000,268 | -H-- | M] () -- C:\sqmdata04.sqm
      [2008/09/26 16:17:28 | 000,000,232 | -H-- | M] () -- C:\sqmdata05.sqm
      [2008/09/26 16:29:55 | 000,000,232 | -H-- | M] () -- C:\sqmdata06.sqm
      [2007/09/05 21:46:40 | 000,000,232 | -H-- | M] () -- C:\sqmdata07.sqm
      [2007/09/05 21:46:44 | 000,000,232 | -H-- | M] () -- C:\sqmdata08.sqm
      [2007/09/11 19:32:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata09.sqm
      [2007/09/11 19:33:44 | 000,000,232 | -H-- | M] () -- C:\sqmdata10.sqm
      [2007/09/11 19:33:49 | 000,000,232 | -H-- | M] () -- C:\sqmdata11.sqm
      [2007/09/12 2003 | 000,000,268 | -H-- | M] () -- C:\sqmdata12.sqm
      [2007/09/14 21:33:47 | 000,000,268 | -H-- | M] () -- C:\sqmdata13.sqm
      [2007/09/28 22:50:48 | 000,000,232 | -H-- | M] () -- C:\sqmdata14.sqm
      [2007/10/14 14:45:33 | 000,000,232 | -H-- | M] () -- C:\sqmdata15.sqm
      [2007/10/14 14:46:31 | 000,000,232 | -H-- | M] () -- C:\sqmdata16.sqm
      [2007/10/14 19:09:45 | 000,000,268 | -H-- | M] () -- C:\sqmdata17.sqm
      [2007/11/16 1942 | 000,000,232 | -H-- | M] () -- C:\sqmdata18.sqm
      [2007/12/22 17:12:58 | 000,000,232 | -H-- | M] () -- C:\sqmdata19.sqm
      [2008/03/16 1450 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
      [2008/03/16 16:29:22 | 000,000,172 | -H-- | M] () -- C:\sqmnoopt01.sqm
      [2008/06/01 15:42:49 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
      [2008/09/07 22:18:04 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
      [2008/09/16 11:23:58 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
      [2008/09/26 16:17:28 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
      [2008/09/26 16:29:55 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
      [2007/09/05 21:46:40 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm
      [2007/09/05 21:46:44 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm
      [2007/09/11 19:32:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
      [2007/09/11 19:33:44 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm
      [2007/09/11 19:33:49 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm
      [2007/09/12 2003 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
      [2007/09/14 21:33:47 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
      [2007/09/28 22:50:48 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
      [2007/10/14 14:45:33 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
      [2007/10/14 14:46:31 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm
      [2007/10/14 19:09:45 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm
      [2007/11/16 1942 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm
      [2007/12/22 17:12:58 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm
      [2012/08/23 19:27:29 | 000,089,508 | ---- | M] () -- C:\TDSSKiller.2.8.7.0_23.08.2012_19.26.36_log.txt
      [2012/08/23 19:54:34 | 000,089,838 | ---- | M] () -- C:\TDSSKiller.2.8.7.0_23.08.2012_19.52.22_log.txt
      [2012/08/31 20:21:07 | 000,000,352 | ---- | M] () -- C:\TDSSKiller.2.8.7.0_31.08.2012_20.20.54_log.txt
      [2012/08/31 20:23:12 | 000,000,352 | ---- | M] () -- C:\TDSSKiller.2.8.7.0_31.08.2012_20.23.08_log.txt
      [2012/08/31 20:24:41 | 000,083,230 | ---- | M] () -- C:\TDSSKiller.2.8.8.0_31.08.2012_20.23.36_log.txt
      [2000/10/13 13:09:58 | 000,000,043 | -H-- | M] () -- C:\TRANSPARENT.GIF
      [2008/07/05 13:33:38 | 000,003,054 | ---- | M] () -- C:\txertatu_etiketak.pl.pl
      [2008/05/01 19:40:30 | 000,000,161 | ---- | M] () -- C:\w0w.exe

      < End of report >
      Me gustaría al menos poder guardar unos archivos de este PC en un disco duro externo, sin que suponga un peligro para otro ordenador o el mismo disco duro. ¿Creéis que será posible?

      Gracias y hasta pronto

    7. #47
      Ex-Colaborador Avatar de Fer21021
      Registrado
      abr 2008
      Ubicación
      Argentina
      Mensajes
      6.216

      Re: windows no arranca

      Hola,

      Ultimo paso, y si no hay caso, ya pasará el compañero dadig-Bass.exe, para indicarte la mejor manera de salvar tus archivos.



      Realiza lo siguiente por favor.

      1.-
      Desinstala ComboFix de la siguiente manera:

      • Ir a Inicio > Ejecutar
      • Escribir lo siguiente: ComboFix /Uninstall como muestra la imagen debajo:

      • Esto activara el desinstalador de ComboFix abriendo su pantalla principal y luego de unos segundos veras ("ComboFix is uninstalled")



      2.-

      Ejecuta OTL.exe

      Copia y Pega el código que está dentro del recuadro de abajo en la sección Análisis Personalizado / Código de Reparación.


      Código:
      :OTL
      DRV - (WDICA) -- File not found
      DRV - (PDRFRAME) -- File not found
      DRV - (PDRELI) -- File not found
      DRV - (PDFRAME) -- File not found
      DRV - (PDCOMP) -- File not found
      DRV - (PCIDump) -- File not found
      DRV - (lbrtfdc) -- File not found
      DRV - (i2omgmt) -- File not found
      DRV - (Changer) -- File not found
      IE - HKU\S-1-5-21-1123561945-117609710-725345543-1004\..\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}: "URL" = http://www.fissa.com/en/results/?s=b&c=1012178981&suid=El58Moora&d=5&pid=23&q={sea rchTerms}
      FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll File not found
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Value error.)
      O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} http://212.170.22.153:8080/activex/AMC.cab (Reg Error: Value error.)
      O24 - Desktop Components:0 () - http://www.rebelion.org/kalendario/ENERO.jpg
      [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
      [1 C:\Documents and Settings\Besteak\Desktop\*.tmp files -> C:\Documents and Settings\Besteak\Desktop\*.tmp -> ]
      [2012/08/28 22:54:47 | 000,028,036 | ---- | M] () -- C:\Documents and Settings\Besteak\My Documents\cc_20120828_225415.reg
      [2012/08/09 19:12:09 | 000,035,894 | ---- | M] () -- C:\Documents and Settings\Besteak\My Documents\cc_20120809_191203.reg
      [2012/08/28 22:54:20 | 000,028,036 | ---- | C] () -- C:\Documents and Settings\Besteak\My Documents\cc_20120828_225415.reg
      [2012/08/09 19:12:05 | 000,035,894 | ---- | C] () -- C:\Documents and Settings\Besteak\My Documents\cc_20120809_191203.reg
      [2009/04/09 22:38:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
      [2007/01/04 16:16:52 | 000,000,960 | -HS- | M] () -- C:\2lnjao3o.sys
      [2008/03/16 1450 | 000,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
       [2008/03/16 16:29:22 | 000,000,172 | -H-- | M] () -- C:\sqmdata01.sqm
       [2008/06/01 15:42:49 | 000,000,268 | -H-- | M] () -- C:\sqmdata02.sqm
       [2008/09/07 22:18:04 | 000,000,268 | -H-- | M] () -- C:\sqmdata03.sqm
       [2008/09/16 11:23:58 | 000,000,268 | -H-- | M] () -- C:\sqmdata04.sqm
       [2008/09/26 16:17:28 | 000,000,232 | -H-- | M] () -- C:\sqmdata05.sqm
       [2008/09/26 16:29:55 | 000,000,232 | -H-- | M] () -- C:\sqmdata06.sqm
       [2007/09/05 21:46:40 | 000,000,232 | -H-- | M] () -- C:\sqmdata07.sqm
       [2007/09/05 21:46:44 | 000,000,232 | -H-- | M] () -- C:\sqmdata08.sqm
       [2007/09/11 19:32:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata09.sqm
       [2007/09/11 19:33:44 | 000,000,232 | -H-- | M] () -- C:\sqmdata10.sqm
       [2007/09/11 19:33:49 | 000,000,232 | -H-- | M] () -- C:\sqmdata11.sqm
       [2007/09/12 2003 | 000,000,268 | -H-- | M] () -- C:\sqmdata12.sqm
       [2007/09/14 21:33:47 | 000,000,268 | -H-- | M] () -- C:\sqmdata13.sqm
       [2007/09/28 22:50:48 | 000,000,232 | -H-- | M] () -- C:\sqmdata14.sqm
       [2007/10/14 14:45:33 | 000,000,232 | -H-- | M] () -- C:\sqmdata15.sqm
       [2007/10/14 14:46:31 | 000,000,232 | -H-- | M] () -- C:\sqmdata16.sqm
       [2007/10/14 19:09:45 | 000,000,268 | -H-- | M] () -- C:\sqmdata17.sqm
       [2007/11/16 1942 | 000,000,232 | -H-- | M] () -- C:\sqmdata18.sqm
       [2007/12/22 17:12:58 | 000,000,232 | -H-- | M] () -- C:\sqmdata19.sqm
       [2008/03/16 1450 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
       [2008/03/16 16:29:22 | 000,000,172 | -H-- | M] () -- C:\sqmnoopt01.sqm
       [2008/06/01 15:42:49 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
       [2008/09/07 22:18:04 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
       [2008/09/16 11:23:58 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
       [2008/09/26 16:17:28 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
       [2008/09/26 16:29:55 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
       [2007/09/05 21:46:40 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm
       [2007/09/05 21:46:44 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm
       [2007/09/11 19:32:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
       [2007/09/11 19:33:44 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm
       [2007/09/11 19:33:49 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm
       [2007/09/12 2003 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
       [2007/09/14 21:33:47 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
       [2007/09/28 22:50:48 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
       [2007/10/14 14:45:33 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
       [2007/10/14 14:46:31 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm
       [2007/10/14 19:09:45 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm
       [2007/11/16 1942 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm
       [2007/12/22 17:12:58 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm
      
      
      :Files
      
      ipconfig /flushdns /c
      ipconfig /renew /c
      
      
      :Commands
      [PURITY]
      [EMPTYFLASH]
      [EMPTYTEMP]
      [RESETHOSTS]
      
      
      Presiona el Botón Reparar para lanzar la eliminación. Presionas OK.

      Permite que OTL Reinicie el ordenador para completar la eliminación.


      Guardas el nuevo reporte generado. Lo copias y pegas en Tu próxima respuesta me comentas como sigue el ordenador ahora.
      »» »» »».......Persevera y triunfarás........«« «« ««

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #48
      Usuario Avatar de Akolito
      Registrado
      mar 2010
      Ubicación
      Gipuzkoa
      Mensajes
      34

      Re: windows no arranca

      Estimados compañeros,

      El ordenador sigue igual. Además, cuando ha intentado reiniciar, como lo ha hecho en modo normal al final la pantalla se ha quedado como en suspensión y he tenido que apagar el ordenador y reiniciarlo en modo seguro. Entonces he visto que no había ningún reporte nuevo y al abrir de nuevo el programa OTL ha salido el reporte que os pego a continuación:

      All processes killed
      ========== OTL ==========
      Service WDICA stopped successfully!
      Service WDICA deleted successfully!
      File File not found not found.
      Service PDRFRAME stopped successfully!
      Service PDRFRAME deleted successfully!
      File File not found not found.
      Service PDRELI stopped successfully!
      Service PDRELI deleted successfully!
      File File not found not found.
      Service PDFRAME stopped successfully!
      Service PDFRAME deleted successfully!
      File File not found not found.
      Service PDCOMP stopped successfully!
      Service PDCOMP deleted successfully!
      File File not found not found.
      Service PCIDump stopped successfully!
      Service PCIDump deleted successfully!
      File File not found not found.
      Service lbrtfdc stopped successfully!
      Service lbrtfdc deleted successfully!
      File File not found not found.
      Service i2omgmt stopped successfully!
      Service i2omgmt deleted successfully!
      File File not found not found.
      Service Changer stopped successfully!
      Service Changer deleted successfully!
      File File not found not found.
      Registry key HKEY_USERS\S-1-5-21-1123561945-117609710-725345543-1004\Software\Microsoft\Internet Explorer\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}\ not found.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
      Starting removal of ActiveX control {31435657-9980-0010-8000-00AA00389B71}
      C:\WINDOWS\Downloaded Program Files\wvc1dmo.inf moved successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{31435657-9980-0010-8000-00AA00389B71}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{31435657-9980-0010-8000-00AA00389B71}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.
      Starting removal of ActiveX control {745395C8-D0E1-4227-8586-624CA9A10A8D}
      C:\WINDOWS\Downloaded Program Files\setup.inf moved successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{745395C8-D0E1-4227-8586-624CA9A10A8D}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{745395C8-D0E1-4227-8586-624CA9A10A8D}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{745395C8-D0E1-4227-8586-624CA9A10A8D}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{745395C8-D0E1-4227-8586-624CA9A10A8D}\ not found.
      Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0\ deleted successfully.
      File http://www.rebelion.org/kalendario/ENERO.jpg not found.
      C:\WINDOWS\LastGood.Tmp\INF\oem20.inf deleted successfully.
      C:\WINDOWS\LastGood.Tmp\INF\oem20.PNF deleted successfully.
      C:\WINDOWS\LastGood.Tmp\INF folder deleted successfully.
      C:\WINDOWS\LastGood.Tmp folder deleted successfully.
      C:\Documents and Settings\Besteak\Desktop\~WRL0676.tmp deleted successfully.
      C:\Documents and Settings\Besteak\My Documents\cc_20120828_225415.reg moved successfully.
      C:\Documents and Settings\Besteak\My Documents\cc_20120809_191203.reg moved successfully.
      File C:\Documents and Settings\Besteak\My Documents\cc_20120828_225415.reg not found.
      File C:\Documents and Settings\Besteak\My Documents\cc_20120809_191203.reg not found.
      C:\Documents and Settings\All Users\Application Data\Babylon folder moved successfully.
      C:\2lnjao3o.sys moved successfully.
      C:\sqmdata00.sqm moved successfully.
      C:\sqmdata01.sqm moved successfully.
      C:\sqmdata02.sqm moved successfully.
      C:\sqmdata03.sqm moved successfully.
      C:\sqmdata04.sqm moved successfully.
      C:\sqmdata05.sqm moved successfully.
      C:\sqmdata06.sqm moved successfully.
      C:\sqmdata07.sqm moved successfully.
      C:\sqmdata08.sqm moved successfully.
      C:\sqmdata09.sqm moved successfully.
      C:\sqmdata10.sqm moved successfully.
      C:\sqmdata11.sqm moved successfully.
      C:\sqmdata12.sqm moved successfully.
      C:\sqmdata13.sqm moved successfully.
      C:\sqmdata14.sqm moved successfully.
      C:\sqmdata15.sqm moved successfully.
      C:\sqmdata16.sqm moved successfully.
      C:\sqmdata17.sqm moved successfully.
      C:\sqmdata18.sqm moved successfully.
      C:\sqmdata19.sqm moved successfully.
      C:\sqmnoopt00.sqm moved successfully.
      C:\sqmnoopt01.sqm moved successfully.
      C:\sqmnoopt02.sqm moved successfully.
      C:\sqmnoopt03.sqm moved successfully.
      C:\sqmnoopt04.sqm moved successfully.
      C:\sqmnoopt05.sqm moved successfully.
      C:\sqmnoopt06.sqm moved successfully.
      C:\sqmnoopt07.sqm moved successfully.
      C:\sqmnoopt08.sqm moved successfully.
      C:\sqmnoopt09.sqm moved successfully.
      C:\sqmnoopt10.sqm moved successfully.
      C:\sqmnoopt11.sqm moved successfully.
      C:\sqmnoopt12.sqm moved successfully.
      C:\sqmnoopt13.sqm moved successfully.
      C:\sqmnoopt14.sqm moved successfully.
      C:\sqmnoopt15.sqm moved successfully.
      C:\sqmnoopt16.sqm moved successfully.
      C:\sqmnoopt17.sqm moved successfully.
      C:\sqmnoopt18.sqm moved successfully.
      C:\sqmnoopt19.sqm moved successfully.
      ========== FILES ==========
      < ipconfig /flushdns /c >
      Configuración IP de Windows
      Se vació con éxito la caché de resolución de DNS.
      C:\Documents and Settings\Besteak\My Documents\Deskargak\cmd.bat deleted successfully.
      C:\Documents and Settings\Besteak\My Documents\Deskargak\cmd.txt deleted successfully.
      < ipconfig /renew /c >
      Configuración IP de Windows
      Adaptador Ethernet Local Area Connection :
      Sufijo de conexión específica DNS : home
      Dirección IP. . . . . . . . . . . : 192.168.1.11
      Máscara de subred . . . . . . . . : 255.255.255.0
      Puerta de enlace predeterminada : 192.168.1.1
      C:\Documents and Settings\Besteak\My Documents\Deskargak\cmd.bat deleted successfully.
      C:\Documents and Settings\Besteak\My Documents\Deskargak\cmd.txt deleted successfully.
      ========== COMMANDS ==========

      [EMPTYFLASH]

      User: All Users

      User: Besteak
      ->Flash cache emptied: 612 bytes

      User: Default User

      User: LocalService
      ->Flash cache emptied: 0 bytes

      User: NetworkService

      User: Nueva carpeta

      User: Nueva carpeta 1

      Total Flash Files Cleaned = 0,00 mb


      [EMPTYTEMP]

      User: All Users

      User: Besteak
      ->Temp folder emptied: 829 bytes
      ->Temporary Internet Files folder emptied: 2226153 bytes
      ->Java cache emptied: 0 bytes
      ->FireFox cache emptied: 55846037 bytes
      ->Google Chrome cache emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: LocalService
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: NetworkService
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes

      User: Nueva carpeta

      User: Nueva carpeta 1

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32\dllcache .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 0 bytes
      %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
      %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 55,00 mb

      C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
      HOSTS file reset successfully

      OTL by OldTimer - Version 3.2.59.1 log created on 09042012_223401

      Files\Folders moved on Reboot...

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...
      Pero no se ha guardado en ningún sitio, ahora no encuentro el archivo del reporte, menos mal que lo he copiado.

      Ustedes dirán que puedo hacer..

      Gracias y hasta pronto

    9. #49
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: windows no arranca

      Hola

      Exactamente como te lo ha indicado el compañero Fer21021 infeccion no hay. Lo unico que queda es formatear o reparar la instalacion. Si bien han sido eliminadas infecciones lo mas posible es que lo que evite que windows inicie sean los daños causados por infecciones o por cualquier cosa que haya ocurrido en el ordenador

      Te recomiendo que hagas un respaldo de tus documentos importantes, ya sea en un USB, CD, DVD o donde puedas guardarlos. Y no te preocupes que infeccion ya no hay

      Si no quieres formatear, ya que dijiste que tienes el cd de windows puedes usar la opcion de reparacion:
      Si usando una reparacion del sistema no se arregla nada tendrias que pasar a formatear haciendo los respaldos correspondientes

      Espero haberme dado a entender y si tienes dudas nos avisas

      Saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #50
      Usuario Avatar de Akolito
      Registrado
      mar 2010
      Ubicación
      Gipuzkoa
      Mensajes
      34

      Re: windows no arranca

      Muchas gracias a todos

      Ahora por lo menos puedo guardar en un usb los archivos más importantes. Intentaré la reparación y si no lo formatearé.

      Después os contaré cómo va.

      Un saludo y hasta pronto!