• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 16

    Mi Pc está muy lenta

    Buenas antes que nada un saludo, bueno este es mi problema... Mi pc estaba bien y se la preste a un amigo apartir de ahi la pc esta muy lenta se escuchan muchos Click (metralla ...

    1. #1
      Usuario Avatar de Azif
      Registrado
      may 2009
      Ubicación
      Veracruz
      Mensajes
      73

      Articulo Mi Pc está muy lenta

      Buenas antes que nada un saludo, bueno este es mi problema...

      Mi pc estaba bien y se la preste a un amigo apartir de ahi la pc esta muy lenta se escuchan muchos Click (metralla de clicks), y muchas ventanas de errores y llega un momento que se controla pero se alenta muchisimo, si alguien me puede echar la mano se lo agradere mucho!

    2. #2
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.817

      Re: Mi Pc está muy lenta

      Hola y bienvenid@
      Vamos a realizar estos pasos en modo normal, es importante que leas con detenemiento y sin ejecutarlas haz lo siguiente:



      1. Descarga en tú escritorio el TDSSKiller pero NO la ejecutes aún.
      2. Descarga, instala y actualiza el Malwarebytes.



      Ahora vamos a realizar estos pasos:

      1º- Ejecutamos el TDSSKiller según su manual.

      Recuerda marcar ambas opciones:


      Una vez terminado copia su reporte.



      2º- Ejecutamos el Malwarebytes y realizamos lo siguiente:



      1. Pestaña "Actualización" y luego al botón "Actualizar"
      2. Pestaña "Escáner" y luego a "Escaneo Completo" y seguido a "Escanear"
      3. Una vez acabado le das a la opción "Mostrar Resultados" y seguidamente a "Quitar elementos Seleccionado"
      4. Sí te pide reiniciar hazlo.
      5. Copia su último reporte ubicado en la pestaña "Registro"



      3º-
      Analiza tú máquina con ESET Online Scanner siguiendo los pasos con detenimiento
      Bien, una vez acabado el nod32 peganos tambien el reporte, una vez que lo tengamos ya continuamos con más pasos sí fuese necesario


      Resumen:


      • Colocar el reporte del Malwarebytes.
      • Colocar el reporte del TDSSkiller.
      • Colocar el reporte del ESET Online Scanner.
      • Comentar como va el ordenador.



      Un saludo.
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Azif
      Registrado
      may 2009
      Ubicación
      Veracruz
      Mensajes
      73

      Re: Mi Pc está muy lenta

      Antes que nada gracias por la ayuda, tengo un problema estoy tratando de bajar el TDSSKILLER y la pagina no carga no se si tenga un problema la pagina o sea yo, omito este paso? (es el primer paso)...

    4. #4
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.817

      Re: Mi Pc está muy lenta

      Continua y dejalo para lo último
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de Azif
      Registrado
      may 2009
      Ubicación
      Veracruz
      Mensajes
      73

      Re: Mi Pc está muy lenta

      ===========================================================
      Malwarebytes Anti-Malware 1.65.0.1400
      www.malwarebytes.org

      Database version: v2012.09.19.12

      Windows XP Service Pack 3 x86 NTFS
      Internet Explorer 8.0.6001.18702
      Kendator :: K [administrator]

      19/09/2012 04:41:43 p.m.
      mbam-log-2012-09-19 (16-41-43).txt

      Scan type: Full scan (C:\|)
      Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
      Scan options disabled: P2P
      Objects scanned: 507433
      Time elapsed: 2 hour(s), 42 minute(s), 43 second(s)

      Memory Processes Detected: 2
      C:\WINDOWS\wrdrive32.exe (Malware.Gen) -> 648 -> Delete on reboot.
      C:\Documents and Settings\Kendator\Datos de programa\SUvIPqk\SUvIPqk.exe (Packer.ModifiedUPX) -> 1960 -> Delete on reboot.

      Memory Modules Detected: 0
      (No malicious items detected)

      Registry Keys Detected: 1
      HKCU\SOFTWARE\CROSSRIDER (Adware.GamePlayLab) -> Quarantined and deleted successfully.

      Registry Values Detected: 10
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Microsoft Driver Setup (Malware.Gen) -> Data: C:\WINDOWS\wrdrive32.exe -> Quarantined and deleted successfully.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Microsoft Driver Setup (Malware.Gen) -> Data: C:\WINDOWS\wrdrive32.exe -> Quarantined and deleted successfully.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SUvIPqk (Packer.ModifiedUPX) -> Data: C:\Documents and Settings\Kendator\Datos de programa\SUvIPqk\SUvIPqk.exe -> Quarantined and deleted successfully.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Hzryrf (Worm.Nrgbot) -> Data: C:\Documents and Settings\Kendator\Datos de programa\Hzryrf.scr -> Quarantined and deleted successfully.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|zaber0 (Worm.Autorun.B) -> Data: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1830\zaberg.exe -> Quarantined and deleted successfully.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Remote Security Manager (Trojan.Agent) -> Data: C:\Documents and Settings\Kendator\Datos de programa\RECYCLER\svchost.exe -> Quarantined and deleted successfully.
      HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Worm.AutoRun) -> Data: explorer.exe,C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1830\zaberg.exe -> Quarantined and deleted successfully.
      HKCU\Software\Crossrider|215AppVerifier (Adware.GamePlayLab) -> Data: 2b70a11a77cdb409d4e3ad12b06116f7 -> Quarantined and deleted successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Taskman (Trojan.Agent) -> Data: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1830\zaberg.exe -> Quarantined and deleted successfully.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Windows Cache Cleaner (Worm.AutoRun) -> Data: C:\Documents and Settings\Kendator\Datos de programa\RECYCLER\ecleaner.exe -> Quarantined and deleted successfully.

      Registry Data Items Detected: 5
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Taskman (Worm.Autorun.B) -> Bad: (C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1830\zaberg.exe) Good: () -> Quarantined and repaired successfully.
      HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Bad: (http://homitrlz.in) Good: (http://www.google.com) -> Quarantined and repaired successfully.
      HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Hijack.Shell) -> Bad: (explorer.exe,C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1830\zaberg.exe) Good: (Explorer.exe) -> Quarantined and repaired successfully.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
      HKCU\SOFTWARE\Policies\Microsoft\Internet Explorer\control panel|HomePage (PUM.Hijack.HomePageControl) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.

      Folders Detected: 3
      C:\RECYCLER\R-1-5-21-1482476501-1644491937-682003330-1013 (Worm.AutoRun.Gen) -> Quarantined and deleted successfully.
      C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1830 (Worm.AutoRun) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\RECYCLER (Worm.AutoRun) -> Delete on reboot.

      Files Detected: 166
      C:\Archivos de programa\EjoyStudio\oRipa MSN Webcam Recorder2.0.1\files\ejoystudio_oripa.msn.webcam.recorder_v1.2.0.x_patch-GEAR.exe (PUP.Hacktool.Patcher) -> No action taken.
      C:\WINDOWS\wrdrive32.exe (Malware.Gen) -> Delete on reboot.
      C:\Documents and Settings\Kendator\Datos de programa\SUvIPqk\SUvIPqk.exe (Packer.ModifiedUPX) -> Delete on reboot.
      C:\Documents and Settings\Kendator\Datos de programa\Hzryrf.scr (Worm.Nrgbot) -> Quarantined and deleted successfully.
      C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1830\zaberg.exe (Worm.Autorun.B) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\RECYCLER\svchost.exe (Trojan.Agent) -> Delete on reboot.
      C:\cfzp.exe (Heuristics.Shuriken) -> Quarantined and deleted successfully.
      C:\faac.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\hdnr.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\lbpm.exe (Malware.Gen) -> Quarantined and deleted successfully.
      C:\nszp.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\wbem.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
      C:\wdcp.exe (Malware.Gen) -> Quarantined and deleted successfully.
      C:\zkwmh.exe (Malware.Gen) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\caqaz.exe (Malware.Gen) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\cicrj.exe (Heuristics.Shuriken) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\fkvx.exe (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\usvnu.exe (Heuristics.Shuriken) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\wnvdv.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\wvnql.exe (Malware.Gen) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\zkwmh.exe (Malware.Gen) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Configuración local\Archivos temporales de Internet\Content.IE5\NJ0R147D\4555[2].exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Configuración local\Archivos temporales de Internet\Content.IE5\ZHSJDVG0\6971[1].exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Configuración local\Archivos temporales de Internet\Content.IE5\ZHSJDVG0\dqs[1].exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Configuración local\Temp\SUvIPqk.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\174.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\177.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\17F.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\new.bin (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\995.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1E5.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1EC.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\18E.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\192.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\199.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1A0.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1A1.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1A2.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\181.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1A7.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1C3.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1E3.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\236.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\2E9.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\314.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\621.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\308.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1B1.tmp (Trojan.LVBP) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1BD.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1C5.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\1E0.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\23E.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\24A.tmp (Trojan.Agent.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\26B.tmp (Backdoor.Bot.WPMH) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\29A.tmp (Heuristics.Shuriken) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\202.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\3F4.tmp (Heuristics.Shuriken) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\435.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\441.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\4A8.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\50F.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\208.tmp (Heuristics.Shuriken) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\20C.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\210.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\21A.tmp (Malware.Gen) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\22B.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\32A.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\32E.tmp (Malware.Gen) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\38A.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\3A1.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\2AF.tmp (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\2B8.tmp (Trojan.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\2D7.tmp (Trojan.VBKrypt) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Mis documentos\Downloads\FastDownload.exe (Affiliate.Downloader) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Mis documentos\Downloads\DownloadSetup.exe (Affiliate.Downloader) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Mis documentos\Downloads\camtasia\keygen.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Mis documentos\Mipony\AISSCS5\AISSCS5\Keygen\Keygen\adobe_IL_CS5_keygen\adobe_IL_CS5_keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Mis documentos\Mipony\Illustrator\Illustrator\Crack\keygen.exe (Backdoor.Small) -> Quarantined and deleted successfully.
      C:\Monito_CS3\IL\AutoPlay\Images\Global\Otros Fixes\KeyGens\Adobe Design Premium CS3.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
      C:\Monito_CS3\IL\AutoPlay\Images\Global\Otros Fixes\KeyGens\Adobe Master Collection CS3.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
      C:\Monito_CS3\IL\AutoPlay\Images\Global\Otros Fixes\KeyGens\Adobe PhotoShop CS3.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
      C:\Monito_CS3\IL\AutoPlay\Images\Global\Otros Fixes\KeyGens\Adobe Web Premium CS3.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
      C:\RECYCLER\R-1-5-21-1482476501-1644491937-682003330-1013\Adobe7.exe (Malware.Gen) -> Quarantined and deleted successfully.
      C:\RECYCLER\R-1-5-21-1482476501-1644491937-682003330-1013\Wireless.exe (Worm.Autorun.BGen) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP393\A0148592.exe (Malware.Gen) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP393\A0148597.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP393\A0148599.exe (Trojan.BTSoft.Gen) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP393\A0148607.exe (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP393\A0148622.scr (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP393\A0148623.exe (Trojan.BTSoft.Gen) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP393\A0148626.exe (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP393\A0148648.exe (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP394\A0148650.exe (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP394\A0148651.exe (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP394\A0148652.exe (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP394\A0148664.exe (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP394\A0148665.exe (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP394\A0148667.scr (Trojan.Agent) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP394\A0149673.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP394\A0149675.exe (Trojan.BTSoft.Gen) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP395\A0150691.exe (Trojan.BTSoft.Gen) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP395\A0151685.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP395\A0151686.exe (Trojan.BTSoft.Gen) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP396\A0153701.exe (Trojan.BTSoft.Gen) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP396\A0157726.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP396\A0154699.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP396\A0154724.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP396\A0155724.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP396\A0155731.scr (Worm.Nrgbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP396\A0156726.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP396\A0156727.exe (Trojan.Spammer) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP396\A0156733.scr (Worm.Nrgbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP420\A0182657.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP420\A0182658.exe (Spammer.Tedroo) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP420\A0182659.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP420\A0182663.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP420\A0183657.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP420\A0183658.exe (Spammer.Tedroo) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP420\A0183659.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP422\A0186669.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP422\A0186668.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP422\A0186670.exe (Spammer.Tedroo) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP422\A0186671.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP422\A0187657.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP422\A0187658.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP422\A0187659.exe (Spammer.Tedroo) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP422\A0187660.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP423\A0188657.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP424\A0188666.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP424\A0188670.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP425\A0188671.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP426\A0188744.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP427\A0188745.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP427\A0189666.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP427\A0189667.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP427\A0189668.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP427\A0189670.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191667.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191668.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191670.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191672.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191673.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191674.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191675.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191677.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191678.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0191680.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192691.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192692.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192693.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192694.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192697.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192699.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192721.exe (Packer.ModifiedUPX) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192722.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192723.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192724.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192727.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0192729.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0193722.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0193721.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0193723.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\System Volume Information\_restore{6514FE38-D273-4B4B-9F73-3BBE74BBFD4D}\RP428\A0193725.exe (Worm.Dorkbot) -> Quarantined and deleted successfully.
      C:\RECYCLER\R-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini (Worm.AutoRun.Gen) -> Quarantined and deleted successfully.
      C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1830\Desktop.ini (Worm.AutoRun) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Kendator\Datos de programa\RECYCLER\ecleaner.exe (Worm.AutoRun) -> Delete on reboot.

      (end)

      =========================================================

      No te pude pegar el Eset Online, Ni el primero, no me carga el Scaner online y el otro me dice que la pagina esta mal.

      Te comento hay muchos Iexplore.exe en el abminitrador y solo tengo abierto uno, de repente se siguen escuchando muchos clicks, al parecer ya se solto un poco (un poco mas rapida) pero en ciertos momentos se llega alentar, sigo a tus ordenes de que puedo mas le puedo hacer, Saludos!

    6. #6
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.817

      Re: Mi Pc está muy lenta

      Hola.

      Bien, por lo que vemos tienes una infección bastante expandida, vamos a continuar

      En modo normal
      1º- Apagar Restaurar Sistema (System Restore) una vez desactivado recuerda reiniciar y dejalo desactivado.

      2º- Cómo iniciar el PC en Modo a prueba de fallos Debes de darle a "modo seguro con función de red

      3º- En modo seguro realiza lo siguiente:

      Descarga UsbFix By El Desaparecido a tu escritorio y lo ejecutas de este modo:

      - Conecte todos sus dispositivos extraibles, ( pendrive USB, móviles, Memoria SD/MicroSD,cámaras de fotos...)
      - Haga doble Click sobre USBFix.
      - Pulse sobre la opción Supresión.
      - Aparecera una advertencia para que conecte sus USB, pulse en Aceptar y proceso de desinfección/vacunación se iniciará.
      - Durante el análisis el escritorio puede desaparecer, esto es normal, si USBFix le pide reiniciar el sistema acepte y reinicie su equipo.
      - Al finalizar, USBFix genera un reporte, el cual se encuentra generalmente en C:\USBFix.txt debe pegar su contenido en el próximo mensaje.
      Nota: UsbFix creará una carpeta oculta llamada "autorun.inf" en cada partición y cada unidad USB que se encuentre conectado al momento de ejecutar este. No elimine esta carpeta ... eso le ayudará a proteger sus dispositivos USB de futuras infecciones
      4º- Realiza el análisis con TDSSkiller y luego con Eset Online.

      5º- Copia todos los reportes solicitados y comenta como sigue tú ordenador.

      Un saludo.
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de Azif
      Registrado
      may 2009
      Ubicación
      Veracruz
      Mensajes
      73

      Re: Mi Pc está muy lenta

      ================================0


      ############################## | UsbFix V 7.096 | [Supresión]

      Usuario: Kendator (Administrador) # K
      Actualizado el 15/08/2012 por El Desaparecido
      Comenzó a 10:33:39 | 20/09/2012

      Sitio web: http://eldesaparecido.com
      Foro: http://forum.eldesaparecido.com
      Archivo sospechoso ? : http://eldesaparecido.com/upload.php
      Contacto: [email protected]

      PC: Acer (Aspire 5517 ) (X86-based PC) # Notebook
      CPU: AMD Athlon(tm) X2 Dual Core Processor L310 (1196)
      RAM -> [Total : 3580 | Free : 3006]
      BIOS: InsydeH2O Version V1.06
      BOOT: Fail-safe with network boot

      OS: Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 3
      WB: Windows Internet Explorer 8.0.6001.18702

      SC: Security Center Service [Enabled]
      WU: Windows Update Service [Enabled]
      FW: Windows FireWall Service [Enabled]

      C:\ (%systemdrive%) -> Disco fijo # 466 Gb (386 Mb libre(s) - 83%) [] # NTFS
      D:\ -> CD-ROM
      E:\ -> Disco extraíble # 4 Gb (2 Mb libre(s) - 55%) [EL LOBO HAM] # FAT32

      ################## | Procesos Activos |

      C:\WINDOWS\System32\smss.exe (372)
      C:\WINDOWS\system32\winlogon.exe (656)
      C:\WINDOWS\system32\services.exe (700)
      C:\WINDOWS\system32\lsass.exe (712)
      C:\WINDOWS\system32\svchost.exe (868)
      C:\WINDOWS\system32\svchost.exe (1032)
      C:\WINDOWS\system32\svchost.exe (1316)
      C:\WINDOWS\Explorer.EXE (184)
      C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (368)
      C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (604)
      C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (624)
      C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (632)
      C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (1012)
      C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (1048)
      C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (1084)
      C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (1364)
      C:\UsbFix\Go.exe (412)

      ################## | Procesos Parados |

      Parado! C:\WINDOWS\Explorer.EXE (184)
      Parado! C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (368)
      Parado! C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (604)
      Parado! C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (624)
      Parado! C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (632)
      Parado! C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (1012)
      Parado! C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (1048)
      Parado! C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (1084)
      Parado! C:\Documents and Settings\Kendator\Configuración local\Datos de programa\Google\Chrome\Application\chrome.exe (1364)

      ################## | Archivos # Carpetas infectadas |

      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\19F.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1A5.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1AC.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1B6.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1BC.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1C1.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1C2.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1C7.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1CD.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1CE.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1D1.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1D7.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1E1.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1E2.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1E6.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1E7.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1ED.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1EE.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1F0.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\1F3.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\203.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\206.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\20F.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\212.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\26F.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\28A.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\29B.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\29F.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\2A1.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\2B2.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\2B7.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\2BA.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\2C3.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\2C6.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\2FF.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\332.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\366.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\392.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\3B0.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\3CA.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\3E1.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\3E4.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\458.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\45B.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\4B7.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\64B.tmp
      Suprimido ! C:\Documents and Settings\Kendator\Datos de programa\891.tmp
      Suprimido ! E:\iPod_Control.lnk
      Suprimido ! E:\Contacts.lnk
      Suprimido ! E:\Calendars.lnk
      Suprimido ! E:\Notes.lnk
      Suprimido ! E:\FOUND.000.lnk
      Suprimido ! E:\RECYCLER.lnk
      Suprimido ! E:\Photos.lnk
      Suprimido ! E:\MEMO DISENIO.lnk
      Suprimido ! E:\FOUND.001.lnk
      Suprimido ! E:\.Trashes.lnk
      Suprimido ! E:\calculos.lnk
      Suprimido ! E:\TABLAS.lnk
      Suprimido ! E:\AUTOCAD.lnk
      Suprimido ! E:\.fseventsd.lnk
      Suprimido ! E:\.Spotlight-V100.lnk
      Suprimido ! E:\CADS VARIOS.lnk
      Suprimido ! E:\TABLAS 1.lnk
      Suprimido ! E:\Tablas_2.lnk
      Suprimido ! E:\MSOCache.lnk
      Suprimido ! E:\Music.lnk
      Suprimido ! E:\Playlists.lnk
      Suprimido ! E:\SW.lnk
      Suprimido ! E:\.Driver.lnk
      Suprimido ! E:\driver.lnk
      Suprimido ! E:\RECYCLER\R-1-5-21-1482476501-1644491937-682003330-1013\ecleaner.exe
      Suprimido ! C:\Recycler\S-1-5-21-1229272821-651377827-1417001333-500
      Suprimido ! C:\Recycler\S-1-5-21-1659004503-926492609-1417001333-1004
      Suprimido ! E:\Recycler\S-1-5-21-1482476501-1644491937-682003330-1013
      Suprimido ! E:\Recycler\S-1-6-21-2434076501-1644491937-600003330-1213
      Suprimido ! E:\Recycler\S-5-3-42-2819952290-8240758988-879315005-3665
      Suprimido ! E:\Recycler\R-1-5-21-1482476501-1644491937-682003330-1013
      Suprimido ! C:\khy
      Suprimido ! E:\autorun.inf
      Suprimido ! E:\Recycler\desktop.ini
      Suprimido ! E:\driver\Usb
      Suprimido ! E:\RECYCLER\RECYCLER

      (!) Archivos temporales suprimido.

      ################## | Registro |


      ################## | Mountpoints2 |

      Suprimido ! HKCU\.\.\.\.\Explorer\MountPoints2\{58d7820e-01be-11e2-ab9f-00262257b9d5}
      Suprimido ! HKCU\.\.\.\.\Explorer\MountPoints2\{b64c7c5c-b182-11e1-ab37-00262257b9d5}

      ################## | Listing |

      [19/09/2012 - 15:59:43 | D ] C:\Archivos de programa
      [19/05/2012 - 10:50:02 | N | 25568] C:\ASLog.txt
      [10/08/2011 - 14:16:52 | D ] C:\ATI
      [17/01/2011 - 00:32:37 | N | 0] C:\AUTOEXEC.BAT
      [19/09/2012 - 20:52:09 | D ] C:\Avenger
      [18/01/2011 - 00:19:41 | N | 223] C:\boot.ini
      [14/04/2008 - 04:00:00 | N | 4952] C:\Bootfont.bin
      [13/09/2012 - 03:01:31 | D ] C:\Config.Msi
      [17/01/2011 - 00:32:37 | N | 0] C:\CONFIG.SYS
      [12/07/2012 - 11:09:31 | D ] C:\Crash
      [07/02/2011 - 13:03:28 | D ] C:\Documents and Settings
      [17/01/2011 - 00:32:37 | N | 0] C:\IO.SYS
      [11/04/2012 - 0907 | D ] C:\Monito_CS3
      [17/01/2011 - 00:32:37 | N | 0] C:\MSDOS.SYS
      [25/01/2011 - 09:13:19 | RHD ] C:\MSOCache
      [14/04/2008 - 04:00:00 | N | 47564] C:\NTDETECT.COM
      [14/04/2008 - 04:00:00 | N | 251168] C:\ntldr
      [20/09/2012 - 10:26:09 | ASH | 2145386496] C:\pagefile.sys
      [27/05/2012 - 16:29:22 | N | 131072] C:\pixj.exe
      [06/06/2011 - 09:38:21 | D ] C:\Program Files
      [14/09/2012 - 11:51:46 | N | 148992] C:\qbrc.exe
      [20/09/2012 - 10:42:10 | SHD ] C:\RECYCLER
      [17/01/2011 - 21:39:48 | SHD ] C:\System Volume Information
      [17/01/2011 - 02:47:17 | D ] C:\temp
      [20/09/2012 - 10:42:10 | D ] C:\UsbFix
      [20/09/2012 - 10:42:11 | A | 8362] C:\UsbFix.txt
      [20/09/2012 - 10:26:20 | D ] C:\WINDOWS
      [15/08/2007 - 13:06:48 | D ] E:\iPod_Control
      [15/08/2007 - 13:06:52 | D ] E:\Contacts
      [15/08/2007 - 13:06:54 | D ] E:\Calendars
      [15/08/2007 - 13:06:56 | D ] E:\Notes
      [15/12/2008 - 02:46:18 | D ] E:\FOUND.000
      [15/08/2007 - 13:07:22 | RSHD ] E:\RECYCLER
      [15/08/2007 - 13:16:10 | D ] E:\Photos
      [09/10/2010 - 16:55:16 | D ] E:\MEMO DISENIO
      [24/03/2011 - 16:39:12 | N | 4096] E:\._.Trashes
      [25/11/2011 - 1658 | D ] E:\FOUND.001
      [24/03/2011 - 16:39:12 | SHD ] E:\.Trashes
      [27/12/2011 - 18:33:40 | D ] E:\.fseventsd
      [24/03/2011 - 16:39:16 | D ] E:\.Spotlight-V100
      [24/03/2011 - 16:39:16 | N | 4096] E:\._iPod_Control
      [24/03/2011 - 16:39:36 | N | 35483] E:\.VolumeIcon.icns
      [24/03/2011 - 16:39:36 | N | 4096] E:\._.VolumeIcon.icns
      [11/05/2012 - 14:42:44 | N | 222356] E:\duoc.ai
      [03/05/2011 - 14:55:48 | D ] E:\calculos
      [10/04/2011 - 09:09:26 | N | 285] E:\VirtualDJ Local Database v6.xml
      [15/04/2012 - 13:15:18 | N | 25] E:\CARPETAS OCULTAS.txt
      [06/06/2012 - 16:32:50 | N | 281369] E:\duoc3.ai
      [07/06/2012 - 15:56:34 | N | 1423] E:\auoooueeinf
      [12/03/2010 - 19:24:26 | N | 26280] E:\COMANDOS E ICONOS DE AUTO CAD.docx
      [13/01/2011 - 09:09:30 | N | 24064] E:\COMANDOS AUTOCAD.xls
      [03/05/2011 - 14:55:34 | D ] E:\CADS VARIOS
      [03/05/2011 - 14:55:56 | D ] E:\TABLAS
      [03/05/2011 - 14:55:52 | D ] E:\TABLAS 1
      [03/05/2011 - 14:55:56 | D ] E:\Tablas_2
      [19/02/2012 - 09:06:02 | D ] E:\AUTOCAD
      [06/05/2012 - 13:41:54 | N | 829366] E:\Dibujo1.dwg
      [12/12/2007 - 23:22:22 | SHD ] E:\MSOCache
      [30/06/2008 - 22:29:00 | D ] E:\Music
      [30/06/2008 - 22:29:04 | D ] E:\Playlists
      [30/07/2009 - 19:00:00 | D ] E:\SW
      [30/07/2009 - 19:00:02 | D ] E:\.Driver
      [16/08/2009 - 19:00:26 | D ] E:\driver
      [14/09/2012 - 17:04:38 | N | 80896] E:\SUvIPqk.exe
      [14/09/2012 - 17:04:38 | N | 80896] E:\ShowFiles.exe
      [17/09/2012 - 18:16:46 | N | 1140193] E:\yannet copia.jpg

      ################## | Vaccin |

      C:\Autorun.inf -> Vacuna creada por UsbFix (El Desaparecido)
      E:\Autorun.inf -> Vacuna creada por UsbFix (El Desaparecido)

      ################## | Upload |

      Por favor, envie el archivo: C:\UsbFix_Upload_Me_K.zip
      http://eldesaparecido.com/upload.php
      Gracias por su contribución.

      ################## | E.O.F |

      =======================================================



      10:55:43.0656 1704 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
      10:55:44.0078 1704 ============================================================
      10:55:44.0078 1704 Current date / time: 2012/09/20 10:55:44.0078
      10:55:44.0078 1704 SystemInfo:
      10:55:44.0078 1704
      10:55:44.0078 1704 OS Version: 5.1.2600 ServicePack: 3.0
      10:55:44.0078 1704 Product type: Workstation
      10:55:44.0078 1704 ComputerName: K
      10:55:44.0078 1704 UserName: Kendator
      10:55:44.0078 1704 Windows directory: C:\WINDOWS
      10:55:44.0078 1704 System windows directory: C:\WINDOWS
      10:55:44.0078 1704 Processor architecture: Intel x86
      10:55:44.0078 1704 Number of processors: 2
      10:55:44.0078 1704 Page size: 0x1000
      10:55:44.0078 1704 Boot type: Safe boot with network
      10:55:44.0078 1704 ============================================================
      10:55:47.0312 1704 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
      10:55:47.0312 1704 Drive \Device\Harddisk1\DR2 - Size: 0xF4200000 (3.81 Gb), SectorSize: 0x200, Cylinders: 0x1F1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
      10:55:47.0312 1704 ============================================================
      10:55:47.0312 1704 \Device\Harddisk0\DR0:
      10:55:47.0312 1704 MBR partitions:
      10:55:47.0312 1704 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A380D41
      10:55:47.0312 1704 \Device\Harddisk1\DR2:
      10:55:47.0312 1704 MBR partitions:
      10:55:47.0312 1704 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x2738A, BlocksNum 0x776127
      10:55:47.0312 1704 ============================================================
      10:55:47.0343 1704 C: <-> \Device\Harddisk0\DR0\Partition1
      10:55:47.0375 1704 ============================================================
      10:55:47.0375 1704 Initialize success
      10:55:47.0375 1704 ============================================================
      10:56:23.0546 1884 ============================================================
      10:56:23.0546 1884 Scan started
      10:56:23.0546 1884 Mode: Manual; SigCheck; TDLFS;
      10:56:23.0546 1884 ============================================================
      10:56:24.0609 1884 ================ Scan system memory ========================
      10:56:24.0609 1884 System memory - ok
      10:56:24.0609 1884 ================ Scan services =============================
      10:56:25.0109 1884 Abiosdsk - ok
      10:56:25.0156 1884 abp480n5 - ok
      10:56:25.0296 1884 [ CF2A07E1751A2D612D7E13AA431AB057 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
      10:56:26.0984 1884 ACPI - ok
      10:56:27.0046 1884 [ 1C905333C0B9F3D7C68DDF25E54B00F9 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
      10:56:27.0296 1884 ACPIEC - ok
      10:56:27.0343 1884 adpu160m - ok
      10:56:27.0484 1884 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
      10:56:27.0703 1884 aec - ok
      10:56:27.0796 1884 [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD C:\WINDOWS\System32\drivers\afd.sys
      10:56:27.0875 1884 AFD - ok
      10:56:27.0937 1884 Aha154x - ok
      10:56:28.0046 1884 aic78u2 - ok
      10:56:28.0140 1884 aic78xx - ok
      10:56:28.0296 1884 [ FEDCA791A089D4E15084DA10F38BCE45 ] Alerter C:\WINDOWS\system32\alrsvc.dll
      10:56:28.0500 1884 Alerter - ok
      10:56:28.0578 1884 [ 764B7A1E6AE2D70416A7932F3B97AC99 ] ALG C:\WINDOWS\System32\alg.exe
      10:56:28.0671 1884 ALG - ok
      10:56:28.0734 1884 AliIde - ok
      10:56:28.0859 1884 [ 6E58654CB25730B2579E45E1FD116A47 ] amdide1 C:\WINDOWS\system32\drivers\amdide1.sys
      10:56:28.0890 1884 amdide1 - ok
      10:56:28.0968 1884 [ 69E04560F75BDE4A8CE2E143E896A5CE ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
      10:56:29.0046 1884 AmdK8 - ok
      10:56:29.0109 1884 amsint - ok
      10:56:29.0312 1884 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Archivos de programa\Archivos comunes\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      10:56:29.0328 1884 Apple Mobile Device - ok
      10:56:29.0421 1884 [ 30CD42BFCDAFEFE8567B9E527DD3AE08 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
      10:56:29.0531 1884 AppMgmt - ok
      10:56:29.0703 1884 [ 864A4047208C02E5B3B2D907C920597D ] AR5416 C:\WINDOWS\system32\DRIVERS\athw.sys
      10:56:29.0859 1884 AR5416 - ok
      10:56:29.0906 1884 asc - ok
      10:56:30.0015 1884 asc3350p - ok
      10:56:30.0125 1884 asc3550 - ok
      10:56:30.0687 1884 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
      10:56:30.0734 1884 aspnet_state - ok
      10:56:30.0812 1884 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
      10:56:31.0000 1884 AsyncMac - ok
      10:56:31.0062 1884 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
      10:56:31.0265 1884 atapi - ok
      10:56:31.0328 1884 Atdisk - ok
      10:56:31.0468 1884 [ 86DB8F6EF12B978D64BEC3DF9E565B82 ] Ati External Event Utility C:\WINDOWS\system32\Ati2evxx.exe
      10:56:31.0609 1884 Ati External Event Utility - ok
      10:56:31.0671 1884 [ 86DB8F6EF12B978D64BEC3DF9E565B82 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
      10:56:31.0703 1884 Ati HotKey Poller - ok
      10:56:31.0921 1884 [ 323B30FAAE1F544A549EBBBD837ED625 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
      10:56:32.0234 1884 ati2mtag - ok
      10:56:32.0750 1884 [ 5E80C91CA04C46A9AC6D4F39E1BCE636 ] atikmdag C:\WINDOWS\system32\DRIVERS\atikmdag.sys
      10:56:33.0312 1884 atikmdag ( UnsignedFile.Multi.Generic ) - warning
      10:56:33.0312 1884 atikmdag - detected UnsignedFile.Multi.Generic (1)
      10:56:33.0406 1884 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
      10:56:33.0578 1884 Atmarpc - ok
      10:56:33.0656 1884 [ A37F6480B06C37DB69BBFF045CF9F55B ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
      10:56:33.0859 1884 AudioSrv - ok
      10:56:33.0953 1884 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
      10:56:34.0140 1884 audstub - ok
      10:56:34.0281 1884 [ 1992C2A1867D95AA3A0802539358D162 ] Autodesk Content Service C:\Archivos de programa\Autodesk\Content Service\Connect.Service.ContentService.exe
      10:56:34.0296 1884 Autodesk Content Service - ok
      10:56:34.0453 1884 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
      10:56:34.0687 1884 Beep - ok
      10:56:34.0812 1884 [ 62FE6631BB8699D7C3521C4D15D867D9 ] BITS C:\WINDOWS\system32\qmgr.dll
      10:56:34.0968 1884 BITS - ok
      10:56:35.0109 1884 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Archivos de programa\Bonjour\mDNSResponder.exe
      10:56:35.0140 1884 Bonjour Service - ok
      10:56:35.0218 1884 [ 88F61096EDAF97F86128ED9007802709 ] Browser C:\WINDOWS\System32\browser.dll
      10:56:35.0296 1884 Browser - ok
      10:56:35.0406 1884 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
      10:56:35.0609 1884 cbidf2k - ok
      10:56:35.0703 1884 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
      10:56:35.0921 1884 CCDECODE - ok
      10:56:35.0984 1884 cd20xrnt - ok
      10:56:36.0109 1884 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
      10:56:36.0312 1884 Cdaudio - ok
      10:56:36.0390 1884 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
      10:56:36.0593 1884 Cdfs - ok
      10:56:36.0671 1884 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
      10:56:36.0734 1884 Cdrom - ok
      10:56:36.0796 1884 Changer - ok
      10:56:36.0906 1884 [ B0E3FEC4EE7B935A7387FD6EF31EA780 ] CiSvc C:\WINDOWS\system32\cisvc.exe
      10:56:37.0093 1884 CiSvc - ok
      10:56:37.0156 1884 [ 0C3BF68AB94CEFD64B333B326F84510E ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
      10:56:37.0375 1884 ClipSrv - ok
      10:56:37.0500 1884 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      10:56:37.0578 1884 clr_optimization_v2.0.50727_32 - ok
      10:56:37.0656 1884 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      10:56:37.0734 1884 clr_optimization_v4.0.30319_32 - ok
      10:56:37.0875 1884 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
      10:56:38.0078 1884 CmBatt - ok
      10:56:38.0140 1884 CmdIde - ok
      10:56:38.0281 1884 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
      10:56:38.0484 1884 Compbatt - ok
      10:56:38.0531 1884 COMSysApp - ok
      10:56:38.0750 1884 Cpqarray - ok
      10:56:38.0875 1884 [ E423C9C1946C656E0E4840210A0A8681 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
      10:56:39.0078 1884 CryptSvc - ok
      10:56:39.0156 1884 dac2w2k - ok
      10:56:39.0250 1884 dac960nt - ok
      10:56:39.0468 1884 [ AEF41FC6F108CC4F94F9B4E96AFA9C70 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
      10:56:39.0609 1884 DcomLaunch - ok
      10:56:39.0703 1884 [ 8815D3712259D8BAA50240335488FEC3 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
      10:56:39.0765 1884 Dhcp - ok
      10:56:39.0843 1884 [ 47B6AAEC570F2C11D8BAD80A064D8ED1 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
      10:56:39.0906 1884 Disk - ok
      10:56:39.0984 1884 dmadmin - ok
      10:56:40.0125 1884 [ C252A99C0A78B39FAA2E2D1D048B1050 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
      10:56:40.0390 1884 dmboot - ok
      10:56:40.0453 1884 [ 33B4D4039CD2CB25351A7BF13B2988D9 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
      10:56:40.0656 1884 dmio - ok
      10:56:40.0734 1884 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
      10:56:40.0921 1884 dmload - ok
      10:56:40.0984 1884 [ 40D0520DDAA9312C5DDDD8C7C99D8325 ] dmserver C:\WINDOWS\System32\dmserver.dll
      10:56:41.0203 1884 dmserver - ok
      10:56:41.0265 1884 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
      10:56:41.0484 1884 DMusic - ok
      10:56:41.0546 1884 [ 4F90AAADF4CA0D5D01FBCFDB10548FCC ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
      10:56:41.0671 1884 Dnscache - ok
      10:56:41.0750 1884 [ DFDDE88937B358EC11296C2AA1312AB7 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
      10:56:41.0796 1884 Dot3svc - ok
      10:56:41.0890 1884 dpti2o - ok
      10:56:42.0031 1884 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
      10:56:42.0203 1884 drmkaud - ok
      10:56:42.0296 1884 [ B327281012B48BD73F587799F9F29BE2 ] DumpDrv C:\WINDOWS\system32\drivers\DumpDrv.sys
      10:56:42.0390 1884 DumpDrv - ok
      10:56:42.0484 1884 [ FC3FE3654588E597FFF395C305062C46 ] EapHost C:\WINDOWS\System32\eapsvc.dll
      10:56:42.0703 1884 EapHost - ok
      10:56:42.0765 1884 [ D96623DD7CE1EA9E4DE7285D740E14F6 ] ERSvc C:\WINDOWS\System32\ersvc.dll
      10:56:42.0968 1884 ERSvc - ok
      10:56:43.0046 1884 [ A71058FE50DAC5713B8AA8BFFB2F7E3C ] Eventlog C:\WINDOWS\system32\services.exe
      10:56:43.0125 1884 Eventlog - ok
      10:56:43.0203 1884 [ 6EC3C2A5CEA41B78BB55B30444292CB8 ] EventSystem C:\WINDOWS\system32\es.dll
      10:56:43.0250 1884 EventSystem - ok
      10:56:43.0359 1884 [ 898AD7D508F6ADE242D94752E09F4152 ] EverestDriver C:\Archivos de programa\Lavalys\EVEREST Ultimate Edition\kerneld.wnt
      10:56:43.0781 1884 EverestDriver - ok
      10:56:43.0859 1884 [ 4D893323DAE445E34A4C9038B0551BC9 ] exFat C:\WINDOWS\system32\drivers\exFat.sys
      10:56:43.0921 1884 exFat - ok
      10:56:44.0046 1884 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
      10:56:44.0250 1884 Fastfat - ok
      10:56:44.0328 1884 [ 8A34F9730A2206726B1BE4DC4209CAB9 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
      10:56:44.0390 1884 FastUserSwitchingCompatibility - ok
      10:56:44.0468 1884 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
      10:56:44.0671 1884 Fdc - ok
      10:56:44.0734 1884 [ E5E61F2C07344E91DBFB7EAFDE549AB4 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
      10:56:44.0953 1884 Fips - ok
      10:56:45.0062 1884 [ 73081CF28F0AE20A52CA4F67CEE6E6B0 ] FLEXnet Licensing Service C:\Archivos de programa\Archivos comunes\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      10:56:45.0140 1884 FLEXnet Licensing Service - ok
      10:56:45.0234 1884 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
      10:56:45.0437 1884 Flpydisk - ok
      10:56:45.0531 1884 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
      10:56:45.0718 1884 FltMgr - ok
      10:56:45.0812 1884 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
      10:56:45.0828 1884 FontCache3.0.0.0 - ok
      10:56:45.0968 1884 [ CBE5F69A5E5B918225F420BA748F3742 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
      10:56:46.0000 1884 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
      10:56:46.0000 1884 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
      10:56:46.0062 1884 [ 96633419F4A1E37ACB89B45EBCCFE001 ] FsUsbExService C:\WINDOWS\system32\FsUsbExService.Exe
      10:56:46.0093 1884 FsUsbExService - ok
      10:56:46.0187 1884 [ 30D42943A54704EF13E2562911DBFCEA ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
      10:56:46.0218 1884 Fs_Rec - ok
      10:56:46.0296 1884 [ CC5F3AF5711A1C7C8FA1D43BB16B401A ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
      10:56:46.0500 1884 Ftdisk - ok
      10:56:46.0593 1884 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
      10:56:46.0609 1884 GEARAspiWDM - ok
      10:56:46.0765 1884 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
      10:56:46.0968 1884 Gpc - ok
      10:56:47.0031 1884 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
      10:56:47.0218 1884 HDAudBus - ok
      10:56:47.0343 1884 [ 6B5E1788ABF15177A20C6C76C11382BB ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
      10:56:47.0578 1884 helpsvc - ok
      10:56:47.0671 1884 [ 158AEDF024CD58FEA03BE2D7D62ABC9C ] HidServ C:\WINDOWS\System32\hidserv.dll
      10:56:47.0875 1884 HidServ - ok
      10:56:47.0968 1884 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
      10:56:48.0156 1884 HidUsb - ok
      10:56:48.0218 1884 [ 8F80B5FB68E1E767D872CB9A8CAD5B5D ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
      10:56:48.0421 1884 hkmsvc - ok
      10:56:48.0468 1884 hpn - ok
      10:56:48.0625 1884 [ 937031C085718C1C04A9C0864625EC6B ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
      10:56:48.0687 1884 HTTP - ok
      10:56:48.0765 1884 [ 0406B351908A8C143B6B6BB8834D4920 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
      10:56:48.0953 1884 HTTPFilter - ok
      10:56:49.0000 1884 i2omgmt - ok
      10:56:49.0109 1884 i2omp - ok
      10:56:49.0250 1884 [ 4A2490A66E8271901E89DD5FB79748AE ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
      10:56:49.0468 1884 i8042prt - ok
      10:56:49.0625 1884 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      10:56:49.0687 1884 idsvc - ok
      10:56:49.0781 1884 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
      10:56:49.0968 1884 Imapi - ok
      10:56:50.0046 1884 [ E50ABD04CA0C015017722014D1D9251E ] ImapiService C:\WINDOWS\system32\imapi.exe
      10:56:50.0250 1884 ImapiService - ok
      10:56:50.0359 1884 ini910u - ok
      10:56:50.0906 1884 [ DB589671E0C403D65884CF0B50600FCD ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
      10:56:51.0250 1884 IntcAzAudAddService - ok
      10:56:51.0312 1884 IntelIde - ok
      10:56:51.0453 1884 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
      10:56:51.0671 1884 Ip6Fw - ok
      10:56:51.0750 1884 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
      10:56:51.0984 1884 IpFilterDriver - ok
      10:56:52.0031 1884 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
      10:56:52.0250 1884 IpInIp - ok
      10:56:52.0328 1884 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
      10:56:52.0531 1884 IpNat - ok
      10:56:52.0625 1884 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Archivos de programa\iPod\bin\iPodService.exe
      10:56:52.0703 1884 iPod Service - ok
      10:56:52.0781 1884 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
      10:56:52.0937 1884 IPSec - ok
      10:56:53.0015 1884 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
      10:56:53.0109 1884 IRENUM - ok
      10:56:53.0265 1884 [ 0F3D281B0410FE5D482AADA37D20524B ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
      10:56:53.0468 1884 isapnp - ok
      10:56:53.0578 1884 [ 4F2143570D2250CA4C4A4C98553C82CD ] JavaQuickStarterService C:\Archivos de programa\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
      10:56:53.0593 1884 JavaQuickStarterService - ok
      10:56:53.0656 1884 [ 188DDD286BC0DAEA6984858C6A4D7BBF ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
      10:56:53.0859 1884 Kbdclass - ok
      10:56:53.0921 1884 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
      10:56:54.0125 1884 kmixer - ok
      10:56:54.0218 1884 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
      10:56:54.0328 1884 KSecDD - ok
      10:56:54.0406 1884 [ F5D0DFEEBC0EEF970C9407B420E6AC3E ] L1c C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
      10:56:54.0453 1884 L1c - ok
      10:56:54.0562 1884 [ 725C385B043966149B98BD38A64C1C41 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
      10:56:54.0609 1884 LanmanServer - ok
      10:56:54.0703 1884 [ 6EA0EA1A2C9022A3B887048C40C8360B ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
      10:56:54.0765 1884 lanmanworkstation - ok
      10:56:54.0812 1884 lbrtfdc - ok
      10:56:55.0000 1884 [ 027D03D9D8AB95194A115A999E960AC0 ] LexBceS C:\WINDOWS\system32\LEXBCES.EXE
      10:56:55.0093 1884 LexBceS - ok
      10:56:55.0265 1884 [ 01AF2112FF79AA613B6621A75C4E9277 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
      10:56:55.0484 1884 LmHosts - ok
      10:56:55.0578 1884 [ 047E70B04B288439245DDC8DD1A31982 ] Messenger C:\WINDOWS\System32\msgsvc.dll
      10:56:55.0812 1884 Messenger - ok
      10:56:55.0890 1884 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
      10:56:56.0109 1884 mnmdd - ok
      10:56:56.0296 1884 [ 85ADA209695A677C9D60962CDE10696B ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
      10:56:56.0515 1884 mnmsrvc - ok
      10:56:56.0593 1884 [ 9024556E739B8469D2B8F5F0E4C9BC9F ] Modem C:\WINDOWS\system32\drivers\Modem.sys
      10:56:56.0796 1884 Modem - ok
      10:56:56.0890 1884 [ 6FD36B4994A2363659A65C9F970CFDB7 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
      10:56:57.0078 1884 Mouclass - ok
      10:56:57.0156 1884 [ 1A1FAA5102466F418494E94FF9B0B091 ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
      10:56:57.0171 1884 MountMgr - ok
      10:56:57.0234 1884 mraid35x - ok
      10:56:57.0343 1884 [ 6A7C4AC5B52155115DEE97995C1CF157 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
      10:56:57.0437 1884 MRxDAV - ok
      10:56:57.0562 1884 [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
      10:56:57.0671 1884 MRxSmb - ok
      10:56:57.0750 1884 [ 975BD2762BF355A572597CC54D97BA93 ] MSDTC C:\WINDOWS\system32\msdtc.exe
      10:56:57.0937 1884 MSDTC - ok
      10:56:58.0187 1884 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
      10:56:58.0406 1884 Msfs - ok
      10:56:58.0468 1884 MSIServer - ok
      10:56:58.0593 1884 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
      10:56:58.0781 1884 MSKSSRV - ok
      10:56:58.0890 1884 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
      10:56:59.0125 1884 MSPCLOCK - ok
      10:56:59.0187 1884 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
      10:56:59.0390 1884 MSPQM - ok
      10:56:59.0531 1884 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
      10:56:59.0750 1884 mssmbios - ok
      10:56:59.0828 1884 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
      10:57:00.0046 1884 MSTEE - ok
      10:57:00.0171 1884 [ F7B1AD991491F02AF6DA70B00B8BF114 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
      10:57:00.0234 1884 Mup - ok
      10:57:00.0296 1884 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
      10:57:00.0500 1884 NABTSFEC - ok
      10:57:00.0593 1884 [ FD578FCC03BBD76AF1E62202E6670D29 ] napagent C:\WINDOWS\System32\qagentrt.dll
      10:57:00.0781 1884 napagent - ok
      10:57:00.0890 1884 [ B5B1080D35974C0E718D64280761BCD5 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
      10:57:00.0937 1884 NDIS - ok
      10:57:01.0031 1884 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
      10:57:01.0234 1884 NdisIP - ok
      10:57:01.0312 1884 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
      10:57:01.0375 1884 NdisTapi - ok
      10:57:01.0437 1884 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
      10:57:01.0656 1884 Ndisuio - ok
      10:57:01.0718 1884 [ B053A8411045FD0664B389A090CB2BBC ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
      10:57:01.0750 1884 NdisWan - ok
      10:57:01.0859 1884 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
      10:57:01.0921 1884 NDProxy - ok
      10:57:02.0000 1884 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
      10:57:02.0203 1884 NetBIOS - ok
      10:57:02.0281 1884 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
      10:57:02.0468 1884 NetBT - ok
      10:57:02.0546 1884 [ 96B009E5B163850CF94DC333ED2BEE93 ] NetDDE C:\WINDOWS\system32\netdde.exe
      10:57:02.0765 1884 NetDDE - ok
      10:57:02.0875 1884 [ 96B009E5B163850CF94DC333ED2BEE93 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
      10:57:03.0046 1884 NetDDEdsdm - ok
      10:57:03.0156 1884 [ 671ACA589DA3733FAC878A751C5BF0ED ] Netlogon C:\WINDOWS\system32\lsass.exe
      10:57:03.0343 1884 Netlogon - ok
      10:57:03.0421 1884 [ A48884C9359EE9F1FC8F3F0D93FB1D95 ] Netman C:\WINDOWS\System32\netman.dll
      10:57:03.0609 1884 Netman - ok
      10:57:03.0703 1884 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      10:57:03.0750 1884 NetTcpPortSharing - ok
      10:57:03.0843 1884 [ DEB0B8C3F99D54FD19433B682982F9FA ] Nla C:\WINDOWS\System32\mswsock.dll
      10:57:03.0890 1884 Nla - ok
      10:57:03.0953 1884 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
      10:57:04.0171 1884 Npfs - ok
      10:57:04.0250 1884 [ AE8CAD8F28DB13B515A68510A539B0B8 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
      10:57:04.0343 1884 Ntfs - ok
      10:57:04.0421 1884 [ 671ACA589DA3733FAC878A751C5BF0ED ] NtLmSsp C:\WINDOWS\system32\lsass.exe
      10:57:04.0625 1884 NtLmSsp - ok
      10:57:04.0718 1884 [ D60C40D71A4D874C903255E4827AFA0C ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
      10:57:04.0937 1884 NtmsSvc - ok
      10:57:05.0015 1884 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
      10:57:05.0218 1884 Null - ok
      10:57:05.0281 1884 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
      10:57:05.0453 1884 NwlnkFlt - ok
      10:57:05.0515 1884 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
      10:57:05.0703 1884 NwlnkFwd - ok
      10:57:05.0859 1884 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\ODSERV.EXE
      10:57:05.0906 1884 odserv - ok
      10:57:05.0984 1884 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE
      10:57:06.0015 1884 ose - ok
      10:57:06.0093 1884 [ E7855CBD8BD1FDA085A3F92CFF7906E2 ] Parport C:\WINDOWS\system32\drivers\Parport.sys
      10:57:06.0281 1884 Parport - ok
      10:57:06.0343 1884 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
      10:57:06.0546 1884 PartMgr - ok
      10:57:06.0625 1884 [ FAD44D704ECD7D39AD01415B8BB34204 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
      10:57:06.0812 1884 ParVdm - ok
      10:57:06.0875 1884 [ F11BC84AE6C7B003B5E0C8EEB4A1F444 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
      10:57:07.0046 1884 PCI - ok
      10:57:07.0109 1884 PCIDump - ok
      10:57:07.0250 1884 [ 33D63F0A9021ACB4D75D83B646B93A30 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
      10:57:07.0453 1884 PCIIde - ok
      10:57:07.0578 1884 [ F50C27CCA56DC97B3A45E7F0059BD2BA ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
      10:57:07.0765 1884 Pcmcia - ok
      10:57:07.0828 1884 PDCOMP - ok
      10:57:07.0937 1884 PDFRAME - ok
      10:57:08.0031 1884 PDRELI - ok
      10:57:08.0171 1884 PDRFRAME - ok
      10:57:08.0281 1884 perc2 - ok
      10:57:08.0390 1884 perc2hib - ok
      10:57:08.0734 1884 [ A71058FE50DAC5713B8AA8BFFB2F7E3C ] PlugPlay C:\WINDOWS\system32\services.exe
      10:57:08.0750 1884 PlugPlay - ok
      10:57:08.0812 1884 [ 671ACA589DA3733FAC878A751C5BF0ED ] PolicyAgent C:\WINDOWS\system32\lsass.exe
      10:57:09.0000 1884 PolicyAgent - ok
      10:57:09.0078 1884 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
      10:57:09.0281 1884 PptpMiniport - ok
      10:57:09.0343 1884 [ D4D8634DFDAE3ECA83620EE4088F7AA9 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
      10:57:09.0546 1884 Processor - ok
      10:57:09.0625 1884 [ 671ACA589DA3733FAC878A751C5BF0ED ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
      10:57:09.0796 1884 ProtectedStorage - ok
      10:57:09.0859 1884 [ D8E11D311785F89F1D70A28B0E879127 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
      10:57:09.0906 1884 PSched - ok
      10:57:09.0968 1884 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
      10:57:10.0156 1884 Ptilink - ok
      10:57:10.0250 1884 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
      10:57:10.0265 1884 PxHelp20 - ok
      10:57:10.0328 1884 ql1080 - ok
      10:57:10.0437 1884 Ql10wnt - ok
      10:57:10.0546 1884 ql12160 - ok
      10:57:10.0656 1884 ql1240 - ok
      10:57:10.0750 1884 ql1280 - ok
      10:57:10.0859 1884 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
      10:57:11.0062 1884 RasAcd - ok
      10:57:11.0156 1884 [ 8345C6F52F38A95B950B9B3D064AE3EE ] RasAuto C:\WINDOWS\System32\rasauto.dll
      10:57:11.0343 1884 RasAuto - ok
      10:57:11.0421 1884 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
      10:57:11.0640 1884 Rasl2tp - ok
      10:57:11.0703 1884 [ B279F6A9EA3ACB5844C103ED2DB65B44 ] RasMan C:\WINDOWS\System32\rasmans.dll
      10:57:11.0921 1884 RasMan - ok
      10:57:11.0968 1884 [ 2C9D4620A0FD35DE1828370B392F6E2D ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
      10:57:12.0046 1884 RasPppoe - ok
      10:57:12.0156 1884 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
      10:57:12.0343 1884 Raspti - ok
      10:57:12.0437 1884 [ 77050C6615F6EB5402F832B27FD695E0 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
      10:57:12.0500 1884 Rdbss - ok
      10:57:12.0578 1884 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
      10:57:12.0765 1884 RDPCDD - ok
      10:57:12.0906 1884 [ 47EA20320E3D6FDC7B7BB22B2B881CA6 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
      10:57:12.0968 1884 rdpdr - ok
      10:57:13.0109 1884 [ C7D9BC54354B8C706ABF172D48313F1B ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
      10:57:13.0171 1884 RDPWD - ok
      10:57:13.0281 1884 [ 6193E6B05336C277EA4DB39AFA46BC23 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
      10:57:13.0484 1884 RDSessMgr - ok
      10:57:13.0562 1884 [ 20950948970A0EA329B4254052BCF093 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
      10:57:13.0796 1884 redbook - ok
      10:57:13.0875 1884 [ 1B7481D377BD7997452352F82F4CFFED ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
      10:57:14.0078 1884 RemoteAccess - ok
      10:57:14.0156 1884 [ E424F05B07AC4357DC08D06218D76C7C ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
      10:57:14.0312 1884 RemoteRegistry - ok
      10:57:14.0406 1884 [ 9FCCBDBAA0CF915AAC0132DE1C9566B3 ] RpcLocator C:\WINDOWS\system32\locator.exe
      10:57:14.0609 1884 RpcLocator - ok
      10:57:14.0687 1884 [ AEF41FC6F108CC4F94F9B4E96AFA9C70 ] RpcSs C:\WINDOWS\system32\rpcss.dll
      10:57:14.0718 1884 RpcSs - ok
      10:57:14.0859 1884 [ 743D7D59767073A617B1DCC6C546F234 ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
      10:57:14.0906 1884 rspndr - ok
      10:57:15.0000 1884 [ 7FFA9821B1C5E0E0667E0A2685CFB89F ] RSUSBSTOR C:\WINDOWS\system32\Drivers\RtsUStor.sys
      10:57:15.0093 1884 RSUSBSTOR - ok
      10:57:15.0156 1884 [ 5E38212C2C00DC342E2281D2F6BFB746 ] RSVP C:\WINDOWS\system32\rsvp.exe
      10:57:15.0359 1884 RSVP - ok
      10:57:15.0406 1884 Rts516xIR - ok
      10:57:15.0531 1884 [ 671ACA589DA3733FAC878A751C5BF0ED ] SamSs C:\WINDOWS\system32\lsass.exe
      10:57:15.0718 1884 SamSs - ok
      10:57:15.0812 1884 [ A50E4DD0E2A9DF762807C84153B4953A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
      10:57:15.0968 1884 SCardSvr - ok
      10:57:16.0062 1884 [ 51BE25C404D3DD344C6079DE715E4977 ] Schedule C:\WINDOWS\system32\schedsvc.dll
      10:57:16.0265 1884 Schedule - ok
      10:57:16.0390 1884 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
      10:57:16.0468 1884 Secdrv - ok
      10:57:16.0546 1884 [ B62C489373A1E1B949FC0FAA90F3B47A ] seclogon C:\WINDOWS\System32\seclogon.dll
      10:57:16.0750 1884 seclogon - ok
      10:57:16.0828 1884 [ A95A27C874B0931A6F8F656924F4A14A ] SENS C:\WINDOWS\system32\sens.dll
      10:57:17.0015 1884 SENS - ok
      10:57:17.0078 1884 [ F41B42B92AE9C1191858C3F80CC24A9C ] Serial C:\WINDOWS\system32\drivers\Serial.sys
      10:57:17.0250 1884 Serial - ok
      10:57:17.0640 1884 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
      10:57:17.0812 1884 Sfloppy - ok
      10:57:17.0890 1884 [ 89646F538CC2E47623E1DE2188C4D4B7 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
      10:57:17.0968 1884 SharedAccess - ok
      10:57:18.0046 1884 [ 8A34F9730A2206726B1BE4DC4209CAB9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
      10:57:18.0062 1884 ShellHWDetection - ok
      10:57:18.0140 1884 Simbad - ok
      10:57:18.0281 1884 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Archivos de programa\Skype\Updater\Updater.exe
      10:57:18.0312 1884 SkypeUpdate - ok
      10:57:18.0390 1884 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
      10:57:18.0546 1884 SLIP - ok
      10:57:18.0718 1884 Sparrow - ok
      10:57:18.0859 1884 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
      10:57:19.0062 1884 splitter - ok
      10:57:19.0140 1884 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
      10:57:19.0203 1884 Spooler - ok
      10:57:19.0312 1884 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
      10:57:19.0359 1884 sptd - ok
      10:57:19.0437 1884 [ CCB3065C3EE63A4515FE84AF9E78D1DD ] SR C:\WINDOWS\system32\DRIVERS\sr.sys
      10:57:19.0531 1884 SR - ok
      10:57:19.0640 1884 [ 0F30EEC6013FCF76693405EC4A7DF899 ] srservice C:\WINDOWS\system32\srsvc.dll
      10:57:19.0734 1884 srservice - ok
      10:57:19.0812 1884 [ 9B390283569EA58D43D2586032B892F5 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
      10:57:19.0875 1884 Srv - ok
      10:57:19.0968 1884 [ B622A432EF02895DE4AA38AC8B85FA4C ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
      10:57:20.0046 1884 SSDPSRV - ok
      10:57:20.0171 1884 [ 9ECE19A1A4F4896597C3BB840FBFA721 ] ssm_bus C:\WINDOWS\system32\DRIVERS\ssm_bus.sys
      10:57:20.0203 1884 ssm_bus - ok
      10:57:20.0265 1884 [ 8E93A17A5253999A0E7C332F475699DC ] ssm_mdfl C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys
      10:57:20.0281 1884 ssm_mdfl - ok
      10:57:20.0375 1884 [ C0BA1357C63DEACF3B3CCF4B989FEF06 ] ssm_mdm C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys
      10:57:20.0406 1884 ssm_mdm - ok
      10:57:20.0515 1884 [ 7226422C95FDF8AA6092EE964912B0DF ] stisvc C:\WINDOWS\system32\wiaservc.dll
      10:57:20.0734 1884 stisvc - ok
      10:57:20.0796 1884 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
      10:57:20.0984 1884 streamip - ok
      10:57:21.0078 1884 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
      10:57:21.0281 1884 swenum - ok
      10:57:21.0359 1884 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
      10:57:21.0562 1884 swmidi - ok
      10:57:21.0609 1884 SwPrv - ok
      10:57:21.0718 1884 symc810 - ok
      10:57:21.0828 1884 symc8xx - ok
      10:57:21.0937 1884 sym_hi - ok
      10:57:22.0046 1884 sym_u3 - ok
      10:57:22.0187 1884 [ 32C0296AE115906679D94957F501E8DB ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
      10:57:22.0203 1884 SynTP - ok
      10:57:22.0328 1884 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
      10:57:22.0500 1884 sysaudio - ok
      10:57:22.0593 1884 [ F1F6EE807F0112AAE2259B253B6DDF89 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
      10:57:22.0781 1884 SysmonLog - ok
      10:57:22.0875 1884 [ 89BFC9D79834B8D1B7DA938E4A25366D ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
      10:57:22.0937 1884 TapiSrv - ok
      10:57:23.0031 1884 [ 5AE1C2695F6523AD98B948F2887D8C5E ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
      10:57:23.0046 1884 Tcpip ( UnsignedFile.Multi.Generic ) - warning
      10:57:23.0046 1884 Tcpip - detected UnsignedFile.Multi.Generic (1)
      10:57:23.0125 1884 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
      10:57:23.0328 1884 TDPIPE - ok
      10:57:23.0390 1884 [ C0578456F29E5F26285F81B7B71FE57D ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
      10:57:23.0453 1884 TDTCP - ok
      10:57:23.0578 1884 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
      10:57:23.0765 1884 TermDD - ok
      10:57:23.0890 1884 [ ECB6A86B2F0ABBAC639A08557FC71037 ] TermService C:\WINDOWS\System32\termsrv.dll
      10:57:23.0984 1884 TermService - ok
      10:57:24.0062 1884 [ 8A34F9730A2206726B1BE4DC4209CAB9 ] Themes C:\WINDOWS\System32\shsvcs.dll
      10:57:24.0093 1884 Themes - ok
      10:57:24.0187 1884 [ 65BF170815C0DF302BE038FD8891C722 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
      10:57:24.0281 1884 TlntSvr - ok
      10:57:24.0343 1884 TosIde - ok
      10:57:24.0468 1884 [ 321761D0D12EE5285CE79AC175CBA672 ] TrkWks C:\WINDOWS\system32\trkwks.dll
      10:57:24.0671 1884 TrkWks - ok
      10:57:24.0796 1884 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
      10:57:25.0000 1884 Udfs - ok
      10:57:25.0156 1884 ultra - ok
      10:57:25.0328 1884 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
      10:57:25.0546 1884 Update - ok
      10:57:25.0625 1884 [ 7594203F459ABDB5FE53C08D6B1BD53B ] upnphost C:\WINDOWS\System32\upnphost.dll
      10:57:25.0734 1884 upnphost - ok
      10:57:25.0812 1884 [ 575BAFEB33AF057B13A10579D0DC884A ] UPS C:\WINDOWS\System32\ups.exe
      10:57:25.0968 1884 UPS - ok
      10:57:26.0062 1884 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
      10:57:26.0109 1884 USBAAPL - ok
      10:57:26.0234 1884 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
      10:57:26.0437 1884 usbaudio - ok
      10:57:26.0515 1884 [ C18D6C74953621346DF6B0A11F80C1CC ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
      10:57:26.0578 1884 usbccgp - ok
      10:57:26.0625 1884 USBCCID - ok
      10:57:26.0750 1884 [ 52674B5DBEE499342A599C7771ABECAA ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
      10:57:26.0796 1884 usbehci - ok
      10:57:26.0859 1884 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
      10:57:27.0031 1884 usbhub - ok
      10:57:27.0109 1884 [ C5E11CD822ADF0019A5A862D9C4E2222 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
      10:57:27.0156 1884 usbohci - ok
      10:57:27.0250 1884 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
      10:57:27.0453 1884 usbprint - ok
      10:57:27.0562 1884 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
      10:57:27.0750 1884 usbscan - ok
      10:57:27.0875 1884 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
      10:57:28.0046 1884 usbstor - ok
      10:57:28.0140 1884 [ EE1C82338F2B831B2A863935C831DB21 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
      10:57:28.0218 1884 usbvideo - ok
      10:57:28.0312 1884 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
      10:57:28.0500 1884 usb_rndisx - ok
      10:57:28.0593 1884 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
      10:57:28.0781 1884 VgaSave - ok
      10:57:28.0828 1884 ViaIde - ok
      10:57:28.0968 1884 [ C41FFDC191E6C832E2E53C967EAE0A16 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
      10:57:29.0140 1884 VolSnap - ok
      10:57:29.0234 1884 [ 60F28DE3FAE525D026E4D66405B80DB8 ] VSS C:\WINDOWS\System32\vssvc.exe
      10:57:29.0328 1884 VSS - ok
      10:57:29.0500 1884 [ EB94B698514CFDC171EB5B6767B861A8 ] W32Time C:\WINDOWS\system32\w32time.dll
      10:57:29.0562 1884 W32Time - ok
      10:57:29.0718 1884 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
      10:57:29.0875 1884 Wanarp - ok
      10:57:30.0031 1884 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\wdf01000.sys
      10:57:30.0062 1884 Wdf01000 - ok
      10:57:30.0125 1884 WDICA - ok
      10:57:30.0250 1884 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
      10:57:30.0437 1884 wdmaud - ok
      10:57:30.0515 1884 [ 340A4FD9017D1EBD1F6DC435282A39DC ] WebClient C:\WINDOWS\System32\webclnt.dll
      10:57:30.0703 1884 WebClient - ok
      10:57:30.0953 1884 [ A5FC75CAB140CF6A78E16C3681001872 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
      10:57:31.0125 1884 winmgmt - ok
      10:57:31.0218 1884 [ 644D9E863192CD94A448BBC0930BC91F ] WinRM C:\WINDOWS\system32\WsmSvc.dll
      10:57:31.0343 1884 WinRM - ok
      10:57:31.0593 1884 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
      10:57:31.0625 1884 WmdmPmSN - ok
      10:57:31.0734 1884 [ 9B93931A283898B2842FC0FB06AE02A4 ] Wmi C:\WINDOWS\System32\advapi32.dll
      10:57:31.0828 1884 Wmi - ok
      10:57:31.0906 1884 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
      10:57:32.0078 1884 WmiAcpi - ok
      10:57:32.0203 1884 [ CA1A5270ACC0062B13F62CA5A0CD8DA8 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
      10:57:32.0406 1884 WmiApSrv - ok
      10:57:32.0546 1884 [ 6782482A8CA4B5B5DAB4EF0AD78DB08F ] WMPNetworkSvc C:\Archivos de programa\Windows Media Player\WMPNetwk.exe
      10:57:32.0625 1884 WMPNetworkSvc - ok
      10:57:32.0796 1884 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
      10:57:32.0906 1884 WPFFontCache_v0400 - ok
      10:57:33.0046 1884 [ 8CD684FD248DFE208C2F8F5052838A81 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
      10:57:33.0218 1884 wscsvc - ok
      10:57:33.0281 1884 WSearch - ok
      10:57:33.0468 1884 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
      10:57:33.0640 1884 WSTCODEC - ok
      10:57:33.0734 1884 [ 02E4055488047729B333F99D93877038 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
      10:57:33.0812 1884 wuauserv - ok
      10:57:33.0906 1884 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
      10:57:33.0968 1884 WudfPf - ok
      10:57:34.0031 1884 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
      10:57:34.0062 1884 WudfRd - ok
      10:57:34.0140 1884 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
      10:57:34.0171 1884 WudfSvc - ok
      10:57:34.0296 1884 [ C5DAC5BFE8AE9AB11E5B255F8A4558A6 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
      10:57:34.0500 1884 WZCSVC - ok
      10:57:34.0609 1884 [ 14FDADCF05A37582399DAF1DA1DE1C7B ] xmlprov C:\WINDOWS\System32\xmlprov.dll
      10:57:34.0859 1884 xmlprov - ok
      10:57:35.0125 1884 ================ Scan global ===============================
      10:57:35.0203 1884 [ 5E83265291342AE4B13481CA25B115A0 ] C:\WINDOWS\system32\basesrv.dll
      10:57:35.0234 1884 [ 4684FB3B04CD3F91564E4F791E1766F3 ] C:\WINDOWS\system32\winsrv.dll
      10:57:35.0296 1884 [ 4684FB3B04CD3F91564E4F791E1766F3 ] C:\WINDOWS\system32\winsrv.dll
      10:57:35.0359 1884 [ A71058FE50DAC5713B8AA8BFFB2F7E3C ] C:\WINDOWS\system32\services.exe
      10:57:35.0359 1884 [Global] - ok
      10:57:35.0390 1884 ================ Scan MBR ==================================
      10:57:35.0484 1884 [ 792F61657FECE3D17A9122B4EE282847 ] \Device\Harddisk0\DR0
      10:57:35.0984 1884 \Device\Harddisk0\DR0 - ok
      10:57:36.0046 1884 [ C1EA9334B2A30A57BA6519099B1D0C17 ] \Device\Harddisk1\DR2
      10:57:54.0703 1884 \Device\Harddisk1\DR2 - ok
      10:57:54.0750 1884 ================ Scan VBR ==================================
      10:57:54.0796 1884 [ 7D6DBE61F60D14C0A208E77037AAC35D ] \Device\Harddisk0\DR0\Partition1
      10:57:54.0796 1884 \Device\Harddisk0\DR0\Partition1 - ok
      10:57:54.0906 1884 [ FCCCEC17D6CD68097671F33C3FAD6D86 ] \Device\Harddisk1\DR2\Partition1
      10:57:54.0906 1884 \Device\Harddisk1\DR2\Partition1 - ok
      10:57:54.0953 1884 ============================================================
      10:57:54.0953 1884 Scan finished
      10:57:54.0953 1884 ============================================================
      10:57:55.0171 0264 Detected object count: 3
      10:57:55.0171 0264 Actual detected object count: 3
      11:00:21.0781 0264 atikmdag ( UnsignedFile.Multi.Generic ) - skipped by user
      11:00:21.0781 0264 atikmdag ( UnsignedFile.Multi.Generic ) - User select action: Skip
      11:00:21.0781 0264 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
      11:00:21.0781 0264 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
      11:00:21.0828 0264 Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user
      11:00:21.0828 0264 Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip
      11:02:49.0640 1724 Deinitialize success

      =========================


      [email protected] as downloader log:
      all ok
      # version=7
      # OnlineScannerApp.exe=1.0.0.1
      # OnlineScanner.ocx=1.0.0.6583
      # api_version=3.0.2
      # EOSSerial=687d8a0024bffc44a392a326c4e6eeed
      # end=finished
      # remove_checked=true
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=false
      # antistealth_checked=true
      # utc_time=2012-09-20 07:36:41
      # local_time=2012-09-20 02:36:41 (-0600, Hora de verano central (México))
      # country="Mexico"
      # lang=3082
      # osver=5.1.2600 NT Service Pack 3
      # compatibility_mode=8192 67108863 100 0 0 0 0 0
      # scanned=170967
      # found=66
      # cleaned=66
      # scan_time=12285
      C:\pixj.exe Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\qbrc.exe una variante de Win32/Injector.WHN Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix_Upload_Me_K.zip múltiples amenazas (eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Archivos de programa\RewardsArcade\RewardsArcade.dll Win32/Toolbar.CrossRider aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Avenger\SUvIPqk.exe-ren-688 una variante de Win32/Agent.NKU gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\aypec.exe Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\hjcjv.exe una variante de Win32/Kryptik.AHQO Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\pxwva.exe Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\qfvqc.exe una variante de Win32/Kryptik.AHQO Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\Configuración local\Archivos temporales de Internet\Content.IE5\9TYNUUNJ\iii[1].txt una variante de Win32/Kryptik.AKFR Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\Configuración local\Archivos temporales de Internet\Content.IE5\MHJGCF4Y\4555[1].exe una variante de Win32/Injector.WHN Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\Configuración local\Archivos temporales de Internet\Content.IE5\MHJGCF4Y\iii[1].txt una variante de Win32/Kryptik.AKFR Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\Configuración local\Archivos temporales de Internet\Content.IE5\ZHSJDVG0\1888[2].exe una variante de Win32/Injector.WHN Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\Configuración local\Archivos temporales de Internet\Content.IE5\ZHSJDVG0\4555[1].exe una variante de Win32/Injector.WHN Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\Datos de programa\Microsoft\Iyryrg.exe una variante de Win32/Injector.WHN Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\Mis documentos\Downloads\generador-de-key-wireless-1.0.exe una variante de Win32/UpToDown.B aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\Documents and Settings\Kendator\Mis documentos\Downloads\La_Noche_Cubana_27_2007.exe Win32/Adware.1ClickDownload aplicación (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\19F.tmp.vir una variante de Win32/Injector.QHK Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1A5.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1AC.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1B6.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1BC.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1C1.tmp.vir una variante de Win32/Injector.QIZ Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1C2.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1C7.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1CD.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1CE.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1D1.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1D7.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1E1.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1E2.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1E6.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1E7.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1ED.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1EE.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1F0.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\1F3.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\203.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\206.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\20F.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\212.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\26F.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\28A.tmp.vir una variante de Win32/Injector.PNB Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\29B.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\29F.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\2A1.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\2B2.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\2B7.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\2BA.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\2C3.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\2C6.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\2FF.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\332.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\366.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\392.tmp.vir una variante de Win32/Injector.QHK Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\3B0.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\3CA.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\3E1.tmp.vir una variante de Win32/Injector.QQP Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\3E4.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\458.tmp.vir una variante de Win32/Injector.QHK Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\45B.tmp.vir una variante de Win32/Injector.QHK Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\4B7.tmp.vir una variante de Win32/Injector.QHK Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\64B.tmp.vir Win32/Dorkbot.B gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\C\Documents and Settings\Kendator\Datos de programa\891.tmp.vir una variante de Win32/Injector.QHK Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\E\autorun.inf.vir INF/Autorun gusano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C
      C:\UsbFix\Quarantine\E\RECYCLER\R-1-5-21-1482476501-1644491937-682003330-1013\ecleaner.exe.vir una variante de Win32/Kryptik.AHQO Troyano (no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena) 00000000000000000000000000000000 C


      ========================================

      La pc al parecer ya mas rapida, no se atonta ya pero veo que en procesos hay muchos .exe´s abiertos, me quedo a espera de ver que mas puedo hacerle, saludos!

    8. #8
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.817

      Re: Mi Pc está muy lenta

      Descarga ComboFix en tu escritorio de la PC infectada.


      En modo normal


      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Cierra todas las ventanas abiertas.
      • Haz doble clic al archivo ComboFix.exe para continuar. Es Importante Importante instalar Recovery Console si es solicitado por ComboFix.
      • Cuando termine, generará un registro en C:\ComboFix.txt.
      • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
      • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.

      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
      • Reinicia y pega el reporte de C:\ComboFix.txt en este mismo mensaje.
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de Azif
      Registrado
      may 2009
      Ubicación
      Veracruz
      Mensajes
      73

      Re: Mi Pc está muy lenta

      Hola, te comento...

      Ya pase el COMBOFIX pero no me genera ningun archivo .txt me genero como una "carpeta" (Tienen un icono de Pc), pero le doy doble click y me manda como sientrara yo a mi Pc y no veo ningun .txt la pudo haber puesto en otro ubicación ?

    10. #10
      Moderador
      Avatar de @MarioL
      Registrado
      nov 2006
      Ubicación
      Málaga - España
      Mensajes
      8.817

      Re: Mi Pc está muy lenta

      Hola.

      Verifica que esté en C:\ComboFix.txt
      Invy

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 2 12 ÚltimoÚltimo