• Registrarse
  • Iniciar sesión


  • Página 1 de 4 1234 ÚltimoÚltimo
    Resultados 1 al 10 de 40

    internet explorer me redirecciona a otras paginas

    tengo un problema con internet explorer me redirecciona a otras paginas, he visitado otros blog parecidos a mi problema y seguidos los pasos pero nada le he pasado mi antivirus panda av pro, le instale ...

    1. #1
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Atención internet explorer me redirecciona a otras paginas

      tengo un problema con internet explorer me redirecciona a otras paginas, he visitado otros blog parecidos a mi problema y seguidos los pasos pero nada le he pasado mi antivirus panda av pro, le instale cleeaner y malwarabytes y le dado analisis completo pero nada sigue redirecionado pero malwarebytes me muestra un mensaje diciendo: bloqueado con exito el acceso a un sitio web potencialmente malicioso 195.88209.15 tipo: salientes puerto:49621 proceso: rundll32. el problema lo tengo en mi lap es windows 7 profesional que puedo hacer?

    2. #2
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: internet explorer me redirecciona aotra paginas

      Buenas.




      Realiza lo siguiente:


      • Descarga TDSSKiller.zip y extrae el contenido en tu escritorio

      • Desconecte el equipo físicamente de Internet - Quite el cable/apague el módem

      • Doble clic sobre TDSSKiller.exe
      • Clic sobre Change parameters > marque Detect TDLFS File System

      • Haga clic en OK > Start Scan, terminando el análisis:


        • Se mostraran los resultados NO modifique las acciones predeterminadas, únicamente:
        • Si se encuentra "TDLFS File System/TDSS File system" la opción a seguir es Delete


      • Haga clic en Continue > Reboot computer para terminar el proceso.



      Abrir el archivo de texto en C:\TDSSKiller_***_***_.txt copiar todo su contenido y pegarlo en su siguiente respuesta.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona aotra paginas

      buenas tardes no me detecto nada segui los pasos como me dijo esto es el imforme




      18:51:03.0435 6416 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
      18:51:04.0098 6416 ============================================================
      18:51:04.0098 6416 Current date / time: 2012/10/12 18:51:04.0098
      18:51:04.0098 6416 SystemInfo:
      18:51:04.0098 6416
      18:51:04.0098 6416 OS Version: 6.1.7601 ServicePack: 1.0
      18:51:04.0098 6416 Product type: Workstation
      18:51:04.0098 6416 ComputerName: CARLITOS-PC
      18:51:04.0099 6416 UserName: Admin
      18:51:04.0099 6416 Windows directory: C:\Windows
      18:51:04.0100 6416 System windows directory: C:\Windows
      18:51:04.0100 6416 Processor architecture: Intel x86
      18:51:04.0100 6416 Number of processors: 1
      18:51:04.0100 6416 Page size: 0x1000
      18:51:04.0100 6416 Boot type: Normal boot
      18:51:04.0100 6416 ============================================================
      18:51:10.0576 6416 Drive \Device\Harddisk0\DR0 - Size: 0xDF8F90000 (55.89 Gb), SectorSize: 0x200, Cylinders: 0x1C80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
      18:51:10.0841 6416 ============================================================
      18:51:10.0841 6416 \Device\Harddisk0\DR0:
      18:51:10.0841 6416 MBR partitions:
      18:51:10.0841 6416 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
      18:51:10.0841 6416 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6F94800
      18:51:10.0841 6416 ============================================================
      18:51:10.0951 6416 C: <-> \Device\Harddisk0\DR0\Partition2
      18:51:11.0711 6416 ============================================================
      18:51:11.0712 6416 Initialize success
      18:51:11.0712 6416 ============================================================
      18:51:57.0314 4680 ============================================================
      18:51:57.0321 4680 Scan started
      18:51:57.0321 4680 Mode: Manual; TDLFS;
      18:51:57.0321 4680 ============================================================
      18:52:03.0392 4680 ================ Scan system memory ========================
      18:52:03.0392 4680 System memory - ok
      18:52:03.0402 4680 ================ Scan services =============================
      18:52:03.0709 4680 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      18:52:03.0934 4680 1394ohci - ok
      18:52:04.0007 4680 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      18:52:04.0018 4680 ACPI - ok
      18:52:04.0083 4680 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      18:52:04.0142 4680 AcpiPmi - ok
      18:52:04.0381 4680 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
      18:52:04.0386 4680 AdobeFlashPlayerUpdateSvc - ok
      18:52:04.0516 4680 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      18:52:04.0627 4680 adp94xx - ok
      18:52:04.0715 4680 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      18:52:04.0930 4680 adpahci - ok
      18:52:04.0979 4680 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      18:52:05.0303 4680 adpu320 - ok
      18:52:05.0380 4680 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      18:52:05.0384 4680 AeLookupSvc - ok
      18:52:05.0489 4680 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
      18:52:05.0505 4680 AFD - ok
      18:52:05.0567 4680 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
      18:52:05.0724 4680 agp440 - ok
      18:52:05.0782 4680 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
      18:52:05.0968 4680 aic78xx - ok
      18:52:06.0036 4680 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
      18:52:06.0250 4680 ALG - ok
      18:52:06.0322 4680 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
      18:52:06.0430 4680 aliide - ok
      18:52:06.0498 4680 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
      18:52:06.0741 4680 amdagp - ok
      18:52:06.0867 4680 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
      18:52:06.0946 4680 amdide - ok
      18:52:07.0049 4680 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      18:52:07.0241 4680 AmdK8 - ok
      18:52:07.0281 4680 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      18:52:07.0416 4680 AmdPPM - ok
      18:52:07.0507 4680 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
      18:52:07.0627 4680 amdsata - ok
      18:52:07.0720 4680 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      18:52:08.0017 4680 amdsbs - ok
      18:52:08.0088 4680 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      18:52:08.0211 4680 amdxata - ok
      18:52:08.0322 4680 [ 36B58A8BAFE100DE90C87A3C0E56A3F2 ] AmFSM C:\Windows\system32\DRIVERS\amm8660.sys
      18:52:08.0485 4680 AmFSM - ok
      18:52:08.0497 4680 Scan interrupted by user!
      18:52:08.0498 4680 ================ Scan global ===============================
      18:52:08.0498 4680 Scan interrupted by user!
      18:52:08.0498 4680 ================ Scan MBR ==================================
      18:52:08.0498 4680 Scan interrupted by user!
      18:52:08.0498 4680 ================ Scan VBR ==================================
      18:52:08.0498 4680 Scan interrupted by user!
      18:52:08.0498 4680 ============================================================
      18:52:08.0498 4680 Scan finished
      18:52:08.0498 4680 ============================================================
      18:52:08.0563 6136 Detected object count: 0
      18:52:08.0563 6136 Actual detected object count: 0
      18:52:20.0512 7608 ============================================================
      18:52:20.0512 7608 Scan started
      18:52:20.0512 7608 Mode: Manual; TDLFS;
      18:52:20.0512 7608 ============================================================
      18:52:21.0680 7608 ================ Scan system memory ========================
      18:52:21.0680 7608 System memory - ok
      18:52:21.0690 7608 ================ Scan services =============================
      18:52:21.0954 7608 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
      18:52:21.0957 7608 1394ohci - ok
      18:52:22.0041 7608 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
      18:52:22.0046 7608 ACPI - ok
      18:52:22.0104 7608 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
      18:52:22.0106 7608 AcpiPmi - ok
      18:52:22.0237 7608 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
      18:52:22.0243 7608 AdobeFlashPlayerUpdateSvc - ok
      18:52:22.0334 7608 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
      18:52:22.0344 7608 adp94xx - ok
      18:52:22.0425 7608 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
      18:52:22.0431 7608 adpahci - ok
      18:52:22.0525 7608 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
      18:52:22.0528 7608 adpu320 - ok
      18:52:22.0616 7608 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      18:52:22.0620 7608 AeLookupSvc - ok
      18:52:22.0713 7608 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
      18:52:22.0721 7608 AFD - ok
      18:52:22.0782 7608 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
      18:52:22.0784 7608 agp440 - ok
      18:52:22.0840 7608 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
      18:52:22.0843 7608 aic78xx - ok
      18:52:22.0894 7608 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
      18:52:22.0897 7608 ALG - ok
      18:52:22.0959 7608 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
      18:52:22.0960 7608 aliide - ok
      18:52:23.0001 7608 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
      18:52:23.0003 7608 amdagp - ok
      18:52:23.0049 7608 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
      18:52:23.0051 7608 amdide - ok
      18:52:23.0108 7608 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
      18:52:23.0111 7608 AmdK8 - ok
      18:52:23.0208 7608 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
      18:52:23.0209 7608 AmdPPM - ok
      18:52:23.0280 7608 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
      18:52:23.0283 7608 amdsata - ok
      18:52:23.0345 7608 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
      18:52:23.0350 7608 amdsbs - ok
      18:52:23.0427 7608 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
      18:52:23.0429 7608 amdxata - ok
      18:52:23.0494 7608 [ 36B58A8BAFE100DE90C87A3C0E56A3F2 ] AmFSM C:\Windows\system32\DRIVERS\amm8660.sys
      18:52:23.0498 7608 AmFSM - ok
      18:52:23.0571 7608 [ F57B596C8B6A143E9DC7ECC52B718A48 ] APPFLT C:\Windows\system32\Drivers\APPFLT.SYS
      18:52:23.0812 7608 APPFLT - ok
      18:52:23.0896 7608 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
      18:52:24.0091 7608 AppID - ok
      18:52:24.0134 7608 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
      18:52:24.0358 7608 AppIDSvc - ok
      18:52:24.0476 7608 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
      18:52:24.0479 7608 Appinfo - ok
      18:52:24.0555 7608 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
      18:52:24.0811 7608 AppMgmt - ok
      18:52:24.0914 7608 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
      18:52:24.0960 7608 arc - ok
      18:52:25.0005 7608 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
      18:52:25.0034 7608 arcsas - ok
      18:52:25.0105 7608 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      18:52:25.0114 7608 AsyncMac - ok
      18:52:25.0208 7608 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
      18:52:25.0209 7608 atapi - ok
      18:52:25.0409 7608 [ AC4ADAC154563AB41CC79B0257BC685A ] athr C:\Windows\system32\DRIVERS\athr.sys
      18:52:25.0520 7608 athr - ok
      18:52:25.0625 7608 [ 2039E24FE00639A9123DCD6F22D42D74 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
      18:52:25.0667 7608 Ati External Event Utility - ok
      18:52:25.0970 7608 [ D2E9ACB68FA61C911CC21E07F87705BF ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
      18:52:26.0891 7608 atikmdag - ok
      18:52:27.0000 7608 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      18:52:27.0016 7608 AudioEndpointBuilder - ok
      18:52:27.0062 7608 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
      18:52:27.0071 7608 Audiosrv - ok
      18:52:27.0112 7608 AvFlt - ok
      18:52:27.0192 7608 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
      18:52:27.0313 7608 AxInstSV - ok
      18:52:27.0410 7608 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
      18:52:27.0655 7608 b06bdrv - ok
      18:52:27.0775 7608 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
      18:52:27.0846 7608 b57nd60x - ok
      18:52:28.0103 7608 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe
      18:52:28.0112 7608 BBSvc - ok
      18:52:28.0252 7608 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
      18:52:28.0261 7608 BBUpdate - ok
      18:52:28.0341 7608 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
      18:52:28.0692 7608 BDESVC - ok
      18:52:28.0748 7608 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
      18:52:28.0863 7608 Beep - ok
      18:52:29.0056 7608 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
      18:52:29.0076 7608 BFE - ok
      18:52:29.0310 7608 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
      18:52:29.0357 7608 BITS - ok
      18:52:29.0434 7608 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
      18:52:29.0473 7608 blbdrive - ok
      18:52:29.0554 7608 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      18:52:29.0984 7608 bowser - ok
      18:52:30.0035 7608 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
      18:52:30.0132 7608 BrFiltLo - ok
      18:52:30.0171 7608 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
      18:52:30.0214 7608 BrFiltUp - ok
      18:52:30.0270 7608 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
      18:52:30.0478 7608 BridgeMP - ok
      18:52:30.0581 7608 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
      18:52:30.0602 7608 Browser - ok
      18:52:30.0943 7608 [ 9FCD0930616714A752F48DDBA54F3109 ] Browser Manager C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
      18:52:31.0012 7608 Browser Manager - ok
      18:52:31.0106 7608 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
      18:52:31.0188 7608 Brserid - ok
      18:52:31.0246 7608 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
      18:52:31.0323 7608 BrSerWdm - ok
      18:52:31.0413 7608 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
      18:52:31.0464 7608 BrUsbMdm - ok
      18:52:31.0512 7608 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
      18:52:31.0550 7608 BrUsbSer - ok
      18:52:31.0618 7608 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
      18:52:31.0633 7608 BTHMODEM - ok
      18:52:31.0771 7608 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
      18:52:31.0920 7608 bthserv - ok
      18:52:32.0004 7608 [ CCE1F3C7C8E7383B90372229454999CF ] CAMCAUD C:\Windows\system32\drivers\camc6aud.sys
      18:52:32.0159 7608 CAMCAUD - ok
      18:52:32.0290 7608 [ 9A3BBDE74DAB737EFA82DE7EF4B40BEA ] CAMCHALA C:\Windows\system32\drivers\camc6hal.sys
      18:52:32.0648 7608 CAMCHALA - ok
      18:52:33.0293 7608 catchme - ok
      18:52:33.0642 7608 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      18:52:33.0655 7608 cdfs - ok
      18:52:33.0782 7608 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      18:52:33.0844 7608 cdrom - ok
      18:52:34.0007 7608 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
      18:52:34.0071 7608 CertPropSvc - ok
      18:52:34.0152 7608 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
      18:52:34.0466 7608 circlass - ok
      18:52:34.0682 7608 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
      18:52:34.0711 7608 CLFS - ok
      18:52:34.0926 7608 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      18:52:34.0994 7608 clr_optimization_v2.0.50727_32 - ok
      18:52:35.0146 7608 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      18:52:35.0252 7608 clr_optimization_v4.0.30319_32 - ok
      18:52:35.0325 7608 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      18:52:35.0339 7608 CmBatt - ok
      18:52:35.0434 7608 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
      18:52:35.0460 7608 cmdide - ok
      18:52:35.0543 7608 [ 631155CE46B7DA2AAC47EEDF7EE42EBE ] cmusbser C:\Windows\system32\DRIVERS\cmusbser.sys
      18:52:35.0614 7608 cmusbser - ok
      18:52:35.0834 7608 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
      18:52:35.0947 7608 CNG - ok
      18:52:36.0079 7608 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      18:52:36.0157 7608 Compbatt - ok
      18:52:36.0259 7608 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
      18:52:36.0405 7608 CompositeBus - ok
      18:52:36.0484 7608 COMSysApp - ok
      18:52:36.0566 7608 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
      18:52:36.0869 7608 crcdisk - ok
      18:52:37.0063 7608 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
      18:52:37.0070 7608 CryptSvc - ok
      18:52:37.0234 7608 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
      18:52:37.0305 7608 CSC - ok
      18:52:37.0483 7608 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
      18:52:37.0500 7608 CscService - ok
      18:52:37.0599 7608 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
      18:52:37.0616 7608 DcomLaunch - ok
      18:52:37.0740 7608 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
      18:52:37.0750 7608 defragsvc - ok
      18:52:37.0833 7608 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      18:52:37.0853 7608 DfsC - ok
      18:52:37.0994 7608 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
      18:52:38.0004 7608 Dhcp - ok
      18:52:38.0076 7608 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
      18:52:38.0080 7608 discache - ok
      18:52:38.0154 7608 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
      18:52:38.0250 7608 Disk - ok
      18:52:38.0494 7608 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      18:52:38.0500 7608 Dnscache - ok
      18:52:38.0611 7608 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
      18:52:38.0618 7608 dot3svc - ok
      18:52:38.0815 7608 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
      18:52:38.0823 7608 DPS - ok
      18:52:38.0892 7608 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      18:52:39.0073 7608 drmkaud - ok
      18:52:39.0153 7608 [ 5BB0F91FFD84057D094D106D9FF53298 ] DSAFLT C:\Windows\system32\Drivers\DSAFLT.SYS
      18:52:39.0224 7608 DSAFLT - ok
      18:52:39.0462 7608 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      18:52:39.0579 7608 DXGKrnl - ok
      18:52:39.0652 7608 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
      18:52:39.0659 7608 EapHost - ok
      18:52:40.0162 7608 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
      18:52:40.0424 7608 ebdrv - ok
      18:52:40.0597 7608 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
      18:52:40.0604 7608 EFS - ok
      18:52:40.0834 7608 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
      18:52:42.0052 7608 ehRecvr - ok
      18:52:42.0183 7608 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
      18:52:42.0496 7608 ehSched - ok
      18:52:42.0951 7608 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
      18:52:45.0528 7608 elxstor - ok
      18:52:45.0631 7608 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
      18:52:45.0748 7608 ErrDev - ok
      18:52:46.0016 7608 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
      18:52:46.0042 7608 EventSystem - ok
      18:52:46.0111 7608 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
      18:52:46.0168 7608 exfat - ok
      18:52:46.0252 7608 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
      18:52:46.0385 7608 fastfat - ok
      18:52:46.0503 7608 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
      18:52:46.0550 7608 Fax - ok
      18:52:46.0620 7608 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      18:52:46.0786 7608 fdc - ok
      18:52:46.0883 7608 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
      18:52:46.0888 7608 fdPHost - ok
      18:52:47.0012 7608 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
      18:52:47.0076 7608 FDResPub - ok
      18:52:47.0147 7608 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      18:52:47.0190 7608 FileInfo - ok
      18:52:47.0255 7608 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      18:52:47.0310 7608 Filetrace - ok
      18:52:47.0549 7608 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
      18:52:47.0796 7608 FLEXnet Licensing Service - ok
      18:52:47.0894 7608 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      18:52:47.0922 7608 flpydisk - ok
      18:52:47.0986 7608 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      18:52:48.0166 7608 FltMgr - ok
      18:52:48.0252 7608 [ A38B9BA7A4C17F7DCE9EC4E8F7870026 ] FNETMON C:\Windows\system32\Drivers\fnetmon.SYS
      18:52:48.0312 7608 FNETMON - ok
      18:52:48.0433 7608 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
      18:52:48.0465 7608 FontCache - ok
      18:52:48.0560 7608 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
      18:52:48.0771 7608 FontCache3.0.0.0 - ok
      18:52:48.0840 7608 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
      18:52:49.0011 7608 FsDepends - ok
      18:52:49.0143 7608 [ B0082808A6856A252F7CDD939892CE50 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
      18:52:49.0173 7608 fssfltr - ok
      18:52:49.0440 7608 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
      18:52:50.0568 7608 fsssvc - ok
      18:52:50.0803 7608 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      18:52:50.0895 7608 Fs_Rec - ok
      18:52:50.0993 7608 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
      18:52:51.0000 7608 fvevol - ok
      18:52:51.0064 7608 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
      18:52:51.0089 7608 gagp30kx - ok
      18:52:51.0215 7608 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
      18:52:51.0250 7608 gpsvc - ok
      18:52:51.0440 7608 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
      18:52:51.0444 7608 gupdate - ok
      18:52:51.0525 7608 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
      18:52:51.0528 7608 gupdatem - ok
      18:52:51.0664 7608 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      18:52:52.0443 7608 gusvc - ok
      18:52:52.0555 7608 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
      18:52:52.0785 7608 hcw85cir - ok
      18:52:52.0874 7608 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
      18:52:53.0065 7608 HDAudBus - ok
      18:52:53.0123 7608 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
      18:52:53.0179 7608 HidBatt - ok
      18:52:53.0249 7608 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
      18:52:53.0345 7608 HidBth - ok
      18:52:53.0473 7608 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
      18:52:53.0549 7608 HidIr - ok
      18:52:53.0623 7608 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
      18:52:53.0638 7608 hidserv - ok
      18:52:53.0745 7608 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      18:52:53.0778 7608 HidUsb - ok
      18:52:53.0852 7608 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
      18:52:53.0858 7608 hkmsvc - ok
      18:52:53.0970 7608 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      18:52:54.0013 7608 HomeGroupListener - ok
      18:52:54.0123 7608 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      18:52:54.0136 7608 HomeGroupProvider - ok
      18:52:54.0407 7608 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
      18:52:54.0419 7608 hpqcxs08 - ok
      18:52:54.0478 7608 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
      18:52:54.0572 7608 hpqddsvc - ok
      18:52:54.0746 7608 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
      18:52:54.0814 7608 HpSAMD - ok
      18:52:54.0907 7608 [ 790ACB861176AE06D97BD7FBDDCDBBCB ] HSFHWATI C:\Windows\system32\DRIVERS\HSFHWATI.sys
      18:52:54.0969 7608 HSFHWATI - ok
      18:52:55.0123 7608 [ 9A7C0D83BD340A43E10A453960607025 ] HSF_DPV C:\Windows\system32\DRIVERS\HSF_DPV.sys
      18:52:55.0465 7608 HSF_DPV - ok
      18:52:55.0568 7608 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      18:52:55.0591 7608 HTTP - ok
      18:52:55.0675 7608 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
      18:52:55.0678 7608 hwpolicy - ok
      18:52:55.0745 7608 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
      18:52:55.0750 7608 i8042prt - ok
      18:52:55.0834 7608 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
      18:52:58.0281 7608 iaStorV - ok
      18:52:58.0455 7608 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      18:52:58.0980 7608 IDriverT - ok
      18:52:59.0091 7608 [ 188EED48DE6DC75E1067E78ED99D928A ] IDSFLT C:\Windows\system32\Drivers\IDSFLT.SYS
      18:52:59.0311 7608 IDSFLT - ok
      18:52:59.0469 7608 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      18:52:59.0543 7608 idsvc - ok
      18:52:59.0615 7608 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
      18:52:59.0635 7608 iirsp - ok
      18:52:59.0756 7608 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
      18:52:59.0813 7608 IKEEXT - ok
      18:52:59.0907 7608 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
      18:52:59.0987 7608 intelide - ok
      18:53:00.0052 7608 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      18:53:00.0057 7608 intelppm - ok
      18:53:00.0118 7608 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      18:53:00.0226 7608 IPBusEnum - ok
      18:53:00.0297 7608 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      18:53:00.0463 7608 IpFilterDriver - ok
      18:53:00.0626 7608 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      18:53:00.0696 7608 iphlpsvc - ok
      18:53:00.0769 7608 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
      18:53:00.0880 7608 IPMIDRV - ok
      18:53:00.0957 7608 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
      18:53:03.0083 7608 IPNAT - ok
      18:53:03.0207 7608 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
      18:53:03.0310 7608 IRENUM - ok
      18:53:03.0376 7608 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      18:53:03.0469 7608 isapnp - ok
      18:53:03.0556 7608 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
      18:53:03.0580 7608 iScsiPrt - ok
      18:53:03.0665 7608 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
      18:53:03.0667 7608 kbdclass - ok
      18:53:03.0738 7608 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
      18:53:03.0848 7608 kbdhid - ok
      18:53:03.0902 7608 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
      18:53:03.0917 7608 KeyIso - ok
      18:53:04.0013 7608 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      18:53:04.0064 7608 KSecDD - ok
      18:53:04.0118 7608 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
      18:53:04.0200 7608 KSecPkg - ok
      18:53:04.0285 7608 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
      18:53:04.0757 7608 KtmRm - ok
      18:53:04.0833 7608 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
      18:53:04.0844 7608 LanmanServer - ok
      18:53:04.0926 7608 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      18:53:04.0936 7608 LanmanWorkstation - ok
      18:53:05.0039 7608 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      18:53:05.0185 7608 lltdio - ok
      18:53:05.0314 7608 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
      18:53:05.0514 7608 lltdsvc - ok
      18:53:05.0567 7608 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
      18:53:05.0572 7608 lmhosts - ok
      18:53:05.0664 7608 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
      18:53:05.0778 7608 LSI_FC - ok
      18:53:05.0840 7608 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
      18:53:05.0875 7608 LSI_SAS - ok
      18:53:05.0934 7608 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
      18:53:05.0954 7608 LSI_SAS2 - ok
      18:53:06.0016 7608 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
      18:53:06.0212 7608 LSI_SCSI - ok
      18:53:06.0292 7608 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
      18:53:06.0420 7608 luafv - ok
      18:53:06.0598 7608 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      18:53:06.0753 7608 MBAMProtector - ok
      18:53:06.0903 7608 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
      18:53:06.0917 7608 MBAMScheduler - ok
      18:53:07.0035 7608 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
      18:53:07.0527 7608 MBAMService - ok
      18:53:07.0640 7608 [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy C:\Windows\system32\drivers\mbamswissarmy.sys
      18:53:07.0805 7608 MBAMSwissArmy - ok
      18:53:07.0935 7608 [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
      18:53:08.0025 7608 McComponentHostService - ok
      18:53:08.0109 7608 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
      18:53:08.0192 7608 Mcx2Svc - ok
      18:53:08.0252 7608 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
      18:53:08.0283 7608 mdmxsdk - ok
      18:53:08.0410 7608 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
      18:53:08.0577 7608 megasas - ok
      18:53:08.0641 7608 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
      18:53:08.0789 7608 MegaSR - ok
      18:53:08.0911 7608 Microsoft SharePoint Workspace Audit Service - ok
      18:53:09.0000 7608 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
      18:53:09.0007 7608 MMCSS - ok
      18:53:09.0055 7608 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
      18:53:09.0059 7608 Modem - ok
      18:53:09.0124 7608 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      18:53:09.0127 7608 monitor - ok
      18:53:09.0199 7608 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      18:53:09.0403 7608 mouclass - ok
      18:53:09.0503 7608 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      18:53:09.0594 7608 mouhid - ok
      18:53:09.0731 7608 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
      18:53:09.0736 7608 mountmgr - ok
      18:53:09.0850 7608 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
      18:53:14.0807 7608 MozillaMaintenance - ok
      18:53:14.0874 7608 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
      18:53:14.0964 7608 mpio - ok
      18:53:15.0042 7608 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      18:53:15.0061 7608 mpsdrv - ok
      18:53:15.0185 7608 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
      18:53:15.0223 7608 MpsSvc - ok
      18:53:15.0307 7608 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      18:53:15.0513 7608 MRxDAV - ok
      18:53:15.0647 7608 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      18:53:15.0736 7608 mrxsmb - ok
      18:53:15.0815 7608 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      18:53:15.0864 7608 mrxsmb10 - ok
      18:53:15.0917 7608 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      18:53:15.0953 7608 mrxsmb20 - ok
      18:53:16.0045 7608 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
      18:53:16.0164 7608 msahci - ok
      18:53:16.0246 7608 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      18:53:16.0323 7608 msdsm - ok
      18:53:16.0409 7608 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
      18:53:16.0686 7608 MSDTC - ok
      18:53:16.0909 7608 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
      18:53:16.0951 7608 Msfs - ok
      18:53:16.0992 7608 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
      18:53:17.0032 7608 mshidkmdf - ok
      18:53:17.0105 7608 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      18:53:17.0176 7608 msisadrv - ok
      18:53:17.0262 7608 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      18:53:17.0478 7608 MSiSCSI - ok
      18:53:17.0516 7608 msiserver - ok
      18:53:17.0691 7608 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      18:53:17.0813 7608 MSKSSRV - ok
      18:53:17.0850 7608 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      18:53:17.0887 7608 MSPCLOCK - ok
      18:53:17.0927 7608 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      18:53:17.0976 7608 MSPQM - ok
      18:53:18.0125 7608 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      18:53:18.0173 7608 MsRPC - ok
      18:53:18.0273 7608 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
      18:53:18.0277 7608 mssmbios - ok
      18:53:18.0333 7608 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      18:53:18.0434 7608 MSTEE - ok
      18:53:18.0476 7608 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
      18:53:18.0589 7608 MTConfig - ok
      18:53:18.0647 7608 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
      18:53:18.0735 7608 Mup - ok
      18:53:18.0834 7608 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
      18:53:18.0850 7608 napagent - ok
      18:53:18.0958 7608 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      18:53:19.0017 7608 NativeWifiP - ok
      18:53:19.0209 7608 [ 89844C3D3A7AAE8999E229C88E452633 ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
      18:53:19.0477 7608 NBService - ok
      18:53:19.0626 7608 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
      18:53:19.0648 7608 NDIS - ok
      18:53:19.0701 7608 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
      18:53:19.0756 7608 NdisCap - ok
      18:53:19.0874 7608 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      18:53:19.0900 7608 NdisTapi - ok
      18:53:20.0007 7608 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      18:53:20.0161 7608 Ndisuio - ok
      18:53:20.0237 7608 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      18:53:20.0328 7608 NdisWan - ok
      18:53:20.0425 7608 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      18:53:20.0460 7608 NDProxy - ok
      18:53:20.0571 7608 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      18:53:20.0788 7608 NetBIOS - ok
      18:53:20.0870 7608 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
      18:53:20.0877 7608 NetBT - ok
      18:53:20.0977 7608 [ D8F44FC13DB193C9379297973EE42272 ] NETFLTDI C:\Windows\system32\Drivers\NETFLTDI.SYS
      18:53:21.0043 7608 NETFLTDI - ok
      18:53:21.0156 7608 [ 9EEB6DF1F5FFD878A3A44874607EAAEF ] NETIMFLT01060042 C:\Windows\system32\DRIVERS\neti1642.sys
      18:53:21.0163 7608 NETIMFLT01060042 - ok
      18:53:21.0215 7608 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
      18:53:21.0225 7608 Netlogon - ok
      18:53:21.0316 7608 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
      18:53:21.0329 7608 Netman - ok
      18:53:21.0401 7608 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
      18:53:21.0415 7608 netprofm - ok
      18:53:21.0490 7608 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
      18:53:21.0678 7608 NetTcpPortSharing - ok
      18:53:21.0791 7608 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
      18:53:21.0901 7608 nfrd960 - ok
      18:53:22.0023 7608 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
      18:53:22.0035 7608 NlaSvc - ok
      18:53:22.0166 7608 [ 8DD0CDB0C700992D10169D8769EF5F43 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
      18:53:22.0177 7608 NMIndexingService - ok
      18:53:22.0236 7608 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
      18:53:22.0275 7608 Npfs - ok
      18:53:22.0340 7608 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
      18:53:22.0347 7608 nsi - ok
      18:53:22.0416 7608 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      18:53:22.0420 7608 nsiproxy - ok
      18:53:22.0615 7608 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      18:53:24.0457 7608 Ntfs - ok
      18:53:24.0534 7608 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
      18:53:24.0722 7608 Null - ok
      18:53:24.0787 7608 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
      18:53:24.0986 7608 nvraid - ok
      18:53:25.0108 7608 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
      18:53:25.0285 7608 nvstor - ok
      18:53:25.0365 7608 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      18:53:25.0388 7608 nv_agp - ok
      18:53:25.0477 7608 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
      18:53:25.0513 7608 ohci1394 - ok
      18:53:25.0624 7608 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      18:53:25.0631 7608 ose - ok
      18:53:26.0143 7608 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
      18:53:26.0268 7608 osppsvc - ok
      18:53:26.0386 7608 [ 68CB569EDE9CFB3B0BF17966428DF025 ] P0630VID C:\Windows\system32\DRIVERS\P0630Vid.sys
      18:53:26.0583 7608 P0630VID - ok
      18:53:26.0666 7608 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
      18:53:26.0678 7608 p2pimsvc - ok
      18:53:26.0817 7608 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
      18:53:27.0097 7608 p2psvc - ok
      18:53:27.0258 7608 [ 78B7642B0C51F24F0835C0226540D58B ] Panda Software Controller C:\Program Files\Panda Security\Panda Antivirus Pro 2011\PsCtrls.exe
      18:53:27.0265 7608 Panda Software Controller - ok
      18:53:27.0337 7608 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
      18:53:27.0375 7608 Parport - ok
      18:53:27.0463 7608 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
      18:53:27.0501 7608 partmgr - ok
      18:53:27.0585 7608 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
      18:53:27.0745 7608 Parvdm - ok
      18:53:27.0856 7608 [ 55D654258A9C509B671310C314BD30B4 ] pavboot C:\Windows\system32\Drivers\pavboot.sys
      18:53:27.0908 7608 pavboot - ok
      18:53:28.0023 7608 [ BDD6EF7BADC2D4F8FF036150491F0204 ] PAVFNSVR C:\Program Files\Panda Security\Panda Antivirus Pro 2011\PavFnSvr.exe
      18:53:28.0041 7608 PAVFNSVR - ok
      18:53:28.0164 7608 [ 018F51F5757819FCD9F32162C9808565 ] PavProc C:\Windows\system32\DRIVERS\PavProc.sys
      18:53:28.0492 7608 PavProc - ok
      18:53:28.0640 7608 [ 2AE3F6B23448443BBEF5DE207159213B ] PavPrSrv C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
      18:53:28.0761 7608 PavPrSrv - ok
      18:53:28.0802 7608 PavSRK.sys - ok
      18:53:28.0923 7608 [ 97005413310966001FB6F4A5C503149C ] PAVSRV C:\Program Files\Panda Security\Panda Antivirus Pro 2011\pavsrvx86.exe
      18:53:28.0934 7608 PAVSRV - ok
      18:53:28.0974 7608 PavTPK.sys - ok
      18:53:29.0047 7608 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
      18:53:29.0058 7608 PcaSvc - ok
      18:53:29.0234 7608 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
      18:53:29.0609 7608 pci - ok
      18:53:29.0697 7608 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
      18:53:29.0753 7608 pciide - ok
      18:53:29.0862 7608 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
      18:53:30.0084 7608 pcmcia - ok
      18:53:30.0141 7608 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
      18:53:30.0188 7608 pcw - ok
      18:53:30.0288 7608 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      18:53:30.0444 7608 PEAUTH - ok
      18:53:30.0680 7608 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
      18:53:30.0712 7608 PeerDistSvc - ok
      18:53:30.0978 7608 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
      18:53:31.0973 7608 pla - ok
      18:53:32.0073 7608 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      18:53:32.0087 7608 PlugPlay - ok
      18:53:32.0135 7608 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
      18:53:32.0275 7608 PNRPAutoReg - ok
      18:53:32.0335 7608 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
      18:53:32.0345 7608 PNRPsvc - ok
      18:53:32.0423 7608 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      18:53:32.0465 7608 PolicyAgent - ok
      18:53:32.0555 7608 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
      18:53:32.0565 7608 Power - ok
      18:53:32.0638 7608 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      18:53:32.0818 7608 PptpMiniport - ok
      18:53:32.0881 7608 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
      18:53:33.0037 7608 Processor - ok
      18:53:33.0174 7608 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
      18:53:33.0185 7608 ProfSvc - ok
      18:53:33.0226 7608 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
      18:53:33.0235 7608 ProtectedStorage - ok
      18:53:33.0392 7608 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
      18:53:33.0397 7608 Psched - ok
      18:53:33.0542 7608 [ 532053E8E3BB8FA7166AB4E7685FDDCC ] PSHost C:\Program Files\Panda Security\Panda Antivirus Pro 2011\Firewall\PSHOST.EXE
      18:53:33.0807 7608 PSHost - ok
      18:53:33.0958 7608 [ 196C450F2779D0B462C444DA4906EA7F ] PSIMSVC C:\Program Files\Panda Security\Panda Antivirus Pro 2011\PsImSvc.exe
      18:53:35.0801 7608 PSIMSVC - ok
      18:53:35.0901 7608 [ 341457B79B3FC31A80C346C767045879 ] PskSvcRetail C:\Program Files\Panda Security\Panda Antivirus Pro 2011\PskSvc.exe
      18:53:36.0117 7608 PskSvcRetail - ok
      18:53:36.0361 7608 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
      18:53:37.0198 7608 ql2300 - ok
      18:53:37.0338 7608 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
      18:53:37.0811 7608 ql40xx - ok
      18:53:37.0975 7608 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
      18:53:38.0830 7608 QWAVE - ok
      18:53:38.0881 7608 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      18:53:39.0010 7608 QWAVEdrv - ok
      18:53:39.0092 7608 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      18:53:39.0156 7608 RasAcd - ok
      18:53:39.0238 7608 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
      18:53:39.0327 7608 RasAgileVpn - ok
      18:53:39.0413 7608 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
      18:53:39.0765 7608 RasAuto - ok
      18:53:39.0826 7608 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      18:53:39.0872 7608 Rasl2tp - ok
      18:53:39.0980 7608 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
      18:53:39.0994 7608 RasMan - ok
      18:53:40.0075 7608 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      18:53:40.0131 7608 RasPppoe - ok
      18:53:40.0195 7608 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      18:53:40.0410 7608 RasSstp - ok
      18:53:40.0510 7608 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      18:53:40.0545 7608 rdbss - ok
      18:53:40.0662 7608 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
      18:53:40.0737 7608 rdpbus - ok
      18:53:40.0833 7608 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      18:53:40.0907 7608 RDPCDD - ok
      18:53:40.0991 7608 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
      18:53:41.0408 7608 RDPDR - ok
      18:53:41.0517 7608 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      18:53:41.0521 7608 RDPENCDD - ok
      18:53:41.0624 7608 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
      18:53:41.0626 7608 RDPREFMP - ok
      18:53:41.0704 7608 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      18:53:41.0875 7608 RDPWD - ok
      18:53:42.0081 7608 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
      18:53:42.0132 7608 rdyboost - ok
      18:53:42.0216 7608 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
      18:53:42.0418 7608 RemoteAccess - ok
      18:53:42.0505 7608 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
      18:53:42.0583 7608 RemoteRegistry - ok
      18:53:42.0677 7608 [ 92D33F76769A028DDC54A863EB7DE4A2 ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys
      18:53:42.0839 7608 RimUsb - ok
      18:53:42.0951 7608 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
      18:53:43.0100 7608 RimVSerPort - ok
      18:53:43.0178 7608 [ 564297827D213F52C7A3A2FF749568CA ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
      18:53:43.0195 7608 ROOTMODEM - ok
      18:53:43.0310 7608 RoxLiveShare9 - ok
      18:53:43.0406 7608 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
      18:53:43.0415 7608 RpcEptMapper - ok
      18:53:43.0473 7608 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
      18:53:43.0636 7608 RpcLocator - ok
      18:53:43.0713 7608 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
      18:53:43.0725 7608 RpcSs - ok
      18:53:43.0784 7608 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      18:53:43.0996 7608 rspndr - ok
      18:53:44.0076 7608 [ 4E20765744BFBC16F6D6E5BD5598786B ] RTL8023xp C:\Windows\system32\DRIVERS\Rtnicxp.sys
      18:53:44.0141 7608 RTL8023xp - ok
      18:53:44.0235 7608 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
      18:53:44.0309 7608 s3cap - ok
      18:53:44.0402 7608 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
      18:53:44.0406 7608 SamSs - ok
      18:53:44.0496 7608 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      18:53:44.0652 7608 sbp2port - ok
      18:53:44.0746 7608 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
      18:53:44.0841 7608 SCardSvr - ok
      18:53:44.0913 7608 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
      18:53:44.0964 7608 scfilter - ok
      18:53:45.0085 7608 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
      18:53:45.0112 7608 Schedule - ok
      18:53:45.0198 7608 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
      18:53:45.0202 7608 SCPolicySvc - ok
      18:53:45.0291 7608 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      18:53:45.0460 7608 SDRSVC - ok
      18:53:45.0542 7608 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      18:53:45.0591 7608 secdrv - ok
      18:53:45.0657 7608 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
      18:53:45.0733 7608 seclogon - ok
      18:53:45.0815 7608 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
      18:53:45.0862 7608 SENS - ok
      18:53:45.0932 7608 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
      18:53:46.0180 7608 SensrSvc - ok
      18:53:46.0232 7608 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
      18:53:46.0304 7608 Serenum - ok
      18:53:46.0349 7608 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
      18:53:46.0576 7608 Serial - ok
      18:53:46.0652 7608 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
      18:53:46.0676 7608 sermouse - ok
      18:53:46.0831 7608 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
      18:53:46.0841 7608 SessionEnv - ok
      18:53:46.0916 7608 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
      18:53:47.0024 7608 sffdisk - ok
      18:53:47.0174 7608 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      18:53:47.0303 7608 sffp_mmc - ok
      18:53:47.0377 7608 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
      18:53:47.0398 7608 sffp_sd - ok
      18:53:47.0470 7608 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
      18:53:47.0617 7608 sfloppy - ok
      18:53:47.0723 7608 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
      18:53:47.0844 7608 SharedAccess - ok
      18:53:47.0946 7608 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      18:53:47.0967 7608 ShellHWDetection - ok
      18:53:48.0192 7608 [ A2F0BF07CAC43A11555C173F7B1AD28A ] ShldDrv C:\Windows\system32\DRIVERS\ShlDrv51.sys
      18:53:48.0333 7608 ShldDrv - ok
      18:53:48.0456 7608 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
      18:53:48.0603 7608 sisagp - ok
      18:53:48.0693 7608 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
      18:53:48.0718 7608 SiSRaid2 - ok
      18:53:48.0794 7608 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
      18:53:48.0853 7608 SiSRaid4 - ok
      18:53:48.0929 7608 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
      18:53:49.0006 7608 Smb - ok
      18:53:49.0121 7608 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      18:53:49.0324 7608 SNMPTRAP - ok
      18:53:49.0391 7608 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
      18:53:49.0509 7608 spldr - ok
      18:53:49.0593 7608 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
      18:53:49.0608 7608 Spooler - ok
      18:53:49.0974 7608 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
      18:53:50.0068 7608 sppsvc - ok
      18:53:50.0177 7608 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
      18:53:50.0488 7608 sppuinotify - ok
      18:53:50.0593 7608 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
      18:53:50.0674 7608 srv - ok
      18:53:50.0752 7608 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      18:53:50.0996 7608 srv2 - ok
      18:53:51.0067 7608 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      18:53:51.0315 7608 srvnet - ok
      18:53:51.0389 7608 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      18:53:51.0495 7608 SSDPSRV - ok
      18:53:51.0574 7608 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
      18:53:51.0583 7608 SstpSvc - ok
      18:53:51.0655 7608 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
      18:53:51.0773 7608 stexstor - ok
      18:53:51.0876 7608 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
      18:53:51.0909 7608 StiSvc - ok
      18:53:51.0998 7608 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
      18:53:52.0047 7608 storflt - ok
      18:53:52.0125 7608 [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc C:\Windows\system32\storsvc.dll
      18:53:52.0283 7608 StorSvc - ok
      18:53:52.0350 7608 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
      18:53:52.0446 7608 storvsc - ok
      18:53:52.0595 7608 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
      18:53:52.0695 7608 swenum - ok
      18:53:52.0772 7608 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
      18:53:53.0060 7608 swprv - ok
      18:53:53.0242 7608 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
      18:53:53.0280 7608 SysMain - ok
      18:53:53.0338 7608 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
      18:53:53.0544 7608 TabletInputService - ok
      18:53:53.0687 7608 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
      18:53:53.0707 7608 TapiSrv - ok
      18:53:53.0799 7608 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
      18:53:54.0012 7608 TBS - ok
      18:53:54.0186 7608 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      18:53:56.0317 7608 Tcpip - ok
      18:53:56.0533 7608 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
      18:53:56.0553 7608 TCPIP6 - ok
      18:53:56.0652 7608 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      18:53:56.0780 7608 tcpipreg - ok
      18:53:56.0879 7608 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      18:53:56.0925 7608 TDPIPE - ok
      18:53:57.0080 7608 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      18:53:57.0096 7608 TDTCP - ok
      18:53:57.0181 7608 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      18:53:57.0253 7608 tdx - ok
      18:53:57.0325 7608 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
      18:53:57.0401 7608 TermDD - ok
      18:53:57.0525 7608 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
      18:53:57.0546 7608 TermService - ok
      18:53:57.0622 7608 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
      18:53:57.0634 7608 Themes - ok
      18:53:57.0719 7608 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
      18:53:57.0724 7608 THREADORDER - ok
      18:53:57.0884 7608 [ 4EE706DCA2B03F3AB06442DDFC075EBC ] TPSrv C:\Program Files\Panda Security\Panda Antivirus Pro 2011\TPSrv.exe
      18:53:57.0891 7608 TPSrv - ok
      18:53:57.0978 7608 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
      18:53:58.0002 7608 TrkWks - ok
      18:53:58.0130 7608 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      18:53:58.0139 7608 TrustedInstaller - ok
      18:53:58.0215 7608 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      18:53:58.0288 7608 tssecsrv - ok
      18:53:58.0480 7608 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
      18:53:58.0507 7608 TsUsbFlt - ok
      18:53:58.0612 7608 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      18:53:58.0647 7608 tunnel - ok
      18:53:58.0745 7608 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
      18:53:58.0843 7608 uagp35 - ok
      18:53:58.0993 7608 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      18:53:59.0071 7608 udfs - ok
      18:53:59.0178 7608 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      18:53:59.0372 7608 UI0Detect - ok
      18:53:59.0441 7608 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      18:53:59.0502 7608 uliagpkx - ok
      18:53:59.0579 7608 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
      18:53:59.0652 7608 umbus - ok
      18:53:59.0705 7608 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
      18:53:59.0801 7608 UmPass - ok
      18:53:59.0903 7608 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
      18:53:59.0922 7608 UmRdpService - ok
      18:54:00.0011 7608 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
      18:54:00.0026 7608 upnphost - ok
      18:54:00.0169 7608 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      18:54:00.0226 7608 usbccgp - ok
      18:54:00.0303 7608 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      18:54:00.0323 7608 usbcir - ok
      18:54:00.0417 7608 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      18:54:00.0500 7608 usbehci - ok
      18:54:00.0582 7608 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      18:54:00.0660 7608 usbhub - ok
      18:54:00.0779 7608 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
      18:54:00.0991 7608 usbohci - ok
      18:54:01.0053 7608 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      18:54:01.0058 7608 usbprint - ok
      18:54:01.0194 7608 [ 31181DE6190B39FC8007DFFD1A48FFD6 ] usbser C:\Windows\system32\DRIVERS\usbser.sys
      18:54:01.0304 7608 usbser - ok
      18:54:01.0387 7608 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      18:54:01.0607 7608 USBSTOR - ok
      18:54:01.0670 7608 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      18:54:01.0706 7608 usbuhci - ok
      18:54:01.0799 7608 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
      18:54:01.0807 7608 UxSms - ok
      18:54:01.0863 7608 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
      18:54:01.0867 7608 VaultSvc - ok
      18:54:01.0917 7608 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
      18:54:02.0111 7608 vdrvroot - ok
      18:54:02.0252 7608 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
      18:54:03.0234 7608 vds - ok
      18:54:03.0383 7608 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      18:54:03.0469 7608 vga - ok
      18:54:03.0534 7608 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
      18:54:03.0663 7608 VgaSave - ok
      18:54:03.0729 7608 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
      18:54:03.0943 7608 vhdmp - ok
      18:54:04.0014 7608 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
      18:54:04.0104 7608 viaagp - ok
      18:54:04.0245 7608 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
      18:54:04.0341 7608 ViaC7 - ok
      18:54:04.0416 7608 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
      18:54:04.0533 7608 viaide - ok
      18:54:04.0613 7608 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
      18:54:04.0645 7608 vmbus - ok
      18:54:04.0769 7608 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
      18:54:04.0851 7608 VMBusHID - ok
      18:54:04.0987 7608 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      18:54:05.0043 7608 volmgr - ok
      18:54:05.0182 7608 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      18:54:05.0318 7608 volmgrx - ok
      18:54:05.0412 7608 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      18:54:05.0653 7608 volsnap - ok
      18:54:05.0727 7608 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
      18:54:05.0933 7608 vsmraid - ok
      18:54:06.0113 7608 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
      18:54:06.0503 7608 VSS - ok
      18:54:06.0622 7608 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
      18:54:06.0670 7608 vwifibus - ok
      18:54:06.0776 7608 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
      18:54:06.0908 7608 vwififlt - ok
      18:54:06.0995 7608 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
      18:54:07.0046 7608 vwifimp - ok
      18:54:07.0156 7608 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
      18:54:07.0171 7608 W32Time - ok
      18:54:07.0251 7608 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
      18:54:07.0344 7608 WacomPen - ok
      18:54:07.0500 7608 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
      18:54:07.0614 7608 WANARP - ok
      18:54:07.0650 7608 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      18:54:07.0653 7608 Wanarpv6 - ok
      18:54:07.0831 7608 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
      18:54:08.0528 7608 WatAdminSvc - ok
      18:54:08.0689 7608 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
      18:54:09.0126 7608 wbengine - ok
      18:54:09.0195 7608 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
      18:54:09.0498 7608 WbioSrvc - ok
      18:54:09.0608 7608 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
      18:54:10.0094 7608 wcncsvc - ok
      18:54:10.0274 7608 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      18:54:10.0402 7608 WcsPlugInService - ok
      18:54:10.0471 7608 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
      18:54:10.0533 7608 Wd - ok
      18:54:10.0638 7608 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      18:54:10.0724 7608 Wdf01000 - ok
      18:54:10.0786 7608 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
      18:54:10.0795 7608 WdiServiceHost - ok
      18:54:10.0838 7608 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
      18:54:10.0850 7608 WdiSystemHost - ok
      18:54:11.0116 7608 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
      18:54:11.0482 7608 WebClient - ok
      18:54:11.0576 7608 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
      18:54:11.0750 7608 Wecsvc - ok
      18:54:11.0835 7608 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
      18:54:11.0844 7608 wercplsupport - ok
      18:54:11.0898 7608 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
      18:54:11.0907 7608 WerSvc - ok
      18:54:12.0032 7608 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
      18:54:12.0166 7608 WfpLwf - ok
      18:54:12.0228 7608 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
      18:54:12.0295 7608 WIMMount - ok
      18:54:12.0412 7608 [ EB5D5DD39DA6B25FFD4206892365F67C ] winachsf C:\Windows\system32\DRIVERS\HSF_CNXT.sys
      18:54:12.0737 7608 winachsf - ok
      18:54:12.0883 7608 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
      18:54:12.0945 7608 WinDefend - ok
      18:54:13.0003 7608 WinHttpAutoProxySvc - ok
      18:54:13.0122 7608 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      18:54:13.0130 7608 Winmgmt - ok
      18:54:13.0291 7608 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
      18:54:13.0345 7608 WinRM - ok
      18:54:13.0613 7608 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
      18:54:13.0893 7608 WinUsb - ok
      18:54:13.0965 7608 [ CCAEC5175F1EBC6EB0DBD607EEA791C1 ] wirelessusbser C:\Windows\system32\DRIVERS\3GDatausbser.sys
      18:54:14.0493 7608 wirelessusbser - ok
      18:54:14.0584 7608 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
      18:54:14.0614 7608 Wlansvc - ok
      18:54:14.0792 7608 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
      18:54:15.0000 7608 wlcrasvc - ok
      18:54:15.0261 7608 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      18:54:15.0308 7608 wlidsvc - ok
      18:54:15.0384 7608 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
      18:54:15.0523 7608 WmiAcpi - ok
      18:54:15.0611 7608 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      18:54:16.0094 7608 wmiApSrv - ok
      18:54:16.0330 7608 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
      18:54:16.0362 7608 WMPNetworkSvc - ok
      18:54:16.0450 7608 [ 0411D0433E8C48AD24B2EF32D7C97AE0 ] WNMFLT C:\Windows\system32\Drivers\WNMFLT.SYS
      18:54:16.0568 7608 WNMFLT - ok
      18:54:16.0638 7608 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
      18:54:16.0726 7608 WPCSvc - ok
      18:54:16.0852 7608 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      18:54:17.0257 7608 WPDBusEnum - ok
      18:54:17.0416 7608 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      18:54:17.0419 7608 ws2ifsl - ok
      18:54:17.0482 7608 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
      18:54:17.0492 7608 wscsvc - ok
      18:54:17.0532 7608 WSearch - ok
      18:54:17.0739 7608 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
      18:54:17.0858 7608 wuauserv - ok
      18:54:17.0946 7608 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
      18:54:18.0126 7608 WudfPf - ok
      18:54:18.0227 7608 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      18:54:18.0516 7608 WUDFRd - ok
      18:54:18.0600 7608 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      18:54:18.0611 7608 wudfsvc - ok
      18:54:18.0672 7608 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
      18:54:18.0685 7608 WwanSvc - ok
      18:54:18.0888 7608 [ 3862318F85BE7A91957ADA5E814ED58C ] ZTEusbmdm6k C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
      18:54:19.0279 7608 ZTEusbmdm6k - ok
      18:54:19.0346 7608 [ 3862318F85BE7A91957ADA5E814ED58C ] ZTEusbnmea C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
      18:54:19.0534 7608 ZTEusbnmea - ok
      18:54:19.0597 7608 [ 3862318F85BE7A91957ADA5E814ED58C ] ZTEusbser6k C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
      18:54:19.0693 7608 ZTEusbser6k - ok
      18:54:19.0790 7608 ================ Scan global ===============================
      18:54:19.0866 7608 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
      18:54:19.0981 7608 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
      18:54:20.0015 7608 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
      18:54:20.0081 7608 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
      18:54:20.0155 7608 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
      18:54:20.0167 7608 [Global] - ok
      18:54:20.0178 7608 ================ Scan MBR ==================================
      18:54:20.0206 7608 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      18:54:21.0051 7608 \Device\Harddisk0\DR0 - ok
      18:54:21.0061 7608 ================ Scan VBR ==================================
      18:54:21.0077 7608 [ 70A823FAD7EDD008CDA6CF60C0AACECD ] \Device\Harddisk0\DR0\Partition1
      18:54:21.0082 7608 \Device\Harddisk0\DR0\Partition1 - ok
      18:54:21.0136 7608 [ 55FBEF849E4A2EEAA27EF864F56B4663 ] \Device\Harddisk0\DR0\Partition2
      18:54:21.0139 7608 \Device\Harddisk0\DR0\Partition2 - ok
      18:54:21.0151 7608 ============================================================
      18:54:21.0151 7608 Scan finished
      18:54:21.0151 7608 ============================================================
      18:54:21.0212 6152 Detected object count: 0
      18:54:21.0212 6152 Actual detected object count: 0
      18:55:28.0296 5140 Deinitialize success

    4. #4
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: internet explorer me redirecciona aotra paginas

      Buenas.


      Buenas


      Descarga la herramienta ComboFix.exe y guárdala en el escritorio.

      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Cierra todas las ventanas abiertas.
      • Hacele doble clic al archivo ComboFix.exe y seguí las instrucciones.
      • Cuando termine, generara un registro en C:\ComboFix.txt.
        • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
        • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.



      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
      • Reinicia y pega el reporte de C:\ComboFix.txt en este mismo mensaje.Comentando como esta funcionado tu sistema.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona aotra paginas

      buenas
      me sigue redireccionando las paginas y no me deja ver la pagina que quiero, aunque debo señalar que mi lap trabaja mas rapido al igual que el internet .
      el reporte de combofix es el sig.
      ComboFix 12-10-10.02 - Admin 12/10/2012 22:32:09.3.1 - x86 MINIMAL
      Microsoft Windows 7 Professional 6.1.7601.1.1252.52.3082.18.1406.1084 [GMT -5:00]
      Running from: c:\users\Admin\Pictures\ComboFix.exe
      AV: Panda Antivirus Pro 2011 *Enabled/Updated* {86971480-9989-6750-B122-681A86518D59}
      FW: Panda Personal Firewall 2011 *Enabled* {BEAC95A5-D3E6-6608-9A7D-C12F7882CA22}
      SP: Panda Antivirus Pro 2011 *Enabled/Updated* {3DF6F564-BFB3-68DE-8B92-5368FDD6C7E4}
      SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-09-13 to 2012-10-13 )))))))))))))))))))))))))))))))
      .
      .
      2012-10-13 03:42 . 2012-10-13 03:42 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-10-13 02:28 . 2012-10-13 03:42 -------- d-----w- c:\users\Admin\AppData\Local\temp
      2012-10-11 01:25 . 2012-10-11 01:25 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
      2012-10-10 17:38 . 2012-10-10 17:38 -------- d-----w- c:\users\Admin\AppData\Roaming\Malwarebytes
      2012-10-10 17:37 . 2012-10-10 17:37 -------- d-----w- c:\programdata\Malwarebytes
      2012-10-10 17:37 . 2012-10-10 17:37 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
      2012-10-10 17:37 . 2012-09-07 22:04 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-10-10 17:28 . 2012-10-10 17:28 -------- d-----w- c:\program files\CCleaner
      2012-10-10 13:31 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\system32\crypt32.dll
      2012-10-10 13:31 . 2012-06-02 04:36 140288 ----a-w- c:\windows\system32\cryptsvc.dll
      2012-10-10 13:31 . 2012-06-02 04:36 103936 ----a-w- c:\windows\system32\cryptnet.dll
      2012-10-10 13:31 . 2012-08-31 17:18 1211760 ----a-w- c:\windows\system32\drivers\ntfs.sys
      2012-10-10 13:31 . 2012-08-10 23:56 542208 ----a-w- c:\windows\system32\kerberos.dll
      2012-10-10 13:31 . 2012-08-30 17:12 3968880 ----a-w- c:\windows\system32\ntkrnlpa.exe
      2012-10-10 13:31 . 2012-08-30 17:12 3914096 ----a-w- c:\windows\system32\ntoskrnl.exe
      2012-10-10 02:40 . 2012-10-10 02:40 94208 --sha-r- c:\windows\system32\da-DK7.dll
      2012-10-10 00:04 . 2012-08-30 08:17 6980552 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9270B763-D9A1-404F-A41D-0AAA8077A0D1}\mpengine.dll
      2012-10-09 04:57 . 2012-10-09 04:57 -------- d-----w- c:\windows\system32\searchplugins
      2012-10-04 15:13 . 2012-10-04 15:13 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
      2012-10-04 15:13 . 2012-10-04 15:13 504656 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
      2012-09-25 21:06 . 2012-08-21 20:12 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
      2012-09-22 03:04 . 2012-09-22 03:04 73696 ----a-w- c:\program files\Mozilla Firefox\breakpadinjector.dll
      2012-09-17 01:15 . 2012-09-17 02:00 -------- d-----w- c:\program files\Kroll Ontrack
      2012-09-17 01:12 . 2012-10-11 00:37 -------- d-----w- c:\program files\v9Soft
      2012-09-14 14:49 . 2012-09-14 14:49 -------- d-----w- c:\program files\vanBasco's Karaoke Player
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-10-10 19:18 . 2012-06-24 19:23 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
      2012-10-10 19:18 . 2011-06-29 14:21 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
      2012-08-22 17:16 . 2012-09-11 19:30 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2012-08-22 17:16 . 2012-09-11 19:30 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
      2012-08-22 17:16 . 2012-09-11 19:30 240496 ----a-w- c:\windows\system32\drivers\netio.sys
      2012-08-22 17:16 . 2012-09-11 19:30 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
      2012-08-02 16:57 . 2012-09-11 19:30 490496 ----a-w- c:\windows\system32\d3d10level9.dll
      2012-07-18 17:47 . 2012-08-14 17:15 2345984 ----a-w- c:\windows\system32\win32k.sys
      2012-09-22 03:04 . 2012-06-24 19:03 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 147456]
      "ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2007-08-30 205480]
      "ares"="c:\program files\Ares\Ares.exe" [2012-02-02 3209216]
      "Facebook Update"="c:\users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-07-11 138096]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
      "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
      "TkBellExe"="c:\program files\real\realplayer\Update\realsched.exe" [2011-04-05 273544]
      "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
      "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]
      "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
      "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
      "hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
      .
      c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
      HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
      "AppInit_DLLs"=c:\progra~2\BROWSE~1\23787~1.43\{16CDF~1\browsemngr.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
      "mixer"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
      Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
      .
      R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
      R2 BBSvc;BingBar Service;c:\program files\Microsoft\BingBar\7.1.391.0\BBSvc.exe [x]
      R2 Browser Manager;Browser Manager;c:\programdata\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [x]
      R2 gupdate;Servicio de actualización de Google (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
      R2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
      R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
      R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
      R3 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\7.1.391.0\SeaPort.exe [x]
      R3 cmusbser;Cmotech USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\cmusbser.sys [x]
      R3 gupdatem;Google Update Servicio (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
      R3 HSFHWATI;HSFHWATI;c:\windows\system32\DRIVERS\HSFHWATI.sys [x]
      R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
      R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [x]
      R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [x]
      R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
      R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
      R3 P0630VID;Creative WebCam Live!;c:\windows\system32\DRIVERS\P0630Vid.sys [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
      R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
      R3 wirelessusbser;Wireless USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\3GDatausbser.sys [x]
      R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
      hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-10-13 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-24 19:18]
      .
      2012-10-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003Core.job
      - c:\users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-06-25 22:13]
      .
      2012-10-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003UA.job
      - c:\users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-06-25 22:13]
      .
      2012-10-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2010-08-12 21:26]
      .
      2012-10-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files\Google\Update\GoogleUpdate.exe [2010-08-12 21:26]
      .
      2012-10-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003Core.job
      - c:\users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-24 01:40]
      .
      2012-10-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003UA.job
      - c:\users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-24 01:40]
      .
      2012-10-12 c:\windows\Tasks\ReclaimerUpdateFiles_Admin.job
      - c:\users\Admin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-27 01:10]
      .
      2012-10-12 c:\windows\Tasks\ReclaimerUpdateXML_Admin.job
      - c:\users\Admin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-27 01:10]
      .
      2012-10-13 c:\windows\Tasks\rjrkpc.job
      - c:\windows\system32\da-DK7.dll [2012-10-10 02:40]
      .
      2012-10-13 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Admin.job
      - c:\users\Admin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-27 01:10]
      .
      .
      ------- Supplementary Scan -------
      .
      uStart Page = hxxp://www.google.com.mx/
      IE: &Enviar a OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
      IE: Download with &Media Finder - c:\program files\Media Finder\hook.html
      IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
      FF - ProfilePath - c:\users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\au3nj5cw.default\
      FF - prefs.js: browser.search.selectedEngine - v9
      FF - prefs.js: browser.startup.homepage - hxxp://search.babylon.com/?affID=110823&tt=3712_6&babsrc=HP_ss&mntrId=f0b5d0d50000000000000611f5aeff88
      FF - prefs.js: network.proxy.type - 0
      FF - user.js: extensions.BabylonToolbar.autoRvrt - false
      FF - user.js: extensions.BabylonToolbar_i.newTab - false
      FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=f0b5d0d50000000000000611f5aeff88&q=
      FF - user.js: extensions.BabylonToolbar.id - f0b5d0d50000000000000611f5aeff88
      FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB}
      FF - user.js: extensions.BabylonToolbar.instlDay - 15593
      FF - user.js: extensions.BabylonToolbar.vrsn - 1.6.9.12
      FF - user.js: extensions.BabylonToolbar.vrsni - 1.6.9.12
      FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.6.9.1223:31
      FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
      FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
      FF - user.js: extensions.BabylonToolbar.aflt - babsst
      FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
      FF - user.js: extensions.BabylonToolbar.tlbrId - tb9
      FF - user.js: extensions.BabylonToolbar.instlRef - sst
      FF - user.js: extensions.BabylonToolbar.dfltLng - en
      FF - user.js: extensions.BabylonToolbar.excTlbr - false
      FF - user.js: extensions.BabylonToolbar.admin - false
      FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=110823&tt=3712_6
      FF - user.js: extensions.BabylonToolbar_i.babExt -
      FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
      user_pref('extensions.dealply.partner', 'vita');
      user_pref('extensions.dealply.channel', 'vitasolodrivers');
      user_pref('extensions.dealply.installId', 'v23500241227416535753212012032122545517');
      user_pref('extensions.dealply.installIdSource', 'inst');
      user_pref('extensions.dealply.sampleGroup', '7');
      .
      .
      ------- File Associations -------
      .
      .scr=AutoCADScriptFile
      .
      - - - - ORPHANS REMOVED - - - -
      .
      WebBrowser-{977AE9CC-AF83-45E8-9E03-E2798216E2D5} - (no file)
      HKCU-Run-Media Finder - c:\program files\Media Finder\MF.exe
      AddRemove-DealPly - c:\program files\DealPly\uninst.exe
      AddRemove-eBay Icon - c:\users\Carlitos\AppData\Roaming\Desktopicon\uninst.exe
      AddRemove-RealPlayer 12.0 - c:\program files\real\realplayer\Update\r1puninst.exe
      AddRemove-V9Software - c:\program files\v9Soft\v9sof.exe
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      @SACL=
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      Completion time: 2012-10-12 22:45:32
      ComboFix-quarantined-files.txt 2012-10-13 03:45
      .
      Pre-Run: 13,049,524,224 bytes libres
      Post-Run: 12,912,132,096 bytes libres
      .
      - - End Of File - - 6EBDFE5651EB9F7822BB299A42FFB3BD

    6. #6
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: internet explorer me redirecciona a otras paginas

      Buenas.




      Realiza lo siguiente:


      1.-





      Se abrirá un bloc de notas con el reporte, copia y pega todo su contenido en la siguiente respuesta para revisarlo.


      2.-





      • Cerrá todos programas que tengas abiertos y Hacé doble click en el ícono de OTL para ejecutarlo.
      • Dejalo correr sin interrumpirlo hasta que termine el Análisis.
      • Cuando la interfaz aparesca, solo debes cambiar Abajo de: "Tipo de Análisis" poniendo Resultado Minimo.
      • Marcá las opciones: Buscar LOP y Buscar Purity.
      • Marcá las Opciones Omitir Archivos De Microsoft y Usar Listado de Compañias Reconocidas.
      • Por favor No cambies el resto de la configuración a menos que te lo solicitemos.


      • Presioná el boton .
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos aparecerán grabados en el mismo lugar OTL.exe fue descargado.
      • Copiá y pegá el contenido del archivo OTL.txt en tu próxima respuesta.




      Nos traes el reporte de OTL y AT-Destroyer-


      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona a otras paginas

      este es el contenido de at- destroyer

      #################################################### A/T-Destroyer by InfoSpyware ############

      A/T-Destroyer 1.0.7 By Infospyware
      InfoSpyware
      Fecha iniciada en el analisis 13/10/2012
      Hora iniciada en el analisis 12:14:14.82
      Usuario Actual : [C:\Users\Admin]
      Sistema Operativo: Windows 7 Professional
      Service pack: Service Pack 1
      Arquitectura: Sistema operativo de 32 bits
      Versión Internet Explorer: 9.0.8112.16421
      Modo Actual: Modo Normal.
      Privilegios: [Admin-Administrador]
      Versión Google Chrome: 22.0.1229.94
      Versión Mozilla Firefox: 15.0

      ====== Servicios Eliminados By A/T-Destroyer ======




      ====== Claves Eliminadas By A/T-Destroyer ======


      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | ( {98889811-442D-49dd-99D7-DC866BE87DBC} )
      HKEY_CURRENT_USER\Software\DataMngr_Toolbar
      HKEY_CLASSES_ROOT\AppID\escort.DLL
      HKEY_CLASSES_ROOT\AppID\escort.DLL
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}
      HKEY_LOCAL_MACHINE\SOFTWARE\Iminent
      HKEY_LOCAL_MACHINE\SOFTWARE\Iminent
      HKEY_CURRENT_USER\SOFTWARE\Iminent
      HKEY_CURRENT_USER\SOFTWARE\Iminent


      ====== Archivos/Carpetas Eliminados By A/T-Destroyer ======


      C:\Program Files\babylontoolbar\BabylonToolbar
      C:\Program Files\babylontoolbar\BabylonToolbar\1.6.9.12
      C:\Program Files\babylontoolbar\BabylonToolbar\1.6.9.12\BabylonToolbarApp.dll
      C:\Program Files\babylontoolbar\BabylonToolbar\1.6.9.12\BabylonToolbarEng.dll
      C:\Program Files\babylontoolbar\BabylonToolbar\1.6.9.12\BabylonToolbarsrv.exe
      C:\Program Files\babylontoolbar\BabylonToolbar\1.6.9.12\BabylonToolbarTlbr.dll
      C:\Program Files\babylontoolbar\BabylonToolbar\1.6.9.12\bh
      C:\Program Files\babylontoolbar\BabylonToolbar\1.6.9.12\escortShld.dll
      C:\Program Files\babylontoolbar\BabylonToolbar\1.6.9.12\uninstall.exe
      C:\Program Files\babylontoolbar\BabylonToolbar\1.6.9.12\bh\BabylonToolbar.dll
      "C:\Program Files\babylontoolbar"
      C:\Users\Admin\AppData\Roaming\Babylon\log_file.txt
      "C:\Users\Admin\AppData\Roaming\Babylon"
      "C:\ProgramData\Babylon"
      C:\Program Files\mozilla firefox\searchplugins\babylon.xml
      C:\Users\Admin\Appdata\Local\GDIPFONTCACHEV1.DAT
      C:\user.js


      ====== Información Extra ======


      -_-_-_-_-_-_-_-_ Configuraciones de internet Explorer -_-_-_-_-_-_-_-_
      "HKCU\Software\Microsoft\Internet Explorer\Main"
      Start Page == Google
      Search Page == Sign In
      Local Page == C:\Windows\system32\blank.htm

      "HKLM\Software\Microsoft\Internet Explorer\Main"
      Start Page == Google
      Search Page == Bing
      Local Page == C:\Windows\System32\blank.htm
      Default_Search_URL == Bing
      Default_Page_URL == MSN.com


      "HKEY_USERS\S-1-5-21-3180311463-1768964898-3199594699-1003\Software\Microsoft\Internet Explorer\Main"
      Start Page == Google
      Search Page == Sign In
      Local Page == C:\Windows\system32\blank.htm


      -_-_-_-_-_-_-_-_ Configuraciones de Google Chrome-_-_-_-_-_-_-_-_
      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,
      -_-_-_-_-_-_-_-_ Configuraciones de Google Chrome-_-_-_-_-_-_-_-_
      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      -_-_-_-_-_-_-_-_ Configuraciones de mozilla Firefox -_-_-_-_-_-_-_-_
      user_pref("sweetim.toolbar.urls.homepage", "http://search.babylon.com/?affID=110823&tt=3712_6&babsrc=HP_ss&mntrId=f0b5d0d50000000000000611f5aeff88");
      user_pref("browser.startup.homepage", "http://google.com");




      ======= EOF =======

    8. #8
      Usuario Avatar de angeles94
      Registrado
      oct 2012
      Ubicación
      campeche,campeche
      Mensajes
      24

      Re: internet explorer me redirecciona a otras paginas

      este el contenido de otl by oldtimer

      OTL logfile created on: 13/10/2012 12:20:09 p.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Admin\Desktop
      Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 0000080a | Country: México | Language: ESM | Date Format: dd/MM/yyyy

      1.37 Gb Total Physical Memory | 0.72 Gb Available Physical Memory | 52.21% Memory free
      3.33 Gb Paging File | 2.44 Gb Available in Paging File | 73.46% Paging File free
      Paging file location(s): c:\pagefile.sys 2000 4000 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 55.79 Gb Total Space | 12.22 Gb Free Space | 21.90% Space Free | Partition Type: NTFS

      Computer Name: CARLITOS-PC | User Name: Admin | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Admin\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe ()
      PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
      PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Microsoft\BingBar\7.1.391.0\SeaPort.EXE (Microsoft Corporation.)
      PRC - C:\Archivos de programa\Ares\Ares.exe (Ares Development Group)
      PRC - C:\Archivos de programa\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corp.)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
      PRC - C:\Windows\System32\schtasks.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      PRC - C:\Archivos de programa\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
      PRC - C:\Archivos de programa\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG)


      ========== Modules (No Company Name) ==========

      MOD - C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe ()
      MOD - C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll ()
      MOD - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()


      ========== Services (SafeList) ==========

      SRV - (RoxLiveShare9) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe File not found
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (Browser Manager) -- C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe ()
      SRV - (MozillaMaintenance) -- C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (MBAMService) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (FLEXnet Licensing Service) -- C:\Archivos de programa\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
      SRV - (BBUpdate) -- C:\Archivos de programa\Microsoft\BingBar\7.1.391.0\SeaPort.EXE (Microsoft Corporation.)
      SRV - (BBSvc) -- C:\Archivos de programa\Microsoft\BingBar\7.1.391.0\BBSvc.EXE (Microsoft Corporation.)
      SRV - (fsssvc) -- C:\Archivos de programa\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
      SRV - (Microsoft SharePoint Workspace Audit Service) -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (WMPNetworkSvc) -- C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      SRV - (wlcrasvc) -- C:\Archivos de programa\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
      SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      SRV - (ose) -- C:\Archivos de programa\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
      SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
      SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
      SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
      SRV - (WinDefend) -- C:\Archivos de programa\Windows Defender\MpSvc.dll (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (catchme) -- C:\Users\Admin\AppData\Local\Temp\catchme.sys File not found
      DRV - (MBAMSwissArmy) -- C:\Windows\System32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
      DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
      DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
      DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
      DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
      DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
      DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
      DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
      DRV - (wirelessusbser) -- C:\Windows\System32\drivers\3GDatausbser.sys (QUALCOMM Incorporated)
      DRV - (ZTEusbnmea) -- C:\Windows\System32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
      DRV - (ZTEusbmdm6k) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
      DRV - (ZTEusbser6k) -- C:\Windows\System32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
      DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
      DRV - (vwifimp) -- C:\Windows\System32\drivers\vwifimp.sys (Microsoft Corporation)
      DRV - (RTL8023xp) -- C:\Windows\System32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
      DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
      DRV - (cmusbser) -- C:\Windows\System32\drivers\cmusbser.sys (Cmotech Co.,Ltd)
      DRV - (CAMCHALA) -- C:\Windows\System32\drivers\camc6hal.sys (Conexant Systems Inc.)
      DRV - (CAMCAUD) -- C:\Windows\System32\drivers\camc6aud.sys (Conexant Systems Inc.)
      DRV - (HSFHWATI) -- C:\Windows\System32\drivers\HSFHWATI.sys (Conexant Systems, Inc.)
      DRV - (HSF_DPV) -- C:\Windows\System32\drivers\HSF_DPV.sys (Conexant Systems, Inc.)
      DRV - (winachsf) -- C:\Windows\System32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.)
      DRV - (P0630VID) -- C:\Windows\System32\drivers\P0630Vid.sys (Creative Technology Ltd.)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKCU\..\SearchScopes,BrowserMngrDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      IE - HKCU\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110823&tt=3712_6&babsrc=SP_ss&mntrId=f0b5d0d50000000000000611f5aeff88
      IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.v9.com/web/?q={searchTerms}
      IE - HKCU\..\SearchScopes\{A6741140-E9BB-4ACF-BEFB-95856819BC86}: "URL" = http://www.ant.com/web/{searchTerms}/
      IE - HKCU\..\SearchScopes\{CA9998DA-3B8A-4FAC-90EA-5AB6D21AA5C0}: "URL" = http://www.bing.com/search?q={searchTerms}&amp;form=BIE9DF&amp;pc=BIE9&amp;src=IE-SearchBox
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultenginename: "v9"
      FF - prefs.js..browser.search.order.1: "v9"
      FF - prefs.js..browser.search.selectedEngine: "v9"
      FF - prefs.js..browser.search.useDBForOrder: true
      FF - prefs.js..extensions.enabledAddons: [email protected]:1.0.5
      FF - prefs.js..extensions.enabledAddons: [email protected]:1.5.0
      FF - prefs.js..extensions.enabledAddons: {EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}:2.0
      FF - prefs.js..extensions.enabledAddons: {b64982b1-d112-42b5-b1e4-d3867c4533f8}:2.2.630.40
      FF - prefs.js..network.proxy.type: 0
      FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "Google"
      FF - prefs.js..browser.startup.homepage: "http://google.com"
      FF - prefs.js..keyword.URL: "http://google.com"


      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_32: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
      FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.633: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.633: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.633: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.633: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
      FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
      FF - HKLM\Software\MozillaPlugins\@rim.com/npappworld: C:\Program Files\Research In Motion Limited\Complemento para explorador de BlackBerry App World\npappworld.dll ()
      FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Admin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Admin\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Admin\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/04/05 17:53:42 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/07/21 23:03:55 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/09/21 22:04:41 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/07/21 23:03:55 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension [2012/10/10 17:46:15 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/09/21 22:04:41 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

      [2012/04/17 01:38:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\Extensions
      [2012/09/18 13:12:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\au3nj5cw.default\extensions
      [2012/09/18 13:12:26 | 000,000,000 | ---D | M] (DealPly) -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\au3nj5cw.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
      [2012/06/25 15:27:17 | 000,000,000 | ---D | M] (Browser Companion Helper) -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\au3nj5cw.default\extensions\[email protected]
      [2012/09/12 00:02:14 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\au3nj5cw.default\extensions\[email protected]
      [2012/09/21 22:06:04 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\015395b786160a42dc3dc0d437fcbf8d_expire
      [2012/09/21 22:06:02 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\0324adea3b6ec02af09ea4ae9424591b_expire
      [2012/09/21 22:06:02 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\120fbab336e0a33af7fcfed508dd8790_expire
      [2012/09/21 22:06:04 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\2165584508d924143315ba0988be83f9_expire
      [2012/09/21 22:06:02 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\292124057d00cb0fa73db6b90d079658_expire
      [2012/08/08 14:54:13 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\2e74403c227112bec523796d5a77d77e_expire
      [2012/08/08 14:54:13 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\2fb3cba8ce73309de5ff633cf2c48495_expire
      [2012/08/15 20:49:10 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\486fd12eadead8c4d095c79113222686_expire
      [2012/08/28 18:55:31 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\4ad053d40dfa5cab7948e9251df6e3d9_expire
      [2012/09/19 23:44:46 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\4d3d10bd28ff623813254a49b26be41f_expire
      [2012/09/21 22:06:03 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\5ac6b9d0d44b79841d062d82d84c0dcd_expire
      [2012/09/19 23:45:13 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\5b4dff13570c198c99eefd5c11a5d7b8_expire
      [2012/09/04 16:09:14 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\61e2ae11ba3d1cbe8887ea80f192e299_expire
      [2012/09/21 22:06:03 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\6c753198956faf7dc86bb5424682d59f_expire
      [2012/09/04 16:09:15 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\6d6a9128adb14f88015a7b64a8ef2ee9_expire
      [2012/09/21 22:06:03 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\75eb2c43c71754ed90aee941c6b6d81a_expire
      [2012/09/04 16:09:15 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\871c849811fdfa9ecad484da5c5290ea_expire
      [2012/09/21 22:06:03 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\88be408e3fa84d6d783a6dc0bd9fbdeb_expire
      [2012/09/01 17:27:08 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\a146c9f8f49742bcc215dd181531424f_expire
      [2012/08/27 17:37:24 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\b5bc7084382de95cb69790e5d10db338_expire
      [2012/09/21 22:06:04 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\c51d3145932a710fc45579cacf5ac801_expire
      [2012/08/15 20:49:09 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\cbb69a449d3e39b3a3781ffb1d7fa52b_expire
      [2012/08/26 20:57:25 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\d83bb387de1d7c4401815e133de06c6b_expire
      [2012/08/15 20:49:00 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\dc6668d28979688b1e2066d1dcaef0f6_expire
      [2012/09/21 22:06:04 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\df8e6b8936bebbcbaa60ebe59835b90d_expire
      [2012/09/19 23:45:13 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\e02b35320e5111f1b626466c13c70a0a_expire
      [2012/09/21 22:06:04 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\e1c4af8015c8afefc377923cd560e682_expire
      [2012/08/25 18:08:40 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\e7215b147326809c45f6cf0952274624_expire
      [2012/09/21 22:06:03 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\e919434ec29526b28593c426e4264271_expire
      [2012/09/21 22:06:04 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\ece71b71690fad200cbed95871ef4bb2_expire
      [2012/09/21 22:06:03 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\f03527c67e08602d2e4c18ae7867300d_expire
      [2012/09/19 23:44:46 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\fa74672918974682c82b8d91dfbe0d6b_expire
      [2012/08/08 14:54:11 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\fabd3e2e56989fec25a02a10438b3819_expire
      [2012/09/19 23:44:46 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\Admin\AppData\Roaming\mozilla\firefox\profiles\au3nj5cw.default\extensions\[email protected]\chrome\content\cache\ff4d692d5e7cccbc4b3e9ef4062b1c6f_expire
      [2012/06/24 14:03:06 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
      File not found (No name found) -- C:\PROGRAMDATA\BROWSER MANAGER\2.2.630.40\{16CDFF19-861D-48E3-A751-D99A27784753}\FIREFOXEXTENSION
      [2012/09/21 22:04:41 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
      [2012/09/21 22:04:23 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
      [2012/06/14 18:48:45 | 000,002,456 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mercadolibre-mx.xml
      [2012/09/16 20:14:05 | 000,000,402 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\v9.xml
      [2012/06/14 18:48:45 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-es.xml
      [2012/06/14 18:48:45 | 000,001,102 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-mx.xml

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
      CHR - homepage: Google
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel\2.5_0\
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.0.7.2_0\
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibgfbdggapddbjjbopabhlhianklajie\1.0.5_0\
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.3_0\
      CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

      O1 HOSTS File: ([2010/02/19 15:43:12 | 000,001,465 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 localhost
      O1 - Hosts: 127.0.0.1 mpa.one.microsoft.com
      O1 - Hosts: 127.0.0.1 sls.microsoft.com
      O1 - Hosts: 127.0.0.1 genuine.microsoft.com
      O1 - Hosts: 127.0.0.1 wat.microsoft.com
      O1 - Hosts: 127.0.0.1 mpa.microsoft.com
      O1 - Hosts: 127.0.0.1 activate.adobe.com
      O1 - Hosts: 127.0.0.1 practivate.adobe.com
      O1 - Hosts: 127.0.0.1 ereg.adobe.com
      O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
      O1 - Hosts: 127.0.0.1 wip3.adobe.com
      O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
      O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
      O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
      O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
      O1 - Hosts: 127.0.0.1 adobeereg.com
      O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
      O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
      O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Archivos de programa\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Archivos de programa\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
      O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
      O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
      O4 - HKLM..\Run: [NeroFilterCheck] C:\Archivos de programa\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
      O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
      O4 - HKCU..\Run: [ares] C:\Program Files\Ares\Ares.exe (Ares Development Group)
      O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
      O4 - HKCU..\Run: [Facebook Update] C:\Users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O8 - Extra context menu item: &Enviar a OneNote - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O8 - Extra context menu item: Download with &Media Finder - C:\Program Files\Media Finder\hook.html File not found
      O8 - Extra context menu item: E&xportar a Microsoft Excel - C:\Archivos de programa\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
      O9 - Extra Button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Archivos de programa\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
      O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/_layouts.../ieawsdc32.cab (Microsoft Office Template and Media Control)
      O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/downlo...OGAControl.cab (Office Genuine Advantage Validation Tool)
      O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/s...irector/sw.cab (Shockwave ActiveX Control)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_32)
      O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_32)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_32)
      O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
      O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/...ampx_en_dl.cab (IWinAmpActiveX Class)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1FEE8884-0444-4B48-BBFF-79E1193A50F8}: DhcpNameServer = 192.168.1.1
      O18 - Protocol\Handler\base64 - No CLSID value found
      O18 - Protocol\Handler\chrome - No CLSID value found
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\prox - No CLSID value found
      O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Archivos de programa\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
      O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - AppInit_DLLs: (c:\windows\windowsmobile\wmdc.exe) - File not found
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2012/09/05 11:09:04 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
      O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = ComFile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/10/13 12:04:57 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
      [2012/10/12 22:45:34 | 000,000,000 | ---D | C] -- C:\Windows\temp
      [2012/10/12 22:43:55 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
      [2012/10/12 22:12:00 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{32581347-9BC6-4DC2-9EEF-AD369DA3AAD7}
      [2012/10/12 21:28:09 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\temp
      [2012/10/12 20:06:02 | 004,764,063 | R--- | C] (Swearware) -- C:\Users\Admin\Desktop\ComboFix.exe
      [2012/10/12 18:47:34 | 002,212,440 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Admin\Desktop\TDSSKiller.exe
      [2012/10/12 09:15:14 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{67F6909F-193B-4098-A70E-889ACC7A360D}
      [2012/10/11 19:05:51 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{1DA2DE60-D699-4224-A087-C87CC1DBAED5}
      [2012/10/10 20:25:01 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
      [2012/10/10 19:12:07 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
      [2012/10/10 19:12:07 | 000,036,864 | ---- | C] (NirSoft) -- C:\Windows\nircmd.exe
      [2012/10/10 19:12:06 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
      [2012/10/10 19:02:46 | 000,000,000 | ---D | C] -- C:\Qoobox
      [2012/10/10 19:01:36 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
      [2012/10/10 18:47:44 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{9EC013F2-34E6-4894-B167-C4A4EF10B6CA}
      [2012/10/10 17:59:39 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{CEECD2B0-1397-4F98-83D5-8D7D44DF4E27}
      [2012/10/10 12:38:10 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Malwarebytes
      [2012/10/10 12:37:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2012/10/10 12:37:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2012/10/10 12:37:37 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
      [2012/10/10 12:37:37 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
      [2012/10/10 12:28:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      [2012/10/10 12:28:26 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
      [2012/10/10 05:30:28 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{395DBECE-C6E9-48C9-8CFC-A974F38DD94C}
      [2012/10/09 17:29:47 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{9B98251F-C441-460D-AC41-4E8BBBB66803}
      [2012/10/09 11:40:47 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{A9662330-C613-4D18-ACBB-D00017530F0D}
      [2012/10/08 23:57:56 | 000,000,000 | ---D | C] -- C:\Windows\System32\searchplugins
      [2012/10/08 10:45:08 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{B2BD9253-1677-420C-9D41-4984130CAE63}
      [2012/10/08 10:06:02 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{2F25A97B-334B-4F90-8483-0DEB7D78EFA6}
      [2012/10/07 14:51:47 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{2638392C-1551-4FC0-9349-05BF617A6670}
      [2012/10/07 11:18:09 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{BBEAD515-0189-4E9D-AE96-3530691FA482}
      [2012/10/06 22:03:27 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{6B85340C-E2DE-44EA-ADA1-EC477533CADB}
      [2012/10/06 10:01:58 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{2BBEDCAD-9472-4562-8EE2-D6E1C6B4E849}
      [2012/10/05 14:20:55 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{397C404E-10DD-464E-949D-74A2E0CAD504}
      [2012/10/04 08:47:53 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{4A37E355-5F8C-488C-8443-C77E1644083B}
      [2012/10/03 19:35:54 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{A0DF219D-A3B1-4C8A-8794-E5D73094C097}
      [2012/10/03 13:06:24 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{E7F84976-4B83-4193-85C3-C74CB4465512}
      [2012/10/03 11:03:24 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{68ED988F-0DD1-471A-AF7E-3341F70EE772}
      [2012/10/02 11:34:54 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{3E64770C-B6ED-4E1B-9C8F-173204C7EEB9}
      [2012/10/02 08:51:01 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{0F0181E3-75C4-4741-AFDE-7CD0986378CB}
      [2012/10/01 19:08:07 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{B2950AA9-EA3B-46F5-9B91-FD0768FB789E}
      [2012/10/01 12:24:57 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{D9C6E55E-C8CD-46F2-956E-19D334EF8339}
      [2012/10/01 10:13:49 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{9CD2FE73-E710-4A38-8433-1EC60EC1BA59}
      [2012/09/30 08:25:07 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{E41406B8-8578-4EBA-950C-ECE7DE5C9F0E}
      [2012/09/29 18:22:28 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{80EA8F70-19EF-4E10-B6AD-B4399AD98CFA}
      [2012/09/28 14:33:07 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{9B3A69CC-3DE9-411D-B24B-0DA9DC0D12BB}
      [2012/09/28 01:43:11 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{F0BCC7F8-4358-42CF-8742-5D4C999A684F}
      [2012/09/28 01:26:42 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{79FEC141-603A-4843-B28D-C31C03374C8B}
      [2012/09/27 22:57:13 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\adobe_illustrator
      [2012/09/27 10:34:58 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{5456A428-C849-4028-8997-33FD79B5F3BC}
      [2012/09/27 10:04:14 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{0F0C29C8-2744-410B-B0EA-6DA0849BFED2}
      [2012/09/26 20:01:38 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{57F8EF7F-85BD-4777-A0F2-82A19F948528}
      [2012/09/26 12:09:58 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{70DCF689-2DA7-4251-825C-82CCB73F9F0C}
      [2012/09/25 23:37:41 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{CC520023-68F3-489B-8807-63D59E43A6B8}
      [2012/09/25 11:37:01 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{44C35B83-4B1E-451A-A7BD-FEA98CC1A40E}
      [2012/09/24 12:20:05 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{74DFCF56-53E5-4E9E-A9BA-59E6FCEF354B}
      [2012/09/24 10:05:52 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{FECD5CAA-35DA-4967-A0AD-D7EF1DB370F4}
      [2012/09/23 21:29:18 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{D55100C3-DEDB-4377-8908-4C8A6D8747E7}
      [2012/09/22 20:19:20 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{B9ACBE55-529C-45FB-B7C6-A604CEF6E2E8}
      [2012/09/22 08:18:03 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{2B4A646D-F805-40D8-B874-325563621379}
      [2012/09/21 12:13:01 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{51BEB8B2-E5B3-416A-B93F-4BEFCEDB0CE9}
      [2012/09/20 12:34:16 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{BD104DC3-9FB4-4F1B-8C2D-5D583234C0A5}
      [2012/09/19 14:21:39 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{16A73369-307E-4230-A0E3-719E01B06FDD}
      [2012/09/19 12:39:11 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{CA81DCD3-A05A-4399-B6D6-4A647E1B95B2}
      [2012/09/19 11:40:53 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{D6F98E91-2E94-43F6-AE3B-3676ACA0C82F}
      [2012/09/18 23:18:56 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{F3EB8BB8-9775-4C8C-8821-F9B100B03C7E}
      [2012/09/18 13:13:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
      [2012/09/18 1334 | 000,000,000 | ---D | C] -- C:\Webcam Live!
      [2012/09/18 06:58:51 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{D5EB9B6C-95EE-4BAC-B7FD-FF229D58BAB8}
      [2012/09/17 13:49:35 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{86C34551-FF07-4EDC-BF0C-F411CCD95C2A}
      [2012/09/16 22:39:41 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\recuperados
      [2012/09/16 22:26:25 | 003,207,520 | ---- | C] (Piriform Ltd) -- C:\Users\Admin\Desktop\recuva64.exe
      [2012/09/16 22:26:23 | 001,876,320 | ---- | C] (Piriform Ltd) -- C:\Users\Admin\Desktop\recuva.exe
      [2012/09/16 22:26:22 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\lang
      [2012/09/16 20:15:47 | 000,000,000 | ---D | C] -- C:\Program Files\Kroll Ontrack
      [2012/09/16 20:12:53 | 000,000,000 | ---D | C] -- C:\Program Files\v9Soft
      [2012/09/16 19:48:52 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{1E393D42-7B52-4A07-8953-309843CC0C63}
      [2012/09/16 18:30:02 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{0931ABA6-3F21-4325-93F1-55DBE5ABCB4E}
      [2012/09/15 20:52:33 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{A1BE8E02-801B-4C6F-8E05-D1F95CF9934E}
      [2012/09/15 14:35:32 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{74C24C06-EBB9-4878-991F-F01A022E9181}
      [2012/09/14 15:18:43 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{EC358176-1EAE-4888-A9AF-697B745A6265}
      [2012/09/14 12:19:14 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{B0ED32B9-C84C-4416-85EC-85D9DCB96B35}
      [2012/09/14 10:22:55 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{8D135B74-E4C9-4531-8C31-69E3B4481888}
      [2012/09/14 09:49:51 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\vanBasco's Karaoke Player
      [2012/09/14 09:49:44 | 000,000,000 | ---D | C] -- C:\Program Files\vanBasco's Karaoke Player
      [2012/09/14 08:49:25 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{126E403A-D77A-4F06-A4B1-37F4E27811B5}
      [2012/09/13 13:37:27 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{C2B863A4-3481-471E-B980-33F740E92ADD}
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2012/10/13 1203 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003UA.job
      [2012/10/13 12:04:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
      [2012/10/13 12:03:28 | 000,516,139 | ---- | M] () -- C:\Users\Admin\Desktop\AT-Destroyer.exe
      [2012/10/13 12:00:24 | 000,020,720 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2012/10/13 12:00:24 | 000,020,720 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2012/10/13 11:53:25 | 000,001,024 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2012/10/13 11:53:14 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Admin.job
      [2012/10/13 11:52:58 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
      [2012/10/13 11:52:58 | 000,000,312 | ---- | M] () -- C:\Windows\tasks\rjrkpc.job
      [2012/10/13 11:52:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2012/10/13 11:52:30 | 1105,911,808 | -HS- | M] () -- C:\hiberfil.sys
      [2012/10/13 01:39:00 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2012/10/13 00:52:00 | 000,001,028 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2012/10/12 23:27:02 | 000,000,366 | ---- | M] () -- C:\Windows\tasks\ReclaimerUpdateXML_Admin.job
      [2012/10/12 23:20:02 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003UA.job
      [2012/10/12 20:06:06 | 004,764,063 | R--- | M] (Swearware) -- C:\Users\Admin\Desktop\ComboFix.exe
      [2012/10/12 18:46:08 | 002,193,278 | ---- | M] () -- C:\Users\Admin\Desktop\tdsskiller.zip
      [2012/10/12 17:20:16 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003Core.job
      [2012/10/12 16:21:33 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\ReclaimerUpdateFiles_Admin.job
      [2012/10/11 20:35:43 | 000,008,627 | ---- | M] () -- C:\Windows\System32\PAV_FOG.OPC
      [2012/10/10 20:25:01 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
      [2012/10/10 12:37:43 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/10/10 12:28:35 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2012/10/10 11:20:30 | 000,000,994 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3180311463-1768964898-3199594699-1003Core.job
      [2012/10/09 21:40:35 | 000,094,208 | RHS- | M] () -- C:\Windows\System32\da-DK7.dll
      [2012/10/09 21:37:59 | 000,069,128 | ---- | M] () -- C:\Users\Admin\Documents\Dibujo1.dwg
      [2012/10/09 12:56:50 | 000,052,746 | ---- | M] () -- C:\Users\Admin\Documents\Dibujo1.bak
      [2012/10/06 10:51:41 | 000,616,008 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2012/10/06 10:51:41 | 000,106,388 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2012/10/06 10:51:41 | 000,019,002 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2012/10/06 10:51:41 | 000,007,262 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2012/10/03 23:00:14 | 000,134,065 | ---- | M] () -- C:\Users\Admin\Desktop\concilio vaticano.pdf
      [2012/10/02 13:25:35 | 000,074,882 | ---- | M] () -- C:\Users\Admin\Documents\angel uc haaz.dwg
      [2012/10/02 12:49:53 | 000,069,276 | ---- | M] () -- C:\Users\Admin\Documents\angel uc haaz.bak
      [2012/10/01 19:30:56 | 000,066,761 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 3 uc haaz angel.dwg
      [2012/10/01 11:58:11 | 000,066,269 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 5 uc haaz angel.dwg
      [2012/10/01 11:50:48 | 000,056,468 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 3 uc haaz angel.bak
      [2012/09/30 19:43:15 | 000,061,685 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 9 uc haaz angel.dwg
      [2012/09/30 19:29:17 | 000,076,990 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 11 uc haaz angel.dwg
      [2012/09/30 19:28:58 | 000,060,972 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 11.bak
      [2012/09/30 17:12:06 | 000,058,506 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 10 uc haaz angel.dwg
      [2012/09/30 16:34:41 | 000,074,137 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio #8 ange de jesus uc haaz.dwg
      [2012/09/30 15:49:54 | 000,061,681 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 7 uc haaz angel.dwg
      [2012/09/30 15:36:50 | 000,070,219 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 6 uc haaz angel.dwg
      [2012/09/30 15:27:44 | 000,063,636 | ---- | M] () -- C:\Users\Admin\Documents\inconcluso.bak
      [2012/09/30 13:00:23 | 000,054,954 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 5 uc haaz angel.bak
      [2012/09/30 12:01:14 | 000,062,635 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 3.bak
      [2012/09/30 11:20:32 | 000,064,243 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 2 uc haaz angel.dwg
      [2012/09/30 10:06:46 | 000,000,132 | ---- | M] () -- C:\Users\Admin\Desktop\recuva.ini
      [2012/09/30 09:35:28 | 000,065,074 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio #1 uc haaz angel.dwg
      [2012/09/26 03:44:26 | 011,811,740 | ---- | M] () -- C:\Users\Admin\Desktop\Pharaoh Theme 2.wma
      [2012/09/25 18:33:42 | 009,585,507 | ---- | M] () -- C:\Users\Admin\Desktop\Egipto Mastabas.wmv
      [2012/09/25 18:21:39 | 001,629,525 | ---- | M] () -- C:\Users\Admin\Desktop\Egipto Mastabas.mp3
      [2012/09/24 12:57:26 | 000,060,581 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio.dwg
      [2012/09/22 23:17:25 | 009,890,913 | ---- | M] () -- C:\Users\Admin\Desktop\LA SONORA DINAMITA 'QUE NADIE SEPA MI SUFRIR'.mp3
      [2012/09/21 12:46:35 | 000,069,409 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio # 9 uc haaz angel.bak
      [2012/09/21 12:46:34 | 000,068,940 | ---- | M] () -- C:\Users\Admin\Documents\angel 6.bak
      [2012/09/19 00:30:35 | 535,979,987 | ---- | M] () -- C:\Users\Admin\Desktop\La Edad Media DocuHistory.wmv
      [2012/09/18 15:02:11 | 333,082,971 | ---- | M] () -- C:\Users\Admin\Desktop\La Edad Media Fe, Ciencia y Magia.wmv
      [2012/09/17 19:25:14 | 002,212,440 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Admin\Desktop\TDSSKiller.exe
      [2012/09/16 20:41:17 | 000,001,137 | ---- | M] () -- C:\Windows\System32\mapisvc.inf
      [2012/09/14 12:53:27 | 000,064,453 | ---- | M] () -- C:\Users\Admin\Documents\ejercicio #4 uc haaz angel.dwg
      [2012/09/14 12:53:27 | 000,000,217 | -H-- | M] () -- C:\Users\Admin\Documents\angel 4.dwl2
      [2012/09/14 12:53:27 | 000,000,067 | -H-- | M] () -- C:\Users\Admin\Documents\angel 4.dwl
      [2012/09/14 09:49:51 | 000,001,035 | ---- | M] () -- C:\Users\Admin\Desktop\vanBasco's Karaoke Player.lnk
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2012/10/13 12:14:06 | 000,069,660 | ---- | C] () -- C:\Windows\Fart.exe
      [2012/10/13 12:14:06 | 000,022,528 | ---- | C] () -- C:\Windows\AT-Uninstall.exe
      [2012/10/13 12:14:06 | 000,011,776 | ---- | C] () -- C:\Windows\Colous.exe
      [2012/10/13 12:03:28 | 000,516,139 | ---- | C] () -- C:\Users\Admin\Desktop\AT-Destroyer.exe
      [2012/10/12 18:46:03 | 002,193,278 | ---- | C] () -- C:\Users\Admin\Desktop\tdsskiller.zip
      [2012/10/10 19:12:07 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
      [2012/10/10 19:12:07 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
      [2012/10/10 19:12:07 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
      [2012/10/10 19:12:07 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
      [2012/10/10 19:12:07 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
      [2012/10/10 12:37:43 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/10/10 12:28:35 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2012/10/09 21:40:36 | 000,000,312 | ---- | C] () -- C:\Windows\tasks\rjrkpc.job
      [2012/10/09 21:40:35 | 000,094,208 | RHS- | C] () -- C:\Windows\System32\da-DK7.dll
      [2012/10/09 21:37:59 | 000,052,746 | ---- | C] () -- C:\Users\Admin\Documents\Dibujo1.bak
      [2012/10/09 11:57:44 | 000,069,128 | ---- | C] () -- C:\Users\Admin\Documents\Dibujo1.dwg
      [2012/10/03 23:00:13 | 000,134,065 | ---- | C] () -- C:\Users\Admin\Desktop\concilio vaticano.pdf
      [2012/10/02 11:51:13 | 000,074,882 | ---- | C] () -- C:\Users\Admin\Documents\angel uc haaz.dwg
      [2012/10/02 11:51:13 | 000,069,276 | ---- | C] () -- C:\Users\Admin\Documents\angel uc haaz.bak
      [2012/10/01 11:58:11 | 000,054,954 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 5 uc haaz angel.bak
      [2012/09/30 19:29:17 | 000,060,972 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 11.bak
      [2012/09/30 17:28:25 | 000,076,990 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 11 uc haaz angel.dwg
      [2012/09/30 16:46:09 | 000,058,506 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 10 uc haaz angel.dwg
      [2012/09/30 16:02:19 | 000,074,137 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio #8 ange de jesus uc haaz.dwg
      [2012/09/30 15:49:54 | 000,061,681 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 7 uc haaz angel.dwg
      [2012/09/30 13:15:21 | 000,070,219 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 6 uc haaz angel.dwg
      [2012/09/30 13:15:21 | 000,063,636 | ---- | C] () -- C:\Users\Admin\Documents\inconcluso.bak
      [2012/09/30 12:35:19 | 000,066,269 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 5 uc haaz angel.dwg
      [2012/09/30 12:02:33 | 000,062,635 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 3.bak
      [2012/09/30 11:35:00 | 000,066,761 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 3 uc haaz angel.dwg
      [2012/09/30 11:35:00 | 000,056,468 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 3 uc haaz angel.bak
      [2012/09/30 10:41:25 | 000,064,243 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 2 uc haaz angel.dwg
      [2012/09/30 10:14:58 | 000,065,074 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio #1 uc haaz angel.dwg
      [2012/09/26 23:14:21 | 000,000,376 | ---- | C] () -- C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Admin.job
      [2012/09/26 23:14:09 | 000,000,370 | ---- | C] () -- C:\Windows\tasks\ReclaimerUpdateFiles_Admin.job
      [2012/09/26 23:14:02 | 000,000,366 | ---- | C] () -- C:\Windows\tasks\ReclaimerUpdateXML_Admin.job
      [2012/09/26 03:44:26 | 011,811,740 | ---- | C] () -- C:\Users\Admin\Desktop\Pharaoh Theme 2.wma
      [2012/09/25 18:33:42 | 009,585,507 | ---- | C] () -- C:\Users\Admin\Desktop\Egipto Mastabas.wmv
      [2012/09/25 18:21:39 | 001,629,525 | ---- | C] () -- C:\Users\Admin\Desktop\Egipto Mastabas.mp3
      [2012/09/24 12:37:29 | 000,060,581 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio.dwg
      [2012/09/22 23:17:22 | 009,890,913 | ---- | C] () -- C:\Users\Admin\Desktop\LA SONORA DINAMITA 'QUE NADIE SEPA MI SUFRIR'.mp3
      [2012/09/21 12:46:35 | 000,068,940 | ---- | C] () -- C:\Users\Admin\Documents\angel 6.bak
      [2012/09/21 12:31:18 | 000,069,409 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 9 uc haaz angel.bak
      [2012/09/21 12:31:18 | 000,061,685 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio # 9 uc haaz angel.dwg
      [2012/09/19 00:29:24 | 535,979,987 | ---- | C] () -- C:\Users\Admin\Desktop\La Edad Media DocuHistory.wmv
      [2012/09/18 15:01:51 | 333,082,971 | ---- | C] () -- C:\Users\Admin\Desktop\La Edad Media Fe, Ciencia y Magia.wmv
      [2012/09/18 1335 | 000,003,877 | ---- | C] () -- C:\Windows\PD0630.uns
      [2012/09/16 22:33:11 | 000,000,132 | ---- | C] () -- C:\Users\Admin\Desktop\recuva.ini
      [2012/09/16 22:26:23 | 000,000,010 | ---- | C] () -- C:\Users\Admin\Desktop\portable.dat
      [2012/09/16 20:16:12 | 000,000,535 | ---- | C] () -- C:\Windows\System32\MAPISVC.BAK
      [2012/09/14 12:53:27 | 000,000,217 | -H-- | C] () -- C:\Users\Admin\Documents\angel 4.dwl2
      [2012/09/14 12:53:27 | 000,000,067 | -H-- | C] () -- C:\Users\Admin\Documents\angel 4.dwl
      [2012/09/14 12:37:24 | 000,064,453 | ---- | C] () -- C:\Users\Admin\Documents\ejercicio #4 uc haaz angel.dwg
      [2012/09/14 09:49:51 | 000,001,035 | ---- | C] () -- C:\Users\Admin\Desktop\vanBasco's Karaoke Player.lnk
      [2012/07/21 22:55:42 | 000,178,625 | ---- | C] () -- C:\Windows\hphins15.dat
      [2012/07/21 22:55:42 | 000,002,011 | ---- | C] () -- C:\Windows\hphmdl15.dat
      [2011/03/20 22:42:31 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
      [2010/08/08 21:16:40 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

      ========== ZeroAccess Check ==========

      [2009/07/13 23:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 23:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 20:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2012/09/10 12:22:07 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Autodesk
      [2012/05/03 23:28:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\avidemux
      [2012/06/02 16:48:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
      [2012/03/15 13:35:00 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FLVPlayer4Free
      [2012/04/17 01:46:16 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Media Finder
      [2012/03/22 00:38:01 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Publish Providers
      [2012/03/22 00:37:37 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Sony
      [2012/02/12 0330 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Windows Live Writer

      ========== Purity Check ==========



      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 64 bytes -> C:\Users\Admin\Documents\tarea de cande.avi:TOC.WMV

      < End of report >

    9. #9
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: internet explorer me redirecciona a otras paginas

      Buenas.


      Como esta funcionando todo ?
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #10
      Usuario Avatar de asdrual78
      Registrado
      oct 2012
      Ubicación
      Robore - Santa Cruz
      Mensajes
      2

      Re: internet explorer me redirecciona a otras paginas

      porque me sale esto, me dice la operadora de internet que esto es virus y que tiene mucho virus tengo al antivirus avg ya lo utilize y tambien hice un clear o limpiador de pc y tambien un malware y me sigue saliendo asi como puedo sacar esto de mi computadora y que se pierda ESTABLISHED porfavor que puedo hacer mas





      C:\Documents and Settings\Usuario>netstat

      Conexiones activas

      Proto Dirección local Dirección remota Estado
      TCP 73b7101564d9432:1039 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1041 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1042 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1043 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1044 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1045 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1046 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1118 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1119 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1120 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1129 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1130 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1131 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1877 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1878 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1879 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1937 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1938 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:1939 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:knetd localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:2054 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:2055 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:2088 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:2089 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:2090 localhost:22347 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1039 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1041 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1042 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1043 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1044 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1045 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1046 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1118 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1119 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1120 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1129 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1130 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1131 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1877 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1878 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1879 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1937 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1938 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:1939 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:knetd ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:2054 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:2055 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:2088 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:2089 ESTABLISHED
      TCP 73b7101564d9432:22347 localhost:2090 ESTABLISHED

      C:\Documents and Settings\Usuario>

    Página 1 de 4 1234 ÚltimoÚltimo