• Registrarse
  • Iniciar sesión


  • Resultados 1 al 9 de 9

    Cuando ejecuto cualquier programa tarda demasiado

    hola Javierhf tengo problemas con la netbook inspiron mini 10 de dell para ejecutar cualquier programa tarda demasiado creeme lo he buscado todo .te pido ayuda no entiendo mucho el funcionamiento de un foro por ...

    1. #1
      Usuario Avatar de Hasv
      Registrado
      ene 2013
      Ubicación
      Peru
      Mensajes
      12

      Molesto Cuando ejecuto cualquier programa tarda demasiado

      hola Javierhf
      tengo problemas con la netbook inspiron mini 10 de dell para ejecutar cualquier programa tarda demasiado
      creeme lo he buscado todo .te pido ayuda no entiendo mucho el funcionamiento de un foro por favor ayuda

    2. #2
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.690

      Re: Cuando ejecuto cualquier programa tarda demasiado

      Buenas Hasv. al Foro.

      Temas que interesa revisar y leer :

      Consejos para antes de publicar un nuevo mensaje.

      Políticas del Foro de InfoSpyware.

      Políticas Foro Oficial de HijackThis en español.

      ¿Cómo subir imágenes al Foro? *TUTORIAL*
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

      Para revisar tu equipo, sigue estos pasos, y en el orden indicado :

      Descarga y ejecuta >> Ccleaner.

      • Usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
      • Después usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).


      Descarga, actualiza y ejecuta >> Malwarebytes’ Anti-Malware.

      • En la pestaña Actualizar pulsas sobre el botón "Buscar Actualizaciones"
      • En la pestaña Escáner marcas "Realizar un Examen Completo."
      • Con la opción de "quitar lo seleccionado" lo mandas todo a la cuarentena y reinicias el sistema.
      • En la pestaña "Registros", encontrarás el informe del MBAM, lo copias y pegas en tu próxima respuesta, para analizarlo.


      Descarga >> AT-Destroyer (by InfoSpyware) | InfoSpyware

      • Cierra TODOS los programas que tengas abiertos, y >> Desactiva temporalmente el Antivirus y/o Antispyware.
      • Ejecuta AT-Destroyer. (Si usas Windows Vista o 7 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • En el menú pulsa sobre la opción "Buscar y Destruir".
      • AT-Destroyer desconectará el escritorio momentáneamente.
      • Si detecta infecciones se te indicara y pulsas en Aceptar.
      • Al finalizar el proceso te pedirá Reiniciar, pulsa para Aceptar.
      • Al Iniciar de nuevo Windows se te abrirá un reporte/informe, que deberás copiar en tu próxima respuesta, comentando cómo funciona el sistema.(También puedes encontrarlo en C:\AT-Destroyer.txt)


      Y finalmente descarga >> OTL By OldTimer

      *** Para Ejecutar OTL sigue estos pasos :

      • Cerrar todos programas que tengas abiertos y hacer doble click en el ícono de OTL para ejecutarlo.
      • Dejarlo correr y esperar a que aparezca el menú de OTL..
      • Cuando salga el menú de OTL, debes cambiar debajo de: "Tipo de Análisis" poniendo Resultado Mínimo.
      • Marcar la casilla Analizar Todos.
      • Marcar las opciones: Buscar LOP y Buscar Purity.
      • Marcar las Opciones: Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
      • Copiar y Pegar las líneas del siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

        NOTA: No copiar la palabra Código:
        Código:
        netsvcs
        msconfig
        %SYSTEMDRIVE%\*.*
        CREATERESTOREPOINT

      • Por favor No cambies el resto de la configuración a menos que te lo solicitemos.

      • Presionar el botón .
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
      • Copiar y pegar el contenido del archivo OTL.txt en tu próxima respuesta.


      En tu próxima respuesta recuerda:

      - Ponernos los informes de Malwarebytes, AT-Destroyer y OTL.txt.

      - Y nos cuentas como funciona tu equipo, en relación al problema planteado.

      Saludos, Javier.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Hasv
      Registrado
      ene 2013
      Ubicación
      Peru
      Mensajes
      12

      Re: Cuando ejecuto cualquier programa tarda demasiado

      Buenas javier
      por falta de tiempo no pude responder antes. te comento ,sin darme cuenta fui descargando lo programas que mencionaste sin el orden indicado; créeme me siento como un tonto porque tu mensaje fue muy claro.
      Bueno cuando termine de descargar todos; los empece a ejecutar nuevamente en el orden que detallaste, espero no haber afectado los resultados .

      detallo los resultados

      informe Malwarebytes’ Anti-Malware.
      Malwarebytes Anti-Malware (Versión de Prueba) 1.70.0.1100
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2013.01.14.02

      Windows 7 Service Pack 1 x86 NTFS
      Internet Explorer 8.0.7601.17514
      HASV :: HASV-PC [administrador]

      Protección: Personas de movilidad reducida

      14/01/2013 12:40:02 p.m.
      MBAM-log-2013-01-14 (13-51-18).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|F:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 273237
      Tiempo transcurrido: 53 minuto(s), 12 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 7
      d:\data c\documents\programas descargados\keygen.exe (RiskWare.Tool.CK) -> No se tomaron medidas.
      d:\data c\documents\programas descargados\softonicdownloader_para_argente-utilities.exe (PUP.OfferBundler.ST) -> No se tomaron medidas.
      d:\data c\documents\programas descargados\softonicdownloader_para_sony-vegas-10-pro.exe (PUP.OfferBundler.ST) -> No se tomaron medidas.
      d:\data c\documents\programas descargados\sonyvegaspro patch.exe (RiskWare.Tool.HCK) -> No se tomaron medidas.
      d:\documents\programas descargados\softonicdownloader_para_argente-utilities.exe (PUP.OfferBundler.ST) -> No se tomaron medidas.
      d:\documents\programas descargados\softonicdownloader_para_sony-vegas-10-pro.exe (PUP.OfferBundler.ST) -> No se tomaron medidas.
      d:\documents\programas descargados\sonyvegaspro patch.exe (RiskWare.Tool.HCK) -> No se tomaron medidas.

      fin)

      informe at
      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 10:42:23 \\\ 14/01/2013
      AT-Destroyer 2.1 By Infospyware ---> InfoSpyware
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:8.0.7601.17514
      Google Chrome:24.0.1312.52
      Privilegios: HASV - Administrador
      Modo Actual: Modo Normal.
      Nombre del pc: HASV-PC
      Información del sistema operativo:X86-WIN_7-Service Pack 1
      nombre del usuario:HASV
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<

      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll 97


      informe otl

      OTL logfile created on: 14/01/2013 04:11:07 a.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = D:\Downloads
      Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.7601.17514)
      Locale: 0000280a | Country: Perú | Language: ESR | Date Format: dd/MM/yyyy

      1014.27 Mb Total Physical Memory | 206.12 Mb Available Physical Memory | 20.32% Memory free
      1.99 Gb Paging File | 0.97 Gb Available in Paging File | 48.54% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 48.73 Gb Total Space | 35.25 Gb Free Space | 72.33% Space Free | Partition Type: NTFS
      Drive D: | 100.22 Gb Total Space | 57.17 Gb Free Space | 57.05% Space Free | Partition Type: NTFS

      Computer Name: HASV-PC | User Name: HASV | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - D:\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\Google\Chrome\Application\chrome.exe (Google Inc.)
      PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
      PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)
      PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corp.)
      PRC - C:\Archivos de programa\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)


      ========== Modules (No Company Name) ==========

      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\ppgooglenaclpluginchrome.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\pdf.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\libglesv2.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\libegl.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\ffmpegsumo.dll ()
      MOD - C:\Archivos de programa\Winrar\RarExt.dll ()


      ========== Services (SafeList) ==========

      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (MBAMService) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (SkypeUpdate) -- C:\Archivos de programa\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (WMPNetworkSvc) -- C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      SRV - (ose) -- C:\Archivos de programa\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
      SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
      SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
      SRV - (WinDefend) -- C:\Archivos de programa\Windows Defender\MpSvc.dll (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
      DRV - (huawei_enumerator) -- system32\DRIVERS\ew_jubusenum.sys File not found
      DRV - (huawei_cdcacm) -- system32\DRIVERS\ew_jucdcacm.sys File not found
      DRV - (ew_hwusbdev) -- system32\DRIVERS\ew_hwusbdev.sys File not found
      DRV - (KProcessHacker2) -- C:\Archivos de programa\Process Hacker 2\kprocesshacker.sys (wj32)
      DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
      DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
      DRV - (tsusbhub) -- C:\Windows\System32\drivers\tsusbhub.sys (Microsoft Corporation)
      DRV - (Synth3dVsc) -- C:\Windows\System32\drivers\Synth3dVsc.sys (Microsoft Corporation)
      DRV - (dmvsc) -- C:\Windows\System32\drivers\dmvsc.sys (Microsoft Corporation)
      DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
      DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
      DRV - (terminpt) -- C:\Windows\System32\drivers\terminpt.sys (Microsoft Corporation)
      DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
      DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
      DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
      DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV - (PfFilter) -- C:\Archivos de programa\Password Folder\pffilter.sys (IObit Information Technology)
      DRV - (IntcHdmiAddService) -- C:\Windows\System32\drivers\IntcHdmi.sys (Intel(R) Corporation)
      DRV - (Serial) -- C:\Windows\System32\drivers\serial.sys (Brother Industries Ltd.)
      DRV - (netr28u) -- C:\Windows\System32\drivers\netr28u.sys (Ralink Technology Corp.)
      DRV - (EMSC) -- C:\Windows\System32\drivers\EMSC.sys ()


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MyPlayCity Search
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = Hotmail, Messenger y más en MSN Latinoamérica | Noticias, deportes, entretenimiento, videos y más
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-pe
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 7E 3A EB 45 1B D3 CD 01 [binary data]
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


      ========== FireFox ==========

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\HASV\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013/01/07 0126 | 000,000,000 | ---D | M]

      [2013/01/06 19:59:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HASV\AppData\Roaming\mozilla\Firefox\Profiles\extensions
      [2012/11/06 11:19:24 | 000,214,034 | ---- | M] () (No name found) -- C:\Users\HASV\AppData\Roaming\mozilla\firefox\profiles\extensions\[email protected]

      ========== Chrome ==========

      CHR - homepage: Google
      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.52\pdf.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL
      CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
      CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
      CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
      CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\HASV\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
      CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll
      CHR - plugin: Java Deployment Toolkit 7.0.100.18 (Enabled) = C:\Windows\system32\npDeployJava1.dll
      CHR - Extension: \u003Cvideo\u003E de HTML5 de DivX Plus Web Player = C:\Users\HASV\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\

      O1 HOSTS File: ([2012/12/04 1656 | 000,000,864 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com
      O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Archivos de programa\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
      O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Archivos de programa\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
      O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (no name) - {F1AF26F8-1828-4279-ABCE-074EF3235BD7} - No CLSID value found.
      O4 - HKLM..\Run: [ETDWare] C:\Archivos de programa\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
      O4 - HKU\S-1-5-21-1128892658-1411016870-446068731-1000..\Run: [Process Hacker 2] C:\Program Files\Process Hacker 2\ProcessHacker.exe (wj32)
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
      O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: E&xportar a Microsoft Excel - C:\Archivos de programa\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O13 - gopher Prefix: missing
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O16 - DPF: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.48.225.130 200.48.225.146
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AA09A89E-369E-468E-8070-AF637469502E}: DhcpNameServer = 200.48.225.130 200.48.225.146
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Archivos de programa\Common Files\Skype\Skype4COM.dll (Skype Technologies)
      O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O32 - AutoRun File - [2011/12/02 22:16:45 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ NTFS ]
      O33 - MountPoints2\{01f0ef1b-3e68-11e2-b92e-00225f7dd8bb}\Shell - "" = AutoRun
      O33 - MountPoints2\{01f0ef1b-3e68-11e2-b92e-00225f7dd8bb}\Shell\AutoRun\command - "" = E:\AutoRun.exe
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs: FastUserSwitchingCompatibility - File not found
      NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
      NetSvcs: Nla - File not found
      NetSvcs: Ntmssvc - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: SRService - File not found
      NetSvcs: WmdmPmSp - File not found
      NetSvcs: LogonHours - File not found
      NetSvcs: PCAudit - File not found
      NetSvcs: helpsvc - File not found
      NetSvcs: uploadmgr - File not found

      MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Orbit.lnk - C:\Archivos de programa\Orbitdownloader\orbitdm.exe - (Orbitdownloader.com)
      MsConfig - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: DivXMediaServer - hkey= - key= - C:\Archivos de programa\DivX\DivX Media Server\DivXMediaServer.exe ()
      MsConfig - StartUpReg: DivXUpdate - hkey= - key= - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
      MsConfig - StartUpReg: Facebook Update - hkey= - key= - C:\Users\HASV\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
      MsConfig - StartUpReg: HotKeysCmds - hkey= - key= - File not found
      MsConfig - StartUpReg: IgfxExt - hkey= - key= - File not found
      MsConfig - StartUpReg: IgfxTray - hkey= - key= - File not found
      MsConfig - StartUpReg: msnmsgr - hkey= - key= - C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
      MsConfig - StartUpReg: Skype - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
      MsConfig - StartUpReg: SMBTray - hkey= - key= - File not found
      MsConfig - StartUpReg: SunJavaUpdateSched - hkey= - key= - File not found
      MsConfig - StartUpReg: UCam_Menu - hkey= - key= - File not found
      MsConfig - State: "bootini" - 2
      MsConfig - State: "startup" - 2

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/01/12 00:48:52 | 000,000,000 | ---D | C] -- C:\_AT-Destroyer
      [2013/01/12 00:40:27 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Malwarebytes
      [2013/01/12 00:40:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2013/01/12 00:40:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2013/01/12 00:40:05 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
      [2013/01/12 00:40:05 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
      [2013/01/10 04:26:11 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Process Hacker 2
      [2013/01/10 04:16:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2
      [2013/01/10 04:16:12 | 000,000,000 | ---D | C] -- C:\Program Files\Process Hacker 2
      [2013/01/10 04:13:56 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\Programs
      [2013/01/10 03:35:43 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\de.makesoft.twhirl.0EA062BC275E7ED1E6EC3762EFFD73C7158ADF33.1
      [2013/01/10 03:35:38 | 000,000,000 | ---D | C] -- C:\Program Files\twhirl
      [2013/01/07 23:47:03 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
      [2013/01/07 23:47:03 | 000,000,000 | ---D | C] -- C:\Program Files\PopCap Games
      [2013/01/07 01:34:02 | 000,000,000 | ---D | C] -- C:\Program Files\Elantech
      [2013/01/07 01:33:22 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\InstallShield
      [2013/01/07 01:33:01 | 003,939,840 | ---- | C] (ELAN Microelectronics Corp.) -- C:\Windows\System32\ETDUI.cpl
      [2013/01/07 01:33:00 | 000,000,000 | ---D | C] -- C:\dell
      [2013/01/07 01:11:41 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\DDMSettings
      [2013/01/07 01:08:02 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\DivX
      [2013/01/07 01:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
      [2013/01/07 01:06:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
      [2013/01/07 01:01:50 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
      [2013/01/07 01:00:43 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
      [2013/01/07 00:52:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\Adobe
      [2013/01/07 00:29:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
      [2013/01/07 00:24:14 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\Apps
      [2013/01/07 00:24:13 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\Deployment
      [2013/01/06 23:37:27 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
      [2013/01/06 23:37:27 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
      [2013/01/06 23:00:06 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
      [2013/01/06 22:03:56 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
      [2013/01/06 20:18:17 | 000,000,000 | ---D | C] -- C:\Temp
      [2013/01/06 19:59:42 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\PutLockerDownloader
      [2013/01/06 19:59:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
      [2013/01/06 19:59:12 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Mozilla
      [2013/01/06 19:58:43 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PutLockerDownloader.com
      [2013/01/06 19:14:59 | 000,000,000 | ---D | C] -- C:\Users\HASV\Desktop\WITFS
      [2013/01/06 18:17:30 | 000,000,000 | ---D | C] -- C:\Users\HASV\Downloads
      [2013/01/03 01:39:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orbit
      [2012/12/29 21:56:33 | 000,000,000 | ---D | C] -- C:\Windows\Sun

      ========== Files - Modified Within 30 Days ==========

      [2013/01/14 04:04:03 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2013/01/14 03:32:05 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1128892658-1411016870-446068731-1000UA.job
      [2013/01/14 03:31:02 | 000,001,084 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/01/14 00:31:06 | 000,001,080 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/01/13 21:32:02 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1128892658-1411016870-446068731-1000Core.job
      [2013/01/13 19:16:37 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/01/13 19:16:36 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/01/13 19:08:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/01/13 19:08:40 | 797,655,040 | -HS- | M] () -- C:\hiberfil.sys
      [2013/01/12 00:40:10 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2013/01/11 23:41:33 | 000,002,201 | ---- | M] () -- C:\Users\HASV\Desktop\Google Chrome.lnk
      [2013/01/10 11:05:35 | 000,702,316 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2013/01/10 11:05:35 | 000,614,236 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2013/01/10 11:05:35 | 000,138,042 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2013/01/10 11:05:35 | 000,106,356 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2013/01/10 04:16:14 | 000,001,994 | ---- | M] () -- C:\Users\HASV\Desktop\Process Hacker 2.lnk
      [2013/01/10 03:35:39 | 000,000,817 | ---- | M] () -- C:\Users\Public\Desktop\twhirl.lnk
      [2013/01/07 0134 | 000,001,546 | ---- | M] () -- C:\Users\HASV\Desktop\DivX Movies.lnk
      [2013/01/07 01:08:21 | 000,001,082 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
      [2013/01/07 01:07:45 | 000,001,122 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
      [2013/01/06 20:52:29 | 000,001,657 | ---- | M] () -- C:\Windows\System32\InstallUtil.InstallLog
      [2013/01/06 20:02:47 | 000,000,000 | ---- | M] () -- C:\Windows\System32\extensions.sqlite
      [2013/01/06 20:00:52 | 000,012,717 | ---- | M] () -- C:\Users\HASV\Desktop\WP.rar
      [2013/01/06 18:22:30 | 006,555,147 | ---- | M] () -- C:\Users\HASV\Desktop\WITFS.rar
      [2013/01/03 01:39:11 | 000,001,009 | ---- | M] () -- C:\Users\HASV\Desktop\Orbit.lnk

      ========== Files Created - No Company Name ==========

      [2013/01/12 00:40:10 | 000,001,067 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2013/01/10 04:16:14 | 000,001,994 | ---- | C] () -- C:\Users\HASV\Desktop\Process Hacker 2.lnk
      [2013/01/10 03:35:39 | 000,000,829 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\twhirl.lnk
      [2013/01/10 03:35:39 | 000,000,817 | ---- | C] () -- C:\Users\Public\Desktop\twhirl.lnk
      [2013/01/07 0134 | 000,001,546 | ---- | C] () -- C:\Users\HASV\Desktop\DivX Movies.lnk
      [2013/01/07 01:08:21 | 000,001,082 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
      [2013/01/07 01:07:45 | 000,001,122 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
      [2013/01/07 00:29:38 | 000,002,201 | ---- | C] () -- C:\Users\HASV\Desktop\Google Chrome.lnk
      [2013/01/07 00:26:11 | 000,001,084 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/01/07 00:26:10 | 000,001,080 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/01/06 20:52:26 | 000,001,657 | ---- | C] () -- C:\Windows\System32\InstallUtil.InstallLog
      [2013/01/06 20:02:47 | 000,000,000 | ---- | C] () -- C:\Windows\System32\extensions.sqlite
      [2013/01/06 20:00:52 | 000,012,717 | ---- | C] () -- C:\Users\HASV\Desktop\WP.rar
      [2013/01/06 19:14:49 | 006,555,147 | ---- | C] () -- C:\Users\HASV\Desktop\WITFS.rar
      [2013/01/03 01:39:11 | 000,001,009 | ---- | C] () -- C:\Users\HASV\Desktop\Orbit.lnk
      [2012/12/14 20:34:54 | 000,110,592 | ---- | C] () -- C:\Windows\System32\EMSC.dll
      [2012/12/14 20:01:30 | 000,000,017 | ---- | C] () -- C:\Users\HASV\AppData\Local\resmon.resmoncfg
      [2012/12/09 23:06:44 | 000,002,110 | ---- | C] () -- C:\Users\HASV\Farm Frenzy 2.lnk
      [2012/12/04 15:30:55 | 000,013,020 | ---- | C] () -- C:\Windows\System32\lpgun.ini
      [2012/12/04 14:08:37 | 000,004,608 | ---- | C] () -- C:\Windows\System32\HdmiCoin.dll
      [2011/01/16 12:56:37 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
      [2011/01/16 12:56:35 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe

      ========== ZeroAccess Check ==========

      [2009/07/13 23:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2011/01/16 12:55:50 | 012,872,192 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2011/01/16 12:56:10 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 20:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2013/01/10 03:35:43 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\de.makesoft.twhirl.0EA062BC275E7ED1E6EC3762EFFD73C7158ADF33.1
      [2012/12/10 10:41:31 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\DeepVoyage
      [2012/12/10 09:20:49 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\EleFun Games
      [2013/01/06 23:45:48 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Orbit
      [2013/01/10 04:26:11 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Process Hacker 2
      [2012/12/04 18:36:16 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\ProgSense
      [2012/12/04 18:38:56 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Research In Motion
      [2012/12/04 18:26:22 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Sony
      [2012/12/04 19:20:59 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Telefónica

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2013/01/12 01:19:17 | 000,001,168 | ---- | M] () -- C:\AT-Destroyer.txt
      [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
      [2009/06/10 16:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
      [2013/01/13 19:08:40 | 797,655,040 | -HS- | M] () -- C:\hiberfil.sys
      [2013/01/13 19:08:46 | 1073,741,824 | -HS- | M] () -- C:\pagefile.sys

      < End of report >

    4. #4
      Usuario Avatar de Hasv
      Registrado
      ene 2013
      Ubicación
      Peru
      Mensajes
      12

      Re: Cuando ejecuto cualquier programa tarda demasiado

      NUEVAMENTE REALIZARE LOS PASOS

      Malwarebytes Anti-Malware (Versión de Prueba) 1.70.0.1100
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2013.01.15.13

      Windows 7 Service Pack 1 x86 NTFS
      Internet Explorer 8.0.7601.17514
      HASV :: HASV-PC [administrador]

      Protección: Habilitado

      15/01/2013 11:53:36 p.m.
      mbam-log-2013-01-15 (23-53-36).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|F:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 273331
      Tiempo transcurrido: 54 minuto(s), 2 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 0
      (No se han detectado elementos maliciosos)

      fin)

    5. #5
      Usuario Avatar de Hasv
      Registrado
      ene 2013
      Ubicación
      Peru
      Mensajes
      12

      Re: Cuando ejecuto cualquier programa tarda demasiado

      el segundo ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 01:51:37 \\\ 16/01/2013
      AT-Destroyer 2.1 By Infospyware ---> InfoSpyware
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:8.0.7601.17514
      Google Chrome:24.0.1312.52
      Privilegios: HASV - Administrador
      Modo Actual: Modo Normal.
      Nombre del pc: HASV-PC
      Información del sistema operativo:X86-WIN_7-Service Pack 1
      nombre del usuario:HASV
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<

      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll 97
      C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll 97
      C:\ProgramData\Tarma Installer 97


      >>>>>> Archivos <<<<<<



      >>>>>> Registro <<<<<<

      HKLM\SOFTWARE\Tarma Installer
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      >>>>>> Heurística <<<<<<



      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==C:\Windows\System32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_Page_URL==http://go.microsoft.com/fwlink/?LinkId=69157


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==


      HKEY_USERS\S-1-5-21-1128892658-1411016870-446068731-1000\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==


      >>>>>> Firefox <<<<<<



      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.10.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\HASV\AppData\Local\Google\Chrome\User Data\Default\Extensions\1
      C:\Users\HASV\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm

      ======== Listado ===========

      [10/01/2013 03:35 a.m.] [10/01/2013 03:35 a.m.] [DI] C:\Users\HASV\AppData\Roaming\de.makesoft.twhirl.0EA062BC275E7ED1E6EC3762EFFD73C7158ADF33.1
      [10/12/2012 10:41 a.m.] [10/12/2012 09:06 a.m.] [DI] C:\Users\HASV\AppData\Roaming\DeepVoyage
      [09/01/2013 09:30 p.m.] [07/01/2013 01:08 a.m.] [DI] C:\Users\HASV\AppData\Roaming\DivX
      [10/12/2012 09:20 a.m.] [10/12/2012 09:20 a.m.] [DI] C:\Users\HASV\AppData\Roaming\EleFun Games
      [04/12/2012 03:18 p.m.] [04/12/2012 03:18 p.m.] [DI] C:\Users\HASV\AppData\Roaming\Identities
      [07/01/2013 01:33 a.m.] [07/01/2013 01:33 a.m.] [DI] C:\Users\HASV\AppData\Roaming\InstallShield
      [04/12/2012 03:52 p.m.] [04/12/2012 03:52 p.m.] [DI] C:\Users\HASV\AppData\Roaming\Macromedia
      [12/01/2013 12:40 a.m.] [12/01/2013 12:40 a.m.] [DI] C:\Users\HASV\AppData\Roaming\Malwarebytes
      [14/07/2009 04:07 a.m.] [04/12/2012 03:17 p.m.] [DI] C:\Users\HASV\AppData\Roaming\Media Center Programs
      [28/12/2012 06:11 p.m.] [04/12/2012 03:17 p.m.] [SDI] C:\Users\HASV\AppData\Roaming\Microsoft
      [06/01/2013 07:59 p.m.] [06/01/2013 07:59 p.m.] [DI] C:\Users\HASV\AppData\Roaming\Mozilla
      [15/01/2013 09:16 p.m.] [04/12/2012 06:34 p.m.] [DI] C:\Users\HASV\AppData\Roaming\Orbit
      [10/01/2013 04:26 a.m.] [10/01/2013 04:26 a.m.] [DI] C:\Users\HASV\AppData\Roaming\Process Hacker 2
      [04/12/2012 06:36 p.m.] [04/12/2012 06:36 p.m.] [DI] C:\Users\HASV\AppData\Roaming\ProgSense
      [04/12/2012 06:38 p.m.] [04/12/2012 06:37 p.m.] [DI] C:\Users\HASV\AppData\Roaming\Research In Motion
      C:\Users\HASV\AppData\Roaming\Rim.Desktop.Exception.log [AI] 77 bytes ( )
      C:\Users\HASV\AppData\Roaming\Rim.DesktopHelper.Exception.log [AI] 77 bytes ( )
      [08/01/2013 08:45 p.m.] [04/12/2012 06:39 p.m.] [DI] C:\Users\HASV\AppData\Roaming\Skype
      [04/12/2012 06:26 p.m.] [04/12/2012 06:26 p.m.] [DI] C:\Users\HASV\AppData\Roaming\Sony
      [04/12/2012 07:21 p.m.] [04/12/2012 07:21 p.m.] [DI] C:\Users\HASV\AppData\Roaming\Telefónica
      [27/12/2012 04:46 p.m.] [04/12/2012 09:22 p.m.] [DI] C:\Users\HASV\AppData\Roaming\vlc
      [04/12/2012 06:26 p.m.] [04/12/2012 06:26 p.m.] [DI] C:\Users\HASV\AppData\Roaming\WinRAR
      [04/12/2012 03:16 p.m.] [04/12/2012 03:16 p.m.] [HSDLI] C:\Program Files\Archivos comunes
      [04/12/2012 06:21 p.m.] [04/12/2012 06:20 p.m.] [D] C:\Program Files\Ares
      [04/12/2012 03:37 p.m.] [04/12/2012 03:37 p.m.] [D] C:\Program Files\CCleaner
      [09/01/2013 10:49 p.m.] [04/12/2012 03:20 a.m.] [D] C:\Program Files\Cheat Engine
      [07/01/2013 01:13 a.m.] [13/07/2009 09:37 p.m.] [D] C:\Program Files\Common Files
      C:\Program Files\desktop.ini [HSA] 174 bytes( 0)
      [07/01/2013 01:10 a.m.] [07/01/2013 01:01 a.m.] [D] C:\Program Files\DivX
      [16/01/2011 01:03 p.m.] [13/07/2009 11:52 p.m.] [D] C:\Program Files\DVD Maker
      [07/01/2013 01:34 a.m.] [07/01/2013 01:34 a.m.] [D] C:\Program Files\Elantech
      [07/01/2013 12:26 a.m.] [04/12/2012 03:37 p.m.] [D] C:\Program Files\Google
      [04/12/2012 03:28 p.m.] [04/12/2012 03:28 p.m.] [D] C:\Program Files\Intel
      [16/01/2011 01:03 p.m.] [13/07/2009 09:37 p.m.] [D] C:\Program Files\Internet Explorer
      [12/01/2013 12:40 a.m.] [12/01/2013 12:40 a.m.] [D] C:\Program Files\Malwarebytes' Anti-Malware
      [04/12/2012 03:59 p.m.] [04/12/2012 03:59 p.m.] [D] C:\Program Files\Microsoft Analysis Services
      [14/07/2009 04:08 a.m.] [13/07/2009 11:52 p.m.] [D] C:\Program Files\Microsoft Games
      [04/12/2012 04:03 p.m.] [04/12/2012 03:58 p.m.] [D] C:\Program Files\Microsoft Office
      [07/01/2013 01:36 a.m.] [04/12/2012 03:43 p.m.] [D] C:\Program Files\Microsoft Silverlight
      [04/12/2012 04:03 p.m.] [04/12/2012 04:03 p.m.] [D] C:\Program Files\Microsoft Sync Framework
      [13/07/2009 11:52 p.m.] [13/07/2009 11:52 p.m.] [D] C:\Program Files\MSBuild
      [03/01/2013 01:39 a.m.] [04/12/2012 03:21 a.m.] [D] C:\Program Files\Orbitdownloader
      [04/12/2012 06:21 p.m.] [04/12/2012 04:03 a.m.] [DA] C:\Program Files\Password Folder
      [10/01/2013 04:31 a.m.] [07/01/2013 11:47 p.m.] [D] C:\Program Files\PopCap Games
      [14/01/2013 12:09 p.m.] [10/01/2013 04:16 a.m.] [D] C:\Program Files\Process Hacker 2
      [13/07/2009 11:52 p.m.] [13/07/2009 11:52 p.m.] [D] C:\Program Files\Reference Assemblies
      [06/12/2012 12:25 p.m.] [04/12/2012 03:22 a.m.] [RD] C:\Program Files\Skype
      [04/12/2012 06:23 p.m.] [04/12/2012 03:22 a.m.] [D] C:\Program Files\Sony
      [10/01/2013 03:35 a.m.] [10/01/2013 03:35 a.m.] [D] C:\Program Files\twhirl
      [13/07/2009 11:53 p.m.] [13/07/2009 11:53 p.m.] [HD] C:\Program Files\Uninstall Information
      [04/12/2012 03:53 p.m.] [04/12/2012 03:53 p.m.] [D] C:\Program Files\VideoLAN
      [06/01/2013 11:37 p.m.] [06/01/2013 11:37 p.m.] [D] C:\Program Files\VS Revo Group
      [16/01/2011 01:03 p.m.] [13/07/2009 11:52 p.m.] [D] C:\Program Files\Windows Defender
      [16/01/2011 01:03 p.m.] [14/07/2009 04:08 a.m.] [D] C:\Program Files\Windows Journal
      [04/12/2012 03:48 p.m.] [04/12/2012 03:47 p.m.] [D] C:\Program Files\Windows Live
      [16/01/2011 01:03 p.m.] [13/07/2009 09:37 p.m.] [D] C:\Program Files\Windows Mail
      [16/01/2011 01:03 p.m.] [13/07/2009 11:52 p.m.] [D] C:\Program Files\Windows Media Player
      [04/12/2012 03:16 p.m.] [13/07/2009 09:37 p.m.] [D] C:\Program Files\Windows NT
      [16/01/2011 01:03 p.m.] [13/07/2009 11:52 p.m.] [D] C:\Program Files\Windows Photo Viewer
      [16/01/2011 01:03 p.m.] [13/07/2009 11:52 p.m.] [D] C:\Program Files\Windows Portable Devices
      [16/01/2011 01:03 p.m.] [13/07/2009 11:52 p.m.] [D] C:\Program Files\Windows Sidebar
      [04/12/2012 03:36 p.m.] [04/12/2012 03:36 p.m.] [D] C:\Program Files\Winrar
      [13/07/2009 11:53 p.m.] [13/07/2009 11:53 p.m.] [HSDLI] C:\ProgramData\Application Data
      [04/12/2012 03:16 p.m.] [04/12/2012 03:16 p.m.] [HSDLI] C:\ProgramData\Datos de programa
      [13/07/2009 11:53 p.m.] [13/07/2009 11:53 p.m.] [HSDLI] C:\ProgramData\Desktop
      [07/01/2013 01:10 a.m.] [07/01/2013 01:00 a.m.] [DI] C:\ProgramData\DivX
      [04/12/2012 03:16 p.m.] [04/12/2012 03:16 p.m.] [HSDLI] C:\ProgramData\Documentos
      [13/07/2009 11:53 p.m.] [13/07/2009 11:53 p.m.] [HSDLI] C:\ProgramData\Documents
      [04/12/2012 03:16 p.m.] [04/12/2012 03:16 p.m.] [HSDLI] C:\ProgramData\Escritorio
      [10/12/2012 10:30 a.m.] [09/12/2012 11:08 p.m.] [DI] C:\ProgramData\FarmFrenzy2
      [13/07/2009 11:53 p.m.] [13/07/2009 11:53 p.m.] [HSDLI] C:\ProgramData\Favorites
      [04/12/2012 03:16 p.m.] [04/12/2012 03:16 p.m.] [HSDLI] C:\ProgramData\Favoritos
      [10/12/2012 09:20 a.m.] [10/12/2012 09:20 a.m.] [DI] C:\ProgramData\GameHouse
      [04/12/2012 03:37 p.m.] [04/12/2012 03:37 p.m.] [DI] C:\ProgramData\Google
      [04/12/2012 06:58 p.m.] [04/12/2012 06:58 p.m.] [DI] C:\ProgramData\IObit
      [12/01/2013 12:40 a.m.] [12/01/2013 12:40 a.m.] [DI] C:\ProgramData\Malwarebytes
      [06/01/2013 11:00 p.m.] [06/01/2013 11:00 p.m.] [DI] C:\ProgramData\McAfee
      [04/12/2012 03:16 p.m.] [04/12/2012 03:16 p.m.] [HSDLI] C:\ProgramData\Menú Inicio
      [04/12/2012 04:23 p.m.] [13/07/2009 09:37 p.m.] [SDI] C:\ProgramData\Microsoft
      [04/12/2012 04:10 p.m.] [04/12/2012 03:58 p.m.] [DI] C:\ProgramData\Microsoft Help
      [04/12/2012 04:19 p.m.] [04/12/2012 04:19 p.m.] [DI] C:\ProgramData\Mozilla
      [04/12/2012 03:16 p.m.] [04/12/2012 03:16 p.m.] [HSDLI] C:\ProgramData\Plantillas
      [10/01/2013 04:31 a.m.] [07/01/2013 11:47 p.m.] [DI] C:\ProgramData\PopCap Games
      [06/12/2012 12:26 p.m.] [06/12/2012 12:23 p.m.] [DI] C:\ProgramData\Skype
      [13/07/2009 11:53 p.m.] [13/07/2009 11:53 p.m.] [HSDLI] C:\ProgramData\Start Menu
      [04/12/2012 03:51 p.m.] [04/12/2012 03:51 p.m.] [DI] C:\ProgramData\Sun
      [13/07/2009 11:53 p.m.] [13/07/2009 11:53 p.m.] [HSDLI] C:\ProgramData\Templates

      ==================== EOF ==================

    6. #6
      Usuario Avatar de Hasv
      Registrado
      ene 2013
      Ubicación
      Peru
      Mensajes
      12

      Re: Cuando ejecuto cualquier programa tarda demasiado

      el ultimo
      OTL logfile created on: 16/01/2013 02:11:15 a.m. - Run 2
      OTL by OldTimer - Version 3.2.69.0 Folder = D:\Downloads
      Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.7601.17514)
      Locale: 0000280a | Country: Perú | Language: ESR | Date Format: dd/MM/yyyy

      1014.27 Mb Total Physical Memory | 269.49 Mb Available Physical Memory | 26.57% Memory free
      1.99 Gb Paging File | 1.24 Gb Available in Paging File | 62.07% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 48.73 Gb Total Space | 34.91 Gb Free Space | 71.64% Space Free | Partition Type: NTFS
      Drive D: | 100.22 Gb Total Space | 57.17 Gb Free Space | 57.05% Space Free | Partition Type: NTFS

      Computer Name: HASV-PC | User Name: HASV | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Archivos de programa\Process Hacker 2\ProcessHacker.exe (wj32)
      PRC - D:\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\Google\Chrome\Application\chrome.exe (Google Inc.)
      PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)
      PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      PRC - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corp.)


      ========== Modules (No Company Name) ==========

      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\ppgooglenaclpluginchrome.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\pdf.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\libglesv2.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\libegl.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.52\ffmpegsumo.dll ()


      ========== Services (SafeList) ==========

      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (MBAMService) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (SkypeUpdate) -- C:\Archivos de programa\Skype\Updater\Updater.exe (Skype Technologies)
      SRV - (WMPNetworkSvc) -- C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      SRV - (WinHttpAutoProxySvc) -- winhttp.dll (Microsoft Corporation)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      SRV - (ose) -- C:\Archivos de programa\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
      SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
      SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
      SRV - (WinDefend) -- C:\Archivos de programa\Windows Defender\MpSvc.dll (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
      DRV - (huawei_enumerator) -- system32\DRIVERS\ew_jubusenum.sys File not found
      DRV - (huawei_cdcacm) -- system32\DRIVERS\ew_jucdcacm.sys File not found
      DRV - (ew_hwusbdev) -- system32\DRIVERS\ew_hwusbdev.sys File not found
      DRV - (KProcessHacker2) -- C:\Archivos de programa\Process Hacker 2\kprocesshacker.sys (wj32)
      DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
      DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
      DRV - (tsusbhub) -- C:\Windows\System32\drivers\tsusbhub.sys (Microsoft Corporation)
      DRV - (Synth3dVsc) -- C:\Windows\System32\drivers\Synth3dVsc.sys (Microsoft Corporation)
      DRV - (dmvsc) -- C:\Windows\System32\drivers\dmvsc.sys (Microsoft Corporation)
      DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
      DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
      DRV - (terminpt) -- C:\Windows\System32\drivers\terminpt.sys (Microsoft Corporation)
      DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
      DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
      DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
      DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV - (PfFilter) -- C:\Archivos de programa\Password Folder\pffilter.sys (IObit Information Technology)
      DRV - (IntcHdmiAddService) -- C:\Windows\System32\drivers\IntcHdmi.sys (Intel(R) Corporation)
      DRV - (Serial) -- C:\Windows\System32\drivers\serial.sys (Brother Industries Ltd.)
      DRV - (netr28u) -- C:\Windows\System32\drivers\netr28u.sys (Ralink Technology Corp.)
      DRV - (EMSC) -- C:\Windows\System32\drivers\EMSC.sys ()


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = Hotmail, Messenger y más en MSN Latinoamérica | Noticias, deportes, entretenimiento, videos y más
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-pe
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 7E 3A EB 45 1B D3 CD 01 [binary data]
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKU\S-1-5-21-1128892658-1411016870-446068731-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


      ========== FireFox ==========

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\HASV\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013/01/07 0126 | 000,000,000 | ---D | M]

      [2013/01/06 19:59:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HASV\AppData\Roaming\mozilla\Firefox\Profiles\extensions
      [2012/11/06 11:19:24 | 000,214,034 | ---- | M] () (No name found) -- C:\Users\HASV\AppData\Roaming\mozilla\firefox\profiles\extensions\[email protected]

      ========== Chrome ==========

      CHR - homepage: Google
      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.52\pdf.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL
      CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL
      CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
      CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
      CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
      CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\HASV\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
      CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll
      CHR - plugin: Java Deployment Toolkit 7.0.100.18 (Enabled) = C:\Windows\system32\npDeployJava1.dll
      CHR - Extension: \u003Cvideo\u003E de HTML5 de DivX Plus Web Player = C:\Users\HASV\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\

      O1 HOSTS File: ([2012/12/04 1656 | 000,000,864 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com
      O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Archivos de programa\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
      O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Archivos de programa\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
      O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (no name) - {F1AF26F8-1828-4279-ABCE-074EF3235BD7} - No CLSID value found.
      O4 - HKU\S-1-5-21-1128892658-1411016870-446068731-1000..\Run: [Process Hacker 2] C:\Program Files\Process Hacker 2\ProcessHacker.exe (wj32)
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
      O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: E&xportar a Microsoft Excel - C:\Archivos de programa\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9 - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Archivos de programa\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O13 - gopher Prefix: missing
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O16 - DPF: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.48.225.130 200.48.225.146
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AA09A89E-369E-468E-8070-AF637469502E}: DhcpNameServer = 200.48.225.130 200.48.225.146
      O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
      O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Archivos de programa\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Archivos de programa\Common Files\Skype\Skype4COM.dll (Skype Technologies)
      O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
      O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
      O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
      O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O32 - AutoRun File - [2011/12/02 22:16:45 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ NTFS ]
      O33 - MountPoints2\{01f0ef1b-3e68-11e2-b92e-00225f7dd8bb}\Shell - "" = AutoRun
      O33 - MountPoints2\{01f0ef1b-3e68-11e2-b92e-00225f7dd8bb}\Shell\AutoRun\command - "" = E:\AutoRun.exe
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs: FastUserSwitchingCompatibility - File not found
      NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
      NetSvcs: Nla - File not found
      NetSvcs: Ntmssvc - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: SRService - File not found
      NetSvcs: WmdmPmSp - File not found
      NetSvcs: LogonHours - File not found
      NetSvcs: PCAudit - File not found
      NetSvcs: helpsvc - File not found
      NetSvcs: uploadmgr - File not found

      MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Orbit.lnk - C:\Archivos de programa\Orbitdownloader\orbitdm.exe - (Orbitdownloader.com)
      MsConfig - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
      MsConfig - StartUpReg: DivXMediaServer - hkey= - key= - C:\Archivos de programa\DivX\DivX Media Server\DivXMediaServer.exe ()
      MsConfig - StartUpReg: DivXUpdate - hkey= - key= - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
      MsConfig - StartUpReg: ETDWare - hkey= - key= - C:\Archivos de programa\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
      MsConfig - StartUpReg: Facebook Update - hkey= - key= - C:\Users\HASV\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
      MsConfig - StartUpReg: HotKeysCmds - hkey= - key= - File not found
      MsConfig - StartUpReg: IgfxExt - hkey= - key= - File not found
      MsConfig - StartUpReg: IgfxTray - hkey= - key= - File not found
      MsConfig - StartUpReg: msnmsgr - hkey= - key= - C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
      MsConfig - StartUpReg: Skype - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
      MsConfig - StartUpReg: SMBTray - hkey= - key= - File not found
      MsConfig - StartUpReg: SunJavaUpdateSched - hkey= - key= - File not found
      MsConfig - StartUpReg: UCam_Menu - hkey= - key= - File not found
      MsConfig - State: "bootini" - 2
      MsConfig - State: "startup" - 2

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/01/12 00:48:52 | 000,000,000 | ---D | C] -- C:\_AT-Destroyer
      [2013/01/12 00:40:27 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Malwarebytes
      [2013/01/12 00:40:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2013/01/12 00:40:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2013/01/12 00:40:05 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
      [2013/01/12 00:40:05 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
      [2013/01/10 04:26:11 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Process Hacker 2
      [2013/01/10 04:16:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2
      [2013/01/10 04:16:12 | 000,000,000 | ---D | C] -- C:\Program Files\Process Hacker 2
      [2013/01/10 04:13:56 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\Programs
      [2013/01/10 03:35:43 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\de.makesoft.twhirl.0EA062BC275E7ED1E6EC3762EFFD73C7158ADF33.1
      [2013/01/10 03:35:38 | 000,000,000 | ---D | C] -- C:\Program Files\twhirl
      [2013/01/07 23:47:03 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
      [2013/01/07 23:47:03 | 000,000,000 | ---D | C] -- C:\Program Files\PopCap Games
      [2013/01/07 01:34:02 | 000,000,000 | ---D | C] -- C:\Program Files\Elantech
      [2013/01/07 01:33:22 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\InstallShield
      [2013/01/07 01:33:01 | 003,939,840 | ---- | C] (ELAN Microelectronics Corp.) -- C:\Windows\System32\ETDUI.cpl
      [2013/01/07 01:33:00 | 000,000,000 | ---D | C] -- C:\dell
      [2013/01/07 01:11:41 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\DDMSettings
      [2013/01/07 01:08:02 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\DivX
      [2013/01/07 01:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
      [2013/01/07 01:06:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
      [2013/01/07 01:01:50 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
      [2013/01/07 01:00:43 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
      [2013/01/07 00:52:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\Adobe
      [2013/01/07 00:29:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
      [2013/01/07 00:24:14 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\Apps
      [2013/01/07 00:24:13 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\Deployment
      [2013/01/06 23:37:27 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
      [2013/01/06 23:37:27 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
      [2013/01/06 23:00:06 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
      [2013/01/06 22:03:56 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
      [2013/01/06 20:18:17 | 000,000,000 | ---D | C] -- C:\Temp
      [2013/01/06 19:59:42 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Local\PutLockerDownloader
      [2013/01/06 19:59:12 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Mozilla
      [2013/01/06 19:58:43 | 000,000,000 | ---D | C] -- C:\Users\HASV\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PutLockerDownloader.com
      [2013/01/06 19:14:59 | 000,000,000 | ---D | C] -- C:\Users\HASV\Desktop\WITFS
      [2013/01/06 18:17:30 | 000,000,000 | ---D | C] -- C:\Users\HASV\Downloads
      [2013/01/03 01:39:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orbit
      [2012/12/29 21:56:33 | 000,000,000 | ---D | C] -- C:\Windows\Sun

      ========== Files - Modified Within 30 Days ==========

      [2013/01/16 02:04:00 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2013/01/16 02:01:56 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/01/16 02:01:56 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/01/16 01:55:05 | 000,001,080 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/01/16 01:54:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/01/16 01:54:00 | 797,655,040 | -HS- | M] () -- C:\hiberfil.sys
      [2013/01/16 01:31:06 | 000,001,084 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/01/16 00:32:08 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1128892658-1411016870-446068731-1000UA.job
      [2013/01/14 21:32:02 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1128892658-1411016870-446068731-1000Core.job
      [2013/01/14 12:18:18 | 000,013,130 | ---- | M] () -- C:\Users\HASV\Desktop\AT-Destroyer - Acceso directo.lnk
      [2013/01/14 12:09:29 | 000,001,994 | ---- | M] () -- C:\Users\HASV\Desktop\Process Hacker 2.lnk
      [2013/01/12 00:40:10 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2013/01/11 23:41:33 | 000,002,201 | ---- | M] () -- C:\Users\HASV\Google Chrome.lnk
      [2013/01/10 11:05:35 | 000,702,316 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2013/01/10 11:05:35 | 000,614,236 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2013/01/10 11:05:35 | 000,138,042 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2013/01/10 11:05:35 | 000,106,356 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2013/01/10 03:35:39 | 000,000,817 | ---- | M] () -- C:\Users\Public\Desktop\twhirl.lnk
      [2013/01/07 0134 | 000,001,546 | ---- | M] () -- C:\Users\HASV\Desktop\DivX Movies.lnk
      [2013/01/07 01:08:21 | 000,001,082 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
      [2013/01/07 01:07:45 | 000,001,122 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
      [2013/01/06 20:52:29 | 000,001,657 | ---- | M] () -- C:\Windows\System32\InstallUtil.InstallLog
      [2013/01/06 20:02:47 | 000,000,000 | ---- | M] () -- C:\Windows\System32\extensions.sqlite
      [2013/01/06 20:00:52 | 000,012,717 | ---- | M] () -- C:\Users\HASV\Desktop\WP.rar
      [2013/01/06 18:22:30 | 006,555,147 | ---- | M] () -- C:\Users\HASV\Desktop\WITFS.rar
      [2013/01/03 01:39:11 | 000,001,009 | ---- | M] () -- C:\Users\HASV\Desktop\Orbit.lnk

      ========== Files Created - No Company Name ==========

      [2013/01/14 12:18:18 | 000,013,130 | ---- | C] () -- C:\Users\HASV\Desktop\AT-Destroyer - Acceso directo.lnk
      [2013/01/12 00:40:10 | 000,001,067 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2013/01/10 04:16:14 | 000,001,994 | ---- | C] () -- C:\Users\HASV\Desktop\Process Hacker 2.lnk
      [2013/01/10 03:35:39 | 000,000,829 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\twhirl.lnk
      [2013/01/10 03:35:39 | 000,000,817 | ---- | C] () -- C:\Users\Public\Desktop\twhirl.lnk
      [2013/01/07 0134 | 000,001,546 | ---- | C] () -- C:\Users\HASV\Desktop\DivX Movies.lnk
      [2013/01/07 01:08:21 | 000,001,082 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
      [2013/01/07 01:07:45 | 000,001,122 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
      [2013/01/07 00:29:38 | 000,002,201 | ---- | C] () -- C:\Users\HASV\Google Chrome.lnk
      [2013/01/07 00:26:11 | 000,001,084 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/01/07 00:26:10 | 000,001,080 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/01/06 20:52:26 | 000,001,657 | ---- | C] () -- C:\Windows\System32\InstallUtil.InstallLog
      [2013/01/06 20:02:47 | 000,000,000 | ---- | C] () -- C:\Windows\System32\extensions.sqlite
      [2013/01/06 20:00:52 | 000,012,717 | ---- | C] () -- C:\Users\HASV\Desktop\WP.rar
      [2013/01/06 19:14:49 | 006,555,147 | ---- | C] () -- C:\Users\HASV\Desktop\WITFS.rar
      [2013/01/03 01:39:11 | 000,001,009 | ---- | C] () -- C:\Users\HASV\Desktop\Orbit.lnk
      [2012/12/14 20:34:54 | 000,110,592 | ---- | C] () -- C:\Windows\System32\EMSC.dll
      [2012/12/14 20:01:30 | 000,000,017 | ---- | C] () -- C:\Users\HASV\AppData\Local\resmon.resmoncfg
      [2012/12/09 23:06:44 | 000,002,110 | ---- | C] () -- C:\Users\HASV\Farm Frenzy 2.lnk
      [2012/12/04 15:30:55 | 000,013,020 | ---- | C] () -- C:\Windows\System32\lpgun.ini
      [2012/12/04 14:08:37 | 000,004,608 | ---- | C] () -- C:\Windows\System32\HdmiCoin.dll

      ========== ZeroAccess Check ==========

      [2009/07/13 23:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2011/01/16 12:55:50 | 012,872,192 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2011/01/16 12:56:10 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 20:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2013/01/10 03:35:43 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\de.makesoft.twhirl.0EA062BC275E7ED1E6EC3762EFFD73C7158ADF33.1
      [2012/12/10 10:41:31 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\DeepVoyage
      [2012/12/10 09:20:49 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\EleFun Games
      [2013/01/15 21:16:52 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Orbit
      [2013/01/10 04:26:11 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Process Hacker 2
      [2012/12/04 18:36:16 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\ProgSense
      [2012/12/04 18:38:56 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Research In Motion
      [2012/12/04 18:26:22 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Sony
      [2012/12/04 19:20:59 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Telefónica

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2013/01/16 01:52:59 | 000,011,655 | ---- | M] () -- C:\AT-Destroyer.txt
      [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
      [2009/06/10 16:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
      [2013/01/16 01:54:00 | 797,655,040 | -HS- | M] () -- C:\hiberfil.sys
      [2013/01/16 01:54:07 | 1073,741,824 | -HS- | M] () -- C:\pagefile.sys

      < End of report >

    7. #7
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.690

      Re: Cuando ejecuto cualquier programa tarda demasiado

      Perdona el retraso pero tuve que salir urgentemente.

      Ahora sigue estos pasos :

      MUY Importante ~ Realiza una copia de seguridad del registro con >> Erunt.

      Y después ejecuta de nuevo OTL.exe

      Copia y Pega el código que está dentro del recuadro de abajo en la sección Análisis Personalizado / Código de Reparación.

      Código:
      :OTL
      DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
      DRV - (huawei_enumerator) -- system32\DRIVERS\ew_jubusenum.sys File not found
      DRV - (huawei_cdcacm) -- system32\DRIVERS\ew_jucdcacm.sys File not found
      DRV - (ew_hwusbdev) -- system32\DRIVERS\ew_hwusbdev.sys File not found
      O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Archivos de programa\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
      O2 - BHO: (no name) - {F1AF26F8-1828-4279-ABCE-074EF3235BD7} - No CLSID value found.
      O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
      O13 - gopher Prefix: missing
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O16 - DPF: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jin...ndows-i586.cab (Reg Error: Key error.)
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O33 - MountPoints2\{01f0ef1b-3e68-11e2-b92e-00225f7dd8bb}\Shell - "" = AutoRun
      O33 - MountPoints2\{01f0ef1b-3e68-11e2-b92e-00225f7dd8bb}\Shell\AutoRun\command - "" = E:\AutoRun.exe
      MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Orbit.lnk - C:\Archivos de programa\Orbitdownloader\orbitdm.exe - (Orbitdownloader.com)
      MsConfig - StartUpReg: Facebook Update - hkey= - key= - C:\Users\HASV\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
      MsConfig - StartUpReg: HotKeysCmds - hkey= - key= - File not found
      MsConfig - StartUpReg: IgfxExt - hkey= - key= - File not found
      MsConfig - StartUpReg: IgfxTray - hkey= - key= - File not found
      MsConfig - StartUpReg: SMBTray - hkey= - key= - File not found
      MsConfig - StartUpReg: SunJavaUpdateSched - hkey= - key= - File not found
      MsConfig - StartUpReg: UCam_Menu - hkey= - key= - File not found
      [2013/01/03 01:39:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orbit
      [2013/01/16 00:32:08 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1128892658-1411016870-446068731-1000UA.job
      [2013/01/14 21:32:02 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1128892658-1411016870-446068731-1000Core.job
      [2013/01/03 01:39:11 | 000,001,009 | ---- | M] () -- C:\Users\HASV\Desktop\Orbit.lnk
      [2013/01/03 01:39:11 | 000,001,009 | ---- | C] () -- C:\Users\HASV\Desktop\Orbit.lnk
      [2013/01/15 21:16:52 | 000,000,000 | ---D | M] -- C:\Users\HASV\AppData\Roaming\Orbit
      :Files
      ipconfig /flushdns /c
      ipconfig /renew /c
      :Commands
      [PURITY]
      [EMPTYFLASH]
      [EMPTYTEMP]
      [RESETHOSTS]
      Presiona el Botón Reparar para lanzar la eliminación. Después presionas en OK.

      OTL va a Reiniciar el ordenador para completar la eliminación.

      Guardas el nuevo reporte generado, y lo copias y pegas en tu próxima respuesta, coméntanos también como sigue el ordenador ahora, en relación al problema planteado.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de Hasv
      Registrado
      ene 2013
      Ubicación
      Peru
      Mensajes
      12

      Re: Cuando ejecuto cualquier programa tarda demasiado

      Hola Javierhf

      se cayo la compu mini hace tres dias tuve que traer una laptop que uso en el trabajo la misma desde donde te escribo este mail.

      ahora cada ves que la enciendo( la inspiron mini de dell) aparece el siguiente mensaje


      Intel UNDI . PXE-2. 1 (build 082)
      Copyright (C) 1997-2000 Intel Corporation

      This Product is covered by one more of the following patents :
      US5, 307,459, US5, 434, 872, US5, 732, 094, US6, 570, 884, US6, 115, 776 and
      US6, 327, 625

      For realtek RTL8101E/8102E PCI-E Ethernet Controller v1.10 (080722)
      PXE-E61 : Media test failure, check cable
      PXE-M0F :Exiting PXE ROM.
      Operating System not found


      y lo mismo se repite debajo como diez veces

    9. #9
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.690

      Re: Cuando ejecuto cualquier programa tarda demasiado

      Pues ese problema, como indicas, lo tendrás que hacer revisar por un técnico, lo mas probable es que tengas dañado el disco duro.

      Cuando lo tengas resuelto ya nos dices que ha pasado y si podemos seguir con las comprobaciones.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.