• Registrarse
  • Iniciar sesión


  • Página 2 de 3 PrimeroPrimero 123 ÚltimoÚltimo
    Resultados 11 al 20 de 22

    Centro de seguridad de windows no se puede initiar+Google redirect sobre publicidad

    Pues ya he probado si se activa registro de evento sigue igual... En antivirus no vale, bueno vale pero no aranca la publicidad aparece de nuevo ,es como antes ...algo tiene que tener este servicio.....

    1. #11
      Usuario Avatar de Controladoru
      Registrado
      sep 2012
      Ubicación
      congo
      Mensajes
      17

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      Pues ya he probado si se activa registro de evento sigue igual... En antivirus no vale, bueno vale pero no aranca la publicidad aparece de nuevo ,es como antes ...algo tiene que tener este servicio..
      Última edición por Controladoru fecha: 21/01/13 a las 17:55:10

    2. #12
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      Descarga > OTL By OldTimer | InfoSpyware

      Para ejecutar OTL haz lo siguiente:


      • Cierra todos programas que tengas abiertos y haz doble click en el icono de OTL para ejecutarlo.
      • Déjalo correr y espera a que aparezca el menú de OTL.
      • Cuando salga el menú de OTL, debes cambiar debajo de: "Tipo de Análisis" marcando Resultado Mínimo.
      • Marca la casilla Analizar Todos.
      • Marca las opciones: Buscar LOP y Buscar Purity.
      • Marca las opciones: Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
      • Copia y pega las líneas del siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

        NOTA: No copiar la palabra Código.

      Código:
       
      netsvcs
      msconfig
      %SYSTEMDRIVE%\*.*
      CREATERESTOREPOINT

      • Por favor no cambies/modifiques el resto de la configuración a no ser que te lo solicite algún integrante del staff
      • Presiona el botón .
      • Una vez finalizado el examen aparecerán 2 archivos, OTL.Txt y Extras.Txt. Dichos archivos estarán ubicados en el lugar donde OTL.exe ha sido descargado.
      • Copiar y pegar el contenido del archivo OTL.txt en tu próxima respuesta.


      Recuerda que en tu próxima respuesta:



      • Pon el informe de: OTL.txt


      Salu2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #13
      Usuario Avatar de Controladoru
      Registrado
      sep 2012
      Ubicación
      congo
      Mensajes
      17

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      OTL logfile created on: 21/01/2013 23:02:21 - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Alina\Downloads
      64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

      3,93 Gb Total Physical Memory | 2,39 Gb Available Physical Memory | 60,67% Memory free
      7,86 Gb Paging File | 5,60 Gb Available in Paging File | 71,24% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 452,65 Gb Total Space | 364,51 Gb Free Space | 80,53% Space Free | Partition Type: NTFS

      Computer Name: ALINA-PC | User Name: Alina | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Alina\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
      PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
      PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe (TeamViewer GmbH)
      PRC - C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe (TeamViewer GmbH)
      PRC - C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
      PRC - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
      PRC - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
      PRC - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
      PRC - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
      PRC - C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe ()
      PRC - C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
      PRC - C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe ()
      PRC - C:\Program Files (x86)\Logitech\Vid HD\Vid.exe (Logitech Inc.)
      PRC - C:\Program Files (x86)\Logitech\LWS\LU\LogitechUpdate.exe (Logitech, Inc.)
      PRC - C:\Program Files (x86)\Logitech\LWS\LU\LULnchr.exe (Logitech, Inc.)
      PRC - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
      PRC - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
      PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
      PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
      PRC - C:\Program Files (x86)\Launch Manager\LMworker.exe (Dritek System Inc.)
      PRC - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (Egis Technology Inc.)
      PRC - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe (Egis Technology Inc.)
      PRC - C:\Archivos de programa\Acer\Acer Updater\UpdaterService.exe (Acer Group)
      PRC - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)
      PRC - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
      PRC - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\Users\Alina\AppData\Local\Temp\bad4021e-8b96-4726-a482-7caebf5bc001\CliSecureRT.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\5d5b1b0c6e8a714de39a06e3b61f35fe\System.Management.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\b454f5723ec86048063fe19d4267d9e8\System.Runtime.Remoting.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\40c7a89fe2cbf3c12a2c39e034da54cf\System.Xaml.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\0ac577a8ad6528ff03b50db5eeeac8be\System.Web.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\b8e60f81fd56934c9f9da7b15bee3376\PresentationFramework.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\af7e2da8fcdb0d788cea0638e157c54b\System.Windows.Forms.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\932901ff0ad5e365ffbe705d7459a37e\PresentationCore.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\78ecbee4a7444353dce52afb9d9d795c\System.Drawing.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\8abaedf6aecb073b22f8801aa0b8babf\WindowsBase.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\60674dde4b56087c189f576f36f6720f\PresentationFramework.Aero.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\b519f42484e1d488662a9a8a87cb8849\System.Core.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\fc476bbac36944e352c2f547352ffa64\System.Xml.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\f93dca0e4baa1dcb37cf75392b7c89da\System.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\6a1ccc1e1a79ce267d3d1808af382cd6\mscorlib.ni.dll ()
      MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
      MOD - C:\Program Files (x86)\Yahoo!\Messenger\yui.dll ()
      MOD - C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll ()
      MOD - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
      MOD - C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll ()
      MOD - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
      MOD - C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll ()
      MOD - C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe ()
      MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll ()
      MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll ()
      MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll ()
      MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll ()
      MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll ()
      MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\vpxmd.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\SDL.dll ()
      MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_es_b77a5c561934e089\mscorlib.resources.dll ()
      MOD - C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_es_b77a5c561934e089\System.Runtime.Remoting.resources.dll ()
      MOD - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll ()
      MOD - C:\Program Files (x86)\Launch Manager\CdDirIo.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\QtNetwork4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\QtCore4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qjpeg4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qico4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qgif4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\QtWebKit4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\QtXml4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\QtSql4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\QtOpenGL4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\QtGui4.dll ()
      MOD - C:\Program Files (x86)\Logitech\Vid HD\phonon4.dll ()


      ========== Services (SafeList) ==========

      SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (TeamViewer8) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
      SRV - (NisSrv) -- c:\Archivos de programa\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
      SRV - (MsMpSvc) -- c:\Archivos de programa\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
      SRV - (UMVPFSrv) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (NTI IScheduleSvc) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
      SRV - (DsiWMIService) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
      SRV - (ePowerSvc) -- C:\Archivos de programa\Acer\Acer ePower Management\ePowerSvc.exe (Acer Incorporated)
      SRV - (MWLService) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe (Egis Technology Inc.)
      SRV - (Updater Service) -- C:\Archivos de programa\Acer\Acer Updater\UpdaterService.exe (Acer Group)
      SRV - (GREGService) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)
      SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
      SRV - (YahooAUService) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
      SRV - (EPSON_EB_RPCV4_01) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE (SEIKO EPSON CORPORATION)
      SRV - (EPSON_PM_RPCV4_01) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE (SEIKO EPSON CORPORATION)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
      DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation)
      DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation)
      DRV:64bit: - (ssadserd) -- C:\Windows\SysNative\drivers\ssadserd.sys (MCCI Corporation)
      DRV:64bit: - (androidusb) -- C:\Windows\SysNative\drivers\ssadadb.sys (Google Inc)
      DRV:64bit: - (ssadmdfl) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation)
      DRV:64bit: - (LVUVC64) -- C:\Windows\SysNative\drivers\lvuvc64.sys (Logitech Inc.)
      DRV:64bit: - (LVRS64) -- C:\Windows\SysNative\drivers\lvrs64.sys (Logitech Inc.)
      DRV:64bit: - (teamviewervpn) -- C:\Windows\SysNative\drivers\teamviewervpn.sys (TeamViewer GmbH)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (L1C) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.)
      DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
      DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
      DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
      DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation)
      DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV:64bit: - (mwlPSDVDisk) -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys (Egis Technology Inc.)
      DRV:64bit: - (mwlPSDFilter) -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys (Egis Technology Inc.)
      DRV:64bit: - (mwlPSDNServ) -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys (Egis Technology Inc.)
      DRV:64bit: - (NTIDrvr) -- C:\Windows\SysNative\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
      DRV:64bit: - (UBHelper) -- C:\Windows\SysNative\drivers\UBHelper.sys (NewTech Infosystems Corporation)
      DRV - (RSUSBSTOR) -- C:\Windows\SysWOW64\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\URLSearchHook: {77d0b2ea-9fb1-491c-bd40-04e2232bdd22} - C:\Program Files (x86)\TvOnline_by_Webdessign\prxtbTvO0.dll (Conduit Ltd.)
      IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
      IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
      IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7


      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_esES428
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1619836
      IE - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultenginename: "(Google)"
      FF - prefs.js..browser.search.defaulturl: "www.Google.com"
      FF - prefs.js..browser.search.order.1: "(Google)"
      FF - prefs.js..browser.search.selectedEngine: "Google"
      FF - prefs.js..browser.startup.homepage: "http://google.com"
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1
      FF - prefs.js..keyword.URL: "https://www.google.com/search?q="
      FF - user.js - File not found

      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
      FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/wpi,version=1.4: C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
      FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
      FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/wpi,version=1.4: C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll ()
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Alina\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll File not found

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\SearchPredict\PRFireFox
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}: C:\Program Files (x86)\SPEEDbit Video Downloader\SPFireFox
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/09/05 15:40:31 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/20 11:01:30 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/01/19 08:34:24 | 000,000,000 | ---D | M]

      [2011/12/03 14:18:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alina\AppData\Roaming\mozilla\Extensions
      [2011/12/03 14:18:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alina\AppData\Roaming\mozilla\Extensions\[email protected]
      [2013/01/20 10:38:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
      [2013/01/19 08:34:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
      [2013/01/19 08:34:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
      [2013/01/20 11:01:30 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
      [2012/09/27 06:53:23 | 000,003,769 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
      [2013/01/05 04:45:12 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
      [2013/01/05 04:45:12 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
      CHR - homepage: Google
      CHR - Extension: No name found = C:\Users\Alina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
      CHR - Extension: No name found = C:\Users\Alina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
      CHR - Extension: No name found = C:\Users\Alina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeipglcoefbggekpejhidgjkafgkcma\0.0.2_0\
      CHR - Extension: No name found = C:\Users\Alina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnnhdiolpfgjbgagkbmdfidfofancmee\0.0.12_0\
      CHR - Extension: No name found = C:\Users\Alina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgnfglneodecmnackdjdnbbbodpckidj\1.0.1_0\
      CHR - Extension: No name found = C:\Users\Alina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
      CHR - Extension: No name found = C:\Users\Alina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

      O1 HOSTS File: ([2013/01/19 23:55:25 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 localhost
      O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
      O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
      O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)
      O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
      O2 - BHO: (TvOnline by Webdessign Toolbar) - {77d0b2ea-9fb1-491c-bd40-04e2232bdd22} - C:\Program Files (x86)\TvOnline_by_Webdessign\prxtbTvO0.dll (Conduit Ltd.)
      O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
      O3 - HKLM\..\Toolbar: (TvOnline by Webdessign Toolbar) - {77d0b2ea-9fb1-491c-bd40-04e2232bdd22} - C:\Program Files (x86)\TvOnline_by_Webdessign\prxtbTvO0.dll (Conduit Ltd.)
      O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
      O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)
      O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
      O3 - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\..\Toolbar\WebBrowser: (TvOnline by Webdessign Toolbar) - {77D0B2EA-9FB1-491C-BD40-04E2232BDD22} - C:\Program Files (x86)\TvOnline_by_Webdessign\prxtbTvO0.dll (Conduit Ltd.)
      O4:64bit: - HKLM..\Run: [Acer ePower Management] C:\Archivos de programa\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
      O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
      O4:64bit: - HKLM..\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (Egis Technology Inc.)
      O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
      O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
      O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
      O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
      O4 - HKLM..\Run: [EgisUpdate] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
      O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
      O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
      O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
      O4 - HKLM..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
      O4 - HKLM..\Run: [SuiteTray] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
      O4 - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe (Samsung)
      O4 - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
      O4 - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001..\Run: [Logitech Vid] C:\Program Files (x86)\Logitech\Vid HD\Vid.exe (Logitech Inc.)
      O4 - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001..\Run: [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\MESSEN~1\YahooMessenger.exe" -quiet File not found
      O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
      O7 - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
      O7 - HKU\S-1-5-21-2499783195-3634201037-1872494755-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
      O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000 File not found
      O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found
      O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found
      O9 - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
      O9 - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_30)
      O16:64bit: - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_30)
      O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_30)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_37)
      O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_37)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_37)
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/ge...sh/swflash.cab (Shockwave Flash Object)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{56AFC3AA-A5AC-4C8A-948C-160F423B25E1}: DhcpNameServer = 192.168.42.129
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FF596C1C-F449-43F4-A834-88E949B11BC0}: DhcpNameServer = 192.168.1.1
      O18:64bit: - Protocol\Handler\cdo - No CLSID value found
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
      O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
      O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found
      O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
      O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
      O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
      O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
      O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2013/01/20 11:52:02 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = ComFile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/01/20 18:00:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
      [2013/01/20 18:00:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
      [2013/01/20 16:56:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      [2013/01/20 16:56:37 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
      [2013/01/20 15:30:12 | 000,000,000 | ---D | C] -- C:\_AT-Destroyer
      [2013/01/20 15:15:02 | 000,000,000 | ---D | C] -- C:\_PoliFix
      [2013/01/20 14:20:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
      [2013/01/20 14:15:05 | 000,000,000 | ---D | C] -- C:\Users\Alina\Desktop\tdsskiller
      [2013/01/20 11:51:39 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
      [2013/01/20 11:09:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
      [2013/01/20 10:39:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
      [2013/01/20 09:35:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
      [2013/01/20 09:34:29 | 000,000,000 | ---D | C] -- C:\Users\Alina\AppData\Local\Programs
      [2013/01/19 23:55:30 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
      [2013/01/19 23:34:26 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
      [2013/01/19 23:34:26 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
      [2013/01/19 23:34:26 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
      [2013/01/19 23:34:20 | 000,000,000 | ---D | C] -- C:\ComboFix
      [2013/01/19 19:34:58 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\%APPDATA%
      [2013/01/19 08:34:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
      [2013/01/11 08:22:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox.bak
      [2013/01/07 15:04:29 | 000,000,000 | ---D | C] -- C:\Users\Alina\Desktop\pt tablou
      [2013/01/01 18:02:39 | 000,000,000 | ---D | C] -- C:\Users\Alina\Desktop\aaaa
      [2012/12/25 21:32:44 | 000,000,000 | ---D | C] -- C:\Users\Alina\Desktop\craciun 2012
      [2012/12/25 13:31:50 | 000,000,000 | ---D | C] -- C:\Users\Alina\Desktop\15
      [1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2013/01/21 22:53:08 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/01/21 22:53:08 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/01/21 22:44:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/01/21 22:44:15 | 3166,150,656 | -HS- | M] () -- C:\hiberfil.sys
      [2013/01/21 22:39:25 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/01/21 22:39:19 | 000,000,300 | ---- | M] () -- C:\Windows\tasks\Hlxw.job
      [2013/01/21 17:52:19 | 000,144,764 | ---- | M] () -- C:\Users\Alina\Desktop\543816_474450825950795_960148608_n.jpg
      [2013/01/20 18:00:25 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
      [2013/01/20 17:54:00 | 000,001,116 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2499783195-3634201037-1872494755-1001UA.job
      [2013/01/20 17:19:00 | 000,001,100 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/01/20 17:06:00 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2013/01/20 16:56:38 | 000,000,826 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2013/01/20 14:20:47 | 000,001,290 | ---- | M] () -- C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
      [2013/01/20 14:14:32 | 002,195,061 | ---- | M] () -- C:\Users\Alina\Desktop\tdsskiller.zip
      [2013/01/20 11:52:02 | 000,000,000 | ---- | M] () -- C:\autoexec.bat
      [2013/01/20 11:45:44 | 001,555,646 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2013/01/20 11:45:44 | 000,703,840 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
      [2013/01/20 11:45:44 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2013/01/20 11:45:44 | 000,137,806 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
      [2013/01/20 11:45:44 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
      [2013/01/20 11:38:56 | 000,343,400 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
      [2013/01/20 10:39:03 | 000,001,155 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
      [2013/01/20 10:12:03 | 000,000,081 | ---- | M] () -- C:\Windows\wininit.ini
      [2013/01/19 23:55:25 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
      [2013/01/19 18:59:29 | 000,118,784 | RHS- | M] () -- C:\Windows\SysWow64\igxpun2.dll
      [2013/01/19 08:54:00 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2499783195-3634201037-1872494755-1001Core.job
      [2013/01/15 14:11:13 | 000,002,018 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
      [2013/01/12 21:57:51 | 000,217,725 | ---- | M] () -- C:\Users\Alina\Desktop\P4G7WRUdZXm.swf
      [2013/01/02 21:15:36 | 000,003,759 | ---- | M] () -- C:\Users\Alina\Desktop\28083_509363875761536_1260060300_n.jpg
      [2012/12/25 23:34:21 | 000,000,812 | ---- | M] () -- C:\Windows\SysNative\2923955555555555555555555555555555555555555555555555555555555555555555555555555555555555555,....rfioo hjjggggggggggggggg.lnk
      [2012/12/23 19:49:11 | 001,521,169 | ---- | M] () -- C:\Users\Alina\Desktop\Codul de Procedura Penala actualizat 2012.pdf
      [1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2013/01/21 17:52:19 | 000,144,764 | ---- | C] () -- C:\Users\Alina\Desktop\543816_474450825950795_960148608_n.jpg
      [2013/01/20 18:00:20 | 000,002,121 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
      [2013/01/20 16:56:38 | 000,000,826 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2013/01/20 14:20:47 | 000,001,290 | ---- | C] () -- C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
      [2013/01/20 14:15:01 | 002,195,061 | ---- | C] () -- C:\Users\Alina\Desktop\tdsskiller.zip
      [2013/01/20 11:52:02 | 000,000,000 | ---- | C] () -- C:\autoexec.bat
      [2013/01/20 11:19:35 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
      [2013/01/20 11:04:00 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
      [2013/01/20 10:39:03 | 000,001,167 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      [2013/01/20 10:39:03 | 000,001,155 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
      [2013/01/20 10:12:03 | 000,000,081 | ---- | C] () -- C:\Windows\wininit.ini
      [2013/01/19 23:34:26 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
      [2013/01/19 23:34:26 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
      [2013/01/19 23:34:26 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
      [2013/01/19 23:34:26 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
      [2013/01/19 23:34:26 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
      [2013/01/19 19:31:39 | 000,001,912 | ---- | C] () -- C:\Windows\epplauncher.mif
      [2013/01/19 18:59:29 | 000,118,784 | RHS- | C] () -- C:\Windows\SysWow64\igxpun2.dll
      [2013/01/19 18:59:29 | 000,000,300 | ---- | C] () -- C:\Windows\tasks\Hlxw.job
      [2013/01/15 14:11:13 | 000,002,018 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
      [2013/01/12 21:57:50 | 000,217,725 | ---- | C] () -- C:\Users\Alina\Desktop\P4G7WRUdZXm.swf
      [2013/01/02 21:15:34 | 000,003,759 | ---- | C] () -- C:\Users\Alina\Desktop\28083_509363875761536_1260060300_n.jpg
      [2012/12/23 19:49:11 | 001,521,169 | ---- | C] () -- C:\Users\Alina\Desktop\Codul de Procedura Penala actualizat 2012.pdf
      [2012/09/26 1450 | 000,000,064 | ---- | C] () -- C:\Windows\SysWow64\rp_stats.dat
      [2012/09/26 1450 | 000,000,044 | ---- | C] () -- C:\Windows\SysWow64\rp_rules.dat
      [2012/09/06 07:26:51 | 000,299,618 | ---- | C] () -- C:\Users\Alina\retea.png
      [2012/02/17 16:15:51 | 000,079,837 | ---- | C] () -- C:\Users\Alina\IMG_20120209_152013.jpg
      [2012/02/17 16:15:49 | 000,076,237 | ---- | C] () -- C:\Users\Alina\IMG_20120209_152008.jpg
      [2012/02/17 16:15:47 | 000,077,965 | ---- | C] () -- C:\Users\Alina\IMG_20120209_151914.jpg
      [2012/02/17 16:15:43 | 000,096,733 | ---- | C] () -- C:\Users\Alina\IMG_20120209_151653.jpg
      [2012/01/10 08:42:01 | 001,572,484 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2012/01/01 11:07:15 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
      [2011/12/23 20:58:28 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
      [2011/12/23 20:58:24 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
      [2011/12/23 20:58:24 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
      [2011/12/23 20:58:24 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
      [2011/12/23 20:58:24 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
      [2011/10/01 12:02:42 | 000,005,632 | ---- | C] () -- C:\Users\Alina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2011/09/22 18:08:56 | 003,902,976 | ---- | C] () -- C:\Windows\SysWow64\ffmpeg.dll
      [2011/08/22 20:07:02 | 000,158,208 | ---- | C] () -- C:\Windows\SysWow64\ff_unrar.dll
      [2011/08/22 20:07:00 | 000,259,584 | ---- | C] () -- C:\Windows\SysWow64\TomsMoComp_ff.dll
      [2011/08/22 20:06:30 | 001,524,224 | ---- | C] () -- C:\Windows\SysWow64\ff_samplerate.dll
      [2011/08/22 20:06:30 | 000,211,456 | ---- | C] () -- C:\Windows\SysWow64\ff_libdts.dll
      [2011/08/22 20:06:30 | 000,097,280 | ---- | C] () -- C:\Windows\SysWow64\ff_wmv9.dll
      [2011/08/22 20:06:28 | 000,327,680 | ---- | C] () -- C:\Windows\SysWow64\ff_libfaad2.dll
      [2011/08/22 20:06:28 | 000,113,664 | ---- | C] () -- C:\Windows\SysWow64\ff_liba52.dll
      [2011/08/22 20:06:26 | 000,145,920 | ---- | C] () -- C:\Windows\SysWow64\ff_libmad.dll
      [2011/08/22 20:06:26 | 000,136,704 | ---- | C] () -- C:\Windows\SysWow64\libmpeg2_ff.dll
      [2011/05/30 14:42:50 | 000,240,640 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
      [2011/05/23 08:46:30 | 000,645,632 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
      [2011/04/23 13:07:06 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
      [2011/04/23 13:07:06 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
      [2011/04/23 13:00:12 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
      [2011/04/01 04:07:02 | 010,877,272 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
      [2011/04/01 04:07:02 | 000,102,744 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
      [2011/04/01 04:06:56 | 000,331,608 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
      [2011/03/03 12:40:08 | 000,150,528 | ---- | C] () -- C:\Windows\SysWow64\mkx.dll
      [2011/03/03 12:39:56 | 000,109,568 | ---- | C] () -- C:\Windows\SysWow64\avi.dll
      [2011/03/03 12:39:46 | 000,141,824 | ---- | C] () -- C:\Windows\SysWow64\mp4.dll
      [2011/03/03 12:39:34 | 000,123,392 | ---- | C] () -- C:\Windows\SysWow64\ogm.dll
      [2011/03/03 12:39:02 | 000,113,152 | ---- | C] () -- C:\Windows\SysWow64\dsmux.exe
      [2011/03/03 12:38:54 | 000,154,112 | ---- | C] () -- C:\Windows\SysWow64\ts.dll
      [2011/03/03 12:38:40 | 000,249,856 | ---- | C] () -- C:\Windows\SysWow64\dxr.dll
      [2011/03/03 12:38:10 | 000,097,792 | ---- | C] () -- C:\Windows\SysWow64\avs.dll
      [2011/03/03 12:38:04 | 000,137,728 | ---- | C] () -- C:\Windows\SysWow64\mkv2vfr.exe
      [2011/03/03 12:37:50 | 000,093,184 | ---- | C] () -- C:\Windows\SysWow64\avss.dll
      [2011/03/03 12:37:40 | 000,358,400 | ---- | C] () -- C:\Windows\SysWow64\gdsmux.exe
      [2011/03/03 12:35:32 | 000,080,384 | ---- | C] () -- C:\Windows\SysWow64\mkzlib.dll
      [2011/03/03 12:35:26 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\mkunicode.dll

      ========== ZeroAccess Check ==========

      [2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2012/09/26 21:49:30 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\AVG2013
      [2013/01/20 16:58:07 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\DAEMON Tools Lite
      [2013/01/08 11:54:22 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\DC++
      [2012/08/28 23:12:16 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\Dolphin3D Web Browser
      [2011/12/03 23:01:08 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\DriverFinder
      [2011/12/03 14:18:06 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\Flickr
      [2012/06/30 08:30:28 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\GetRightToGo
      [2011/04/23 12:45:19 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\Leadertech
      [2012/09/06 12:39:04 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\Lost Marble
      [2011/07/23 19:59:46 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\PlayFirst
      [2012/09/26 13:42:06 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\QuickScan
      [2012/02/03 23:27:06 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\Samsung
      [2011/07/24 19:34:28 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\SecondLife
      [2012/12/22 08:31:23 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\TeamViewer
      [2012/01/30 20:25:33 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\TuneUp Software
      [2012/09/27 07:00:19 | 000,000,000 | ---D | M] -- C:\Users\Alina\AppData\Roaming\uTorrent

      ========== Purity Check ==========



      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:93DE1838
      @Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp:862BDB1A
      @Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:E36F5B57
      @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:ABE89FFE
      @Alternate Data Stream - 130 bytes -> C:\ProgramData\Temp:798A3728
      @Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:E1F04E8D

      < End of report >

    4. #14
      Usuario Avatar de Controladoru
      Registrado
      sep 2012
      Ubicación
      congo
      Mensajes
      17

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      He tenido registro de eventos apagado...

    5. #15
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      Ponme el reporte del combofix, se ubica en: C:\ComboFix.txt

      Salu2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #16
      Usuario Avatar de Controladoru
      Registrado
      sep 2012
      Ubicación
      congo
      Mensajes
      17

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      ComboFix 13-01-14.01 - Alina 19/01/2013 23:36:38.2.2 - x64
      Microsoft Windows 7 Home Premium 6.1.7601.1.1252.34.3082.18.4026.2470 [GMT 1:00]
      Running from: C:\Users\Alina\Downloads\ComboFix.exe
      AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
      SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
      SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}


      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


      C:\Program Files (x86)\smartdl
      C:\Program Files (x86)\smartdl\cc
      C:\Program Files (x86)\smartdl\dler.exe
      C:\Program Files (x86)\smartdl\header.bmp
      C:\Program Files (x86)\smartdl\header2.bmp
      C:\Program Files (x86)\smartdl\header3.bmp
      C:\Program Files (x86)\smartdl\installid
      C:\Program Files (x86)\smartdl\TorrentSearch.exe
      C:\torrent.exe
      C:\Users\Alina\AppData\Local\Temp\bad4021e-8b96-4726-a482-7caebf5bc001\CliSecureRT.dll
      C:\Windows\wininit.ini


      ((((((((((((((((((((((((( Files Created from 2012-12-19 to 2013-01-19 )))))))))))))))))))))))))))))))

    7. #17
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      Está incompleto, ponlo todo entero.

      Salu2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #18
      Usuario Avatar de Controladoru
      Registrado
      sep 2012
      Ubicación
      congo
      Mensajes
      17

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      Sigue igual...si se aranca registro de eventos antivirus no vale.
      Algo raro pasa con el antivirus.si no te vale este reporte mañana te mando otro,tego que hacer algo en ordenador ahora...tarda en hacer escaneo o lo que hace el combofix.


      ComboFix 13-01-27.03 - Alina 27/01/2013 9:34:00.3.2 - x64
      Microsoft Windows 7 Home Premium 6.1.7601.1.1252.34.3082.18.4026.2527 [GMT 1:00]
      Running from: C:\Users\Alina\Desktop\ComboFix.exe
      AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
      SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
      SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point


      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


      C:\Users\Alina\AppData\Local\Temp\bad4021e-8b96-4726-a482-7caebf5bc001\CliSecureRT.dll
      C:\Windows\wininit.ini

      ---- Previous Run -------

      C:\Program Files (x86)\smartdl\cc
      C:\Program Files (x86)\smartdl\dler.exe
      C:\Program Files (x86)\smartdl\header.bmp
      C:\Program Files (x86)\smartdl\header2.bmp
      C:\Program Files (x86)\smartdl\header3.bmp
      C:\Program Files (x86)\smartdl\installid
      C:\Program Files (x86)\smartdl\TorrentSearch.exe
      C:\torrent.exe
      C:\Users\Alina\AppData\Local\Temp\bad4021e-8b96-4726-a482-7caebf5bc001\CliSecureRT.dll
      C:\Windows\wininit.ini


      ((((((((((((((((((((((((( Files Created from 2012-12-27 to 2013-01-27 )))))))))))))))))))))))))))))))


      2013-01-27 08:49:49 . 2013-01-27 08:49:49 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\temp
      2013-01-27 08:49:49 . 2013-01-27 08:49:49 -------- d-----w- C:\Users\Public\AppData\Local\temp
      2013-01-27 08:49:49 . 2013-01-27 08:49:49 -------- d-----w- C:\Users\Default\AppData\Local\temp
      2013-01-26 22:42:59 . 2013-01-07 20:32:10 9161176 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A4C1BEFE-A698-42DD-8A2D-7C99CC837734}\mpengine.dll
      2013-01-25 18:15:27 . 2013-01-07 20:32:10 9161176 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
      2013-01-24 09:05:12 . 2013-01-24 09:09:06 1660 ----a-w- C:\Windows\system32\ASOROSet.bin
      2013-01-24 08:31:05 . 2013-01-24 08:31:05 -------- d-----w- C:\Users\Alina\AppData\Roaming\Systweak
      2013-01-24 08:31:04 . 2012-11-17 17:37:58 19896 ----a-w- C:\Windows\system32\roboot64.exe
      2013-01-24 08:30:57 . 2013-01-24 08:31:03 -------- d-----w- C:\Program Files (x86)\RegClean Pro
      2013-01-23 10:01:15 . 2013-01-23 10:01:15 -------- d-----w- C:\Program Files (x86)\Conduit
      2013-01-20 17:00:59 . 2013-01-20 17:00:52 972264 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{823873D8-8572-41E3-88D3-EB46C29D9FA8}\gapaengine.dll
      2013-01-20 17:00:17 . 2013-01-20 17:00:17 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
      2013-01-20 17:00:11 . 2013-01-20 17:00:22 -------- d-----w- C:\Program Files\Microsoft Security Client
      2013-01-20 15:56:37 . 2013-01-20 15:56:38 -------- d-----w- C:\Program Files\CCleaner
      2013-01-20 14:30:12 . 2013-01-20 14:31:05 -------- d-----w- C:\_AT-Destroyer
      2013-01-20 14:15:02 . 2013-01-20 14:15:02 -------- d-----w- C:\_PoliFix
      2013-01-20 10:51:39 . 2013-01-20 10:51:39 -------- d-----w- C:\Program Files\Enigma Software Group
      2013-01-20 10:51:07 . 2013-01-20 11:19:29 -------- d-----w- C:\Windows\83B952C7F8F34CA3B4C533C85B24E478.TMP
      2013-01-20 10:19:32 . 2012-07-26 05:05:26 2560 ----a-w- C:\Windows\system32\drivers\es-ES\wdf01000.sys.mui
      2013-01-20 10:19:30 . 2012-07-26 04:55:47 785512 ----a-w- C:\Windows\system32\drivers\Wdf01000.sys
      2013-01-20 10:19:30 . 2012-07-26 04:55:47 54376 ----a-w- C:\Windows\system32\drivers\WdfLdr.sys
      2013-01-20 10:19:30 . 2012-07-26 02:36:08 9728 ----a-w- C:\Windows\system32\Wdfres.dll
      2013-01-20 10:09:47 . 2013-01-20 10:51:05 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
      2013-01-20 10:04:32 . 2012-12-16 17:11:22 46080 ----a-w- C:\Windows\system32\atmlib.dll
      2013-01-20 10:04:32 . 2012-12-16 14:13:20 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
      2013-01-20 10:04:31 . 2012-12-16 14:45:03 367616 ----a-w- C:\Windows\system32\atmfd.dll
      2013-01-20 10:04:31 . 2012-12-16 14:13:28 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
      2013-01-20 10:04:03 . 2012-07-26 02:26:45 87040 ----a-w- C:\Windows\system32\drivers\WUDFPf.sys
      2013-01-20 10:04:03 . 2012-07-26 02:26:06 198656 ----a-w- C:\Windows\system32\drivers\WUDFRd.sys
      2013-01-20 10:04:02 . 2012-07-26 03:08:14 84992 ----a-w- C:\Windows\system32\WUDFSvc.dll
      2013-01-20 10:04:02 . 2012-07-26 03:08:14 194048 ----a-w- C:\Windows\system32\WUDFPlatform.dll
      2013-01-20 10:04:01 . 2012-07-26 03:08:14 45056 ----a-w- C:\Windows\system32\WUDFCoinstaller.dll
      2013-01-20 10:04:00 . 2012-07-26 03:08:53 229888 ----a-w- C:\Windows\system32\WUDFHost.exe
      2013-01-20 10:04:00 . 2012-07-26 03:08:14 744448 ----a-w- C:\Windows\system32\WUDFx.dll
      2013-01-20 09:58:36 . 2012-11-30 05:45:14 215040 ----a-w- C:\Windows\system32\winsrv.dll
      2013-01-20 09:57:59 . 2012-08-30 18:03:45 5559664 ----a-w- C:\Windows\system32\ntoskrnl.exe
      2013-01-20 09:56:58 . 2012-06-02 05:41:27 1464320 ----a-w- C:\Windows\system32\crypt32.dll
      2013-01-20 09:56:57 . 2012-06-02 04:36:29 1159680 ----a-w- C:\Windows\SysWow64\crypt32.dll
      2013-01-20 09:56:56 . 2012-06-02 05:41:28 184320 ----a-w- C:\Windows\system32\cryptsvc.dll
      2013-01-20 09:56:56 . 2012-06-02 05:41:28 140288 ----a-w- C:\Windows\system32\cryptnet.dll
      2013-01-20 09:56:56 . 2012-06-02 04:36:29 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
      2013-01-20 09:56:56 . 2012-06-02 04:36:29 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
      2013-01-20 09:39:00 . 2013-01-20 10:01:31 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service
      2013-01-20 08:35:07 . 2013-01-20 09:11:21 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
      2013-01-20 08:34:29 . 2013-01-20 08:34:29 -------- d-----w- C:\Users\Alina\AppData\Local\Programs
      2013-01-19 18:34:58 . 2013-01-19 18:34:58 -------- d-sh--w- C:\Windows\SysWow64\%APPDATA%
      2013-01-19 17:59:29 . 2013-01-19 17:59:29 118784 --sha-r- C:\Windows\SysWow64\igxpun2.dll
      2013-01-09 20:06:20 . 2013-01-09 20:06:20 16369160 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
      .


      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

      2013-01-09 20:06:35 . 2012-04-03 07:17:41 697864 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
      2013-01-09 20:06:35 . 2011-06-13 04:47:33 74248 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
      2012-12-16 16:31:32 . 2012-09-26 13:58:47 67599240 ----a-w- C:\Windows\system32\MRT.exe
      2012-11-30 04:45:10 . 2013-01-20 09:58:34 44032 ----a-w- C:\Windows\apppatch\acwow64.dll


      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


      *Note* empty entries & legit default entries are not shown
      REGEDIT4

      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
      "{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}"= "C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll" [2012-11-26 11:14:06 1525088]

      [HKEY_CLASSES_ROOT\clsid\{81017ea9-9aa8-4a6a-9734-7af40e7d593f}]
      [HKEY_CLASSES_ROOT\yt.YTNavAssistPlugin.1]
      [HKEY_CLASSES_ROOT\yt.YTNavAssistPlugin]

      [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{77d0b2ea-9fb1-491c-bd40-04e2232bdd22}]
      2011-05-09 09:49:38 176936 ----a-w- C:\Program Files (x86)\TvOnline_by_Webdessign\prxtbTvOn.dll

      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
      "{77d0b2ea-9fb1-491c-bd40-04e2232bdd22}"= "C:\Program Files (x86)\TvOnline_by_Webdessign\prxtbTvOn.dll" [2011-05-09 09:49:38 176936]

      [HKEY_CLASSES_ROOT\clsid\{77d0b2ea-9fb1-491c-bd40-04e2232bdd22}]

      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
      @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
      [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
      2010-02-01 18:03:52 120176 ----a-w- C:\Program Files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll

      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Messenger (Yahoo!)"="C:\PROGRA~2\Yahoo!\MESSEN~1\YahooMessenger.exe" [2012-05-25 03:25:02 6595928]
      "Logitech Vid"="C:\Program Files (x86)\Logitech\Vid HD\Vid.exe" [2011-01-13 02:01:28 6129496]
      "KiesHelper"="C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe" [2011-12-27 22:21:06 937360]
      "KiesPDLR"="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2011-12-27 22:21:18 21392]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-12-24 00:39:02 284696]
      "SuiteTray"="C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-02-01 19:08:34 337264]
      "EgisUpdate"="C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" [2009-12-25 01:44:48 201512]
      "EgisTecPMMUpdate"="C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" [2009-12-25 01:45:16 401192]
      "Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-12-19 14:39:05 41208]
      "BackupManagerTray"="C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-03-08 23:56:38 260608]
      "LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe" [2010-03-03 13:21:16 1300560]
      "LWS"="C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe" [2011-03-01 21:14:08 190808]
      "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 07:35:28 946352]
      "DivXUpdate"="C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 23:08:12 1259376]
      "KiesTrayAgent"="C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2011-12-27 22:21:08 3508624]
      "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-09-17 10:41:54 254896]

      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
      Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]

      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)

      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
      "aux1"=wdmaud.drv

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
      @=""

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
      @="Service"

      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 12:27:14 138576]
      R2 FreemakeVideoCapture;FreemakeVideoCapture;C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [x]
      R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\Windows\system32\Drivers\ssadadb.sys [2011-12-08 04:22:28 36328]
      R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\system32\DRIVERS\lvrs64.sys [2011-04-01 03:06:22 341856]
      R3 LVUVC64;Logitech Webcam C210(UVC);C:\Windows\system32\DRIVERS\lvuvc64.sys [2011-04-01 03:07:54 4184672]
      R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 21:03:48 128456]
      R3 NisSrv;Microsoft Network Inspection;c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-09-12 20:21:48 368896]
      R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 00:50:50 50432]
      R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys [2009-09-02 01:58:08 225280]
      R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\system32\DRIVERS\ssadbus.sys [2011-12-08 04:22:28 157672]
      R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-12-08 04:22:28 16872]
      R3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-12-08 04:22:28 177640]
      R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\Windows\system32\DRIVERS\ssadserd.sys [2011-12-08 04:22:28 146920]
      R3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 11:07:05 59392]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-24 19:34:15 1255736]
      S1 mwlPSDFilter;mwlPSDFilter;C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 02:15:30 22576]
      S1 mwlPSDNServ;mwlPSDNServ;C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 02:15:30 20016]
      S1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 02:15:30 60464]
      S2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-03-03 13:21:16 325200]
      S2 ePowerSvc;Acer ePower Service;C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-02-05 18:23:06 865824]
      S2 GREGService;GREGService;C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 13:21:22 23584]
      S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-24 00:39:04 13336]
      S2 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-02-01 18:04:40 305520]
      S2 NTI IScheduleSvc;NTI IScheduleSvc;C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-03-08 23:58:24 250368]
      S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 00:51:20 144640]
      S2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-14 09:17:04 3467768]
      S2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-04-01 03:11:52 428640]
      S2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 23:27:36 243232]
      S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-02-22 10:03:44 75304]
      S3 teamviewervpn;TeamViewer VPN Adapter;C:\Windows\system32\DRIVERS\teamviewervpn.sys [2011-03-30 11:05:55 35112]


      Contents of the 'Scheduled Tasks' folder

      2013-01-27 C:\Windows\Tasks\Adobe Flash Player Updater.job
      - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 07:17:42 . 2013-01-09 20:06:36]

      2013-01-27 C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
      - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-04-23 11:34:13 . 2011-04-23 11:34:06]

      2013-01-27 C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
      - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-04-23 11:34:13 . 2011-04-23 11:34:06]

      2013-01-27 C:\Windows\Tasks\Hlxw.job
      - C:\Windows\system32\rundll32.exe [2009-07-13 23:41:43 . 2009-07-14 01:14:31]

      2013-01-24 C:\Windows\Tasks\RegClean Pro.job
      - C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [2013-01-24 08:30:57 . 2012-11-17 17:37:54]


      --------- X64 Entries -----------

    9. #19
      Ex-Colaborador Avatar de Marr0n
      Registrado
      mar 2010
      Ubicación
      Catalunya
      Mensajes
      5.871

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      Esta incompleto ya que falta la parte final del reporte, en la parte filas te aparecerá algo así:

      - - End Of File - -

      Ponlo todo entero.

      Salu2.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #20
      Usuario Avatar de Controladoru
      Registrado
      sep 2012
      Ubicación
      congo
      Mensajes
      17

      Re: Centro de seguridad de windows no se puede initiar+Google redirect sobre publicid

      ComboFix 13-02-02.05 - Alina 02/02/2013 15:38:30.4.2 - x64
      Microsoft Windows 7 Home Premium 6.1.7601.1.1252.34.3082.18.4026.2232 [GMT 1:00]
      Running from: c:\users\Alina\Desktop\ComboFix.exe
      AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
      SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
      SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      ---- Previous Run -------
      .
      c:\users\Alina\AppData\Local\Temp\bad4021e-8b96-4726-a482-7caebf5bc001\CliSecureRT.dll
      c:\windows\wininit.ini
      .
      .
      ((((((((((((((((((((((((( Files Created from 2013-01-02 to 2013-02-02 )))))))))))))))))))))))))))))))
      .
      .
      2013-02-02 14:56 . 2013-02-02 14:56 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
      2013-02-02 14:56 . 2013-02-02 14:56 -------- d-----w- c:\users\Public\AppData\Local\temp
      2013-02-02 14:56 . 2013-02-02 14:56 -------- d-----w- c:\users\Default\AppData\Local\temp
      2013-02-02 12:55 . 2013-01-07 20:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F5889995-B9DE-4A78-8C76-472250D3D1E8}\mpengine.dll
      2013-02-01 17:06 . 2013-01-07 20:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
      2013-01-24 09:05 . 2013-01-24 09:09 1660 ----a-w- c:\windows\system32\ASOROSet.bin
      2013-01-24 08:31 . 2013-01-24 08:31 -------- d-----w- c:\users\Alina\AppData\Roaming\Systweak
      2013-01-24 08:31 . 2012-11-17 17:37 19896 ----a-w- c:\windows\system32\roboot64.exe
      2013-01-24 08:30 . 2013-01-24 08:31 -------- d-----w- c:\program files (x86)\RegClean Pro
      2013-01-23 10:01 . 2013-01-23 10:01 -------- d-----w- c:\program files (x86)\Conduit
      2013-01-20 17:00 . 2013-01-20 17:00 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{823873D8-8572-41E3-88D3-EB46C29D9FA8}\gapaengine.dll
      2013-01-20 17:00 . 2013-01-20 17:00 -------- d-----w- c:\program files (x86)\Microsoft Security Client
      2013-01-20 17:00 . 2013-01-20 17:00 -------- d-----w- c:\program files\Microsoft Security Client
      2013-01-20 15:56 . 2013-01-20 15:56 -------- d-----w- c:\program files\CCleaner
      2013-01-20 14:30 . 2013-01-20 14:31 -------- d-----w- C:\_AT-Destroyer
      2013-01-20 14:15 . 2013-01-20 14:15 -------- d-----w- C:\_PoliFix
      2013-01-20 10:51 . 2013-01-20 10:51 -------- d-----w- c:\program files\Enigma Software Group
      2013-01-20 10:51 . 2013-01-20 11:19 -------- d-----w- c:\windows\83B952C7F8F34CA3B4C533C85B24E478.TMP
      2013-01-20 10:19 . 2012-07-26 05:05 2560 ----a-w- c:\windows\system32\drivers\es-ES\wdf01000.sys.mui
      2013-01-20 10:19 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
      2013-01-20 10:19 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
      2013-01-20 10:19 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
      2013-01-20 10:09 . 2013-01-20 10:51 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
      2013-01-20 10:04 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll
      2013-01-20 10:04 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
      2013-01-20 10:04 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll
      2013-01-20 10:04 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
      2013-01-20 10:04 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
      2013-01-20 10:04 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
      2013-01-20 10:04 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
      2013-01-20 10:04 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
      2013-01-20 10:04 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
      2013-01-20 10:04 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
      2013-01-20 10:04 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
      2013-01-20 09:58 . 2012-11-30 05:45 215040 ----a-w- c:\windows\system32\winsrv.dll
      2013-01-20 09:57 . 2012-08-30 18:03 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
      2013-01-20 09:56 . 2012-06-02 05:41 1464320 ----a-w- c:\windows\system32\crypt32.dll
      2013-01-20 09:56 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\SysWow64\crypt32.dll
      2013-01-20 09:56 . 2012-06-02 05:41 184320 ----a-w- c:\windows\system32\cryptsvc.dll
      2013-01-20 09:56 . 2012-06-02 05:41 140288 ----a-w- c:\windows\system32\cryptnet.dll
      2013-01-20 09:56 . 2012-06-02 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
      2013-01-20 09:56 . 2012-06-02 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
      2013-01-20 09:39 . 2013-01-20 10:01 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
      2013-01-20 08:35 . 2013-01-20 09:11 -------- d-----w- c:\programdata\Spybot - Search & Destroy
      2013-01-20 08:34 . 2013-01-20 08:34 -------- d-----w- c:\users\Alina\AppData\Local\Programs
      2013-01-19 18:34 . 2013-01-19 18:34 -------- d-sh--w- c:\windows\SysWow64\%APPDATA%
      2013-01-19 17:59 . 2013-01-19 17:59 118784 --sha-r- c:\windows\SysWow64\igxpun2.dll
      2013-01-09 20:06 . 2013-01-09 20:06 16369160 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2013-01-30 10:53 . 2011-09-23 17:06 273840 ------w- c:\windows\system32\MpSigStub.exe
      2013-01-09 20:06 . 2012-04-03 07:17 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2013-01-09 20:06 . 2011-06-13 04:47 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2012-12-16 16:31 . 2012-09-26 13:58 67599240 ----a-w- c:\windows\system32\MRT.exe
      2012-11-30 04:45 . 2013-01-20 09:58 44032 ----a-w- c:\windows\apppatch\acwow64.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
      "{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}"= "c:\program files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll" [2012-11-26 1525088]
      .
      [HKEY_CLASSES_ROOT\clsid\{81017ea9-9aa8-4a6a-9734-7af40e7d593f}]
      [HKEY_CLASSES_ROOT\yt.YTNavAssistPlugin.1]
      [HKEY_CLASSES_ROOT\yt.YTNavAssistPlugin]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{77d0b2ea-9fb1-491c-bd40-04e2232bdd22}]
      2011-05-09 09:49 176936 ----a-w- c:\program files (x86)\TvOnline_by_Webdessign\prxtbTvOn.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
      "{77d0b2ea-9fb1-491c-bd40-04e2232bdd22}"= "c:\program files (x86)\TvOnline_by_Webdessign\prxtbTvOn.dll" [2011-05-09 176936]
      .
      [HKEY_CLASSES_ROOT\clsid\{77d0b2ea-9fb1-491c-bd40-04e2232bdd22}]
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
      @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
      [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
      2010-02-01 18:03 120176 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Messenger (Yahoo!)"="c:\progra~2\Yahoo!\MESSEN~1\YahooMessenger.exe" [2012-05-25 6595928]
      "Logitech Vid"="c:\program files (x86)\Logitech\Vid HD\Vid.exe" [2011-01-13 6129496]
      "KiesHelper"="c:\program files (x86)\Samsung\Kies\KiesHelper.exe" [2011-12-27 937360]
      "KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2011-12-27 21392]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-12-24 284696]
      "SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-02-01 337264]
      "EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2009-12-25 201512]
      "EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2009-12-25 401192]
      "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-12-19 41208]
      "BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-03-08 260608]
      "LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-03-03 1300560]
      "LWS"="c:\program files (x86)\Logitech\LWS\Webcam Software\LWS.exe" [2011-03-01 190808]
      "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
      "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
      "KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2011-12-27 3508624]
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-09-17 254896]
      .
      c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
      Microsoft Office.lnk - c:\program files (x86)\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 5 (0x5)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableUIADesktopToggle"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
      "aux1"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
      @=""
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
      @="Service"
      .
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 FreemakeVideoCapture;FreemakeVideoCapture;c:\program files (x86)\Freemake\CaptureLib\CaptureLibService.exe [x]
      R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2011-12-08 36328]
      R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2011-04-01 341856]
      R3 LVUVC64;Logitech Webcam C210(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2011-04-01 4184672]
      R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
      R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
      R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432]
      R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-09-02 225280]
      R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-12-08 157672]
      R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-12-08 16872]
      R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-12-08 177640]
      R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [2011-12-08 146920]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-04-24 1255736]
      S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
      S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
      S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
      S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-03-03 325200]
      S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-02-05 865824]
      S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
      S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-24 13336]
      S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-02-01 305520]
      S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-03-08 250368]
      S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640]
      S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-14 3467768]
      S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-04-01 428640]
      S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 243232]
      S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-02-22 75304]
      S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2011-03-30 35112]
      .
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2013-01-27 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 20:06]
      .
      2013-01-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-23 11:34]
      .
      2013-01-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-23 11:34]
      .
      2013-01-27 c:\windows\Tasks\Hlxw.job
      - c:\windows\system32\rundll32.exe [2009-07-13 01:14]
      .
      2013-01-24 c:\windows\Tasks\RegClean Pro.job
      - c:\program files (x86)\RegClean Pro\RegCleanPro.exe [2013-01-24 17:37]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
      @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
      [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
      2010-02-01 18:06 137584 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-03-23 10134560]
      "mwlDaemon"="c:\program files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-02-01 349552]
      "Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-02-05 860192]
      "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-03-15 165912]
      "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-03-15 387608]
      "Persistence"="c:\windows\system32\igfxpers.exe" [2010-03-15 365592]
      "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 1289704]
      .
      ------- Supplementary Scan -------
      .
      uStart Page = Google
      uLocal Page = c:\windows\system32\blank.htm
      mStart Page = Google
      mLocal Page = c:\windows\SysWOW64\blank.htm
      uSearchAssistant = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
      IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office10\EXCEL.EXE/3000
      IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
      TCP: DhcpNameServer = 192.168.1.1
      FF - ProfilePath - c:\users\Alina\AppData\Roaming\Mozilla\Firefox\Profiles\u4hsqrju.default\
      FF - prefs.js: browser.search.defaulturl - Google
      FF - prefs.js: browser.search.selectedEngine - Google
      FF - prefs.js: browser.startup.homepage - hxxp://google.com
      FF - prefs.js: keyword.URL - hxxps://www.google.com/search?q=
      FF - ExtSQL: 2013-01-19 08:34; {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}; c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
      FF - ExtSQL: 2013-01-19 08:34; {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}; c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
      FF - ExtSQL: 2013-01-27 08:51; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; c:\users\Alina\AppData\Roaming\Mozilla\Firefox\Profiles\u4hsqrju.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
      FF - ExtSQL: 2013-01-27 08:52; {bee6eb20-01e0-ebd1-da83-080329fb9a3a}; c:\users\Alina\AppData\Roaming\Mozilla\Firefox\Profiles\u4hsqrju.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Toolbar-Locked - (no file)
      WebBrowser-{77D0B2EA-9FB1-491C-BD40-04E2232BDD22} - (no file)
      HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      Completion time: 2013-02-02 16:41:34
      ComboFix-quarantined-files.txt 2013-02-02 15:41
      .
      Pre-Run: 390.579.998.720 bytes libres
      Post-Run: 390.546.534.400 bytes libres
      .
      - - End Of File - - A0BD42E8373E58F987231B3D03537154