• Registrarse
  • Iniciar sesión


  • Página 1 de 3 123 ÚltimoÚltimo
    Resultados 1 al 10 de 28

    Servicio Themeservice eliminado por TDSSKiller

    Hola que tal, espero y me puedan ayudar con el problema que tengo. lo que pasa es que usè el programa TDSSKiller para analizar mi pc en busca de Rootkits y me detectò 2 Rootkits, ...

    1. #1
      Usuario Avatar de LOPOLOCO
      Registrado
      dic 2012
      Ubicación
      Mèxico
      Mensajes
      41

      Servicio Themeservice eliminado por TDSSKiller

      Hola que tal, espero y me puedan ayudar con el problema que tengo. lo que pasa es que usè el programa TDSSKiller para analizar mi pc en busca de Rootkits y me detectò 2 Rootkits, los elimine y ahora los temas aero no los puedo usar y parece que TDSSKiller elimino el servicio: Themeservice porque no lo encuentro y lo mas lamentable es que NO hice un punto de restauracion antes de eliminar los "Rootkits" Ahora no se que hacer, espero me ayuden

    2. #2
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.699

      Re: Servicio Themeservice eliminado por TDSSKiller

      Buenas LOPOLOCO..

      Nos puedes poner el análisis de TDSSKiller.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de LOPOLOCO
      Registrado
      dic 2012
      Ubicación
      Mèxico
      Mensajes
      41

      Re: Servicio Themeservice eliminado por TDSSKiller

      A quì estesta el reporte y dice que elimino el temeservice.dll
      Pero yo ya lo volvi a descargar y sigue igual
      03:54:12.0947 5496 Scan finished
      03:54:12.0947 5496 ============================================================
      03:54:12.0978 5960 Detected object count: 2
      03:54:12.0978 5960 Actual detected object count: 2
      03:54:27.0174 5960 C:\Program Files\Connectify\ConnectifyService.exe - copied to quarantine
      03:54:27.0236 5960 HKLM\SYSTEM\ControlSet001\services\Connectify - will be deleted on reboot
      03:54:27.0268 5960 HKLM\SYSTEM\ControlSet002\services\Connectify - will be deleted on reboot
      03:54:27.0377 5960 C:\Program Files\Connectify\ConnectifyService.exe - will be deleted on reboot
      03:54:27.0377 5960 Connectify ( UnsignedFile.Multi.Generic ) - User select action: Delete
      03:54:27.0439 5960 C:\Windows\system32\themeservice.dll - copied to quarantine
      03:54:27.0470 5960 HKLM\SYSTEM\ControlSet001\services\Themes - will be deleted on reboot
      03:54:27.0470 5960 HKLM\SYSTEM\ControlSet002\services\Themes - will be deleted on reboot
      03:54:27.0470 5960 HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\svchost:netsvcs - will be cured on reboot
      03:54:27.0486 5960 C:\Windows\system32\themeservice.dll - will be deleted on reboot
      03:54:27.0486 5960 Themes ( UnsignedFile.Multi.Generic ) - User select action: Delete
      03:54:44.0802 1412 Deinitialize success

    4. #4
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.699

      Re: Servicio Themeservice eliminado por TDSSKiller

      Ahora sigue estos pasos :

      Descarga >> Malwarebytes Anti-Rootkit (Beta) y descomprimes el contenido en tu escritorio.

      • Abre la carpeta Mbar, haces doble clic en el archivo Mbar.exe
      • En la ventana que saldrá pulsas en "Next".
      • Pulsar en "Update", y cuando termine en "Next"
      • Ahora inicias el análisis pulsando en el botón "Scan"
      • Al terminar, si existe infección pulsamos en "CleanUp" y si no hay infección pulsamos en ""Exit"


      Reinica el equipo y despues realiza este paso :

      Abre la carpeta Mbar nuevamente. Doble clic sobre el archivo fixdamage.exe
      • Presiona la tecla Y y luego pulsa en Enter
      • A continuación pulsa nuevamente Y y por ultimo Enter
      • Si no se reinicia el ordenador, reinicia manualmente el mismo.


      Al terminar, comprueba los resultados y busca en la carpeta Mbar, abres los archivos mbar-log.txt y system-log.txt, nos copias el contenido en la siguiente respuesta y comentas resultados.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de LOPOLOCO
      Registrado
      dic 2012
      Ubicación
      Mèxico
      Mensajes
      41

      Re: Servicio Themeservice eliminado por TDSSKiller

      Hice todo lo que me dijiste, pero el Aero sigue sin funcionar. pero muchas gracias porque el Anty-Rootkit encontro 2 Backdoors



      Malwarebytes Anti-Rootkit BETA 1.01.0.1021

      (c) Malwarebytes Corporation 2011-2012

      OS version: 6.1.7600 Windows 7 x86

      Account is Administrative

      Internet Explorer version: 8.0.7600.16385

      File system is: NTFS
      Disk drives: C:\ DRIVE_FIXED
      CPU speed: 1.662000 GHz
      Memory total: 1061019648, free: 204419072

      ---------------------------------------
      Malwarebytes Anti-Rootkit BETA 1.01.0.1021

      (c) Malwarebytes Corporation 2011-2012

      OS version: 6.1.7600 Windows 7 x86

      Account is Administrative

      Internet Explorer version: 8.0.7600.16385

      File system is: NTFS
      Disk drives: C:\ DRIVE_FIXED
      CPU speed: 1.662000 GHz
      Memory total: 1061019648, free: 220729344

      ------------ Kernel report ------------
      03/11/2013 01:43:58
      ------------ Loaded modules -----------
      \SystemRoot\system32\ntkrnlpa.exe
      \SystemRoot\system32\halmacpi.dll
      \SystemRoot\system32\kdcom.dll
      \SystemRoot\system32\mcupdate_GenuineIntel.dll
      \SystemRoot\system32\PSHED.dll
      \SystemRoot\system32\BOOTVID.dll
      \SystemRoot\system32\CLFS.SYS
      \SystemRoot\system32\CI.dll
      \SystemRoot\system32\drivers\Wdf01000.sys
      \SystemRoot\system32\drivers\WDFLDR.SYS
      \SystemRoot\system32\DRIVERS\ACPI.sys
      \SystemRoot\system32\DRIVERS\WMILIB.SYS
      \SystemRoot\system32\DRIVERS\msisadrv.sys
      \SystemRoot\system32\DRIVERS\pci.sys
      \SystemRoot\system32\DRIVERS\vdrvroot.sys
      \SystemRoot\System32\drivers\partmgr.sys
      \SystemRoot\system32\DRIVERS\compbatt.sys
      \SystemRoot\system32\DRIVERS\BATTC.SYS
      \SystemRoot\system32\DRIVERS\volmgr.sys
      \SystemRoot\System32\drivers\volmgrx.sys
      \SystemRoot\System32\drivers\mountmgr.sys
      \SystemRoot\system32\DRIVERS\iaStor.sys
      \SystemRoot\system32\DRIVERS\atapi.sys
      \SystemRoot\system32\DRIVERS\ataport.SYS
      \SystemRoot\system32\DRIVERS\msahci.sys
      \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
      \SystemRoot\system32\DRIVERS\amdxata.sys
      \SystemRoot\system32\drivers\fltmgr.sys
      \SystemRoot\system32\drivers\fileinfo.sys
      \SystemRoot\System32\Drivers\Ntfs.sys
      \SystemRoot\System32\Drivers\msrpc.sys
      \SystemRoot\System32\Drivers\ksecdd.sys
      \SystemRoot\System32\Drivers\cng.sys
      \SystemRoot\System32\drivers\pcw.sys
      \SystemRoot\System32\Drivers\Fs_Rec.sys
      \SystemRoot\system32\drivers\ndis.sys
      \SystemRoot\system32\drivers\NETIO.SYS
      \SystemRoot\System32\Drivers\ksecpkg.sys
      \SystemRoot\System32\drivers\tcpip.sys
      \SystemRoot\System32\drivers\fwpkclnt.sys
      \SystemRoot\system32\DRIVERS\wd.sys
      \SystemRoot\system32\DRIVERS\volsnap.sys
      \SystemRoot\System32\Drivers\spldr.sys
      \SystemRoot\System32\drivers\rdyboost.sys
      \SystemRoot\System32\Drivers\mup.sys
      \SystemRoot\System32\drivers\hwpolicy.sys
      \SystemRoot\System32\DRIVERS\fvevol.sys
      \SystemRoot\system32\DRIVERS\disk.sys
      \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
      \SystemRoot\System32\Drivers\aswVmm.sys
      \SystemRoot\System32\Drivers\aswRvrt.sys
      \SystemRoot\system32\DRIVERS\dtsoftbus01.sys
      \SystemRoot\System32\Drivers\aswSnx.SYS
      \SystemRoot\System32\DRIVERS\cmdguard.sys
      \SystemRoot\System32\Drivers\Null.SYS
      \SystemRoot\System32\Drivers\Beep.SYS
      \SystemRoot\System32\drivers\vga.sys
      \SystemRoot\System32\drivers\VIDEOPRT.SYS
      \SystemRoot\System32\drivers\watchdog.sys
      \SystemRoot\System32\DRIVERS\RDPCDD.sys
      \SystemRoot\system32\drivers\rdpencdd.sys
      \SystemRoot\system32\drivers\rdprefmp.sys
      \SystemRoot\System32\Drivers\Msfs.SYS
      \SystemRoot\System32\Drivers\Npfs.SYS
      \SystemRoot\system32\DRIVERS\tdx.sys
      \SystemRoot\system32\DRIVERS\TDI.SYS
      \SystemRoot\System32\DRIVERS\cmdhlp.sys
      \SystemRoot\System32\Drivers\aswTdi.SYS
      \SystemRoot\system32\drivers\afd.sys
      \SystemRoot\System32\Drivers\aswrdr2.sys
      \SystemRoot\System32\DRIVERS\netbt.sys
      \SystemRoot\system32\DRIVERS\wfplwf.sys
      \SystemRoot\system32\DRIVERS\pacer.sys
      \SystemRoot\system32\DRIVERS\vwififlt.sys
      \SystemRoot\system32\DRIVERS\inspect.sys
      \SystemRoot\system32\DRIVERS\cnnctfy2.sys
      \SystemRoot\system32\DRIVERS\netbios.sys
      \SystemRoot\system32\DRIVERS\wanarp.sys
      \SystemRoot\system32\DRIVERS\termdd.sys
      \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
      \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
      \SystemRoot\system32\DRIVERS\rdbss.sys
      \SystemRoot\system32\drivers\nsiproxy.sys
      \SystemRoot\system32\DRIVERS\mssmbios.sys
      \SystemRoot\System32\drivers\discache.sys
      \SystemRoot\System32\Drivers\dfsc.sys
      \SystemRoot\system32\DRIVERS\blbdrive.sys
      \SystemRoot\System32\Drivers\aswSP.SYS
      \SystemRoot\system32\DRIVERS\tunnel.sys
      \SystemRoot\system32\DRIVERS\intelppm.sys
      \SystemRoot\system32\DRIVERS\CmBatt.sys
      \SystemRoot\system32\DRIVERS\wmiacpi.sys
      \SystemRoot\system32\DRIVERS\igdkmd32.sys
      \SystemRoot\System32\drivers\dxgkrnl.sys
      \SystemRoot\System32\drivers\dxgmms1.sys
      \SystemRoot\system32\DRIVERS\HDAudBus.sys
      \SystemRoot\system32\DRIVERS\rtl8192Ce.sys
      \SystemRoot\system32\DRIVERS\vwifibus.sys
      \SystemRoot\system32\DRIVERS\Rt86win7.sys
      \SystemRoot\system32\DRIVERS\usbuhci.sys
      \SystemRoot\system32\DRIVERS\USBPORT.SYS
      \SystemRoot\system32\DRIVERS\usbehci.sys
      \SystemRoot\system32\DRIVERS\i8042prt.sys
      \SystemRoot\system32\DRIVERS\kbdclass.sys
      \SystemRoot\system32\DRIVERS\mouclass.sys
      \SystemRoot\system32\DRIVERS\CompositeBus.sys
      \SystemRoot\system32\DRIVERS\AgileVpn.sys
      \SystemRoot\system32\DRIVERS\rasl2tp.sys
      \SystemRoot\system32\DRIVERS\ndistapi.sys
      \SystemRoot\system32\DRIVERS\ndiswan.sys
      \SystemRoot\system32\DRIVERS\raspppoe.sys
      \SystemRoot\system32\DRIVERS\raspptp.sys
      \SystemRoot\system32\DRIVERS\rassstp.sys
      \SystemRoot\system32\DRIVERS\tapoas.sys
      \SystemRoot\system32\DRIVERS\swenum.sys
      \SystemRoot\system32\DRIVERS\ks.sys
      \SystemRoot\system32\DRIVERS\umbus.sys
      \SystemRoot\system32\DRIVERS\usbhub.sys
      \SystemRoot\System32\Drivers\NDProxy.SYS
      \SystemRoot\system32\DRIVERS\cdrom.sys
      \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
      \SystemRoot\system32\DRIVERS\stwrt.sys
      \SystemRoot\system32\DRIVERS\portcls.sys
      \SystemRoot\system32\DRIVERS\drmk.sys
      \SystemRoot\System32\Drivers\crashdmp.sys
      \SystemRoot\System32\Drivers\dump_iaStor.sys
      \SystemRoot\System32\Drivers\dump_dumpfve.sys
      \SystemRoot\System32\win32k.sys
      \SystemRoot\System32\drivers\Dxapi.sys
      \SystemRoot\system32\DRIVERS\usbccgp.sys
      \SystemRoot\system32\DRIVERS\USBD.SYS
      \SystemRoot\System32\Drivers\usbvideo.sys
      \SystemRoot\system32\DRIVERS\monitor.sys
      \SystemRoot\System32\TSDDD.dll
      \SystemRoot\System32\cdd.dll
      \SystemRoot\system32\drivers\luafv.sys
      \??\C:\Windows\system32\drivers\aswMonFlt.sys
      \SystemRoot\System32\Drivers\aswFsBlk.SYS
      \SystemRoot\system32\drivers\WudfPf.sys
      \SystemRoot\system32\DRIVERS\lltdio.sys
      \SystemRoot\system32\DRIVERS\nwifi.sys
      \SystemRoot\system32\DRIVERS\ndisuio.sys
      \SystemRoot\system32\DRIVERS\rspndr.sys
      \SystemRoot\system32\drivers\HTTP.sys
      \SystemRoot\system32\DRIVERS\bowser.sys
      \SystemRoot\System32\drivers\mpsdrv.sys
      \SystemRoot\system32\DRIVERS\mrxsmb.sys
      \SystemRoot\system32\DRIVERS\mrxsmb10.sys
      \SystemRoot\system32\DRIVERS\mrxsmb20.sys
      \SystemRoot\system32\drivers\peauth.sys
      \SystemRoot\System32\Drivers\secdrv.SYS
      \SystemRoot\System32\DRIVERS\srvnet.sys
      \SystemRoot\System32\drivers\tcpipreg.sys
      \SystemRoot\System32\DRIVERS\srv2.sys
      \SystemRoot\System32\DRIVERS\srv.sys
      \SystemRoot\System32\Drivers\usbaapl.sys
      \SystemRoot\system32\DRIVERS\WinUsb.sys
      \SystemRoot\system32\DRIVERS\WUDFRd.sys
      \??\C:\Windows\system32\drivers\mbamchameleon.sys
      \??\C:\Windows\system32\drivers\mbamswissarmy.sys
      \Windows\System32\ntdll.dll
      \Windows\System32\smss.exe
      \Windows\System32\apisetschema.dll
      \Windows\System32\autochk.exe
      \Windows\System32\kernel32.dll
      \Windows\System32\msvcrt.dll
      \Windows\System32\user32.dll
      \Windows\System32\Wldap32.dll
      \Windows\System32\rpcrt4.dll
      \Windows\System32\imm32.dll
      \Windows\System32\setupapi.dll
      \Windows\System32\wininet.dll
      \Windows\System32\urlmon.dll
      \Windows\System32\lpk.dll
      \Windows\System32\usp10.dll
      \Windows\System32\clbcatq.dll
      \Windows\System32\oleaut32.dll
      \Windows\System32\psapi.dll
      \Windows\System32\imagehlp.dll
      \Windows\System32\normaliz.dll
      \Windows\System32\shlwapi.dll
      \Windows\System32\nsi.dll
      \Windows\System32\shell32.dll
      \Windows\System32\ws2_32.dll
      \Windows\System32\msctf.dll
      \Windows\System32\gdi32.dll
      \Windows\System32\advapi32.dll
      \Windows\System32\sechost.dll
      \Windows\System32\difxapi.dll
      \Windows\System32\ole32.dll
      \Windows\System32\comdlg32.dll
      \Windows\System32\iertutil.dll
      \Windows\System32\wintrust.dll
      \Windows\System32\comctl32.dll
      \Windows\System32\crypt32.dll
      \Windows\System32\cfgmgr32.dll
      \Windows\System32\devobj.dll
      \Windows\System32\KernelBase.dll
      \Windows\System32\msasn1.dll
      ----------- End -----------
      <<<1>>>
      Upper Device Name: \Device\Harddisk0\DR0
      Upper Device Object: 0xffffffff854bea20
      Upper Device Driver Name: \Driver\Disk\
      Lower Device Name: \Device\Ide\IAAStorageDevice-0\
      Lower Device Object: 0xffffffff84603028
      Lower Device Driver Name: \Driver\iaStor\
      Driver name found: iaStor
      Initialization returned 0x0
      Load Function returned 0x0
      Downloaded database version: v2013.03.11.03
      Initializing...
      Done!
      <<<2>>>
      Device number: 0, partition: 3
      Physical Sector Size: 512
      Drive: 0, DevicePointer: 0xffffffff854bea20, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
      --------- Disk Stack ------
      DevicePointer: 0xffffffff854be660, DeviceName: Unknown, DriverName: \Driver\partmgr\
      DevicePointer: 0xffffffff854bea20, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
      DevicePointer: 0xffffffff84603028, DeviceName: \Device\Ide\IAAStorageDevice-0\, DriverName: \Driver\iaStor\
      ------------ End ----------
      Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
      Upper DeviceData: 0xffffffff83c4c190, 0xffffffff854bea20, 0xffffffff841565e8
      Lower DeviceData: 0xffffffff817e8420, 0xffffffff84603028, 0xffffffff84078830
      <<<3>>>
      Volume: C:
      File system type: NTFS
      SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
      Scanning directory: C:\Windows\system32\drivers...

      ----------------------------------------------------------------------------------------------------
      Malwarebytes Anti-Rootkit BETA 1.01.0.1021
      Malwarebytes : Free anti-malware download

      Database version: v2013.03.11.03

      Windows 7 x86 NTFS
      Internet Explorer 8.0.7600.16385
      CroxRazzor :: CROXRAZZOR-PC [administrator]

      11/03/2013 2:09:09
      mbar-log-2013-03-11 (02-09-09).txt

      Scan type: Quick scan
      Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
      Scan options disabled:
      Objects scanned: 27712
      Time elapsed: 24 minute(s), 15 second(s)

      Memory Processes Detected: 0
      (No malicious items detected)

      Memory Modules Detected: 0
      (No malicious items detected)

      Registry Keys Detected: 1
      HKCU\SOFTWARE\VÍTIMA (Backdoor.Trace) -> Delete on reboot.

      Registry Values Detected: 1
      HKCU\SOFTWARE\VÍTIMA|FirstExecution (Backdoor.Trace) -> Data: 14/01/2013 -- 17:20 -> Delete on reboot.

      Registry Data Items Detected: 0
      (No malicious items detected)

      Folders Detected: 0
      (No malicious items detected)

      Files Detected: 2

      c:\Users\CroxRazzor\Desktop\Mamadas\WinRAR v4.11 Español Oficial x86 x64\Keygen.exe (PUP.RiskwareTool.CK) -> Delete on reboot.
      c:\Users\CroxRazzor\AppData\Roaming\logs.dat (Bifrose.Trace) -> Delete on reboot.

      (end)

    6. #6
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.699

      Re: Servicio Themeservice eliminado por TDSSKiller

      Bueno, pues sigamos revisando tu equipo :

      Descarga y ejecuta >> Ccleaner.

      • Usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
      • Después usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).


      Descarga, actualiza y ejecuta >> Malwarebytes’ Anti-Malware.

      • En la pestaña Actualizar pulsas sobre el botón "Buscar Actualizaciones"
      • En la pestaña Escáner marcas "Realizar un Examen Completo."
      • Con la opción de "Eliminar lo seleccionado" y Marcando TODO lo que encuentres lo mandas todo a la cuarentena y reinicias el sistema.
      • En la pestaña "Registros", encontrarás el informe del MBAM, lo copias y pegas en tu próxima respuesta, para analizarlo.


      Descarga >> AdwCleaner | InfoSpyware.


      • Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
      • Y cierra todos los programas que tengas abiertos.
      • Ejecuta Adwcleaner. (Si usas Windows Vista o 7 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Pulsar en el Botón Supresión.
      • Sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
      • Guardas el reporte que te saldrá en el escritorio, para pegarlo en tu próxima respuesta.



      Y finalmente descarga >> OTL By OldTimer

      *** Para Ejecutar OTL sigue estos pasos :

      • Cerrar todos programas que tengas abiertos y hacer doble click en el ícono de OTL para ejecutarlo.
      • Dejarlo correr y esperar a que aparezca el menú de OTL..
      • Cuando salga el menú de OTL, debes cambiar debajo de: "Tipo de Análisis" poniendo Resultado Mínimo.
      • Marcar la casilla Analizar Todos.
      • Marcar las opciones: Buscar LOP y Buscar Purity.
      • Marcar las Opciones: Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
      • Copiar y Pegar las líneas del siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

        NOTA: No copiar la palabra Código:
        Código:
        netsvcs
        msconfig
        %SYSTEMDRIVE%\*.*
        CREATERESTOREPOINT


      • Por favor No cambies el resto de la configuración a menos que te lo solicitemos.


      • Presionar el botón .
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
      • Copiar y pegar el contenido del archivo OTL.txt en tu próxima respuesta.


      En tu próxima respuesta recuerda :

      - Ponernos los informes de Malwarebytes, AdwCleaner y OTL.txt.

      - Si Aero sigue sin funcionar(lo mas normal) ya lo revisaremos al finalizar todos los procesos.

      Saludos, Javier.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de LOPOLOCO
      Registrado
      dic 2012
      Ubicación
      Mèxico
      Mensajes
      41

      Re: Servicio Themeservice eliminado por TDSSKiller

      Aquì esta el log
      Malwarebytes Anti-Malware 1.70.0.1100
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2013.03.12.02

      Windows 7 x86 NTFS
      Internet Explorer 8.0.7600.16385
      CroxRazzor :: CROXRAZZOR-PC [administrador]

      11/03/2013 21:45:08
      mbam-log-2013-03-11 (21-45-08).txt

      Tipos de Análisis: Análisis Completo (C:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 269840
      Tiempo transcurrido: 1 hora(s), 45 minuto(s), 40 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 1
      C:\Users\CroxRazzor\Documents\Desktop\Archivos\WinRAR v4.11 Español Oficial x86 x64\Keygen.exe (PUP.RiskwareTool.CK) -> En cuarentena y eliminado con éxito.

      fin)

    8. #8
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.699

      Re: Servicio Themeservice eliminado por TDSSKiller

      Falta que pongas el log de AdwCleaner y OTL.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de LOPOLOCO
      Registrado
      dic 2012
      Ubicación
      Mèxico
      Mensajes
      41

      Re: Servicio Themeservice eliminado por TDSSKiller

      Aquì te dejo el reporte del Adcleaner:

      # AdwCleaner v2.114 - Fichero creado el 12/03/2013 a 19:57:50
      # Actualizado el 05/03/2013 por Xplode
      # Sistema operativo : Windows 7 Home Premium (32 bits)
      # Usuario : CroxRazzor - CROXRAZZOR-PC
      # Modo de inicio : Normal
      # Ejecutado desde : C:\Users\CroxRazzor\Desktop\Programas\AdwCleaner.exe
      # Opción [Supresión]


      ***** [Servicios] *****


      ***** [Ficheros / Carpetas] *****


      ***** [Registro] *****

      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
      Clave Supprimida : HKCU\Software\Softonic

      ***** [Navegadores] *****

      -\\ Internet Explorer v8.0.7600.16385

      [OK] El registro no contiene ninguna entrada ilegítima.

      -\\ Mozilla Firefox v19.0.2 (es-MX)

      Fichero : C:\Users\CroxRazzor\AppData\Roaming\Mozilla\Firefox\Profiles\1jdica0e.default-1361964575469\prefs.js

      [OK] El fichero no contiene ninguna entrada ilegítima.

      Fichero : C:\Users\CroxRazzor\AppData\Roaming\Mozilla\Firefox\Profiles\68qit2qa.default-1358011192754\prefs.js

      [OK] El fichero no contiene ninguna entrada ilegítima.

      -\\ Google Chrome v25.0.1364.152

      Fichero : C:\Users\CroxRazzor\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      *************************

      AdwCleaner[R1].txt - [4874 octets] - [27/02/2013 05:56:47]
      AdwCleaner[S1].txt - [5031 octets] - [27/02/2013 05:58:08]
      AdwCleaner[S2].txt - [1547 octets] - [12/03/2013 19:57:50]

      ########## EOF - C:\AdwCleaner[S2].txt - [1607 octets] ##########

    10. #10
      Usuario Avatar de LOPOLOCO
      Registrado
      dic 2012
      Ubicación
      Mèxico
      Mensajes
      41

      Re: Servicio Themeservice eliminado por TDSSKiller

      OTL logfile created on: 12/03/2013 20:06:57 - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\CroxRazzor\Desktop
      Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.7600.16385)
      Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

      1011,87 Mb Total Physical Memory | 238,33 Mb Available Physical Memory | 23,55% Memory free
      1,99 Gb Paging File | 1,15 Gb Available in Paging File | 57,68% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 297,75 Gb Total Space | 196,80 Gb Free Space | 66,09% Space Free | Partition Type: NTFS

      Computer Name: CROXRAZZOR-PC | User Name: CroxRazzor | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\CroxRazzor\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\AVAST Software\Avast\AvastUI.exe (AVAST Software)
      PRC - C:\Archivos de programa\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
      PRC - C:\Archivos de programa\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Archivos de programa\Comodo\COMODO Internet Security\cmdagent.exe (COMODO)
      PRC - C:\Archivos de programa\Comodo\COMODO Internet Security\cfp.exe (COMODO)
      PRC - C:\Archivos de programa\OpenVPN Technologies\PrivateTunnel\core\capiws.exe ()
      PRC - C:\Archivos de programa\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
      PRC - C:\Archivos de programa\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
      PRC - C:\Archivos de programa\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      PRC - C:\Archivos de programa\IDT\WDM\sttray.exe (IDT, Inc.)
      PRC - C:\Archivos de programa\IDT\WDM\stacsv.exe (IDT, Inc.)
      PRC - C:\Archivos de programa\IDT\WDM\AEstSrv.exe (Andrea Electronics Corporation)
      PRC - C:\Archivos de programa\AmIcoSingLun\AmIcoSinglun.exe (Alcor Micro Corp.)
      PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\520d0b53aa1c6f4fc90ce9a1241835f3\IAStorCommon.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\e2ce08408870d16910943872abf1482a\IAStorUtil.ni.dll ()
      MOD - C:\Windows\System32\slc.dll ()
      MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_es_b77a5c561934e089\mscorlib.resources.dll ()
      MOD - C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_es_b77a5c561934e089\System.Runtime.Remoting.resources.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\3871fc2b96345aa6f3be81d9e3c97160\System.Web.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\4bdeb88758dccd625f4703ed77aaf348\System.Runtime.Remoting.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\fedf1ba58dced4f0b3f8c457648ceed9\System.Windows.Forms.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c2f9dd7db911053edcaaadf5fefc500a\WindowsBase.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll ()
      MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll ()


      ========== Services (SafeList) ==========

      SRV - (metasploitPostgreSQL) -- C:/METASP~1/POSTGR~1/bin/pg_ctl.exe runservice File not found
      SRV - (MozillaMaintenance) -- C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (avast! Antivirus) -- C:\Archivos de programa\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
      SRV - (AdobeARMservice) -- C:\Archivos de programa\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (Connectify) -- C:\Archivos de programa\Connectify\ConnectifyService.exe ()
      SRV - (cmdAgent) -- C:\Archivos de programa\Comodo\COMODO Internet Security\cmdagent.exe (COMODO)
      SRV - (OpenVPNAccessClient) -- C:\Archivos de programa\OpenVPN Technologies\PrivateTunnel\core\capiws.exe ()
      SRV - (!SASCORE) -- C:\Archivos de programa\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
      SRV - (IAStorDataMgrSvc) -- C:\Archivos de programa\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
      SRV - (Sony PC Companion) -- C:\Archivos de programa\Sony\Sony PC Companion\PCCService.exe (Avanquest Software)
      SRV - (STacSV) -- C:\Archivos de programa\IDT\WDM\stacsv.exe (IDT, Inc.)
      SRV - (AESTFilters) -- C:\Archivos de programa\IDT\WDM\AEstSrv.exe (Andrea Electronics Corporation)
      SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
      SRV - (WinDefend) -- C:\Archivos de programa\Windows Defender\MpSvc.dll (Microsoft Corporation)
      SRV - (WMPNetworkSvc) -- C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
      DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
      DRV - (aswVmm) -- C:\Windows\System32\drivers\aswVmm.sys ()
      DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
      DRV - (aswRvrt) -- C:\Windows\System32\drivers\aswRvrt.sys ()
      DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
      DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr2.sys (AVAST Software)
      DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
      DRV - (ggsemc) -- C:\Windows\System32\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
      DRV - (ggflt) -- C:\Windows\System32\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
      DRV - (cnnctfy2) -- C:\Windows\System32\drivers\cnnctfy2.sys (Connectify)
      DRV - (taphss6) -- C:\Windows\System32\drivers\taphss6.sys (Anchorfree Inc.)
      DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
      DRV - (inspect) -- C:\Windows\System32\drivers\inspect.sys (COMODO)
      DRV - (cmdHlp) -- C:\Windows\System32\drivers\cmdhlp.sys (COMODO)
      DRV - (cmdGuard) -- C:\Windows\System32\drivers\cmdGuard.sys (COMODO)
      DRV - (tapoas) -- C:\Windows\System32\drivers\tapoas.sys (The OpenVPN Project)
      DRV - (RTL8192Ce) -- C:\Windows\System32\drivers\rtl8192ce.sys (Realtek Semiconductor Corporation )
      DRV - (SASDIFSV) -- C:\Archivos de programa\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
      DRV - (SASKUTIL) -- C:\Archivos de programa\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
      DRV - (STHDA) -- C:\Windows\System32\drivers\stwrt.sys (IDT, Inc.)
      DRV - (WinRing0_1_2_0) -- C:\Archivos de programa\IObit\Game Booster 3\Driver\WinRing0.sys (OpenLibSys.org)
      DRV - (AmUStor) -- C:\Windows\System32\drivers\AmUStor.sys (Alcor Micro, Corp.)
      DRV - (vwifimp) -- C:\Windows\System32\drivers\vwifimp.sys (Microsoft Corporation)
      DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\SearchScopes,DefaultScope =


      IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-21-1625098435-2931684293-2376153291-1000\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-21-1625098435-2931684293-2376153291-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKU\S-1-5-21-1625098435-2931684293-2376153291-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKU\S-1-5-21-1625098435-2931684293-2376153291-1000\..\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}: "URL" = http://us.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo
      IE - HKU\S-1-5-21-1625098435-2931684293-2376153291-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..extensions.enabledAddons: %7BDDC359D1-844A-42a7-9AA1-88A850A938A8%7D:2.0.15
      FF - prefs.js..extensions.enabledAddons: %7BD4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389%7D:0.9.10
      FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.5.8
      FF - prefs.js..extensions.enabledAddons: firefox%40mega.co.nz:1.0.3
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
      FF - user.js - File not found

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_171.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
      FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
      FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.11.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/03/07 19:23:11 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/03/07 19:23:11 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

      [2013/01/05 11:00:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\Extensions
      [2013/03/07 03:07:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\Firefox\Profiles\1jdica0e.default-1361964575469\extensions
      [2013/03/07 03:07:10 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\Firefox\Profiles\1jdica0e.default-1361964575469\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
      [2013/03/06 00:12:58 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\Firefox\Profiles\1jdica0e.default-1361964575469\extensions\[email protected]
      [2013/03/05 16:03:42 | 000,004,366 | ---- | M] () (No name found) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\firefox\profiles\1jdica0e.default-1361964575469\extensions\[email protected]
      [2013/03/06 22:45:41 | 000,097,169 | ---- | M] () (No name found) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\firefox\profiles\1jdica0e.default-1361964575469\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}.xpi
      [2013/03/04 12:03:22 | 000,531,283 | ---- | M] () (No name found) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\firefox\profiles\1jdica0e.default-1361964575469\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
      [2013/02/27 05:38:08 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\firefox\profiles\1jdica0e.default-1361964575469\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
      [2013/03/02 09:54:18 | 000,434,392 | ---- | M] () (No name found) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\firefox\profiles\1jdica0e.default-1361964575469\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
      [2013/03/02 09:54:18 | 000,698,867 | ---- | M] () (No name found) -- C:\Users\CroxRazzor\AppData\Roaming\mozilla\firefox\profiles\1jdica0e.default-1361964575469\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
      [2013/03/10 05:55:46 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
      [2013/03/07 19:23:11 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
      [2013/02/25 05:17:14 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
      [2013/02/25 05:17:14 | 000,002,456 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mercadolibre-mx.xml
      [2013/02/25 05:17:14 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-es.xml
      [2013/02/25 05:17:14 | 000,001,102 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-mx.xml

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
      CHR - homepage: Google
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.152\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.152\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.152\pdf.dll
      CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
      CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_168.dll
      CHR - plugin: Java Deployment Toolkit 7.0.110.21 (Enabled) = C:\Windows\system32\npDeployJava1.dll
      CHR - Extension: Dark Legends = C:\Users\CroxRazzor\AppData\Local\Google\Chrome\User Data\Default\Extensions\acfbekphmapfjpdkfedomagjpccekhaa\2.0.0.0_0\
      CHR - Extension: AdBlock = C:\Users\CroxRazzor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.61_0\
      CHR - Extension: Arcane Legends = C:\Users\CroxRazzor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibmlkgieigeddcedpbijnpojheoddido\1.0.2.2_0\

      O1 HOSTS File: ([2012/12/31 21:13:34 | 000,000,864 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com
      O4 - HKLM..\Run: [AmIcoSinglun] C:\Archivos de programa\AmIcoSingLun\AmIcoSinglun.exe (Alcor Micro Corp.)
      O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
      O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
      O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
      O4 - HKLM..\Run: [SysTrayApp] C:\Archivos de programa\IDT\WDM\sttray.exe (IDT, Inc.)
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O7 - HKU\S-1-5-21-1625098435-2931684293-2376153291-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run-Disabled: DAEMON Tools Lite = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun (DT Soft Ltd)
      O7 - HKU\S-1-5-21-1625098435-2931684293-2376153291-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run-Disabled: New Application = C:\Program Files\Hotspot Shield\bin\openvpntray.exe
      O8 - Extra context menu item: Descargar con Mipony - C:\Program Files\MiPony\Browser\IEContext.htm ()
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A2C2CB42-4EBE-4B4B-B47C-F36C7FB8F030}: DhcpNameServer = 192.168.1.254
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2009/06/10 15:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O33 - MountPoints2\E\Shell - "" = AutoRun
      O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs: FastUserSwitchingCompatibility - File not found
      NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
      NetSvcs: Nla - File not found
      NetSvcs: Ntmssvc - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: SRService - File not found
      NetSvcs: WmdmPmSp - File not found
      NetSvcs: LogonHours - File not found
      NetSvcs: PCAudit - File not found
      NetSvcs: helpsvc - File not found
      NetSvcs: uploadmgr - File not found


      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/03/12 20:04:33 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\CroxRazzor\Desktop\OTL.exe
      [2013/03/11 04:50:16 | 000,000,000 | -H-D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
      [2013/03/11 01:41:49 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Desktop\mbar-1.01.0.1021
      [2013/03/10 18:46:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tibia
      [2013/03/10 18:46:22 | 000,000,000 | ---D | C] -- C:\Program Files\Tibia
      [2013/03/10 06:07:19 | 000,000,000 | ---D | C] -- C:\Program Files\OpenVPN Technologies
      [2013/03/10 03:18:11 | 000,000,000 | ---D | C] -- C:\Windows\System32\Lang
      [2013/03/09 17:53:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64
      [2013/03/09 06:32:30 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Desktop\themeservice
      [2013/03/09 06:13:06 | 000,000,000 | -H-D | C] -- C:\W7P_Backups
      [2013/03/09 0659 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Desktop\UnlockAero
      [2013/03/09 03:24:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
      [2013/03/09 01:32:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
      [2013/03/09 00:53:32 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\AppData\Local\Learnpulse
      [2013/03/08 03:43:05 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Connectify Hotspot
      [2013/03/08 03:41:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Connectify
      [2013/03/08 03:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\Connectify
      [2013/03/08 02:45:11 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\AppData\Local\ElevatedDiagnostics
      [2013/03/07 21:21:39 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Desktop\Asphalt 6 HD Apk
      [2013/03/07 19:22:51 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
      [2013/03/07 03:08:56 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\dwhelper
      [2013/03/07 02:42:06 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool
      [2013/03/07 02:37:28 | 000,000,000 | ---D | C] -- C:\Flashtool
      [2013/03/06 22:42:46 | 000,000,000 | ---D | C] -- C:\Windows\System32\Adobe
      [2013/03/06 17:26:28 | 000,000,000 | ---D | C] -- C:\Program Files\REALTEK PCIE Wireless LAN Driver
      [2013/03/06 17:14:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel Corporation
      [2013/03/06 17:14:02 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\AppData\Roaming\Intel Corporation
      [2013/03/06 1719 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
      [2013/03/06 04:53:04 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
      [2013/03/05 18:56:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hamster Soft
      [2013/03/05 18:56:20 | 000,000,000 | ---D | C] -- C:\Program Files\Hamster Soft
      [2013/03/05 04:27:18 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Desktop\Korn Unplugged
      [2013/03/05 04:25:49 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Desktop\Korn Untitled
      [2013/03/05 04:06:24 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\AppData\Roaming\SUPERAntiSpyware.com
      [2013/03/05 04:05:48 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
      [2013/03/05 04:05:38 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
      [2013/03/05 04:05:38 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
      [2013/03/05 03:42:15 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Desktop\Driver.Genius.v12.0.0.1211-crk-REPACK-REPT-HAPPY.XMAS
      [2013/03/02 09:32:13 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Desktop\Discografia Korn
      [2013/02/27 16:07:13 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
      [2013/02/27 16:07:13 | 000,000,000 | ---D | C] -- C:\Program Files\NirSoft
      [2013/02/27 05:27:10 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Local Settings
      [2013/02/27 04:39:13 | 000,025,200 | ---- | C] (Sony Ericsson Mobile Communications) -- C:\Windows\System32\drivers\ggsemc.sys
      [2013/02/27 04:39:12 | 000,012,400 | ---- | C] (Sony Ericsson Mobile Communications) -- C:\Windows\System32\drivers\ggflt.sys
      [2013/02/27 04:36:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Ericsson
      [2013/02/27 04:35:46 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Ericsson
      [2013/02/27 03:22:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
      [2013/02/27 03:21:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony
      [2013/02/27 03:21:48 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
      [2013/02/26 14:13:17 | 000,027,248 | ---- | C] (Connectify) -- C:\Windows\System32\drivers\cnnctfy2.sys
      [2013/02/26 12:52:23 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\AppData\Local\libimobiledevice
      [2013/02/23 14:06:15 | 000,000,000 | ---D | C] -- C:\Users\CroxRazzor\Desktop\evasi0n-win-1.5
      [2013/02/21 19:50:36 | 000,037,064 | ---- | C] (Anchorfree Inc.) -- C:\Windows\System32\drivers\taphss6.sys
      [2013/02/21 19:37:16 | 000,040,136 | ---- | C] (AnchorFree Inc.) -- C:\Windows\System32\drivers\hssdrv6.sys
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2013/03/12 20:07:14 | 000,014,208 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/03/12 20:07:14 | 000,014,208 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/03/12 20:06:03 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/03/12 20:04:43 | 000,744,986 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2013/03/12 20:04:43 | 000,651,648 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2013/03/12 20:04:43 | 000,157,454 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2013/03/12 20:04:43 | 000,120,580 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2013/03/12 20:04:34 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\CroxRazzor\Desktop\OTL.exe
      [2013/03/12 20:00:39 | 000,000,322 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
      [2013/03/12 20:00:10 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/03/12 19:59:45 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/03/12 19:59:27 | 795,762,688 | -HS- | M] () -- C:\hiberfil.sys
      [2013/03/11 21:35:49 | 000,023,846 | ---- | M] () -- C:\Users\CroxRazzor\Documents\ultima.reg
      [2013/03/11 0607 | 000,000,502 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
      [2013/03/11 01:41:09 | 013,786,977 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\mbar-1.01.0.1021.zip
      [2013/03/11 0014 | 011,323,382 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\The Doors - The End (original).mp3
      [2013/03/10 18:46:30 | 000,000,925 | ---- | M] () -- C:\Users\Public\Desktop\Tibia.lnk
      [2013/03/10 05:52:38 | 000,265,944 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
      [2013/03/10 05:39:16 | 000,000,000 | ---- | M] () -- C:\Users\CroxRazzor\AppData\Local\HamsterVideoConverterSettings.cfg
      [2013/03/09 07:47:04 | 000,020,788 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\themeservice.zip
      [2013/03/09 06:09:15 | 003,935,756 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\UnlockAero.exe
      [2013/03/09 00:58:15 | 000,004,608 | ---- | M] () -- C:\Users\CroxRazzor\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2013/03/09 00:43:26 | 014,819,328 | ---- | M] () -- C:\Users\CroxRazzor\Documents\Homero dance
      [2013/03/09 00:40:20 | 018,944,000 | ---- | M] () -- C:\Users\CroxRazzor\Documents\Homero dance2
      [2013/03/09 00:39:00 | 000,005,712 | ---- | M] () -- C:\Users\CroxRazzor\Documents\j.campro
      [2013/03/09 00:33:06 | 021,417,984 | ---- | M] () -- C:\Users\CroxRazzor\Documents\Homero Dance
      [2013/03/08 01:32:17 | 004,345,551 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\Root_with_Restore_by_Bin4ry_v18.7z
      [2013/03/07 23:46:45 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
      [2013/03/07 21:13:57 | 420,100,189 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\Asphalt 6 HD Apk.zip
      [2013/03/07 19:21:55 | 000,011,537 | ---- | M] () -- C:\Users\CroxRazzor\Documents\Korn.m3u
      [2013/03/07 0311 | 017,833,108 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\MEGADETH End Game SUB AL ESP_LYRICS.mp4
      [2013/03/06 17:33:24 | 000,765,736 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
      [2013/03/06 17:33:24 | 000,368,176 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
      [2013/03/06 17:33:24 | 000,164,736 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys
      [2013/03/06 17:33:24 | 000,062,376 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
      [2013/03/06 17:33:24 | 000,049,248 | ---- | M] () -- C:\Windows\System32\drivers\aswRvrt.sys
      [2013/03/06 17:33:23 | 000,066,336 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
      [2013/03/06 17:33:23 | 000,060,656 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys
      [2013/03/06 17:33:22 | 000,029,816 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
      [2013/03/06 17:32:51 | 000,041,664 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
      [2013/03/06 17:32:42 | 000,228,600 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
      [2013/03/06 05:16:27 | 000,014,066 | ---- | M] () -- C:\Windows\System32\results.xml
      [2013/02/28 11:35:01 | 000,014,997 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\Mr.X.jpg
      [2013/02/27 05:49:18 | 004,741,932 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\ST18i_4.1.B.0.431_kernel.ftf
      [2013/02/27 0555 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUsb_01009.Wdf
      [2013/02/27 04:53:23 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_ggflt_01009.Wdf
      [2013/02/27 04:53:22 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_ggsemc_01009.Wdf
      [2013/02/27 04:39:13 | 000,025,200 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\Windows\System32\drivers\ggsemc.sys
      [2013/02/27 04:39:13 | 000,012,400 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\Windows\System32\drivers\ggflt.sys
      [2013/02/26 14:13:17 | 000,027,248 | ---- | M] (Connectify) -- C:\Windows\System32\drivers\cnnctfy2.sys
      [2013/02/25 05:22:21 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2013/02/25 03:25:47 | 084,656,958 | ---- | M] () -- C:\Users\CroxRazzor\Desktop\Miradas 1.rar
      [2013/02/21 19:50:36 | 000,037,064 | ---- | M] (Anchorfree Inc.) -- C:\Windows\System32\drivers\taphss6.sys
      [2013/02/21 19:37:16 | 000,040,136 | ---- | M] (AnchorFree Inc.) -- C:\Windows\System32\drivers\hssdrv6.sys
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2013/03/11 21:35:46 | 000,023,846 | ---- | C] () -- C:\Users\CroxRazzor\Documents\ultima.reg
      [2013/03/11 01:40:21 | 013,786,977 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\mbar-1.01.0.1021.zip
      [2013/03/11 00:09:39 | 011,323,382 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\The Doors - The End (original).mp3
      [2013/03/10 18:46:30 | 000,000,925 | ---- | C] () -- C:\Users\Public\Desktop\Tibia.ln
      [2013/03/09 06:32:17 | 000,020,788 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\themeservice.zip
      [2013/03/09 06:09:10 | 003,935,756 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\UnlockAero.exe
      [2013/03/09 01:32:51 | 000,178,688 | ---- | C] () -- C:\Windows\System32\unrar.dll
      [2013/03/09 00:43:25 | 014,819,328 | ---- | C] () -- C:\Users\CroxRazzor\Documents\Homero dance 3
      [2013/03/09 00:40:19 | 018,944,000 | ---- | C] () -- C:\Users\CroxRazzor\Documents\Homero dance2
      [2013/03/09 00:39:00 | 000,005,712 | ---- | C] () -- C:\Users\CroxRazzor\Documents\j.camproj
      [2013/03/09 00:33:01 | 021,417,984 | ---- | C] () -- C:\Users\CroxRazzor\Documents\Homero Dance
      [2013/03/08 01:32:03 | 004,345,551 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\Root_with_Restore_by_Bin4ry_v18.7z
      [2013/03/07 20:45:13 | 420,100,189 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\Asphalt 6 HD Apk.zip
      [2013/03/07 19:21:55 | 000,011,537 | ---- | C] () -- C:\Users\CroxRazzor\Documents\Korn.m3u
      [2013/03/07 03:09:03 | 017,833,108 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\MEGADETH End Game SUB AL ESP_LYRICS.mp4
      [2013/03/05 18:57:47 | 000,000,000 | ---- | C] () -- C:\Users\CroxRazzor\AppData\Local\HamsterVideoConverterSettings.cfg
      [2013/03/02 19:23:55 | 000,164,736 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
      [2013/03/02 19:23:54 | 000,049,248 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
      [2013/02/28 11:34:58 | 000,014,997 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\Mr.X.jpg
      [2013/02/27 05:48:56 | 004,741,932 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\ST18i_4.1.B.0.431_kernel.ftf
      [2013/02/27 0555 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUsb_01009.Wdf
      [2013/02/27 04:53:23 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_ggflt_01009.Wdf
      [2013/02/27 04:53:22 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_ggsemc_01009.Wdf
      [2013/02/26 06:48:44 | 014,517,067 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\foster the people pumped up kicks (butch clancy dubstep remix).mp3
      [2013/02/25 05:22:21 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2013/02/25 03:17:15 | 084,656,958 | ---- | C] () -- C:\Users\CroxRazzor\Desktop\Miradas 1.rar
      [2013/01/26 08:25:22 | 000,000,630 | ---- | C] () -- C:\Windows\cce.INI
      [2013/01/14 23:25:55 | 000,004,608 | ---- | C] () -- C:\Users\CroxRazzor\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2012/12/31 20:46:00 | 000,451,072 | ---- | C] () -- C:\Windows\System32\ISSRemoveSP.exe

      ========== ZeroAccess Check ==========

      [2009/07/13 22:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2009/07/13 19:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/13 19:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 19:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2013/01/23 19:24:14 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\.minecraft
      [2013/03/11 21:33:49 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\AIMP3
      [2013/01/10 15:11:19 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\Auslogics
      [2013/02/25 05:24:40 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\DAEMON Tools Lite
      [2013/01/14 22:04:04 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\FreeScreenToVideo
      [2013/01/10 15:03:54 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\GlarySoft
      [2013/01/12 23:28:13 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\Metasploit
      [2013/01/17 04:20:26 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\Mipony
      [2013/01/02 15:09:05 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\Mis archivos de La Batalla por la Tierra Media™ II
      [2013/01/02 03:23:50 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\SharePod
      [2013/01/19 03:56:48 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\Thinstall
      [2013/03/10 18:52:48 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\Tibia
      [2013/02/25 05:24:40 | 000,000,000 | ---D | M] -- C:\Users\CroxRazzor\AppData\Roaming\uTorrent

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2013/02/27 05:57:24 | 000,004,874 | ---- | M] () -- C:\AdwCleaner[R1].txt
      [2013/02/27 05:59:01 | 000,005,031 | ---- | M] () -- C:\AdwCleaner[S1].txt
      [2013/03/12 19:58:37 | 000,001,676 | ---- | M] () -- C:\AdwCleaner[S2].txt
      [2013/03/01 06:53:45 | 000,012,847 | ---- | M] () -- C:\AT-Destroyer.txt
      [2009/06/10 15:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
      [2009/06/10 15:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
      [2013/03/12 19:59:27 | 795,762,688 | -HS- | M] () -- C:\hiberfil.sys
      [2013/03/12 19:59:37 | 1073,741,824 | -HS- | M] () -- C:\pagefile.sys
      [2013/03/10 05:51:30 | 000,004,356 | ---- | M] () -- C:\Personalization_Panel_Install.log
      [2013/03/05 03:54:44 | 000,253,844 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_05.03.2013_03.51.05_log.txt
      [2013/03/05 03:58:32 | 000,126,348 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_05.03.2013_03.57.14_log.txt
      [2013/03/08 01:01:23 | 000,129,766 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_08.03.2013_01.00.38_log.txt
      [2013/03/09 04:54:01 | 000,258,460 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_09.03.2013_04.51.53_log.txt
      [2013/03/09 06:21:04 | 000,130,730 | ---- | M] () -- C:\TDSSKiller.2.8.16.0_09.03.2013_06.19.40_log.txt

      < End of report >
      ---------------------------------------------------------------------------------------------------------------
      OTL Extras logfile created on: 12/03/2013 20:06:57 - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\CroxRazzor\Desktop
      Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.7600.16385)
      Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

      1011,87 Mb Total Physical Memory | 238,33 Mb Available Physical Memory | 23,55% Memory free
      1,99 Gb Paging File | 1,15 Gb Available in Paging File | 57,68% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 297,75 Gb Total Space | 196,80 Gb Free Space | 66,09% Space Free | Partition Type: NTFS

      Computer Name: CROXRAZZOR-PC | User Name: CroxRazzor | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Extra Registry (SafeList) ==========


      ========== File Associations ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
      .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
      .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

      [HKEY_USERS\S-1-5-21-1625098435-2931684293-2376153291-1000\SOFTWARE\Classes\<extension>]
      .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

      ========== Shell Spawning ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
      batfile [open] -- "%1" %*
      cmdfile [open] -- "%1" %*
      comfile [open] -- "%1" %*
      cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
      exefile [open] -- "%1" %*
      helpfile [open] -- Reg Error: Key error.
      hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
      htmlfile [edit] -- Reg Error: Key error.
      htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
      inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
      piffile [open] -- "%1" %*
      regfile [merge] -- Reg Error: Key error.
      scrfile [config] -- "%1"
      scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
      scrfile [open] -- "%1" /S
      txtfile [edit] -- Reg Error: Key error.
      Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
      Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
      Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
      Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
      Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
      Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
      Folder [explore] -- Reg Error: Value error.
      Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

      ========== Security Center Settings ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
      "cval" = 1

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
      "VistaSp1" = Reg Error: Unknown registry data type -- File not found
      "AntiVirusOverride" = 0
      "AntiSpywareOverride" = 0
      "FirewallOverride" = 0

      ========== Firewall Settings ==========

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
      "DisableNotifications" = 0
      "EnableFirewall" = 1

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
      "DisableNotifications" = 0
      "EnableFirewall" = 0

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
      "DisableNotifications" = 0
      "EnableFirewall" = 0

      ========== Authorized Applications List ==========


      ========== Vista Active Open Ports Exception List ==========

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
      "{240ADD95-18EC-4EB6-BB85-B16904BB28B3}" = rport=1900 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
      "{2D243F04-D382-4F26-9650-D1C164048617}" = lport=68 | protocol=17 | dir=in | app=c:\program files\connectify\connectifynetservices.exe |
      "{374DFF0D-FBDB-4D26-B3FC-055AE59223B4}" = lport=547 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
      "{7B62EE8E-AAAA-4833-A561-730570B2A97F}" = lport=2869 | protocol=6 | dir=in | app=system |
      "{850D500A-2663-442D-B465-BA2971B2A929}" = lport=1900 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
      "{93FD5D67-8B77-47EC-9763-91AC7C549990}" = lport=2987 | protocol=6 | dir=in | app=c:\program files\connectify\connectify.exe |
      "{9A0DE473-9E9E-4CDC-960A-FA3A3B196390}" = lport=53 | protocol=17 | dir=in | app=c:\program files\connectify\connectifynetservices.exe |
      "{9BF1CC59-C293-4F18-A031-9D3E2A728EAA}" = rport=2869 | protocol=6 | dir=out | app=system |
      "{9C711F8E-714E-467F-857A-D0B90E858856}" = lport=67 | protocol=17 | dir=in | app=c:\program files\connectify\connectifynetservices.exe |
      "{B8A11905-9EC5-4676-B8FC-F2D32C9528A4}" = lport=1303 | protocol=17 | dir=in | app=c:\program files\connectify\connectifynetservices.exe |
      "{B8B403BA-D7A3-4C6E-85F8-66C68559B06D}" = lport=1317 | protocol=17 | dir=in | app=c:\program files\connectify\connectifynetservices.exe |

      ========== Vista Active Application Exception List ==========

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
      "{1BADBE00-FD2C-498B-9FBA-4103164C8889}" = dir=out | app=c:\windows\system32\svchost.exe |
      "{67120400-15EB-4FDA-91E6-512CB6881E3B}" = protocol=17 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
      "{76338C89-3DDF-4C97-B5A7-53614ADD4A3C}" = protocol=6 | dir=out | app=c:\windows\system32\svchost.exe |
      "{83408E24-840C-44C5-B270-FF3FAC3DE853}" = dir=in | app=c:\program files\itunes\itunes.exe |
      "{83D69CB0-D50F-439F-8422-F2720FD05A45}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
      "{9178FEF6-9847-46AB-B1B4-9D49F7D67CA0}" = protocol=6 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
      "{BFD23D14-1122-4A6A-A12E-2CB55C99DB58}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
      "{CB4200C0-0D05-4388-8855-25169A5952CA}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
      "{EF9DDD6D-79C4-4E80-983C-A98ED25AC76A}" = protocol=58 | dir=in | name=internet connection sharing (router solicitation-in) |
      "TCP Query User{63F8BFE7-67D1-4D37-975B-FB9ED80E4738}C:\program files\electronic arts\la batalla por la tierra media ii\game.dat" = protocol=6 | dir=in | app=c:\program files\electronic arts\la batalla por la tierra media ii\game.dat |
      "UDP Query User{48BF7FA3-88AC-4A64-8A1F-A8AF061FAA41}C:\program files\electronic arts\la batalla por la tierra media ii\game.dat" = protocol=17 | dir=in | app=c:\program files\electronic arts\la batalla por la tierra media ii\game.dat |

      ========== HKEY_LOCAL_MACHINE Uninstall List ==========

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
      "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
      "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
      "{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}" = La Batalla por la Tierra Media™ II
      "{34B32B70-8081-11E2-89AF-B8AC6F98CCE3}" = Google Earth Plug-in
      "{38350E9E-D50E-454A-BAFC-58BBDDBE08C4}" = AxCrypt 1.7.2976.0
      "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
      "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
      "{4156CEC7-5DAC-4950-86CB-1107565A172B}_is1" = PlantasVsZombis-GOTY versión Maleck Edition
      "{459699C3-9430-4381-964B-4248D87B49F9}" = Apple Mobile Device Support
      "{49253DE2-FC99-4BE3-99A4-DAB01A8E6088}" = Camtasia Studio 6
      "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
      "{70C592EC-AE9B-4734-928B-676E824FB41E}" = MFC RunTime files
      "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
      "{7E350663-86D3-466A-AB79-28156A9ABF6E}_is1" = Hamster Free Video Converter
      "{872B1C80-38EC-4A31-A25C-980820593900}" = HP Power Manager
      "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
      "{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6
      "{9D3D8C60-A55F-4123-B2B9-173F09590E16}" = REALTEK Wireless LAN Driver
      "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
      "{AC76BA86-7AD7-1034-7B44-AB0000000001}" = Adobe Reader XI (11.0.02) - Español
      "{B0261E53-B6F1-474A-864B-E7C3CBF468E0}" = iTunes
      "{C02C7F3B-BC9C-4DF5-852F-A9FDF58A7E18}" = Alcor Micro USB Card Reader
      "{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Compatibilidad con Aplicaciones de Apple
      "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
      "{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}" = COMODO Internet Security
      "{DC38FE17-7627-40B8-8206-7C31043022A1}" = PrivateTunnel
      "{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
      "{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
      "{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.136
      "7-Zip" = 7-Zip 9.20
      "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
      "Adobe Shockwave Player" = Adobe Shockwave Player 12.0
      "AIMP3" = AIMP3
      "aTube Catcher" = aTube Catcher
      "avast" = avast! Free Antivirus
      "CCleaner" = CCleaner
      "Connectify" = Connectify Hotspot
      "DAEMON Tools Lite" = DAEMON Tools Lite
      "Flashtool" = Flashtool
      "FormatFactory" = FormatFactory 3.0.1
      "Game Booster_is1" = Game Booster 3
      "Glary Utilities_is1" = Glary Utilities 2.53.0.1726
      "Google Chrome" = Google Chrome
      "HDMI" = Intel(R) Graphics Media Accelerator Driver
      "InstallShield_{C02C7F3B-BC9C-4DF5-852F-A9FDF58A7E18}" = Alcor Micro USB Card Reader
      "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versión 1.70.0.1100
      "Metin2_is1" = Metin2
      "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
      "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
      "MiPony" = MiPony 2.0.3
      "Mozilla Firefox 19.0.2 (x86 es-MX)" = Mozilla Firefox 19.0.2 (x86 es-MX)
      "MozillaMaintenanceService" = Mozilla Maintenance Service
      "NoIPDUC" = No-IP DUC
      "RocketDock_is1" = RocketDock 1.3.5
      "Tibia_is1" = Tibia
      "Update Engine" = Sony Ericsson Update Engine
      "uTorrent" = µTorrent
      "VLC media player" = VLC media player 2.0.5
      "WinRAR archiver" = WinRAR 4.11 (32-bit)

      ========== Last 20 Event Log Errors ==========

      [ Application Events ]
      Error - 11/03/2013 4:13:18 | Computer Name = CroxRazzor-PC | Source = ConnectifySvc | ID = 0
      Description =

      Error - 11/03/2013 4:37:33 | Computer Name = CroxRazzor-PC | Source = ConnectifySvc | ID = 0
      Description =

      Error - 11/03/2013 6:46:27 | Computer Name = CroxRazzor-PC | Source = ConnectifySvc | ID = 0
      Description =

      Error - 11/03/2013 6:46:27 | Computer Name = CroxRazzor-PC | Source = ConnectifySvc | ID = 0
      Description =

      Error - 11/03/2013 9:46:59 | Computer Name = CroxRazzor-PC | Source = SideBySide | ID = 16842785
      Description = Error al generar el contexto de activación para "c:\flashtool\FlashTool64.exe".
      No
      se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
      Use
      sxstrace.exe para obtener un diagnóstico detallado.

      Error - 11/03/2013 9:50:38 | Computer Name = CroxRazzor-PC | Source = SideBySide | ID = 16842785
      Description = Error al generar el contexto de activación para "c:\program files\Sony\sony
      pc companion\Drivers\DPInst64.exe". No se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
      Use
      sxstrace.exe para obtener un diagnóstico detallado.

      Error - 11/03/2013 17:28:47 | Computer Name = CroxRazzor-PC | Source = Application Error | ID = 1000
      Description = Nombre de la aplicación con errores: svchost.exe, versión: 6.1.7600.16385,
      marca de tiempo: 0x4a5bc100 Nombre del módulo con errores: unknown, versión: 0.0.0.0,
      marca de tiempo: 0x00000000 Código de excepción: 0xc0000005 Desplazamiento de errores:
      0x68bb8da6 Id. del proceso con errores: 0x490 Hora de inicio de la aplicación con
      errores: 0x01ce1e459de7e665 Ruta de acceso de la aplicación con errores: C:\Windows\system32\svchost.exe
      Ruta
      de acceso del módulo con errores: unknown Id. del informe: a7f1e43b-8a92-11e2-b5b4-441ea1cd393d

      Error - 12/03/2013 1:36:25 | Computer Name = CroxRazzor-PC | Source = ConnectifySvc | ID = 0
      Description =

      Error - 12/03/2013 17:04:19 | Computer Name = CroxRazzor-PC | Source = ConnectifySvc | ID = 0
      Description =

      Error - 12/03/2013 22:00:16 | Computer Name = CroxRazzor-PC | Source = ConnectifySvc | ID = 0
      Description =

      [ System Events ]
      Error - 11/03/2013 17:30:28 | Computer Name = CroxRazzor-PC | Source = Service Control Manager | ID = 7032
      Description = El Administrador de control de servicios intentó realizar una acción
      correctora (Reiniciar el servicio) después de la terminación inesperada del servicio
      Servidor, pero ocurrió el siguiente error: %%1056

      Error - 11/03/2013 17:31:28 | Computer Name = CroxRazzor-PC | Source = Service Control Manager | ID = 7032
      Description = El Administrador de control de servicios intentó realizar una acción
      correctora (Reiniciar el servicio) después de la terminación inesperada del servicio
      Examinador de equipos, pero ocurrió el siguiente error: %%1056

      Error - 11/03/2013 17:31:28 | Computer Name = CroxRazzor-PC | Source = Service Control Manager | ID = 7032
      Description = El Administrador de control de servicios intentó realizar una acción
      correctora (Reiniciar el servicio) después de la terminación inesperada del servicio
      Módulos de creación de claves de IPsec para IKE y AuthIP, pero ocurrió el siguiente
      error: %%1056

      Error - 11/03/2013 17:31:28 | Computer Name = CroxRazzor-PC | Source = Service Control Manager | ID = 7032
      Description = El Administrador de control de servicios intentó realizar una acción
      correctora (Reiniciar el servicio) después de la terminación inesperada del servicio
      Instrumental de administración de Windows, pero ocurrió el siguiente error: %%1056

      Error - 12/03/2013 1:36:00 | Computer Name = CroxRazzor-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
      Description = El módulo de extensibilidad de WLAN no se pudo iniciar. Ruta de acceso
      del módulo: C:\Windows\system32\Rtlihvs.dll Código de error: 126

      Error - 12/03/2013 1:36:04 | Computer Name = CroxRazzor-PC | Source = Service Control Manager | ID = 7000
      Description = El servicio metasploitPostgreSQL no pudo iniciarse debido al siguiente
      error: %%2

      Error - 12/03/2013 17:03:54 | Computer Name = CroxRazzor-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
      Description = El módulo de extensibilidad de WLAN no se pudo iniciar. Ruta de acceso
      del módulo: C:\Windows\system32\Rtlihvs.dll Código de error: 126

      Error - 12/03/2013 17:03:58 | Computer Name = CroxRazzor-PC | Source = Service Control Manager | ID = 7000
      Description = El servicio metasploitPostgreSQL no pudo iniciarse debido al siguiente
      error: %%2

      Error - 12/03/2013 21:59:51 | Computer Name = CroxRazzor-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
      Description = El módulo de extensibilidad de WLAN no se pudo iniciar. Ruta de acceso
      del módulo: C:\Windows\system32\Rtlihvs.dll Código de error: 126

      Error - 12/03/2013 21:59:56 | Computer Name = CroxRazzor-PC | Source = Service Control Manager | ID = 7000
      Description = El servicio metasploitPostgreSQL no pudo iniciarse debido al siguiente
      error: %%2


      < End of report >

    Página 1 de 3 123 ÚltimoÚltimo