• Registrarse
  • Iniciar sesión


  • Resultados 1 al 9 de 9

    Uso de Cpu 100% Causa Nt Kernel & system. (Reabierto)

    Hola Como estan? espero que bien Bueno vengo a pedir Ayuda por que tengo un problema demaciado molesto desde hace un tiempo que me consume el 100% del cpu al estar jugando despues de unos ...

    1. #1
      Usuario Avatar de Darkattack13
      Registrado
      sep 2012
      Ubicación
      uruapan michoacan
      Mensajes
      14

      Malware Uso de Cpu 100% Causa Nt Kernel & system. (Reabierto)

      Hola Como estan? espero que bien Bueno vengo a pedir Ayuda por que tengo un problema demaciado molesto desde hace un tiempo que me consume el 100% del cpu al estar jugando despues de unos 10 minutos sube a 100% cierro el juego y baja a 70% antes no me pasaba eso

      Bueno aqui una foto de mi problema
      http://www.subir-fotos-gratis.com/up/5d25d637d431e4dc90c0669c7c4e0cbd.png

      Bueno mis pc es una
      Lanix Titan
      Windows 7 Professional
      2gb ram DDR2
      disco duro de 140Gb
      2.70 ghz Dual-core
      32 Bit
      Bios - Phoenix Award v6.00pg
      xD nose que mas poner bueno espero alguna respuesta Gracias :)




      ---



      Logfile of Trend Micro HijackThis v2.0.4
      Scan saved at 01:09:59 p.m., on 15/03/2013
      Platform: Windows 7 SP1 (WinNT 6.00.3505)
      MSIE: Internet Explorer v9.00 (9.00.8112.16457)
      Boot mode: Normal

      Running processes:
      C:\Windows\system32\taskhost.exe
      C:\Windows\system32\Dwm.exe
      C:\Windows\Explorer.EXE
      C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
      C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
      C:\Windows\System32\ps2.EXE
      C:\Windows\System32\javaw.exe
      C:\Program Files\Java\jre7\bin\javaw.exe
      C:\Users\Ramiro\AppData\Local\Facebook\Update\FacebookUpdate.exe
      C:\Users\Ramiro\AppData\Local\Akamai\netsession_win.exe
      C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
      C:\Users\Ramiro\AppData\Local\Akamai\netsession_win.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Users\Ramiro\Downloads\HijackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.myplaycity.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.myplaycity.com/
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
      O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
      O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
      O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
      O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
      O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll
      O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
      O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
      O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe"
      O4 - HKLM\..\Run: [PS2] C:\Windows\system32\ps2.exe
      O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
      O4 - HKCU\..\Run: [KSS] "C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
      O4 - HKCU\..\Run: [Oracle Java] "C:\Windows\system32\javaw.exe" -jar "C:\Users\Ramiro\AppData\Roaming\java_u.jar"
      O4 - HKCU\..\Run: [MarbleStation] C:\NetmarbleGlobal\MarbleStation\glbMSLauncher.exe
      O4 - HKCU\..\Run: [Firewall] "C:\Program Files\Java\jre7\bin\javaw.exe" -jar "C:\Users\Ramiro\AppData\Roaming\servidorcito\servidorcito.jar"
      O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Ramiro\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
      O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
      O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Ramiro\AppData\Local\Akamai\netsession_win.exe"
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
      O9 - Extra button: Teclado Virtual - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
      O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
      O9 - Extra button: Comprobación de direcciones URL - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll
      O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Servicio Kaspersky Anti-Virus (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
      O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
      O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
      O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Servicio de Kaspersky Security Scan (KSS) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
      O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
      O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
      O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
      O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
      O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
      O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
      O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
      O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
      O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
      O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
      O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
      O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
      O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

      --
      End of file - 17405 bytes

    2. #2
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.704

      Re: Uso de Cpu 100% Causa Nt Kernel & system

      Buenas Darkattack13.

      Para revisar tu maquina, sigue estos pasos, en el orden indicado y de uno a uno :

      Descarga y ejecuta >> Ccleaner.

      • Usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
      • Después usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).


      Descarga, actualiza y ejecuta >> Malwarebytes’ Anti-Malware.

      • En la pestaña Actualizar pulsas sobre el botón "Buscar Actualizaciones"
      • En la pestaña Escáner marcas "Realizar un Examen Completo."
      • Con la opción de "Eliminar lo seleccionado" y Marcando TODO lo que encuentres lo mandas todo a la cuarentena y reinicias el sistema.
      • En la pestaña "Registros", encontrarás el informe del MBAM, lo copias y pegas en tu próxima respuesta, para analizarlo.


      Descarga >> AdwCleaner | InfoSpyware.


      • Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
      • Y cierra todos los programas que tengas abiertos.
      • Ejecuta Adwcleaner. (Si usas Windows Vista o 7 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Pulsar en el Botón Supresión.
      • Sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
      • Guardas el reporte que te saldrá en el escritorio, para pegarlo en tu próxima respuesta.



      Y finalmente descarga >> OTL By OldTimer

      *** Para Ejecutar OTL sigue estos pasos :

      • Cerrar todos programas que tengas abiertos y hacer doble click en el ícono de OTL para ejecutarlo.
      • Dejarlo correr y esperar a que aparezca el menú de OTL..
      • Cuando salga el menú de OTL, debes cambiar debajo de: "Tipo de Análisis" poniendo Resultado Mínimo.
      • Marcar la casilla Analizar Todos.
      • Marcar las opciones: Buscar LOP y Buscar Purity.
      • Marcar las Opciones: Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
      • Copiar y Pegar las líneas del siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

        NOTA: No copiar la palabra Código:
        Código:
        netsvcs
        msconfig
        %SYSTEMDRIVE%\*.*
        CREATERESTOREPOINT


      • Por favor No cambies el resto de la configuración a menos que te lo solicitemos.


      • Presionar el botón .
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
      • Copiar y pegar el contenido del archivo OTL.txt en tu próxima respuesta.


      En tu próxima respuesta recuerda :

      - Ponernos los informes de Malwarebytes, AdwCleaner y OTL.txt.

      - Y nos cuentas como funciona tu equipo, en relación al problema planteado.

      Saludos, Javier.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Darkattack13
      Registrado
      sep 2012
      Ubicación
      uruapan michoacan
      Mensajes
      14

      Re: Uso de Cpu 100% Causa Nt Kernel & system

      Malwarebytes Anti-Malware (PRO) 1.70.0.1100
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2013.03.16.08

      Windows 7 Service Pack 1 x86 NTFS
      Internet Explorer 9.0.8112.16421
      Ramiro :: RAMIRO-PC [administrador]

      Protección: Personas de movilidad reducida

      16/03/2013 11:43:43 a.m.
      mbam-log-2013-03-16 (11-43-43).txt

      Tipos de Análisis: Análisis Completo (C:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 417177
      Tiempo transcurrido: 1 hora(s), 31 minuto(s), 38 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 2
      C:\Users\Ramiro\AppData\Roaming\java_u.jar (Trojan.Agent) -> En cuarentena y eliminado con éxito.
      C:\Users\Ramiro\AppData\Roaming\info301.xda (Malware.Trace) -> En cuarentena y eliminado con éxito.

      fin)



      # AdwCleaner v2.114 - Fichero creado el 16/03/2013 a 13:29:29
      # Actualizado el 05/03/2013 por Xplode
      # Sistema operativo : Windows 7 Professional Service Pack 1 (32 bits)
      # Usuario : Ramiro - RAMIRO-PC
      # Modo de inicio : Normal
      # Ejecutado desde : C:\Users\Ramiro\Desktop\adwcleaner.exe
      # Opción [Supresión]


      ***** [Servicios] *****


      ***** [Ficheros / Carpetas] *****

      Carpeta Suprimido : C:\Program Files\Ask.com
      Carpeta Suprimido : C:\ProgramData\Babylon
      Carpeta Suprimido : C:\ProgramData\Iminent
      Carpeta Suprimido : C:\ProgramData\Tarma Installer
      Carpeta Suprimido : C:\ProgramData\Trymedia
      Carpeta Suprimido : C:\Users\Ramiro\AppData\Local\Babylon
      Carpeta Suprimido : C:\Users\Ramiro\AppData\Local\SwvUpdater
      Carpeta Suprimido : C:\Users\Ramiro\AppData\LocalLow\Toolbar4
      Fichero Suprimido : C:\Windows\system32\Uninstall.exe

      ***** [Registro] *****

      Clave Supprimida : HKCU\Software\1ClickDownload
      Clave Supprimida : HKCU\Software\APN PIP
      Clave Supprimida : HKCU\Software\Babylon
      Clave Supprimida : HKCU\Software\Iminent
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
      Clave Supprimida : HKCU\Software\Softonic
      Clave Supprimida : HKLM\Software\APN
      Clave Supprimida : HKLM\Software\AskToolbar
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{C0CEA572-2978-4DFC-A672-8100FF0E276A}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\BabylonTC.EXE
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\escort.DLL
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
      Clave Supprimida : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho
      Clave Supprimida : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin
      Clave Supprimida : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\BabylonTC.GingerApplication
      Clave Supprimida : HKLM\SOFTWARE\Classes\BabylonTC.GingerApplication.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{20E1481B-E285-4ABC-ADC7-AE24842B81CD}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{6AC0BB10-C922-45E2-857D-2A368FE749E5}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{DF390AA1-1E65-4825-B8E7-BE6B47BD56B8}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
      Clave Supprimida : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
      Clave Supprimida : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandler
      Clave Supprimida : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
      Clave Supprimida : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
      Clave Supprimida : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{95734BDE-B702-45B9-86E5-27676729F904}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Prod.cap
      Clave Supprimida : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
      Clave Supprimida : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
      Clave Supprimida : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
      Clave Supprimida : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
      Clave Supprimida : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
      Clave Supprimida : HKLM\SOFTWARE\Google\Chrome\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl
      Clave Supprimida : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
      Clave Supprimida : HKLM\Software\Iminent
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASAPI32
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASMANCS
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASAPI32
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0702826FCAC36EE52AC0441EEEEE2170
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1198E28F40C3E185E9958608554D4253
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15A073601B9AEC3549BE4A9314794615
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F7C80F9CE5CDF44E9AADDC99402534C
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2310FC151CD4F185798FA0996B3524D7
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\28572D2E2DE533256AC6B560EA573C22
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ABB56EABB920EB59B04BDDD26A62083
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DABA02DFED47E352A2FA2EBDD6F6187
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\311567B4A9A002050BB9423FD73FB880
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\373FCED70D7F84E5FB5F3F7B76BEE024
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3BE992C130B235E53A2937391FDCA35B
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3DA5F64B3483DE549947A9164ACBAD21
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3ED93605BB9B6635E9D0D86615AF31F1
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4759B017032BA185F9BA6F7DBC95A2D4
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A78ABCBB54E46E5482A3EE0AD66C39E
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F9E947B6B895EB5A86757FC5D3DB862
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4FEEA83BF72B97E43A2DF0EE4BE4F261
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\509EC7EFB89B7D942997574AB14037A4
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50A730A9A3A61BF5BA70CA8A3B7C133B
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\51A95A1D4CDE4F958A9451FBB39BF54A
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\536133807DE80465BA6CD0A9742B7DE5
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5E25036E68895D45B95E72D1C3C58C74
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60FD8CD5BE007315CA3B5C7E41F24017
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618E7D05458C4F257909ED9C8CDC0D66
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\621C21014D3C152529E2460FA6304EE3
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6241FF6F317CABD4EBBEE0DE9076BD94
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\636B9C23C79154B57AB561F39A139BFD
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65AAF0F0CB7F0B45F900FDF19CEAAF2B
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6879A5E348601C45986308CA84958E94
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A6F3B7A9805E1F5492A1020EEDF2341
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B1F5D204E4EEB342A5AD1D7E60D61BF
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7005A2A4DCF9DD7548137AB17E3A3AF3
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\712EAF07EE73CC65C822CC3BAE3B2483
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7947B301B2446E752A3FE06EAD7D26B5
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7987CE52D13E16258B0E1E3DB1BB0974
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7BEED197C514FDA53901AE8DD8EF0891
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DFDCF03D46C34159BDE29FBDBF1ACF5
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890F436B85B790A55A582B7307DA12CE
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C13DA6755F685B529615C8E92B3CA39
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D07CD9CB3E6BE652872BF06A1CCA782
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90841B1FC98200349925C88999866F17
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94194FDD4DF523E53A888D65722A135D
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95266D07D008D2E4E9B6F8E0DD15432A
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A72F23B1D745C27508518132197BC982
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A89E2B6FB14D8275DA63D075171DA184
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9C43CD4001E9E4518B274AF9A0EFDA9
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABA081CF7F19915FBB80B3BAF47CE63
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC2A0FFD0A1686D53A4E24D6E96949E4
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5BDB2750259915D8442D4591A7717B
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1A79C71D5DC1C150B76B6ED11195DFC
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D497DB33974935488761F7C4C3D755
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B752EF3300008394886C402CC27B474F
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B8C8BCC1206978D51A8B9EECBF806C53
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAD3576CEA646895B962F94754612791
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB4091512C8F4295E99CE2D061ED2020
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE6BBC9A31531F598794A62120B51C7
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C19162788CA4D235E829F88E2F771567
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71F07DA356B66B5484A8E7F2ADEB7DC
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C96AD15EE8E887B56BAF2136A9088503
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9E6B66ECC49D155888399C51D05C49E
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA360F24F0B214744BE40657FDA0B727
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE85F265816AE2D4E9B73C3E207E679C
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5389AEEA4A1E20428D045E86BCF643B
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5B62BB7BC607FB539585E2B7B6AFD16
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB027F01D4D53765C8E4FBE7DB77E07E
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC2EB492393411F5ABE8ED13C59FBF20
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDCA763D4C48A105086B4CCCEE78043F
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEF7558C7CD27EF46AF802AFBE402675
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E09F4A6B9D2A08B599AE9E38BFC93CD6
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E27B6535D0D94A24E91047C7D86F27BC
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45D171E075A5425CBACF6631A45FA39
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E513C2076D90AD04F888BD762143F191
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8F4C985459564F5B8DCFF2B3C7EBD27
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E96E33222BAC06B57A1FA9D72951C945
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA46CE9007F70A5CAFA5F26E5DDEBE5
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE43FF091A8714A599F33EF2533FB59A
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE790015CF30DAA569960905FF1651A0
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB44C47185BD304D80FDF5A4BBE8F54
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F214EB834D2EC474CA76C1CDE306CF3A
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F25491036D0FA5D5FA6742F5742F151A
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F71371A90E93D605C8B0A71F163F625C
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7507D4D4C310125E9A22BD909A41FB6
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F79C21D785419125595AC59458A6142D
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA15C90F092A60F53A4E0F88CED02968
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA1CF130B3D58B553833ACB6BE8AFAD4
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB0F1A18E4F0DBD509A42F4D4C05C02A
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FD17ED194F1C2B457B4F6EF4AE8DEAF3
      Clave Supprimida : HKLM\Software\PIP
      Clave Supprimida : HKLM\Software\Tarma Installer
      Clave Supprimida : HKLM\Software\Umbrella
      Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
      Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
      Valor Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]

      ***** [Navegadores] *****

      -\\ Internet Explorer v9.0.8112.16470

      [OK] El registro no contiene ninguna entrada ilegítima.

      -\\ Mozilla Firefox v17.0.1 (es-MX)

      Fichero : C:\Users\Ramiro\AppData\Roaming\Mozilla\Firefox\Profiles\92e0ez6k.default\prefs.js

      C:\Users\Ramiro\AppData\Roaming\Mozilla\Firefox\Profiles\92e0ez6k.default\user.js ... Suprimido !

      Supprimida : user_pref("browser.search.order.1", "Ask.com");
      Supprimida : user_pref("browser.search.selectedEngine", "Ask.com");
      Supprimida : user_pref("browser.search.defaultengine", "Ask.com");
      Supprimida : user_pref("browser.search.defaultenginename", "Ask.com");

      -\\ Google Chrome v25.0.1364.97

      Fichero : C:\Users\Ramiro\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      -\\ Opera v11.1.1190.0

      Fichero : C:\Users\Ramiro\AppData\Roaming\Opera\Opera\operaprefs.ini

      [OK] El fichero no contiene ninguna entrada ilegítima.

      *************************

      AdwCleaner[S1].txt - [346 octets] - [16/03/2013 11:47:56]
      AdwCleaner[S2].txt - [30755 octets] - [16/03/2013 13:29:29]

      ########## EOF - C:\AdwCleaner[S2].txt - [30816 octets] ##########

    4. #4
      Usuario Avatar de Darkattack13
      Registrado
      sep 2012
      Ubicación
      uruapan michoacan
      Mensajes
      14
      OTL logfile created on: 16/03/2013 01:35:01 p.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Ramiro\Desktop
      Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 0000080A | Country: México | Language: ESM | Date Format: dd/MM/yyyy

      1.99 Gb Total Physical Memory | 1.07 Gb Available Physical Memory | 53.93% Memory free
      3.94 Gb Paging File | 2.81 Gb Available in Paging File | 71.20% Paging File free
      Paging file location(s): c:\pagefile.sys 2000 4000 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
      Drive C: | 139.48 Gb Total Space | 31.76 Gb Free Space | 22.77% Space Free | Partition Type: NTFS

      Computer Name: RAMIRO-PC | User Name: Ramiro | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Ramiro\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\Google\Chrome\Application\chrome.exe (Google Inc.)
      PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
      PRC - C:\Archivos de programa\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe (TuneUp Software)
      PRC - C:\Archivos de programa\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe (TuneUp Software)
      PRC - C:\Archivos de programa\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe (Kaspersky Lab ZAO)
      PRC - C:\Windows\explorer.exe (Microsoft Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\Archivos de programa\Google\Chrome\Application\25.0.1364.97\ppgooglenaclpluginchrome.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\25.0.1364.97\PepperFlash\pepflashplayer.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\25.0.1364.97\pdf.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\25.0.1364.97\libglesv2.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\25.0.1364.97\libegl.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\25.0.1364.97\ffmpegsumo.dll ()
      MOD - C:\Archivos de programa\Kaspersky Lab\Kaspersky Security Scan 2.0\qtscript4.dll ()
      MOD - C:\Archivos de programa\Kaspersky Lab\Kaspersky Security Scan 2.0\qtgui4.dll ()
      MOD - C:\Archivos de programa\Kaspersky Lab\Kaspersky Security Scan 2.0\qtnetwork4.dll ()
      MOD - C:\Archivos de programa\Kaspersky Lab\Kaspersky Security Scan 2.0\qtsql4.dll ()
      MOD - C:\Archivos de programa\Kaspersky Lab\Kaspersky Security Scan 2.0\qtdeclarative4.dll ()
      MOD - C:\Archivos de programa\Kaspersky Lab\Kaspersky Security Scan 2.0\qtcore4.dll ()


      ========== Services (SafeList) ==========

      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (maconfservice) -- C:\Archivos de programa\ma-config.com\maconfservice.exe (CybelSoft)
      SRV - (MBAMService) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (MozillaMaintenance) -- C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (npggsvc) -- C:\Windows\System32\GameMon.des (INCA Internet Co., Ltd.)
      SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
      SRV - (TuneUp.UtilitiesSvc) -- C:\Archivos de programa\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe (TuneUp Software)
      SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
      SRV - (KSS) -- C:\Archivos de programa\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe (Kaspersky Lab ZAO)
      SRV - (WMPNetworkSvc) -- C:\Archivos de programa\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
      SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
      SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
      SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
      SRV - (WinDefend) -- C:\Archivos de programa\Windows Defender\MpSvc.dll (Microsoft Corporation)
      SRV - (odserv) -- C:\Archivos de programa\Common Files\microsoft shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
      SRV - (ose) -- C:\Archivos de programa\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV - (ZTEusbser6k) -- system32\DRIVERS\ZTEusbser6k.sys File not found
      DRV - (ZTEusbnmea) -- system32\DRIVERS\ZTEusbnmea.sys File not found
      DRV - (ZTEusbmdm6k) -- system32\DRIVERS\ZTEusbmdm6k.sys File not found
      DRV - (XDva401) -- C:\Windows\system32\XDva401.sys File not found
      DRV - (XDva400) -- C:\Windows\system32\XDva400.sys File not found
      DRV - (XDva399) -- C:\Windows\system32\XDva399.sys File not found
      DRV - (LMIInfo) -- C:\ham\x86\RaInfo.sys File not found
      DRV - (EagleXNt) -- C:\Windows\system32\drivers\EagleXNt.sys File not found
      DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
      DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
      DRV - (ggsemc) -- C:\Windows\System32\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
      DRV - (ggflt) -- C:\Windows\System32\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
      DRV - (taphss6) -- C:\Windows\System32\drivers\taphss6.sys (Anchorfree Inc.)
      DRV - (LMIRfsClientNP) -- C:\Windows\System32\LMIRfsClientNP.dll (LogMeIn, Inc.)
      DRV - (TuneUpUtilitiesDrv) -- C:\Archivos de programa\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys (TuneUp Software)
      DRV - (LMIRfsDriver) -- C:\Windows\System32\drivers\LMIRfsDriver.sys (LogMeIn, Inc.)
      DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV - (driverhardwarev2) -- C:\Archivos de programa\ma-config.com\Drivers\driverhardwarev2.sys (CybelSoft)
      DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
      DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
      DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
      DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
      DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
      DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
      DRV - (Serial) -- C:\Windows\System32\drivers\serial.sys (Brother Industries Ltd.)
      DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
      DRV - (Ps2) -- C:\Windows\System32\drivers\PS2.sys (Hewlett-Packard Company)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MyPlayCity Search
      IE - HKLM\..\SearchScopes,DefaultScope =
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


      IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MyPlayCity Search
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/cse?cx=partner-pub-9609672093949948%3A2pdkvfm6u5y&ie=ISO-8859-1&q={searchTerms}&src=IE-SearchBox&maxwidth={ie:maxWidth}&rowheight={ie:rowHeight}&sectionHeight={ie:sectionHeight}&FORM=IE8SSC&market={Language}
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\..\SearchScopes\{B1D52996-209E-42E7-BF02-D02DE7191BE8}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=AVR-3&o=APN10401&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^ABZ&apn_dtid=^YYYYYY^YY^MX&apn_uid=3c1cf631-e351-47e1-9562-5494865bc3dc&apn_sauid=6C413137-3F4E-4346-887C-A88B3EA9CBBC
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

      ========== FireFox ==========

      FF - prefs.js..Keyword.Enabled: "true"
      FF - prefs.js..browser.search.defaultthis.engineName: "Google"
      FF - prefs.js..browser.search.defaulturl: "http://www.google.com/cse?cx=partner-pub-9609672093949948%3A2pdkvfm6u5y&ie=ISO-8859-1&q="
      FF - prefs.js..browser.startup.homepage: "http://home.myplaycity.com/"
      FF - prefs.js..extensions.enabledAddons: support%40mozilla.com:2.3
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
      FF - prefs.js..keyword.URL: "http://home.myplaycity.com/results.php?category=web&s="
      FF - user.js - File not found

      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_168.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@ma-config.com/HardwareDetection: C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
      FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
      FF - HKLM\Software\MozillaPlugins\@raidcall.en/RCplugin: C:\Users\Ramiro\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: File not found
      FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Ramiro\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
      FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Ramiro\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
      FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/01/22 22:18:27 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\Ramiro\AppData\Roaming\[email protected] [2013/02/17 20:53:18 | 000,000,000 | ---D | M]

      [2012/11/24 13:44:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ramiro\AppData\Roaming\mozilla\Extensions
      [2013/02/19 20:49:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ramiro\AppData\Roaming\mozilla\Firefox\Profiles\92e0ez6k.default\extensions
      [2013/02/19 20:49:54 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\Ramiro\AppData\Roaming\mozilla\firefox\profiles\92e0ez6k.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
      [2013/01/22 21:37:53 | 000,002,079 | ---- | M] () -- C:\Users\Ramiro\AppData\Roaming\mozilla\firefox\profiles\92e0ez6k.default\searchplugins\google.xml
      [2012/10/25 07:34:54 | 000,001,999 | ---- | M] () -- C:\Users\Ramiro\AppData\Roaming\mozilla\firefox\profiles\92e0ez6k.default\searchplugins\myplaycity.xml
      [2013/03/15 01:04:40 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
      [2012/12/07 12:59:34 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
      [2012/11/20 03:00:06 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
      [2012/11/20 03:00:06 | 000,002,456 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mercadolibre-mx.xml
      [2012/11/20 03:00:06 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-es.xml
      [2012/11/20 03:00:06 | 000,001,102 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-mx.xml

      ========== Chrome ==========

      CHR - default_search_provider: MyPlayCity (Enabled)
      CHR - default_search_provider: search_url = http://home.myplaycity.com/results.php?category=web&s={searchTerms}
      CHR - default_search_provider: suggest_url =
      CHR - homepage: MyPlayCity Search
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.97\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.97\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.97\pdf.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll
      CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
      CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
      CHR - plugin: Ma-Config.com plugin (Enabled) = C:\Program Files\ma-config.com\nphardwaredetection.dll
      CHR - plugin: Nexon Game Controller (Enabled) = C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
      CHR - plugin: Unity Player (Enabled) = C:\Users\Ramiro\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
      CHR - plugin: Roblox Launcher Plugin (Enabled) = C:\Users\Ramiro\AppData\Local\Roblox\Versions\version-7f608c9e01fb44d4\\NPRobloxProxy.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_110.dll
      CHR - plugin: Java Deployment Toolkit 7.0.70.11 (Enabled) = C:\Windows\system32\npDeployJava1.dll
      CHR - Extension: Google Drive = C:\Users\Ramiro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
      CHR - Extension: YouTube = C:\Users\Ramiro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
      CHR - Extension: B\u00FAsqueda de Google = C:\Users\Ramiro\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
      CHR - Extension: Battlefield Play4Free = C:\Users\Ramiro\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.80.5_0\
      CHR - Extension: Gmail = C:\Users\Ramiro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

      O1 HOSTS File: ([2009/06/10 15:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Archivos de programa\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O4 - HKLM..\Run: [] File not found
      O4 - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000..\Run: [KSS] C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe (Kaspersky Lab ZAO)
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O7 - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
      O8 - Extra context menu item: E&xportar a Microsoft Excel - C:\Archivos de programa\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
      O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Archivos de programa\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
      O13 - gopher Prefix: missing
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/ge...sh/swflash.cab (Shockwave Flash Object)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.132.141 10.0.132.129
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DF60E3A8-F2D7-49E1-95B1-DD0166C321B0}: DhcpNameServer = 10.0.132.141 10.0.132.129
      O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
      O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 0
      O32 - AutoRun File - [2009/06/10 15:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
      O33 - MountPoints2\{b96d9bef-3bc0-11e2-82d6-00226809bc3e}\Shell - "" = AutoRun
      O33 - MountPoints2\{b96d9bef-3bc0-11e2-82d6-00226809bc3e}\Shell\AutoRun\command - "" = E:\Startme.exe
      O33 - MountPoints2\{d0110890-4713-11e2-82cf-00226809bc3e}\Shell - "" = AutoRun
      O33 - MountPoints2\{d0110890-4713-11e2-82cf-00226809bc3e}\Shell\AutoRun\command - "" = E:\Startme.exe
      O33 - MountPoints2\E\Shell - "" = AutoRun
      O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\AutoRun.exe
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs: FastUserSwitchingCompatibility - File not found
      NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
      NetSvcs: Nla - File not found
      NetSvcs: Ntmssvc - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: SRService - File not found
      NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (TuneUp Software)
      NetSvcs: WmdmPmSp - File not found
      NetSvcs: LogonHours - File not found
      NetSvcs: PCAudit - File not found
      NetSvcs: helpsvc - File not found
      NetSvcs: uploadmgr - File not found

      MsConfig - StartUpReg: Aeria Ignite - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: Akamai NetSession Interface - hkey= - key= - C:\Users\Ramiro\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
      MsConfig - StartUpReg: avgnt - hkey= - key= - File not found
      MsConfig - StartUpReg: DAEMON Tools Pro Agent - hkey= - key= - C:\Program Files\DAEMON Tools Pro\DTAgent.exe (DT Soft Ltd)
      MsConfig - StartUpReg: Facebook Update - hkey= - key= - C:\Users\Ramiro\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
      MsConfig - StartUpReg: Firewall - hkey= - key= - C:\Program Files\Java\jre7\bin\javaw.exe (Oracle Corporation)
      MsConfig - StartUpReg: LogMeIn Hamachi Ui - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: MarbleStation - hkey= - key= - C:\NetmarbleGlobal\MarbleStation\GlbMSLauncher.exe (CJ E&M)
      MsConfig - StartUpReg: Oracle Java - hkey= - key= - File not found
      MsConfig - StartUpReg: PS2 - hkey= - key= - File not found
      MsConfig - StartUpReg: Sony PC Companion - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - State: "bootini" - 2
      MsConfig - State: "services" - 2
      MsConfig - State: "startup" - 2

      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/03/16 11:48:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Ramiro\Desktop\OTL.exe
      [2013/03/16 00:43:45 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Desktop\Music
      [2013/03/16 00:18:56 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Desktop\rooot
      [2013/03/15 23:41:56 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Local\PunkBuster
      [2013/03/15 23:39:59 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Documents\Battlefield Play4Free
      [2013/03/15 23:38:41 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games
      [2013/03/15 21:12:24 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Documents\NFS Most Wanted
      [2013/03/15 18:43:46 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
      [2013/03/15 18:43:17 | 001,783,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
      [2013/03/15 18:43:17 | 001,725,784 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesGUILib.dll
      [2013/03/15 18:43:17 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
      [2013/03/15 18:43:17 | 000,185,584 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
      [2013/03/15 18:43:17 | 000,173,296 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
      [2013/03/15 18:43:17 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
      [2013/03/15 18:43:15 | 000,214,368 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFNHK.dll
      [2013/03/15 18:43:15 | 000,074,080 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFCOM.dll
      [2013/03/15 18:43:15 | 000,068,960 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFAPO.dll
      [2013/03/15 18:43:13 | 000,359,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll
      [2013/03/15 18:43:13 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
      [2013/03/15 18:43:13 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
      [2013/03/15 18:43:13 | 000,170,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll
      [2013/03/15 18:43:13 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll
      [2013/03/15 18:43:13 | 000,064,856 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll
      [2013/03/15 18:43:12 | 003,296,600 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEP32A.dll
      [2013/03/15 18:43:12 | 000,345,944 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EED32A.dll
      [2013/03/15 18:43:12 | 000,103,256 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEL32A.dll
      [2013/03/15 18:43:12 | 000,088,408 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEA32A.dll
      [2013/03/15 18:43:12 | 000,061,272 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEG32A.dll
      [2013/03/15 18:43:11 | 000,252,760 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxVolumeSDAPO.dll
      [2013/03/15 18:43:10 | 003,327,320 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioRealtek.dll
      [2013/03/15 18:43:10 | 001,836,376 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
      [2013/03/15 18:43:10 | 000,357,712 | ---- | C] (Knowles Acoustics ) -- C:\Windows\System32\KAAPORT.dll
      [2013/03/15 18:43:10 | 000,259,928 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO30.dll
      [2013/03/15 18:43:10 | 000,232,792 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
      [2013/03/15 18:43:10 | 000,132,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
      [2013/03/15 18:43:06 | 001,740,352 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
      [2013/03/15 18:43:06 | 001,509,480 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2SpeakerDLL.dll
      [2013/03/15 18:43:06 | 001,292,904 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2HeadphoneDLL.dll
      [2013/03/15 18:43:06 | 000,631,400 | ---- | C] (DTS) -- C:\Windows\System32\DTSSymmetryDLL.dll
      [2013/03/15 18:43:06 | 000,601,704 | ---- | C] (DTS) -- C:\Windows\System32\DTSVoiceClarityDLL.dll
      [2013/03/15 18:43:06 | 000,458,344 | ---- | C] (DTS) -- C:\Windows\System32\DTSNeoPCDLL.dll
      [2013/03/15 18:43:06 | 000,413,696 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PLFX32.dll
      [2013/03/15 18:43:06 | 000,390,656 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PGFX32.dll
      [2013/03/15 18:43:06 | 000,375,400 | ---- | C] (DTS) -- C:\Windows\System32\DTSLimiterDLL.dll
      [2013/03/15 18:43:06 | 000,327,168 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PREC32.dll
      [2013/03/15 18:43:06 | 000,218,216 | ---- | C] (DTS) -- C:\Windows\System32\DTSLFXAPO.dll
      [2013/03/15 18:43:05 | 001,220,200 | ---- | C] (DTS) -- C:\Windows\System32\DTSBoostDLL.dll
      [2013/03/15 18:43:05 | 000,654,952 | ---- | C] (DTS) -- C:\Windows\System32\DTSBassEnhancementDLL.dll
      [2013/03/15 18:43:05 | 000,389,736 | ---- | C] (DTS) -- C:\Windows\System32\DTSGainCompensatorDLL.dll
      [2013/03/15 18:43:05 | 000,218,728 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPONS.dll
      [2013/03/15 18:43:05 | 000,218,728 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPO.dll
      [2013/03/15 18:38:09 | 000,000,000 | ---D | C] -- C:\Intel
      [2013/03/15 18:33:25 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DriverGenius
      [2013/03/15 18:32:44 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
      [2013/03/15 18:32:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius Professional Edition
      [2013/03/15 18:32:18 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft
      [2013/03/15 14:30:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
      [2013/03/15 14:30:27 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
      [2013/03/15 01:04:37 | 000,000,000 | --SD | C] -- C:\Users\Ramiro\Documents\Passwords Database
      [2013/03/15 00:22:30 | 000,088,632 | ---- | C] (Infowatch) -- C:\Windows\System32\drivers\CSCrySec.sys
      [2013/03/15 00:22:30 | 000,039,352 | ---- | C] (Infowatch) -- C:\Windows\System32\drivers\CSVirtualDiskDrv.sys
      [2013/03/15 00:22:28 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
      [2013/03/14 23:54:34 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
      [2013/03/14 23:54:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
      [2013/03/14 23:54:22 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
      [2013/03/14 23:41:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
      [2013/03/14 23:41:51 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security
      [2013/03/14 19:32:58 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Local\Acelogix
      [2013/03/14 19:25:51 | 002,738,264 | ---- | C] (Sysinternals - Windows Sysinternals: Documentation, downloads and additional resources) -- C:\Users\Ramiro\Desktop\procexp.exe
      [2013/03/14 19:19:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KrView
      [2013/03/14 19:19:01 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KrView
      [2013/03/14 19:18:50 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
      [2013/03/14 15:45:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      [2013/03/14 14:23:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
      [2013/03/14 14:23:54 | 000,000,000 | ---D | C] -- C:\ProgramData\ma-config.com
      [2013/03/14 14:23:54 | 000,000,000 | ---D | C] -- C:\Program Files\ma-config.com
      [2013/03/09 20:31:55 | 000,000,000 | ---D | C] -- C:\Killing Floor
      [2013/03/07 18:39:02 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Desktop\texturepacks
      [2013/02/25 21:57:53 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Desktop\Muuusica
      [2013/02/25 17:23:48 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Local\Temp
      [2013/02/21 19:16:35 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\dist10
      [2013/02/20 08:02:29 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Documents\Mis Creaciones Spore
      [2013/02/20 08:02:16 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\SPORE
      [2013/02/20 07:57:20 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
      [2013/02/20 0104 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\sqlitestudio
      [2013/02/19 01:47:09 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Local\Kerberos_Productions
      [2013/02/18 19:49:07 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\dist9
      [2013/02/18 07:38:42 | 000,000,000 | ---D | C] -- C:\Windows\System\KEEPER
      [2013/02/18 07:38:34 | 000,283,648 | ---- | C] (Stirling Technologies, Inc.) -- C:\Windows\uninst.exe
      [2013/02/18 01:00:01 | 000,000,000 | ---D | C] -- C:\Program Files\Tibia9.7
      [2013/02/17 21:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\Kpdo5.0
      [2013/02/17 20:53:29 | 000,000,000 | ---D | C] -- C:\Program Files\Asprate
      [2013/02/17 20:53:18 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\[email protected]
      [2013/02/17 20:52:20 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Chrome_manager
      [2013/02/17 20:50:35 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Local\OtLand
      [2013/02/17 17:55:19 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Desktop\ChaosLegion
      [2013/02/17 00:17:09 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Local\Facebook
      [2013/02/15 22:51:30 | 000,000,000 | ---D | C] -- C:\Windows\SysWOW64
      [2013/02/15 22:51:29 | 000,000,000 | ---D | C] -- C:\Windows\System32\Uninstall
      [2013/02/15 17:35:47 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sierra
      [2013/02/15 17:35:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra
      [2013/02/15 17:35:42 | 000,000,000 | ---D | C] -- C:\Program Files\GameSpy Arcade
      [2013/02/15 17:27:59 | 000,000,000 | ---D | C] -- C:\Program Files\Sierra
      [2013/02/14 23:43:57 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Documents\Mount&Blade With Fire and Sword
      [2013/02/14 23:43:56 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Mount&Blade With Fire and Sword
      [2013/02/14 22:21:09 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\Documents\Mount&Blade Savegames
      [2013/02/14 22:17:09 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Mount&Blade
      [2013/02/14 22:16:45 | 000,000,000 | ---D | C] -- C:\Users\Ramiro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mount&Blade
      [2013/02/14 22:16:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount&Blade
      [2013/02/14 22:16:20 | 000,000,000 | ---D | C] -- C:\Program Files\Mount&Blade
      [2013/02/14 18:28:15 | 000,000,000 | ---D | C] -- C:\Minecraft_Backup
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2013/03/16 13:31:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/03/16 11:51:03 | 000,014,256 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/03/16 11:51:03 | 000,014,256 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/03/16 11:48:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ramiro\Desktop\OTL.exe
      [2013/03/16 11:47:09 | 000,597,667 | ---- | M] () -- C:\Users\Ramiro\Desktop\adwcleaner.exe
      [2013/03/16 00:44:28 | 000,745,236 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
      [2013/03/16 00:44:28 | 000,651,938 | ---- | M] () -- C:\Windows\System32\perfh009.dat
      [2013/03/16 00:44:28 | 000,157,736 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
      [2013/03/16 00:44:28 | 000,120,870 | ---- | M] () -- C:\Windows\System32\perfc009.dat
      [2013/03/15 23:55:29 | 000,138,264 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
      [2013/03/15 23:55:20 | 000,234,768 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
      [2013/03/15 23:39:08 | 000,138,056 | ---- | M] () -- C:\Users\Ramiro\AppData\Roaming\PnkBstrK.sys
      [2013/03/15 18:32:19 | 000,001,169 | ---- | M] () -- C:\Users\Ramiro\Desktop\Driver Genius Professional Edition.lnk
      [2013/03/15 18:12:19 | 000,007,663 | ---- | M] () -- C:\Users\Ramiro\AppData\Local\Resmon.ResmonCfg
      [2013/03/15 15:21:36 | 000,342,552 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
      [2013/03/14 23:54:28 | 000,001,047 | ---- | M] () -- C:\Users\Ramiro\Desktop\Kaspersky Security Scan.lnk
      [2013/03/14 23:41:56 | 000,001,244 | ---- | M] () -- C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
      [2013/03/14 15:45:35 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2013/03/14 14:41:48 | 000,014,784 | ---- | M] () -- C:\Windows\System32\results.xml
      [2013/03/14 10:21:13 | 000,001,068 | ---- | M] () -- C:\Users\Ramiro\Desktop\GTA San Andreas.lnk
      [2013/03/10 17:36:00 | 000,001,088 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/03/10 17:35:59 | 000,001,084 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/03/10 17:35:59 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1594496417-1938131176-4002054240-1000UA.job
      [2013/03/10 17:35:59 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1594496417-1938131176-4002054240-1000Core.job
      [2013/03/10 17:35:59 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2013/03/09 20:36:56 | 000,001,790 | ---- | M] () -- C:\Users\Ramiro\Desktop\Killing Floor.lnk
      [2013/03/07 11:13:31 | 000,000,604 | ---- | M] () -- C:\Windows\Sof2.INI
      [2013/03/05 16:07:06 | 011,328,389 | ---- | M] () -- C:\Users\Ramiro\Desktop\minecraft.jar
      [2013/02/22 17:25:16 | 000,001,762 | ---- | M] () -- C:\Users\Ramiro\Desktop\Spore.lnk
      [2013/02/18 18:39:38 | 000,000,836 | ---- | M] () -- C:\Windows\ARPR.INI
      [2013/02/17 20:53:18 | 001,335,014 | ---- | M] () -- C:\Users\Ramiro\AppData\Roaming\sqlite.jar
      [2013/02/15 23:00:01 | 000,325,960 | ---- | M] () -- C:\Windows\System32\lua5.1.dll
      [2013/02/15 22:28:56 | 000,006,656 | ---- | M] () -- C:\Users\Ramiro\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2013/03/16 11:47:25 | 000,597,667 | ---- | C] () -- C:\Users\Ramiro\Desktop\adwcleaner.exe
      [2013/03/15 23:43:03 | 000,234,768 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
      [2013/03/15 23:39:08 | 000,138,264 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
      [2013/03/15 23:39:08 | 000,138,056 | ---- | C] () -- C:\Users\Ramiro\AppData\Roaming\PnkBstrK.sys
      [2013/03/15 23:38:54 | 000,234,768 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
      [2013/03/15 23:38:49 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
      [2013/03/15 18:59:02 | 011,328,389 | ---- | C] () -- C:\Users\Ramiro\Desktop\minecraft.jar
      [2013/03/15 18:43:13 | 000,150,996 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
      [2013/03/15 18:32:19 | 000,001,169 | ---- | C] () -- C:\Users\Ramiro\Desktop\Driver Genius Professional Edition.lnk
      [2013/03/15 14:19:12 | 000,342,552 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
      [2013/03/14 23:54:34 | 000,001,047 | ---- | C] () -- C:\Users\Ramiro\Desktop\Kaspersky Security Scan.lnk
      [2013/03/14 23:41:56 | 000,001,244 | ---- | C] () -- C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
      [2013/03/09 20:36:56 | 000,001,790 | ---- | C] () -- C:\Users\Ramiro\Desktop\Killing Floor.lnk
      [2013/02/22 17:25:16 | 000,001,762 | ---- | C] () -- C:\Users\Ramiro\Desktop\Spore.lnk
      [2013/02/18 18:25:46 | 000,000,836 | ---- | C] () -- C:\Windows\ARPR.INI
      [2013/02/17 20:52:38 | 001,335,014 | ---- | C] () -- C:\Users\Ramiro\AppData\Roaming\sqlite.jar
      [2013/02/17 19:39:35 | 000,000,604 | ---- | C] () -- C:\Windows\Sof2.INI
      [2013/02/17 00:17:16 | 000,000,932 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1594496417-1938131176-4002054240-1000UA.job
      [2013/02/17 00:17:13 | 000,000,910 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1594496417-1938131176-4002054240-1000Core.job
      [2013/02/15 22:51:30 | 000,325,960 | ---- | C] () -- C:\Windows\System32\lua5.1.dll
      [2013/02/06 20:56:49 | 000,069,632 | R--- | C] () -- C:\Windows\System32\xmltok.dll
      [2013/02/06 20:56:49 | 000,036,864 | R--- | C] () -- C:\Windows\System32\xmlparse.dll
      [2013/02/06 20:49:43 | 000,000,000 | ---- | C] () -- C:\Windows\PowerReg.dat
      [2013/02/05 21:42:57 | 000,000,745 | ---- | C] () -- C:\Windows\CoD.INI
      [2013/01/29 23:05:15 | 000,000,032 | ---- | C] () -- C:\Windows\GunzLauncher.INI
      [2013/01/26 17:54:31 | 000,088,189 | ---- | C] () -- C:\Users\Ramiro\AppData\Local\Tempbg.jpg
      [2012/12/22 19:31:08 | 000,000,018 | ---- | C] () -- C:\Windows\cnc.ini
      [2012/12/12 01:23:53 | 000,018,936 | ---- | C] () -- C:\Users\Ramiro\AppData\Roaming\UserTile.png
      [2012/12/08 18:12:09 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
      [2012/12/06 15:05:52 | 000,703,117 | ---- | C] () -- C:\Users\Ramiro\AppData\Roaming\technic-launcher.jar
      [2012/12/06 15:05:52 | 000,581,168 | ---- | C] () -- C:\Users\Ramiro\AppData\Roaming\technic-launcher.jar.bak
      [2012/12/04 08:02:09 | 000,000,324 | ---- | C] () -- C:\Windows\game.ini
      [2012/11/19 19:39:45 | 000,078,892 | ---- | C] () -- C:\Windows\War3Unin.dat
      [2012/11/15 15:31:26 | 000,016,304 | ---- | C] () -- C:\Windows\System32\apl003.sys
      [2012/10/24 10:21:08 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
      [2012/10/22 00:41:53 | 000,000,204 | ---- | C] () -- C:\Windows\System32\secustat.dat
      [2012/10/22 00:39:51 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
      [2012/10/21 22:08:00 | 000,006,656 | ---- | C] () -- C:\Users\Ramiro\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2012/10/21 10:50:23 | 001,145,382 | ---- | C] () -- C:\Users\Ramiro\AppData\Local\Tempmusic.ogg
      [2012/10/20 02:08:11 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v5016.dll
      [2012/10/19 22:32:05 | 000,189,796 | ---- | C] () -- C:\Windows\System32\drivers\RTConvEQ.dat
      [2012/10/19 22:32:05 | 000,001,112 | ---- | C] () -- C:\Windows\System32\drivers\RtHdatEx.dat
      [2012/10/19 22:32:05 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX2.dat
      [2012/10/19 22:32:05 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
      [2012/10/19 22:32:05 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
      [2012/10/19 22:32:05 | 000,000,008 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat
      [2012/10/19 12:57:25 | 000,000,430 | RHS- | C] () -- C:\ProgramData\ntuser.pol
      [2012/10/17 16:18:28 | 000,745,236 | ---- | C] () -- C:\Windows\System32\perfh00A.dat
      [2012/10/17 16:18:28 | 000,651,938 | ---- | C] () -- C:\Windows\System32\perfh009.dat
      [2012/10/17 16:18:28 | 000,157,736 | ---- | C] () -- C:\Windows\System32\perfc00A.dat
      [2012/10/17 16:18:28 | 000,120,870 | ---- | C] () -- C:\Windows\System32\perfc009.dat
      [2012/10/15 23:54:22 | 001,970,176 | ---- | C] () -- C:\Windows\System32\d3dx9.dll
      [2012/10/14 09:06:03 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
      [2012/10/13 18:46:28 | 000,007,663 | ---- | C] () -- C:\Users\Ramiro\AppData\Local\Resmon.ResmonCfg
      [2012/10/13 14:01:52 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll

      ========== ZeroAccess Check ==========

      [2009/07/13 22:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 22:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 06:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 19:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2013/03/16 10:31:10 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\.minecraft
      [2013/02/08 01:23:11 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\.Nitrous
      [2013/03/13 16:35:49 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\.techniclauncher
      [2012/12/07 22:06:03 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Acoustica
      [2012/11/15 15:05:54 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Aeria Games & Entertainment
      [2013/01/05 11:36:07 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\BinarySense
      [2013/01/12 22:31:56 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\BITS
      [2013/02/17 20:52:20 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Chrome_manager
      [2013/02/19 12:24:02 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\DAEMON Tools Pro
      [2013/03/15 12:20:30 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\dist10
      [2013/02/18 19:49:07 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\dist9
      [2012/10/15 06:51:36 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\DMCache
      [2013/01/07 23:38:16 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\DroidExplorer
      [2012/10/23 12:59:32 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\FairyBloomRe
      [2012/10/22 00:39:46 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\FlashGet
      [2012/10/22 00:39:43 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\FlashGetBHO
      [2013/01/28 20:24:57 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\GameMaker
      [2012/11/13 23:48:29 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Hive Cluster
      [2012/10/15 23:59:30 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\IDM
      [2012/12/07 21:30:51 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Leadertech
      [2013/02/12 00:42:07 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\logs
      [2012/11/07 13:16:22 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Minecraft Actualizable
      [2013/02/14 22:42:21 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Mount&Blade
      [2013/02/14 23:46:57 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Mount&Blade With Fire and Sword
      [2013/02/25 17:18:31 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\NationRed
      [2012/12/29 20:29:28 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Nazi Zombies_unistall
      [2012/12/14 18:23:06 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\ooVoo Details
      [2012/11/16 13:11:29 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Opera
      [2013/01/04 22:18:51 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\PlatinumHideIP
      [2013/01/21 15:15:44 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\raidcall
      [2013/01/28 15:41:35 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Rovio
      [2012/12/08 14:30:48 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\runic games
      [2013/02/11 23:16:26 | 000,000,000 | RHSD | M] -- C:\Users\Ramiro\AppData\Roaming\servidorcito
      [2012/11/26 23:05:16 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\skyz
      [2013/02/20 08:02:53 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\SPORE
      [2013/03/10 1439 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\sqlitestudio
      [2013/02/02 13:03:40 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Sudeki
      [2013/02/17 20:53:18 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\[email protected]
      [2013/01/04 22:18:50 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Thinstall
      [2013/03/10 14:07:59 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Tibia
      [2012/12/11 17:15:05 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Tilted Mill
      [2012/10/24 07:01:22 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\TuneUp Software
      [2012/10/23 17:02:17 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\Unity
      [2013/03/16 11:41:09 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\uTorrent
      [2012/12/03 01:50:25 | 000,000,000 | ---D | M] -- C:\Users\Ramiro\AppData\Roaming\WildTangent

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2012/11/12 08:35:41 | 000,001,024 | ---- | M] () -- C:\.rnd
      [2013/03/16 11:47:56 | 000,000,346 | ---- | M] () -- C:\AdwCleaner[S1].txt
      [2013/03/16 13:29:48 | 000,030,886 | ---- | M] () -- C:\AdwCleaner[S2].txt
      [2009/06/10 15:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
      [2012/10/22 00:39:43 | 000,000,000 | ---- | M] () -- C:\bholog
      [2009/06/10 15:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
      [2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1028.txt
      [2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1031.txt
      [2007/11/07 07:00:40 | 000,010,134 | ---- | M] () -- C:\eula.1033.txt
      [2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1036.txt
      [2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1040.txt
      [2007/11/07 07:00:40 | 000,000,118 | ---- | M] () -- C:\eula.1041.txt
      [2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1042.txt
      [2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.2052.txt
      [2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.3082.txt
      [2007/11/07 07:00:40 | 000,001,110 | ---- | M] () -- C:\globdata.ini
      [2007/11/07 07:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe
      [2007/11/07 07:00:40 | 000,000,843 | ---- | M] () -- C:\install.ini
      [2007/11/07 07:03:18 | 000,076,304 | ---- | M] (Microsoft Corporation) -- C:\install.res.1028.dll
      [2007/11/07 07:03:18 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.1031.dll
      [2007/11/07 07:03:18 | 000,091,152 | ---- | M] (Microsoft Corporation) -- C:\install.res.1033.dll
      [2007/11/07 07:03:18 | 000,097,296 | ---- | M] (Microsoft Corporation) -- C:\install.res.1036.dll
      [2007/11/07 07:03:18 | 000,095,248 | ---- | M] (Microsoft Corporation) -- C:\install.res.1040.dll
      [2007/11/07 07:03:18 | 000,081,424 | ---- | M] (Microsoft Corporation) -- C:\install.res.1041.dll
      [2007/11/07 07:03:18 | 000,079,888 | ---- | M] (Microsoft Corporation) -- C:\install.res.1042.dll
      [2007/11/07 07:03:18 | 000,075,792 | ---- | M] (Microsoft Corporation) -- C:\install.res.2052.dll
      [2007/11/07 07:03:18 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.3082.dll
      [2012/10/18 12:17:54 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
      [2012/10/18 12:17:54 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
      [2013/03/16 13:31:23 | 2097,152,000 | -HS- | M] () -- C:\pagefile.sys
      [2013/02/18 18:22:28 | 000,000,650 | ---- | M] () -- C:\Pasword.txt
      [2007/11/07 07:00:40 | 000,005,686 | ---- | M] () -- C:\vcredist.bmp
      [2007/11/07 07:09:22 | 001,442,522 | ---- | M] () -- C:\VC_RED.cab
      [2007/11/07 07:12:28 | 000,232,960 | ---- | M] () -- C:\VC_RED.MSI

      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 148 bytes -> C:\ProgramData\TEMP:55B41E6A

      < End of report >

      *********************************************


      Hola Javier Cuando El programa reinicio mi pc el cpu estaba en 0% cosa que antes no pasava pero despues de unos 15 minutos el cpu volvio entre 70Y80%
      Última edición por @Javier_HF fecha: 16/03/13 a las 20:53:21 Razón: Unir mensajes.

    5. #5
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.704

      Re: Uso de Cpu 100% Causa Nt Kernel & system

      Ahora sigue estos pasos :

      MUY Importante ~ Realiza una copia de seguridad del registro con >> Erunt.

      Y después ejecuta de nuevo OTL.exe

      Copia y Pega el código que está dentro del recuadro de abajo en la sección Análisis Personalizado / Código de Reparación.

      Código:
      :OTL
      DRV - (ZTEusbser6k) -- system32\DRIVERS\ZTEusbser6k.sys File not found
      DRV - (ZTEusbnmea) -- system32\DRIVERS\ZTEusbnmea.sys File not found
      DRV - (ZTEusbmdm6k) -- system32\DRIVERS\ZTEusbmdm6k.sys File not found
      DRV - (XDva401) -- C:\Windows\system32\XDva401.sys File not found
      DRV - (XDva400) -- C:\Windows\system32\XDva400.sys File not found
      DRV - (XDva399) -- C:\Windows\system32\XDva399.sys File not found
      DRV - (LMIInfo) -- C:\ham\x86\RaInfo.sys File not found
      DRV - (EagleXNt) -- C:\Windows\system32\drivers\EagleXNt.sys File not found
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MyPlayCity Search
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MyPlayCity Search
      IE - HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\..\SearchScopes\{B1D52996-209E-42E7-BF02-D02DE7191BE8}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=AVR-3&o=APN10401&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^ABZ&apn_dtid=^YYYYYY^YY^MX&apn_uid=3c1cf631-e351-47e1-9562-5494865bc3dc&apn_sauid=6C413137-3F4E-4346-887C-A88B3EA9CBBC
      FF - prefs.js..browser.startup.homepage: "http://home.myplaycity.com/"
      FF - prefs.js..keyword.URL: "http://home.myplaycity.com/results.php?category=web&s="
      FF - user.js - File not found
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: File not found
      [2012/10/25 07:34:54 | 000,001,999 | ---- | M] () -- C:\Users\Ramiro\AppData\Roaming\mozilla\firefox\profiles\92e0ez6k.default\searchplugins\myplaycity.xml
      [2012/11/20 03:00:06 | 000,002,456 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mercadolibre-mx.xml
      CHR - default_search_provider: MyPlayCity (Enabled)
      CHR - default_search_provider: search_url = http://home.myplaycity.com/results.php?category=web&s={searchTerms}
      CHR - homepage: MyPlayCity Search
      O4 - HKLM..\Run: [] File not found
      O13 - gopher Prefix: missing
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O33 - MountPoints2\{b96d9bef-3bc0-11e2-82d6-00226809bc3e}\Shell - "" = AutoRun
      O33 - MountPoints2\{b96d9bef-3bc0-11e2-82d6-00226809bc3e}\Shell\AutoRun\command - "" = E:\Startme.exe
      O33 - MountPoints2\{d0110890-4713-11e2-82cf-00226809bc3e}\Shell - "" = AutoRun
      O33 - MountPoints2\{d0110890-4713-11e2-82cf-00226809bc3e}\Shell\AutoRun\command - "" = E:\Startme.exe
      O33 - MountPoints2\E\Shell - "" = AutoRun
      O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\AutoRun.exe
      MsConfig - StartUpReg: Aeria Ignite - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: avgnt - hkey= - key= - File not found
      MsConfig - StartUpReg: Facebook Update - hkey= - key= - C:\Users\Ramiro\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
      MsConfig - StartUpReg: LogMeIn Hamachi Ui - hkey= - key= - Reg Error: Value error. File not found
      MsConfig - StartUpReg: Oracle Java - hkey= - key= - File not found
      MsConfig - StartUpReg: PS2 - hkey= - key= - File not found
      MsConfig - StartUpReg: Sony PC Companion - hkey= - key= - Reg Error: Value error. File not found
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
      @Alternate Data Stream - 148 bytes -> C:\ProgramData\TEMP:55B41E6A
      :Files
      C:\eula*.*
      C:\install*.*
      ipconfig /flushdns /c
      ipconfig /renew /c
      :Commands
      [PURITY]
      [EMPTYFLASH]
      [EMPTYTEMP]
      [RESETHOSTS]
      Presiona el Botón Reparar para lanzar la eliminación. Después presionas en OK.

      OTL va a Reiniciar el ordenador para completar la eliminación.

      Guardas el nuevo reporte generado, y lo copias y pegas en tu próxima respuesta, coméntanos también como sigue el ordenador ahora, en relación al problema planteado.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #6
      Usuario Avatar de Darkattack13
      Registrado
      sep 2012
      Ubicación
      uruapan michoacan
      Mensajes
      14

      Re: Uso de Cpu 100% Causa Nt Kernel & system

      Hola Amigo Muchisimas Gracias Por tu Ayuda Deveras Nose que uviera hecho si usted no me uviece ayudado uviera recurrido a Formatear la Pc se le agradece mucho Aqui una Imagen :))))))))

      http://sia1.subirimagenes.net/img/20...4394370124.png

      All processes killed
      ========== OTL ==========
      Service ZTEusbser6k stopped successfully!
      Service ZTEusbser6k deleted successfully!
      File system32\DRIVERS\ZTEusbser6k.sys File not found not found.
      Service ZTEusbnmea stopped successfully!
      Service ZTEusbnmea deleted successfully!
      File system32\DRIVERS\ZTEusbnmea.sys File not found not found.
      Service ZTEusbmdm6k stopped successfully!
      Service ZTEusbmdm6k deleted successfully!
      File system32\DRIVERS\ZTEusbmdm6k.sys File not found not found.
      Service XDva401 stopped successfully!
      Service XDva401 deleted successfully!
      File C:\Windows\system32\XDva401.sys File not found not found.
      Service XDva400 stopped successfully!
      Service XDva400 deleted successfully!
      File C:\Windows\system32\XDva400.sys File not found not found.
      Service XDva399 stopped successfully!
      Service XDva399 deleted successfully!
      File C:\Windows\system32\XDva399.sys File not found not found.
      Service LMIInfo stopped successfully!
      Service LMIInfo deleted successfully!
      File C:\ham\x86\RaInfo.sys File not found not found.
      Service EagleXNt stopped successfully!
      Service EagleXNt deleted successfully!
      File C:\Windows\system32\drivers\EagleXNt.sys File not found not found.
      HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
      HKU\S-1-5-21-1594496417-1938131176-4002054240-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
      Registry key HKEY_USERS\S-1-5-21-1594496417-1938131176-4002054240-1000\Software\Microsoft\Internet Explorer\SearchScopes\{B1D52996-209E-42E7-BF02-D02DE7191BE8}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B1D52996-209E-42E7-BF02-D02DE7191BE8}\ not found.
      Prefs.js: "http://home.myplaycity.com/" removed from browser.startup.homepage
      Prefs.js: "http://home.myplaycity.com/results.php?category=web&s=" removed from keyword.URL
      Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
      Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@nsroblox.roblox.com/launcher\ deleted successfully.
      C:\Users\Ramiro\AppData\Roaming\mozilla\firefox\profiles\92e0ez6k.default\searchplugins\myplaycity.xml moved successfully.
      C:\Archivos de programa\Mozilla Firefox\searchplugins\mercadolibre-mx.xml moved successfully.
      Use Chrome's Settings page to remove the default_search_provider items.
      Use Chrome's Settings page to remove the default_search_provider items.
      Use Chrome's Settings page to change the HomePage.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
      Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b96d9bef-3bc0-11e2-82d6-00226809bc3e}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b96d9bef-3bc0-11e2-82d6-00226809bc3e}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b96d9bef-3bc0-11e2-82d6-00226809bc3e}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b96d9bef-3bc0-11e2-82d6-00226809bc3e}\ not found.
      File E:\Startme.exe not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d0110890-4713-11e2-82cf-00226809bc3e}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d0110890-4713-11e2-82cf-00226809bc3e}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d0110890-4713-11e2-82cf-00226809bc3e}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d0110890-4713-11e2-82cf-00226809bc3e}\ not found.
      File E:\Startme.exe not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\ deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\ not found.
      File E:\AutoRun.exe not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\Aeria Ignite\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\avgnt\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\Facebook Update\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\LogMeIn Hamachi Ui\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\Oracle Java\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\PS2\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\Sony PC Companion\ deleted successfully.
      C:\Windows\msdownld.tmp folder deleted successfully.
      ADS C:\ProgramData\TEMP:55B41E6A deleted successfully.
      ========== FILES ==========
      C:\eula.1028.txt moved successfully.
      C:\eula.1031.txt moved successfully.
      C:\eula.1033.txt moved successfully.
      C:\eula.1036.txt moved successfully.
      C:\eula.1040.txt moved successfully.
      C:\eula.1041.txt moved successfully.
      C:\eula.1042.txt moved successfully.
      C:\eula.2052.txt moved successfully.
      C:\eula.3082.txt moved successfully.
      C:\install.exe moved successfully.
      C:\install.ini moved successfully.
      C:\install.res.1028.dll moved successfully.
      C:\install.res.1031.dll moved successfully.
      C:\install.res.1033.dll moved successfully.
      C:\install.res.1036.dll moved successfully.
      C:\install.res.1040.dll moved successfully.
      C:\install.res.1041.dll moved successfully.
      C:\install.res.1042.dll moved successfully.
      C:\install.res.2052.dll moved successfully.
      C:\install.res.3082.dll moved successfully.
      < ipconfig /flushdns /c >
      Configuraci¢n IP de Windows
      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
      C:\Users\Ramiro\Downloads\cmd.bat deleted successfully.
      C:\Users\Ramiro\Downloads\cmd.txt deleted successfully.
      < ipconfig /renew /c >
      Configuraci¢n IP de Windows
      Error al renovar la interfaz Conexi¢n de *rea local: no se puede establecer contacto con el
      servidor DHCP. La solicitud super¢ el tiempo de espera.
      C:\Users\Ramiro\Downloads\cmd.bat deleted successfully.
      C:\Users\Ramiro\Downloads\cmd.txt deleted successfully.
      ========== COMMANDS ==========

      [EMPTYFLASH]

      User: All Users

      User: Default

      User: Default User

      User: Public

      User: Ramiro
      ->Flash cache emptied: 602 bytes

      Total Flash Files Cleaned = 0.00 mb


      [EMPTYTEMP]

      User: All Users

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: Public

      User: Ramiro
      ->Temp folder emptied: 1032374682 bytes
      ->Temporary Internet Files folder emptied: 115190 bytes
      ->Java cache emptied: 295325 bytes
      ->FireFox cache emptied: 6062796 bytes
      ->Google Chrome cache emptied: 90585392 bytes
      ->Opera cache emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 15898649 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 1,092.00 mb

      C:\Windows\System32\drivers\etc\Hosts moved successfully.
      HOSTS file reset successfully

      OTL by OldTimer - Version 3.2.69.0 log created on 03162013_211838

      Files\Folders moved on Reboot...

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...

    7. #7
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.704

      Re: Uso de Cpu 100% Causa Nt Kernel & system

      Perfecto, nos alegra ver que esta el tema arreglado.

      Solo queda que hagas lo siguiente :

      Ejecuta de nuevo OTL.exe y presionas el Botón Limpiar.

      Esto Eliminará del sistema a OTL.exe y sus archivos creados y eliminados.

      Te pedirá reiniciar el ordenador, debes pulsar SI, con AdwCleaner, haces lo mismo pulsando en “Desinstalar”.

      Y ahora ya damos el tema por SOLUCIONADO.
      Te recomendamos mantenerte informado en InfoSpyware Blog y seguirnos en nuestras vías de difusión E-Mail - Facebook - Twitter
      Saludos, Javier.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de Darkattack13
      Registrado
      sep 2012
      Ubicación
      uruapan michoacan
      Mensajes
      14

      Re: Uso de Cpu 100% Causa Nt Kernel & system. (Reabierto)

      Disculpa Las molestas javi Pero el uso de mi cpu paso de estar bien a subir de nuevo entre 70y90% y no e descargado ningun programa nuevo ni nada al contrario me e puesto a borrar cosas para que estuviera mas agilizada agradeceria tu ayuda Gracias Link del post Uso de Cpu 100% Causa Nt Kernel & system. (Reabierto)

    9. #9
      Moderador Gral.
      Avatar de @Javier_HF
      Registrado
      jun 2006
      Ubicación
      Spain.
      Mensajes
      21.704

      Re: Uso de Cpu 100% Causa Nt Kernel & system. (Reabierto)

      Bien, pues realiza de nuevo los pasos que te indique en el post #2, y nos pones los informes para verificar.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.