• Registrarse
  • Iniciar sesión


  • Resultados 1 al 6 de 6

    "¡Oops! Houston, tenemos un problema."

    Hola, que tal? Como les va? Les paso a comentar lo que me viene sucediendo: Hace dos o tres días vengo teniendo un problema con mi computadora que se viene apagando sola, sea cual sea ...

    1. #1
      Usuario Avatar de rafxrolo
      Registrado
      abr 2013
      Ubicación
      Argentina
      Mensajes
      4

      Malware "¡Oops! Houston, tenemos un problema."

      Hola, que tal? Como les va?
      Les paso a comentar lo que me viene sucediendo:
      Hace dos o tres días vengo teniendo un problema con mi computadora que se viene apagando sola, sea cual sea la tarea que esté realizando, por ejemplo cuando estoy viendo un video en youtube con google chrome me salta un error de shockwave con un mensaje que dice "¡Oops! Houston, tenemos un problema." Traté de cambiar de navegador pero no soluciona nada, al prenderla y no usarla vuelve a apagarse, no entiendo que pueda estar ocasionando esto pero es realmente muy molesto! Espero su ayuda, muchas gracias!

    2. #2
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: "¡Oops! Houston, tenemos un problema."

      Buenas.

      Descargá OTL.exe By Oldtimer a Tu escritorio.


      Cerrá Todos los programas que tengas abiertos.


      Hacé doble clic sobre Su ícono para ejecutarlo.


      Tené en cuenta los siguientes datos de configuración antes de lanzar el análisis:


      Tilda los casilleros de la siguiente Manera:

      ° Procesos, Módulos, Servicios, Controladores, Registro Normal y Registro Adicional, deben estar Tildados en Usar Listado Mínimo

      ° Tipo de Análisis: Debe estar tildado el casillero Resultado completo

      ° Tildá el casillero Analizar Todos

      ° Tildá el casillero Omitir Archivos de Windows

      ° Tildá el casillero Usar listado de Compañias Conocidas

      ° Archivos Creados y Archivos Modificados: Deben estar Tildados los casilleros Edad de Archivo




      Listo. Presioná el boton Analizar y esperá a que termine.



      Se van a generar 2 reportes:


      OTL.txt ----> Este debes abrir, copiar y pegar en Tu Próxima Respuesta, junjto al reporte de OTM.


      Extra.txt -----> Debes guardarlo en el Escritorio. Si es necesario, se te pedirá que Nos lo muestre.




      Saludo
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de rafxrolo
      Registrado
      abr 2013
      Ubicación
      Argentina
      Mensajes
      4

      Re: "¡Oops! Houston, tenemos un problema."

      OTL logfile created on: 17/04/2013 10:08:40 p.m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\teto\Desktop
      64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.7600.16385)
      Locale: 00002c0a | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

      2,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 65,77% Memory free
      4,00 Gb Paging File | 2,93 Gb Available in Paging File | 73,33% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 297,99 Gb Total Space | 79,12 Gb Free Space | 26,55% Space Free | Partition Type: NTFS
      Drive D: | 6,76 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

      Computer Name: TETO-PC | User Name: teto | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - [2013/04/17 22:05:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\teto\Desktop\OTL (1).exe
      PRC - [2013/03/24 05:46:24 | 000,976,672 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
      PRC - [2013/03/24 05:40:57 | 001,074,976 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
      PRC - [2013/02/09 17:43:48 | 000,383,264 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
      PRC - [2012/10/23 05:25:06 | 002,744,960 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
      PRC - [2011/11/02 02:00:44 | 000,090,448 | ---- | M] (Research In Motion Limited) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
      PRC - [2010/02/02 17:31:56 | 000,279,296 | ---- | M] (Motorola) -- C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnect.exe
      PRC - [2010/01/27 11:37:22 | 000,091,392 | ---- | M] () -- C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe


      ========== Modules (No Company Name) ==========


      ========== Services (SafeList) ==========

      SRV:64bit: - [2012/07/04 03:20:54 | 000,238,080 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
      SRV:64bit: - [2011/05/28 17:24:32 | 000,173,056 | ---- | M] (Airytec) [Auto | Stopped] -- C:\Program Files\Airytec\Switch Off\swoff.exe -- (SwOffWeb)
      SRV:64bit: - [2011/05/28 17:24:32 | 000,173,056 | ---- | M] (Airytec) [Auto | Running] -- C:\Program Files\Airytec\Switch Off\swoff.exe -- (SwOffScheduler)
      SRV:64bit: - [2009/07/13 22:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
      SRV:64bit: - [2009/07/13 22:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
      SRV - [2013/04/16 16:19:53 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
      SRV - [2013/04/10 03:56:49 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
      SRV - [2013/03/24 05:41:08 | 001,927,968 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
      SRV - [2013/02/25 07:39:32 | 000,543,144 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
      SRV - [2013/02/09 17:43:48 | 000,383,264 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
      SRV - [2013/02/07 13:24:12 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
      SRV - [2012/11/15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
      SRV - [2012/10/22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
      SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
      SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
      SRV - [2010/01/27 11:37:22 | 000,091,392 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe -- (MotoConnect Service)
      SRV - [2009/06/10 18:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - [2013/04/16 23:09:47 | 000,025,216 | ---- | M] (Dev47Apps) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\droidcam.sys -- (DroidCam)
      DRV:64bit: - [2013/02/21 23:44:00 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
      DRV:64bit: - [2012/11/15 23:33:24 | 000,111,968 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
      DRV:64bit: - [2012/10/22 13:02:44 | 000,154,464 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
      DRV:64bit: - [2012/10/15 03:48:50 | 000,063,328 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
      DRV:64bit: - [2012/10/02 03:30:38 | 000,185,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
      DRV:64bit: - [2012/09/21 03:46:04 | 000,200,032 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
      DRV:64bit: - [2012/09/21 03:46:00 | 000,225,120 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
      DRV:64bit: - [2012/09/14 03:05:18 | 000,040,800 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
      DRV:64bit: - [2012/07/04 03:59:32 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
      DRV:64bit: - [2012/07/04 03:59:32 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
      DRV:64bit: - [2012/07/04 0256 | 000,359,936 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
      DRV:64bit: - [2012/03/01 03:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
      DRV:64bit: - [2011/07/25 17:44:46 | 000,074,752 | ---- | M] (Research In Motion Limited) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RimUsb_AMD64.sys -- (RimUsb)
      DRV:64bit: - [2011/07/20 13:58:22 | 000,044,032 | ---- | M] (Research in Motion Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RimSerial_AMD64.sys -- (RimVSerPort)
      DRV:64bit: - [2011/03/11 03:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
      DRV:64bit: - [2011/03/11 03:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
      DRV:64bit: - [2010/08/12 12:07:50 | 000,350,952 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
      DRV:64bit: - [2010/05/05 14:05:40 | 000,028,304 | ---- | M] (SHAPE Services GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mobiolavs.sys -- (mobiolavs)
      DRV:64bit: - [2010/01/06 10:23:18 | 001,847,296 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athurx.sys -- (athur)
      DRV:64bit: - [2009/12/22 10:02:08 | 000,026,624 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Motousbnet.sys -- (Motousbnet)
      DRV:64bit: - [2009/10/27 1218 | 000,030,208 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\motport.sys -- (motport)
      DRV:64bit: - [2009/07/13 22:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
      DRV:64bit: - [2009/07/13 22:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
      DRV:64bit: - [2009/07/13 22:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
      DRV:64bit: - [2009/07/13 22:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
      DRV:64bit: - [2009/07/13 2147 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rootmdm.sys -- (ROOTMODEM)
      DRV:64bit: - [2009/07/10 12:06:50 | 000,031,744 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\motoandroid.sys -- (motandroidusb)
      DRV:64bit: - [2009/06/10 17:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
      DRV:64bit: - [2009/06/10 17:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
      DRV:64bit: - [2009/06/10 17:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
      DRV:64bit: - [2009/06/10 17:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
      DRV:64bit: - [2009/06/10 17:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
      DRV:64bit: - [2009/05/08 11:56:26 | 000,053,632 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\motodrv.sys -- (MotDev)
      DRV:64bit: - [2009/01/29 17:11:38 | 000,006,144 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\motfilt.sys -- (BTCFilterService)
      DRV:64bit: - [2007/11/02 15:52:02 | 000,008,576 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\motswch.sys -- (MotoSwitchService)
      DRV - [2009/07/13 22:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC






      IE - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Argentina: Skype, Outlook, Noticias, Entretenimiento, Videos y más
      IE - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-ar
      IE - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 20 24 91 C1 A8 C8 CD 01 [binary data]
      IE - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
      IE - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
      FF - user.js - File not found

      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_169.dll File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
      FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
      FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
      FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
      FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@onlive.com/OnLiveGameClientDetector,version=1.0.0: C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll (OnLive)
      FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\teto\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/04/16 16:14:17 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

      [2013/04/16 16:15:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\teto\AppData\Roaming\mozilla\Extensions
      [2013/04/16 16:14:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
      [2013/04/10 03:57:39 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
      [2013/04/10 06:23:11 | 000,004,293 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\drae.xml
      [2013/04/10 06:23:11 | 000,002,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\mercadolibre-ar.xml
      [2013/04/10 06:23:11 | 000,001,391 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-es.xml
      [2013/04/10 06:23:11 | 000,001,037 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-ar.xml

      ========== Chrome ==========

      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
      CHR - homepage:
      CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
      CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
      CHR - Extension: Google Drive = C:\Users\teto\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
      CHR - Extension: AdBlock = C:\Users\teto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.61_0\
      CHR - Extension: Google Play Music = C:\Users\teto\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg\5.1_0\
      CHR - Extension: Cuevana Stream = C:\Users\teto\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfdckejfnkaemompfjhecfmhjgnchmjg\5.1_0\
      CHR - Extension: Need for Speed World = C:\Users\teto\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnnelgnkomjdakpkjpkfehdipjifjmbk\1.0.0.4_0\
      CHR - Extension: Gmail = C:\Users\teto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
      CHR - Extension: Radio = C:\Users\teto\AppData\Local\Google\Chrome\User Data\Default\Extensions\plaapjbgohfgkalmmjpakodbpomahebn\2.5_0\

      O1 HOSTS File: ([2009/06/10 18:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
      O4:64bit: - HKLM..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
      O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
      O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
      O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
      O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
      O4 - HKU\S-1-5-19..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found
      O4 - HKU\S-1-5-20..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found
      O4 - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000..\Run: [AdobeBridge] File not found
      O4 - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000..\Run: [ares] C:\Program Files (x86)\Ares\Ares.exe (Ares Development Group)
      O4 - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000..\Run: [DAEMON Tools Pro Agent] C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe (DT Soft Ltd)
      O4 - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent File not found
      O4 - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000..\Run: [Facebook Update] C:\Users\teto\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
      O4 - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
      O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
      O7 - HKU\S-1-5-21-1208338469-2716344089-3270899759-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.49.130.44 200.42.4.207
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{30D35B60-BFC5-403F-B0A2-775D50DEC6CE}: DhcpNameServer = 200.49.130.44 200.42.4.207
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
      O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2010/09/21 04:23:57 | 000,054,544 | R--- | M] (Electronic Arts) - D:\Autorun.exe -- [ UDF ]
      O32 - AutoRun File - [2010/06/27 06:12:50 | 000,000,049 | R--- | M] () - D:\Autorun.inf -- [ UDF ]
      O33 - MountPoints2\{65fbe10c-7c97-11e2-b4ad-002197eef0b2}\Shell - "" = AutoRun
      O33 - MountPoints2\{65fbe10c-7c97-11e2-b4ad-002197eef0b2}\Shell\AutoRun\command - "" = D:\Autorun.exe -- [2010/09/21 04:23:57 | 000,054,544 | R--- | M] (Electronic Arts)
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/04/17 22:05:34 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\teto\Desktop\OTL (1).exe
      [2013/04/16 23:13:06 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Local\Facebook
      [2013/04/16 23:09:46 | 000,025,216 | ---- | C] (Dev47Apps) -- C:\Windows\SysNative\drivers\droidcam.sys
      [2013/04/16 23:09:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DroidCam
      [2013/04/16 16:19:24 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Local\Macromedia
      [2013/04/16 16:15:04 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Roaming\Mozilla
      [2013/04/16 16:15:04 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Local\Mozilla
      [2013/04/16 16:14:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
      [2013/04/16 16:14:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
      [2013/04/16 16:14:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
      [2013/04/15 21:13:23 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Local\NVIDIA
      [2013/04/15 20:50:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Adobe
      [2013/04/15 20:29:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
      [2013/04/14 06:19:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Airytec
      [2013/04/14 06:18:47 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Roaming\Airytec
      [2013/04/14 06:14:43 | 000,000,000 | ---D | C] -- C:\Program Files\Airytec
      [2013/04/13 15:37:07 | 000,000,000 | ---D | C] -- C:\Users\teto\Documents\OnLive App
      [2013/04/13 15:36:00 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Roaming\OnLive App
      [2013/04/13 15:36:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OnLive
      [2013/04/13 15:35:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OnLive
      [2013/04/09 21:27:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
      [2013/04/09 21:26:07 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Roaming\El_Berry
      [2013/04/09 21:07:52 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Roaming\Amrak phoneMiner
      [2013/04/09 21:07:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Amrak Software
      [2013/04/09 21:02:28 | 000,151,552 | ---- | C] (Info-ZIP) -- C:\Windows\SysWow64\zip32.dll
      [2013/04/09 21:02:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicBerry for Blackberry
      [2013/04/09 20:49:51 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Roaming\AmberBerry
      [2013/04/09 16:45:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Driver Installer
      [2013/04/09 16:45:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\MSSoap
      [2013/04/09 16:45:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Motorola Shared
      [2013/04/09 16:45:28 | 000,000,000 | ---D | C] -- C:\Program Files\Motorola Inc
      [2013/04/09 16:38:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Motorola
      [2013/04/09 01:50:50 | 000,000,000 | ---D | C] -- C:\srockyou
      [2013/04/07 02:05:20 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Roaming\fretsonfire
      [2013/04/05 17:29:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProcessText Group
      [2013/04/05 17:29:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ABC Amber BlackBerry Converter
      [2013/04/05 17:26:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MagicBerry for Blackberry
      [2013/04/05 0040 | 000,000,000 | ---D | C] -- C:\Users\teto\Desktop\BB8520
      [2013/04/04 23:43:02 | 000,031,744 | ---- | C] (Motorola) -- C:\Windows\SysNative\drivers\motoandroid.sys
      [2013/04/04 2309 | 000,000,000 | ---D | C] -- C:\Users\teto\Desktop\ANDROID
      [2013/03/25 21:05:19 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
      [2013/03/23 19:32:34 | 000,000,000 | ---D | C] -- C:\Users\teto\Desktop\My Shared Folder
      [2013/03/23 19:32:32 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Local\Ares
      [2013/03/23 19:31:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ares
      [2013/03/23 19:31:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ares
      [2013/03/21 22:40:49 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Core
      [2013/03/21 22:39:24 | 000,000,000 | ---D | C] -- C:\Users\teto\Documents\Electronic Arts
      [2013/03/21 22:28:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games
      [2013/03/21 22:28:57 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Local\Origin
      [2013/03/21 22:28:55 | 000,000,000 | ---D | C] -- C:\Users\teto\AppData\Roaming\Origin
      [2013/03/21 22:28:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
      [2013/03/21 22:27:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
      [2013/03/21 22:27:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin
      [2013/03/21 21:47:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft WSE
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files - Modified Within 30 Days ==========

      [2013/04/17 22:05:49 | 000,014,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2013/04/17 22:05:49 | 000,014,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2013/04/17 22:05:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\teto\Desktop\OTL (1).exe
      [2013/04/17 22:04:01 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2013/04/17 21:56:05 | 000,001,028 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/04/17 21:56:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2013/04/17 21:55:58 | 1609,424,896 | -HS- | M] () -- C:\hiberfil.sys
      [2013/04/16 23:18:00 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1208338469-2716344089-3270899759-1000UA.job
      [2013/04/16 23:18:00 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1208338469-2716344089-3270899759-1000Core.job
      [2013/04/16 23:16:27 | 000,000,032 | ---- | M] () -- C:\ProgramData\droidcam-settings
      [2013/04/16 23:15:01 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/04/16 23:09:47 | 000,025,216 | ---- | M] (Dev47Apps) -- C:\Windows\SysNative\drivers\droidcam.sys
      [2013/04/16 16:14:30 | 000,001,151 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
      [2013/04/16 00:54:26 | 000,782,154 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2013/04/16 00:54:26 | 000,654,354 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2013/04/16 00:54:26 | 000,121,226 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
      [2013/04/15 21:11:25 | 000,001,351 | ---- | M] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
      [2013/04/15 21:09:50 | 000,767,710 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2013/04/13 15:36:00 | 000,001,853 | ---- | M] () -- C:\Users\Public\Desktop\OnLive.lnk
      [2013/04/11 15:37:44 | 000,001,744 | ---- | M] () -- C:\Users\teto\Desktop\Cumbia Hero.lnk
      [2013/04/09 23:03:31 | 000,000,016 | ---- | M] () -- C:\Windows\SysWow64\w3data.vss
      [2013/04/09 23:03:31 | 000,000,016 | ---- | M] () -- C:\Windows\SysWow64\msvcsv60.dll
      [2013/04/09 23:03:31 | 000,000,016 | ---- | M] () -- C:\Windows\msocreg32.dat
      [2013/04/09 21:02:28 | 000,001,140 | ---- | M] () -- C:\Users\Public\Desktop\MagicBerry for Blackberry.lnk
      [2013/04/09 16:47:40 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motfilt_01007.Wdf
      [2013/04/09 16:47:39 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Motousbnet_01007.Wdf
      [2013/04/09 16:47:19 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motport_01007.Wdf
      [2013/04/09 16:38:33 | 000,002,597 | ---- | M] () -- C:\Users\Public\Desktop\RSD Lite.lnk
      [2013/04/05 17:46:22 | 000,001,146 | ---- | M] () -- C:\Windows\ST6UNST.000
      [2013/04/04 23:44:17 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motoandroid_01007.Wdf
      [2013/03/23 22:18:37 | 000,002,314 | ---- | M] () -- C:\Users\Public\Desktop\Los Sims™ 3 Movida en la facultad.lnk
      [2013/03/23 21:57:07 | 000,002,268 | ---- | M] () -- C:\Users\Public\Desktop\Los Sims™ 3 Al caer la noche.lnk
      [2013/03/23 19:31:38 | 000,000,955 | ---- | M] () -- C:\Users\Public\Desktop\Ares.lnk
      [2013/03/21 22:28:08 | 000,000,983 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk
      [2013/03/21 21:46:22 | 000,002,090 | ---- | M] () -- C:\Users\Public\Desktop\Los Sims™ 3.lnk
      [2013/03/20 22:14:36 | 000,001,686 | ---- | M] () -- C:\Users\teto\Desktop\Battlefield 3.lnk
      [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2013/04/16 23:13:16 | 000,000,924 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1208338469-2716344089-3270899759-1000UA.job
      [2013/04/16 23:13:15 | 000,000,902 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1208338469-2716344089-3270899759-1000Core.job
      [2013/04/16 23:12:33 | 000,000,032 | ---- | C] () -- C:\ProgramData\droidcam-settings
      [2013/04/16 23:11:16 | 000,001,056 | ---- | C] () -- C:\Users\teto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DroidCam.lnk
      [2013/04/16 16:19:54 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2013/04/16 16:14:30 | 000,001,151 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
      [2013/04/15 21:11:25 | 000,001,351 | ---- | C] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
      [2013/04/13 15:36:00 | 000,001,853 | ---- | C] () -- C:\Users\Public\Desktop\OnLive.lnk
      [2013/04/11 15:37:44 | 000,001,744 | ---- | C] () -- C:\Users\teto\Desktop\Cumbia Hero.lnk
      [2013/04/09 22:36:32 | 000,767,710 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2013/04/09 21:02:28 | 000,001,140 | ---- | C] () -- C:\Users\Public\Desktop\MagicBerry for Blackberry.lnk
      [2013/04/09 16:47:40 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motfilt_01007.Wdf
      [2013/04/09 16:47:39 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Motousbnet_01007.Wdf
      [2013/04/09 16:47:19 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motport_01007.Wdf
      [2013/04/09 16:38:33 | 000,002,609 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RSD Lite.lnk
      [2013/04/09 16:38:33 | 000,002,597 | ---- | C] () -- C:\Users\Public\Desktop\RSD Lite.lnk
      [2013/04/09 02:06:39 | 000,097,914 | ---- | C] () -- C:\unlock.ko
      [2013/04/09 01:52:02 | 000,164,788 | ---- | C] () -- C:\Superuser.apk
      [2013/04/09 01:52:02 | 000,026,256 | ---- | C] () -- C:\su
      [2013/04/09 01:52:02 | 000,005,392 | ---- | C] () -- C:\rageagainstthecage-arm5.bin
      [2013/04/09 01:52:02 | 000,000,325 | ---- | C] () -- C:\install-root.sh
      [2013/04/05 17:46:11 | 000,001,146 | ---- | C] () -- C:\Windows\ST6UNST.000
      [2013/04/04 23:44:17 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_motoandroid_01007.Wdf
      [2013/03/23 22:18:37 | 000,002,314 | ---- | C] () -- C:\Users\Public\Desktop\Los Sims™ 3 Movida en la facultad.lnk
      [2013/03/23 21:57:07 | 000,002,268 | ---- | C] () -- C:\Users\Public\Desktop\Los Sims™ 3 Al caer la noche.lnk
      [2013/03/23 19:31:38 | 000,000,955 | ---- | C] () -- C:\Users\Public\Desktop\Ares.lnk
      [2013/03/21 22:28:08 | 000,000,983 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk
      [2013/03/21 21:46:22 | 000,002,090 | ---- | C] () -- C:\Users\Public\Desktop\Los Sims™ 3.lnk
      [2013/03/02 16:33:32 | 000,000,016 | ---- | C] () -- C:\Windows\SysWow64\msvcsv60.dll
      [2013/03/02 16:33:32 | 000,000,016 | ---- | C] () -- C:\Windows\msocreg32.dat
      [2013/02/21 21:12:03 | 000,000,017 | ---- | C] () -- C:\Users\teto\AppData\Local\resmon.resmoncfg
      [2012/11/22 08:51:27 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
      [2012/09/28 16:45:06 | 000,247,296 | ---- | C] () -- C:\Windows\SysWow64\rtvcvfw32.dll
      [2012/07/04 02:34:16 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
      [2012/07/04 02:34:16 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
      [2012/04/18 18:39:10 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
      [2011/09/12 19:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat

      ========== ZeroAccess Check ==========

      [2009/07/14 01:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 02:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 01:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 22:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/13 22:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 22:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== Alternate Data Streams ==========

      @Alternate Data Stream - 197 bytes -> C:\ProgramData\TEMP:C918AC7F

      < End of report >

    4. #4
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: "¡Oops! Houston, tenemos un problema."

      Buenas


      Es importante que leas con atención el siguiente procedimiento:


      Descarga la herramienta ComboFix.exe y guárdala en el escritorio.

      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Cierra todas las ventanas abiertas y programas
      • Hacele doble clic al archivo ComboFix.exe y seguí las instrucciones. Si pide actualizar "Update" aceptas.
        • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
        • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación, de no ser así lo reinicias manualmente.
        • Al finalizar el trabajo Comobofix generara un registro en C:\ComboFix.txt.



      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.


      En tu Próxima respuesta necesitamos la siguiente Información



      • El reporte de Combofix que se encuentra en C:\ComboFix.txt lo pegas en este mismo tema.
      • Comentar como esta funcionado tu sistema en relacion al problema inicial.


      Saludos.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de rafxrolo
      Registrado
      abr 2013
      Ubicación
      Argentina
      Mensajes
      4

      Re: "¡Oops! Houston, tenemos un problema."

      Muchas gracias por la ayuda que me estás brindando Tyny's, acá va el log! Cuando se pase una hora de prendida la compu comento los resultados!

      ComboFix 13-04-18.01 - teto 18/04/2013 1:49.1.3 - x64
      Microsoft Windows 7 Professional 6.1.7600.0.1252.54.1033.18.2046.1132 [GMT -3:00]
      Running from: c:\users\teto\Desktop\ComboFix.exe
      AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
      SP: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
      SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\windows\SysWow64\msvcsv60.dll
      .
      .
      ((((((((((((((((((((((((( Files Created from 2013-03-18 to 2013-04-18 )))))))))))))))))))))))))))))))
      .
      .
      2013-04-17 02:13 . 2013-04-17 02:13 -------- d-----w- c:\users\teto\AppData\Local\Facebook
      2013-04-17 02:09 . 2013-04-17 02:09 25216 ----a-w- c:\windows\system32\drivers\droidcam.sys
      2013-04-17 02:09 . 2013-04-17 02:11 -------- d-----w- c:\program files (x86)\DroidCam
      2013-04-16 19:19 . 2013-04-16 19:19 -------- d-----w- c:\users\teto\AppData\Local\Macromedia
      2013-04-16 19:19 . 2013-04-16 19:19 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2013-04-16 19:19 . 2013-04-16 19:19 691592 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2013-04-16 19:15 . 2013-04-16 19:15 -------- d-----w- c:\users\teto\AppData\Local\Mozilla
      2013-04-16 19:14 . 2013-04-16 19:14 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
      2013-04-16 00:13 . 2013-04-16 00:13 -------- d-----w- c:\users\teto\AppData\Local\NVIDIA
      2013-04-15 23:50 . 2013-04-16 03:57 -------- d-----w- c:\windows\SysWow64\Adobe
      2013-04-15 23:29 . 2013-04-15 23:29 -------- d-----w- c:\windows\system32\Macromed
      2013-04-14 09:19 . 2013-04-14 09:19 -------- d-----w- c:\programdata\Airytec
      2013-04-14 09:18 . 2013-04-14 09:18 -------- d-----w- c:\users\teto\AppData\Roaming\Airytec
      2013-04-14 09:14 . 2013-04-14 09:14 -------- d-----w- c:\program files\Airytec
      2013-04-13 18:36 . 2013-04-13 18:36 -------- d-----w- c:\users\teto\AppData\Roaming\OnLive App
      2013-04-13 18:35 . 2013-04-13 18:36 -------- d-----w- c:\program files (x86)\OnLive
      2013-04-10 00:27 . 2013-04-10 00:31 -------- d-----w- c:\windows\system32\appmgmt
      2013-04-10 00:26 . 2013-04-10 00:26 -------- d-----w- c:\users\teto\AppData\Roaming\El_Berry
      2013-04-10 00:07 . 2013-04-10 00:31 -------- d-----w- c:\users\teto\AppData\Roaming\Amrak phoneMiner
      2013-04-10 00:07 . 2013-04-10 00:07 -------- d-----w- c:\program files (x86)\Amrak Software
      2013-04-10 00:02 . 2006-07-01 09:25 151552 ----a-w- c:\windows\SysWow64\zip32.dll
      2013-04-05 20:29 . 2013-04-10 00:26 -------- d-----w- c:\program files (x86)\ABC Amber BlackBerry Converter
      2013-04-05 20:26 . 2013-04-10 00:02 -------- d-----w- c:\program files (x86)\MagicBerry for Blackberry
      2013-04-05 02:43 . 2009-07-10 15:06 31744 ----a-w- c:\windows\system32\drivers\motoandroid.sys
      2013-03-26 00:05 . 2013-03-26 00:05 -------- d-----w- c:\windows\system32\SPReview
      2013-03-23 22:32 . 2013-03-23 22:32 -------- d-----w- c:\users\teto\AppData\Local\Ares
      2013-03-23 22:31 . 2013-03-23 22:32 -------- d-----w- c:\program files (x86)\Ares
      2013-03-22 01:40 . 2013-03-22 01:40 -------- d-----w- c:\programdata\EA Core
      2013-03-22 01:28 . 2013-03-22 01:28 -------- d-----w- c:\program files (x86)\Origin Games
      2013-03-22 01:28 . 2013-03-22 01:28 -------- d-----w- c:\users\teto\AppData\Local\Origin
      2013-03-22 01:28 . 2013-03-22 01:35 -------- d-----w- c:\users\teto\AppData\Roaming\Origin
      2013-03-22 01:27 . 2013-03-22 01:30 -------- d-----w- c:\programdata\Origin
      2013-03-22 01:27 . 2013-03-22 01:35 -------- d-----w- c:\program files (x86)\Origin
      2013-03-22 00:47 . 2013-03-22 00:47 -------- d-----w- c:\program files (x86)\Microsoft WSE
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2013-03-12 19:57 . 2013-02-20 11:49 72013344 ----a-w- c:\windows\system32\MRT.exe
      2013-02-22 02:44 . 2013-02-22 02:44 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
      2013-02-20 11:35 . 2013-02-20 11:36 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
      2013-02-20 11:35 . 2013-02-20 11:36 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
      2013-02-20 11:35 . 2013-02-20 11:36 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
      2013-02-12 14:02 . 2013-03-12 19:40 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
      2013-02-10 03:25 . 2013-02-20 10:48 61216 ----a-w- c:\windows\system32\OpenCL.dll
      2013-02-10 03:25 . 2013-02-20 10:48 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll
      2013-02-10 03:25 . 2013-02-20 10:47 9422672 ----a-w- c:\windows\system32\nvcuda.dll
      2013-02-10 03:25 . 2013-02-20 10:47 7964680 ----a-w- c:\windows\SysWow64\nvcuda.dll
      2013-02-10 03:25 . 2013-02-20 10:47 7569184 ----a-w- c:\windows\system32\nvopencl.dll
      2013-02-10 03:25 . 2013-02-20 10:47 6267240 ----a-w- c:\windows\SysWow64\nvopencl.dll
      2013-02-10 03:25 . 2013-02-20 10:47 2911008 ----a-w- c:\windows\system32\nvcuvid.dll
      2013-02-10 03:25 . 2013-02-20 10:47 2726176 ----a-w- c:\windows\SysWow64\nvcuvid.dll
      2013-02-10 03:25 . 2013-02-20 10:47 26947360 ----a-w- c:\windows\system32\nvoglv64.dll
      2013-02-10 03:25 . 2013-02-20 10:47 2350368 ----a-w- c:\windows\system32\nvcuvenc.dll
      2013-02-10 03:25 . 2013-02-20 10:47 20534560 ----a-w- c:\windows\SysWow64\nvoglv32.dll
      2013-02-10 03:25 . 2013-02-20 10:47 1990944 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
      2013-02-10 03:25 . 2013-02-20 10:47 1807136 ----a-w- c:\windows\system32\nvdispco6420294.dll
      2013-02-10 03:25 . 2013-02-20 10:47 17987192 ----a-w- c:\windows\system32\nvd3dumx.dll
      2013-02-10 03:25 . 2013-02-20 10:47 15275744 ----a-w- c:\windows\system32\nvwgf2umx.dll
      2013-02-10 03:25 . 2013-02-20 10:47 1510176 ----a-w- c:\windows\system32\nvdispgenco6420162.dll
      2013-02-10 03:25 . 2013-02-20 10:47 15038296 ----a-w- c:\windows\SysWow64\nvd3dum.dll
      2013-02-10 03:25 . 2013-02-20 10:47 12862400 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
      2013-02-10 03:25 . 2013-02-20 10:47 11040544 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
      2013-02-10 03:25 . 2013-02-20 10:47 2854344 ----a-w- c:\windows\system32\nvapi64.dll
      2013-02-10 03:25 . 2013-02-20 10:47 2528840 ----a-w- c:\windows\SysWow64\nvapi.dll
      2013-02-10 03:25 . 2013-02-20 10:47 25256736 ----a-w- c:\windows\system32\nvcompiler.dll
      2013-02-10 03:25 . 2013-02-20 10:47 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll
      2013-02-10 01:04 . 2013-02-20 10:48 6393120 ----a-w- c:\windows\system32\nvcpl.dll
      2013-02-10 01:04 . 2013-02-20 10:48 3472672 ----a-w- c:\windows\system32\nvsvc64.dll
      2013-02-10 01:04 . 2013-02-20 10:48 877856 ----a-w- c:\windows\system32\nvvsvc.exe
      2013-02-10 01:04 . 2013-02-20 10:48 63776 ----a-w- c:\windows\system32\nvshext.dll
      2013-02-10 01:04 . 2013-02-20 10:48 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
      2013-02-10 01:04 . 2013-02-20 10:48 237856 ----a-w- c:\windows\system32\nvmctray.dll
      2013-02-09 20:43 . 2013-02-09 20:43 555808 ----a-w- c:\windows\SysWow64\nvStreaming.exe
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "DAEMON Tools Pro Agent"="c:\program files (x86)\DAEMON Tools Pro\DTAgent.exe" [2012-10-23 3108480]
      "ares"="c:\program files (x86)\Ares\Ares.exe" [2013-02-17 916480]
      "Steam"="c:\program files (x86)\Steam\Steam.exe" [2013-03-29 1631144]
      "Facebook Update"="c:\users\teto\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2013-04-17 138096]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
      "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
      "RIMBBLaunchAgent.exe"="c:\program files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-11-02 90448]
      "BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-01-21 91520]
      "AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-12-11 3147384]
      "AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableLUA"= 0 (0x0)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-16 5814904]
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-07 161384]
      R2 SwOffWeb;Airytec Switch Off - Web Interface;c:\program files\Airytec\Switch Off\swoff.exe [2011-05-28 173056]
      R3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys [2009-01-29 6144]
      R3 DroidCam;DroidCam Virtual Audio;c:\windows\system32\drivers\droidcam.sys [2013-04-17 25216]
      R3 mobiolavs;Mobiola Web Camera Video Source;c:\windows\system32\DRIVERS\mobiolavs.sys [2010-05-05 28304]
      R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys [2009-07-10 31744]
      R3 MotDev;Motorola Inc. USB Device;c:\windows\system32\DRIVERS\motodrv.sys [2009-05-08 53632]
      R3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys [2009-12-22 26624]
      R3 motport;Motorola USB Diagnostic Port;c:\windows\system32\DRIVERS\motport.sys [2009-10-27 30208]
      R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys [2013-01-23 13368]
      R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
      R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-03-12 1255736]
      S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-10-15 63328]
      S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-09-21 225120]
      S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-11-16 111968]
      S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-09-14 40800]
      S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-10-22 154464]
      S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-10-02 185696]
      S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-09-21 200032]
      S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-02-22 283200]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-07-04 238080]
      S2 avgwd;WatchDog de AVG;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
      S2 MotoConnect Service;MotoConnect Service;c:\program files (x86)\Motorola\MotoConnectService\MotoConnectService.exe [2010-01-27 91392]
      S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-02-09 383264]
      S2 SwOffScheduler;Airytec Switch Off - Task Scheduler;c:\program files\Airytec\Switch Off\swoff.exe [2011-05-28 173056]
      S3 athur;Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys [2010-01-06 1847296]
      .
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
      2013-04-11 23:23 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2013-04-18 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-16 19:19]
      .
      2013-04-18 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1208338469-2716344089-3270899759-1000Core.job
      - c:\users\teto\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-17 02:13]
      .
      2013-04-18 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1208338469-2716344089-3270899759-1000UA.job
      - c:\users\teto\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-17 02:13]
      .
      2013-04-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-22 12:05]
      .
      2013-04-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-22 12:05]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
      "Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-03-24 976672]
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
      IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
      TCP: DhcpNameServer = 200.49.130.44 200.42.4.207
      FF - ProfilePath - c:\users\teto\AppData\Roaming\Mozilla\Firefox\Profiles\qv268pla.default\
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Wow6432Node-HKCU-Run-AdobeBridge - (no file)
      Wow6432Node-HKCU-Run-EA Core - c:\program files (x86)\Electronic Arts\EADM\Core.exe
      AddRemove-{1AA94747-3BF6-4237-9E1A-7B3067738FE1} - c:\program files (x86)\InstallShield Installation Information\{1AA94747-3BF6-4237-9E1A-7B3067738FE1}\setup.exe
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
      @Denied: (A) (Everyone)
      "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
      @Denied: (A) (Everyone)
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
      "Key"="ActionsPane3"
      "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      Completion time: 2013-04-18 02:00:33
      ComboFix-quarantined-files.txt 2013-04-18 05:00
      .
      Pre-Run: 84.685.627.392 bytes free
      Post-Run: 85.153.484.800 bytes free
      .
      - - End Of File - - 8D451C2CFBF318D28BF30B221EA70086

      Saludos!

    6. #6
      Usuario Avatar de rafxrolo
      Registrado
      abr 2013
      Ubicación
      Argentina
      Mensajes
      4

      Re: "¡Oops! Houston, tenemos un problema."

      El problema persiste, la PC se sigue apagando sola tras 1 hora de uso!