• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 14

    AYUDA con PUP.Adware.Agent y Adware.DoubleD

    Tengo un problema con unos adware, me gustaría que pudieran analizar el siguiente reporte del malwarebytes y decirme como eliminarlos. Gracias. Malwarebytes Anti-Malware (Versión de Prueba) 1.75.0.1300 www.malwarebytes.org Versión de la Base de Datos: v2013.04.18.12 ...

    1. #1
      Omi
      Omi está offline
      Usuario Avatar de Omi
      Registrado
      abr 2013
      Ubicación
      México
      Mensajes
      7

      AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Tengo un problema con unos adware, me gustaría que pudieran analizar el siguiente reporte del malwarebytes y decirme como eliminarlos.

      Gracias.

      Malwarebytes Anti-Malware (Versión de Prueba) 1.75.0.1300
      www.malwarebytes.org

      Versión de la Base de Datos: v2013.04.18.12

      Windows Vista Service Pack 2 x86 NTFS
      Internet Explorer 7.0.6002.18005
      Martha :: IGNACIO1 [administrador]

      Protección: Habilitado

      18/04/2013 06:42:52 p.m.
      MBAM-log-2013-04-18 (19-09-31).txt

      Tipos de Análisis: Análisis Rápido
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 242910
      Tiempo transcurrido: 7 minuto(s), 33 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 27
      HKCR\CLSID\{BA0454C5-FD30-428E-8DB9-3FF87A612F64} (PUP.Adware.Agent) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0454C5-FD30-428E-8DB9-3FF87A612F64} (PUP.Adware.Agent) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0454C5-FD30-428E-8DB9-3FF87A612F64} (PUP.Adware.Agent) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0454C5-FD30-428E-8DB9-3FF87A612F64} (PUP.Adware.Agent) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BA0454C5-FD30-428E-8DB9-3FF87A612F64} (PUP.Adware.Agent) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BA0454C5-FD30-428E-8DB9-3FF87A612F64} (PUP.Adware.Agent) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0454C5-FD30-428E-8DB9-3FF87A612F64} (PUP.Adware.Agent) -> No se tomaron medidas.
      HKCR\TypeLib\{B00FE392-639D-4688-976E-A1BFF368CB96} (PUP.Adware.Agent) -> No se tomaron medidas.
      HKCR\Interface\{3AE26843-9171-4F23-A8E5-5421701276A4} (PUP.Adware.Agent) -> No se tomaron medidas.
      HKCR\AppID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE} (Trojan.BHO) -> No se tomaron medidas.
      HKCR\CLSID\{3DE88BEB-F271-484A-BA71-01D30F439F0C} (Adware.DoubleD) -> No se tomaron medidas.
      HKCR\CLSID\{50AD41D2-B1F0-47CC-9EA7-395355EAEEBD} (Adware.DoubleD) -> No se tomaron medidas.
      HKCR\CLSID\{8CEB185E-81A5-46D3-BC20-C555D605AFBD} (Adware.DoubleD) -> No se tomaron medidas.
      HKCR\CLSID\{A72522BA-9FF3-4C83-ABC6-9B476728A396} (Adware.DoubleD) -> No se tomaron medidas.
      HKCR\CLSID\{C5762628-AE15-4ca6-96C4-B00DD17F3419} (Adware.DoubleD) -> No se tomaron medidas.
      HKCR\CLSID\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> No se tomaron medidas.
      HKCR\gencrawler_gc.GenCrawler (Trojan.Downloader) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> No se tomaron medidas.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> No se tomaron medidas.
      HKCR\CLSID\{D062E03E-65CA-49E4-9B15-31938BA98922} (Adware.DoubleD) -> No se tomaron medidas.
      HKCR\Typelib\{883DFC00-8A21-411D-956C-73A4E4B7D16F} (Adware.DoubleD) -> No se tomaron medidas.
      HKCR\Interface\{480098C6-F6AD-4C61-9B5C-2BAE228A34D1} (Adware.DoubleD) -> No se tomaron medidas.
      HKLM\SOFTWARE\QuestService (Adware.DoubleD) -> No se tomaron medidas.
      HKLM\SOFTWARE\Web Search Operator (Adware.DoubleD) -> No se tomaron medidas.
      HKLM\SOFTWARE\AppDataLow\SOFTWARE\Internet Today (Adware.DoubleD) -> No se tomaron medidas.
      HKLM\SOFTWARE\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl (PUP.FCTPlugin) -> No se tomaron medidas.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestService (Adware.DoubleD) -> No se tomaron medidas.

      Valores del Registro Detectados: 6
      HKLM\SOFTWARE\Mozilla\Firefox\Extensions\{E63605FC-D583-4C81-867F-9457BDB3EA1B} (Adware.DoubleD) -> datos: -> No se tomaron medidas.
      HKLM\SOFTWARE\Mozilla\Firefox\Extensions|{E63605FC-D583-4C81-867F-9457BDB3EA1B} (Adware.DoubleD) -> datos: C:\Program Files\Web Search Operator\4.1.0.1880\FF -> No se tomaron medidas.
      HKLM\SOFTWARE\Mozilla\Firefox\Extensions\{8141440E-08F0-4339-9959-5C31C6A69F23} (Adware.DoubleD) -> datos: -> No se tomaron medidas.
      HKLM\SOFTWARE\Mozilla\Firefox\Extensions|{8141440E-08F0-4339-9959-5C31C6A69F23} (Adware.DoubleD) -> datos: C:\Program Files\Automated Content Enhancer\4.1.0.5240\FF -> No se tomaron medidas.
      HKLM\SOFTWARE\Mozilla\Firefox\Extensions\{E889F097-B0BE-471B-89AD-B86B6F04B506} (Adware.DoubleD) -> datos: -> No se tomaron medidas.
      HKLM\SOFTWARE\Mozilla\Firefox\Extensions|{E889F097-B0BE-471B-89AD-B86B6F04B506} (Adware.DoubleD) -> datos: C:\Program Files\Customized Platform Advancer\4.1.0.1800\FF -> No se tomaron medidas.

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 11
      C:\ProgramData\QuestService (Adware.DoubleD) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard\1.1.0.1880 (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Internet Today (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Internet Today\1.1.0.1230 (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\QuestService (Adware.DoubleD) -> No se tomaron medidas.
      C:\Program Files\QuestService\QuestService_deleted_ (Adware.DoubleD) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710 (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\data (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\TSearch (Adware.TSearch) -> No se tomaron medidas.

      Archivos Detectados: 32
      C:\Program Files\OpenApp\bho_project.dll (PUP.Adware.Agent) -> No se tomaron medidas.
      C:\Users\Martha\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.dll (Trojan.Downloader) -> No se tomaron medidas.
      C:\Program Files\Common Files\smss.exe (Backdoor.Agent) -> No se tomaron medidas.
      C:\Program Files\Common Files\winlogon.exe (Backdoor.Agent) -> No se tomaron medidas.
      C:\Program Files\Common Files\fzx9823.exe (Backdoor.Agent) -> No se tomaron medidas.
      C:\Users\Martha\Downloads\descargar_nuevo__virtual_dj_7___plugins.exe (PUP.Adware.MediaGet) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard\1.1.0.1880\cmwsh.dll (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard\1.1.0.1880\config.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard\1.1.0.1880\data.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard\1.1.0.1880\exclude.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard\1.1.0.1880\MatchingData.zd5 (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard\1.1.0.1880\pxtmpdata.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard\1.1.0.1880\unins000.dat (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Content Management Wizard\1.1.0.1880\unins000.exe (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Internet Today\1.1.0.1230\InternetToday.ico (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Internet Today\1.1.0.1230\InternetToday.skf (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Internet Today\1.1.0.1230\mfc80.dll (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Internet Today\1.1.0.1230\Microsoft.VC80.MFC.manifest (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Internet Today\1.1.0.1230\SkinCrafterDll.dll (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Internet Today\1.1.0.1230\unins000.dat (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Internet Today\1.1.0.1230\unins000.exe (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\QuestService\uninstall.exe (Adware.DoubleD) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\tcppx.exe (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\unins000.dat (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\unins000.exe (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\data\pxtmpdata.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\data\TP_Config.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\data\TP_Data.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\data\TP_DomainExcludeList.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\data\TP_DomainInterval.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\Textual Content Provider\1.1.0.1710\data\TP_KeywordInterval.mx (Adware.Agent) -> No se tomaron medidas.
      C:\Program Files\TSearch\results (Adware.TSearch) -> No se tomaron medidas.

      fin)

    2. #2
      Usuario Avatar de M4RTYN
      Registrado
      jun 2012
      Ubicación
      Ecuador
      Mensajes
      5.520

      Re: AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Hola!

      Tienes una infeccion impresionante O.o

      porfavor repite el malwarebytes pero ELIMINA TODO ya que debes marcar las amenzas con un y das a eliminar todos pero te dejare los pasos igual!

      Realiza Los Siguientes Pasos (si no puedes con uno salta al siguiente)

      EN MODO SEGURO CON FUNCIONES DE RED

      Descarga,actualiza y realiza un escaneo completo con el malwarebytes:Manual de Malwarebytes Anti-Malware 2

      -Instala el programa con idioma español.
      -Vete a la pestaña actualizar y actualizas a la ultima version
      -Vete a la pestaña Escáner y realizas un Ánalisis completo.
      -Una vez finalizado, pulsa sobre "Mostrar los Resultados " y "Eliminar Seleccionadas" como se demuestra en esta FOTO
      -Todas las amenazas tienen que estar marcadas con un visto ()
      -En el caso de que te pida reiniciar,reinicia.
      -Peganos el reporte del escaneo del malwarebytes despues de reiniciar,esta en la pestaña Registros.


      Descarga Ccleaner:Manual de CCleaner <------------ Este paso es MUY IMPORTANTE

      Ejecutar CCleaner usando primero su opción de "Limpiador" para borrar cookies y temporales de Internet
      Usa su opción de "Registro" para limpiar todo el registro de Windows creando antes una copia de seguridad

      Realiza un análisis completo con Eset Nod32 online ----------> Version Descargable E Instalable: Eset Smart Installer Y mas aca su manual ---------->MANUAL DE ESET ONLINE

      1- Lo ejecutas.

      2-Marcas las casillas de Eliminar las amenazas detectadas y analizar archivos.

      3- Haces clic en Configuración adicional y ahi marcas las casillas:

      - Analizar en busca de aplicaciones potencialmente indeseables.

      - Analizar en busca de aplicaciones potencialmente peligrosas.

      - Activar la tecnolgía Anti-Stealth.



      4- Pulsas en Iniciar para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.

      Cuando acabe haz clic en Finalizar

      5- Localizar el reporte en C:\Archivos de programa\ESET\ESET Online Scanner\log
      • Descarga AT-Destroyer (Adwares/Toolbars-Destroyer) by @Infospyware.
      • Debes cerrar todos los programas que estes usando durante el proceso
      • Desactiva temporalmente el Antivirus y/o Antispyware. o cualquier tipo de defensa que tenga en su PC
      • Ejecuta AT-Destroyer como administrador (Click Derecho Ejecutar como/Como Administrador).
      • Elige la Opcion #1 (Buscar y Destruir)
      • AT-Destroyer desconectará el escritorio momentáneamente.
      • En caso de estar infectado AT DESTROYER le indicara El tipo y numero mediante una Pantalla negra Con los datos anteriormente nombrados
      • Una vez terminado el escaneo, podrás volver a ver el escritorio y se te abrirá un reporte, que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.
      • NOTA: en la mayoria de los casos pedira un Reinicio de la PC, si esto pasa busque en reporte en C:/AT-Destroyer.txt
      • Si algún programa no inicia, reiniciar la PC.
      • Descarga AdwCleaner En su PC
      • NOTA: Cerra todos los programas antes de ejecutar esta herramienta.
      • Desactiva temporalmente el Antivirus y/o Antispyware. o cualquier tipo de defensa que tenga en su PC
      • Copia en el escritorio el programa Adwcleaner y lo ejecutas Como Administrador (Click Derecho Ejecutar como/Como Administrador).
      • Una Vez abierto le das a Supresión y esperas que termine su trabajo.
      • Se va a abrir un reporte donde muestra lo que detecto, lo copias y lo pegas acá.
      • NOTA: En caso de que EL PROGRAMA te pida reiniciar hazlo .
      • En caso de que no se abra el reporte lo buscas en C:\AdwCleaner[R1].txt





      Descarga Malwarebytes Anti-Rootkit Beta y descomprima el contenido en su escritorio.


      Paso Principal .- : Desactiva temporalmente el Antivirus y/o Antispyware


      1. Abra la carpeta Mbar. Doble clic en el archivo Mbar.exe
      2. En la interfaz del programa haga clic en Next.
      3. Haga clic en el botón Update. Terminando clic en Next
      4. Para iniciar el análisis clic en el botón Scan
      5. Terminando, si hay infección clic en CleanUp, si no hay clic en Exit.


      Al finalizar abra la carpeta Mbar, los archivos mbar-log.txt y system-log.txt, copie y pegue todo su contenido en la siguiente respuesta y comentando los resultados.
      saludos
      º El reporte del Malwarebytes, que se encuentra en su pestaña REGISTROS
      º El reporte del Eset Nod32
      º El reporte de at destroyer
      º El reporte de AdwCleaner
      º El reporte de Malwarebytes Anti Rookits
      º Nos cuentas como funciona tu pc ahora

      *Si tienes alguna duda,te puedes imprimir las instrucciones para hacer un mejor seguimiento.


    3. #3
      Omi
      Omi está offline
      Usuario Avatar de Omi
      Registrado
      abr 2013
      Ubicación
      México
      Mensajes
      7

      Re: AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Hola, ya he terminado todos los pasos que me indicaste. Dejo todos los reportes de los software mencionados.

      Reporte del Malwarebytes:

      Malwarebytes Anti-Malware (Versión de Prueba) 1.75.0.1300
      Malwarebytes : Free anti-malware download

      Versión de la Base de Datos: v2013.04.18.12

      Windows Vista Service Pack 2 x86 NTFS (Modo Seguro/Red)
      Internet Explorer 7.0.6002.18005
      Martha :: IGNACIO1 [administrador]

      Protección: Personas de movilidad reducida

      18/04/2013 09:56:32 p.m.
      mbam-log-2013-04-18 (21-56-32).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 376225
      Tiempo transcurrido: 40 minuto(s), 31 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 0
      (No se han detectado elementos maliciosos)

      Archivos Detectados: 0
      (No se han detectado elementos maliciosos)

      fin)

      Reporte del Eset Nod32:

      [email protected] as downloader log:
      all ok

      Reporte del AT-Destroyer:

      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 0042 \\\ 19/04/2013
      AT-Destroyer 2.1 By Infospyware ---> InfoSpyware
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:7.0.6002.18005
      Mozilla Firefox:20.0.1.4847
      Privilegios: Martha - Administrador
      Modo Actual: Modo Seguro.
      Nombre del pc: IGNACIO1
      Información del sistema operativo:X86-WIN_VISTA-Service Pack 2
      nombre del usuario:Martha
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<

      C:\Users\Martha\AppData\Roaming\OpenCandy\2FC156AD04FB4AD7A5A2CDE6B76E052B (W32/Adware.OpenCandy)
      C:\Users\Martha\AppData\Roaming\OpenCandy\2FC156AD04FB4AD7A5A2CDE6B76E052B\SymentecRegMech_Sp_p1v1.exe (W32/Adware.OpenCandy)
      C:\Users\Martha\AppData\Roaming\OpenCandy\OpenCandy_2FC156AD04FB4AD7A5A2CDE6B76E052B (W32/Adware.OpenCandy)
      C:\Users\Martha\AppData\Roaming\OpenCandy (W32/Adware.OpenCandy)
      C:\Users\Martha\AppData\Local\Babylon\Setup (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\bab033.tbinst.dat (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\bab091.norecovericon.dat (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\Babylon.dat (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\common.js (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\eula.html (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\page2.css (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\page2.html (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\page2.js (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\page2Lrg.css (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\page9.html (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\pBar.gif (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\title2.png (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\HtmlScreens\toolBar.jpg (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\Setup-tbmntr903-9.0.3.19.zpb (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\Setup.exe (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\SetupStrings.dat (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon\Setup\sqlite3.dll (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Local\Babylon (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Roaming\Babylon\log_file.txt (W32/PND.Babylon Toolbar)
      C:\Users\Martha\AppData\Roaming\Babylon (W32/PND.Babylon Toolbar)
      C:\ProgramData\Babylon (W32/PND.Babylon Toolbar)


      >>>>>> Archivos <<<<<<

      C:\Program Files\mozilla firefox\searchplugins\babylon.xml
      C:\user.js


      >>>>>> Registro <<<<<<

      HKEY_CURRENT_USER\Software\DataMngr
      HKEY_CLASSES_ROOT\AppID\escort.DLL
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
      HKLM\Software\Microsoft\Internet Explorer\Toolbar ----> {0974848a-b5bc-49f2-9778-307742b4a55d}


      >>>>>> Heurística <<<<<<



      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==%SystemRoot%\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_Page_URL==http://www.google.com.mx/ig/dell?hl=es&client=dell-row&channel=mx&ibd=0090202


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==http://www.google.com.mx/ig/dell?hl=es&client=dell-row&channel=mx&ibd=0090202


      HKEY_USERS\S-1-5-21-1293268348-72200862-3093770252-1001\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==http://www.google.com.mx/ig/dell?hl=es&client=dell-row&channel=mx&ibd=0090202


      >>>>>> Firefox <<<<<<

      user_pref("browser.startup.homepage_override.buildID", "20130409194949");
      user_pref("browser.startup.homepage_override.mstone", "20.0.1");


      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@movenetworks.com/Quantum Media Player
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\8
      C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
      C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
      C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
      C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\edfkoljdeffeedleidebkmmamepgbnbl
      C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcegpfdgcoclcdfkjahiimlikdpnina
      C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\peidmdfccinlepbampikfomemdbbmhgk
      C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
      C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\Temp

      ======== Listado ===========

      [14/10/2012 09:42 p.m.] [29/06/2011 04:46 p.m.] [N] C:\Users\Martha\AppData\Roaming\Apple Computer
      [30/08/2012 10:04 p.m.] [30/08/2012 10:04 p.m.] [N] C:\Users\Martha\AppData\Roaming\CyberLink
      [26/09/2010 11:32 p.m.] [29/06/2011 01:50 p.m.] [N] C:\Users\Martha\AppData\Roaming\Dell
      [29/06/2011 01:53 p.m.] [29/06/2011 01:53 p.m.] [N] C:\Users\Martha\AppData\Roaming\ESET
      [29/06/2011 01:52 p.m.] [29/06/2011 01:52 p.m.] [N] C:\Users\Martha\AppData\Roaming\Identities
      [26/09/2010 11:33 p.m.] [29/06/2011 01:50 p.m.] [N] C:\Users\Martha\AppData\Roaming\Macromedia
      [18/04/2013 06:41 p.m.] [18/04/2013 06:41 p.m.] [N] C:\Users\Martha\AppData\Roaming\Malwarebytes
      [11/04/2012 03:54 p.m.] [06/04/2012 03:36 p.m.] [N] C:\Users\Martha\AppData\Roaming\Media Finder
      [18/04/2013 07:38 p.m.] [18/07/2011 01:40 p.m.] [N] C:\Users\Martha\AppData\Roaming\Media Player Classic
      [26/01/2013 07:17 p.m.] [29/06/2011 01:50 p.m.] [SN] C:\Users\Martha\AppData\Roaming\Microsoft
      [01/07/2011 12:35 a.m.] [01/07/2011 12:35 a.m.] [N] C:\Users\Martha\AppData\Roaming\Mozilla
      [06/05/2012 11:40 p.m.] [06/05/2012 11:40 p.m.] [N] C:\Users\Martha\AppData\Roaming\Reallusion
      [13/07/2011 06:53 p.m.] [13/07/2011 06:53 p.m.] [N] C:\Users\Martha\AppData\Roaming\Rovio
      [06/11/2011 07:16 p.m.] [06/11/2011 07:16 p.m.] [N] C:\Users\Martha\AppData\Roaming\Roxio
      [07/06/2012 10:45 p.m.] [08/07/2011 04:14 p.m.] [N] C:\Users\Martha\AppData\Roaming\Skype
      [30/05/2012 08:18 p.m.] [30/05/2012 08:18 p.m.] [N] C:\Users\Martha\AppData\Roaming\Sony Corporation
      [06/05/2012 11:40 p.m.] [06/05/2012 11:40 p.m.] [N] C:\Users\Martha\AppData\Roaming\tmp
      [29/06/2011 02:12 p.m.] [29/06/2011 02:12 p.m.] [N] C:\Users\Martha\AppData\Roaming\TuneUp Software
      [08/12/2012 09:51 p.m.] [08/12/2012 09:51 p.m.] [N] C:\Users\Martha\AppData\Roaming\YourFileDownloader
      [04/01/2013 03:45 p.m.] [12/07/2011 07:26 p.m.] [0] C:\Program Files\AppGraffiti
      [29/06/2011 05:12 p.m.] [29/06/2011 05:12 p.m.] [0] C:\Program Files\Apple Software Update
      [06/03/2009 08:40 p.m.] [06/03/2009 08:40 p.m.] [HSN] C:\Program Files\Archivos comunes
      [23/02/2012 07:30 p.m.] [23/02/2012 07:30 p.m.] [0] C:\Program Files\Bonjour
      [23/07/2012 10:01 p.m.] [23/07/2012 10:01 p.m.] [0] C:\Program Files\Buzan Online
      [29/06/2011 05:02 p.m.] [17/06/2009 10:50 p.m.] [0] C:\Program Files\Canon
      [29/06/2011 02:00 p.m.] [13/04/2009 01:59 p.m.] [0] C:\Program Files\CCleaner
      [02/02/2009 04:19 a.m.] [02/02/2009 04:19 a.m.] [0] C:\Program Files\Cisco
      [02/02/2009 04:34 a.m.] [02/02/2009 04:34 a.m.] [0] C:\Program Files\Citrix
      [18/04/2013 09:54 p.m.] [02/11/2006 06:18 a.m.] [0] C:\Program Files\Common Files
      [01/02/2009 09:57 p.m.] [01/02/2009 09:57 p.m.] [0] C:\Program Files\CONEXANT
      [29/06/2011 04:17 p.m.] [20/04/2009 02:17 p.m.] [0] C:\Program Files\Corel
      [07/03/2009 02:09 a.m.] [02/02/2009 04:14 a.m.] [0] C:\Program Files\Creative
      [07/03/2009 02:10 a.m.] [02/02/2009 04:14 a.m.] [0] C:\Program Files\Creative Live! Cam
      [02/02/2009 04:29 a.m.] [02/02/2009 04:28 a.m.] [0] C:\Program Files\CyberLink
      [07/03/2009 02:19 a.m.] [02/02/2009 04:14 a.m.] [0] C:\Program Files\Dell
      [02/02/2009 04:38 a.m.] [02/02/2009 04:38 a.m.] [0] C:\Program Files\Dell Support Center
      [02/02/2009 05:52 a.m.] [02/02/2009 05:52 a.m.] [0] C:\Program Files\DellTPad
      C:\Program Files\desktop.ini [HSA] 174 bytes( 0)
      [20/12/2009 11:16 p.m.] [20/12/2009 11:16 p.m.] [0] C:\Program Files\DIFX
      [02/02/2009 04:13 a.m.] [02/02/2009 04:13 a.m.] [0] C:\Program Files\Digital Line Detect
      [18/04/2013 10:45 p.m.] [29/06/2011 03:03 p.m.] [0] C:\Program Files\ESET
      [29/06/2011 02:32 p.m.] [02/02/2009 04:27 a.m.] [0] C:\Program Files\Google
      [01/08/2011 07:25 p.m.] [01/08/2011 07:15 p.m.] [0] C:\Program Files\HP
      [29/06/2011 05:20 p.m.] [02/02/2009 04:13 a.m.] [H] C:\Program Files\InstallShield Installation Information
      [02/02/2009 04:19 a.m.] [02/02/2009 04:18 a.m.] [0] C:\Program Files\Intel
      [08/07/2011 02:37 p.m.] [02/11/2006 06:18 a.m.] [0] C:\Program Files\Internet Explorer
      [23/02/2012 07:35 p.m.] [23/02/2012 07:35 p.m.] [0] C:\Program Files\iPod
      [23/02/2012 07:36 p.m.] [23/02/2012 07:35 p.m.] [0] C:\Program Files\iTunes
      [29/06/2011 02:30 p.m.] [02/02/2009 04:11 a.m.] [0] C:\Program Files\Java
      [29/06/2011 02:10 p.m.] [29/06/2011 02:10 p.m.] [0] C:\Program Files\K-Lite Codec Pack
      [18/04/2013 06:41 p.m.] [18/04/2013 06:41 p.m.] [0] C:\Program Files\Malwarebytes' Anti-Malware
      [09/03/2009 09:46 p.m.] [09/03/2009 09:41 p.m.] [0] C:\Program Files\Microsoft
      [02/11/2006 07:35 a.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\Microsoft Games
      [13/04/2009 03:01 p.m.] [02/02/2009 04:24 a.m.] [0] C:\Program Files\Microsoft Office
      [25/11/2009 02:09 a.m.] [25/11/2009 02:09 a.m.] [0] C:\Program Files\Microsoft Office Outlook Connector
      [12/01/2013 07:07 p.m.] [09/03/2009 09:46 p.m.] [0] C:\Program Files\Microsoft Silverlight
      [09/03/2009 09:43 p.m.] [09/03/2009 09:43 p.m.] [0] C:\Program Files\Microsoft SQL Server Compact Edition
      [09/03/2009 09:45 p.m.] [09/03/2009 09:45 p.m.] [0] C:\Program Files\Microsoft Sync Framework
      [13/04/2009 03:02 p.m.] [13/04/2009 03:02 p.m.] [0] C:\Program Files\Microsoft Visual Studio
      [13/04/2009 02:58 p.m.] [13/04/2009 02:58 p.m.] [0] C:\Program Files\Microsoft Visual Studio 8
      [02/02/2009 04:27 a.m.] [02/02/2009 04:27 a.m.] [0] C:\Program Files\Microsoft Works
      [02/02/2009 04:26 a.m.] [02/02/2009 04:26 a.m.] [0] C:\Program Files\Microsoft.NET
      [02/02/2009 04:12 a.m.] [02/02/2009 04:12 a.m.] [0] C:\Program Files\Modem Diagnostic Tool
      [08/07/2011 02:37 p.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\Movie Maker
      [13/04/2013 10:10 p.m.] [12/04/2013 10:00 p.m.] [0] C:\Program Files\Mozilla Firefox
      [15/04/2013 01:37 a.m.] [22/08/2012 06:38 p.m.] [0] C:\Program Files\Mozilla Maintenance Service
      [13/04/2009 03:02 p.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\MSBuild
      [02/02/2009 04:13 a.m.] [02/02/2009 04:12 a.m.] [0] C:\Program Files\NetWaiting
      [29/06/2011 04:42 p.m.] [20/12/2009 11:14 p.m.] [0] C:\Program Files\Nokia
      [25/08/2012 02:04 a.m.] [25/08/2012 02:04 a.m.] [0] C:\Program Files\OpenApp
      [13/07/2011 06:18 p.m.] [04/07/2011 10:16 p.m.] [0] C:\Program Files\PCPowerSpeed
      [03/04/2012 09:36 p.m.] [03/04/2012 09:36 p.m.] [0] C:\Program Files\Prodigy Infinitum
      [27/02/2013 09:59 p.m.] [27/02/2013 09:58 p.m.] [0] C:\Program Files\QuickTime
      [02/11/2006 07:35 a.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\Reference Assemblies
      [02/02/2009 04:32 a.m.] [02/02/2009 04:30 a.m.] [0] C:\Program Files\Roxio
      [01/02/2009 09:57 p.m.] [01/02/2009 09:57 p.m.] [0] C:\Program Files\Sigmatel
      [12/07/2011 07:25 p.m.] [12/07/2011 07:25 p.m.] [0] C:\Program Files\SiteRanker
      [08/07/2011 07:03 p.m.] [08/07/2011 04:14 p.m.] [R] C:\Program Files\Skype
      [25/08/2012 02:04 a.m.] [25/08/2012 02:04 a.m.] [0] C:\Program Files\smartdl
      [16/05/2011 11:46 p.m.] [16/05/2011 11:45 p.m.] [0] C:\Program Files\Sony
      [16/05/2011 11:43 p.m.] [16/05/2011 11:43 p.m.] [0] C:\Program Files\Sony Setup
      [03/04/2012 10:03 p.m.] [03/04/2012 10:03 p.m.] [0] C:\Program Files\SystemRequirementsLab
      [02/11/2006 07:58 a.m.] [02/11/2006 07:58 a.m.] [H] C:\Program Files\Uninstall Information
      [30/03/2012 10:16 p.m.] [30/03/2012 08:54 p.m.] [0] C:\Program Files\VirtualDJ
      [16/05/2011 11:45 p.m.] [16/05/2011 11:45 p.m.] [0] C:\Program Files\Vstplugins
      [08/07/2011 02:37 p.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\Windows Calendar
      [08/07/2011 02:37 p.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\Windows Collaboration
      [08/07/2011 02:37 p.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\Windows Defender
      [08/07/2011 02:48 p.m.] [09/03/2009 09:41 p.m.] [0] C:\Program Files\Windows Live
      [09/03/2009 09:41 p.m.] [09/03/2009 09:41 p.m.] [0] C:\Program Files\Windows Live SkyDrive
      [08/07/2011 02:37 p.m.] [02/11/2006 06:18 a.m.] [0] C:\Program Files\Windows Mail
      [08/07/2011 02:37 p.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\Windows Media Player
      [06/03/2009 08:40 p.m.] [02/11/2006 06:18 a.m.] [0] C:\Program Files\Windows NT
      [08/07/2011 02:37 p.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\Windows Photo Gallery
      [08/07/2011 02:37 p.m.] [02/11/2006 07:35 a.m.] [0] C:\Program Files\Windows Sidebar
      [20/04/2009 02:22 p.m.] [20/04/2009 02:22 p.m.] [0] C:\Program Files\WinRAR
      [04/01/2013 07:33 p.m.] [09/03/2009 10:20 p.m.] [0] C:\Program Files\Yahoo!
      [08/12/2012 09:55 p.m.] [08/12/2012 09:51 p.m.] [0] C:\Program Files\YourFileDownloader
      [06/03/2013 08:33 p.m.] [02/02/2009 04:22 a.m.] [N] C:\ProgramData\Adobe
      [04/08/2009 11:38 p.m.] [04/08/2009 11:34 p.m.] [N] C:\ProgramData\Apple
      [04/08/2009 11:36 p.m.] [04/08/2009 11:35 p.m.] [N] C:\ProgramData\Apple Computer
      [23/07/2012 10:43 p.m.] [23/07/2012 10:43 p.m.] [N] C:\ProgramData\Application Data
      [29/05/2012 11:09 p.m.] [29/05/2012 11:09 p.m.] [N] C:\ProgramData\Ask
      [23/07/2012 10:03 p.m.] [23/07/2012 10:03 p.m.] [N] C:\ProgramData\BOL
      [26/02/2013 05:49 p.m.] [26/02/2013 05:49 p.m.] [H] C:\ProgramData\Common Files
      [01/04/2010 09:22 p.m.] [02/02/2009 04:29 a.m.] [N] C:\ProgramData\CyberLink
      [06/03/2009 08:40 p.m.] [06/03/2009 08:40 p.m.] [HSN] C:\ProgramData\Datos de programa
      [05/09/2010 10:23 p.m.] [02/02/2009 04:30 a.m.] [N] C:\ProgramData\Dell
      [06/03/2009 08:40 p.m.] [06/03/2009 08:40 p.m.] [HSN] C:\ProgramData\Documentos
      [06/03/2009 08:40 p.m.] [06/03/2009 08:40 p.m.] [HSN] C:\ProgramData\Escritorio
      [06/03/2009 08:40 p.m.] [06/03/2009 08:40 p.m.] [HSN] C:\ProgramData\Favoritos
      [01/08/2011 07:14 p.m.] [01/08/2011 07:14 p.m.] [N] C:\ProgramData\HP
      C:\ProgramData\hpzinstall.log [AN] 811 bytes 0
      [02/02/2009 04:30 a.m.] [02/02/2009 04:30 a.m.] [N] C:\ProgramData\InstallShield
      C:\ProgramData\KGyGaAvL.sys [HSAN] 2.76 KB 0
      [18/04/2013 06:41 p.m.] [18/04/2013 06:41 p.m.] [N] C:\ProgramData\Malwarebytes
      [01/12/2012 01:00 a.m.] [02/02/2009 04:33 a.m.] [N] C:\ProgramData\McAfee
      [06/03/2009 08:40 p.m.] [06/03/2009 08:40 p.m.] [HSN] C:\ProgramData\Menú Inicio
      [26/02/2013 07:51 p.m.] [26/02/2013 05:49 p.m.] [N] C:\ProgramData\MFAData
      [21/03/2012 01:47 a.m.] [02/11/2006 06:18 a.m.] [SN] C:\ProgramData\Microsoft
      [26/01/2013 07:17 p.m.] [02/02/2009 04:24 a.m.] [N] C:\ProgramData\Microsoft Help
      [22/08/2012 06:38 p.m.] [22/08/2012 06:38 p.m.] [N] C:\ProgramData\Mozilla
      [11/01/2010 12:40 a.m.] [11/01/2010 12:40 a.m.] [N] C:\ProgramData\PC Suite
      [02/02/2009 04:38 a.m.] [02/02/2009 04:38 a.m.] [N] C:\ProgramData\PC-Doctor
      [02/02/2009 04:38 a.m.] [02/02/2009 04:38 a.m.] [N] C:\ProgramData\PCDr
      [06/03/2009 08:40 p.m.] [06/03/2009 08:40 p.m.] [HSN] C:\ProgramData\Plantillas
      [29/03/2011 12:18 a.m.] [29/03/2011 12:18 a.m.] [N] C:\ProgramData\PopCap Games
      [10/11/2012 08:42 p.m.] [06/11/2011 07:16 p.m.] [N] C:\ProgramData\Roxio
      [08/07/2011 04:14 p.m.] [08/07/2011 04:14 p.m.] [N] C:\ProgramData\Skype
      [02/02/2009 04:31 a.m.] [02/02/2009 04:31 a.m.] [N] C:\ProgramData\Sonic
      [09/02/2010 11:50 p.m.] [09/02/2010 11:50 p.m.] [N] C:\ProgramData\Sun
      [02/02/2009 04:38 a.m.] [02/02/2009 04:38 a.m.] [N] C:\ProgramData\SupportSoft
      [30/05/2012 12:40 p.m.] [29/05/2012 11:12 p.m.] [AN] C:\ProgramData\TEMP
      [02/02/2009 04:32 a.m.] [02/02/2009 04:32 a.m.] [N] C:\ProgramData\Uninstall
      [22/03/2012 06:54 a.m.] [22/03/2012 06:54 a.m.] [N] C:\ProgramData\Xerox
      [23/05/2009 01:56 p.m.] [09/03/2009 10:20 p.m.] [0] C:\ProgramData\Yahoo!
      [17/06/2009 10:51 p.m.] [17/06/2009 10:51 p.m.] [N] C:\ProgramData\ZoomBrowser
      [29/06/2011 02:08 p.m.] [09/12/2009 02:34 p.m.] [HC] C:\ProgramData\{28449566-C339-4C2A-88B5-39A74FC87A66}
      [29/06/2011 05:16 p.m.] [29/06/2011 05:15 p.m.] [N] C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
      [04/08/2009 11:37 p.m.] [04/08/2009 11:36 p.m.] [N] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}

      ==================== EOF ==================

      Reporte del AdwCleaner:

      # AdwCleaner v2.200 - Fichero creado el 19/04/2013 a 00:27:04
      # Actualizado el 02/04/2013 por Xplode
      # Sistema operativo : Windows Vista (TM) Home Basic Service Pack 2 (32 bits)
      # Usuario : Martha - IGNACIO1
      # Modo de inicio : Modo seguro con funciones de red
      # Ejecutado desde : C:\Users\Martha\Desktop\adwcleaner.exe
      # Opción [Supresión]


      ***** [Servicios] *****


      ***** [Ficheros / Carpetas] *****

      Carpeta Suprimido : C:\Program Files\AppGraffiti
      Carpeta Suprimido : C:\Program Files\SiteRanker
      Carpeta Suprimido : C:\Program Files\Smartdl
      Carpeta Suprimido : C:\Program Files\yourfiledownloader
      Carpeta Suprimido : C:\ProgramData\{28449566-C339-4C2A-88B5-39A74FC87A66}
      Carpeta Suprimido : C:\ProgramData\Ask
      Carpeta Suprimido : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppGraffiti
      Carpeta Suprimido : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
      Carpeta Suprimido : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiteRanker
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\Local\Conduit
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\Local\Internet Today
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\Local\Textual Content Provider
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\Local\Web Search Operator
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\LocalLow\Automated Content Enhancer
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\LocalLow\BabylonToolbar
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\LocalLow\Conduit
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\LocalLow\ConduitEngine
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\LocalLow\Customized Platform Advancer
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\LocalLow\PriceGong
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\LocalLow\Searchqutoolbar
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\LocalLow\softonic.com4
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\LocalLow\Textual Content Provider
      Carpeta Suprimido : C:\Users\IGNACIO\AppData\Roaming\Bandoo
      Carpeta Suprimido : C:\Users\Martha\AppData\Local\APN
      Carpeta Suprimido : C:\Users\Martha\AppData\Local\Conduit
      Carpeta Suprimido : C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
      Carpeta Suprimido : C:\Users\Martha\AppData\Local\PackageAware
      Carpeta Suprimido : C:\Users\Martha\AppData\LocalLow\AppGraffiti
      Carpeta Suprimido : C:\Users\Martha\AppData\LocalLow\BabylonToolbar
      Carpeta Suprimido : C:\Users\Martha\AppData\LocalLow\Conduit
      Carpeta Suprimido : C:\Users\Martha\AppData\LocalLow\SiteRanker
      Carpeta Suprimido : C:\Users\Martha\AppData\LocalLow\softonic.com4
      Carpeta Suprimido : C:\Users\Martha\AppData\Roaming\Media Finder
      Carpeta Suprimido : C:\Users\Martha\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]
      Carpeta Suprimido : C:\Users\Martha\AppData\Roaming\Mozilla\Firefox\Profiles\vhzeqn9i.default\extensions\[email protected]
      Carpeta Suprimido : C:\Users\Martha\AppData\Roaming\yourfiledownloader
      Fichero Suprimido : C:\Users\IGNACIO\AppData\Local\Temp\Searchqu.ini
      Fichero Suprimido : C:\Users\IGNACIO\AppData\Local\Temp\searchqutoolbar-manifest.xml
      Fichero Suprimido : C:\Users\IGNACIO\AppData\Local\Temp\SetupDataMngr_Searchqu.exe
      Fichero Suprimido : C:\Users\Martha\AppData\Roaming\Mozilla\Firefox\Profiles\vhzeqn9i.default\searchplugins\Askcom.xml
      Fichero Suprimido : C:\Users\Public\Desktop\YourFile Downloader.lnk
      Fichero Suprimido : C:\Windows\system32\conduitEngine.tmp

      ***** [Registro] *****

      Clave Supprimida : HKCU\Software\AppDataLow\Software\softonic.com4
      Clave Supprimida : HKCU\Software\Iminent
      Clave Supprimida : HKCU\Software\MediaFinder
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2101}
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
      Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\YourFileDownloader
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\YourFileDownloader
      Clave Supprimida : HKCU\Software\Softonic
      Clave Supprimida : HKLM\Software\AppGraffiti
      Clave Supprimida : HKLM\Software\Babylon
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppGraffiti.AppGraffitiJS
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
      Clave Supprimida : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
      Clave Supprimida : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
      Clave Supprimida : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
      Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Conduit.Engine
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
      Clave Supprimida : HKLM\SOFTWARE\Classes\MF
      Clave Supprimida : HKLM\SOFTWARE\Classes\Prod.cap
      Clave Supprimida : HKLM\SOFTWARE\Classes\Toolbar.CT1854633
      Clave Supprimida : HKLM\SOFTWARE\Classes\Toolbar.CT2805139
      Clave Supprimida : HKLM\SOFTWARE\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
      Clave Supprimida : HKLM\SOFTWARE\Google\Chrome\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
      Clave Supprimida : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
      Clave Supprimida : HKLM\SOFTWARE\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai
      Clave Supprimida : HKLM\Software\Iminent
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B2BF1F9-DBA0-4D85-915A-05ABA1AAB38C}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4E1D-BDD0-1E9C9B7799CC}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F000001-DB8E-F89C-2FEC-49BF726F8C12}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AABDFEE3-2B49-40CF-9491-A1618E7916E1}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4FDE-B055-AE7B0F4CF080}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2101}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
      Clave Supprimida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
      Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1
      Clave Supprimida : HKLM\Software\softonic.com4
      Clave Supprimida : HKLM\Software\YourFileDownloader
      Clave Supprimida : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
      Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
      Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{D3D233D5-9F6D-436C-B6C7-E63F77503B30}]
      Valor Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
      Valor Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{0974848A-B5BC-49F2-9778-307742B4A55D}]

      ***** [Navegadores] *****

      -\\ Internet Explorer v7.0.6002.18005

      Sustituido : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://toolbar.inbox.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=%tb_id&%language --> hxxp://www.google.com
      Sustituido : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - CustomizeSearch] = hxxp://toolbar.inbox.com/help/sa_customize.aspx?tbid=80293 --> hxxp://www.google.com
      Sustituido : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://toolbar.inbox.com/search/ie.aspx?tbid=80293&lng=es --> hxxp://www.google.com
      Sustituido : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - SearchAssistant] = hxxp://toolbar.inbox.com/search/ie.aspx?tbid=80293&lng=es --> hxxp://www.google.com
      Sustituido : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - CustomizeSearch] = hxxp://toolbar.inbox.com/help/sa_customize.aspx?tbid=80293 --> hxxp://www.google.com

      -\\ Mozilla Firefox v20.0.1 (es-ES)

      Fichero : C:\Users\Martha\AppData\Roaming\Mozilla\Firefox\Profiles\vhzeqn9i.default\prefs.js

      C:\Users\Martha\AppData\Roaming\Mozilla\Firefox\Profiles\vhzeqn9i.default\user.js ... Suprimido !

      Supprimida : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
      Supprimida : user_pref("extensions.BabylonToolbar_i.babExt", "");
      Supprimida : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=111015");
      Supprimida : user_pref("extensions.BabylonToolbar_i.hardId", "0c1f756800000000000000242b34dba1");
      Supprimida : user_pref("extensions.BabylonToolbar_i.id", "0c1f756800000000000000242b34dba1");
      Supprimida : user_pref("extensions.BabylonToolbar_i.instlDay", "15436");
      Supprimida : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
      Supprimida : user_pref("extensions.BabylonToolbar_i.newTab", false);
      Supprimida : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
      Supprimida : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
      Supprimida : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
      Supprimida : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
      Supprimida : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
      Supprimida : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
      Supprimida : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1715:36:02");
      Supprimida : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");

      -\\ Google Chrome v26.0.1410.64

      Fichero : C:\Users\Martha\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      *************************

      AdwCleaner[R1].txt - [17334 octets] - [18/04/2013 19:23:00]
      AdwCleaner[S1].txt - [14279 octets] - [19/04/2013 00:27:04]

      ########## EOF - C:\AdwCleaner[S1].txt - [14340 octets] ##########

      Reporte del Malwarebytes Anti Rootkits:

      Malwarebytes Anti-Rootkit BETA 1.05.0.1001
      Malwarebytes : Free anti-malware download

      Database version: v2013.04.19.02

      Windows Vista Service Pack 2 x86 NTFS (Safe Mode/Networking)
      Internet Explorer 7.0.6002.18005
      Martha :: IGNACIO1 [administrator]

      19/04/2013 12:58:36 a.m.
      mbar-log-2013-04-19 (00-58-36).txt

      Scan type: Quick scan
      Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
      Scan options disabled:
      Objects scanned: 26987
      Time elapsed: 9 minute(s), 40 second(s)

      Memory Processes Detected: 0
      (No malicious items detected)

      Memory Modules Detected: 0
      (No malicious items detected)

      Registry Keys Detected: 1
      HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kincjchfokkeneeofpeefomkikfkiedl (PUP.FCTPlugin) -> Delete on reboot.

      Registry Values Detected: 0
      (No malicious items detected)

      Registry Data Items Detected: 0
      (No malicious items detected)

      Folders Detected: 0
      (No malicious items detected)

      Files Detected: 2
      C:\Windows\system32\drivers\Maya44.sys (Unknown Rootkit Driver Infection) -> Delete on reboot.
      C:\Windows\system32\drivers\pgusbmm3.sys (Unknown Rootkit Driver Infection) -> Delete on reboot.

      (end)


      Ojalá puedas checarlos y decirme tu opinión. El equipo anda bien hasta que intento instalar un nuevo antivirus. Desinstalé el antiguo antivirus y traté de instalar el Eset Smart security 6 pero al momento de iniciarse la barra de progreso de instalación el ordenador se queda congelado, ya no hace nada, incluso no me deja entrar al administrador de tareas, intenté instalar otro antivirus... y nada, ocurre lo mismo; la única opción que tengo es reiniciar el ordenador :/

    4. #4
      Usuario Avatar de M4RTYN
      Registrado
      jun 2012
      Ubicación
      Ecuador
      Mensajes
      5.520

      Re: AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Hola!

      ok! estas bien infectado :(

      porque no has pasado ESET??

      lo que te puse es un scanner online y debes traerme su reporte!

      porfavor tambien avanzemos con esto:

      NOTA: lea muy bien a la hora de eliminar las amenzas:

      Descarga TDSSKiller ---->MANUAL

      • Desconecta tu ordenador de Internet (Desconecta el cable).

      • Descomprime el archivo tdsskiller.zip

      • Ejecuta el archivo TDSSKiller.exe Si usas Vista o 7 presiona clic derecho ejecutar como administrador.
      Presiona clic sobre

      Presiona clic sobre el botón


      • TDSSKiller comenzara a analizar el equipo.


      Si el equipo no está infectado:
      • Mostrara

      • No threats found.

      • Presiona clic sobre el botón "Close"
      Si el equipo está infectado:
      • Mostrara:

      • Threats detected.

      • Select action for found objects:


      • Malware object, high risk. La acción predeterminada es "Cure" o "Delete".

      • Suspicious object, medium risk. Usa siempre la opción "Skip"

      El programa selecciona de forma automática la acción a tomar.

      • Presiona clic sobre el botón "Continue"

      • Para desinfectar correctamente el Sistema, puede solicitarle reiniciar el equipo.

      • Presiona clic sobre el botón.



      • Abre el reporte de TDSSKiller, ubicado en C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt, donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora.
      • Copia y pega su contenido en tu próxima respuesta.
      Nos comentas.

    5. #5
      Omi
      Omi está offline
      Usuario Avatar de Omi
      Registrado
      abr 2013
      Ubicación
      México
      Mensajes
      7

      Re: AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Hola, he terminado los análisis el TDSSKiller y el ESET online. Dejo los reportes..

      Reporte ESET Nod32 Online:

      C:\torrent.exe Win32/BundleInstaller.A aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Program Files\ESET\MiNODLogin\MiNODLogin.jar una variante de Java/HackAV.B aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Program Files\ESET\MiNODLogin\MiNODLoginLib.dll Win32/RiskWare.HackAV.GI aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Qoobox\Quarantine\C\Program Files\Automated Content Enhancer\4.1.0.5240\ACEIEAddOn.dll.vir una variante de Win32/Adware.DoubleD.AQ aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Qoobox\Quarantine\C\Program Files\Content Management Wizard\1.1.0.1880\CMWIE.dll.vir una variante de Win32/Adware.DoubleD.AI aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Qoobox\Quarantine\C\Program Files\Customized Platform Advancer\4.1.0.1800\CPAIEAddOn.dll.vir una variante de Win32/Adware.DoubleD.AQ aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Users\IGNACIO\AppData\Local\temp\MyBabylonTB.exe una variante de Win32/Toolbar.Babylon aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Users\IGNACIO\AppData\Local\temp\GLFFDF9\files.exe múltiples amenazas eliminado - puesto en Cuarentena
      C:\Users\IGNACIO\AppData\Local\temp\GLFFDF9\Bin\Bandoo.exe una variante de Win32/Adware.Bandoo.AC aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Users\IGNACIO\AppData\Local\temp\GLFFDF9\Bin\BandooUI.exe una variante de Win32/Adware.Bandoo.AB aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Users\IGNACIO\AppData\Local\temp\GLFFDF9\Static\SetupDataMngr_Searchqu.exe una variante de Win32/Toolbar.SearchSuite aplicación no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena
      C:\Users\Martha\Downloads\mediaget.exe múltiples amenazas no se ha podido desinfectar - archivo eliminado - puesto en Cuarentena

      Reporte TDSSKiller:

      21:28:51.0659 5020 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
      21:28:51.0752 5020 ============================================================
      21:28:51.0752 5020 Current date / time: 2013/04/19 21:28:51.0752
      21:28:51.0752 5020 SystemInfo:
      21:28:51.0752 5020
      21:28:51.0752 5020 OS Version: 6.0.6002 ServicePack: 2.0
      21:28:51.0752 5020 Product type: Workstation
      21:28:51.0753 5020 ComputerName: IGNACIO1
      21:28:51.0753 5020 UserName: Martha
      21:28:51.0753 5020 Windows directory: C:\Windows
      21:28:51.0753 5020 System windows directory: C:\Windows
      21:28:51.0753 5020 Processor architecture: Intel x86
      21:28:51.0754 5020 Number of processors: 2
      21:28:51.0754 5020 Page size: 0x1000
      21:28:51.0754 5020 Boot type: Normal boot
      21:28:51.0754 5020 ============================================================
      21:28:52.0602 5020 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
      21:28:52.0605 5020 ============================================================
      21:28:52.0606 5020 \Device\Harddisk0\DR0:
      21:28:52.0606 5020 MBR partitions:
      21:28:52.0606 5020 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
      21:28:52.0606 5020 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x1AF65168
      21:28:52.0673 5020 ============================================================
      21:28:52.0764 5020 C: <-> \Device\Harddisk0\DR0\Partition2
      21:28:52.0813 5020 D: <-> \Device\Harddisk0\DR0\Partition1
      21:28:52.0840 5020 ============================================================
      21:28:52.0840 5020 Initialize success
      21:28:52.0840 5020 ============================================================
      21:29:16.0507 4576 ============================================================
      21:29:16.0507 4576 Scan started
      21:29:16.0507 4576 Mode: Manual; SigCheck; TDLFS;
      21:29:16.0507 4576 ============================================================
      21:29:16.0734 4576 ================ Scan system memory ========================
      21:29:16.0734 4576 System memory - ok
      21:29:16.0735 4576 ================ Scan services =============================
      21:29:16.0976 4576 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
      21:29:17.0217 4576 ACPI - ok
      21:29:17.0346 4576 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
      21:29:17.0371 4576 AdobeFlashPlayerUpdateSvc - ok
      21:29:17.0438 4576 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
      21:29:17.0488 4576 adp94xx - ok
      21:29:17.0520 4576 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
      21:29:17.0548 4576 adpahci - ok
      21:29:17.0581 4576 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
      21:29:17.0601 4576 adpu160m - ok
      21:29:17.0627 4576 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
      21:29:17.0649 4576 adpu320 - ok
      21:29:17.0707 4576 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
      21:29:17.0959 4576 AeLookupSvc - ok
      21:29:18.0012 4576 [ EF1142512BEC12F1C2C87735DA1755BE ] AESTFilters C:\Windows\system32\aestsrv.exe
      21:29:18.0075 4576 AESTFilters - ok
      21:29:18.0161 4576 [ A201207363AA900ABF1A388468688570 ] AFD C:\Windows\system32\drivers\afd.sys
      21:29:18.0216 4576 AFD - ok
      21:29:18.0279 4576 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
      21:29:18.0296 4576 agp440 - ok
      21:29:18.0331 4576 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
      21:29:18.0351 4576 aic78xx - ok
      21:29:18.0389 4576 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
      21:29:18.0581 4576 ALG - ok
      21:29:18.0608 4576 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
      21:29:18.0623 4576 aliide - ok
      21:29:18.0664 4576 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
      21:29:18.0681 4576 amdagp - ok
      21:29:18.0690 4576 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
      21:29:18.0707 4576 amdide - ok
      21:29:18.0726 4576 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
      21:29:18.0808 4576 AmdK7 - ok
      21:29:18.0829 4576 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
      21:29:18.0893 4576 AmdK8 - ok
      21:29:18.0940 4576 [ A80230BD04F0B8BF05185B369BB1CBB8 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
      21:29:19.0026 4576 ApfiltrService - ok
      21:29:19.0081 4576 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
      21:29:19.0134 4576 Appinfo - ok
      21:29:19.0217 4576 Apple Mobile Device - ok
      21:29:19.0272 4576 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
      21:29:19.0290 4576 arc - ok
      21:29:19.0340 4576 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
      21:29:19.0358 4576 arcsas - ok
      21:29:19.0393 4576 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
      21:29:19.0455 4576 AsyncMac - ok
      21:29:19.0496 4576 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
      21:29:19.0517 4576 atapi - ok
      21:29:19.0576 4576 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      21:29:19.0629 4576 AudioEndpointBuilder - ok
      21:29:19.0654 4576 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
      21:29:19.0694 4576 Audiosrv - ok
      21:29:19.0768 4576 [ 55070D71BBB424A56D5125C61FCC2897 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
      21:29:19.0784 4576 BCM42RLY - ok
      21:29:19.0862 4576 [ FA6707A346CD122407F3B0BAD1C47639 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
      21:29:19.0971 4576 BCM43XX - ok
      21:29:20.0031 4576 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
      21:29:20.0085 4576 Beep - ok
      21:29:20.0132 4576 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
      21:29:20.0227 4576 BFE - ok
      21:29:20.0300 4576 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
      21:29:20.0395 4576 BITS - ok
      21:29:20.0411 4576 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
      21:29:20.0459 4576 blbdrive - ok
      21:29:20.0542 4576 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
      21:29:20.0570 4576 Bonjour Service - ok
      21:29:20.0601 4576 [ 74B442B2BE1260B7588C136177CEAC66 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
      21:29:20.0648 4576 bowser - ok
      21:29:20.0673 4576 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
      21:29:20.0716 4576 BrFiltLo - ok
      21:29:20.0742 4576 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
      21:29:20.0790 4576 BrFiltUp - ok
      21:29:20.0832 4576 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
      21:29:20.0878 4576 Browser - ok
      21:29:20.0905 4576 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
      21:29:21.0127 4576 Brserid - ok
      21:29:21.0152 4576 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
      21:29:21.0256 4576 BrSerWdm - ok
      21:29:21.0298 4576 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
      21:29:21.0403 4576 BrUsbMdm - ok
      21:29:21.0417 4576 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
      21:29:21.0506 4576 BrUsbSer - ok
      21:29:21.0531 4576 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
      21:29:21.0640 4576 BTHMODEM - ok
      21:29:21.0680 4576 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
      21:29:21.0741 4576 cdfs - ok
      21:29:21.0789 4576 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
      21:29:21.0860 4576 cdrom - ok
      21:29:21.0907 4576 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
      21:29:21.0959 4576 CertPropSvc - ok
      21:29:21.0996 4576 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
      21:29:22.0111 4576 circlass - ok
      21:29:22.0152 4576 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
      21:29:22.0181 4576 CLFS - ok
      21:29:22.0294 4576 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      21:29:22.0312 4576 clr_optimization_v2.0.50727_32 - ok
      21:29:22.0435 4576 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
      21:29:22.0497 4576 CmBatt - ok
      21:29:22.0539 4576 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
      21:29:22.0559 4576 cmdide - ok
      21:29:22.0611 4576 [ 631155CE46B7DA2AAC47EEDF7EE42EBE ] cmusbser C:\Windows\system32\DRIVERS\cmusbser.sys
      21:29:22.0658 4576 cmusbser - ok
      21:29:22.0703 4576 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
      21:29:22.0719 4576 Compbatt - ok
      21:29:22.0727 4576 COMSysApp - ok
      21:29:22.0738 4576 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
      21:29:22.0755 4576 crcdisk - ok
      21:29:22.0790 4576 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
      21:29:22.0835 4576 Crusoe - ok
      21:29:22.0897 4576 [ FB27772BEAF8E1D28CCD825C09DA939B ] CryptSvc C:\Windows\system32\cryptsvc.dll
      21:29:22.0935 4576 CryptSvc - ok
      21:29:22.0987 4576 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
      21:29:23.0063 4576 DcomLaunch - ok
      21:29:23.0099 4576 [ 218D8AE46C88E82014F5D73D0236D9B2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
      21:29:23.0150 4576 DfsC - ok
      21:29:23.0227 4576 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
      21:29:23.0403 4576 DFSR - ok
      21:29:23.0438 4576 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
      21:29:23.0509 4576 Dhcp - ok
      21:29:23.0559 4576 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
      21:29:23.0580 4576 disk - ok
      21:29:23.0619 4576 [ 30A08728740E71947AE1E073B5CE69B4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
      21:29:23.0674 4576 Dnscache - ok
      21:29:23.0778 4576 [ DB29915209770D8B59654345EC2D943A ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
      21:29:23.0800 4576 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
      21:29:23.0800 4576 DockLoginService - detected UnsignedFile.Multi.Generic (1)
      21:29:23.0834 4576 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
      21:29:23.0886 4576 dot3svc - ok
      21:29:23.0968 4576 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
      21:29:24.0032 4576 Dot4 - ok
      21:29:24.0069 4576 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
      21:29:24.0114 4576 Dot4Print - ok
      21:29:24.0146 4576 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
      21:29:24.0201 4576 dot4usb - ok
      21:29:24.0243 4576 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
      21:29:24.0292 4576 DPS - ok
      21:29:24.0334 4576 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
      21:29:24.0376 4576 drmkaud - ok
      21:29:24.0429 4576 [ FB85F7F69E9B109820409243F578CC4D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
      21:29:24.0495 4576 DXGKrnl - ok
      21:29:24.0534 4576 [ 908ED85B7806E8AF3AF5E9B74F7809D4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
      21:29:24.0620 4576 e1express - ok
      21:29:24.0660 4576 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
      21:29:24.0717 4576 E1G60 - ok
      21:29:24.0774 4576 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
      21:29:24.0828 4576 EapHost - ok
      21:29:24.0881 4576 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
      21:29:24.0905 4576 Ecache - ok
      21:29:24.0946 4576 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
      21:29:24.0977 4576 elxstor - ok
      21:29:25.0024 4576 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
      21:29:25.0119 4576 EMDMgmt - ok
      21:29:25.0142 4576 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
      21:29:25.0176 4576 ErrDev - ok
      21:29:25.0230 4576 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
      21:29:25.0283 4576 EventSystem - ok
      21:29:25.0330 4576 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
      21:29:25.0388 4576 exfat - ok
      21:29:25.0429 4576 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
      21:29:25.0485 4576 fastfat - ok
      21:29:25.0535 4576 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
      21:29:25.0593 4576 fdc - ok
      21:29:25.0628 4576 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
      21:29:25.0684 4576 fdPHost - ok
      21:29:25.0707 4576 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
      21:29:25.0790 4576 FDResPub - ok
      21:29:25.0811 4576 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
      21:29:25.0829 4576 FileInfo - ok
      21:29:25.0851 4576 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
      21:29:25.0909 4576 Filetrace - ok
      21:29:25.0938 4576 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
      21:29:25.0984 4576 flpydisk - ok
      21:29:26.0025 4576 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
      21:29:26.0047 4576 FltMgr - ok
      21:29:26.0107 4576 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
      21:29:26.0124 4576 FontCache3.0.0.0 - ok
      21:29:26.0156 4576 [ 491E9D9A26A745F6AE7D570849F4BD87 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
      21:29:26.0171 4576 fssfltr - ok
      21:29:26.0234 4576 [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
      21:29:26.0296 4576 fsssvc - ok
      21:29:26.0316 4576 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
      21:29:26.0368 4576 Fs_Rec - ok
      21:29:26.0399 4576 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
      21:29:26.0417 4576 gagp30kx - ok
      21:29:26.0461 4576 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
      21:29:26.0473 4576 GEARAspiWDM - ok
      21:29:26.0533 4576 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
      21:29:26.0544 4576 GoToAssist - ok
      21:29:26.0629 4576 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
      21:29:26.0726 4576 gpsvc - ok
      21:29:26.0766 4576 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      21:29:26.0869 4576 HdAudAddService - ok
      21:29:26.0927 4576 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
      21:29:26.0975 4576 HDAudBus - ok
      21:29:27.0004 4576 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
      21:29:27.0086 4576 HidBth - ok
      21:29:27.0113 4576 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
      21:29:27.0211 4576 HidIr - ok
      21:29:27.0243 4576 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
      21:29:27.0305 4576 hidserv - ok
      21:29:27.0346 4576 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
      21:29:27.0387 4576 HidUsb - ok
      21:29:27.0415 4576 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
      21:29:27.0463 4576 hkmsvc - ok
      21:29:27.0488 4576 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
      21:29:27.0509 4576 HpCISSs - ok
      21:29:27.0611 4576 [ A04F4AC48895774A2CF9D1C9EAAACEF0 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
      21:29:27.0710 4576 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
      21:29:27.0710 4576 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
      21:29:27.0778 4576 [ 99F85640054BA65190B860D878A7C9AE ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
      21:29:27.0887 4576 HSF_DPV - ok
      21:29:27.0940 4576 [ CFBC2B81972E298F0E19EE68FA9E73DA ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
      21:29:27.0976 4576 HSXHWAZL - ok
      21:29:28.0024 4576 [ ABBC72793F1C588B1A7DB0CAC69A4FE8 ] HTTP C:\Windows\system32\drivers\HTTP.sys
      21:29:28.0085 4576 HTTP - ok
      21:29:28.0125 4576 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
      21:29:28.0141 4576 i2omp - ok
      21:29:28.0185 4576 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
      21:29:28.0231 4576 i8042prt - ok
      21:29:28.0310 4576 [ AE38A12F79A4980DDB88F36514F8A1DA ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
      21:29:28.0343 4576 IAANTMON - ok
      21:29:28.0377 4576 [ 997E8F5939F2D12CD9F2E6B395724C16 ] iaStor C:\Windows\system32\drivers\iastor.sys
      21:29:28.0401 4576 iaStor - ok
      21:29:28.0431 4576 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
      21:29:28.0456 4576 iaStorV - ok
      21:29:28.0544 4576 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      21:29:28.0631 4576 idsvc - ok
      21:29:28.0748 4576 [ C134E69CE901422D1F2D7EA8D69098FE ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
      21:29:28.0933 4576 igfx - ok
      21:29:28.0965 4576 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
      21:29:28.0982 4576 iirsp - ok
      21:29:29.0030 4576 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
      21:29:29.0130 4576 IKEEXT - ok
      21:29:29.0163 4576 [ 98D303CCB3415E9202E82043B37D66DC ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
      21:29:29.0205 4576 IntcHdmiAddService - ok
      21:29:29.0250 4576 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
      21:29:29.0265 4576 intelide - ok
      21:29:29.0283 4576 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
      21:29:29.0330 4576 intelppm - ok
      21:29:29.0370 4576 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
      21:29:29.0418 4576 IPBusEnum - ok
      21:29:29.0449 4576 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
      21:29:29.0501 4576 IpFilterDriver - ok
      21:29:29.0541 4576 [ 7F83B06A929A981BC001B2EA304D2036 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
      21:29:29.0585 4576 iphlpsvc - ok
      21:29:29.0612 4576 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
      21:29:29.0684 4576 IPMIDRV - ok
      21:29:29.0713 4576 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
      21:29:29.0760 4576 IPNAT - ok
      21:29:29.0816 4576 [ 49918803B661367023BF325CF602AFDC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
      21:29:29.0888 4576 iPod Service - ok
      21:29:29.0912 4576 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
      21:29:29.0957 4576 IRENUM - ok
      21:29:29.0980 4576 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
      21:29:29.0997 4576 isapnp - ok
      21:29:30.0043 4576 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
      21:29:30.0066 4576 iScsiPrt - ok
      21:29:30.0102 4576 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
      21:29:30.0118 4576 iteatapi - ok
      21:29:30.0160 4576 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
      21:29:30.0176 4576 iteraid - ok
      21:29:30.0208 4576 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
      21:29:30.0224 4576 kbdclass - ok
      21:29:30.0259 4576 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
      21:29:30.0311 4576 kbdhid - ok
      21:29:30.0672 4576 [ DCF733788C7D088D814E5F80EB4B3E0F ] KeyIso C:\Windows\system32\lsass.exe
      21:29:30.0738 4576 KeyIso - ok
      21:29:30.0776 4576 [ EA7F1D605518486269F45BD80FA00907 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
      21:29:30.0825 4576 KSecDD - ok
      21:29:30.0884 4576 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
      21:29:30.0939 4576 KtmRm - ok
      21:29:30.0981 4576 [ 43446F197C74EF2030F84B3A4F39D570 ] LanmanServer C:\Windows\System32\srvsvc.dll
      21:29:31.0021 4576 LanmanServer - ok
      21:29:31.0082 4576 [ DEC1A338B86C5D582C25C40836DD76C3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      21:29:31.0150 4576 LanmanWorkstation - ok
      21:29:31.0183 4576 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
      21:29:31.0245 4576 lltdio - ok
      21:29:31.0283 4576 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
      21:29:31.0334 4576 lltdsvc - ok
      21:29:31.0347 4576 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
      21:29:31.0441 4576 lmhosts - ok
      21:29:31.0485 4576 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
      21:29:31.0505 4576 LSI_FC - ok
      21:29:31.0526 4576 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
      21:29:31.0546 4576 LSI_SAS - ok
      21:29:31.0585 4576 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
      21:29:31.0618 4576 LSI_SCSI - ok
      21:29:31.0639 4576 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
      21:29:31.0709 4576 luafv - ok
      21:29:31.0782 4576 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
      21:29:31.0806 4576 MBAMProtector - ok
      21:29:31.0900 4576 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
      21:29:31.0926 4576 MBAMScheduler - ok
      21:29:31.0974 4576 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
      21:29:32.0009 4576 MBAMService - ok
      21:29:32.0062 4576 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
      21:29:32.0079 4576 mdmxsdk - ok
      21:29:32.0115 4576 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
      21:29:32.0131 4576 megasas - ok
      21:29:32.0163 4576 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
      21:29:32.0196 4576 MegaSR - ok
      21:29:32.0226 4576 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
      21:29:32.0285 4576 MMCSS - ok
      21:29:32.0310 4576 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
      21:29:32.0356 4576 Modem - ok
      21:29:32.0384 4576 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
      21:29:32.0438 4576 monitor - ok
      21:29:32.0455 4576 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
      21:29:32.0472 4576 mouclass - ok
      21:29:32.0491 4576 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
      21:29:32.0537 4576 mouhid - ok
      21:29:32.0565 4576 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
      21:29:32.0582 4576 MountMgr - ok
      21:29:32.0662 4576 [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
      21:29:32.0680 4576 MozillaMaintenance - ok
      21:29:32.0714 4576 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
      21:29:32.0733 4576 mpio - ok
      21:29:32.0758 4576 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
      21:29:32.0794 4576 mpsdrv - ok
      21:29:32.0839 4576 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
      21:29:32.0910 4576 MpsSvc - ok
      21:29:32.0952 4576 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
      21:29:32.0968 4576 Mraid35x - ok
      21:29:33.0016 4576 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
      21:29:33.0138 4576 MRxDAV - ok
      21:29:33.0156 4576 [ 317EB668973951BAD512EE8BEBF9ED25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
      21:29:33.0193 4576 mrxsmb - ok
      21:29:33.0210 4576 [ 05716F0203B5C774A87384A1FF7B968F ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
      21:29:33.0268 4576 mrxsmb10 - ok
      21:29:33.0291 4576 [ C70C50D101B92B45C42BA11EA9FE6CD1 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
      21:29:33.0327 4576 mrxsmb20 - ok
      21:29:33.0372 4576 [ F70590424EEFBF5C27A40C67AFDB8383 ] msahci C:\Windows\system32\drivers\msahci.sys
      21:29:33.0388 4576 msahci - ok
      21:29:33.0406 4576 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
      21:29:33.0425 4576 msdsm - ok
      21:29:33.0445 4576 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
      21:29:33.0507 4576 MSDTC - ok
      21:29:33.0538 4576 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
      21:29:33.0597 4576 Msfs - ok
      21:29:33.0633 4576 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
      21:29:33.0648 4576 msisadrv - ok
      21:29:33.0683 4576 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
      21:29:33.0740 4576 MSiSCSI - ok
      21:29:33.0748 4576 msiserver - ok
      21:29:33.0786 4576 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
      21:29:33.0832 4576 MSKSSRV - ok
      21:29:33.0873 4576 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
      21:29:33.0922 4576 MSPCLOCK - ok
      21:29:33.0965 4576 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
      21:29:34.0025 4576 MSPQM - ok
      21:29:34.0059 4576 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
      21:29:34.0083 4576 MsRPC - ok
      21:29:34.0107 4576 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
      21:29:34.0125 4576 mssmbios - ok
      21:29:34.0146 4576 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
      21:29:34.0199 4576 MSTEE - ok
      21:29:34.0230 4576 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
      21:29:34.0249 4576 Mup - ok
      21:29:34.0291 4576 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
      21:29:34.0350 4576 napagent - ok
      21:29:34.0391 4576 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
      21:29:34.0430 4576 NativeWifiP - ok
      21:29:34.0462 4576 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
      21:29:34.0514 4576 NDIS - ok
      21:29:34.0557 4576 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
      21:29:34.0592 4576 NdisTapi - ok
      21:29:34.0616 4576 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
      21:29:34.0681 4576 Ndisuio - ok
      21:29:34.0708 4576 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
      21:29:34.0756 4576 NdisWan - ok
      21:29:34.0786 4576 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
      21:29:34.0833 4576 NDProxy - ok
      21:29:34.0891 4576 [ 69C503C004F49AEE8B8E3067CC047BA7 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
      21:29:34.0914 4576 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      21:29:34.0914 4576 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      21:29:34.0938 4576 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
      21:29:34.0984 4576 NetBIOS - ok
      21:29:35.0026 4576 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
      21:29:35.0066 4576 netbt - ok
      21:29:35.0086 4576 [ DCF733788C7D088D814E5F80EB4B3E0F ] Netlogon C:\Windows\system32\lsass.exe
      21:29:35.0121 4576 Netlogon - ok
      21:29:35.0170 4576 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
      21:29:35.0232 4576 Netman - ok
      21:29:35.0265 4576 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
      21:29:35.0320 4576 netprofm - ok
      21:29:35.0352 4576 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
      21:29:35.0370 4576 NetTcpPortSharing - ok
      21:29:35.0402 4576 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
      21:29:35.0418 4576 nfrd960 - ok
      21:29:35.0444 4576 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
      21:29:35.0505 4576 NlaSvc - ok
      21:29:35.0528 4576 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
      21:29:35.0563 4576 Npfs - ok
      21:29:35.0605 4576 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
      21:29:35.0665 4576 nsi - ok
      21:29:35.0689 4576 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
      21:29:35.0744 4576 nsiproxy - ok
      21:29:35.0807 4576 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
      21:29:35.0886 4576 Ntfs - ok
      21:29:35.0920 4576 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
      21:29:36.0014 4576 ntrigdigi - ok
      21:29:36.0041 4576 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
      21:29:36.0103 4576 Null - ok
      21:29:36.0125 4576 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
      21:29:36.0149 4576 nvraid - ok
      21:29:36.0175 4576 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
      21:29:36.0192 4576 nvstor - ok
      21:29:36.0216 4576 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
      21:29:36.0235 4576 nv_agp - ok
      21:29:36.0338 4576 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      21:29:36.0381 4576 odserv - ok
      21:29:36.0425 4576 [ 19CAC780B858822055F46C58A111723C ] OEM02Dev C:\Windows\system32\DRIVERS\OEM02Dev.sys
      21:29:36.0474 4576 OEM02Dev - ok
      21:29:36.0506 4576 [ 86326062A90494BDD79CE383511D7D69 ] OEM02Vfx C:\Windows\system32\DRIVERS\OEM02Vfx.sys
      21:29:36.0523 4576 OEM02Vfx - ok
      21:29:36.0574 4576 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
      21:29:36.0622 4576 ohci1394 - ok
      21:29:36.0665 4576 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      21:29:36.0682 4576 ose - ok
      21:29:36.0752 4576 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
      21:29:36.0841 4576 p2pimsvc - ok
      21:29:36.0860 4576 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
      21:29:36.0903 4576 p2psvc - ok
      21:29:36.0934 4576 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
      21:29:37.0030 4576 Parport - ok
      21:29:37.0054 4576 [ 57389FA59A36D96B3EB09D0CB91E9CDC ] partmgr C:\Windows\system32\drivers\partmgr.sys
      21:29:37.0074 4576 partmgr - ok
      21:29:37.0097 4576 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
      21:29:37.0179 4576 Parvdm - ok
      21:29:37.0210 4576 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
      21:29:37.0267 4576 PcaSvc - ok
      21:29:37.0315 4576 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
      21:29:37.0339 4576 pci - ok
      21:29:37.0357 4576 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
      21:29:37.0375 4576 pciide - ok
      21:29:37.0407 4576 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
      21:29:37.0428 4576 pcmcia - ok
      21:29:37.0475 4576 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
      21:29:37.0631 4576 PEAUTH - ok
      21:29:37.0728 4576 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
      21:29:37.0936 4576 pla - ok
      21:29:37.0989 4576 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
      21:29:38.0042 4576 PlugPlay - ok
      21:29:38.0088 4576 [ 12B4549D515CB26BB8D375038017CA65 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
      21:29:38.0109 4576 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
      21:29:38.0109 4576 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
      21:29:38.0153 4576 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
      21:29:38.0195 4576 PNRPAutoReg - ok
      21:29:38.0231 4576 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
      21:29:38.0272 4576 PNRPsvc - ok
      21:29:38.0333 4576 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
      21:29:38.0394 4576 PolicyAgent - ok
      21:29:38.0445 4576 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
      21:29:38.0491 4576 PptpMiniport - ok
      21:29:38.0529 4576 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
      21:29:38.0574 4576 Processor - ok
      21:29:38.0605 4576 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
      21:29:38.0658 4576 ProfSvc - ok
      21:29:38.0676 4576 [ DCF733788C7D088D814E5F80EB4B3E0F ] ProtectedStorage C:\Windows\system32\lsass.exe
      21:29:38.0711 4576 ProtectedStorage - ok
      21:29:38.0745 4576 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
      21:29:38.0796 4576 PSched - ok
      21:29:38.0839 4576 [ 03E0FE281823BA64B3782F5B38950E73 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
      21:29:38.0857 4576 PxHelp20 - ok
      21:29:38.0980 4576 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
      21:29:39.0104 4576 ql2300 - ok
      21:29:39.0122 4576 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
      21:29:39.0141 4576 ql40xx - ok
      21:29:39.0188 4576 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
      21:29:39.0233 4576 QWAVE - ok
      21:29:39.0254 4576 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
      21:29:39.0277 4576 QWAVEdrv - ok
      21:29:39.0370 4576 [ E642B131FB74CAF4BB8A014F31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
      21:29:39.0556 4576 R300 - ok
      21:29:39.0576 4576 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
      21:29:39.0633 4576 RasAcd - ok
      21:29:39.0657 4576 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
      21:29:39.0721 4576 RasAuto - ok
      21:29:39.0754 4576 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
      21:29:39.0801 4576 Rasl2tp - ok
      21:29:39.0840 4576 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
      21:29:39.0884 4576 RasMan - ok
      21:29:39.0920 4576 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
      21:29:39.0964 4576 RasPppoe - ok
      21:29:39.0991 4576 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
      21:29:40.0015 4576 RasSstp - ok
      21:29:40.0050 4576 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
      21:29:40.0102 4576 rdbss - ok
      21:29:40.0133 4576 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
      21:29:40.0179 4576 RDPCDD - ok
      21:29:40.0209 4576 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
      21:29:40.0261 4576 rdpdr - ok
      21:29:40.0270 4576 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
      21:29:40.0329 4576 RDPENCDD - ok
      21:29:40.0364 4576 [ 30BFBDFB7F95559EDE971F9DDB9A00BA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
      21:29:40.0411 4576 RDPWD - ok
      21:29:40.0469 4576 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
      21:29:40.0519 4576 RemoteAccess - ok
      21:29:40.0550 4576 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
      21:29:40.0612 4576 RemoteRegistry - ok
      21:29:40.0649 4576 [ 355AAC141B214BEF1DBC1483AFD9BD50 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
      21:29:40.0684 4576 rimmptsk - ok
      21:29:40.0709 4576 [ A4216C71DD4F60B26418CCFD99CD0815 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
      21:29:40.0735 4576 rimsptsk - ok
      21:29:40.0755 4576 [ D231B577024AA324AF13A42F3A807D10 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
      21:29:40.0790 4576 rismxdp - ok
      21:29:40.0830 4576 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
      21:29:40.0880 4576 RpcLocator - ok
      21:29:40.0919 4576 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
      21:29:40.0969 4576 RpcSs - ok
      21:29:40.0999 4576 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
      21:29:41.0061 4576 rspndr - ok
      21:29:41.0073 4576 [ DCF733788C7D088D814E5F80EB4B3E0F ] SamSs C:\Windows\system32\lsass.exe
      21:29:41.0108 4576 SamSs - ok
      21:29:41.0127 4576 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
      21:29:41.0144 4576 sbp2port - ok
      21:29:41.0192 4576 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
      21:29:41.0232 4576 SCardSvr - ok
      21:29:41.0287 4576 [ 323AE0BDFD2EB15B668DDA50CC597329 ] Schedule C:\Windows\system32\schedsvc.dll
      21:29:41.0367 4576 Schedule - ok
      21:29:41.0384 4576 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
      21:29:41.0419 4576 SCPolicySvc - ok
      21:29:41.0472 4576 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
      21:29:41.0511 4576 sdbus - ok
      21:29:41.0548 4576 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
      21:29:41.0608 4576 SDRSVC - ok
      21:29:41.0694 4576 [ D358E077A0A05D9B12DA22D137EE8464 ] SeaPort C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
      21:29:41.0714 4576 SeaPort - ok
      21:29:41.0742 4576 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
      21:29:41.0832 4576 secdrv - ok
      21:29:41.0854 4576 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
      21:29:41.0911 4576 seclogon - ok
      21:29:41.0932 4576 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
      21:29:41.0994 4576 SENS - ok
      21:29:42.0028 4576 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
      21:29:42.0109 4576 Serenum - ok
      21:29:42.0135 4576 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
      21:29:42.0239 4576 Serial - ok
      21:29:42.0248 4576 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
      21:29:42.0294 4576 sermouse - ok
      21:29:42.0392 4576 [ 95D93AD5E51BAC34B9164631275B99AC ] ServiceLayer C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
      21:29:42.0414 4576 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
      21:29:42.0415 4576 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
      21:29:42.0464 4576 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
      21:29:42.0536 4576 SessionEnv - ok
      21:29:42.0581 4576 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
      21:29:42.0633 4576 sffdisk - ok
      21:29:42.0658 4576 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
      21:29:42.0712 4576 sffp_mmc - ok
      21:29:42.0759 4576 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
      21:29:42.0794 4576 sffp_sd - ok
      21:29:42.0815 4576 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
      21:29:42.0899 4576 sfloppy - ok
      21:29:42.0953 4576 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
      21:29:43.0020 4576 SharedAccess - ok
      21:29:43.0058 4576 [ C818C44C201898399BF999BB6B35D4E3 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      21:29:43.0121 4576 ShellHWDetection - ok
      21:29:43.0166 4576 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
      21:29:43.0185 4576 sisagp - ok
      21:29:43.0207 4576 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
      21:29:43.0224 4576 SiSRaid2 - ok
      21:29:43.0248 4576 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
      21:29:43.0267 4576 SiSRaid4 - ok
      21:29:43.0388 4576 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
      21:29:43.0680 4576 slsvc - ok
      21:29:43.0704 4576 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
      21:29:43.0743 4576 SLUINotify - ok
      21:29:43.0764 4576 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
      21:29:43.0813 4576 Smb - ok
      21:29:43.0888 4576 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
      21:29:43.0910 4576 SNMPTRAP - ok
      21:29:43.0966 4576 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
      21:29:43.0982 4576 spldr - ok
      21:29:44.0036 4576 [ 524BFBEA40E6E404737CCBC754647A2E ] Spooler C:\Windows\System32\spoolsv.exe
      21:29:44.0077 4576 Spooler - ok
      21:29:44.0169 4576 [ 777115C9CC675BD98127660712D2F784 ] sprtsvc_DellSupportCenter C:\Program Files\Dell Support Center\bin\sprtsvc.exe
      21:29:44.0189 4576 sprtsvc_DellSupportCenter - ok
      21:29:44.0218 4576 [ BAA6018A27857B5FF0C03CE756B4A7A2 ] srv C:\Windows\system32\DRIVERS\srv.sys
      21:29:44.0264 4576 srv - ok
      21:29:44.0300 4576 [ D69B44E3B000C2FF583F10C65489B4FB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
      21:29:44.0348 4576 srv2 - ok
      21:29:44.0379 4576 [ 2D10DE9022822772ADAA120B15A9BD03 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
      21:29:44.0416 4576 srvnet - ok
      21:29:44.0457 4576 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
      21:29:44.0522 4576 SSDPSRV - ok
      21:29:44.0586 4576 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
      21:29:44.0625 4576 SstpSvc - ok
      21:29:44.0676 4576 [ 7E6DD4B34ACD36AF6C711D2BDE91B040 ] STacSV C:\Windows\system32\STacSV.exe
      21:29:44.0700 4576 STacSV - ok
      21:29:44.0753 4576 [ 6A2A5E809C2C0178326D92B19EE4AAD3 ] STHDA C:\Windows\system32\drivers\stwrt.sys
      21:29:44.0783 4576 STHDA - ok
      21:29:44.0833 4576 [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
      21:29:44.0867 4576 StillCam - ok
      21:29:44.0910 4576 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
      21:29:44.0964 4576 stisvc - ok
      21:29:45.0035 4576 [ 1D0063597C3666404FCF97698ABEB019 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
      21:29:45.0048 4576 stllssvr - ok
      21:29:45.0067 4576 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
      21:29:45.0083 4576 swenum - ok
      21:29:45.0221 4576 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      21:29:45.0289 4576 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
      21:29:45.0289 4576 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
      21:29:45.0359 4576 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
      21:29:45.0438 4576 swprv - ok
      21:29:45.0471 4576 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
      21:29:45.0488 4576 Symc8xx - ok
      21:29:45.0516 4576 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
      21:29:45.0533 4576 Sym_hi - ok
      21:29:45.0565 4576 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
      21:29:45.0581 4576 Sym_u3 - ok
      21:29:45.0634 4576 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
      21:29:45.0685 4576 SysMain - ok
      21:29:45.0724 4576 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
      21:29:45.0753 4576 TabletInputService - ok
      21:29:45.0792 4576 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
      21:29:45.0852 4576 TapiSrv - ok
      21:29:45.0876 4576 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
      21:29:45.0925 4576 TBS - ok
      21:29:46.0006 4576 [ 0E6B0885C3D5E4643ED2D043DE3433D8 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
      21:29:46.0106 4576 Tcpip - ok
      21:29:46.0144 4576 [ 0E6B0885C3D5E4643ED2D043DE3433D8 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
      21:29:46.0211 4576 Tcpip6 - ok
      21:29:46.0245 4576 [ B085A1C98F96BA7882A27B001BECF5AC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
      21:29:46.0302 4576 tcpipreg - ok
      21:29:46.0345 4576 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
      21:29:46.0409 4576 TDPIPE - ok
      21:29:46.0430 4576 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
      21:29:46.0505 4576 TDTCP - ok
      21:29:46.0598 4576 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
      21:29:46.0685 4576 tdx - ok
      21:29:46.0740 4576 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
      21:29:46.0761 4576 TermDD - ok
      21:29:46.0788 4576 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
      21:29:46.0862 4576 TermService - ok
      21:29:46.0893 4576 [ C818C44C201898399BF999BB6B35D4E3 ] Themes C:\Windows\system32\shsvcs.dll
      21:29:46.0935 4576 Themes - ok
      21:29:46.0988 4576 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
      21:29:47.0035 4576 THREADORDER - ok
      21:29:47.0135 4576 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
      21:29:47.0196 4576 TrkWks - ok
      21:29:47.0262 4576 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      21:29:47.0333 4576 TrustedInstaller - ok
      21:29:47.0417 4576 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
      21:29:47.0483 4576 tssecsrv - ok
      21:29:47.0511 4576 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
      21:29:47.0561 4576 tunmp - ok
      21:29:47.0607 4576 [ 119B8184E106BAEDC83FCE5DDF3950DA ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
      21:29:47.0644 4576 tunnel - ok
      21:29:47.0691 4576 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
      21:29:47.0709 4576 uagp35 - ok
      21:29:47.0740 4576 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
      21:29:47.0782 4576 udfs - ok
      21:29:47.0825 4576 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
      21:29:47.0875 4576 UI0Detect - ok
      21:29:47.0938 4576 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
      21:29:47.0956 4576 uliagpkx - ok
      21:29:48.0003 4576 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
      21:29:48.0028 4576 uliahci - ok
      21:29:48.0056 4576 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
      21:29:48.0075 4576 UlSata - ok
      21:29:48.0116 4576 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
      21:29:48.0136 4576 ulsata2 - ok
      21:29:48.0179 4576 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
      21:29:48.0242 4576 umbus - ok
      21:29:48.0284 4576 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
      21:29:48.0339 4576 upnphost - ok
      21:29:48.0393 4576 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
      21:29:48.0402 4576 USBAAPL ( UnsignedFile.Multi.Generic ) - warning
      21:29:48.0402 4576 USBAAPL - detected UnsignedFile.Multi.Generic (1)
      21:29:48.0468 4576 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
      21:29:48.0521 4576 usbaudio - ok
      21:29:48.0589 4576 usbbus - ok
      21:29:48.0644 4576 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
      21:29:48.0682 4576 usbccgp - ok
      21:29:48.0725 4576 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
      21:29:48.0843 4576 usbcir - ok
      21:29:48.0854 4576 UsbDiag - ok
      21:29:48.0925 4576 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
      21:29:48.0992 4576 usbehci - ok
      21:29:49.0254 4576 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
      21:29:49.0295 4576 usbhub - ok
      21:29:49.0314 4576 USBModem - ok
      21:29:49.0356 4576 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
      21:29:49.0439 4576 usbohci - ok
      21:29:49.0474 4576 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
      21:29:49.0523 4576 usbprint - ok
      21:29:49.0557 4576 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
      21:29:49.0593 4576 usbscan - ok
      21:29:49.0641 4576 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
      21:29:49.0677 4576 USBSTOR - ok
      21:29:49.0728 4576 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
      21:29:49.0766 4576 usbuhci - ok
      21:29:49.0798 4576 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
      21:29:49.0836 4576 UxSms - ok
      21:29:49.0894 4576 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
      21:29:49.0991 4576 vds - ok
      21:29:50.0037 4576 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
      21:29:50.0083 4576 vga - ok
      21:29:50.0119 4576 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
      21:29:50.0165 4576 VgaSave - ok
      21:29:50.0196 4576 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
      21:29:50.0213 4576 viaagp - ok
      21:29:50.0246 4576 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
      21:29:50.0293 4576 ViaC7 - ok
      21:29:50.0312 4576 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
      21:29:50.0330 4576 viaide - ok
      21:29:50.0361 4576 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
      21:29:50.0378 4576 volmgr - ok
      21:29:50.0415 4576 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
      21:29:50.0446 4576 volmgrx - ok
      21:29:50.0472 4576 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
      21:29:50.0500 4576 volsnap - ok
      21:29:50.0544 4576 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
      21:29:50.0565 4576 vsmraid - ok
      21:29:50.0662 4576 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
      21:29:50.0769 4576 VSS - ok
      21:29:50.0799 4576 [ C466021D31FF6C0A6069D12299D80C0B ] VSTHWBS2 C:\Windows\system32\DRIVERS\VSTBS23.SYS
      21:29:50.0864 4576 VSTHWBS2 - ok
      21:29:50.0911 4576 [ EC36F1D542ED4252390D446BF6D4DFD0 ] VST_DPV C:\Windows\system32\DRIVERS\VSTDPV3.SYS
      21:29:51.0005 4576 VST_DPV - ok
      21:29:51.0043 4576 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
      21:29:51.0103 4576 W32Time - ok
      21:29:51.0133 4576 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
      21:29:51.0237 4576 WacomPen - ok
      21:29:51.0258 4576 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
      21:29:51.0313 4576 Wanarp - ok
      21:29:51.0319 4576 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
      21:29:51.0356 4576 Wanarpv6 - ok
      21:29:51.0409 4576 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
      21:29:51.0488 4576 wcncsvc - ok
      21:29:51.0530 4576 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      21:29:51.0585 4576 WcsPlugInService - ok
      21:29:51.0609 4576 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
      21:29:51.0630 4576 Wd - ok
      21:29:51.0671 4576 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
      21:29:51.0719 4576 Wdf01000 - ok
      21:29:51.0746 4576 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
      21:29:51.0797 4576 WdiServiceHost - ok
      21:29:51.0804 4576 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
      21:29:51.0852 4576 WdiSystemHost - ok
      21:29:51.0886 4576 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
      21:29:51.0928 4576 WebClient - ok
      21:29:51.0958 4576 [ 905214925A88311FCE52F66153DE7610 ] Wecsvc C:\Windows\system32\wecsvc.dll
      21:29:52.0024 4576 Wecsvc - ok
      21:29:52.0049 4576 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
      21:29:52.0107 4576 wercplsupport - ok
      21:29:52.0142 4576 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
      21:29:52.0183 4576 WerSvc - ok
      21:29:52.0215 4576 [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
      21:29:52.0264 4576 winachsf - ok
      21:29:52.0280 4576 WinHttpAutoProxySvc - ok
      21:29:52.0361 4576 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
      21:29:52.0400 4576 Winmgmt - ok
      21:29:52.0468 4576 [ 01874D4689C212460FBABF0ECD7CB7F7 ] WinRM C:\Windows\system32\WsmSvc.dll
      21:29:52.0587 4576 WinRM - ok
      21:29:52.0636 4576 [ 766FDCF7E9AED0D0BEF8A36C27D0EF91 ] Wlansvc C:\Windows\System32\wlansvc.dll
      21:29:52.0687 4576 Wlansvc - ok
      21:29:52.0695 4576 wltrysvc - ok
      21:29:52.0735 4576 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
      21:29:52.0754 4576 WmiAcpi - ok
      21:29:52.0798 4576 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
      21:29:52.0836 4576 wmiApSrv - ok
      21:29:52.0955 4576 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
      21:29:53.0054 4576 WMPNetworkSvc - ok
      21:29:53.0089 4576 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
      21:29:53.0131 4576 WPCSvc - ok
      21:29:53.0164 4576 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
      21:29:53.0211 4576 WPDBusEnum - ok
      21:29:53.0266 4576 [ 0CEC23084B51B8288099EB710224E955 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
      21:29:53.0302 4576 WpdUsb - ok
      21:29:53.0341 4576 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
      21:29:53.0404 4576 ws2ifsl - ok
      21:29:53.0426 4576 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
      21:29:53.0453 4576 wscsvc - ok
      21:29:53.0498 4576 [ 4422AC5ED8D4C2F0DB63E71D4C069DD7 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
      21:29:53.0535 4576 WSDPrintDevice - ok
      21:29:53.0543 4576 WSearch - ok
      21:29:53.0605 4576 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
      21:29:53.0675 4576 WUDFRd - ok
      21:29:53.0725 4576 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
      21:29:53.0775 4576 wudfsvc - ok
      21:29:53.0794 4576 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
      21:29:53.0811 4576 XAudio - ok
      21:29:53.0838 4576 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
      21:29:53.0910 4576 XAudioService - ok
      21:29:53.0995 4576 [ A4822191C7CEA271903C2A4FB6D9809D ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
      21:29:54.0046 4576 yukonwlh - ok
      21:29:54.0074 4576 ================ Scan global ===============================
      21:29:54.0099 4576 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
      21:29:54.0144 4576 [ 40864DA48A14EBC68A0D6BFD08BA21EB ] C:\Windows\system32\winsrv.dll
      21:29:54.0180 4576 [ 40864DA48A14EBC68A0D6BFD08BA21EB ] C:\Windows\system32\winsrv.dll
      21:29:54.0227 4576 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
      21:29:54.0237 4576 [Global] - ok
      21:29:54.0237 4576 ================ Scan MBR ==================================
      21:29:54.0256 4576 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
      21:29:54.0993 4576 \Device\Harddisk0\DR0 - ok
      21:29:54.0994 4576 ================ Scan VBR ==================================
      21:29:55.0028 4576 [ E169C26A7E9C4B37BB9690947D4EDBE7 ] \Device\Harddisk0\DR0\Partition1
      21:29:55.0031 4576 \Device\Harddisk0\DR0\Partition1 - ok
      21:29:55.0037 4576 [ 26E2B86F8FB855237B30063EC04ACC0F ] \Device\Harddisk0\DR0\Partition2
      21:29:55.0040 4576 \Device\Harddisk0\DR0\Partition2 - ok
      21:29:55.0042 4576 ============================================================
      21:29:55.0042 4576 Scan finished
      21:29:55.0042 4576 ============================================================
      21:29:55.0064 5940 Detected object count: 7
      21:29:55.0064 5940 Actual detected object count: 7
      21:31:41.0735 5940 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
      21:31:41.0736 5940 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:31:41.0739 5940 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
      21:31:41.0739 5940 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:31:41.0742 5940 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
      21:31:41.0742 5940 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:31:41.0746 5940 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
      21:31:41.0746 5940 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:31:41.0750 5940 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
      21:31:41.0750 5940 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:31:41.0753 5940 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
      21:31:41.0753 5940 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
      21:31:41.0757 5940 USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
      21:31:41.0757 5940 USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip


      Después de realizar los análisis volví a intentar la instalación del antivirus, ésta vez me dejó instalarlo pero después de eso la compu se volvió super inestable. La pantalla se congelaba de cualquier cosa incluso hubo una vez que se apagó sin previo aviso, parece ser que ahora está estable de nuevo pero pienso que el problema persiste.

    6. #6
      Usuario Avatar de M4RTYN
      Registrado
      jun 2012
      Ubicación
      Ecuador
      Mensajes
      5.520

      Re: AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Hola!

      espero e reporte de ESET online y por ahora seria mejor que no pusieras antivirus

      saludos

    7. #7
      Omi
      Omi está offline
      Usuario Avatar de Omi
      Registrado
      abr 2013
      Ubicación
      México
      Mensajes
      7

      Re: AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Hola! Ya porfin tengo el reporte del ESET online, te lo dejo:

      [email protected] as downloader log:
      all ok
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # OnlineScanner.ocx=1.0.0.6920
      # api_version=3.0.2
      # EOSSerial=310bc391c5eeb34fb1824ae160af6221
      # engine=13661
      # end=finished
      # remove_checked=false
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # utc_time=2013-04-20 11:22:29
      # local_time=2013-04-20 06:22:29 (-0600, Hora de verano central (México))
      # country="Mexico"
      # lang=3082
      # osver=6.0.6002 NT Service Pack 2
      # compatibility_mode=5892 16776574 100 95 56259891 203111321 0 0
      # scanned=142915
      # found=0
      # cleaned=0
      # scan_time=7677

      Por el momento el equipo anda sin ningún problema aunque no sé si se mantendrá así.
      Saludos.

    8. #8
      Usuario Avatar de M4RTYN
      Registrado
      jun 2012
      Ubicación
      Ecuador
      Mensajes
      5.520

      Re: AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Hola!

      Sí tienes antivirus porfavor quitado :) y dime que antivirus has tenido? En esa PC?

      Una ves contestado avanzamos a la siguiente fase

      saludos!

    9. #9
      Omi
      Omi está offline
      Usuario Avatar de Omi
      Registrado
      abr 2013
      Ubicación
      México
      Mensajes
      7

      Re: AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Hola!

      No tengo antivirus instalado en este momento.En esta PC primero tuve el Nod32 creo que era la v.4 y el último fue el AVG la versión gratuita.

      Saludos

    10. #10
      Usuario Avatar de M4RTYN
      Registrado
      jun 2012
      Ubicación
      Ecuador
      Mensajes
      5.520

      Re: AYUDA con PUP.Adware.Agent y Adware.DoubleD

      Hola!

      comentame como va el equipo por ahora para poder proceder a instalar un nuevo antivirus etc..

      saludos

    Página 1 de 2 12 ÚltimoÚltimo