• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 15

    Demora de 10 minutos para iniciar

    Resumen del tema: Demora de 10 minutos para iniciar - Hola a todos. Lamentablemente siempre que llego aqui es porque he tirado la toalla, buscado en todas partes.. Tengo un Toshiba Satelite S845 nuevo, aproximadamente 3 meses con sistema operativo original Win8 64 Bits, procesador ...

    1. #1
      Usuario Avatar de stemavi
      Registrado
      ago 2006
      Ubicación
      Barranquilla, C
      Mensajes
      19

      Atención Demora de 10 minutos para iniciar

      Hola a todos.

      Lamentablemente siempre que llego aqui es porque he tirado la toalla, buscado en todas partes..

      Tengo un Toshiba Satelite S845 nuevo, aproximadamente 3 meses con sistema operativo original Win8 64 Bits, procesador I5 y 4 gb de ram.

      Adicionalmente tengo Norton 360 instalado y actualizado.

      Resulta que este sistema operativo es rapidisimo y antes al prenderlo solo en unos segundos ya estaba en la pantalla donde se solicita la clave para acceder a windows pero hace una semana se me demora el computador hasta 10 minutos diciendo "Espere" para acceder a la pantalla para poner la clave.

      Aqui muestro cuando a los segundos carga la pantalla inicial de win8.. Pero al hacer click para colocar la clave y acceder al escritorio:


      Pasa esto (Espere): Despues de 1o minutos ya si puedo colocar la clave y todo ok..


      ACLARACION:
      He leido varios foros de demoras en cargar escritorio.. Ese no es mi problema, una vez que por fin aparece la pantalla donde coloco la clave para acceder al escritorio todo esta perfecto.. Carga rapido el escritorio y corre muy bien los archivos.. El problema esta en el tiempo que toma el arranque de windows hasta la pantalla donde coloco la clave.

      ACCIONES QUE HE REALIZADO:
      1. Borrado de cookies y registros incorrecto con CCleaner.
      2. Actualizacion de antivirus y analisis profundo del sistema.
      3. Instalacion y analisis de Malwarebytes
      4. Ya probe con la funcion de reparar inicio automatico de windows sin solucion.
      5. Defragmente el disco duro y los optimice.
      6. Analisis con Rkill

      Lamentablemente por mi trabajo he instalado muchos programas y me gustaria pedirles que antes de tener que restaurar el sistema operativo y tener que volver a instalar los programas y apps, pedirles revisen mi LOG haber si el mes que estuve sin antivirus tuvo alguna repercución que pueda reparar mediante HJT...

      Por cierto, no se si tenga algo que ver pero me toco quitar la opcion que al suspenderse o cerrar la tapa pida clave porque al activarse nuevamente se queda la pantalla de fondo pero no aparece nada de texto ni donde poner la clave, tonces me tocaba apagarlo (5 seg en boton poder) y volverlo a prender..

      Gracias de nuevo por siempre estar dispuestos a ayudar...

      Logfile of Trend Micro HijackThis v2.0.4
      Scan saved at 12:40:46 a. m., on 05/07/2013
      Platform: Unknown Windows (WinNT 6.02.1008)
      MSIE: Internet Explorer v10.0 (10.00.9200.16537)
      Boot mode: Normal

      Running processes:
      C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
      C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
      C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
      C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
      C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
      C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
      C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
      C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
      C:\Program Files (x86)\Common Files\Research In Motion\RIMDeviceManager\RIMDeviceManager.exe
      C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.AutoUpdate.exe
      C:\Users\Steven\Desktop\HijackThis.exe
      C:\windows\SysWOW64\DllHost.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://se.earching.info:8080/search.htm?source=
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba13.msn.com
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by TOSHIBA
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      F2 - REG:system.ini: UserInit=userinit.exe
      O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coIEPlg.dll
      O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\IPS\IPSBHO.DLL
      O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
      O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
      O2 - BHO: conotinuetossave - {86319781-9CB6-879E-9078-DB3D5FA4D8F1} - C:\ProgramData\conotinuetossave\51b029d59626e.dll
      O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
      O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll
      O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
      O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coIEPlg.dll
      O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll" (file missing)
      O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
      O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
      O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
      O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
      O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
      O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
      O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
      O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
      O9 - Extra button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
      O9 - Extra 'Tools' menuitem: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
      O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
      O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
      O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
      O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
      O23 - Service: @%SystemRoot%\System32\AUInstallAgent.dll,-101 (AllUserInstallAgent) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: BlackBerry Device Manager (Blackberry Device Manager) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
      O23 - Service: @%windir%\system32\bisrv.dll,-100 (BrokerInfrastructure) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
      O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
      O23 - Service: @combase.dll,-5012 (DcomLaunch) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\das.dll,-100 (DeviceAssociationService) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (DeviceInstall) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000 (DsmSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (Eaphost) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (EventLog) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
      O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fhsvc.dll,-101 (fhsvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
      O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: hpqcxs08 - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: Servicio HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: HP Network Devices Support (HPSLPSVC) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
      O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
      O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
      O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
      O23 - Service: KMService - Unknown owner - C:\windows\system32\srvany.exe
      O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      O23 - Service: @%windir%\system32\lsm.dll,-1001 (LSM) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\windows\system32\msiexec.exe
      O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccSvcHst.exe
      O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: Norton Anti-Theft (NAT) - Symantec Corporation - C:\Program Files (x86)\Norton Anti-Theft\Engine\1.8.0.32\ccSvcHst.exe
      O23 - Service: @%SystemRoot%\system32\ncasvc.dll,-3009 (NcaSvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\NcdAutoSetup.dll,-100 (NcdAutoSetup) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: Net Driver HPZ12 - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netprofmsvc.dll,-202 (netprofm) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
      O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\windows\SysWow64\perfhost.exe
      O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-200 (PlugPlay) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1 (PrintNotify) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
      O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
      O23 - Service: @combase.dll,-5010 (RpcSs) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
      O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
      O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\svsvc.dll,-101 (svsvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%windir%\system32\SystemEventsBrokerServer.dll,-1001 (SystemEventsBroker) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: TOSHIBA HDD Accelerator Service (THAccelSvc) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\HDD Accelerator\THAccelSvc.exe
      O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%windir%\system32\TimeBrokerServer.dll,-1001 (TimeBroker) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
      O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
      O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Teco\TecoService.exe
      O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
      O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\windows\servicing\TrustedInstaller.exe
      O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
      O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
      O23 - Service: @%systemroot%\system32\vmicres.dll,-101 (vmicheartbeat) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-201 (vmickvpexchange) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-601 (vmicrdv) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-301 (vmicshutdown) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-401 (vmictimesync) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-501 (vmicvss) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
      O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wcmsvc.dll,-4097 (Wcmsvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wiarpc.dll,-2 (WiaRpc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (WlanSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wlidsvc.dll,-100 (wlidsvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
      O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\windows\system32\SearchIndexer.exe
      O23 - Service: @%SystemRoot%\system32\WSService.dll,-103 (WSService) - Unknown owner - C:\windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\windows\system32\svchost.exe

      --
      End of file - 28020 bytes

    2. #2
      Moderador Gral.
      Avatar de Javierhf
      Registrado
      jun 2006
      Ubicación
      España - Madrid
      Mensajes
      15.599

      Re: Demora de 10 minutos para iniciar

      Buenas stemavi.

      Lo que se ve raro en el log seria esto "C:\ProgramData\conotinuetossave" tu lo conoces. ???

      Ademas realiza estos pasos :

      Descarga(en el escritorio) >> AdwCleaner | InfoSpyware.


      • Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
      • Y cierra todos los programas que tengas abiertos.
      • Ejecuta Adwcleaner. (Si usas Windows Vista o 7 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Pulsar en el Botón Supresión.
      • Sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
      • Guardas el reporte que te saldrá en el escritorio, para pegarlo en tu próxima respuesta.



      Y también descarga(en el escritorio) >> OTL By OldTimer

      *** Para Ejecutar OTL sigue estos pasos :

      • Cerrar todos programas que tengas abiertos y hacer doble click en el ícono de OTL para ejecutarlo.
      • Dejarlo correr y esperar a que aparezca el menú de OTL..
      • Cuando salga el menú de OTL, debes cambiar debajo de: "Tipo de Análisis" poniendo Resultado Mínimo.
      • Marcar la casilla Analizar Todos.
      • Marcar las opciones: Buscar LOP y Buscar Purity.
      • Marcar las Opciones: Omitir Archivos De Microsoft y Usar Listado de Compañías Reconocidas.
      • Copiar y Pegar las líneas del siguiente script bajo la casilla Análisis Personalizados/Código de Reparación:

        NOTA: No copiar la palabra Código:
        Código:
        netsvcs
        msconfig
        %SYSTEMDRIVE%\*.*
        CREATERESTOREPOINT


      • Por favor No cambies el resto de la configuración a menos que te lo solicitemos.


      • Presionar el botón .
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos archivos estarán grabados en el mismo lugar donde OTL.exe fue descargado.
      • Copiar y pegar el contenido del archivo OTL.txt en tu próxima respuesta.


      En tu próxima respuesta recuerda :

      - Ponernos los informes de AdwCleaner y OTL.txt, en este orden.

      - Y nos cuentas como funciona tu equipo, en relación al problema planteado, y coméntanos si conoces esa entrada/carpeta.

      Saludos, Javier.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de stemavi
      Registrado
      ago 2006
      Ubicación
      Barranquilla, C
      Mensajes
      19

      Re: Demora de 10 minutos para iniciar

      Hola Javier...

      Gracias por tu ayuda..

      Bueno, solo he prendido el computador una vez y parece que esta igual.

      Anexo los logs..

      Sobre esa entrada no la conozco y parece que no es buena pues fue identificada por adwcleaner...

      # AdwCleaner v2.304 - Fichero creado el 05/07/2013 a 10:00:31
      # Actualizado el 03/07/2013 por Xplode
      # Sistema operativo : Windows 8 Single Language (64 bits)
      # Usuario : Steven - STEVENPC
      # Modo de inicio : Normal
      # Ejecutado desde : E:\Programas nuevos\antivirus\adwcleaner.exe
      # Opción [Supresión]


      ***** [Servicios] *****


      ***** [Ficheros / Carpetas] *****

      Carpeta Suprimido : C:\ProgramData\conotinuetossave
      Carpeta Suprimido : C:\ProgramData\InstallMate
      Carpeta Suprimido : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\conotinuetossave
      Carpeta Suprimido : C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\flahhjoghblbkbaggfngkcfhdhfhkcjj
      Carpeta Suprimido : C:\Users\Steven\AppData\LocalLow\conotinuetossave
      Carpeta Suprimido : C:\Users\Steven\AppData\Roaming\pdfforge
      Suprimido al reiniciar : C:\ProgramData\boost_interprocess

      ***** [Registro] *****

      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{86319781-9CB6-879E-9078-DB3D5FA4D8F1}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{86319781-9CB6-879E-9078-DB3D5FA4D8F1}
      Clave Supprimida : HKCU\Software\Softonic
      Clave Supprimida : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{86319781-9CB6-879E-9078-DB3D5FA4D8F1}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{86319781-9CB6-879E-9078-DB3D5FA4D8F1}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C1C6816E-CBB3-A748-85F9-A8B47B68985B}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}

      ***** [Navegadores] *****

      -\\ Internet Explorer v10.0.9200.16537

      [OK] El registro no contiene ninguna entrada ilegítima.

      -\\ Mozilla Firefox v22.0 (es-ES)

      Fichero : C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\xe73wys1.default\prefs.js

      C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\xe73wys1.default\user.js ... Suprimido !

      Supprimida : user_pref("browser.search.selectedEngine", "Search The Web(HTM)");
      Supprimida : user_pref("extensions.51b029d596187.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]
      Supprimida : user_pref("extensions.htm.srchPrvdr", "Search The Web(HTM)");

      -\\ Google Chrome v27.0.1453.116

      Fichero : C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      *************************

      AdwCleaner[S1].txt - [2817 octets] - [05/07/2013 10:00:31]

      ########## EOF - C:\AdwCleaner[S1].txt - [2877 octets] ##########

      ________________________________________________________________________________________________

      OTL logfile created on: 05/07/2013 10:08:05 a. m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = E:\Programas nuevos\antivirus
      64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
      Internet Explorer (Version = 9.10.9200.16599)
      Locale: 0000240A | Country: Colombia | Language: ESO | Date Format: dd/MM/yyyy

      3,90 Gb Total Physical Memory | 2,51 Gb Available Physical Memory | 64,35% Memory free
      4,59 Gb Paging File | 3,19 Gb Available in Paging File | 69,46% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 294,24 Gb Total Space | 244,60 Gb Free Space | 83,13% Space Free | Partition Type: NTFS
      Drive E: | 291,46 Gb Total Space | 215,16 Gb Free Space | 73,82% Space Free | Partition Type: NTFS

      Computer Name: STEVENPC | User Name: Steven | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - E:\Programas nuevos\antivirus\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Norton Anti-Theft\Engine\1.8.0.32\ccSvcHst.exe (Symantec Corporation)
      PRC - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccSvcHst.exe (Symantec Corporation)
      PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe (Research In Motion Limited)
      PRC - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe (Microsoft Corporation.)
      PRC - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)


      ========== Modules (No Company Name) ==========

      MOD - C:\PROGRAM FILES (X86)\NORTON 360\ENGINE\20.4.0.40\wincfi39.dll ()


      ========== Services (SafeList) ==========

      SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
      SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
      SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
      SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
      SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
      SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
      SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
      SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
      SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
      SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
      SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
      SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
      SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
      SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
      SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
      SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
      SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
      SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
      SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
      SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
      SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
      SRV:64bit: - (AllUserInstallAgent) -- C:\Windows\SysNative\AUInstallAgent.dll (Microsoft Corporation)
      SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (CxAudMsg) -- C:\Windows\SysNative\CxAudMsg64.exe (Conexant Systems Inc.)
      SRV:64bit: - (TODDSrv) -- C:\Windows\SysNative\TODDSrv.exe (TOSHIBA Corporation)
      SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (NAT) -- C:\Program Files (x86)\Norton Anti-Theft\Engine\1.8.0.32\ccSvcHst.exe (Symantec Corporation)
      SRV - (N360) -- C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccSvcHst.exe (Symantec Corporation)
      SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (KMService) -- C:\Windows\SysWOW64\srvany.exe ()
      SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (HPSLPSVC) -- C:\Users\Steven\AppData\Local\Temp\7zS21D4\hpslpsvc64.dll (Hewlett-Packard Co.)
      SRV - (Blackberry Device Manager) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe (Research In Motion Limited)
      SRV - (PrintNotify) -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (Microsoft Corporation)
      SRV - (TOSHIBA eco Utility Service) -- C:\Archivos de programa\TOSHIBA\Teco\TecoService.exe (TOSHIBA Corporation)
      SRV - (THAccelSvc) -- C:\Archivos de programa\TOSHIBA\HDD Accelerator\THAccelSvc.exe (TOSHIBA CORPORATION)
      SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
      SRV - (TPCHSrv) -- C:\Archivos de programa\TOSHIBA\TPHM\TPCHSrv.exe (TOSHIBA Corporation)
      SRV - (TMachInfo) -- C:\Archivos de programa\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe (TOSHIBA Corporation)
      SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation)
      SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
      SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
      SRV - (NOBU) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (Symantec Corporation)
      SRV - (Intel(R) -- C:\Archivos de programa\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation)
      SRV - (BBUpdate) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe (Microsoft Corporation.)
      SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe (Microsoft Corporation.)
      SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
      SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      SRV - (PSI_SVC_2) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (SymEvent) -- C:\Windows\SysNative\Drivers\SYMEVENT64x86.SYS (Symantec Corporation)
      DRV:64bit: - (usbUDisc) -- C:\Windows\SysNative\Drivers\USBDrv_AMD64.sys (Scott)
      DRV:64bit: - (SymEFA) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\symefa64.sys (Symantec Corporation)
      DRV:64bit: - (SymDS) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\symds64.sys (Symantec Corporation)
      DRV:64bit: - (SRTSP) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\srtsp64.sys (Symantec Corporation)
      DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\Drivers\USBHUB3.SYS (Microsoft Corporation)
      DRV:64bit: - (UCX01000) -- C:\Windows\SysNative\Drivers\UCX01000.SYS (Microsoft Corporation)
      DRV:64bit: - (spaceport) -- C:\Windows\SysNative\Drivers\spaceport.sys (Microsoft Corporation)
      DRV:64bit: - (SymNetS) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\symnets.sys (Symantec Corporation)
      DRV:64bit: - (ccSet_NAT) -- C:\Windows\SysNative\Drivers\NATx64\0108000.020\ccsetx64.sys (Symantec Corporation)
      DRV:64bit: - (ccSet_N360) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\ccsetx64.sys (Symantec Corporation)
      DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\Drivers\mbam.sys (Malwarebytes Corporation)
      DRV:64bit: - (SymIRON) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\ironx64.sys (Symantec Corporation)
      DRV:64bit: - (SRTSPX) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\srtspx64.sys (Symantec Corporation)
      DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\Drivers\USBXHCI.SYS (Microsoft Corporation)
      DRV:64bit: - (storahci) -- C:\Windows\SysNative\Drivers\storahci.sys (Microsoft Corporation)
      DRV:64bit: - (TPM) -- C:\Windows\SysNative\Drivers\tpm.sys (Microsoft Corporation)
      DRV:64bit: - (sdbus) -- C:\Windows\SysNative\Drivers\sdbus.sys (Microsoft Corporation)
      DRV:64bit: - (pdc) -- C:\Windows\SysNative\Drivers\pdc.sys (Microsoft Corporation)
      DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys (Microsoft Corporation)
      DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\Drivers\WdBoot.sys (Microsoft Corporation)
      DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\Drivers\WdFilter.sys (Microsoft Corporation)
      DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\Drivers\msgpiowin32.sys (Microsoft Corporation)
      DRV:64bit: - (RimUsb) -- C:\Windows\SysNative\Drivers\RimUsb_AMD64.sys (Research In Motion Limited)
      DRV:64bit: - (RimVSerPort) -- C:\Windows\SysNative\Drivers\RimSerial_AMD64.sys (Research in Motion Ltd)
      DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\Drivers\BthhfHid.sys (Microsoft Corporation)
      DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\Drivers\hidi2c.sys (Microsoft Corporation)
      DRV:64bit: - (SymELAM) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\symelam.sys (Symantec Corporation)
      DRV:64bit: - (FxPPM) -- C:\Windows\SysNative\Drivers\fxppm.sys (Microsoft Corporation)
      DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV:64bit: - (sdstor) -- C:\Windows\SysNative\Drivers\sdstor.sys (Microsoft Corporation)
      DRV:64bit: - (dam) -- C:\Windows\SysNative\Drivers\dam.sys (Microsoft Corporation)
      DRV:64bit: - (StillCam) -- C:\Windows\SysNative\Drivers\serscan.sys (Microsoft Corporation)
      DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\Drivers\msgpioclx.sys (Microsoft Corporation)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\Drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\Drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (SynTP) -- C:\Windows\SysNative\Drivers\SynTP.sys (Synaptics Incorporated)
      DRV:64bit: - (SmbDrvI) -- C:\Windows\SysNative\Drivers\Smb_driver_Intel.sys (Synaptics Incorporated)
      DRV:64bit: - (THAccel) -- C:\Windows\SysNative\Drivers\THAccel.sys (TOSHIBA CORPORATION)
      DRV:64bit: - (igfx) -- C:\Windows\SysNative\Drivers\igdkmd64.sys (Intel Corporation)
      DRV:64bit: - (Thotkey) -- C:\Windows\SysNative\Drivers\Thotkey.sys (Windows (R) Win 7 DDK provider)
      DRV:64bit: - (iaStorA) -- C:\Windows\SysNative\Drivers\iaStorA.sys (Intel Corporation)
      DRV:64bit: - (QIOMem) -- C:\Windows\SysNative\Drivers\QIOMem.sys (TOSHIBA)
      DRV:64bit: - (Fs_Rec) -- C:\windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (condrv) -- C:\Windows\SysNative\Drivers\condrv.sys (Microsoft Corporation)
      DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS (VIA Corporation)
      DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\Drivers\VerifierExt.sys (Microsoft Corporation)
      DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\Drivers\uaspstor.sys (Microsoft Corporation)
      DRV:64bit: - (acpiex) -- C:\Windows\SysNative\Drivers\acpiex.sys (Microsoft Corporation)
      DRV:64bit: - (mvumis) -- C:\Windows\SysNative\Drivers\mvumis.sys (Marvell Semiconductor, Inc.)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\Drivers\stexstor.sys (Promise Technology, Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\Drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\Drivers\lsi_sss.sys (LSI Corporation)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\Drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys (Microsoft Corporation)
      DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\Drivers\EhStorClass.sys (Microsoft Corporation)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\Drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (3ware) -- C:\Windows\SysNative\Drivers\3ware.sys (LSI)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\Drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\Drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (CLFS) -- C:\Windows\SysNative\Drivers\clfs.sys (Microsoft Corporation)
      DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\Drivers\wfplwfs.sys (Microsoft Corporation)
      DRV:64bit: - (vpci) -- C:\Windows\SysNative\Drivers\vpci.sys (Microsoft Corporation)
      DRV:64bit: - (terminpt) -- C:\Windows\SysNative\Drivers\terminpt.sys (Microsoft Corporation)
      DRV:64bit: - (ROOTMODEM) -- C:\Windows\SysNative\Drivers\rootmdm.sys (Microsoft Corporation)
      DRV:64bit: - (WSDPrintDevice) -- C:\Windows\SysNative\Drivers\WSDPrint.sys (Microsoft Corporation)
      DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\Drivers\mshidumdf.sys (Microsoft Corporation)
      DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\Drivers\BasicDisplay.sys (Microsoft Corporation)
      DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\Drivers\HyperVideo.sys (Microsoft Corporation)
      DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\Drivers\BasicRender.sys (Microsoft Corporation)
      DRV:64bit: - (gencounter) -- C:\Windows\SysNative\Drivers\vmgencounter.sys (Microsoft Corporation)
      DRV:64bit: - (kdnic) -- C:\Windows\SysNative\Drivers\kdnic.sys (Microsoft Corporation)
      DRV:64bit: - (acpitime) -- C:\Windows\SysNative\Drivers\acpitime.sys (Microsoft Corporation)
      DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\Drivers\npsvctrig.sys (Microsoft Corporation)
      DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys (Microsoft Corporation)
      DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\Drivers\acpipagr.sys (Microsoft Corporation)
      DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\Drivers\hyperkbd.sys (Microsoft Corporation)
      DRV:64bit: - (SerCx) -- C:\Windows\SysNative\Drivers\SerCx.sys (Microsoft Corporation)
      DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\Drivers\SpbCx.sys (Microsoft Corporation)
      DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\Drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\Drivers\bthhfenum.sys (Microsoft Corporation)
      DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\Drivers\dmvsc.sys (Microsoft Corporation)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\Drivers\wpcfltr.sys (Microsoft Corporation)
      DRV:64bit: - (BthLEEnum) -- C:\Windows\SysNative\Drivers\BthLEEnum.sys (Microsoft Corporation)
      DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys (Microsoft Corporation)
      DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\Drivers\mslldp.sys (Microsoft Corporation)
      DRV:64bit: - (Ndu) -- C:\Windows\SysNative\Drivers\Ndu.sys (Microsoft Corporation)
      DRV:64bit: - (TVALZ) -- C:\Windows\SysNative\Drivers\TVALZ_O.SYS (TOSHIBA Corporation)
      DRV:64bit: - (tdcmdpst) -- C:\Windows\SysNative\Drivers\tdcmdpst.sys (TOSHIBA Corporation.)
      DRV:64bit: - (athr) -- C:\Windows\SysNative\Drivers\athw8x.sys (Qualcomm Atheros Communications, Inc.)
      DRV:64bit: - (TVALZFL) -- C:\Windows\SysNative\Drivers\TVALZFL.sys (TOSHIBA Corporation)
      DRV:64bit: - (BtFilter) -- C:\Windows\SysNative\Drivers\btfilter.sys (Atheros)
      DRV:64bit: - (L1C) -- C:\Windows\SysNative\Drivers\L1C63x64.sys (Qualcomm Atheros Co., Ltd.)
      DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\Drivers\HECIx64.sys (Intel Corporation)
      DRV:64bit: - (CnxtHdAudService) -- C:\Windows\SysNative\Drivers\CHDRT64.sys (Conexant Systems Inc.)
      DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\Drivers\IntcDAud.sys (Intel(R) Corporation)
      DRV:64bit: - (tos_sps64) -- C:\Windows\SysNative\Drivers\tos_sps64.sys (TOSHIBA Corporation)
      DRV:64bit: - (AmUStor) -- C:\Windows\SysNative\Drivers\AmUStor.sys (Alcor Micro, Corp.)
      DRV:64bit: - (NETwNe64) -- C:\Windows\SysNative\Drivers\NETwNe64.sys (Intel Corporation)
      DRV:64bit: - (ccSet_NARA) -- C:\Windows\SysNative\Drivers\NARAx64\0401000.00B\ccSetx64.sys (Symantec Corporation)
      DRV:64bit: - (tosrfec) -- C:\Windows\SysNative\Drivers\tosrfec.sys (TOSHIBA Corporation)
      DRV - (IDSVia64) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\Definitions\IPSDefs\20130704.001\IDSviA64.sys (Symantec Corporation)
      DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\Definitions\VirusDefs\20130705.002\ex64.sys (Symantec Corporation)
      DRV - (eeCtrl) -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (Symantec Corporation)
      DRV - (EraserUtilRebootDrv) -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
      DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\Definitions\VirusDefs\20130705.002\eng64.sys (Symantec Corporation)
      DRV - (BHDrvx64) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\Definitions\BASHDefs\20130702.001\BHDrvx64.sys (Symantec Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Home - Welcome to Toshiba [binary data]
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Home - Welcome to Toshiba [binary data]
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN.com
      IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
      IE:64bit: - HKLM\..\SearchScopes\{EE558050-AF2D-4370-AEB6-367DE442948C}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Home - Welcome to Toshiba [binary data]
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Home - Welcome to Toshiba [binary data]
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN.com
      IE - HKLM\..\SearchScopes,DefaultScope =
      IE - HKLM\..\SearchScopes\{EE558050-AF2D-4370-AEB6-367DE442948C}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS


      IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Bienvenido a Toshiba [binary data]
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Bienvenido a Toshiba [binary data]
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://se.earching.info:8080/search.htm?source=
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\..\SearchScopes\{AD20CD7E-E5CF-431F-84AE-45DEF9BB08C1}: "URL" = http://se.earching.info:8080/search.htm?source=&q={searchTerms}
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.startup.homepage: "www.google.com"
      FF - prefs.js..extensions.enabledAddons: anthony%40gmail.com:2.0.3
      FF - prefs.js..extensions.enabledAddons: artur.dubovoy%40gmail.com:3.9.1
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:22.0
      FF - user.js - File not found

      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
      FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
      FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll ()
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Steven\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\coFFPlgn\ [2013/07/05 10:05:19 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\IPSFFPlgn\ [2013/06/13 00:15:35 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

      [2013/04/16 22:35:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Extensions
      [2013/07/03 19:46:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Firefox\Profiles\xe73wys1.default\extensions
      [2013/04/27 23:15:45 | 000,012,565 | ---- | M] () (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\firefox\profiles\xe73wys1.default\extensions\[email protected]
      [2013/07/03 19:46:40 | 000,316,582 | ---- | M] () (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\firefox\profiles\xe73wys1.default\extensions\[email protected]
      [2013/06/13 01:46:21 | 000,870,680 | ---- | M] () (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\firefox\profiles\xe73wys1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
      [2013/06/10 21:28:05 | 000,001,385 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\mozilla\firefox\profiles\xe73wys1.default\searchplugins\htm.xml
      [2013/07/03 19:47:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
      [2013/07/03 19:48:00 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

      ========== Chrome ==========

      CHR - default_search_provider: Search The Web(HTM) ()
      CHR - default_search_provider: search_url = http://se.earching.info:8080/search.htm?source=&q={searchTerms}
      CHR - default_search_provider: suggest_url =
      CHR - homepage: http://se.earching.info:8080/search.htm?source=
      CHR - plugin: WildTangent Games App V2 Presence Detector (Enabled) = C:\windows\SysWOW64\npDeployJava1.dll
      CHR - Extension: Running Fred = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfalcbcdebaemokjapphcfnldiogddk\1.6.3.14_0\
      CHR - Extension: Google Docs = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
      CHR - Extension: Google Drive = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
      CHR - Extension: YouTube = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
      CHR - Extension: Bsqueda de Google = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
      CHR - Extension: Cut the Rope = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj\15_0\
      CHR - Extension: Skyrama = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlehaidnnmjjkhgbbiombcdifogolhap\1.0.3_0\
      CHR - Extension: Norton Identity Protection = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.3.3.19_0\
      CHR - Extension: Norton Identity Protection = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.3.3.19_1\
      CHR - Extension: HTM Chrome Toolbar = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngcbagjeboodknilaciffkomdaeglfmj\1.0_0\
      CHR - Extension: Gmail = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

      O1 HOSTS File: ([2013/04/17 18:50:52 | 000,001,645 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 activate.adobe.com
      O1 - Hosts: 127.0.0.1 practivate.adobe.com
      O1 - Hosts: 127.0.0.1 ereg.adobe.com
      O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
      O1 - Hosts: 127.0.0.1 wip3.adobe.com
      O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
      O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
      O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
      O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
      O1 - Hosts: 127.0.0.1 adobeereg.com
      O1 - Hosts: 127.0.0.1 Registration
      O1 - Hosts: 127.0.0.1 activate.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
      O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
      O1 - Hosts: 127.0.0.1 adobeereg.com
      O1 - Hosts: 127.0.0.1 Registration
      O1 - Hosts: 127.0.0.1 activate.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
      O1 - Hosts: 1 more lines...
      O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
      O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
      O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
      O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
      O4:64bit: - HKLM..\Run: [] File not found
      O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
      O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.)
      O4:64bit: - HKLM..\Run: [CancelAutoPlay.exe] "C:\Program Files (x86)\UNE 4G REVOLUTION\Bin\CancelAutoPlay.exe" File not found
      O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Archivos de programa\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc.)
      O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
      O4:64bit: - HKLM..\Run: [SRS Premium Sound HD] C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc.)
      O4:64bit: - HKLM..\Run: [TCrdMain] C:\Archivos de programa\TOSHIBA\Hotkey\TCrdMain_Win8.exe (TOSHIBA Corporation)
      O4:64bit: - HKLM..\Run: [TecoResident] C:\Archivos de programa\TOSHIBA\Teco\TecoResident.exe (TOSHIBA Corporation)
      O4:64bit: - HKLM..\Run: [TODDMain] C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe ()
      O4:64bit: - HKLM..\Run: [TosWaitSrv] C:\Archivos de programa\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
      O4:64bit: - HKLM..\Run: [TSleepSrv] C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe (TOSHIBA Corporation)
      O4:64bit: - HKLM..\Run: [zLoader.exe] "C:\Program Files (x86)\UNE 4G REVOLUTION\Bin\zLoader.exe" File not found
      O4 - HKLM..\Run: [] File not found
      O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation)
      O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
      O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O8:64bit: - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
      O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
      O9:64bit: - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.3.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6EC3FF23-AB61-427C-B7DE-64C2E25ED7E7}: DhcpNameServer = 10.10.0.2
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A71196F8-67A9-441A-8C26-431423CB060A}: DhcpNameServer = 192.168.3.1
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
      O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
      O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O30 - LSA: Security Packages - (livessp) - File not found
      O32 - HKLM CDRom: AutoRun - 1
      O33 - MountPoints2\{c0c4bc92-e471-11e2-be8c-089e017bd417}\Shell - "" = AutoRun
      O33 - MountPoints2\{c0c4bc92-e471-11e2-be8c-089e017bd417}\Shell\AutoRun\command - "" = "F:\UNE_4G_REVOLUTION.exe" /s
      O33 - MountPoints2\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\Shell - "" = AutoRun
      O33 - MountPoints2\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\Shell\AutoRun\command - "" = "F:\UNE_4G_REVOLUTION.exe" /s
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
      NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
      NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
      NetSvcs:64bit: SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)


      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/07/04 23:27:40 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Steven\Desktop\HijackThis.exe
      [2013/07/04 14:37:43 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\SupportAppZXH
      [2013/07/04 14:32:46 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\Diagnostics
      [2013/07/03 19:47:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
      [2013/07/03 19:00:05 | 000,000,000 | ---D | C] -- C:\Users\Steven\Desktop\consejo Barranquilla
      [2013/06/28 15:41:47 | 000,000,000 | ---D | C] -- C:\Users\Steven\Desktop\2013-06 (jun.)
      [2013/06/26 13:03:12 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\ElevatedDiagnostics
      [2013/06/26 00:37:40 | 000,000,000 | ---D | C] -- C:\Users\Steven\Documents\Mis escaneos
      [2013/06/26 00:04:56 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\Unity
      [2013/06/25 23:58:10 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG
      [2013/06/25 23:58:04 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\HP
      [2013/06/25 23:58:03 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\HP
      [2013/06/25 23:54:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
      [2013/06/25 23:54:03 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\HpUpdate
      [2013/06/25 23:53:22 | 000,000,000 | ---D | C] -- C:\ProgramData\HP Product Assistant
      [2013/06/25 23:51:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\HP
      [2013/06/25 23:51:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Hewlett-Packard
      [2013/06/25 23:51:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
      [2013/06/25 23:50:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP
      [2013/06/25 23:50:04 | 000,000,000 | -H-D | C] -- C:\Config.Msi
      [2013/06/25 23:39:10 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
      [2013/06/25 23:36:17 | 000,000,000 | R--D | C] -- C:\Users\Steven\Documents\Scanned Documents
      [2013/06/25 23:36:16 | 000,000,000 | ---D | C] -- C:\Users\Steven\Documents\Fax
      [2013/06/23 21:11:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      [2013/06/23 21:11:11 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
      [2013/06/23 21:09:48 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\Malwarebytes
      [2013/06/23 21:09:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2013/06/23 21:09:39 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
      [2013/06/23 21:09:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [2013/06/23 21:09:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2013/06/22 12:31:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
      [2013/06/13 01:04:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PDF Architect
      [2013/06/13 01:04:52 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\PDF Architect
      [2013/06/13 01:00:05 | 000,000,000 | ---D | C] -- C:\Users\Steven\Documents\BlackBerry
      [2013/06/13 00:59:33 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\Research In Motion
      [2013/06/13 00:59:33 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\Research In Motion
      [2013/06/13 00:58:56 | 000,044,544 | ---- | C] (Research in Motion Ltd) -- C:\windows\SysNative\drivers\RimSerial_AMD64.sys
      [2013/06/13 00:58:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlackBerry
      [2013/06/13 00:58:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Research In Motion
      [2013/06/13 00:58:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\XCPCSync.OEM
      [2013/06/13 00:58:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Research In Motion
      [2013/06/13 00:58:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Research In Motion
      [2013/06/13 00:22:22 | 001,139,800 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\symefa64.sys
      [2013/06/13 00:22:22 | 000,796,760 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtsp64.sys
      [2013/06/13 00:22:22 | 000,493,656 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\symds64.sys
      [2013/06/13 00:22:22 | 000,433,752 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\symnets.sys
      [2013/06/13 00:22:22 | 000,224,416 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\ironx64.sys
      [2013/06/13 00:22:22 | 000,036,952 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtspx64.sys
      [2013/06/13 00:22:22 | 000,023,448 | R--- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\symelam.sys
      [2013/06/13 00:22:21 | 000,169,048 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\ccsetx64.sys
      [2013/06/13 00:21:53 | 000,000,000 | ---D | C] -- C:\windows\SysNative\drivers\N360x64\1404000.028
      [2013/06/13 00:16:20 | 000,000,000 | ---D | C] -- C:\Users\Steven\Documents\Symantec
      [2013/06/13 00:14:56 | 000,177,312 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\SYMEVENT64x86.SYS
      [2013/06/13 00:14:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
      [2013/06/13 00:14:56 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
      [2013/06/13 00:13:43 | 000,000,000 | ---D | C] -- C:\windows\SysNative\drivers\N360x64
      [2013/06/13 00:13:41 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
      [2013/06/13 00:13:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton 360
      [2013/06/12 21:43:31 | 000,000,000 | ---D | C] -- C:\ProgramData\PCSettings
      [2013/06/06 02:19:44 | 000,017,280 | ---- | C] (Scott) -- C:\windows\SysNative\drivers\USBDrv_AMD64.sys
      [2013/06/06 02:02:59 | 000,000,000 | ---D | C] -- C:\ProgramData\StarApp

      ========== Files - Modified Within 30 Days ==========

      [2013/07/05 10:03:58 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
      [2013/07/05 10:02:51 | 000,001,050 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/07/05 10:02:14 | 000,065,536 | ---- | M] () -- C:\windows\SysNative\Ikeext.etl
      [2013/07/05 10:01:52 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
      [2013/07/05 10:01:50 | 3351,474,176 | -HS- | M] () -- C:\hiberfil.sys
      [2013/07/05 10:00:42 | 000,000,101 | ---- | M] () -- C:\windows\DeleteOnReboot.bat
      [2013/07/05 03:20:00 | 000,000,838 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
      [2013/07/05 03:18:00 | 000,001,054 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/07/05 00:19:40 | 001,798,556 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
      [2013/07/05 00:19:40 | 000,799,280 | ---- | M] () -- C:\windows\SysNative\perfh00A.dat
      [2013/07/05 00:19:40 | 000,710,244 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
      [2013/07/05 00:19:40 | 000,163,056 | ---- | M] () -- C:\windows\SysNative\perfc00A.dat
      [2013/07/05 00:19:40 | 000,132,614 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
      [2013/07/04 23:27:41 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Steven\Desktop\HijackThis.exe
      [2013/07/04 14:38:26 | 002,394,985 | ---- | M] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\Cat.DB
      [2013/06/26 12:37:42 | 005,017,072 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
      [2013/06/25 23:58:00 | 000,245,002 | ---- | M] () -- C:\windows\hpoins46.dat
      [2013/06/25 23:52:35 | 000,002,110 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
      [2013/06/25 21:08:15 | 000,000,017 | ---- | M] () -- C:\Users\Steven\AppData\Local\resmon.resmoncfg
      [2013/06/19 15:48:25 | 000,014,818 | ---- | M] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\VT20130115.021
      [2013/06/19 10:39:23 | 000,000,016 | -H-- | M] () -- C:\windows\SysWow64\servdat.slm
      [2013/06/19 00:45:48 | 000,177,312 | ---- | M] (Symantec Corporation) -- C:\windows\SysNative\drivers\SYMEVENT64x86.SYS
      [2013/06/19 00:45:48 | 000,007,631 | ---- | M] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.CAT
      [2013/06/19 00:45:48 | 000,000,854 | ---- | M] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.INF
      [2013/06/13 00:59:11 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_RimSerial_AMD64_01007.Wdf
      [2013/06/11 1213 | 000,001,456 | ---- | M] () -- C:\Users\Steven\AppData\Local\Adobe Guardar para Web 12.0 Prefs
      [2013/06/11 11:49:18 | 000,000,132 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\Prefs. de filtro IllExport de Adobe CS5
      [2013/06/11 10:31:05 | 000,002,828 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys
      [2013/06/10 23:30:25 | 374,423,639 | ---- | M] () -- C:\Users\Steven\Desktop\NowVideo - Just watch it now! Flash Video Hosting.flv
      [2013/06/06 02:19:44 | 000,017,280 | ---- | M] (Scott) -- C:\windows\SysNative\drivers\USBDrv_AMD64.sys
      [2013/06/06 02:19:44 | 000,002,987 | ---- | M] () -- C:\windows\SysNative\drivers\USBDrv.inf
      [2013/06/06 00:18:17 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_WinUSB_01007.Wdf

      ========== Files Created - No Company Name ==========

      [2013/07/05 10:00:35 | 000,000,101 | ---- | C] () -- C:\windows\DeleteOnReboot.bat
      [2013/06/25 23:52:35 | 000,002,110 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
      [2013/06/25 23:49:22 | 000,245,002 | ---- | C] () -- C:\windows\hpoins46.dat
      [2013/06/25 23:49:22 | 000,000,478 | ---- | C] () -- C:\windows\hpomdl46.dat
      [2013/06/25 21:08:15 | 000,000,017 | ---- | C] () -- C:\Users\Steven\AppData\Local\resmon.resmoncfg
      [2013/06/19 15:48:55 | 005,017,072 | ---- | C] () -- C:\windows\SysNative\FNTCACHE.DAT
      [2013/06/19 15:48:25 | 002,394,985 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\Cat.DB
      [2013/06/19 15:48:25 | 000,014,818 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\VT20130115.021
      [2013/06/17 10:33:09 | 000,065,536 | ---- | C] () -- C:\windows\SysNative\Ikeext.etl
      [2013/06/14 14:21:13 | 000,386,646 | ---- | C] () -- C:\windows\SysNative\ApnDatabase.xml
      [2013/06/13 00:59:11 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_RimSerial_AMD64_01007.Wdf
      [2013/06/13 00:22:22 | 000,009,670 | R--- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symelam64.cat
      [2013/06/13 00:22:22 | 000,008,067 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symnet64.cat
      [2013/06/13 00:22:22 | 000,007,593 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\iron.cat
      [2013/06/13 00:22:22 | 000,007,589 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtspx64.cat
      [2013/06/13 00:22:22 | 000,007,587 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symefa64.cat
      [2013/06/13 00:22:22 | 000,003,434 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symefa.inf
      [2013/06/13 00:22:22 | 000,002,852 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symds.inf
      [2013/06/13 00:22:22 | 000,001,440 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symnet.inf
      [2013/06/13 00:22:22 | 000,001,437 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtsp64.inf
      [2013/06/13 00:22:22 | 000,001,420 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtspx64.inf
      [2013/06/13 00:22:22 | 000,000,996 | R--- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symelam.inf
      [2013/06/13 00:22:22 | 000,000,767 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\iron.inf
      [2013/06/13 00:22:21 | 000,007,667 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\ccsetx64.cat
      [2013/06/13 00:22:21 | 000,000,853 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\ccsetx64.inf
      [2013/06/13 00:21:53 | 000,014,818 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symvtcer.dat
      [2013/06/13 00:21:53 | 000,008,067 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtsp64.cat
      [2013/06/13 00:21:53 | 000,008,063 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symds64.cat
      [2013/06/13 00:21:53 | 000,000,172 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\isolate.ini
      [2013/06/13 00:14:56 | 000,007,631 | ---- | C] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.CAT
      [2013/06/13 00:14:56 | 000,000,854 | ---- | C] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.INF
      [2013/06/11 11:49:18 | 000,000,132 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\Prefs. de filtro IllExport de Adobe CS5
      [2013/06/10 22:01:00 | 374,423,639 | ---- | C] () -- C:\Users\Steven\Desktop\NowVideo - Just watch it now! Flash Video Hosting.flv
      [2013/06/06 02:19:44 | 000,002,987 | ---- | C] () -- C:\windows\SysNative\drivers\USBDrv.inf
      [2013/06/06 00:18:17 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_WinUSB_01007.Wdf
      [2013/05/31 00:26:29 | 000,001,456 | ---- | C] () -- C:\Users\Steven\AppData\Local\Adobe Guardar para Web 12.0 Prefs
      [2013/05/24 14:43:16 | 000,001,024 | ---- | C] () -- C:\windows\SysWow64\clauth2.dll
      [2013/05/24 14:43:16 | 000,001,024 | ---- | C] () -- C:\windows\SysWow64\clauth1.dll
      [2013/05/24 14:43:16 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\ssprs.dll
      [2013/05/24 14:43:16 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\serauth2.dll
      [2013/05/24 14:43:16 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\serauth1.dll
      [2013/05/24 14:43:16 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\nsprs.dll
      [2013/05/24 14:40:44 | 000,001,025 | ---- | C] () -- C:\windows\SysWow64\sysprs7.dll
      [2013/05/24 14:40:44 | 000,000,205 | ---- | C] () -- C:\windows\SysWow64\lsprst7.dll
      [2013/04/17 23:26:22 | 000,002,828 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
      [2013/04/17 23:26:22 | 000,000,008 | RHS- | C] () -- C:\ProgramData\9BF2E4B39D.sys
      [2013/04/17 17:59:48 | 000,008,192 | ---- | C] () -- C:\windows\SysWow64\srvany.exe
      [2012/11/15 00:44:22 | 000,083,968 | ---- | C] () -- C:\windows\SysWow64\OEMLicense.dll
      [2012/10/19 09:28:38 | 000,000,032 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\cbl32.dll
      [2012/08/06 09:36:22 | 000,598,780 | ---- | C] () -- C:\windows\SysWow64\igvpkrng700.bin
      [2012/08/06 09:36:08 | 000,064,512 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
      [2012/08/06 09:36:06 | 000,755,048 | ---- | C] () -- C:\windows\SysWow64\igcodeckrng700.bin
      [2012/07/26 03:13:10 | 000,215,943 | ---- | C] () -- C:\windows\SysWow64\dssec.dat
      [2012/07/26 03:13:09 | 000,000,741 | ---- | C] () -- C:\windows\SysWow64\NOISE.DAT
      [2012/07/26 02:21:26 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat
      [2012/07/25 20:17:42 | 000,043,520 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll
      [2012/07/25 15:37:29 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin
      [2012/07/25 15:28:31 | 000,364,544 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll
      [2012/06/02 09:31:19 | 000,673,088 | ---- | C] () -- C:\windows\SysWow64\mlang.dat
      [2012/04/20 16:59:44 | 000,001,536 | ---- | C] () -- C:\windows\SysWow64\IusEventLog.dll

      ========== ZeroAccess Check ==========


      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2013/03/06 01:31:28 | 019,758,592 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2013/03/06 00:03:37 | 017,561,600 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/25 22:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/25 22:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/25 22:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2013/04/16 22:48:56 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Origin
      [2013/06/13 01:04:52 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\PDF Architect
      [2013/06/13 00:59:57 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Research In Motion
      [2013/04/24 16:16:51 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\sMedio
      [2013/04/17 18:23:06 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\WildTangent
      [2013/04/16 21:18:40 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\WinBatch

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2013/07/05 10:00:42 | 000,002,944 | ---- | M] () -- C:\AdwCleaner[S1].txt
      [2012/07/25 22:44:30 | 000,398,156 | RHS- | M] () -- C:\bootmgr
      [2012/06/02 09:30:55 | 000,000,001 | -HS- | M] () -- C:\BOOTNXT
      [2013/07/05 10:01:50 | 3351,474,176 | -HS- | M] () -- C:\hiberfil.sys
      [2013/06/06 02:20:21 | 000,009,936 | ---- | M] () -- C:\log.txt
      [2013/07/05 10:01:51 | 738,197,504 | -HS- | M] () -- C:\pagefile.sys
      [2013/07/05 10:01:52 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
      [2013/04/17 17:33:36 | 000,003,384 | ---- | M] () -- C:\{06F85C51-82EE-45B3-8F75-690FE5E01463}

      < End of report >


      Te ofreceria una por ser viernes pero mejor un para que me puedas ayudar sin resaca!!..

      PREGUNTAS:
      1. Ves algo extraño en los Logs?
      2. De los procesos activos en el inicio hay alguno que sea innecesario?

      Saludes..

      Steven
      P

    4. #4
      Usuario Avatar de stemavi
      Registrado
      ago 2006
      Ubicación
      Barranquilla, C
      Mensajes
      19

      Re: Demora de 10 minutos para iniciar

      Hola Javier...

      Gracias por tu ayuda..

      Bueno, solo he prendido el computador una vez y parece que esta igual.

      Anexo los logs..

      Sobre esa entrada no la conozco y parece que no es buena pues fue identificada por adwcleaner...

      # AdwCleaner v2.304 - Fichero creado el 05/07/2013 a 10:00:31
      # Actualizado el 03/07/2013 por Xplode
      # Sistema operativo : Windows 8 Single Language (64 bits)
      # Usuario : Steven - STEVENPC
      # Modo de inicio : Normal
      # Ejecutado desde : E:\Programas nuevos\antivirus\adwcleaner.exe
      # Opción [Supresión]


      ***** [Servicios] *****


      ***** [Ficheros / Carpetas] *****

      Carpeta Suprimido : C:\ProgramData\conotinuetossave
      Carpeta Suprimido : C:\ProgramData\InstallMate
      Carpeta Suprimido : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\conotinuetossave
      Carpeta Suprimido : C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\flahhjoghblbkbaggfngkcfhdhfhkcjj
      Carpeta Suprimido : C:\Users\Steven\AppData\LocalLow\conotinuetossave
      Carpeta Suprimido : C:\Users\Steven\AppData\Roaming\pdfforge
      Suprimido al reiniciar : C:\ProgramData\boost_interprocess

      ***** [Registro] *****

      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{86319781-9CB6-879E-9078-DB3D5FA4D8F1}
      Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{86319781-9CB6-879E-9078-DB3D5FA4D8F1}
      Clave Supprimida : HKCU\Software\Softonic
      Clave Supprimida : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{86319781-9CB6-879E-9078-DB3D5FA4D8F1}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{86319781-9CB6-879E-9078-DB3D5FA4D8F1}
      Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C1C6816E-CBB3-A748-85F9-A8B47B68985B}
      Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}

      ***** [Navegadores] *****

      -\\ Internet Explorer v10.0.9200.16537

      [OK] El registro no contiene ninguna entrada ilegítima.

      -\\ Mozilla Firefox v22.0 (es-ES)

      Fichero : C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\xe73wys1.default\prefs.js

      C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\xe73wys1.default\user.js ... Suprimido !

      Supprimida : user_pref("browser.search.selectedEngine", "Search The Web(HTM)");
      Supprimida : user_pref("extensions.51b029d596187.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]
      Supprimida : user_pref("extensions.htm.srchPrvdr", "Search The Web(HTM)");

      -\\ Google Chrome v27.0.1453.116

      Fichero : C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Preferences

      [OK] El fichero no contiene ninguna entrada ilegítima.

      *************************

      AdwCleaner[S1].txt - [2817 octets] - [05/07/2013 10:00:31]

      ########## EOF - C:\AdwCleaner[S1].txt - [2877 octets] ##########

      ________________________________________________________________________________________________

      OTL logfile created on: 05/07/2013 10:08:05 a. m. - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = E:\Programas nuevos\antivirus
      64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
      Internet Explorer (Version = 9.10.9200.16599)
      Locale: 0000240A | Country: Colombia | Language: ESO | Date Format: dd/MM/yyyy

      3,90 Gb Total Physical Memory | 2,51 Gb Available Physical Memory | 64,35% Memory free
      4,59 Gb Paging File | 3,19 Gb Available in Paging File | 69,46% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 294,24 Gb Total Space | 244,60 Gb Free Space | 83,13% Space Free | Partition Type: NTFS
      Drive E: | 291,46 Gb Total Space | 215,16 Gb Free Space | 73,82% Space Free | Partition Type: NTFS

      Computer Name: STEVENPC | User Name: Steven | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - E:\Programas nuevos\antivirus\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Norton Anti-Theft\Engine\1.8.0.32\ccSvcHst.exe (Symantec Corporation)
      PRC - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccSvcHst.exe (Symantec Corporation)
      PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe (Research In Motion Limited)
      PRC - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
      PRC - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe (Microsoft Corporation.)
      PRC - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)


      ========== Modules (No Company Name) ==========

      MOD - C:\PROGRAM FILES (X86)\NORTON 360\ENGINE\20.4.0.40\wincfi39.dll ()


      ========== Services (SafeList) ==========

      SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
      SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
      SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
      SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
      SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
      SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
      SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
      SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
      SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
      SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
      SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
      SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
      SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
      SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
      SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
      SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
      SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
      SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
      SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
      SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
      SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
      SRV:64bit: - (AllUserInstallAgent) -- C:\Windows\SysNative\AUInstallAgent.dll (Microsoft Corporation)
      SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
      SRV:64bit: - (CxAudMsg) -- C:\Windows\SysNative\CxAudMsg64.exe (Conexant Systems Inc.)
      SRV:64bit: - (TODDSrv) -- C:\Windows\SysNative\TODDSrv.exe (TOSHIBA Corporation)
      SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (NAT) -- C:\Program Files (x86)\Norton Anti-Theft\Engine\1.8.0.32\ccSvcHst.exe (Symantec Corporation)
      SRV - (N360) -- C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccSvcHst.exe (Symantec Corporation)
      SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
      SRV - (KMService) -- C:\Windows\SysWOW64\srvany.exe ()
      SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (HPSLPSVC) -- C:\Users\Steven\AppData\Local\Temp\7zS21D4\hpslpsvc64.dll (Hewlett-Packard Co.)
      SRV - (Blackberry Device Manager) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe (Research In Motion Limited)
      SRV - (PrintNotify) -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (Microsoft Corporation)
      SRV - (TOSHIBA eco Utility Service) -- C:\Archivos de programa\TOSHIBA\Teco\TecoService.exe (TOSHIBA Corporation)
      SRV - (THAccelSvc) -- C:\Archivos de programa\TOSHIBA\HDD Accelerator\THAccelSvc.exe (TOSHIBA CORPORATION)
      SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
      SRV - (TPCHSrv) -- C:\Archivos de programa\TOSHIBA\TPHM\TPCHSrv.exe (TOSHIBA Corporation)
      SRV - (TMachInfo) -- C:\Archivos de programa\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe (TOSHIBA Corporation)
      SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation)
      SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
      SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
      SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
      SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
      SRV - (NOBU) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (Symantec Corporation)
      SRV - (Intel(R) -- C:\Archivos de programa\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation)
      SRV - (BBUpdate) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe (Microsoft Corporation.)
      SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe (Microsoft Corporation.)
      SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
      SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
      SRV - (osppsvc) -- C:\Archivos de programa\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
      SRV - (PSI_SVC_2) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (SymEvent) -- C:\Windows\SysNative\Drivers\SYMEVENT64x86.SYS (Symantec Corporation)
      DRV:64bit: - (usbUDisc) -- C:\Windows\SysNative\Drivers\USBDrv_AMD64.sys (Scott)
      DRV:64bit: - (SymEFA) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\symefa64.sys (Symantec Corporation)
      DRV:64bit: - (SymDS) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\symds64.sys (Symantec Corporation)
      DRV:64bit: - (SRTSP) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\srtsp64.sys (Symantec Corporation)
      DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\Drivers\USBHUB3.SYS (Microsoft Corporation)
      DRV:64bit: - (UCX01000) -- C:\Windows\SysNative\Drivers\UCX01000.SYS (Microsoft Corporation)
      DRV:64bit: - (spaceport) -- C:\Windows\SysNative\Drivers\spaceport.sys (Microsoft Corporation)
      DRV:64bit: - (SymNetS) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\symnets.sys (Symantec Corporation)
      DRV:64bit: - (ccSet_NAT) -- C:\Windows\SysNative\Drivers\NATx64\0108000.020\ccsetx64.sys (Symantec Corporation)
      DRV:64bit: - (ccSet_N360) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\ccsetx64.sys (Symantec Corporation)
      DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\Drivers\mbam.sys (Malwarebytes Corporation)
      DRV:64bit: - (SymIRON) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\ironx64.sys (Symantec Corporation)
      DRV:64bit: - (SRTSPX) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\srtspx64.sys (Symantec Corporation)
      DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\Drivers\USBXHCI.SYS (Microsoft Corporation)
      DRV:64bit: - (storahci) -- C:\Windows\SysNative\Drivers\storahci.sys (Microsoft Corporation)
      DRV:64bit: - (TPM) -- C:\Windows\SysNative\Drivers\tpm.sys (Microsoft Corporation)
      DRV:64bit: - (sdbus) -- C:\Windows\SysNative\Drivers\sdbus.sys (Microsoft Corporation)
      DRV:64bit: - (pdc) -- C:\Windows\SysNative\Drivers\pdc.sys (Microsoft Corporation)
      DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys (Microsoft Corporation)
      DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\Drivers\WdBoot.sys (Microsoft Corporation)
      DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\Drivers\WdFilter.sys (Microsoft Corporation)
      DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\Drivers\msgpiowin32.sys (Microsoft Corporation)
      DRV:64bit: - (RimUsb) -- C:\Windows\SysNative\Drivers\RimUsb_AMD64.sys (Research In Motion Limited)
      DRV:64bit: - (RimVSerPort) -- C:\Windows\SysNative\Drivers\RimSerial_AMD64.sys (Research in Motion Ltd)
      DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\Drivers\BthhfHid.sys (Microsoft Corporation)
      DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\Drivers\hidi2c.sys (Microsoft Corporation)
      DRV:64bit: - (SymELAM) -- C:\Windows\SysNative\Drivers\N360x64\1404000.028\symelam.sys (Symantec Corporation)
      DRV:64bit: - (FxPPM) -- C:\Windows\SysNative\Drivers\fxppm.sys (Microsoft Corporation)
      DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV:64bit: - (sdstor) -- C:\Windows\SysNative\Drivers\sdstor.sys (Microsoft Corporation)
      DRV:64bit: - (dam) -- C:\Windows\SysNative\Drivers\dam.sys (Microsoft Corporation)
      DRV:64bit: - (StillCam) -- C:\Windows\SysNative\Drivers\serscan.sys (Microsoft Corporation)
      DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\Drivers\msgpioclx.sys (Microsoft Corporation)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\Drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\Drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (SynTP) -- C:\Windows\SysNative\Drivers\SynTP.sys (Synaptics Incorporated)
      DRV:64bit: - (SmbDrvI) -- C:\Windows\SysNative\Drivers\Smb_driver_Intel.sys (Synaptics Incorporated)
      DRV:64bit: - (THAccel) -- C:\Windows\SysNative\Drivers\THAccel.sys (TOSHIBA CORPORATION)
      DRV:64bit: - (igfx) -- C:\Windows\SysNative\Drivers\igdkmd64.sys (Intel Corporation)
      DRV:64bit: - (Thotkey) -- C:\Windows\SysNative\Drivers\Thotkey.sys (Windows (R) Win 7 DDK provider)
      DRV:64bit: - (iaStorA) -- C:\Windows\SysNative\Drivers\iaStorA.sys (Intel Corporation)
      DRV:64bit: - (QIOMem) -- C:\Windows\SysNative\Drivers\QIOMem.sys (TOSHIBA)
      DRV:64bit: - (Fs_Rec) -- C:\windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (condrv) -- C:\Windows\SysNative\Drivers\condrv.sys (Microsoft Corporation)
      DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS (VIA Corporation)
      DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\Drivers\VerifierExt.sys (Microsoft Corporation)
      DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\Drivers\uaspstor.sys (Microsoft Corporation)
      DRV:64bit: - (acpiex) -- C:\Windows\SysNative\Drivers\acpiex.sys (Microsoft Corporation)
      DRV:64bit: - (mvumis) -- C:\Windows\SysNative\Drivers\mvumis.sys (Marvell Semiconductor, Inc.)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\Drivers\stexstor.sys (Promise Technology, Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\Drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\Drivers\lsi_sss.sys (LSI Corporation)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\Drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys (Microsoft Corporation)
      DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\Drivers\EhStorClass.sys (Microsoft Corporation)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\Drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (3ware) -- C:\Windows\SysNative\Drivers\3ware.sys (LSI)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\Drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\Drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (CLFS) -- C:\Windows\SysNative\Drivers\clfs.sys (Microsoft Corporation)
      DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\Drivers\wfplwfs.sys (Microsoft Corporation)
      DRV:64bit: - (vpci) -- C:\Windows\SysNative\Drivers\vpci.sys (Microsoft Corporation)
      DRV:64bit: - (terminpt) -- C:\Windows\SysNative\Drivers\terminpt.sys (Microsoft Corporation)
      DRV:64bit: - (ROOTMODEM) -- C:\Windows\SysNative\Drivers\rootmdm.sys (Microsoft Corporation)
      DRV:64bit: - (WSDPrintDevice) -- C:\Windows\SysNative\Drivers\WSDPrint.sys (Microsoft Corporation)
      DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\Drivers\mshidumdf.sys (Microsoft Corporation)
      DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\Drivers\BasicDisplay.sys (Microsoft Corporation)
      DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\Drivers\HyperVideo.sys (Microsoft Corporation)
      DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\Drivers\BasicRender.sys (Microsoft Corporation)
      DRV:64bit: - (gencounter) -- C:\Windows\SysNative\Drivers\vmgencounter.sys (Microsoft Corporation)
      DRV:64bit: - (kdnic) -- C:\Windows\SysNative\Drivers\kdnic.sys (Microsoft Corporation)
      DRV:64bit: - (acpitime) -- C:\Windows\SysNative\Drivers\acpitime.sys (Microsoft Corporation)
      DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\Drivers\npsvctrig.sys (Microsoft Corporation)
      DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys (Microsoft Corporation)
      DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\Drivers\acpipagr.sys (Microsoft Corporation)
      DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\Drivers\hyperkbd.sys (Microsoft Corporation)
      DRV:64bit: - (SerCx) -- C:\Windows\SysNative\Drivers\SerCx.sys (Microsoft Corporation)
      DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\Drivers\SpbCx.sys (Microsoft Corporation)
      DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\Drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\Drivers\bthhfenum.sys (Microsoft Corporation)
      DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\Drivers\dmvsc.sys (Microsoft Corporation)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\Drivers\wpcfltr.sys (Microsoft Corporation)
      DRV:64bit: - (BthLEEnum) -- C:\Windows\SysNative\Drivers\BthLEEnum.sys (Microsoft Corporation)
      DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys (Microsoft Corporation)
      DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\Drivers\mslldp.sys (Microsoft Corporation)
      DRV:64bit: - (Ndu) -- C:\Windows\SysNative\Drivers\Ndu.sys (Microsoft Corporation)
      DRV:64bit: - (TVALZ) -- C:\Windows\SysNative\Drivers\TVALZ_O.SYS (TOSHIBA Corporation)
      DRV:64bit: - (tdcmdpst) -- C:\Windows\SysNative\Drivers\tdcmdpst.sys (TOSHIBA Corporation.)
      DRV:64bit: - (athr) -- C:\Windows\SysNative\Drivers\athw8x.sys (Qualcomm Atheros Communications, Inc.)
      DRV:64bit: - (TVALZFL) -- C:\Windows\SysNative\Drivers\TVALZFL.sys (TOSHIBA Corporation)
      DRV:64bit: - (BtFilter) -- C:\Windows\SysNative\Drivers\btfilter.sys (Atheros)
      DRV:64bit: - (L1C) -- C:\Windows\SysNative\Drivers\L1C63x64.sys (Qualcomm Atheros Co., Ltd.)
      DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\Drivers\HECIx64.sys (Intel Corporation)
      DRV:64bit: - (CnxtHdAudService) -- C:\Windows\SysNative\Drivers\CHDRT64.sys (Conexant Systems Inc.)
      DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\Drivers\IntcDAud.sys (Intel(R) Corporation)
      DRV:64bit: - (tos_sps64) -- C:\Windows\SysNative\Drivers\tos_sps64.sys (TOSHIBA Corporation)
      DRV:64bit: - (AmUStor) -- C:\Windows\SysNative\Drivers\AmUStor.sys (Alcor Micro, Corp.)
      DRV:64bit: - (NETwNe64) -- C:\Windows\SysNative\Drivers\NETwNe64.sys (Intel Corporation)
      DRV:64bit: - (ccSet_NARA) -- C:\Windows\SysNative\Drivers\NARAx64\0401000.00B\ccSetx64.sys (Symantec Corporation)
      DRV:64bit: - (tosrfec) -- C:\Windows\SysNative\Drivers\tosrfec.sys (TOSHIBA Corporation)
      DRV - (IDSVia64) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\Definitions\IPSDefs\20130704.001\IDSviA64.sys (Symantec Corporation)
      DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\Definitions\VirusDefs\20130705.002\ex64.sys (Symantec Corporation)
      DRV - (eeCtrl) -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (Symantec Corporation)
      DRV - (EraserUtilRebootDrv) -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
      DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\Definitions\VirusDefs\20130705.002\eng64.sys (Symantec Corporation)
      DRV - (BHDrvx64) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\Definitions\BASHDefs\20130702.001\BHDrvx64.sys (Symantec Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Home - Welcome to Toshiba [binary data]
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Home - Welcome to Toshiba [binary data]
      IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN.com
      IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
      IE:64bit: - HKLM\..\SearchScopes\{EE558050-AF2D-4370-AEB6-367DE442948C}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Home - Welcome to Toshiba [binary data]
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Home - Welcome to Toshiba [binary data]
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN.com
      IE - HKLM\..\SearchScopes,DefaultScope =
      IE - HKLM\..\SearchScopes\{EE558050-AF2D-4370-AEB6-367DE442948C}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATBJS


      IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
      IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Bienvenido a Toshiba [binary data]
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Bienvenido a Toshiba [binary data]
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://se.earching.info:8080/search.htm?source=
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\..\SearchScopes,DefaultScope =
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\..\SearchScopes\{AD20CD7E-E5CF-431F-84AE-45DEF9BB08C1}: "URL" = http://se.earching.info:8080/search.htm?source=&q={searchTerms}
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.startup.homepage: "www.google.com"
      FF - prefs.js..extensions.enabledAddons: anthony%40gmail.com:2.0.3
      FF - prefs.js..extensions.enabledAddons: artur.dubovoy%40gmail.com:3.9.1
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:22.0
      FF - user.js - File not found

      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
      FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
      FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll ()
      FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
      FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Steven\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\coFFPlgn\ [2013/07/05 10:05:19 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.1.22\IPSFFPlgn\ [2013/06/13 00:15:35 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

      [2013/04/16 22:35:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Extensions
      [2013/07/03 19:46:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Firefox\Profiles\xe73wys1.default\extensions
      [2013/04/27 23:15:45 | 000,012,565 | ---- | M] () (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\firefox\profiles\xe73wys1.default\extensions\[email protected]
      [2013/07/03 19:46:40 | 000,316,582 | ---- | M] () (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\firefox\profiles\xe73wys1.default\extensions\[email protected]
      [2013/06/13 01:46:21 | 000,870,680 | ---- | M] () (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\firefox\profiles\xe73wys1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
      [2013/06/10 21:28:05 | 000,001,385 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\mozilla\firefox\profiles\xe73wys1.default\searchplugins\htm.xml
      [2013/07/03 19:47:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
      [2013/07/03 19:48:00 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

      ========== Chrome ==========

      CHR - default_search_provider: Search The Web(HTM) ()
      CHR - default_search_provider: search_url = http://se.earching.info:8080/search.htm?source=&q={searchTerms}
      CHR - default_search_provider: suggest_url =
      CHR - homepage: http://se.earching.info:8080/search.htm?source=
      CHR - plugin: WildTangent Games App V2 Presence Detector (Enabled) = C:\windows\SysWOW64\npDeployJava1.dll
      CHR - Extension: Running Fred = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfalcbcdebaemokjapphcfnldiogddk\1.6.3.14_0\
      CHR - Extension: Google Docs = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
      CHR - Extension: Google Drive = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
      CHR - Extension: YouTube = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
      CHR - Extension: Bsqueda de Google = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
      CHR - Extension: Cut the Rope = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj\15_0\
      CHR - Extension: Skyrama = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlehaidnnmjjkhgbbiombcdifogolhap\1.0.3_0\
      CHR - Extension: Norton Identity Protection = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.3.3.19_0\
      CHR - Extension: Norton Identity Protection = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.3.3.19_1\
      CHR - Extension: HTM Chrome Toolbar = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngcbagjeboodknilaciffkomdaeglfmj\1.0_0\
      CHR - Extension: Gmail = C:\Users\Steven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

      O1 HOSTS File: ([2013/04/17 18:50:52 | 000,001,645 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 activate.adobe.com
      O1 - Hosts: 127.0.0.1 practivate.adobe.com
      O1 - Hosts: 127.0.0.1 ereg.adobe.com
      O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
      O1 - Hosts: 127.0.0.1 wip3.adobe.com
      O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
      O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
      O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
      O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
      O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
      O1 - Hosts: 127.0.0.1 adobeereg.com
      O1 - Hosts: 127.0.0.1 Registration
      O1 - Hosts: 127.0.0.1 activate.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
      O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
      O1 - Hosts: 127.0.0.1 adobeereg.com
      O1 - Hosts: 127.0.0.1 Registration
      O1 - Hosts: 127.0.0.1 activate.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
      O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
      O1 - Hosts: 1 more lines...
      O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Archivos de programa\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
      O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
      O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
      O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
      O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
      O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
      O4:64bit: - HKLM..\Run: [] File not found
      O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
      O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.)
      O4:64bit: - HKLM..\Run: [CancelAutoPlay.exe] "C:\Program Files (x86)\UNE 4G REVOLUTION\Bin\CancelAutoPlay.exe" File not found
      O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Archivos de programa\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc.)
      O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
      O4:64bit: - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
      O4:64bit: - HKLM..\Run: [SRS Premium Sound HD] C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc.)
      O4:64bit: - HKLM..\Run: [TCrdMain] C:\Archivos de programa\TOSHIBA\Hotkey\TCrdMain_Win8.exe (TOSHIBA Corporation)
      O4:64bit: - HKLM..\Run: [TecoResident] C:\Archivos de programa\TOSHIBA\Teco\TecoResident.exe (TOSHIBA Corporation)
      O4:64bit: - HKLM..\Run: [TODDMain] C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe ()
      O4:64bit: - HKLM..\Run: [TosWaitSrv] C:\Archivos de programa\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
      O4:64bit: - HKLM..\Run: [TSleepSrv] C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe (TOSHIBA Corporation)
      O4:64bit: - HKLM..\Run: [zLoader.exe] "C:\Program Files (x86)\UNE 4G REVOLUTION\Bin\zLoader.exe" File not found
      O4 - HKLM..\Run: [] File not found
      O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
      O4 - HKLM..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation)
      O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
      O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O8:64bit: - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
      O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
      O9:64bit: - Extra Button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
      O9:64bit: - Extra Button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9:64bit: - Extra 'Tools' menuitem : Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Archivos de programa\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
      O9 - Extra 'Tools' menuitem : Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.3.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6EC3FF23-AB61-427C-B7DE-64C2E25ED7E7}: DhcpNameServer = 10.10.0.2
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A71196F8-67A9-441A-8C26-431423CB060A}: DhcpNameServer = 192.168.3.1
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
      O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
      O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Archivos de programa\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
      O30 - LSA: Security Packages - (livessp) - File not found
      O32 - HKLM CDRom: AutoRun - 1
      O33 - MountPoints2\{c0c4bc92-e471-11e2-be8c-089e017bd417}\Shell - "" = AutoRun
      O33 - MountPoints2\{c0c4bc92-e471-11e2-be8c-089e017bd417}\Shell\AutoRun\command - "" = "F:\UNE_4G_REVOLUTION.exe" /s
      O33 - MountPoints2\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\Shell - "" = AutoRun
      O33 - MountPoints2\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\Shell\AutoRun\command - "" = "F:\UNE_4G_REVOLUTION.exe" /s
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

      NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
      NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
      NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
      NetSvcs:64bit: SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)


      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 30 Days ==========

      [2013/07/04 23:27:40 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Steven\Desktop\HijackThis.exe
      [2013/07/04 14:37:43 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\SupportAppZXH
      [2013/07/04 14:32:46 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\Diagnostics
      [2013/07/03 19:47:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
      [2013/07/03 19:00:05 | 000,000,000 | ---D | C] -- C:\Users\Steven\Desktop\consejo Barranquilla
      [2013/06/28 15:41:47 | 000,000,000 | ---D | C] -- C:\Users\Steven\Desktop\2013-06 (jun.)
      [2013/06/26 13:03:12 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\ElevatedDiagnostics
      [2013/06/26 00:37:40 | 000,000,000 | ---D | C] -- C:\Users\Steven\Documents\Mis escaneos
      [2013/06/26 00:04:56 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\Unity
      [2013/06/25 23:58:10 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG
      [2013/06/25 23:58:04 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\HP
      [2013/06/25 23:58:03 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\HP
      [2013/06/25 23:54:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
      [2013/06/25 23:54:03 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\HpUpdate
      [2013/06/25 23:53:22 | 000,000,000 | ---D | C] -- C:\ProgramData\HP Product Assistant
      [2013/06/25 23:51:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\HP
      [2013/06/25 23:51:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Hewlett-Packard
      [2013/06/25 23:51:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
      [2013/06/25 23:50:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP
      [2013/06/25 23:50:04 | 000,000,000 | -H-D | C] -- C:\Config.Msi
      [2013/06/25 23:39:10 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
      [2013/06/25 23:36:17 | 000,000,000 | R--D | C] -- C:\Users\Steven\Documents\Scanned Documents
      [2013/06/25 23:36:16 | 000,000,000 | ---D | C] -- C:\Users\Steven\Documents\Fax
      [2013/06/23 21:11:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      [2013/06/23 21:11:11 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
      [2013/06/23 21:09:48 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\Malwarebytes
      [2013/06/23 21:09:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2013/06/23 21:09:39 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
      [2013/06/23 21:09:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [2013/06/23 21:09:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2013/06/22 12:31:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
      [2013/06/13 01:04:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PDF Architect
      [2013/06/13 01:04:52 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\PDF Architect
      [2013/06/13 01:00:05 | 000,000,000 | ---D | C] -- C:\Users\Steven\Documents\BlackBerry
      [2013/06/13 00:59:33 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\Research In Motion
      [2013/06/13 00:59:33 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\Research In Motion
      [2013/06/13 00:58:56 | 000,044,544 | ---- | C] (Research in Motion Ltd) -- C:\windows\SysNative\drivers\RimSerial_AMD64.sys
      [2013/06/13 00:58:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlackBerry
      [2013/06/13 00:58:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Research In Motion
      [2013/06/13 00:58:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\XCPCSync.OEM
      [2013/06/13 00:58:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Research In Motion
      [2013/06/13 00:58:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Research In Motion
      [2013/06/13 00:22:22 | 001,139,800 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\symefa64.sys
      [2013/06/13 00:22:22 | 000,796,760 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtsp64.sys
      [2013/06/13 00:22:22 | 000,493,656 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\symds64.sys
      [2013/06/13 00:22:22 | 000,433,752 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\symnets.sys
      [2013/06/13 00:22:22 | 000,224,416 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\ironx64.sys
      [2013/06/13 00:22:22 | 000,036,952 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtspx64.sys
      [2013/06/13 00:22:22 | 000,023,448 | R--- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\symelam.sys
      [2013/06/13 00:22:21 | 000,169,048 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\N360x64\1404000.028\ccsetx64.sys
      [2013/06/13 00:21:53 | 000,000,000 | ---D | C] -- C:\windows\SysNative\drivers\N360x64\1404000.028
      [2013/06/13 00:16:20 | 000,000,000 | ---D | C] -- C:\Users\Steven\Documents\Symantec
      [2013/06/13 00:14:56 | 000,177,312 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\SYMEVENT64x86.SYS
      [2013/06/13 00:14:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
      [2013/06/13 00:14:56 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
      [2013/06/13 00:13:43 | 000,000,000 | ---D | C] -- C:\windows\SysNative\drivers\N360x64
      [2013/06/13 00:13:41 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
      [2013/06/13 00:13:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton 360
      [2013/06/12 21:43:31 | 000,000,000 | ---D | C] -- C:\ProgramData\PCSettings
      [2013/06/06 02:19:44 | 000,017,280 | ---- | C] (Scott) -- C:\windows\SysNative\drivers\USBDrv_AMD64.sys
      [2013/06/06 02:02:59 | 000,000,000 | ---D | C] -- C:\ProgramData\StarApp

      ========== Files - Modified Within 30 Days ==========

      [2013/07/05 10:03:58 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
      [2013/07/05 10:02:51 | 000,001,050 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
      [2013/07/05 10:02:14 | 000,065,536 | ---- | M] () -- C:\windows\SysNative\Ikeext.etl
      [2013/07/05 10:01:52 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
      [2013/07/05 10:01:50 | 3351,474,176 | -HS- | M] () -- C:\hiberfil.sys
      [2013/07/05 10:00:42 | 000,000,101 | ---- | M] () -- C:\windows\DeleteOnReboot.bat
      [2013/07/05 03:20:00 | 000,000,838 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
      [2013/07/05 03:18:00 | 000,001,054 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
      [2013/07/05 00:19:40 | 001,798,556 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
      [2013/07/05 00:19:40 | 000,799,280 | ---- | M] () -- C:\windows\SysNative\perfh00A.dat
      [2013/07/05 00:19:40 | 000,710,244 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
      [2013/07/05 00:19:40 | 000,163,056 | ---- | M] () -- C:\windows\SysNative\perfc00A.dat
      [2013/07/05 00:19:40 | 000,132,614 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
      [2013/07/04 23:27:41 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Steven\Desktop\HijackThis.exe
      [2013/07/04 14:38:26 | 002,394,985 | ---- | M] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\Cat.DB
      [2013/06/26 12:37:42 | 005,017,072 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
      [2013/06/25 23:58:00 | 000,245,002 | ---- | M] () -- C:\windows\hpoins46.dat
      [2013/06/25 23:52:35 | 000,002,110 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
      [2013/06/25 21:08:15 | 000,000,017 | ---- | M] () -- C:\Users\Steven\AppData\Local\resmon.resmoncfg
      [2013/06/19 15:48:25 | 000,014,818 | ---- | M] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\VT20130115.021
      [2013/06/19 10:39:23 | 000,000,016 | -H-- | M] () -- C:\windows\SysWow64\servdat.slm
      [2013/06/19 00:45:48 | 000,177,312 | ---- | M] (Symantec Corporation) -- C:\windows\SysNative\drivers\SYMEVENT64x86.SYS
      [2013/06/19 00:45:48 | 000,007,631 | ---- | M] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.CAT
      [2013/06/19 00:45:48 | 000,000,854 | ---- | M] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.INF
      [2013/06/13 00:59:11 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_RimSerial_AMD64_01007.Wdf
      [2013/06/11 1213 | 000,001,456 | ---- | M] () -- C:\Users\Steven\AppData\Local\Adobe Guardar para Web 12.0 Prefs
      [2013/06/11 11:49:18 | 000,000,132 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\Prefs. de filtro IllExport de Adobe CS5
      [2013/06/11 10:31:05 | 000,002,828 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys
      [2013/06/10 23:30:25 | 374,423,639 | ---- | M] () -- C:\Users\Steven\Desktop\NowVideo - Just watch it now! Flash Video Hosting.flv
      [2013/06/06 02:19:44 | 000,017,280 | ---- | M] (Scott) -- C:\windows\SysNative\drivers\USBDrv_AMD64.sys
      [2013/06/06 02:19:44 | 000,002,987 | ---- | M] () -- C:\windows\SysNative\drivers\USBDrv.inf
      [2013/06/06 00:18:17 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_WinUSB_01007.Wdf

      ========== Files Created - No Company Name ==========

      [2013/07/05 10:00:35 | 000,000,101 | ---- | C] () -- C:\windows\DeleteOnReboot.bat
      [2013/06/25 23:52:35 | 000,002,110 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
      [2013/06/25 23:49:22 | 000,245,002 | ---- | C] () -- C:\windows\hpoins46.dat
      [2013/06/25 23:49:22 | 000,000,478 | ---- | C] () -- C:\windows\hpomdl46.dat
      [2013/06/25 21:08:15 | 000,000,017 | ---- | C] () -- C:\Users\Steven\AppData\Local\resmon.resmoncfg
      [2013/06/19 15:48:55 | 005,017,072 | ---- | C] () -- C:\windows\SysNative\FNTCACHE.DAT
      [2013/06/19 15:48:25 | 002,394,985 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\Cat.DB
      [2013/06/19 15:48:25 | 000,014,818 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\VT20130115.021
      [2013/06/17 10:33:09 | 000,065,536 | ---- | C] () -- C:\windows\SysNative\Ikeext.etl
      [2013/06/14 14:21:13 | 000,386,646 | ---- | C] () -- C:\windows\SysNative\ApnDatabase.xml
      [2013/06/13 00:59:11 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_RimSerial_AMD64_01007.Wdf
      [2013/06/13 00:22:22 | 000,009,670 | R--- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symelam64.cat
      [2013/06/13 00:22:22 | 000,008,067 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symnet64.cat
      [2013/06/13 00:22:22 | 000,007,593 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\iron.cat
      [2013/06/13 00:22:22 | 000,007,589 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtspx64.cat
      [2013/06/13 00:22:22 | 000,007,587 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symefa64.cat
      [2013/06/13 00:22:22 | 000,003,434 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symefa.inf
      [2013/06/13 00:22:22 | 000,002,852 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symds.inf
      [2013/06/13 00:22:22 | 000,001,440 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symnet.inf
      [2013/06/13 00:22:22 | 000,001,437 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtsp64.inf
      [2013/06/13 00:22:22 | 000,001,420 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtspx64.inf
      [2013/06/13 00:22:22 | 000,000,996 | R--- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symelam.inf
      [2013/06/13 00:22:22 | 000,000,767 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\iron.inf
      [2013/06/13 00:22:21 | 000,007,667 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\ccsetx64.cat
      [2013/06/13 00:22:21 | 000,000,853 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\ccsetx64.inf
      [2013/06/13 00:21:53 | 000,014,818 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symvtcer.dat
      [2013/06/13 00:21:53 | 000,008,067 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\srtsp64.cat
      [2013/06/13 00:21:53 | 000,008,063 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\symds64.cat
      [2013/06/13 00:21:53 | 000,000,172 | ---- | C] () -- C:\windows\SysNative\drivers\N360x64\1404000.028\isolate.ini
      [2013/06/13 00:14:56 | 000,007,631 | ---- | C] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.CAT
      [2013/06/13 00:14:56 | 000,000,854 | ---- | C] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.INF
      [2013/06/11 11:49:18 | 000,000,132 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\Prefs. de filtro IllExport de Adobe CS5
      [2013/06/10 22:01:00 | 374,423,639 | ---- | C] () -- C:\Users\Steven\Desktop\NowVideo - Just watch it now! Flash Video Hosting.flv
      [2013/06/06 02:19:44 | 000,002,987 | ---- | C] () -- C:\windows\SysNative\drivers\USBDrv.inf
      [2013/06/06 00:18:17 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_WinUSB_01007.Wdf
      [2013/05/31 00:26:29 | 000,001,456 | ---- | C] () -- C:\Users\Steven\AppData\Local\Adobe Guardar para Web 12.0 Prefs
      [2013/05/24 14:43:16 | 000,001,024 | ---- | C] () -- C:\windows\SysWow64\clauth2.dll
      [2013/05/24 14:43:16 | 000,001,024 | ---- | C] () -- C:\windows\SysWow64\clauth1.dll
      [2013/05/24 14:43:16 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\ssprs.dll
      [2013/05/24 14:43:16 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\serauth2.dll
      [2013/05/24 14:43:16 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\serauth1.dll
      [2013/05/24 14:43:16 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\nsprs.dll
      [2013/05/24 14:40:44 | 000,001,025 | ---- | C] () -- C:\windows\SysWow64\sysprs7.dll
      [2013/05/24 14:40:44 | 000,000,205 | ---- | C] () -- C:\windows\SysWow64\lsprst7.dll
      [2013/04/17 23:26:22 | 000,002,828 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
      [2013/04/17 23:26:22 | 000,000,008 | RHS- | C] () -- C:\ProgramData\9BF2E4B39D.sys
      [2013/04/17 17:59:48 | 000,008,192 | ---- | C] () -- C:\windows\SysWow64\srvany.exe
      [2012/11/15 00:44:22 | 000,083,968 | ---- | C] () -- C:\windows\SysWow64\OEMLicense.dll
      [2012/10/19 09:28:38 | 000,000,032 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\cbl32.dll
      [2012/08/06 09:36:22 | 000,598,780 | ---- | C] () -- C:\windows\SysWow64\igvpkrng700.bin
      [2012/08/06 09:36:08 | 000,064,512 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
      [2012/08/06 09:36:06 | 000,755,048 | ---- | C] () -- C:\windows\SysWow64\igcodeckrng700.bin
      [2012/07/26 03:13:10 | 000,215,943 | ---- | C] () -- C:\windows\SysWow64\dssec.dat
      [2012/07/26 03:13:09 | 000,000,741 | ---- | C] () -- C:\windows\SysWow64\NOISE.DAT
      [2012/07/26 02:21:26 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat
      [2012/07/25 20:17:42 | 000,043,520 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll
      [2012/07/25 15:37:29 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin
      [2012/07/25 15:28:31 | 000,364,544 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll
      [2012/06/02 09:31:19 | 000,673,088 | ---- | C] () -- C:\windows\SysWow64\mlang.dat
      [2012/04/20 16:59:44 | 000,001,536 | ---- | C] () -- C:\windows\SysWow64\IusEventLog.dll

      ========== ZeroAccess Check ==========


      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2013/03/06 01:31:28 | 019,758,592 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2013/03/06 00:03:37 | 017,561,600 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/25 22:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/25 22:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/25 22:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2013/04/16 22:48:56 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Origin
      [2013/06/13 01:04:52 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\PDF Architect
      [2013/06/13 00:59:57 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Research In Motion
      [2013/04/24 16:16:51 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\sMedio
      [2013/04/17 18:23:06 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\WildTangent
      [2013/04/16 21:18:40 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\WinBatch

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2013/07/05 10:00:42 | 000,002,944 | ---- | M] () -- C:\AdwCleaner[S1].txt
      [2012/07/25 22:44:30 | 000,398,156 | RHS- | M] () -- C:\bootmgr
      [2012/06/02 09:30:55 | 000,000,001 | -HS- | M] () -- C:\BOOTNXT
      [2013/07/05 10:01:50 | 3351,474,176 | -HS- | M] () -- C:\hiberfil.sys
      [2013/06/06 02:20:21 | 000,009,936 | ---- | M] () -- C:\log.txt
      [2013/07/05 10:01:51 | 738,197,504 | -HS- | M] () -- C:\pagefile.sys
      [2013/07/05 10:01:52 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
      [2013/04/17 17:33:36 | 000,003,384 | ---- | M] () -- C:\{06F85C51-82EE-45B3-8F75-690FE5E01463}

      < End of report >


      Te ofreceria una por ser viernes pero mejor un para que me puedas ayudar sin resaca!!..

      PREGUNTAS:
      1. Ves algo extraño en los Logs?
      2. De los procesos activos en el inicio hay alguno que sea innecesario?

      Saludes..

      Steven
      P

    5. #5
      Moderador Gral.
      Avatar de Javierhf
      Registrado
      jun 2006
      Ubicación
      España - Madrid
      Mensajes
      15.599

      Re: Demora de 10 minutos para iniciar

      Ahora sigue estos pasos :

      MUY Importante ~ Realiza una copia de seguridad del registro con >> Erunt.

      Y después ejecuta de nuevo OTL.exe

      Copia y Pega el código que está dentro del recuadro de abajo en la sección Análisis Personalizado / Código de Reparación.

      Código:
      :OTL
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://se.earching.info:8080/search.htm?source=
      IE - HKU\S-1-5-21-760483349-2075533751-1959326742-1001\..\SearchScopes\{AD20CD7E-E5CF-431F-84AE-45DEF9BB08C1}: "URL" = http://se.earching.info:8080/search.htm?source=&q={searchTerms}
      FF - user.js - File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found
      CHR - default_search_provider: Search The Web(HTM) ()
      CHR - default_search_provider: search_url = http://se.earching.info:8080/search.htm?source=&q={searchTerms}
      CHR - homepage: http://se.earching.info:8080/search.htm?source=
      O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O4:64bit: - HKLM..\Run: [] File not found
      O4:64bit: - HKLM..\Run: [CancelAutoPlay.exe] "C:\Program Files (x86)\UNE 4G REVOLUTION\Bin\CancelAutoPlay.exe" File not found
      O4:64bit: - HKLM..\Run: [zLoader.exe] "C:\Program Files (x86)\UNE 4G REVOLUTION\Bin\zLoader.exe" File not found
      O4 - HKLM..\Run: [] File not found
      O8:64bit: - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
      O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
      O9 - Extra 'Tools' menuitem : Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O30 - LSA: Security Packages - (livessp) - File not found
      O33 - MountPoints2\{c0c4bc92-e471-11e2-be8c-089e017bd417}\Shell - "" = AutoRun
      O33 - MountPoints2\{c0c4bc92-e471-11e2-be8c-089e017bd417}\Shell\AutoRun\command - "" = "F:\UNE_4G_REVOLUTION.exe" /s
      O33 - MountPoints2\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\Shell - "" = AutoRun
      O33 - MountPoints2\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\Shell\AutoRun\command - "" = "F:\UNE_4G_REVOLUTION.exe" /s
      :Files
      ipconfig /flushdns /c
      ipconfig /renew /c
      :Commands
      [PURITY]
      [EMPTYFLASH]
      [EMPTYTEMP]
      [RESETHOSTS]
      Presiona el Botón Reparar para lanzar la eliminación. Después presionas en OK.

      OTL va a Reiniciar el ordenador para completar la eliminación.

      Guardas el nuevo reporte generado, y lo copias y pegas en tu próxima respuesta, coméntanos también como sigue el ordenador ahora, en relación al problema planteado.

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #6
      Usuario Avatar de stemavi
      Registrado
      ago 2006
      Ubicación
      Barranquilla, C
      Mensajes
      19

      Re: Demora de 10 minutos para iniciar

      Uppssssss...

      Javier....

      Realice lo que dijiste y al reiniciar salio el log pero lo cerre por accidente y no me pidio para guardarlo.... Lo estuve buscando pero parece que no lo guardo automaticamente el programa..

      que hacemos?

      Por un dia corrio excelente pero despues a la noche continua igual.. No sera algun programa de inicio que demora en cargar o alguna actualizacion de windows?

      Gracias

      Steven

    7. #7
      Moderador Gral.
      Avatar de Javierhf
      Registrado
      jun 2006
      Ubicación
      España - Madrid
      Mensajes
      15.599

      Re: Demora de 10 minutos para iniciar

      Ese informe búscalo en >> C:\_OTL\MovedFiles, es un fichero de texto con este formato "MMDDAAAA_HHMMSS.log"

      Saludos.
      Quien no lo intenta no lo consigue | ;-)

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de stemavi
      Registrado
      ago 2006
      Ubicación
      Barranquilla, C
      Mensajes
      19

      Re: Demora de 10 minutos para iniciar

      AUXILIOOOOOOO

      No Se que hicimos pero aunque el computador si carga mas rapido (Gracias por cierto) ahora no me abre ningun APP.. Estoy intentando entrar a skype y probe con otros apps y ahora solo abren pero no cargan.. Se quedan en la pantalla inicial y windows los minimiza automaticamente.. Pero nunca cargan solo abren y ya..

      que habremos desactivado? que hago?

      Gracias..

      Steven

      (Son los apps de windows store).. Ya intnete desactivarlos y volverlos a instalar pero parece que tuvieran algun bloqueo.. ya desactive el antivirus y el firewall e intente abrirlos pero da el mismo resultado...

      Gracias..


      All processes killed
      ========== OTL ==========
      HKU\S-1-5-21-760483349-2075533751-1959326742-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
      Registry key HKEY_USERS\S-1-5-21-760483349-2075533751-1959326742-1001\Software\Microsoft\Internet Explorer\SearchScopes\{AD20CD7E-E5CF-431F-84AE-45DEF9BB08C1}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AD20CD7E-E5CF-431F-84AE-45DEF9BB08C1}\ not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
      Use Chrome's Settings page to remove the default_search_provider items.
      Use Chrome's Settings page to remove the default_search_provider items.
      Use Chrome's Settings page to change the HomePage.
      64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\CancelAutoPlay.exe deleted successfully.
      64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\zLoader.exe deleted successfully.
      Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
      64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Enviar a OneNote\ deleted successfully.
      64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\E&xportar a Microsoft Excel\ deleted successfully.
      Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Enviar a OneNote\ not found.
      Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\E&xportar a Microsoft Excel\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\ deleted successfully.
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
      File Protocol\Handler\ms-help - No CLSID value found not found.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
      File Protocol\Handler\wlpg - No CLSID value found not found.
      64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
      64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
      Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
      Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages:livessp deleted successfully.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c0c4bc92-e471-11e2-be8c-089e017bd417}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c0c4bc92-e471-11e2-be8c-089e017bd417}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c0c4bc92-e471-11e2-be8c-089e017bd417}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c0c4bc92-e471-11e2-be8c-089e017bd417}\ not found.
      File "F:\UNE_4G_REVOLUTION.exe" /s not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\ deleted successfully.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\ not found.
      Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\ not found.
      Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c0c4bcd5-e471-11e2-be8c-089e017bd417}\ not found.
      File "F:\UNE_4G_REVOLUTION.exe" /s not found.
      ========== FILES ==========
      < ipconfig /flushdns /c >
      Configuraci¢n IP de Windows
      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
      E:\Programas nuevos\antivirus\cmd.bat deleted successfully.
      E:\Programas nuevos\antivirus\cmd.txt deleted successfully.
      < ipconfig /renew /c >
      Configuraci¢n IP de Windows
      No se puede realizar ninguna operaci¢n en Conexi¢n de *rea local* 1 mientras los medios
      est‚n desconectados.
      No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
      est‚n desconectados.
      Adaptador de LAN inal*mbrica Conexi¢n de *rea local* 1:
      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :
      Adaptador de LAN inal*mbrica Wi-Fi:
      Sufijo DNS espec¡fico para la conexi¢n. . :
      V¡nculo: direcci¢n IPv6 local. . . : fe80::dd48:bf7:5c31:8f22%13
      Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.15
      M*scara de subred . . . . . . . . . . . . : 255.255.255.0
      Puerta de enlace predeterminada . . . . . : 192.168.0.1
      Adaptador de Ethernet Ethernet:
      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . : distrito.local
      Adaptador de t£nel Teredo Tunneling Pseudo-Interface:
      Sufijo DNS espec¡fico para la conexi¢n. . :
      Direcci¢n IPv6 . . . . . . . . . . : 2001:0:9d38:6ab8:4b0:c37:3f57:fff0
      V¡nculo: direcci¢n IPv6 local. . . : fe80::4b0:c37:3f57:fff0%19
      Puerta de enlace predeterminada . . . . . : ::
      Adaptador de t£nel isatap.{A71196F8-67A9-441A-8C26-431423CB060A}:
      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :
      E:\Programas nuevos\antivirus\cmd.bat deleted successfully.
      E:\Programas nuevos\antivirus\cmd.txt deleted successfully.
      ========== COMMANDS ==========

      [EMPTYFLASH]

      User: All Users

      User: Default
      ->Flash cache emptied: 57472 bytes

      User: Default User
      ->Flash cache emptied: 0 bytes

      User: Public

      User: Steven
      ->Flash cache emptied: 61146 bytes

      Total Flash Files Cleaned = 0,00 mb


      [EMPTYTEMP]

      User: All Users

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      User: Public

      User: Steven
      ->Temp folder emptied: 1559143 bytes
      ->Temporary Internet Files folder emptied: 133669 bytes
      ->Java cache emptied: 171642 bytes
      ->FireFox cache emptied: 342582901 bytes
      ->Google Chrome cache emptied: 0 bytes
      ->Flash cache emptied: 0 bytes

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 64466 bytes
      %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
      RecycleBin emptied: 39785171 bytes

      Total Files Cleaned = 366,00 mb

      C:\windows\System32\drivers\etc\Hosts moved successfully.
      HOSTS file reset successfully

      OTL by OldTimer - Version 3.2.69.0 log created on 07072013_001742

      Files\Folders moved on Reboot...
      File move failed. C:\Users\Steven\AppData\Local\Temp\7zS21D4\HPSLPSVC64.DLL scheduled to be moved on reboot.
      File\Folder C:\Users\Steven\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!
      C:\Users\Steven\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...

    9. #9
      Usuario Avatar de stemavi
      Registrado
      ago 2006
      Ubicación
      Barranquilla, C
      Mensajes
      19

      Re: Demora de 10 minutos para iniciar

      Hola. Ya intente modificar el registro con esta guia pero no funciono:
      No se abren aplicaciones metro en Windows 8 [RESUELTO] Actualizado 2013 - YouTube

    10. #10
      Usuario Avatar de stemavi
      Registrado
      ago 2006
      Ubicación
      Barranquilla, C
      Mensajes
      19

      Re: Demora de 10 minutos para iniciar

      Ya intente revizar el firewall de windows pero dice que esta siendo administrado por norton 360..

    Página 1 de 2 12 ÚltimoÚltimo