Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Chrome.exe process turned into notepad.exe and eating cpu usage.

Started by theji , Dec 19 2012 02:04 AM

  • Please log in to reply

#1
theji
Posted 19 December 2012 - 02:04 AM

theji

    New Member

  • Member
  • Pip
  • 1 posts
Hi

Today I had this problem: even when I closed chrome, I got 2 processes called Chrome.exe in the task manager eating a lot of cpu and some virtual memory.
Next thing I did was uninstalling chrome, but now there are 2 processes called notepad.exe doing the same thing. I couldnt find anything helpful on how to fix this, tried a bunch of malware removal tools and stuff but nothing.

thanks in advance


OTL logfile created on: 19/12/2012 04:56:14 a.m. - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Administrador\Mis documentos\Descargas
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00002C0A | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

1,50 Gb Total Physical Memory | 0,67 Gb Available Physical Memory | 45,00% Memory free
3,35 Gb Paging File | 2,59 Gb Available in Paging File | 77,40% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
Drive C: | 58,59 Gb Total Space | 13,22 Gb Free Space | 22,57% Space Free | Partition Type: NTFS
Drive D: | 94,78 Gb Total Space | 2,77 Gb Free Space | 2,92% Space Free | Partition Type: NTFS

Computer Name: NAVY | User Name: Administrador | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Administrador\Mis documentos\Descargas\OTL.exe (OldTimer Tools)
PRC - C:\Archivos de programa\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Archivos de programa\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Archivos de programa\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Archivos de programa\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Archivos de programa\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Archivos de programa\TaskSwitchXP\TaskSwitchXP.exe (Alexander Avdonin)
PRC - C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
PRC - C:\Archivos de programa\ASUS\Probe\AsusProb.exe ()


========== Modules (No Company Name) ==========

MOD - C:\Archivos de programa\Alwil Software\Avast5\defs\12121801\algo.dll ()
MOD - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
MOD - C:\Archivos de programa\Mozilla Firefox\mozjs.dll ()
MOD - C:\Archivos de programa\Notepad++\NppShell_01.dll ()
MOD - C:\Archivos de programa\WinRAR\RarExt.dll ()
MOD - C:\Archivos de programa\Unlocker\UnlockerCOM.dll ()
MOD - C:\Archivos de programa\ASUS\Probe\Asmi8712.dll ()
MOD - C:\Archivos de programa\ASUS\Probe\COLM7578.DLL ()
MOD - C:\Archivos de programa\ASUS\Probe\coDmi.dll ()
MOD - C:\Archivos de programa\ASUS\Probe\AsusProb.exe ()
MOD - C:\WINDOWS\system32\pdfcmnnt.dll ()
MOD - C:\Archivos de programa\ASUS\Probe\CODISK.DLL ()
MOD - C:\Archivos de programa\ASUS\Probe\COLMICO.DLL ()
MOD - C:\Archivos de programa\ASUS\Probe\DISKICO.DLL ()
MOD - C:\WINDOWS\system\BCBSMP35.BPL ()


========== Services (SafeList) ==========

SRV - (winTime) -- C:\WINDOWS\system32\oqfxrvp.dll File not found
SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found
SRV - (Steam Client Service) -- C:\Archivos de programa\Archivos comunes\Steam\SteamService.exe (Valve Corporation)
SRV - (MozillaMaintenance) -- C:\Archivos de programa\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (nvUpdatusService) -- C:\Archivos de programa\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (SkypeUpdate) -- C:\Archivos de programa\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (avast! Antivirus) -- C:\Archivos de programa\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (JavaQuickStarterService) -- C:\Archivos de programa\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (FLEXnet Licensing Service) -- C:\Archivos de programa\Archivos comunes\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (npggsvc) -- C:\WINDOWS\system32\GameMon.des (INCA Internet Co., Ltd.)
SRV - (wlidsvc) -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV - (odserv) -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)


========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (VMnetAdapter) -- system32\DRIVERS\vmnetadapter.sys File not found
DRV - (snpstd) -- system32\DRIVERS\snpstd.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (npkcrypt) -- C:\Juegos\Interlude\system\npkcrypt.sys File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (GGSAFERDriver) -- C:\Archivos de programa\Garena\safedrv.sys File not found
DRV - (dgderdrv) -- System32\drivers\dgderdrv.sys File not found
DRV - (Changer) -- File not found
DRV - (Bcim) -- system32\DRIVERS\bcim.sys File not found
DRV - (a88zblc0) -- File not found
DRV - (a4aipgpg) -- File not found
DRV - ({1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}) -- C:\Archivos de programa\CyberLink\PowerDVD\PowerDVD10\NavFilter\000.fcl File not found
DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (sptd) -- C:\WINDOWS\system32\drivers\sptd.sys ()
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (atksgt) -- C:\WINDOWS\system32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\WINDOWS\system32\drivers\lirsgt.sys ()
DRV - (nm) -- C:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (rtl8139) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (hotcore3) -- C:\WINDOWS\system32\drivers\hotcore3.sys (Paragon Software Group)
DRV - (ms_mpu401) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)
DRV - (UnlockerDriver5) -- C:\Archivos de programa\Unlocker\UnlockerDriver5.sys ()
DRV - (AmdK8) -- C:\WINDOWS\system32\drivers\AmdK8.sys (Advanced Micro Devices)
DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
DRV - (ALCXWDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
DRV - (aslm75) -- C:\WINDOWS\system32\drivers\ASLM75.SYS ()


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Reg Error: Value error.
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKLM\..\SearchScopes\{CD0F6050-0E93-4F7F-9D39-0729481AE7EC}: "URL" = http://www.google.es...F;FORID:1&hl=es
IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect...e=tb50winampie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.busca7.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,DefaultNetworkProfile = 519578151
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ar.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-ar
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = A6 7C 3F 1B 54 D2 CD 01 [binary data]
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.es...ID:1&hl=es&q=%s
IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...rc=IE-SearchBox
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...00000085449a40c
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2504091
IE - HKCU\..\SearchScopes\{CD0F6050-0E93-4F7F-9D39-0729481AE7EC}: "URL" = http://www.google.es...F;FORID:1&hl=es
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: "Google Powered Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledAddons: es-AR%40dictionaries.addons.mozilla.org:2.5
FF - prefs.js..extensions.enabledAddons: %7Ba3a5c777-f583-4fef-9380-ab4add1bc2a8%7D:4.3
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Archivos de programa\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Archivos de programa\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Archivos de programa\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: null\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@raidcall.com/RCplugin: C:\Documents and Settings\Administrador\Datos de programa\raidcall\plugins\webplugin_en.dll (Raidcall)
FF - HKLM\Software\MozillaPlugins\@raidcall.kr/RCplugin: C:\Documents and Settings\Administrador\Datos de programa\RCKR\plugins\nprcplugin.dll (Raidcall)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Archivos de programa\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Documents and Settings\Administrador\Mis documentos\Downloads\null\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Archivos de programa\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Archivos de programa\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/02/08 03:44:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\[email protected]: C:\Archivos de programa\Alwil Software\Avast5\WebRep\FF [2012/12/19 01:33:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Archivos de programa\Mozilla Firefox\components [2012/12/06 16:46:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Archivos de programa\Mozilla Firefox\plugins [2012/12/06 16:46:05 | 000,000,000 | ---D | M]

[2008/11/13 23:21:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Extensions
[2012/12/17 19:17:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\extensions
[2012/11/07 14:54:26 | 000,000,000 | ---D | M] (Vuze Remote Community Toolbar) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2011/04/08 23:58:57 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\extensions\[email protected]
[2010/10/26 21:00:18 | 000,000,000 | ---D | M] (Diccionario español Argentina) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\extensions\[email protected]
[2012/09/15 01:02:24 | 000,000,000 | ---D | M] (ProxTube - Unblock YouTube) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\extensions\[email protected]
[2012/12/17 19:17:46 | 000,532,971 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2012/10/04 05:32:41 | 000,013,822 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\extensions\{a3a5c777-f583-4fef-9380-ab4add1bc2a8}.xpi
[2012/11/23 23:32:54 | 000,804,627 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2010/10/26 20:42:32 | 000,000,903 | ---- | M] () -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\searchplugins\conduit.xml
[2012/11/26 17:03:01 | 000,002,552 | ---- | M] () -- C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\4wpuxdjh.default\searchplugins\mngr.xml
[2012/12/06 16:45:56 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
[2012/12/06 16:46:20 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Archivos de programa\mozilla firefox\components\browsercomps.dll
[2010/07/07 03:02:46 | 000,151,552 | ---- | M] (PopCap Games) -- C:\Archivos de programa\mozilla firefox\plugins\nppopcaploader.dll
[2011/07/11 18:48:12 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Archivos de programa\mozilla firefox\plugins\npwachk.dll
[2012/11/26 17:02:43 | 000,002,365 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\babylon.xml
[2012/10/20 01:00:34 | 000,002,465 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\bing.xml
[2012/12/06 16:46:16 | 000,004,095 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\drae.xml
[2012/12/06 16:46:16 | 000,001,356 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\eBay-es.xml
[2012/10/20 01:00:34 | 000,002,058 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\twitter.xml
[2012/12/06 16:46:16 | 000,001,391 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\wikipedia-es.xml
[2012/12/06 16:46:16 | 000,001,315 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\yahoo-es.xml

O1 HOSTS File: ([2008/12/08 19:30:40 | 000,000,824 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 mpa.one.microsoft.com
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Archivos de programa\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Archivos de programa\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKCU\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Archivos de programa\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Adobe ARM] C:\Archivos de programa\Archivos comunes\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ASUS Probe] C:\Archivos de programa\ASUS\Probe\AsusProb.exe ()
O4 - HKLM..\Run: [avast5] C:\Archivos de programa\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Archivos de programa\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKCU..\Run: [TaskSwitchXP] C:\Archivos de programa\TaskSwitchXP\TaskSwitchXP.exe (Alexander Avdonin)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: Policies = C:\WINDOWS\system32\Windowns\windowns.exe ()
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zon...kr.cab56986.cab (Checkers Class)
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} http://www.fileplane..._2.3.10.115.cab (CDownloadCtrl Object)
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zon...wn.cab56986.cab (Solitaire Showdown Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1288998782859 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1289001383312 (MUWebControl Class)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zon...er.cab56986.cab (Minesweeper Flags Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EC083AA6-355A-4E3E-9E5A-C989898FA32A}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F0A8EBBB-973D-4889-A594-0833993F7E36}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL File not found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL File not found
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Archivos de programa\Archivos comunes\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\docume~1\alluse~1\datosd~1\browse~1\25911~1.18\{c16c1~1\mngr.dll) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (XPize_Logon.exe) - C:\WINDOWS\System32\XPize_Logon.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Mi página de inicio actual) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/11/13 19:40:25 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{15c10319-ced3-11dd-89d8-0013d473f905}\Shell - "" = AutoRun
O33 - MountPoints2\{15c10319-ced3-11dd-89d8-0013d473f905}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE .\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx,ahaezedrn
O33 - MountPoints2\{433175d9-40ab-11de-8aa0-0013d473f905}\Shell - "" = AutoRun
O33 - MountPoints2\{433175d9-40ab-11de-8aa0-0013d473f905}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE .\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx,ahaezedrn
O33 - MountPoints2\{5aa4e1b2-5e3f-11e1-86a6-0013d473f905}\Shell - "" = AutoRun
O33 - MountPoints2\{5aa4e1b2-5e3f-11e1-86a6-0013d473f905}\Shell\AutoRun\command - "" = G:\KODAK_Camera_Setup_App.exe
O33 - MountPoints2\{b51a8d4b-896f-11e0-84ed-0013d473f905}\Shell\AutoRun\command - "" = golden/fish.exe
O33 - MountPoints2\{b51a8d4b-896f-11e0-84ed-0013d473f905}\Shell\Explore\command - "" = golden/fish.exe
O33 - MountPoints2\{b51a8d4b-896f-11e0-84ed-0013d473f905}\Shell\Open\command - "" = golden/fish.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012/12/19 03:41:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Mis documentos\Descargas
[2012/12/19 03:40:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Mis documentos\Mis Documentos
[2012/12/19 01:57:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Spybot - Search & Destroy
[2012/12/17 15:51:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\install
[2012/12/17 04:11:41 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\Skype
[2012/12/17 04:10:54 | 000,000,000 | R--D | C] -- C:\Archivos de programa\Skype
[2012/12/10 02:35:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrador\Recent
[2012/12/08 02:50:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Datos de programa\Warner Bros. Interactive Entertainment
[2012/12/07 05:55:30 | 000,000,000 | ---D | C] -- C:\Archivos de programa\AGEIA Technologies
[2012/12/06 16:45:54 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Mozilla Firefox
[2012/12/05 20:15:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Datos de programa\RCKR
[2012/11/28 01:03:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Datos de programa\Malwarebytes
[2012/11/28 01:02:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Malwarebytes
[2012/11/27 02:21:10 | 005,955,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvopencl.dll
[2012/11/27 02:21:09 | 000,889,192 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispgenco32.dll
[2012/11/25 01:29:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Ubisoft Game Launcher
[2012/11/24 16:57:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documentos\NativeFus_Log
[2012/11/24 16:57:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documentos\CrashDump
[2012/11/24 16:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Samsung
[2012/11/24 16:56:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Datos de programa\Samsung
[2012/11/24 16:54:24 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\WINDOWS\System32\Redemption.dll
[2012/11/24 16:52:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Samsung
[2012/11/23 00:16:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Trymedia
[2012/11/23 00:07:27 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Microsoft XNA
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/12/19 03:31:39 | 000,000,827 | ---- | M] () -- C:\Documents and Settings\Administrador\Datos de programa\Administradorv3.4.2.2.vbs
[2012/12/19 03:08:04 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2012/12/19 02:49:52 | 000,000,332 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2012/12/19 02:49:24 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/12/19 02:48:41 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/12/19 02:45:14 | 000,000,082 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2012/12/19 01:33:38 | 000,002,958 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012/12/19 01:25:58 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012/12/19 01:25:58 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012/12/10 02:42:15 | 000,000,220 | ---- | M] () -- C:\Documents and Settings\Administrador\Escritorio\Counter-Strike Global Offensive.url
[2012/12/08 00:39:22 | 000,000,220 | ---- | M] () -- C:\Documents and Settings\Administrador\Escritorio\Half-Life 2.url
[2012/12/07 05:53:09 | 001,071,128 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012/12/07 05:53:09 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012/12/07 05:53:03 | 001,071,128 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012/12/03 12:40:50 | 019,460,096 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2012/12/03 12:40:50 | 017,551,360 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2012/12/03 12:40:50 | 007,606,272 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2012/12/03 12:40:50 | 005,955,584 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvopencl.dll
[2012/12/03 12:40:50 | 004,153,600 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2012/12/03 12:40:50 | 002,611,560 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2012/12/03 12:40:50 | 002,441,728 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2012/12/03 12:40:50 | 002,283,884 | ---- | M] () -- C:\WINDOWS\System32\nvdata.data
[2012/12/03 12:40:50 | 001,874,280 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2012/12/03 12:40:50 | 001,011,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2012/12/03 12:40:50 | 000,889,192 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispgenco32.dll
[2012/12/03 12:40:50 | 000,012,951 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb
[2012/12/02 02:37:17 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012/12/01 01:56:30 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2012/12/01 01:56:29 | 000,286,720 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2012/12/01 01:56:29 | 000,278,528 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2012/12/01 01:56:29 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2012/12/01 01:56:29 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2012/12/01 01:56:29 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2012/12/01 01:56:29 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2012/12/01 01:56:28 | 000,335,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2012/12/01 01:56:28 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2012/12/01 01:56:28 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2012/12/01 01:56:28 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2012/12/01 01:56:28 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2012/12/01 01:56:28 | 000,229,376 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2012/12/01 01:56:27 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2012/12/01 01:56:27 | 000,270,336 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2012/12/01 01:56:27 | 000,270,336 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2012/12/01 01:56:27 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2012/12/01 01:56:27 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2012/12/01 01:56:26 | 000,335,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2012/12/01 01:56:26 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2012/12/01 01:56:26 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2012/12/01 01:56:26 | 000,266,240 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2012/12/01 01:56:26 | 000,262,144 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2012/12/01 01:56:26 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2012/12/01 01:56:26 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2012/12/01 01:56:25 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2012/12/01 01:56:25 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2012/12/01 01:56:25 | 000,126,976 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2012/12/01 01:53:45 | 015,524,712 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2012/12/01 01:53:43 | 000,143,720 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2012/12/01 01:53:43 | 000,108,392 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2012/12/01 01:52:17 | 000,054,272 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2012/11/27 02:48:05 | 000,001,457 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Bastion.lnk
[2012/11/24 16:48:13 | 000,575,500 | ---- | M] () -- C:\WINDOWS\System32\perfh00A.dat
[2012/11/24 16:48:13 | 000,506,980 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/11/24 16:48:13 | 000,114,780 | ---- | M] () -- C:\WINDOWS\System32\perfc00A.dat
[2012/11/24 16:48:13 | 000,090,236 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/12/19 02:45:14 | 000,000,082 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2012/12/19 01:33:38 | 000,000,332 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2012/12/19 01:12:47 | 000,000,789 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Mozilla Firefox.lnk
[2012/12/17 15:48:54 | 000,000,827 | ---- | C] () -- C:\Documents and Settings\Administrador\Datos de programa\Administradorv3.4.2.2.vbs
[2012/12/17 04:11:47 | 000,001,745 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Skype.lnk
[2012/12/10 02:42:15 | 000,000,220 | ---- | C] () -- C:\Documents and Settings\Administrador\Escritorio\Counter-Strike Global Offensive.url
[2012/12/08 00:39:22 | 000,000,220 | ---- | C] () -- C:\Documents and Settings\Administrador\Escritorio\Half-Life 2.url
[2012/12/07 05:51:12 | 000,012,951 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2012/11/27 02:48:05 | 000,001,457 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Bastion.lnk
[2012/10/29 12:09:28 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2012/10/29 12:09:28 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2012/10/29 12:09:28 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2012/10/29 12:09:28 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2012/04/06 01:08:55 | 000,000,047 | ---- | C] () -- C:\Documents and Settings\Administrador\.mjsync_es_ES
[2012/03/08 02:08:57 | 001,071,128 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012/03/08 02:08:57 | 001,071,128 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012/03/08 02:08:57 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012/03/08 02:08:30 | 002,283,884 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012/03/03 15:05:01 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Administrador\Configuración local\Datos de programa\PUTTY.RND
[2012/02/29 16:21:24 | 000,042,392 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2011/10/25 20:10:56 | 000,006,084 | ---- | C] () -- C:\WINDOWS\PSPICEEV.INI
[2011/10/25 19:49:41 | 000,043,008 | ---- | C] () -- C:\WINDOWS\System32\ltfil60n.dll
[2011/10/25 19:49:41 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\lfwpg60n.dll
[2011/10/25 19:49:41 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\lfwmf60n.dll
[2011/10/25 19:49:40 | 000,176,128 | ---- | C] () -- C:\WINDOWS\System32\lffax60n.dll
[2011/10/25 19:49:40 | 000,141,824 | ---- | C] () -- C:\WINDOWS\System32\lfcmp60n.dll
[2011/10/25 19:49:40 | 000,110,080 | ---- | C] () -- C:\WINDOWS\System32\lfpng60n.dll
[2011/10/25 19:49:40 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\lftif60n.dll
[2011/10/25 19:49:40 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\lfpcx60n.dll
[2011/10/25 19:49:40 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\lfpct60n.dll
[2011/10/25 19:49:40 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\lfeps60n.dll
[2011/10/25 19:49:40 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\lfbmp60n.dll
[2011/10/25 19:49:40 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\lfpsd60n.dll
[2011/10/25 19:49:40 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\lftga60n.dll
[2011/10/25 19:49:40 | 000,018,432 | ---- | C] () -- C:\WINDOWS\System32\lfmsp60n.dll
[2011/10/25 19:49:40 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\lfmac60n.dll
[2011/10/25 19:49:40 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\implode.dll
[2011/10/25 19:40:06 | 000,319,696 | ---- | C] () -- C:\WINDOWS\System32\BOCOF.DLL
[2011/10/25 19:39:48 | 000,002,595 | ---- | C] () -- C:\WINDOWS\pspice91.ini
[2011/10/24 18:06:06 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2011/10/16 02:51:25 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2011/10/16 02:51:21 | 000,650,752 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011/10/16 02:51:21 | 000,243,200 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011/10/16 02:51:20 | 000,074,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011/09/03 01:19:17 | 000,000,558 | ---- | C] () -- C:\WINDOWS\hpomdl37.dat.temp
[2011/05/23 05:21:18 | 000,479,458 | ---- | C] () -- C:\Documents and Settings\LocalService\Configuración local\Datos de programa\WPFFontCache_v0400-S-1-5-21-1390067357-562591055-839522115-500-0.dat
[2011/05/23 05:21:13 | 000,550,502 | ---- | C] () -- C:\Documents and Settings\LocalService\Configuración local\Datos de programa\WPFFontCache_v0400-System.dat
[2011/04/22 00:05:41 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011/04/09 18:55:28 | 000,179,261 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2011/02/18 18:36:40 | 004,244,744 | ---- | C] () -- C:\WINDOWS\System32\qtp-mt334.dll
[2011/02/18 18:36:40 | 000,247,560 | ---- | C] () -- C:\WINDOWS\System32\prgiso.dll
[2011/02/18 18:36:40 | 000,013,576 | ---- | C] () -- C:\WINDOWS\System32\wnaspi32.dll
[2010/08/06 22:03:08 | 000,000,718 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2009/06/05 22:18:05 | 000,000,142 | ---- | C] () -- C:\Documents and Settings\Administrador\Configuración local\Datos de programa\fusioncache.dat
[2009/03/10 19:44:12 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Administrador\.org.eclipse.epp.usagedata.recording.userId
[2008/11/18 13:45:30 | 000,053,248 | ---- | C] () -- C:\Documents and Settings\Administrador\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2008/11/13 19:51:12 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/14 07:48:38 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 07:52:53 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 07:48:48 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 520 bytes -> C:\Documents and Settings\All Users\Datos de programa\TEMP:05EE1EEF

< End of report >


OTL Extras logfile created on: 19/12/2012 04:56:14 a.m. - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Administrador\Mis documentos\Descargas
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00002C0A | Country: Argentina | Language: ESS | Date Format: dd/MM/yyyy

1,50 Gb Total Physical Memory | 0,67 Gb Available Physical Memory | 45,00% Memory free
3,35 Gb Paging File | 2,59 Gb Available in Paging File | 77,40% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
Drive C: | 58,59 Gb Total Space | 13,22 Gb Free Space | 22,57% Space Free | Partition Type: NTFS
Drive D: | 94,78 Gb Total Space | 2,77 Gb Free Space | 2,92% Space Free | Partition Type: NTFS

Computer Name: NAVY | User Name: Administrador | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = FirefoxHTML] -- C:\Archivos de programa\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
http [open] -- "C:\Archivos de programa\Mozilla Firefox\firefox.exe" -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Archivos de programa\Mozilla Firefox\firefox.exe" -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /k cd "%L" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.EnqueueAndPlay] -- "C:\Archivos de programa\Winamp\winamp.exe" /ADD "\\QUEUE" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"58294:TCP" = 58294:TCP:*:Enabled:Pando Media Booster
"58294:UDP" = 58294:UDP:*:Enabled:Pando Media Booster
"57560:TCP" = 57560:TCP:*:Enabled:Pando Media Booster
"57560:UDP" = 57560:UDP:*:Enabled:Pando Media Booster
"57745:TCP" = 57745:TCP:*:Enabled:Pando Media Booster
"57745:UDP" = 57745:UDP:*:Enabled:Pando Media Booster
"56411:TCP" = 56411:TCP:*:Enabled:Pando Media Booster
"56411:UDP" = 56411:UDP:*:Enabled:Pando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"9431:TCP" = 9431:TCP:*:Enabled:ostskw
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"5353:TCP" = 5353:TCP:*:Enabled:Adobe CSI CS4
"58294:TCP" = 58294:TCP:*:Enabled:Pando Media Booster
"58294:UDP" = 58294:UDP:*:Enabled:Pando Media Booster
"57560:TCP" = 57560:TCP:*:Enabled:Pando Media Booster
"57560:UDP" = 57560:UDP:*:Enabled:Pando Media Booster
"8381:TCP" = 8381:TCP:*:Enabled:League of Legends Launcher
"8381:UDP" = 8381:UDP:*:Enabled:League of Legends Launcher
"6881:TCP" = 6881:TCP:*:Enabled:League of Legends Launcher
"6881:UDP" = 6881:UDP:*:Enabled:League of Legends Launcher
"6882:TCP" = 6882:TCP:*:Enabled:League of Legends Launcher
"6882:UDP" = 6882:UDP:*:Enabled:League of Legends Launcher
"6967:TCP" = 6967:TCP:*:Enabled:League of Legends Launcher
"6967:UDP" = 6967:UDP:*:Enabled:League of Legends Launcher
"8382:TCP" = 8382:TCP:*:Enabled:League of Legends Launcher
"8382:UDP" = 8382:UDP:*:Enabled:League of Legends Launcher
"8393:TCP" = 8393:TCP:*:Enabled:League of Legends Lobby
"8393:UDP" = 8393:UDP:*:Enabled:League of Legends Lobby
"8390:TCP" = 8390:TCP:*:Enabled:League of Legends Game Client
"8390:UDP" = 8390:UDP:*:Enabled:League of Legends Game Client
"6974:TCP" = 6974:TCP:*:Enabled:League of Legends Launcher
"6974:UDP" = 6974:UDP:*:Enabled:League of Legends Launcher
"57745:TCP" = 57745:TCP:*:Enabled:Pando Media Booster
"57745:UDP" = 57745:UDP:*:Enabled:Pando Media Booster
"56411:TCP" = 56411:TCP:*:Enabled:Pando Media Booster
"56411:UDP" = 56411:UDP:*:Enabled:Pando Media Booster

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe" = C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
"C:\Archivos de programa\Pando Networks\Media Booster\PMB.exe" = C:\Archivos de programa\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqtra08.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqste08.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hposid01.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqkygrp.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqcopy2.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqcopy2.exe:*:Enabled:hpqcopy2.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpoews01.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqgpc01.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqusgm.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqusgh.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe
"C:\Archivos de programa\HP\HP Software Update\hpwucli.exe" = C:\Archivos de programa\HP\HP Software Update\hpwucli.exe:*:Enabled:hpwucli.exe
"C:\Archivos de programa\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe" = C:\Archivos de programa\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe
"C:\Documents and Settings\Administrador\Mis documentos\Downloads\null\Pando Networks\Media Booster\PMB.exe" = C:\Documents and Settings\Administrador\Mis documentos\Downloads\null\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Archivos de programa\PacSteamT\SteamApps\common\bejeweled 2 deluxe\WinBej2.exe" = C:\Archivos de programa\PacSteamT\SteamApps\common\bejeweled 2 deluxe\WinBej2.exe:*:Enabled:Bejeweled 2 Deluxe
"C:\Archivos de programa\PacSteamT\SteamApps\common\zuma deluxe\Zuma.exe" = C:\Archivos de programa\PacSteamT\SteamApps\common\zuma deluxe\Zuma.exe:*:Enabled:Zuma Deluxe
"C:\Archivos de programa\PacSteamT\SteamApps\common\peggle deluxe\Peggle.exe" = C:\Archivos de programa\PacSteamT\SteamApps\common\peggle deluxe\Peggle.exe:*:Enabled:Peggle Deluxe
"C:\Archivos de programa\PacSteamT\SteamApps\common\peggle nights\PeggleNights.exe" = C:\Archivos de programa\PacSteamT\SteamApps\common\peggle nights\PeggleNights.exe:*:Enabled:Peggle Nights
"D:\Juegos\Battle For The Middle Earth II\game.dat" = D:\Juegos\Battle For The Middle Earth II\game.dat:*:Enabled:The Battle for Middle-earth™ II
"D:\Juegos\Witch King\game.dat" = D:\Juegos\Witch King\game.dat:*:Enabled:The Lord of the Rings, The Rise of the Witch-king
"C:\Archivos de programa\Java\jre1.6.0_02\bin\javaw.exe" = C:\Archivos de programa\Java\jre1.6.0_02\bin\javaw.exe:*:Enabled:Java™ Platform SE binary
"C:\Archivos de programa\Archivos comunes\Adobe\CS4ServiceManager\CS4ServiceManager.exe" = C:\Archivos de programa\Archivos comunes\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4 -- (Adobe Systems Incorporated)
"C:\Juegos\Battlefield Bad Company 2\BFBC2Updater.exe" = C:\Juegos\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2
"C:\Archivos de programa\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe" = C:\Archivos de programa\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe:*:Enabled:CyberLink PowerDVD 10.0 -- (CyberLink Corp.)
"C:\Juegos\Need for Speed\Launcher.exe" = C:\Juegos\Need for Speed\Launcher.exe:*:Enabled:Need for Speed™ Hot Pursuit
"C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe" = C:\Archivos de programa\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
"D:\Juegos\LOL\air\LolClient.exe" = D:\Juegos\LOL\air\LolClient.exe:*:Enabled:League of Legends Lobby
"D:\Juegos\LOL\game\League of Legends.exe" = D:\Juegos\LOL\game\League of Legends.exe:*:Enabled:League of Legends Game Client
"D:\Juegos\LOL\lol.launcher.exe" = D:\Juegos\LOL\lol.launcher.exe:*:Enabled:League of Legends Launcher
"C:\Archivos de programa\VideoSpin\Programs\RM.exe" = C:\Archivos de programa\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager -- (Pinnacle Systems)
"C:\Archivos de programa\VideoSpin\Programs\umi.exe" = C:\Archivos de programa\VideoSpin\Programs\umi.exe:*:Enabled:umi -- (Pinnacle Systems)
"C:\Archivos de programa\VideoSpin\Programs\VideoSpin.exe" = C:\Archivos de programa\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin -- (Pinnacle Systems)
"C:\Archivos de programa\Pando Networks\Media Booster\PMB.exe" = C:\Archivos de programa\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqtra08.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqste08.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hposid01.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqkygrp.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqcopy2.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqcopy2.exe:*:Enabled:hpqcopy2.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpoews01.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqgpc01.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqusgm.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe
"C:\Archivos de programa\HP\Digital Imaging\bin\hpqusgh.exe" = C:\Archivos de programa\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe
"C:\Archivos de programa\HP\HP Software Update\hpwucli.exe" = C:\Archivos de programa\HP\HP Software Update\hpwucli.exe:*:Enabled:hpwucli.exe
"C:\Archivos de programa\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe" = C:\Archivos de programa\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe
"D:\Juegos\BFMII\game.dat" = D:\Juegos\BFMII\game.dat:*:Enabled:The Battle for Middle-earth™ II -- (Electronic Arts Inc.)
"D:\Juegos\ROTWK\game.dat" = D:\Juegos\ROTWK\game.dat:*:Enabled:The Lord of the Rings, The Rise of the Witch-king -- (Electronic Arts Inc.)
"C:\Archivos de programa\Steam\Steam.exe" = C:\Archivos de programa\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"D:\Juegos\Rayman Origins\Rayman Origins.exe" = D:\Juegos\Rayman Origins\Rayman Origins.exe:*:Enabled:Rayman Origins -- ()
"D:\Juegos\Rayman Origins\gu.exe" = D:\Juegos\Rayman Origins\gu.exe:*:Enabled:Rayman Origins -- (Ubisoft)
"C:\Archivos de programa\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Archivos de programa\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher
"C:\Archivos de programa\Raptr\raptr.exe" = C:\Archivos de programa\Raptr\raptr.exe:*:Enabled:Raptr Client
"C:\Archivos de programa\Raptr\raptr_im.exe" = C:\Archivos de programa\Raptr\raptr_im.exe:*:Enabled:Raptr IM
"C:\Documents and Settings\Administrador\Mis documentos\Downloads\null\Pando Networks\Media Booster\PMB.exe" = C:\Documents and Settings\Administrador\Mis documentos\Downloads\null\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster
"C:\Archivos de programa\Vuze\Azureus.exe" = C:\Archivos de programa\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Azureus Software, Inc)
"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)
"C:\Archivos de programa\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Archivos de programa\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"C:\Archivos de programa\Steam\SteamApps\common\dota 2 beta\dota.exe" = C:\Archivos de programa\Steam\SteamApps\common\dota 2 beta\dota.exe:*:Enabled:Dota 2 -- ()
"C:\Archivos de programa\Skype\Phone\Skype.exe" = C:\Archivos de programa\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{172B3DF2-642F-46C6-B9BB-389CDE7F5ED9}" = Tina 8
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Herramienta de carga de Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 9
"{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}" = The Battle for Middle-earth ™ II
"{2B83A043-BA8C-4164-98AA-29529D0BE756}" = Windows Live Essentials
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{31CB55E5-A7C6-4CC7-807D-70CFCF5603D6}" = ADuC702xV1.1
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{41785C66-90F2-40CE-8CB5-1C94BFC97280}" = Microsoft Chart Controls for Microsoft .NET Framework 3.5
"{4237FF56-4BD0-481E-BD44-C1A8DDA9C753}Administrador_is1" = WinDS PRO EN 2010.04 (Administrador)
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D53090A-CE35-42BD-B377-831000018301}" = Fable III
"{4D53090A-CE35-42BD-B377-831000018302}" = Fable III
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{57660847-B1F7-35BD-9118-F62EB863A598}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76896231-3040-4D77-B0D4-87D2256AC0CB}" = OpenOffice.org 3.2
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{85AC0FFA-643D-3103-9310-7086ECB0C36C}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - ESN
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{8924FD04-AFF1-4387-B08B-6A979485F2BD}" = Windows Live Call
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{90110C0A-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0051-0000-0000-0000000FF1CE}" = Microsoft Office Visio Professional 2007
"{90120000-0054-0409-0000-0000000FF1CE}" = Microsoft Office Visio MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}" = 32 Bit HP CIO Components Installer
"{92482FB3-C05B-41C6-89E7-75D985602A6E}" = System Requirements Lab
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{92E4A65F-7007-3357-A69A-167F71A337BD}" = Microsoft .NET Framework 3.5 Language Pack SP1 - esn
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95B012AD-3A4A-31D7-9167-5D07D2A71F47}" = Microsoft .NET Framework 4 Client Profile ESN Language Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.3)
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel de control de NVIDIA 310.70
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Controlador de gráficos 310.70
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Software del sistema PhysX 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Actualización de NVIDIA 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B931FB80-537A-4600-00AD-AC5DEDB6C25B}" = The Lord of the Rings, The Rise of the Witch-king
"{BA688606-4B20-4982-995E-EDADC6A6817E}" = League of Legends
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BDEDB104-4067-3D5E-81F0-DBEBFE856B45}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - ESN
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4156B59-DD7E-40DF-AF08-E568A27A6409}" = Windows Live Messenger
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C78EAC6F-7A73-452E-8134-DBB2165C5A68}" = QuickTime
"{C887C75D-2636-41F6-BB7B-FD4B0314C1E1}" = Paragon Partition Manager 9.0 Professional
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D5DE2E28-2BA1-4CF8-A4C5-D3D2AE0A9E38}" = [bleep] NFO Viewer Setup
"{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}" = Rayman Origins
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FEB15887-0932-4D2D-BB85-6AC03FBF1AA8}" = Pinnacle VideoSpin
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"5513-1208-7298-9440" = JDownloader 0.9
"7-Zip" = 7-Zip 9.20
"8461-7759-5462-8226" = Vuze
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"ASUS Probe V2.24.02" = ASUS Probe V2.24.02
"avast" = avast! Free Antivirus
"Bastion_is1" = Bastion
"CCleaner" = CCleaner
"D947C5B44B9016AE0921E60FC8B6B15EEBB7E850" = Paquete de controladores de Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"DivX Setup" = DivX Setup
"DVD Shrink_is1" = DVD Shrink 3.2
"EAGLE 6.1.0" = EAGLE 6.1.0
"eMule" = eMule
"HashTab Shell Extension" = HashTab Shell Extension 1.11 for x32
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{31CB55E5-A7C6-4CC7-807D-70CFCF5603D6}" = ADuC702xV1.1
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"Keil µVision3" = Keil µVision3
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.8.0 (Full)
"Magic The Gathering - Duels of the Planeswalkers 2013_is1" = Magic The Gathering - Duels of the Planeswalkers 2013
"MatlabR2010a" = MATLAB R2010a
"Microsoft .NET Framework 3.5 Language Pack SP1 - esn" = Paquete de idioma de Microsoft .NET Framework 3.5 SP1 - esn
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile ESN Language Pack" = Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"MiniLyrics" = Minilyrics(remove only)
"mIRC" = mIRC
"Mozilla Firefox 17.0.1 (x86 es-ES)" = Mozilla Firefox 17.0.1 (x86 es-ES)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nero7_is1" = Nero 7.10.1.0
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Notepad++" = Notepad++
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"OrCAD91DeinstKey" = OrCAD 9.1
"PFPortChecker" = PFPortChecker 1.0.36
"Photo[bleep]et" = Photo[bleep]et
"PSpice Student" = PSpice Student 9.1
"qt7lite_is1" = QT Lite 1.1.1
"Raidcall" = Raidcall
"RealAlt_is1" = Real Alternative 2.0.2
"Steam App 220" = Half-Life 2
"Steam App 570" = Dota 2
"Steam App 730" = Counter-Strike: Global Offensive
"SystemRequirementsLab" = System Requirements Lab
"TaskSwitchXP" = TaskSwitchXP
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Unlocker" = Unlocker 1.8.5
"VISPRO" = Microsoft Office Visio Professional 2007
"VLC media player" = VLC media player 1.1.5
"Vuze_Remote Toolbar" = Vuze Remote Toolbar
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Reproductor de Windows Media 11
"Windows Registry Repair Pro_is1" = Windows Registry Repair Pro
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = Compresor WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xfire" = Xfire (remove only)
"XPize" = XPize 4.6 Lite
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GameRanger" = GameRanger
"Rise of the Witch King Unofficial Patch 2.02" = Rise of the Witch King Unofficial Patch 2.02
"Winamp Detect" = Winamp Detector Plug-in

========== Last 20 Event Log Errors ==========

[ Antivirus Events ]
Error - 04/01/2009 03:58:05 p.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

Error - 05/01/2009 11:15:14 a.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

Error - 06/01/2009 12:31:45 p.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

Error - 06/01/2009 01:37:39 p.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

Error - 06/01/2009 02:55:20 p.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

Error - 06/01/2009 04:18:29 p.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

Error - 06/01/2009 04:19:01 p.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

Error - 06/01/2009 05:59:23 p.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

Error - 19/11/2009 01:15:24 p.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

Error - 07/01/2010 02:06:00 p.m. | Computer Name = NAVY | Source = avast! | ID = 33554522
Description =

[ Application Events ]
Error - 28/09/2012 11:17:34 p.m. | Computer Name = NAVY | Source = TnglCtrl.exe | ID = 0
Description =

Error - 28/09/2012 11:17:35 p.m. | Computer Name = NAVY | Source = TnglCtrl.exe | ID = 0
Description =

Error - 28/09/2012 11:17:35 p.m. | Computer Name = NAVY | Source = TnglCtrl.exe | ID = 0
Description =

Error - 28/09/2012 11:17:35 p.m. | Computer Name = NAVY | Source = TnglCtrl.exe | ID = 0
Description =

Error - 28/09/2012 11:17:35 p.m. | Computer Name = NAVY | Source = TnglCtrl.exe | ID = 0
Description =

Error - 28/09/2012 11:23:44 p.m. | Computer Name = NAVY | Source = TnglCtrl.exe | ID = 0
Description =

Error - 28/09/2012 11:23:44 p.m. | Computer Name = NAVY | Source = TnglCtrl.exe | ID = 0
Description =

Error - 28/09/2012 11:23:44 p.m. | Computer Name = NAVY | Source = TnglCtrl.exe | ID = 0
Description =

Error - 28/09/2012 11:23:44 p.m. | Computer Name = NAVY | Source = TnglCtrl.exe | ID = 0
Description =

Error - 01/10/2012 03:53:42 a.m. | Computer Name = NAVY | Source = BugSplat | ID = 1
Description =

[ System Events ]
Error - 19/12/2012 01:49:24 a.m. | Computer Name = NAVY | Source = Service Control Manager | ID = 7000
Description = El servicio Power Control [2010/07/27 18:23:07] no pudo iniciarse
debido al siguiente error: %%3

Error - 19/12/2012 01:55:45 a.m. | Computer Name = NAVY | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
StiSvc con argumentos "" para ejecutar el servidor: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 19/12/2012 01:55:48 a.m. | Computer Name = NAVY | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
wuauserv con argumentos "" para ejecutar el servidor: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error - 19/12/2012 01:56:31 a.m. | Computer Name = NAVY | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
wuauserv con argumentos "" para ejecutar el servidor: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error - 19/12/2012 02:17:19 a.m. | Computer Name = NAVY | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
StiSvc con argumentos "" para ejecutar el servidor: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 19/12/2012 02:18:03 a.m. | Computer Name = NAVY | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
StiSvc con argumentos "" para ejecutar el servidor: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 19/12/2012 02:18:18 a.m. | Computer Name = NAVY | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
StiSvc con argumentos "" para ejecutar el servidor: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 19/12/2012 02:21:02 a.m. | Computer Name = NAVY | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
StiSvc con argumentos "" para ejecutar el servidor: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 19/12/2012 02:22:04 a.m. | Computer Name = NAVY | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
StiSvc con argumentos "" para ejecutar el servidor: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 19/12/2012 02:44:28 a.m. | Computer Name = NAVY | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
StiSvc con argumentos "" para ejecutar el servidor: {A1F4E726-8CF1-11D1-BF92-0060081ED811}


< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP