| |
| |||||||
Log-Analyse und Auswertung: laptop braucht 20-30 Minuten zum hochfahrenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
07.03.2014, 09:26
| #1 |
 |  laptop braucht 20-30 Minuten zum hochfahren Hi, mein Laptop, HP G62 Notebook, wird immer langsamer mit dem Hochfahren. Jetzt sind es schon bis zu 30 Minuten, jedes mal. Wenn er dann hochgefahren ist, dauert es bis zu 5 Minuten bis Programme öffnen. Wenn ich spiele (MMOPGs) dann lagge ich bis zu 10 Sekunden, deshalb kann ich nur noch auf niedrigster Graphikeinstellung spielen-  das nervt. Habe vor einiger Zeit mal Malwarebyte Komplettscan gemacht und die infizierten Dateien gelöscht, aber das Problem ist noch immer das Selbe. Bitte helft mir. Danke  PS: habe nicht viel Ahnung also Erklärungen bitte für Dummies..  |
|
07.03.2014, 09:52
| #2 |
| /// the machine /// TB-Ausbilder    |  laptop braucht 20-30 Minuten zum hochfahren hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
07.03.2014, 10:09
| #3 |
| | laptop braucht 20-30 Minuten zum hochfahren Hi, hoffe mit copy paste ist es ok??FRST Additions Logfile:
__________________Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-03-2014
Ran by Usuario at 2014-03-07 10:04:04
Running from C:\Users\Usuario\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (HKLM-x32\...\{9ECF7817-DB11-4FBA-9DF1-296A578D513A}) (Version: 11.5.7.609 - Adobe Systems, Inc)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.0.112 - Adobe Systems, Inc.)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.95 - WildTangent) Hidden
Anim-FX (HKLM-x32\...\Anim-FX) (Version: - )
ATI Catalyst Install Manager (HKLM\...\{1795BAA8-65EC-66D0-9DA4-D4B1FBE7700E}) (Version: 3.0.778.0 - ATI Technologies, Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.338 - Avira)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.60.350.6 - Broadcom Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0621.2137.36973 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0621.2137.36973 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0621.2137.36973 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.0621.2137.36973 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help English (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help French (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help German (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Turkish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
ccc-core-static (x32 Version: 2010.0621.2137.36973 - Nombre de su organización) Hidden
ccc-utility64 (Version: 2010.0621.2137.36973 - ATI) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Corel Applications (HKLM-x32\...\Corel Applications) (Version: - )
CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.3003 - CyberLink Corp.)
CyberLink DVD Suite (x32 Version: 7.0.3003 - CyberLink Corp.) Hidden
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.1.4217 - CyberLink Corp.)
CyberLink PowerDVD 9 (x32 Version: 9.0.1.4217 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.2511 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.0.2511 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DealPly (HKLM-x32\...\DealPly) (Version: - DealPly) <==== ATTENTION
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden
FoxTab PDF Reader (HKCU\...\FoxTab PDF Reader) (Version: - ) <==== ATTENTION
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
FrostWire 5.6.9 (HKLM-x32\...\FrostWire 5) (Version: 5.6.9.3 - FrostWire LLC)
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Gameforge Live 1.10.1 "Legend" (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 1.10.1 - Gameforge)
GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - )
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Garry)
GeoGebra 4.2 (HKLM-x32\...\GeoGebra 4.2) (Version: 4.2.12.0 - International GeoGebra Institute)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)
Google SketchUp 8 (HKLM-x32\...\{D379380A-3B00-4DB2-8F87-A6A4D07CF07E}) (Version: 3.0.14361 - Google, Inc.)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Hacer clic y ejecutar de Microsoft Office 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.4.10262.3295 - Hewlett-Packard)
HP Customer Experience Enhancements (x32 Version: 6.0.1.4 - Hewlett-Packard) Hidden
HP Deskjet 3050A J611 series Ayuda (HKLM-x32\...\{97DDCAB8-B770-4089-A10F-67568069D78A}) (Version: 140.0.2.2 - Hewlett Packard)
HP Deskjet 3050A J611 series Estudio para la mejora del producto (HKLM\...\{6C20FCC8-E40D-4011-AAAD-B00DCF0BAA98}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3050A J611 series Software básico del dispositivo (HKLM\...\{143259FE-9C5D-4AA0-BC95-AADB5E8C49D7}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Documentation (HKLM-x32\...\{B360E24A-BF25-4353-AA79-1B54F509024A}) (Version: 1.0.0.0 - Hewlett-Packard)
HP Game Console (x32 Version: - WildTangent) Hidden
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.1.3 - WildTangent)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Power Manager (HKLM-x32\...\{4B156358-CE9C-4E9F-8CAD-79AE86A68C60}) (Version: 1.0.3 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{E342D296-DB9D-4FC7-ACB0-39926C0BFA16}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{72D90DB3-A16A-4545-B555-868471101833}) (Version: 8.1.4186.3400 - Hewlett-Packard)
HP Software Framework (HKLM-x32\...\{824A35FE-EAB8-48E5-89EC-94D7D730C5FB}) (Version: 3.5.23.1 - Hewlett-Packard Company)
HP Support Assistant (x32 Version: 7.0.39.15 - Hewlett-Packard Company) Hidden
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HP Wireless Assistant (HKLM\...\{60B72AB8-52E9-4D34-99A9-BC7377EB35DE}) (Version: 4.0.9.0 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
Insaniquarium Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.2.1001 - Intel Corporation)
iSkysoft Video Converter Ultimate(Build 4.8.0.0) (HKLM-x32\...\iSkysoft Video Converter Ultimate_is1) (Version: 4.8.0.0 - iSkysoft Software)
James Cameron's AVATAR(tm): THE GAME (HKLM-x32\...\{7E19B002-4CA3-4C9F-BA92-91D101B97219}) (Version: 1.02.00 - Ubisoft)
JAP (HKLM-x32\...\JAP) (Version: 00.16.006 - JAP-Team)
Java 7 Update 21 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417021FF}) (Version: 7.0.210 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Jewel Quest II (x32 Version: 2.2.0.95 - WildTangent) Hidden
Jewel Quest Solitaire (x32 Version: 2.2.0.95 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
JustCloud (HKLM\...\JustCloud) (Version: - JustCloud)
K-Lite Codec Pack 6.0.4 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 6.0.4 - )
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2907 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.2907 - CyberLink Corp.) Hidden
LightScribe System Software (HKLM-x32\...\{46BA053F-57B3-4153-BDB6-D37EEC8B12D7}) (Version: 1.18.15.1 - LightScribe)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.173 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.173 - LogMeIn, Inc.) Hidden
Magic Desktop (HKLM-x32\...\EasyBits Magic Desktop) (Version: - EasyBits Software AS)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Media Viewer (HKLM-x32\...\MediaViewerV1alpha1460) (Version: 1.1 - Media Viewer)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4 Client Profile ESN Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Español (HKLM-x32\...\{90140011-0066-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office XP Professional mit FrontPage (HKLM-x32\...\{90280407-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Search Enhancement Pack (x32 Version: 3.0.127.0 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Small Basic v1.0 (HKLM-x32\...\{7AAA27E4-CDB3-49C0-AA2D-41827C001BA3}) (Version: 1.0.0.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 9.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 9.0 (x86 de)) (Version: 9.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version: - No More Room in Hell Team)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.8 - Pando Networks Inc.)
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (HKLM\...\Microsoft .NET Framework 4 Client Profile ESN Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
PhotoNow! (x32 Version: 1.1.6904 - CyberLink Corp.) Hidden
PhotoPad Image Editor (HKLM-x32\...\PhotoPad) (Version: - NCH Software)
PhotoStage Slideshow Producer (HKLM-x32\...\PhotoStage) (Version: - NCH Software)
Plants vs. Zombies (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.4204 - CyberLink Corp.)
Power2Go (x32 Version: 6.1.4204 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3003 - CyberLink Corp.)
PowerDirector (x32 Version: 8.0.3003 - CyberLink Corp.) Hidden
Prism Video File Converter (HKLM-x32\...\Prism) (Version: - NCH Software)
Protección de Yahoo! Búsquedas (HKLM-x32\...\Yahoo! Search Defender) (Version: - )
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.21.531.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6066 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30105 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.3023 - CyberLink Corp.) Hidden
RPG MAKER VX Ace RTP (HKLM-x32\...\RPGVXAce_RTP_is1) (Version: 1.00 - Enterbrain)
RPG Maker VX Ace versão 1.00 (HKLM-x32\...\{B6763A84-161D-40CD-BF0B-7FF4BB001ECF}_is1) (Version: 1.00 - )
RtVOsd (HKLM\...\{F3D7AC17-1FF4-41A8-BB18-3FC39C65AEB9}) (Version: 1.0.3 - Realtek Semiconductor Corp.)
Search Assistant WebSearch 1.74 (HKLM-x32\...\SP_4e24eecb) (Version: - ) <==== ATTENTION
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.0.14735.1561 - Microsoft Corporation)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 0.1.2015.1 - Hi-Rez Studios)
SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.00.0000 - Electronic Arts)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.0.12 - Safer-Networking Ltd.)
Star Wars Battlefront (HKLM-x32\...\{C79CB9C7-10A4-4814-8402-F574672C2192}) (Version: 1.0 - )
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
StuffIt Expander 2011 (HKLM-x32\...\{59E98F3F-48D6-42A9-8250-079671E02B2D}) (Version: 15.0.1.17 - Smith Micro Software, Inc.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.17.0 - Synaptics Incorporated)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
Torch (HKCU\...\Torch) (Version: 29.0.0.5394 - Torch Media, Inc) <==== ATTENTION
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: - NCH Software)
Virtual Villagers - The Secret City (x32 Version: 2.2.0.95 - WildTangent) Hidden
Visor de Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-0C0A-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: - NCH Software)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
Wincore MediaBar (HKLM-x32\...\Wincore MediaBar) (Version: 3.0.0.118597 - iMesh Inc.) <==== ATTENTION
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{914DD274-9C5D-44CA-9AC7-12B8D2D4DA08}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: 5.3.0.17128 - Blizzard Entertainment)
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version: - )
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
==================== Restore Points =========================
23-02-2014 18:00:06 Copias de seguridad de Windows
01-03-2014 13:04:45 Installed Java 7 Update 51
01-03-2014 16:26:19 Removed Hi-Rez Studios Games
01-03-2014 23:25:14 Installed Hi-Rez Studios Games
02-03-2014 18:00:24 Copias de seguridad de Windows
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0EDE6830-E929-4CFF-BBFD-FBF8702A0ECC} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-05-25] ()
Task: {1332CAE6-AB0F-4113-A09D-0B4D4E655F6A} - System32\Tasks\DealPlyUpdate => C:\Program Files (x86)\DealPly\DealPlyUpdate.exe <==== ATTENTION
Task: {217B0EB0-9BDD-40BF-BBA7-253779D79696} - System32\Tasks\{16B930ED-C33A-4D66-B26F-4B34A9DEFE79} => C:\Users\Usuario\Downloads\AIO_CDB_2570_Full_Win_WW_130_141.exe [2013-06-06] ()
Task: {2FCDCC2F-46D1-4A8F-8654-2CE3F80EFBCD} - System32\Tasks\{7BC8A06B-661C-44BE-BC84-2FFF283B8A73} => C:\Program Files (x86)\Microsoft Office\Options14\MSOO.EXE [2013-07-23] (Microsoft Corporation)
Task: {34954F26-A25E-4F46-979B-A9C9C11AC732} - System32\Tasks\{BECF5C5C-C30A-427A-B03E-C5B6574850FB} => C:\Users\Usuario\Downloads\AIO_CDB_2570_Full_Win_WW_130_141.exe [2013-06-06] ()
Task: {36ECF6F2-7E3F-49B8-BF0F-EDCE092467DC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {438B8B5E-CCA5-47A1-8DBD-32A7D36E1A44} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001UA => C:\Users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-16] (Google Inc.)
Task: {4F896F3D-63DC-4023-B06C-1C2D8CE0E81A} - System32\Tasks\{1142AA40-2734-40F8-8411-FB18FAE3794D} => c:\users\usuario\appdata\local\torch\application\torch.exe [2013-12-21] (Torch Media Inc.)
Task: {5EA34184-0657-4717-9866-41C8D472DF26} - System32\Tasks\HPCeeScheduleForUsuario => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05] (Hewlett-Packard)
Task: {73154D99-675A-43C1-9928-74317C44D463} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {762D9FCE-31E8-47A1-AE15-AB7F6F4E0A3A} - System32\Tasks\{4A7A99E9-A4DC-4D9A-A791-BC687404FA64} => C:\Users\Usuario\Downloads\AIO_CDB_2570_Full_Win_WW_130_141.exe [2013-06-06] ()
Task: {855342E7-53B9-42A9-9E9C-97E810FD85C9} - System32\Tasks\DealPly => C:\Users\Usuario\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {90DCBDC8-0E2C-46A8-B154-E1448703C829} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {A32C61F7-C392-4C08-BC96-8D3FF157EF34} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {AE020E10-742B-4E07-AEF7-4C1F51A3EB9C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001Core => C:\Users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-16] (Google Inc.)
Task: {B0155C05-93CC-4BA3-8792-35B7D4121133} - System32\Tasks\HPCustParticipation HP Deskjet 3050A J611 series => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {BC136396-C71E-45CF-B14C-58BF9D2682E0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated)
Task: {C516FD25-838B-44E3-83F1-9DC8415A55DD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe
Task: {D4B802D2-680F-40D7-A199-61122A26FF8F} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {D8B76A0D-F5F2-48CC-864A-59EDBE7518A0} - System32\Tasks\{7DF6A5F8-F0EC-4E72-A008-2B5BC9D342D1} => c:\users\usuario\appdata\local\torch\application\torch.exe [2013-12-21] (Torch Media Inc.)
Task: {DA28BB13-0828-4ADD-B406-08A252F7544B} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {DC35E034-DC15-411B-8047-7E613111E80B} - System32\Tasks\NCH Software\photostageShakeIcon => C:\Program Files (x86)\NCH Software\PhotoStage\PhotoStage.exe [2012-06-23] (NCH Software)
Task: {EA82BBB0-6538-4812-BFC3-0742A5F10EAB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {ED232741-7E25-4E1F-85B9-CA08FBE967E5} - System32\Tasks\{7C5C1A21-2A15-451F-BD5F-1E548DA21F7D} => c:\users\usuario\appdata\local\torch\application\torch.exe [2013-12-21] (Torch Media Inc.)
Task: {F7DFEFAE-D96F-4C39-86E0-E8F3A7454844} - System32\Tasks\{4D7479EF-FE6F-4D66-855C-7C4E7E494EC0} => c:\users\usuario\appdata\local\torch\application\torch.exe [2013-12-21] (Torch Media Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001Core.job => C:\Users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001UA.job => C:\Users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForUsuario.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Loaded Modules (whitelisted) =============
2010-07-02 10:51 - 2010-07-02 10:51 - 00027192 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
2014-02-18 22:34 - 2013-08-23 13:36 - 00721263 _____ () C:\Windows\SysWOW64\ISCM64.dll
2013-09-19 23:37 - 2013-09-19 23:37 - 00012288 _____ () C:\Program Files (x86)\JustCloud\GetText.dll
2013-09-19 23:32 - 2013-09-19 23:32 - 01102336 _____ () C:\Program Files (x86)\JustCloud\x64\System.Data.SQLite.dll
2010-02-28 02:33 - 2010-02-28 02:33 - 00077664 _____ () C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
2012-12-03 08:14 - 2012-09-19 18:17 - 00397088 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-03-04 12:30 - 2014-03-02 03:35 - 00051016 _____ () C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll
2011-01-04 16:42 - 2010-04-13 09:52 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2013-01-07 08:50 - 2012-11-13 14:06 - 00528288 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\JSDialogPack150.bpl
2013-01-07 08:50 - 2012-11-13 14:06 - 00108960 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-01-07 08:50 - 2012-11-13 14:06 - 00416160 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2013-01-07 08:50 - 2012-11-13 14:06 - 00158624 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-01-07 08:50 - 2012-11-13 14:06 - 00554400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl
2013-12-26 00:49 - 2013-12-21 01:07 - 04008040 _____ () C:\Users\Usuario\AppData\Local\Torch\Application\29.0.0.5394\pdf.dll
2013-12-26 00:49 - 2013-12-21 01:07 - 00478528 _____ () C:\Users\Usuario\AppData\Local\Torch\Application\29.0.0.5394\ppGoogleNaClPluginChrome.dll
2013-12-26 00:49 - 2013-12-21 01:07 - 01870656 _____ () C:\Users\Usuario\AppData\Local\Torch\Application\29.0.0.5394\ffmpegsumo.dll
2013-12-26 00:49 - 2013-12-21 01:07 - 00884032 _____ () C:\Users\Usuario\AppData\Local\Torch\Application\29.0.0.5394\libglesv2.dll
2013-12-26 00:49 - 2013-12-21 01:07 - 00105792 _____ () C:\Users\Usuario\AppData\Local\Torch\Application\29.0.0.5394\libegl.dll
2013-12-26 00:49 - 2013-12-21 01:07 - 12456040 _____ () C:\Users\Usuario\AppData\Local\Torch\Application\29.0.0.5394\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\Windows\pss\Microsoft Office.lnk.CommonStartup
MSCONFIG\startupreg: 4StoryPrePatch => C:\Program Files (x86)\Gameforge4D\4Story_DE\PrePatch.exe
MSCONFIG\startupreg: Bing Bar => "C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\mswinext.exe"
MSCONFIG\startupreg: DATAMNGR => C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\DATAMN~1.EXE
MSCONFIG\startupreg: Easybits Recovery => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: HPAdvisorDock => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
MSCONFIG\startupreg: HPWirelessAssistant => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: iMesh => "C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe" --lightmode
MSCONFIG\startupreg: LightScribe Control Panel => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Messenger (Yahoo!) => "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: Pando Media Booster => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: RaidCall => C:\Program Files (x86)\RaidCall\raidcall.exe
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: Search Protection => C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: YSearchProtection => "C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/06/2014 08:13:04 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: torch.exe, versión: 29.0.0.5394, marca de tiempo: 0x52b4dbb2
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7600.16915, marca de tiempo: 0x4ec49d10
Código de excepción: 0xc0000374
Desplazamiento de errores: 0x000ce903
Id. del proceso con errores: 0x25e0
Hora de inicio de la aplicación con errores: 0xtorch.exe0
Ruta de acceso de la aplicación con errores: torch.exe1
Ruta de acceso del módulo con errores: torch.exe2
Id. del informe: torch.exe3
Error: (03/06/2014 08:11:10 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Nombre del módulo con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000004337
Id. del proceso con errores: 0x2240
Hora de inicio de la aplicación con errores: 0xcalc.exe0
Ruta de acceso de la aplicación con errores: calc.exe1
Ruta de acceso del módulo con errores: calc.exe2
Id. del informe: calc.exe3
Error: (03/06/2014 08:11:07 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Nombre del módulo con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000004337
Id. del proceso con errores: 0x21e4
Hora de inicio de la aplicación con errores: 0xcalc.exe0
Ruta de acceso de la aplicación con errores: calc.exe1
Ruta de acceso del módulo con errores: calc.exe2
Id. del informe: calc.exe3
Error: (03/06/2014 07:50:56 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Nombre del módulo con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Código de excepción: 0xc0000094
Desplazamiento de errores: 0x0000000000023d51
Id. del proceso con errores: 0x23b8
Hora de inicio de la aplicación con errores: 0xcalc.exe0
Ruta de acceso de la aplicación con errores: calc.exe1
Ruta de acceso del módulo con errores: calc.exe2
Id. del informe: calc.exe3
Error: (03/06/2014 07:50:46 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Nombre del módulo con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Código de excepción: 0xc0000094
Desplazamiento de errores: 0x0000000000023d51
Id. del proceso con errores: 0x23cc
Hora de inicio de la aplicación con errores: 0xcalc.exe0
Ruta de acceso de la aplicación con errores: calc.exe1
Ruta de acceso del módulo con errores: calc.exe2
Id. del informe: calc.exe3
Error: (03/06/2014 07:50:46 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Nombre del módulo con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Código de excepción: 0xc0000094
Desplazamiento de errores: 0x0000000000023d51
Id. del proceso con errores: 0x23dc
Hora de inicio de la aplicación con errores: 0xcalc.exe0
Ruta de acceso de la aplicación con errores: calc.exe1
Ruta de acceso del módulo con errores: calc.exe2
Id. del informe: calc.exe3
Error: (03/06/2014 07:50:46 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Nombre del módulo con errores: calc.exe, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bc9d4
Código de excepción: 0xc0000094
Desplazamiento de errores: 0x0000000000023d51
Id. del proceso con errores: 0x208c
Hora de inicio de la aplicación con errores: 0xcalc.exe0
Ruta de acceso de la aplicación con errores: calc.exe1
Ruta de acceso del módulo con errores: calc.exe2
Id. del informe: calc.exe3
Error: (03/06/2014 07:50:45 PM) (Source: Desktop Window Manager) (User: )
Description: El Administrador de ventanas de escritorio detectó un error irrecuperable (0x80070008)
Error: (03/05/2014 04:00:20 PM) (Source: SideBySide) (User: )
Description: Error al generar el contexto de activación para "assemblyIdentity1". Error en el archivo de manifiesto o directiva "assemblyIdentity2" en la línea assemblyIdentity3.
El valor "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" del atributo "version" del elemento "assemblyIdentity" no es válido.
Error: (03/04/2014 01:35:03 PM) (Source: SideBySide) (User: )
Description: Error al generar el contexto de activación para "assemblyIdentity1". Error en el archivo de manifiesto o directiva "assemblyIdentity2" en la línea assemblyIdentity3.
El valor "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" del atributo "version" del elemento "assemblyIdentity" no es válido.
System errors:
=============
Error: (03/06/2014 08:10:13 PM) (Source: Service Control Manager) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio RtVOsdService.
Error: (03/06/2014 03:41:19 PM) (Source: Service Control Manager) (User: )
Description: El servicio Centro de seguridad terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.
Error: (03/06/2014 03:41:19 PM) (Source: Service Control Manager) (User: )
Description: El servicio Aplicación auxiliar de NetBIOS sobre TCP/IP terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 100 milisegundos: Reiniciar el servicio.
Error: (03/06/2014 03:41:19 PM) (Source: Service Control Manager) (User: )
Description: El servicio Proveedor de Grupo Hogar terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.
Error: (03/06/2014 03:41:19 PM) (Source: Service Control Manager) (User: )
Description: El servicio Registro de eventos de Windows terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.
Error: (03/06/2014 03:41:19 PM) (Source: Service Control Manager) (User: )
Description: El servicio Cliente DHCP terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.
Error: (03/06/2014 03:41:19 PM) (Source: Service Control Manager) (User: )
Description: El servicio Audio de Windows terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.
Error: (03/05/2014 03:12:15 PM) (Source: BROWSER) (User: )
Description: El servicio Examinador no puede recuperar la lista de copias de seguridad un número excesivo de veces en el transporte \Device\NetBT_Tcpip_{5586999B-4ED2-4C86-8077-0D81E07C6273}.
El examinador auxiliar está detenido.
Error: (03/05/2014 03:11:23 PM) (Source: Service Control Manager) (User: )
Description: El servicio HP Wireless Assistant Service no pudo iniciarse debido al siguiente error:
%%1053
Error: (03/05/2014 03:11:23 PM) (Source: Service Control Manager) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio HP Wireless Assistant Service.
Microsoft Office Sessions:
=========================
Error: (03/06/2014 08:13:04 PM) (Source: Application Error)(User: )
Description: torch.exe29.0.0.539452b4dbb2ntdll.dll6.1.7600.169154ec49d10c0000374000ce90325e001cf39700d661111C:\Users\Usuario\AppData\Local\Torch\Application\torch.exeC:\Windows\SysWOW64\ntdll.dll57055bfe-a563-11e3-9019-3c4a92ca3673
Error: (03/06/2014 08:11:10 PM) (Source: Application Error)(User: )
Description: calc.exe6.1.7600.163854a5bc9d4calc.exe6.1.7600.163854a5bc9d4c00000050000000000004337224001cf396cfad2f3f3C:\Windows\system32\calc.exeC:\Windows\system32\calc.exe1386fa7d-a563-11e3-9019-3c4a92ca3673
Error: (03/06/2014 08:11:07 PM) (Source: Application Error)(User: )
Description: calc.exe6.1.7600.163854a5bc9d4calc.exe6.1.7600.163854a5bc9d4c0000005000000000000433721e401cf396cfabdbdf3C:\Windows\system32\calc.exeC:\Windows\system32\calc.exe11c777c9-a563-11e3-9019-3c4a92ca3673
Error: (03/06/2014 07:50:56 PM) (Source: Application Error)(User: )
Description: calc.exe6.1.7600.163854a5bc9d4calc.exe6.1.7600.163854a5bc9d4c00000940000000000023d5123b801cf396cf954d9daC:\Windows\system32\calc.exeC:\Windows\system32\calc.exe3fc00c0b-a560-11e3-9019-3c4a92ca3673
Error: (03/06/2014 07:50:46 PM) (Source: Application Error)(User: )
Description: calc.exe6.1.7600.163854a5bc9d4calc.exe6.1.7600.163854a5bc9d4c00000940000000000023d5123cc01cf396cf95ca228C:\Windows\system32\calc.exeC:\Windows\system32\calc.exe39de393d-a560-11e3-9019-3c4a92ca3673
Error: (03/06/2014 07:50:46 PM) (Source: Application Error)(User: )
Description: calc.exe6.1.7600.163854a5bc9d4calc.exe6.1.7600.163854a5bc9d4c00000940000000000023d5123dc01cf396cf98bf039C:\Windows\system32\calc.exeC:\Windows\system32\calc.exe39ddeb1d-a560-11e3-9019-3c4a92ca3673
Error: (03/06/2014 07:50:46 PM) (Source: Application Error)(User: )
Description: calc.exe6.1.7600.163854a5bc9d4calc.exe6.1.7600.163854a5bc9d4c00000940000000000023d51208c01cf396cfa7bd1fcC:\Windows\system32\calc.exeC:\Windows\system32\calc.exe39de122d-a560-11e3-9019-3c4a92ca3673
Error: (03/06/2014 07:50:45 PM) (Source: Desktop Window Manager)(User: )
Description: 0x80070008
Error: (03/05/2014 04:00:20 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (03/04/2014 01:35:03 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
==================== Memory info ===========================
Percentage of memory in use: 65%
Total physical RAM: 3893.86 MB
Available physical RAM: 1334.56 MB
Total Pagefile: 7785.86 MB
Available Pagefile: 4649.71 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:281.05 GB) (Free:37.22 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:16.74 GB) (Free:2.42 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 9739692A)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=281 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=17 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)
==================== End Of Log ============================
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-03-2014
Ran by Usuario (administrator) on USUARIO-HP on 07-03-2014 10:07:08
Running from C:\Users\Usuario\Downloads
Windows 7 Home Premium (X64) OS Language: Spanish Modern Sort
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TorchMedia Inc.) C:\Users\Usuario\AppData\Local\Torch\Update\TorchCrashHandler.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Google Inc.) C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(JustCloud.com) C:\Program Files (x86)\JustCloud\JustCloud.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Update\29.0.0.5394\TorchUpdate.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
() Q:\140066.esn\Office14\WINWORDC.EXE
() C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
() Q:\140066.esn\Office14\OffSpon.EXE
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Usuario\AppData\Local\Torch\Application\torch.exe
==================== Registry (Whitelisted) ==================
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [602680 2010-07-02] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] - C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-19\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-1067236468-1955715275-1871763032-1001\...\Run: [Google Update] - C:\Users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-12-16] (Google Inc.)
HKU\S-1-5-21-1067236468-1955715275-1871763032-1001\...\Run: [Spybot-S&D Cleaning] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3713032 2012-11-13] (Safer-Networking Ltd.)
HKU\S-1-5-21-1067236468-1955715275-1871763032-1001\...\Run: [C9627F042FF14DA7EE9FE476B40759E6870DA618._service_run] - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe [859464 2014-03-02] (Google Inc.)
HKU\S-1-5-21-1067236468-1955715275-1871763032-1001\...\Run: [HP Deskjet 3050A J611 series (NET)] - C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
AppInit_DLLs: C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll => C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\x64\datamngr.dll [1778568 2011-12-08] (iMesh, Inc)
AppInit_DLLs: C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll => C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\x64\IEBHO.dll [1791368 2011-12-08] (iMesh, Inc)
AppInit_DLLs-x32: c:\progra~2\imesha~1\mediabar\datamngr\datamngr.dll => C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\datamngr.dll [1236400 2011-12-08] (iMesh, Inc)
AppInit_DLLs-x32: c:\progra~2\imesha~1\mediabar\datamngr\iebho.dll => C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\IEBHO.dll [1233800 2011-12-08] (iMesh, Inc)
Startup: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\JustCloud.lnk
ShortcutTarget: JustCloud.lnk -> C:\Program Files (x86)\JustCloud\JustCloud.exe (JustCloud.com)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyEnable: Internet Explorer proxy is enabled.
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON/10
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON/10
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM - {518FE17F-FACB-425A-A652-69B67267CC73} URL = hxxp://es.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM - {F2A748D4-7F46-4ACA-BE8A-14D98E7D1E3F} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - {518FE17F-FACB-425A-A652-69B67267CC73} URL = hxxp://es.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.helpmefindyour.info/?l=1&q={searchTerms}&pid=658&r=2013/04/14&hid=4273511417&lg=EN&cc=ES
SearchScopes: HKLM-x32 - {F2A748D4-7F46-4ACA-BE8A-14D98E7D1E3F} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=119999&tt=090212_noffx&babsrc=SP_ss&mntrId=6ad08e9a000000000000c0cb388ae9bf
SearchScopes: HKCU - {518FE17F-FACB-425A-A652-69B67267CC73} URL = hxxp://es.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKCU - {F2A748D4-7F46-4ACA-BE8A-14D98E7D1E3F} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: DataMngr - {BE7A24F5-69CB-4708-B77B-B1EDA6043B95} - C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\x64\BrowserConnection.dll (iMesh, Inc)
BHO: No Name - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - No File
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO-x32: Wincore Mediabar - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll ()
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Aplicación auxiliar de inicio de sesión de Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: DealPly - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files (x86)\DealPly\DealPlyIE.dll No File
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: DataMngr - {BE7A24F5-69CB-4708-B77B-B1EDA6043B95} - C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\BrowserConnection.dll (iMesh, Inc)
BHO-x32: No Name - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Wincore Mediabar - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll ()
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2010-07-17] (EasyBits Software Corp.)
FireFox:
========
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer
FF user.js: detected! => C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\user.js
FF SelectedSearchEngine: WebSearch
FF Homepage: hxxp://websearch.helpmefindyour.info/?pid=658&r=2013/04/14&hid=4273511417&lg=EN&cc=ES
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Usuario\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Usuario\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\searchplugins\WebSearch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: Boreowse2save - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\Extensions\diy5ti@oamqls.net [2013-05-25]
FF Extension: Complitly - Speed up your search with your personal search suggestions tool - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516} [2012-02-17]
FF Extension: DealPly - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\Extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF} [2012-05-25]
FF Extension: Default Tab - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\Extensions\addon@defaulttab.com.xpi [2012-11-09]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-01-03]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewerV1alpha1460.net] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff
FF Extension: Media Viewer - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff [2014-02-24]
Chrome:
=======
CHR HomePage: homepage_is_newtabpage
CHR RestoreOnStartup: "sync": {
"suppress_start"
CHR Plugin: (Shockwave Flash) - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Happy Cloud Plugin) - C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll No File
CHR Plugin: (BrowserPlus (from Yahoo!) v2.9.8) - C:\Users\Usuario\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll No File
CHR Plugin: (Kalydo Player Plugin for Mozilla) - C:\Users\Usuario\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll No File
CHR Plugin: (Raidcall plugin) - C:\Users\Usuario\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (Media Viewer) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgdegkcffldnapfegkmjnhkfaofcjigf [2014-02-24]
CHR Extension: (Skype Click to Call) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-05-26]
CHR Extension: (Google Wallet) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR HKCU\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files (x86)\DealPly\DealPly.crx [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [defdhglnppeioeflggkmglipcecffkhk] - C:\Program Files (x86)\Complitly\chrome\ComplitlyChrome.crx [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files (x86)\DealPly\DealPly.crx [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [kgdegkcffldnapfegkmjnhkfaofcjigf] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ch\MediaViewerV1alpha1460.crx [2014-02-23]
CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\Usuario\AppData\Local\Torch\Plugins\TorchPlugin.crx [2013-08-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-01-03]
CHR StartMenuInternet: Google Chrome - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
S2 BackupStack; C:\Program Files (x86)\JustCloud\BackupStack.exe [38440 2013-09-19] (Just Develop It)
S2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363616 2014-01-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748640 2014-01-03] (Microsoft Corporation)
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [27192 2010-07-02] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)
R2 TorchCrashHandler; C:\Users\Usuario\AppData\Local\Torch\Update\TorchCrashHandler.exe [1206624 2013-07-20] (TorchMedia Inc.)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [225280 2009-09-23] (Realtek Semiconductor Corp.)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-07 10:04 - 2014-03-07 10:05 - 00045882 _____ () C:\Users\Usuario\Downloads\Addition.txt
2014-03-07 10:02 - 2014-03-07 10:07 - 00027824 _____ () C:\Users\Usuario\Downloads\FRST.txt
2014-03-07 10:02 - 2014-03-07 10:07 - 00000000 ____D () C:\FRST
2014-03-07 10:01 - 2014-03-07 10:01 - 02156544 _____ (Farbar) C:\Users\Usuario\Downloads\FRST64.exe
2014-03-02 20:46 - 2014-03-02 20:46 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-03-02 20:46 - 2014-03-02 20:46 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-03-02 00:23 - 2014-03-02 00:24 - 39967251 _____ (Hi-Rez Studios) C:\Users\Usuario\Downloads\InstallHiRezGamesEnglish (2).exe
2014-03-01 14:07 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-03-01 14:07 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-03-01 14:07 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-03-01 14:07 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-03-01 14:06 - 2014-03-01 14:07 - 00005173 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-03-01 01:26 - 2014-03-01 01:27 - 00000000 ____D () C:\Users\Usuario\AppData\Local\{E0BDBDF9-382A-40C7-91A0-8D455B1ACCAF}
2014-02-27 16:04 - 2014-03-01 18:07 - 00000000 ____D () C:\Users\Usuario\Downloads\Gameforge Live
2014-02-27 16:04 - 2014-02-27 16:04 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Gameforge4d
2014-02-27 16:03 - 2014-02-27 16:04 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-02-27 16:02 - 2014-02-27 16:02 - 20463792 _____ (Gameforge ) C:\Users\Usuario\Downloads\Metin2_GameforgeLiveSetup.exe
2014-02-24 15:51 - 2014-02-24 15:51 - 00000000 ____D () C:\Program Files (x86)\MediaViewerV1
2014-02-19 19:34 - 2014-02-19 19:34 - 00000000 ____D () C:\Users\Usuario\AppData\Local\{269555FD-DBBB-41D5-9B13-EBC1792CD5BA}
2014-02-19 15:51 - 2014-02-24 16:10 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerV1
2014-02-19 15:51 - 2014-02-19 15:51 - 00000282 __RSH () C:\ProgramData\ntuser.pol
2014-02-18 22:36 - 2014-02-18 22:40 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\Documents\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Users\Usuario\AppData\Local\iSkysoft
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Program Files\Common Files\iSkysoft
2014-02-18 22:34 - 2014-02-18 22:41 - 00000000 ____D () C:\ProgramData\iSkysoft Video Converter Ultimate
2014-02-18 22:34 - 2014-02-18 22:34 - 00000000 ____D () C:\Program Files (x86)\iSkysoft
2014-02-18 22:34 - 2013-08-23 13:36 - 00721263 _____ () C:\Windows\SysWOW64\ISCM64.dll
2014-02-18 22:34 - 2013-08-07 14:31 - 00214528 _____ () C:\Windows\SysWOW64\ISCM32.dll
2014-02-18 22:32 - 2014-02-18 22:32 - 37244466 _____ (iSkysoft Software ) C:\Users\Usuario\Downloads\video-converter-ultimate_full1329.exe
2014-02-18 22:25 - 2014-02-18 22:25 - 00000000 ____D () C:\Users\Usuario\AppData\Local\{E658CB35-46B0-4DD5-B2E5-B6CCE842C1A5}
2014-02-18 16:09 - 2014-02-18 16:09 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\OBS
2014-02-18 16:04 - 2014-02-19 12:34 - 00000000 ____D () C:\Program Files\OBS
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-02-18 16:03 - 2014-02-18 16:03 - 07868406 _____ () C:\Users\Usuario\Downloads\OBS_0_611b_Installer.exe
2014-02-17 18:35 - 2014-02-17 18:35 - 00003114 _____ () C:\Windows\System32\Tasks\{1B8D5B56-AFB9-4C6B-93ED-786734E592FC}
2014-02-17 17:20 - 2014-02-17 17:59 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Dxtory Software
2014-02-17 17:19 - 2014-02-17 17:19 - 00000000 ____D () C:\Program Files (x86)\Dxtory Software
2014-02-17 17:18 - 2014-02-17 17:18 - 02946889 _____ () C:\Users\Usuario\Downloads\Dxtory 2.0.119 by zasuke962013.rar
2014-02-17 16:57 - 2014-02-17 16:57 - 21983696 _____ () C:\Users\Usuario\Downloads\WT20 Australia vs New Zealand Game 5 - Highlights - YouTube.mp4
2014-02-11 15:58 - 2014-02-11 15:58 - 00006405 _____ () C:\Users\Usuario\AppData\Local\recently-used.xbel
2014-02-10 21:38 - 2014-02-10 21:38 - 01174683 _____ () C:\Users\Usuario\Downloads\Outlook.zip
2014-02-09 12:19 - 2014-02-09 12:19 - 00000000 ____D () C:\Users\Usuario\AppData\Local\{AEABB9AB-1ED1-491C-9AB2-118241EECCAA}
==================== One Month Modified Files and Folders =======
2014-03-07 10:07 - 2014-03-07 10:02 - 00027824 _____ () C:\Users\Usuario\Downloads\FRST.txt
2014-03-07 10:07 - 2014-03-07 10:02 - 00000000 ____D () C:\FRST
2014-03-07 10:06 - 2011-01-04 16:39 - 01092636 _____ () C:\Windows\WindowsUpdate.log
2014-03-07 10:05 - 2014-03-07 10:04 - 00045882 _____ () C:\Users\Usuario\Downloads\Addition.txt
2014-03-07 10:01 - 2014-03-07 10:01 - 02156544 _____ (Farbar) C:\Users\Usuario\Downloads\FRST64.exe
2014-03-07 10:01 - 2011-12-16 08:06 - 00001118 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001UA.job
2014-03-07 09:30 - 2013-02-24 22:12 - 00000838 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-07 08:56 - 2009-07-14 05:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-07 08:56 - 2009-07-14 05:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-06 21:45 - 2012-10-24 14:41 - 00000000 ____D () C:\Users\Usuario\AppData\Local\PMB Files
2014-03-06 21:45 - 2012-10-24 14:40 - 00000000 ____D () C:\ProgramData\PMB Files
2014-03-06 21:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-06 21:01 - 2011-12-16 08:06 - 00001066 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001Core.job
2014-03-05 15:16 - 2013-10-04 14:50 - 00025456 _____ () C:\Windows\setupact.log
2014-03-05 15:13 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-03-05 15:12 - 2013-09-06 14:41 - 00000000 ____D () C:\Users\Usuario\AppData\Local\LogMeIn Hamachi
2014-03-05 14:59 - 2013-08-27 22:03 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-03-05 14:51 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-02 20:46 - 2014-03-02 20:46 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-03-02 20:46 - 2014-03-02 20:46 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-03-02 11:09 - 2012-01-03 21:24 - 00000000 ____D () C:\Users\Usuario\Desktop\tj
2014-03-02 00:26 - 2013-06-02 13:46 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2014-03-02 00:26 - 2013-06-02 13:46 - 00000000 ____D () C:\Program Files (x86)\Hi-Rez Studios
2014-03-02 00:25 - 2010-07-17 16:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-02 00:24 - 2014-03-02 00:23 - 39967251 _____ (Hi-Rez Studios) C:\Users\Usuario\Downloads\InstallHiRezGamesEnglish (2).exe
2014-03-01 18:07 - 2014-02-27 16:04 - 00000000 ____D () C:\Users\Usuario\Downloads\Gameforge Live
2014-03-01 17:42 - 2012-07-02 21:13 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Skype
2014-03-01 14:08 - 2013-11-25 22:39 - 00000000 ____D () C:\ProgramData\Oracle
2014-03-01 14:07 - 2014-03-01 14:06 - 00005173 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-03-01 14:07 - 2013-11-25 22:39 - 00000000 ____D () C:\Program Files (x86)\Java
2014-03-01 13:52 - 2009-07-14 06:08 - 00032514 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-01 13:17 - 2013-08-21 16:57 - 00000002 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-03-01 01:27 - 2014-03-01 01:26 - 00000000 ____D () C:\Users\Usuario\AppData\Local\{E0BDBDF9-382A-40C7-91A0-8D455B1ACCAF}
2014-03-01 01:27 - 2012-03-02 19:11 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Windows Live
2014-02-28 22:18 - 2012-01-25 21:51 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\HpUpdate
2014-02-27 16:04 - 2014-02-27 16:04 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Gameforge4d
2014-02-27 16:04 - 2014-02-27 16:03 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-02-27 16:02 - 2014-02-27 16:02 - 20463792 _____ (Gameforge ) C:\Users\Usuario\Downloads\Metin2_GameforgeLiveSetup.exe
2014-02-26 18:06 - 2013-04-07 18:51 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-24 16:12 - 2013-04-14 19:28 - 00030104 _____ () C:\Windows\PFRO.log
2014-02-24 16:10 - 2014-02-19 15:51 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerV1
2014-02-24 16:10 - 2014-02-02 21:47 - 00000000 ____D () C:\Users\Usuario\AppData\Local\SwvUpdater
2014-02-24 16:10 - 2013-03-30 20:07 - 00000000 ____D () C:\Program Files (x86)\FrostWire 5
2014-02-24 15:51 - 2014-02-24 15:51 - 00000000 ____D () C:\Program Files (x86)\MediaViewerV1
2014-02-23 19:16 - 2012-11-27 15:45 - 00003198 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForUsuario
2014-02-23 19:16 - 2012-11-27 15:45 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForUsuario.job
2014-02-23 19:15 - 2013-01-22 15:32 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\vlc
2014-02-23 14:22 - 2010-07-18 02:27 - 00758708 _____ () C:\Windows\system32\perfh00A.dat
2014-02-23 14:22 - 2010-07-18 02:27 - 00165624 _____ () C:\Windows\system32\perfc00A.dat
2014-02-23 14:22 - 2009-07-14 06:13 - 01710712 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-22 13:58 - 2013-08-27 13:51 - 00000000 ____D () C:\Fraps
2014-02-21 19:31 - 2013-02-24 22:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 19:31 - 2013-02-24 22:12 - 00003776 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-21 19:31 - 2011-12-06 23:52 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-19 19:34 - 2014-02-19 19:34 - 00000000 ____D () C:\Users\Usuario\AppData\Local\{269555FD-DBBB-41D5-9B13-EBC1792CD5BA}
2014-02-19 15:51 - 2014-02-19 15:51 - 00000282 __RSH () C:\ProgramData\ntuser.pol
2014-02-19 15:51 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-19 15:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-02-19 12:34 - 2014-02-18 16:04 - 00000000 ____D () C:\Program Files\OBS
2014-02-18 22:41 - 2014-02-18 22:34 - 00000000 ____D () C:\ProgramData\iSkysoft Video Converter Ultimate
2014-02-18 22:40 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\Documents\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Users\Usuario\AppData\Local\iSkysoft
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Program Files\Common Files\iSkysoft
2014-02-18 22:34 - 2014-02-18 22:34 - 00000000 ____D () C:\Program Files (x86)\iSkysoft
2014-02-18 22:32 - 2014-02-18 22:32 - 37244466 _____ (iSkysoft Software ) C:\Users\Usuario\Downloads\video-converter-ultimate_full1329.exe
2014-02-18 22:25 - 2014-02-18 22:25 - 00000000 ____D () C:\Users\Usuario\AppData\Local\{E658CB35-46B0-4DD5-B2E5-B6CCE842C1A5}
2014-02-18 18:30 - 2012-06-23 16:24 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-02-18 16:09 - 2014-02-18 16:09 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\OBS
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-02-18 16:03 - 2014-02-18 16:03 - 07868406 _____ () C:\Users\Usuario\Downloads\OBS_0_611b_Installer.exe
2014-02-17 20:56 - 2011-12-16 08:06 - 00004092 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001UA
2014-02-17 20:56 - 2011-12-16 08:06 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001Core
2014-02-17 19:52 - 2013-08-28 18:25 - 00000000 ____D () C:\Users\Usuario\Desktop\fraps vids
2014-02-17 18:41 - 2013-01-04 15:23 - 00000000 ____D () C:\Program Files (x86)\LucasArts
2014-02-17 18:36 - 2013-03-30 19:54 - 00000000 ____D () C:\Program Files (x86)\RaidCall
2014-02-17 18:35 - 2014-02-17 18:35 - 00003114 _____ () C:\Windows\System32\Tasks\{1B8D5B56-AFB9-4C6B-93ED-786734E592FC}
2014-02-17 17:59 - 2014-02-17 17:20 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Dxtory Software
2014-02-17 17:19 - 2014-02-17 17:19 - 00000000 ____D () C:\Program Files (x86)\Dxtory Software
2014-02-17 17:18 - 2014-02-17 17:18 - 02946889 _____ () C:\Users\Usuario\Downloads\Dxtory 2.0.119 by zasuke962013.rar
2014-02-17 16:57 - 2014-02-17 16:57 - 21983696 _____ () C:\Users\Usuario\Downloads\WT20 Australia vs New Zealand Game 5 - Highlights - YouTube.mp4
2014-02-17 16:23 - 2012-07-02 21:13 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-17 16:23 - 2012-07-02 21:13 - 00000000 ____D () C:\ProgramData\Skype
2014-02-17 16:23 - 2011-12-30 20:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-17 10:32 - 2013-07-20 15:10 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-17 10:02 - 2011-12-05 10:53 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 00:59 - 2013-04-07 19:51 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\TS3Client
2014-02-13 21:30 - 2011-12-06 12:49 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\SoftGrid Client
2014-02-11 15:58 - 2014-02-11 15:58 - 00006405 _____ () C:\Users\Usuario\AppData\Local\recently-used.xbel
2014-02-11 15:58 - 2013-12-27 18:59 - 00000000 ____D () C:\Users\Usuario\AppData\Local\gtk-2.0
2014-02-11 15:58 - 2013-12-27 00:55 - 00000000 ____D () C:\Users\Usuario\.gimp-2.8
2014-02-10 21:38 - 2014-02-10 21:38 - 01174683 _____ () C:\Users\Usuario\Downloads\Outlook.zip
2014-02-09 12:19 - 2014-02-09 12:19 - 00000000 ____D () C:\Users\Usuario\AppData\Local\{AEABB9AB-1ED1-491C-9AB2-118241EECCAA}
2014-02-05 20:49 - 2014-01-18 17:35 - 00000000 ____D () C:\Users\Usuario\Documents\RPGVXAce
Some content of TEMP:
====================
C:\Users\Usuario\AppData\Local\Temp\avgnt.exe
C:\Users\Usuario\AppData\Local\Temp\BackupSetup.exe
C:\Users\Usuario\AppData\Local\Temp\Down.exe
C:\Users\Usuario\AppData\Local\Temp\drm_dyndata_7370014.dll
C:\Users\Usuario\AppData\Local\Temp\gimp-2.8.2-setup-1.exe
C:\Users\Usuario\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Usuario\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Usuario\AppData\Local\Temp\Newtonsoft.Json.dll
C:\Users\Usuario\AppData\Local\Temp\Setup-a.exe
C:\Users\Usuario\AppData\Local\Temp\Uninstaller-5156.exe
C:\Users\Usuario\AppData\Local\Temp\vlc-2.1.3-win32.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-03-03 16:07
==================== End Of Log ============================
--- --- --- |
|
08.03.2014, 12:30
| #4 |
| /// the machine /// TB-Ausbilder | laptop braucht 20-30 Minuten zum hochfahren hi, Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
08.03.2014, 23:25
| #5 |
| | laptop braucht 20-30 Minuten zum hochfahren (code)Combofix Logfile: Code:
ATTFilter ComboFix 14-03-05.01 - Usuario 08/03/2014 22:25:07.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.34.3082.18.3894.2770 [GMT 1:00]
Running from: c:\users\Usuario\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\MediaPlayerV1
c:\programdata\04D
c:\programdata\04D\{F5C63651-994C-4564-8CB6-DD5EF74AE393}.swf
c:\programdata\575
c:\programdata\575\{810AD67B-2A74-4271-BC1F-39D156562FB8}.swf
c:\users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\extensions\diy5ti@oamqls.net
c:\users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\extensions\diy5ti@oamqls.net\bootstrap.js
c:\users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\extensions\diy5ti@oamqls.net\chrome.manifest
c:\users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\extensions\diy5ti@oamqls.net\content\bg.js
c:\users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\extensions\diy5ti@oamqls.net\install.rdf
c:\users\Usuario\AppData\Roaming\OfferBox
c:\users\Usuario\AppData\Roaming\OfferBox\config.xml
c:\users\Usuario\AppData\Roaming\OfferBox\http_app.offerbox.com\country.sxe
c:\users\Usuario\AppData\Roaming\OfferBox\http_app.offerbox.com\extracountry.sxe
c:\users\Usuario\AppData\Roaming\OfferBox\http_app.offerbox.com\history.db
c:\users\Usuario\AppData\Roaming\OfferBox\http_app.offerbox.com\profile.sxe
c:\users\Usuario\AppData\Roaming\OfferBox\http_app.offerbox.com\sdch\1365942392
c:\users\Usuario\AppData\Roaming\OfferBox\http_app.offerbox.com\update.sxe
c:\users\Usuario\AppData\Roaming\OfferBox\http_app.offerbox.com\update.xml
c:\windows\SysWow64\SETBECB.tmp
.
.
((((((((((((((((((((((((( Files Created from 2014-02-08 to 2014-03-08 )))))))))))))))))))))))))))))))
.
.
2014-03-08 22:17 . 2014-03-08 22:17 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-07 22:25 . 2009-09-04 16:44 517960 ----a-w- c:\windows\system32\XAudio2_5.dll
2014-03-07 22:25 . 2009-09-04 16:44 238936 ----a-w- c:\windows\SysWow64\xactengine3_5.dll
2014-03-07 22:25 . 2009-09-04 16:44 176968 ----a-w- c:\windows\system32\xactengine3_5.dll
2014-03-07 22:25 . 2009-09-04 16:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll
2014-03-07 22:25 . 2009-09-04 16:29 2582888 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2014-03-07 22:25 . 2009-09-04 16:29 5501792 ----a-w- c:\windows\SysWow64\d3dcsx_42.dll
2014-03-07 22:25 . 2009-09-04 16:29 5554512 ----a-w- c:\windows\system32\d3dcsx_42.dll
2014-03-07 22:25 . 2009-09-04 16:44 73544 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2014-03-07 21:59 . 2009-09-04 16:29 235344 ----a-w- c:\windows\SysWow64\d3dx11_42.dll
2014-03-07 21:59 . 2009-09-04 16:29 285024 ----a-w- c:\windows\system32\d3dx11_42.dll
2014-03-07 21:59 . 2009-09-04 16:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll
2014-03-07 21:59 . 2009-09-04 16:29 2475352 ----a-w- c:\windows\system32\D3DX9_42.dll
2014-03-07 21:50 . 2014-03-07 21:55 -------- d-----w- C:\ArcTemp
2014-03-07 21:47 . 2014-03-07 21:49 -------- d-----w- c:\users\Usuario\AppData\Roaming\Arc
2014-03-07 21:40 . 2014-03-07 21:55 -------- d-----w- c:\program files (x86)\Perfect World Entertainment
2014-03-07 09:02 . 2014-03-07 09:10 -------- d-----w- C:\FRST
2014-03-02 19:46 . 2014-03-02 19:46 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2014-03-01 13:07 . 2013-12-18 20:09 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-02-27 15:03 . 2014-03-07 21:30 -------- d-----w- c:\program files (x86)\GameforgeLive
2014-02-24 14:51 . 2014-02-24 14:51 -------- d-----w- c:\program files (x86)\MediaViewerV1
2014-02-18 21:36 . 2014-02-18 21:40 -------- d-----w- c:\users\Usuario\AppData\Roaming\iSkysoft Video Converter Ultimate
2014-02-18 21:36 . 2014-02-18 21:36 -------- d-----w- c:\users\Usuario\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2014-02-18 21:35 . 2014-02-18 21:35 -------- d-----w- c:\users\Usuario\AppData\Local\iSkysoft
2014-02-18 21:35 . 2014-02-18 21:35 -------- d-----w- c:\program files\Common Files\iSkysoft
2014-02-18 21:34 . 2013-08-23 12:36 721263 ----a-w- c:\windows\SysWow64\ISCM64.dll
2014-02-18 21:34 . 2013-08-07 13:31 214528 ----a-w- c:\windows\SysWow64\ISCM32.dll
2014-02-18 21:34 . 2014-02-18 21:41 -------- d-----w- c:\programdata\iSkysoft Video Converter Ultimate
2014-02-18 21:34 . 2014-02-18 21:34 -------- d-----w- c:\program files (x86)\iSkysoft
2014-02-18 15:09 . 2014-02-18 15:09 -------- d-----w- c:\users\Usuario\AppData\Roaming\OBS
2014-02-18 15:04 . 2014-02-19 11:34 -------- d-----w- c:\program files\OBS
2014-02-18 15:04 . 2014-02-18 15:04 -------- d-----w- c:\program files (x86)\OBS
2014-02-17 16:20 . 2014-02-17 16:59 -------- d-----w- c:\users\Usuario\AppData\Local\Dxtory Software
2014-02-17 16:19 . 2014-02-17 16:19 -------- d-----w- c:\program files (x86)\Dxtory Software
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-21 18:31 . 2013-02-24 21:12 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-02-21 18:31 . 2011-12-06 22:52 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-17 09:02 . 2011-12-05 09:53 88567024 ----a-w- c:\windows\system32\MRT.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]
2011-10-30 08:46 89008 ----a-w- c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{28387537-e3f9-4ed7-860c-11e69af4a8a0}"= "c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll" [2011-10-30 89008]
.
[HKEY_CLASSES_ROOT\clsid\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"C9627F042FF14DA7EE9FE476B40759E6870DA618._service_run"="c:\users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe" [2014-03-02 859464]
"HP Deskjet 3050A J611 series (NET)"="c:\program files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" [2012-10-17 2573416]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-07-02 602680]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-02-26 3814736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\progra~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll c:\progra~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 RtVOsdService;RtVOsdService Installer;c:\program files\Realtek\RtVOsd\RtVOsdService.exe;c:\program files\Realtek\RtVOsd\RtVOsdService.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 TorchCrashHandler;Torch Crash Handler;c:\users\Usuario\AppData\Local\Torch\Update\TorchCrashHandler.exe;c:\users\Usuario\AppData\Local\Torch\Update\TorchCrashHandler.exe [x]
R3 ArcService;Arc Service;c:\program files (x86)\Perfect World Entertainment\Arc\ArcService.exe;c:\program files (x86)\Perfect World Entertainment\Arc\ArcService.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 BackupStack;Computer Backup (JustCloud);c:\program files (x86)\JustCloud\BackupStack.exe;c:\program files (x86)\JustCloud\BackupStack.exe [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-05-19 09:36 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-03-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-24 18:31]
.
2014-03-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001Core.job
- c:\users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-16 07:06]
.
2014-03-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001UA.job
- c:\users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-16 07:06]
.
2014-02-23 c:\windows\Tasks\HPCeeScheduleForUsuario.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 01:53]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
uInternet Settings,ProxyOverride = *.offerbox.com;<local>
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
FF - ProfilePath - c:\users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\
FF - prefs.js: browser.search.defaulturl - hxxp://websearch.helpmefindyour.info/?pid=658&r=2013/04/14&hid=4273511417&lg=EN&cc=ES&l=1&q=
FF - prefs.js: browser.search.selectedEngine - WebSearch
FF - prefs.js: browser.startup.homepage - hxxp://websearch.helpmefindyour.info/?pid=658&r=2013/04/14&hid=4273511417&lg=EN&cc=ES
FF - ExtSQL: 2014-02-19 15:51; ext@MediaPlayerV1alpha5909.net; c:\program files (x86)\MediaPlayerV1\MediaPlayerV1alpha5909\ff
FF - ExtSQL: 2014-02-24 15:51; ext@MediaViewerV1alpha1460.net; c:\program files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 6ad08e9a000000000000c0cb388ae9bf
FF - user.js: extensions.BabylonToolbar_i.hardId - 6ad08e9a000000000000c0cb388ae9bf
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1723:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
FF - user.js: extensions.delta.tlbrSrchUrl -
FF - user.js: extensions.delta.id - 6ad08e9a000000000000c0cb388ae9bf
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15802
FF - user.js: extensions.delta.vrsn - 1.8.10.0
FF - user.js: extensions.delta.vrsni - 1.8.10.0
FF - user.js: extensions.delta.vrsnTs - 1.8.10.020:51
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - en
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - c:\program files (x86)\DealPly\DealPlyIE.dll
BHO-{D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-iSkysoft Helper Compact.exe - c:\program files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
Toolbar-10 - (no file)
AddRemove-DealPly - c:\program files (x86)\DealPly\uninst.exe
AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe
AddRemove-Notepad++ - c:\program files (x86)\Notepad++\uninstall.exe
AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA} - c:\programdata\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}\bm_installer.exe
AddRemove-FoxTab PDF Reader - c:\progra~2\FOXTAB~1\Uninstall\Uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1067236468-1955715275-1871763032-1001\Software\SecuROM\License information*]
"datasecu"=hex:e8,c6,91,80,83,c3,24,0d,9a,47,60,82,72,fa,0d,82,a3,df,0e,5c,34,
73,88,a6,3e,e9,e6,82,11,85,33,dd,e6,58,8c,82,18,45,75,f5,5d,ac,16,d8,90,0d,\
"rkeysecu"=hex:cb,bd,f2,61,5a,4e,c6,95,f2,29,8b,82,ba,6b,3d,44
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_70_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_70_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2014-03-08 23:22:19
ComboFix-quarantined-files.txt 2014-03-08 22:22
.
Pre-Run: 45.499.412.480 bytes libres
Post-Run: 46.000.459.776 bytes libres
.
- - End Of File - - DDCA7C13AC4DE1A2E08363C0F09CD033
(/code) |
|
09.03.2014, 18:43
| #6 |
| /// the machine /// TB-Ausbilder | laptop braucht 20-30 Minuten zum hochfahren Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> laptop braucht 20-30 Minuten zum hochfahren |
|
10.03.2014, 19:59
| #7 |
| | laptop braucht 20-30 Minuten zum hochfahren (code)Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.03.10.03 Windows 7 x64 NTFS Internet Explorer 8.0.7600.16385 Usuario :: USUARIO-HP [Administrator] 10/03/2014 9:18:24 mbam-log-2014-03-10 (09-18-24).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 238165 Laufzeit: 31 Minute(n), 15 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 2 HKLM\SOFTWARE\MediaViewerV1alpha1460 (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MediaViewerV1alpha1460 (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. Infizierte Registrierungswerte: 1 HKLM\SOFTWARE\Mozilla\Firefox\Extensions|ext@MediaViewerV1alpha1460.net (PUP.Optional.MediaViewer.A) -> Daten: C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff -> Keine Aktion durchgeführt. Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 8 C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460 (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ch (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome\content (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome\content\icons (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome\content\icons\default (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ie (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. Infizierte Dateien: 9 C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\uninstall.exe (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ch\MediaViewerV1alpha1460.crx (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome.manifest (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\install.rdf (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome\content\ffMediaViewerV1alpha1460.js (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome\content\ffMediaViewerV1alpha1460ffaction.js (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome\content\overlay.xul (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome\content\icons\Thumbs.db (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff\chrome\content\icons\default\MediaViewerV1alpha1460_32.png (PUP.Optional.MediaViewer.A) -> Keine Aktion durchgeführt. (Ende) (/code) (code) Hi bin beim ADWcleaner und habe nach dem Scan 2 Kästchen zum enthaken angezeigt, von denen ich nicht weiss, ob ich sie löschen oder enthaken soll. 1. Computer backup (Just Cloud)-Backup stack 2. Torch crash handeler Da mein Sohn torch benutzt und ein Android telefon hat, weiss ich nicht was ich machen soll. Löschen oder enthaken und dann löschen?  Danke. Sissy(/code) Musste den Laptop neu booten, da er sich aufgehängt hatte. Habe jetzt also ADW laufen lassen, unabhängig von der Antwort auf die Kästchenfrage... (code)AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.020 - Reporte Creado 10/03/2014 en 19:31:33
# Actualizado 27/02/2014 por Xplode
# Sistema Operativo : Windows 7 Home Premium (64 bits)
# Nombre de usuario : Usuario - USUARIO-HP
# Ejecutado desde : C:\Users\Usuario\Desktop\adwcleaner.exe
# Opción : Limpiar
***** [ Servicios ] *****
Servicio Borrar : BackupStack
[x] No Borrar : torchcrashhandler
***** [ Archivos / Carpetas ] *****
Carpeta Borrar : C:\ProgramData\Babylon
Carpeta Borrar : C:\ProgramData\boost_interprocess
Carpeta Borrar : C:\ProgramData\NCH Software
Carpeta Borrar : C:\ProgramData\SoftSafe
Carpeta Borrar : C:\ProgramData\torchcrashhandler
Carpeta Borrar : C:\ProgramData\Boreowse2save
Carpeta Borrar : C:\Program Files (x86)\iMesh Applications
Carpeta Borrar : C:\Program Files (x86)\NCH Software
Carpeta Borrar : C:\Program Files (x86)\WebSearch
Carpeta Borrar : C:\Users\Usuario\AppData\Local\PackageAware
Carpeta Borrar : C:\Users\Usuario\AppData\Local\SwvUpdater
Carpeta Borrar : C:\Users\Usuario\AppData\Local\torch
Carpeta Borrar : C:\Users\Usuario\AppData\LocalLow\BabylonToolbar
Carpeta Borrar : C:\Users\Usuario\AppData\LocalLow\mediabarim
Carpeta Borrar : C:\Users\Usuario\AppData\LocalLow\wincoreimband
Carpeta Borrar : C:\Users\Usuario\AppData\Roaming\NCH Software
Carpeta Borrar : C:\Users\Usuario\AppData\Roaming\Systweak
Carpeta Borrar : C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\torch
Carpeta Borrar : C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\Extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
Carpeta Borrar : C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\Extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
Archivo Borrar : C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\Extensions\addon@defaulttab.com.xpi
Archivo Borrar : C:\Windows\System32\roboot64.exe
Archivo Borrar : C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\searchplugins\Babylon.xml
Archivo Borrar : C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\searchplugins\delta.xml
Archivo Borrar : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Search_Results.xml
Archivo Borrar : C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\searchplugins\WebSearch.xml
Archivo Borrar : C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\user.js
Archivo Borrar : C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_microsoft-word.softonic.de_0.localstorage
Archivo Borrar : C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_microsoft-word.softonic.de_0.localstorage-journal
Archivo Borrar : C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_sb.scorecardresearch.com_0.localstorage
Archivo Borrar : C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_sb.scorecardresearch.com_0.localstorage-journal
Archivo Borrar : C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.softonic.de_0.localstorage
Archivo Borrar : C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.softonic.de_0.localstorage-journal
Archivo Borrar : C:\Windows\System32\Tasks\Dealply
Archivo Borrar : C:\Windows\System32\Tasks\DealPlyUpdate
Archivo Borrar : C:\Windows\System32\Tasks\NCH Software
***** [ Accesos directos ] *****
***** [ Registro ] *****
Clave Borrar : HKLM\SOFTWARE\Google\Chrome\Extensions\defdhglnppeioeflggkmglipcecffkhk
Clave Borrar : HKCU\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Clave Borrar : HKLM\SOFTWARE\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Clave Borrar : HKLM\SOFTWARE\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof
Clave Borrar : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Clave Borrar : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Clave Borrar : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Clave Borrar : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Clave Borrar : HKLM\SOFTWARE\Classes\Applications\iMesh_V11_en_Setup.exe
Clave Borrar : HKLM\SOFTWARE\Classes\Applications\iMeshV11.exe
Clave Borrar : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Clave Borrar : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Clave Borrar : HKLM\SOFTWARE\Classes\DnsBHO.BHO
Clave Borrar : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1
Clave Borrar : HKLM\SOFTWARE\Classes\Prod.cap
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_V11_en_Setup_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_V11_en_Setup_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup{2_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\offerbox_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\offerbox_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\OfferBoxhxxpProxy_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\OfferBoxhxxpProxy_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\OfferBoxUpdateService_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\OfferBoxUpdateService_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\torch.exe
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_4e24eecb
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_blender_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_blender_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_hamachi_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_hamachi_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_utorrent_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_utorrent_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_vlc-media-player_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_vlc-media-player_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_counterstrike-launcher_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_counterstrike-launcher_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_google-sketchup_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_google-sketchup_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_teamspeak_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_teamspeak_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_winrar_RASAPI32
Clave Borrar : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_winrar_RASMANCS
Clave Borrar : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Clave Borrar : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Clave Borrar : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Clave Borrar : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{474597C5-AB09-49D6-A4D5-2E8D7341384E}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{950F80EF-32C2-47DD-9C35-9576E21EE66E}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}
Clave Borrar : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Clave Borrar : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Clave Borrar : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Clave Borrar : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Clave Borrar : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Clave Borrar : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Clave Borrar : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Clave Borrar : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Clave Borrar : HKLM\SOFTWARE\Classes\TypeLib\{A147AA03-820F-4A0F-9F34-D6CB4004A2F9}
Clave Borrar : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D27FC31C-6E3D-4305-8D53-ACDAEFA5F862}
Clave Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clave Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clave Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clave Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clave Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clave Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clave Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clave Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clave Borrar : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clave Borrar : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
Clave Borrar : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Valor Borrar : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{28387537-E3F9-4ED7-860C-11E69AF4A8A0}]
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\CLSID\{474597C5-AB09-49D6-A4D5-2E8D7341384E}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\CLSID\{950F80EF-32C2-47DD-9C35-9576E21EE66E}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Clave Borrar : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Clave Borrar : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Clave Borrar : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
Clave Borrar : HKCU\Software\APN PIP
Clave Borrar : HKCU\Software\Conduit
Clave Borrar : HKCU\Software\ilivid
Clave Borrar : HKCU\Software\Imesh
Clave Borrar : HKCU\Software\NCH Software
Clave Borrar : HKCU\Software\Softonic
Clave Borrar : HKCU\Software\torch
Clave Borrar : HKCU\Software\AppDataLow\Software\mediabarim
Clave Borrar : HKLM\Software\Babylon
Clave Borrar : HKLM\Software\caphyon
Clave Borrar : HKLM\Software\Conduit
Clave Borrar : HKLM\Software\DataMngr
Clave Borrar : HKLM\Software\iMeshMediabarTb
Clave Borrar : HKLM\Software\NCH Software
Clave Borrar : HKLM\Software\Offerbox
Clave Borrar : HKLM\Software\PIP
Clave Borrar : HKLM\Software\SP Global
Clave Borrar : HKLM\Software\SProtector
Clave Borrar : HKLM\Software\systweak
Clave Borrar : HKLM\Software\torch
Clave Borrar : HKLM\Software\Uniblue
Clave Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\torch
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wincore MediaBar
Datos Borrar : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll
Datos Borrar : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll
Datos Borrar : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll
Datos Borrar : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll
Datos Borrar : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.offerbox.com;<local>
***** [ Navegadores ] *****
-\\ Internet Explorer v0.0.0.0
-\\ Mozilla Firefox v9.0 (de)
[ Archivo : C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\prefs.js ]
Linea borrada : user_pref("aol_toolbar.default.homepage.check", false);
Linea borrada : user_pref("aol_toolbar.default.search.check", false);
Linea borrada : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Linea borrada : user_pref("browser.search.defaulturl", "hxxp://websearch.helpmefindyour.info/?pid=658&r=2013/04/14&hid=4273511417&lg=EN&cc=ES&l=1&q=");
Linea borrada : user_pref("browser.search.selectedEngine", "WebSearch");
Linea borrada : user_pref("browser.search.selectedEngine,S", "WebSearch");
Linea borrada : user_pref("browser.startup.homepage", "hxxp://websearch.helpmefindyour.info/?pid=658&r=2013/04/14&hid=4273511417&lg=EN&cc=ES");
Linea borrada : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Linea borrada : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Linea borrada : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Linea borrada : user_pref("extensions.BabylonToolbar_i.babExt", "");
Linea borrada : user_pref("extensions.BabylonToolbar_i.babTrack", "tt=090212_noffx");
Linea borrada : user_pref("extensions.BabylonToolbar_i.hardId", "6ad08e9a000000000000c0cb388ae9bf");
Linea borrada : user_pref("extensions.BabylonToolbar_i.id", "6ad08e9a000000000000c0cb388ae9bf");
Linea borrada : user_pref("extensions.BabylonToolbar_i.instlDay", "15387");
Linea borrada : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Linea borrada : user_pref("extensions.BabylonToolbar_i.newTab", true);
Linea borrada : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?AF=119999&tt=090212_noffx&babsrc=NT_ss&mntrId=6ad08e9a000000000000c0cb388ae9bf");
Linea borrada : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Linea borrada : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Linea borrada : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Linea borrada : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Linea borrada : user_pref("extensions.BabylonToolbar_i.tlbrId", "tb9");
Linea borrada : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Linea borrada : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1723:19:06");
Linea borrada : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Linea borrada : user_pref("extensions.delta.admin", false);
Linea borrada : user_pref("extensions.delta.aflt", "babsst");
Linea borrada : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Linea borrada : user_pref("extensions.delta.autoRvrt", "false");
Linea borrada : user_pref("extensions.delta.dfltLng", "en");
Linea borrada : user_pref("extensions.delta.excTlbr", false);
Linea borrada : user_pref("extensions.delta.id", "6ad08e9a000000000000c0cb388ae9bf");
Linea borrada : user_pref("extensions.delta.instlDay", "15802");
Linea borrada : user_pref("extensions.delta.instlRef", "sst");
Linea borrada : user_pref("extensions.delta.newTab", false);
Linea borrada : user_pref("extensions.delta.prdct", "delta");
Linea borrada : user_pref("extensions.delta.prtnrId", "delta");
Linea borrada : user_pref("extensions.delta.rvrt", "false");
Linea borrada : user_pref("extensions.delta.smplGrp", "none");
Linea borrada : user_pref("extensions.delta.tlbrId", "base");
Linea borrada : user_pref("extensions.delta.tlbrSrchUrl", "");
Linea borrada : user_pref("extensions.delta.vrsn", "1.8.10.0");
Linea borrada : user_pref("extensions.delta.vrsnTs", "1.8.10.020:51:13");
Linea borrada : user_pref("extensions.delta.vrsni", "1.8.10.0");
Linea borrada : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Linea borrada : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Linea borrada : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Linea borrada : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Linea borrada : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Linea borrada : user_pref("sweetim.toolbar.searchguard.enable", "");
-\\ Google Chrome v
[ Archivo : C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [22017 octets] - [10/03/2014 10:02:46]
AdwCleaner[S0].txt - [20182 octets] - [10/03/2014 19:31:34]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [20243 octets] ##########
(/code) (code)~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.2 (02.20.2014:1) OS: Windows 7 Home Premium x64 Ran by Usuario on 10/03/2014 at 19:49:40,88 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A2DF06F9-A21A-44A8-8A99-8B9C84F29160} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_50001_1001_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_50001_1001_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\pricepeep_50001_1001_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\pricepeep_50001_1001_RASMANCS Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{518FE17F-FACB-425A-A652-69B67267CC73} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{518FE17F-FACB-425A-A652-69B67267CC73} ~~~ Files ~~~ Folders Successfully deleted: [Folder] "C:\Users\Usuario\appdata\locallow\datamngr" Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0052C36E-3932-4FE0-B780-69BE4137053F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{00D03D25-59FA-49B3-A597-C7AC676A16D2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{01911E03-223D-43DF-93E0-8FEAA7BC5A0B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{01C80280-F271-4F62-9A69-8ADD5E0F1B81} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{01FC43F6-AE55-4483-B6FC-B5C025B0C3A0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{03036E5C-A516-457B-9A7A-45EA5BA5AF8D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{039E032C-9EBF-46A5-AC60-EE83D88BA811} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0413B675-C94F-48C8-9E6B-2602A66EAF8D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0430F218-50E6-4AF9-984B-8EC63F464C29} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0580AEC3-7451-48DB-A6B2-D0B944482C52} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{059E3A53-25B5-4CC6-8D9C-90FAAA32D484} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{067B7734-54E0-4922-8D55-0C677D0A9886} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0686B0D0-25C7-49BD-9407-E8BADA50AAF1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{06F0F857-2A98-42EC-A064-07AEE45A32C2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0735463B-9D7F-4A33-B8C6-053B3C4EDD67} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{075C8E23-B124-4D73-9F48-FB9721FA6F18} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0768ABA7-F25C-49F4-B738-C85241597A20} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{07A53FDC-CB5C-45C8-A174-CC4CEC7227EE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{088C572B-0BA5-4F28-BE4C-94361C236B64} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{08F0B6B1-82A8-4E27-81B9-4B9BC8B121C7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{090103F2-8F61-41D3-9053-FB6E4CFA0C21} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{09380536-AD14-463F-A8CE-40A87B26D126} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{094E2F43-4C05-4E5B-B005-0ECC2867B7FD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{096C422C-024A-40F9-B1E3-A5967F336C21} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0ABCC485-5128-45F1-A9F9-A7E8A60679F6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0B36F761-9D29-4C7D-B08F-0753FED0558E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0BB14BDA-7A16-4E9D-84D2-01FCEEE5D9E9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0BC2A4A1-40A9-45FC-AB0E-710ED3B8B261} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0C383B9A-84F1-4F1C-A66C-99BFEA16C03E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0C4120CF-680F-4670-8803-31FB3501D62B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0C66ECD0-5833-4B5F-B1C8-6F3115FEFEDC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0C672FCA-B88E-424B-ABD2-425F96C7F5E9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0CDDE825-B184-4829-B4EC-D8D1C1C9678E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0DD00C3B-89C7-4E27-A61F-CBFE92EC2976} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0E018443-8AFC-4B61-B62E-8E25503C4BFB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0E9D5427-5668-4426-B069-FE218098403C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0F84A4A1-3DC0-4A77-BBF6-E6180134E26A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{0FD27906-2059-4454-BA87-72A8AC32C7AD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{105C5431-BFEF-42B9-9123-DEB5A8A3AC88} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{11643A92-2BE8-4A3C-8892-7DB792E92268} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1293071C-15C0-4AC7-86A2-4F9515757940} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{129CA715-D69D-4154-9B49-237ACF922AFF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{12C568AF-5934-4B87-9598-8A1E2AE11202} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{13FB7E09-54AA-4A08-B4D7-57F6614AAED4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{14170C1F-B87E-4D9C-B92A-F2A9F86F7385} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{147ECC19-786C-49A9-9FDB-1F26CF09294D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{154B9209-B4E2-4E69-A6E6-4212B4075452} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{156C7E12-12EB-4CC1-8F44-D8F43584386C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{15C61EA2-F7AB-410D-979E-EE6C7125FDAF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{15E2695D-218B-428C-AD1B-F37E04B23162} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{16C6E59B-6DB6-48FB-A516-6D37912BAACD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{16F4C508-47C4-417E-998A-206950B9337C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{177AD856-D156-48A4-9E5E-DFD5A1EB82B9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{179417CE-46D7-4363-B17E-337C3F188CE2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{181CF173-73ED-4530-B28F-412DF9D2CA78} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1860F7D8-428C-417B-80A3-6CA00535541C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{18A0581C-E79E-4EFD-869F-B4C3ABF78A52} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{18BFC24B-785E-461B-A03B-0FCCE53F6B17} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{18D635F1-95DC-45B8-9BA2-F17C99B5F6B0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{19531793-0790-4650-A12B-2EB55BB3DE2D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{19ED6698-156E-4E0D-ADEF-D99330F286DD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1B203664-E5D3-440D-87BD-F9C0A878D092} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1BB84C97-9B97-4038-A9FA-9ABF212E78D6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1C2BDDB2-7508-45AA-8B42-84876E36357B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1CAEF445-4798-42FE-A77E-20DA8847E226} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1D96560D-0E3E-4396-8E71-B10DD1C6E082} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1DA84F53-95C6-4FC7-994B-9A52390F690A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1DC0EBE2-B785-4AAD-A291-7E39CA42A560} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{1F2436C4-47F6-463A-B111-2D0E31979B81} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2072DEBD-2F10-4AC4-9E6E-6C4C3EEBB9BE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{214706FC-2875-4A88-B95D-F297A258C1BA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{22252200-C09F-4FE6-8F82-B6EA1B67890F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{23E9B1B4-4CAE-4640-A156-D8AABF4A54B3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{243B2FB6-54E0-4AB9-A637-89C698B7EC70} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2593A683-D5F6-4CA7-BC9D-EB42C076BE32} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{25995BBA-42DB-46E5-AA66-CE71C8C14B89} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{25D80111-DB4C-4878-A935-C80CF7941E19} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{260D4491-988A-4C45-8B7D-4445323208E1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{268118CE-6E9C-459A-88F5-C43994199F9F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2682F921-C601-4AFB-A4E6-ED180A194568} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2685E29B-50EF-4487-BC0A-1185DD167883} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{269555FD-DBBB-41D5-9B13-EBC1792CD5BA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{28E4BB0F-1746-4266-A8BA-8699DACC2236} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{29114651-CDC5-4297-9780-258CD2F6B543} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2A3166C6-25A2-4EE4-8B6B-CFA4C3843C93} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2A47B5A3-9969-4FDC-95E3-7C90E9AC1DBA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2A53F770-8167-4728-B4C7-A61BF64DF158} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2A9E9FD1-2C86-48FB-B532-0CBA8F635F96} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2B0AEB7D-3A63-47B7-95F0-A34AB3124022} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2C4DA182-97CA-41B4-9CAD-CC2A941F0AAA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2C904BE2-C6CB-4A82-B95D-33F2C621310E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2D661BA1-8710-4116-B861-2D4BD01E0F88} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2D7F47CF-74B9-4F91-BC06-A6C0B6564E8C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2D901FC7-F300-412C-A315-EA2057C894DF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2DB1EA16-E3DA-4F05-9612-6074BC14EDF2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2E6E2F7A-B03B-4D02-B416-1438E87F5CD3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2EE6366E-46DD-4FFD-9C26-9A4B88CC43D9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2F6C28F4-C4C3-43B0-A08C-1C109C65E3B5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2F928653-08BC-4338-AB05-73F3B9493949} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{2F9A0864-08FE-4E4A-AF36-135D58B75B3C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3016C988-44A0-4CD2-815F-B10FA5298646} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3048A433-136D-4400-8ABC-B325203A7545} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{306FA00F-9757-499F-AA6E-3C28894AB8CB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3090B619-1053-4E92-85B2-90ECA1ECDC7B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{30E81EF8-D78B-49F3-8A52-DD36FF998EB7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{31379A5E-17FC-46B3-995A-28657BCE62DB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{316A99CB-1F6B-4F9B-A127-E2C74F71BC2B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{316FDAC0-7FD0-4CF6-B0E7-4CC756C41C82} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{323441AA-C051-4B7C-8088-AAA7EBDEBD3E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{32750733-53F8-4761-8EBB-FD76DEA7745F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{329811AE-E735-4B5D-8748-FDD81579116B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{32B5A810-EC68-405E-ABF8-15B22058147E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{32D310A8-B2F6-4323-9B4A-C35E5E964C6E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{334E4D5D-78E8-4A60-86A5-B73BDC348667} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{33952BB9-68F4-43A4-999D-42E5F31FF5CC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{33A4E52B-28AF-47EF-ABF2-1F6E6A9821F3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{33B647C5-E490-4739-BCF8-820EFBD124D5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{33C499E0-A887-4986-89C3-2B92E3E571CD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3408AF9E-C187-4AAA-BFD5-2044B56663AF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{34A35C4C-B9C5-48B3-980B-5DD4DFCEB993} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{34B8414E-1B61-4CE1-8716-68F908BC6EC0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{35742170-5A1D-4E54-9153-8CA6E7BD41F6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{35B78BCD-7309-4485-B803-110E296CD8C0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{35CA293F-BB37-4288-90D7-08A3B4E3763F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{35D75902-5178-4D96-BD80-3FE88FB107E6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{35E83AF8-96E8-401C-8F07-265EC5435CB3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{369528F5-BF2B-49BA-8ACC-97882187AAE0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{36EB5DE8-D82A-445A-A18B-291B7C8A1A8C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3779D29C-839B-4B93-80DF-8489B2816BCC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{378E7BCC-7641-402A-B126-4DF9C2D6770F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{37B99419-2E2F-4063-88E9-C7CEC07C2E8E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{380B01E9-8559-4DBA-A628-90A0BDFECBC0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{38A16C44-681E-4E4A-9235-FE1951104F10} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{39AF5ACE-5723-43DC-809B-A8180D4842D3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{39BDD84F-82AD-426E-B9A4-7D04A8A15F15} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{39F7344B-6081-4D7F-A9D5-E535B7364CC5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3A439B02-7A57-4FF2-A26B-2D2F6EE27B5C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3A69FE87-BB6B-497C-A3EE-4D672F7958BB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3AC8EE2A-8190-43BC-9C57-5CD5CBA2AF30} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3AF27A45-BC0A-43E2-8AF3-429CE931E3DC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3BF30236-2063-4267-87AA-CA227208D1B2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3C3C8D58-32C0-473F-A610-B746AF353B14} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3D1923A7-2757-4596-8E54-A83733369832} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3D2947FE-3FD1-4EA8-9976-CA284D5715EA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3DB15DAB-8CBE-4F40-AAA6-D1EABA9A91C6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3DDC578E-5D55-4199-B301-42E143B96519} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3E47723E-7771-480A-86F7-1AAD1A5401DA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3E890FE5-62DB-4058-BB47-0790806BBFB0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3EAED5C5-E148-4753-8AA1-E8A1124ABD53} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{3EC39C20-ED26-47ED-8038-6A082CC1EC6C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{40781ED6-A809-4F14-8259-E9F901A9A838} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{40CCFA65-BBB5-4087-AB5F-D235F6F5E74C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{414D3523-FD4E-484A-A49D-7585C532637C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{41A578E6-3199-4B7A-AA8E-2B13F3E602C8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{432473A1-EC3B-410C-A4CC-A0BAB54E76FA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{437AABF6-FD95-490C-BBC5-6005D0914390} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{43B0513A-303E-4594-9F77-F56FABADFDEF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{448B6CB2-A7E9-4F3B-8544-4AA8381FD805} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4554CD27-975B-4E07-AE47-8C49FF35D78D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{45D1906A-18A5-47D6-9826-427AE8F95566} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{45FE604A-9578-4082-864C-C562B18AA539} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{46013ACA-11DE-458E-AC27-094D60B0EA50} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{476FB351-CC6F-4600-9C4D-6B12811C61B8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{48EF3312-4D8E-421B-9276-06F433669E16} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{496E0795-33EE-4CAF-91BC-AD8C44975539} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4A7650D8-F9CF-4251-8A65-F83FDDB0A2EB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4ADAA2B6-D1CA-42BE-A4CD-D1974EE77DB8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4AE3930B-8829-4A28-A4DC-B468187DA5E5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4BCE1C48-216F-4299-9738-BF02F8BCD678} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4CB5F21D-9405-41B8-A54B-0EB3384AC0D0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4CFB7EA0-F42A-4E53-9C20-148A7F705D6A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4DF76329-59F4-44C9-980B-ED47CF6559C2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4EB1BDC1-17D1-4D69-ADDF-0B25E631D4A5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4EC911B2-9AEE-46FC-B2ED-418EFA316CF3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4F25EC3A-85DA-486B-9B7E-1EE8AB24D0A7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4F472B0E-CABC-4AD4-A3CC-4D31A5163D2D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4FB0D66B-9CBD-44A4-96C7-D0E0B1305AA7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4FF29124-8945-43EB-866F-80D7C4CD1426} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{4FF7E995-5676-4AEB-8FF1-2B8DFB8784BF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5154FDBF-DD6D-41D5-87E3-7FA414AC1E21} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{52557C7E-B9B9-4ADC-B287-E9B404A775A0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{52D76BBB-F2C1-4AE1-BABD-472B3F61A990} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{52DBF5AE-1487-4B2C-B182-04C5F6D82697} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5352E7F8-9139-4289-B4FC-4DA9B65C3498} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{539A3460-183F-4F9C-B1B1-89E9C6292A3B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{54485E40-99ED-4D62-8227-CB70B4B3BCFF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5523BA9F-183B-4F00-B008-82B94AF2B223} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{552DA3C8-D2EC-4803-9C5F-B6D0D5228EEA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{55F37EC1-0A52-4C90-BB87-92962DDFDAE5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{55FB37F6-DA6B-4111-9CF1-65D5D84FE924} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5610C40C-9337-409D-8A5D-3E3D9F75B400} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{565D3892-4F76-4372-9799-054DED979F0F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5681C784-8322-432A-9ADC-878759848769} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{569B9C9B-A474-4BE2-936C-35D8FB449774} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{56C514D7-B249-4445-80C4-A6F15FF8648A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{56ED121A-433B-4455-9916-7E9C85D9E069} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{57069710-DB3A-433B-A0FB-F365071ED77F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5792A47B-AEEB-470D-8486-669EA3263ED8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5871E2A3-9F65-4CE4-8853-B874ED3A4036} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{58AFF469-4E83-448A-908A-67505F9E4C42} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{590D9568-3CB3-4295-AC97-DE4C032C9528} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{59B851C9-C173-4790-9AB1-7DAE7F537A62} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5A34D239-1FDE-4CCE-8B91-0D6BDA990C96} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5A3EE25D-C162-4D47-9CFC-D51A2E2FAFF4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5AD319BC-13B5-49E8-9BFF-64E7184F3382} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5BBC08A6-9F64-434C-9988-A7CD419A78F3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5C14A64A-3D66-40CC-89E6-CDA04D1E1A84} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5D6F3DE2-C107-4F15-ABA3-D43D2DE20422} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5E75BBCE-70F5-46C1-99FF-3278BA3D26B4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5E8D039B-2C19-4950-B5EA-6D2D27EEFBEF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5F675D76-BDB3-4792-93F2-21EFC788AE51} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{5F77E19A-49C8-41B6-8E7E-B17CF1983F79} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{602E1057-0E30-44A7-9336-67AAA91F1675} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6071B10B-77D9-41EE-92A2-C301757BA2AE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{608871F7-9CAE-4BB6-B321-3CD2E119C417} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{60F40FA2-47A3-4EE2-B1A5-623318BD7BBA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{60FD54A1-B7F3-4E91-9EE4-A202EB60BEB1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6183AE96-B537-4A6F-9814-3A856D29FA0C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{61FB3219-7084-45DF-AB72-AFA539AC4DB5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{62FD9822-F0FC-4F68-82A5-108593B7600F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6322D679-2B59-4E5F-BE7B-BEC194E21449} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{638469F1-CD13-44C0-AE66-6A4A28DF6DE3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{63DD0C8A-C4F4-4591-90B1-443AE578E045} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6599C0EE-D342-41FE-8B4E-80D680133CEE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{65A11892-A795-40CB-AA1A-BCD9DCD0EA5A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{66509251-ED6A-4ECF-9CA1-15B115B4DC7A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{666E63DB-CA7C-4322-B496-91B9126F37DC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6717D334-9AB9-4F96-AEF1-3ABC408DE340} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{671B0B0E-53F2-4CEC-9E5C-0CA4A1C91334} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6725FFE2-E82B-4C7D-81D8-EA51AE6BA3CB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{67297182-45B3-4570-BB4A-80DEC49C9170} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6843895C-36A7-47DC-9AA3-A1F7CDADFB53} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{68E57124-B188-404C-BEEA-4EBEADE78B12} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{694BB1E2-60F3-4E4D-AA20-5AC5DD9FBA3A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6972F3DB-A1F1-4C0C-89BC-0E2514BCA6DB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{69C56619-F79F-4AE0-9A7E-1E8ADB6668B3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6B31AEDB-9063-4952-AE35-91104D4086D4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6BE9EED8-F0A2-4208-AFBE-B0FB284F9F11} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6C61C364-DD56-4034-8E29-28F9DBD01652} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6CB80D63-96DA-4EC3-9D31-078CEE698102} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6DA88930-A759-4430-BC9C-6F942B965B2D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6DF81C38-BD04-4E02-A1AC-A1923D928677} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6E462D63-129A-45E8-B1D8-5BE7D3E8E15F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6EE9A4CD-4984-4A67-BA14-CAA4C3A9BC0C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6F0430CC-9D26-4B3E-BAAA-810BD4F50764} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6F7F3FB4-9517-4C96-8D4B-6E2E1BC40562} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{6FE417FC-A13F-4272-AC7A-2C0F1AD7FE4F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7049A18E-65ED-47E7-AA8E-8DA457B497AA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{704CB13E-DB20-46AC-80CE-34409BED5D83} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{70DBB220-9E63-4BAB-80BE-6E73247C1F10} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7119BF11-2DDC-4388-8944-42FA7CB4E6FF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{711E242B-A500-493D-9DE9-83A3B4CFBF2F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{714FCC9D-C573-4679-9EE8-E7C42E276006} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{71765A51-F822-4780-9F6E-BCBB1F92B020} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{71F3E794-1DA4-406A-BC33-CCB87E28F5C3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{720AD960-5958-4AAF-B7EF-E7376D5C4254} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{72A8B6CE-DCD0-412F-ABF2-34991818479E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7383E0D7-CEFF-4E7D-B9CE-9CD7E65E9370} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{73ECC6B4-D97B-4E00-A62E-8ED6F9222DE9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{74A49B82-1C44-4F70-B106-6A200CAABEDC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{74A9696C-AF3F-4F80-8919-DCB119A6D5BF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{74F8F19B-AE02-4CE2-8D3F-EC8B15EC384A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{74F8F869-96D1-49D0-A26F-A77D9E300814} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7533ED40-B286-424A-9098-5173D57EF512} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7540F5B4-E06A-47B1-B5A5-159FC81EC57C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7546785E-4435-46D8-AF2E-F4B054189BB8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{75470F8E-0974-4E59-A2EA-977FCBA45E14} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7743DD88-928A-4D9D-8F40-6348BFAE85C3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{790E62CC-EF39-47AE-8BFA-575E9E603BF7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{79DFD655-7706-4677-BABE-C6B07DE11B28} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7A02A7C3-3810-4E53-96FD-C62EDB35525B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7AAAF0B1-8886-4227-BF56-B562C149B5D0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7BA1DBBE-421F-4AE5-A0A8-DC576B193B81} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7BCF744C-9622-4FC0-95D6-FEB68054AF5B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7C83A6AC-1BFA-43CA-9D7C-0EF85DF9A15B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7CB8968B-CC8D-45AA-98BD-6C64D2F945BD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7CBD9366-1296-437A-BB59-D33DBCEB4979} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7D43E67B-126F-4645-820A-C04BFB4396B9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7E8C97AB-A356-419A-9C7B-509574A45742} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7ECC6670-8BC7-411C-A6FA-16FFAB72BFD8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{7F303D69-036E-4F33-8053-6F5752AF8154} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8074D08D-B09B-4DAC-ABD6-360506F4395A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{808BFD73-79BD-49D6-9667-814CB7DF6D0C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{81D3D972-AD0E-41F5-8280-FE8E0A913CB8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{82AB1496-BEF1-4949-A635-89BB84517CB5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{84020DE4-478B-41B4-B235-F6DD121A3610} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{84388057-B71B-4197-965A-E820FD2724A5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{844BCA0C-C706-47C8-974E-2363715BBFFC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{854B12A5-A82C-428F-9BF6-FD52C138C4CD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{85C44F71-7CC2-451D-84DE-74D6F55C7E51} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{86ACDCB5-4A8B-44F8-BBE4-76DC4E42D6F5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{87D994BD-A044-4994-922B-DA58E6628616} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{87FF7E9D-5438-4798-9727-10991111B812} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{884CBA78-F7AB-44F2-BCEB-412D97FDB806} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{89512DD4-92DE-47AC-9C57-3690CC067248} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{895D7816-6B92-4E5F-BDFB-3AC14CEBE04A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8963E233-08B6-42AD-876E-881BBEFD54B6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8A7F8E9C-EBE3-4387-B77D-11177EFFE6D0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8AC616D9-3D3D-48C6-B5A3-9103AC1F482F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8B11879B-95C8-4639-AEC3-BC54CF0FF908} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8C105965-E3FD-4705-AAD8-0104A4B6DA74} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8C359310-7839-42BC-B49F-F94529A07E02} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8C9818B2-C12E-49F1-BEAF-1979F8305094} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8DDB8B7C-B877-4705-89F9-47B1ADF762A0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8DF22463-2BCC-4822-AE8C-A3A2E76E5175} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{8FE9467C-BF79-48ED-8F88-FF683BAE33D8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{90A5D38B-0B73-47B7-97B3-633BEDE5A9A1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{90C33E0E-169D-4DCE-8C9A-9AD183604B5C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{91C4CD6D-C24C-48DB-B443-088CD7D0C2BB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{944660DB-B108-4DB5-AE2B-BF0CBE2BC5B2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{947057CD-659A-4C0B-8D28-A1316FCA59DE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{94BA4CBA-E8B7-41BA-987F-78EA1BFBB174} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{951EB799-E6E5-4770-9D1B-6A6BA0CA0F3B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{95D12EB9-3725-4C2D-B882-3D0720CEE8EA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{95E74D76-1C47-4C2E-BB17-E02E662548F1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9654EDC8-42A3-4D12-A01B-A2CBF3C8A749} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{96862828-C37B-4482-84B2-AC25E652B7C8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{970E68D9-62E5-4DFA-BA3A-19CA493769B7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{975F03FD-FCC1-4CF7-9EFD-E8CD13B632D5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{981B29D5-D4C3-421F-8EA6-271EF1844A81} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9832C9DB-2A0D-43FC-9F25-7F8C961F863D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{98945934-D1AD-477C-997D-5F14B502F761} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{98979506-059C-431A-B137-3A389E677A53} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{999E9152-1EBB-41AB-A792-D5EDCAFCDF44} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{99B0A86B-3EBB-4DE2-AB1A-F5B03EEC6D6A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9A1E5B40-9C9A-459B-BDB5-F036597F7B72} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9A30795E-D13C-4549-A562-9B402BD1E124} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9A3E3550-E7CE-4C75-95BA-FEE5DFEA34E7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9ADD14F2-1E49-4673-8419-192555141767} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9B76B79F-F6F4-4D96-86FD-FAFDD34FADCD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9B8F052F-06B1-4086-944F-A89B42AD8D9D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9BF339E7-EEB4-4380-B210-0FD4426CCBA4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9C33155C-1F83-425B-B44F-01E97910B70A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9D5DB8A6-958E-4F32-AA1F-BE43A96C2DBF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9E464289-9B17-43CC-AD4B-60BF7094FD37} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9EC7BC4F-004D-4760-9F01-DA3B823C344B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9F179C19-D051-4F0F-83C2-FDD2D1897BA8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9F3940E3-559E-4AF5-8B3C-BD536E88937C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{9F961D12-5B7C-452A-8322-75DC2F5B64CE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A0AABA0D-1B26-4275-9DB9-F7294E71D03E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A0D663FD-F813-4E85-BC9D-98AAC7BCCF37} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A0F2AECC-8736-4F5E-B6D9-5DF9B4777ADE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A1378908-9568-465B-BF15-1EF4BBF858D5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A151E8D8-0CE0-48E7-9F2A-BED4A809E550} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A19FFDF9-35CF-45C9-AD53-6ECB867FDA4C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A1CEC28C-A74A-47D1-8F87-BCB038EB6D3F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A22F258F-CCED-46CA-BF3F-708DCD7F2BAC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A30C1F4F-55AA-4600-A7C6-D156A1D921C9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A3277C28-0A66-46FD-84E8-5E1ABB042E51} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A38ACE61-3AA5-48B3-B4CF-BC4D8EDEA557} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A3D6A1AC-365E-4623-B46E-C4A4EEE86BDD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A45AA292-561C-4995-B03C-A69B95948F71} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A5E4BCD7-0487-495A-8DC9-A4327434CEB4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A6B36F5A-9721-40B3-BF69-DB967B0CACC4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A6FB4563-DAD8-486E-8E48-A7CC65350F94} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A7518737-6A04-4BA3-9E1A-B0C39F403700} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A790FAC5-F2D9-4FA4-AC59-166CB75EEA75} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A7CB938F-2E7D-44A1-815A-7660502F376A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A85DAF1F-FBD1-4FF3-B694-B583D609B973} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A8E672CC-29AA-4D2F-89E1-4D7F6F5CD4F8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A93C0A00-4CAC-4D34-9F80-18CD1BCA3DCB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A9BAB17C-6E08-4E00-812E-35EF047B8FA1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{A9C8ECE6-8427-46FC-B781-1E058D8BCBD2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AA019308-B600-4AC9-B727-8D5B9DDF2948} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AAE4D12A-5427-4898-A4E1-90375F3EFA39} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AB9A75D1-8989-420B-BBB6-3C6CC56E2E02} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{ABCEE463-5124-4F39-89A3-134A3841EA14} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AC04AED9-7FD3-4B29-BC0C-341375F2E6EB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AC11E59F-E9F8-4471-B12F-6765ABD176D2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AC44E680-021F-4108-8226-5F513A8C8579} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AC461C66-3802-41CE-AE00-97FD6171324F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AD38C8E6-B1AC-4E04-9E14-E5602C242D4A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AD835D26-0F56-4ABB-9EAC-4ABDE0BE2EC8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AE3D29E8-6ABB-4BC5-894B-E057D31465B9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AEABB9AB-1ED1-491C-9AB2-118241EECCAA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{AFCF7E55-F2D5-41F2-BC86-5CCF0A393E6B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B0057ABD-985C-403B-B7E4-F37BA539202D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B00D42E2-2685-485B-92B8-BD635149F28A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B0252B22-2428-4947-BC84-0793804AC2FE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B05F8D65-3C4A-49D7-B9D4-D20B282769F3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B108DFF6-0135-4CA8-886A-03E7D3921FB1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B1BD4D9B-F828-4FE5-BB00-D27CB44A7B05} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B1BD69AD-65FB-46EC-90EF-F4FC15721904} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B3013FEB-5F20-4EA4-8A66-E8F8D563B213} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B31062A8-31E4-435E-AB6D-F224B7A1D02C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B32C4E8B-C8B4-4E83-A14A-DA76F86FA09D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B3E3B27C-3803-4DD7-A6AB-E0E12AB1BCEE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B3FB47AB-2851-41D7-8BD7-7737ECDE8737} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B43AE035-10A5-48AD-B4B4-7EE5C5BF4075} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B5AA4DC2-2906-4BD1-A6DB-C788B3AE2D05} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B5D3AA53-DB7F-4616-9ACB-5E293203078D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B60499B7-7F3D-4B0D-9613-FC440C5036E8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B658453F-AAC6-4049-9EC7-4887EEF77DBB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B6E34260-A8C2-4B74-9386-91A4D206E3E7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B7BFE185-950F-44CD-8083-69D80E3016A3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B7F4DF65-1D9F-42B0-BDCA-4AECD2FDBE95} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B8212DE4-1F22-4F4D-8E02-4B93485C831B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B8E8F80D-1746-4BA7-94AD-FD9353B0FE22} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B907B27C-5AE2-497A-9A41-8FF9C1BC89C5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B99E8616-755E-42F6-9F2D-0739A3526492} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B9F4B91C-CE23-4EF1-BDE6-70D29AE9E16D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{B9F65A52-FDD1-4663-90E0-80A2D6F4EB63} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BA0E6CFB-10EB-45CD-A08A-0C473DD5EB99} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BA6F36FB-7DB8-45A2-965F-4BC5D6D1A449} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BA843D77-636B-4E7A-958C-841267E70073} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BAB81D93-55C3-4139-8B16-6DE66DDFABC0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BB146D04-6B3F-4D03-A9BB-3B6199B9A6D3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BBF7320E-AFF3-47F6-9849-FDD83FF75CFF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BCBA1297-8803-4216-8844-24E64FB5E4AB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BCC608A0-CA20-48F8-93F3-D11A204BA49C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BD53487E-2328-4E25-BB69-5A6507A20B0A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BE193727-6110-4B98-801B-B79EA358C86C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BE6C23B4-DE5E-442A-A675-B558546C5AC9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BE7B9D2B-A09B-4BA6-BFDF-E7BB65D4C040} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BF013136-2E07-4783-9037-DD0C1FD27257} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BF2D4DA8-BB90-4411-BA66-22CBAF6FF04C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{BF4A6B64-FDBD-4BC4-A84D-7623181CD790} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C106D350-778F-499A-865F-E10D170F4811} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C115A02E-3A64-4792-B7C1-C7DB143FC4D5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C11B7272-A349-485A-9949-7394AC11D76D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C15A8468-22F0-4954-95EF-E61320081E0C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C1E27333-3243-49B0-A094-A883D3BA186D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C2ADE88F-24AF-4075-8043-1F141A981E78} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C2F6F125-57C1-4116-A88B-BA07EEB6A28B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C31CA443-4FF2-475D-AE64-607C2CE09F64} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C351162E-48B8-4552-BE48-E17B84C1D9F6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C3FAA7B5-C1CF-43D7-B367-9D63A6F1100A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C40906F0-53FA-421E-8E84-558A4B8D7FBC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C43FFE2D-7436-42F7-A5BA-3A85FF7081C1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C4807A3D-F92F-42A1-9F82-45846A70CA11} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C5584290-5944-488A-A993-A5ACD7FF754E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C5E824B6-89AC-4885-81B2-61C22270BFED} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C6120138-7B69-4EC6-9D83-ABFD11F38C7A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C652B18B-097D-4B70-9AB5-3FA36DEEFF01} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C66B2703-1AE6-49C9-BF33-412753A8ABA9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C674996B-D615-4F25-8454-DFEF967D922A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C69BB488-8DC6-4D2E-B517-785F2CD404F6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C6E9F0BA-151A-4B9F-BDE1-1307A2C85447} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C7ED8A4D-ACC9-441F-9AEB-FE9BBCBB7358} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C80388AA-76D9-46B1-ADEC-757378C20940} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C80F63BD-D5E0-4692-9D34-051EDAA89FAB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C844A31A-B664-44F5-9BE3-29A2354EAF11} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C8F787D3-F005-4A5D-92B2-EDC76E2253E1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C92455B5-0F38-4842-9D3F-530BD98DA5FA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C94395A2-17CE-4BD9-852C-4F0613321F80} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C9540995-6CE8-4740-A151-EC0537BF9ED7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{C9DB084B-45BA-467A-BD08-CE72CBA2B315} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CA4B08B5-34BB-4AE3-97BA-332DFB0AA44B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CA6877B4-11BA-4E2E-9242-B7E30F8E241F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CA69E23A-D670-4198-89DE-C3873E7F740E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CAAEFEA7-5565-4D6E-A631-26A05C3B6E54} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CAD6C01B-F5BC-44FB-B798-E59192653758} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CB14A8A7-0415-4837-B8A8-EF4BB99E24F5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CC37FE4C-3C49-41E9-A316-ED8C3A1BED09} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CCE32F9B-394E-4CAC-B756-F5B8DA8CC8F9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CCE3923D-D99D-4549-8F56-B2091D3D16DB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CDBA3047-5ADC-4612-84B4-6116FD5530EC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CDD08482-D528-488E-81CE-9A5F2430FF33} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CE34ACCF-A259-4A7F-AEA5-7E28593276EB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CF3341DE-E120-4712-A403-ABAB32BFEC23} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CFA29E01-A7C7-4E9A-B7E6-87771CC647A1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{CFE77380-4099-4DCD-AF67-CE97F0DF683B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D0524BDD-7071-419C-BCE7-21B35F2213F2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D214688F-F302-4C66-81CA-A4CF5E1B0B08} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D332B61C-034C-4DA0-926F-BC3F75F198A4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D36FD965-494F-4817-AEC5-984FEB87F768} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D3C74C9C-46AA-48D9-99E6-BC540A2E57EB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D45B392E-75E8-4FF7-8FEE-10972510E026} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D539BBEA-6119-4F23-8C6A-3F982AE28583} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D6059F91-4828-49AD-AC05-19C4A1E2543B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D6C859FB-C726-4D09-BD8E-CCB4486ACA5D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D7866670-5975-4329-B9AD-9B15483E0683} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D82BF33E-AB94-41FE-909C-52270ADD04E8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D82D50E7-A6AF-4C45-BC12-8CC9ADE8BC1D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D869FAE4-82C9-4617-91C5-D0F0E11EF5B0} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{D87C17B2-4D34-4F5D-82CF-785D1826191C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DAE588C1-1C37-43EB-93F2-C2AF85E34AED} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DB1FD400-ED86-4F7E-BCE9-E893F0FDF2D1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DB7F2B74-D1A4-4B52-BA74-C4CD68B8E980} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DBD4C269-D979-4968-8730-F882261E7D68} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DC999C85-9730-48AA-BABF-1AF6C9DDCB59} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DCDDD5BD-57F5-4F9E-B33C-B0669D06F28B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DD98FEF0-0D7F-4E26-8F5A-D78B05224B02} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DDF50A1C-3D54-4BFC-8E12-178C862E61F8} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DE90E7F6-070E-4925-B51D-630CBC2AAEA3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DEDC1304-24E7-49F1-A652-0DBA2BBC6AB5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DF38B82D-4DE3-48F1-9571-7C4BB5A76CB7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{DFCEE0BA-7139-451E-ACAF-63837DD976D9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E0BDBDF9-382A-40C7-91A0-8D455B1ACCAF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E1EB33AB-7492-4F5F-89C4-7031F522581A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E28567A1-5FBD-4B6A-8534-E62116ADAAC2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E28DDEC3-94A6-406D-B4CD-F39E98E46A5E} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E2B020AD-BCD2-46D0-850E-623E38C8263D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E3170A05-6F04-4B47-A9FE-78FDE57529C1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E33EB0CB-39C1-41BA-A1F5-333A5837CCC9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E4C55317-2719-4CBA-A610-888C5421FDCE} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E52D4E12-7CA4-4418-B0BE-FF1E99627E9F} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E53E0301-0CCC-49D6-BD51-73E3967BDB90} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E55DCAE9-ED8E-48A1-93DA-ED378B2D4C3B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E580B1E4-1A98-4725-A277-567684EAB1BC} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E59C565B-C0B8-4BDF-A84A-75DA51B9356C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E658CB35-46B0-4DD5-B2E5-B6CCE842C1A5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E6756AEB-CD01-4F2A-99E2-DEE5F1C7ABE2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E675A980-EBAC-4FA2-98E3-1CD6CD9A5A5D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E6A52842-BE4D-4B16-A7FC-CBB7DE875845} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E6DCC117-4B24-48E6-8FD4-73EEAD630477} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E7024742-7A55-4D14-8258-D66774E75CD4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E765C153-E269-4AE9-8D7D-D693FD51025B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E7E85CC3-DE51-432F-B709-DD4541DE8369} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E84B68EE-7C48-4447-AA52-41F271B78F8A} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E8AD4EA5-3675-4FD3-B388-A76C1C190B48} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{E9275BC6-B8E4-44D8-ACFA-47A64BDFDFF9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EA474011-9AE8-4F92-8FD2-7FD157B5035C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EA63DDA9-FBDD-4561-9142-DF5E2FF1B5B6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EC450547-AC76-42E5-913F-333A5871F637} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EC89A567-1E3B-419F-8D5A-A037F8EF4A57} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{ECA658E5-C1B2-40C7-A9BA-629288664AFB} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{ECCD70A7-716C-43F9-9ED6-2A2A72648A66} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EE2A6958-0FD5-4C57-9BC1-620FD91E44E4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EE2E0A02-3B0D-40AE-A64C-0D5546C376E4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EE5D1948-7D7A-4B8A-833B-22D95330E439} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EEB2695F-5022-489F-8AC3-534D1BB40FEF} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EEFB79C7-BFBE-4C28-A2F9-EE7CDFE7D9ED} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EF8CF45E-4BF8-4EA8-ACE1-6AC923603D33} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EFBB3D0A-6D3D-4CEE-B341-D42098B1C92B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{EFEE3E82-E2E2-437A-ACC1-FC013FFA5144} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F03B3931-28F3-40BB-BC88-CA99BEAF0A24} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F14647E6-F73A-4F2D-9467-3C58DAE702E1} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F16D6376-8902-4214-BD9A-67352E53567C} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F1FB2230-BFB9-495C-806A-A7E8613824E7} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F25EC6F7-38B9-4341-AB7F-A79C2205F6A3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F3436BA3-46AC-41FD-9F60-8244DE9E1545} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F3DC9237-F398-4C03-8DEE-3CE95BC079E3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F4A494E3-9230-4A16-BCB0-B2E7B26401A9} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F549827E-6652-46D9-BDA5-651CE81B59F4} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F602A0C9-D585-43BF-B6AF-E0C5FA24643B} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F6A4E233-BA65-45C3-B00A-432476DD1E02} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F72FF2F3-04AC-4DFF-8F19-8CB5907F92C3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F7FC413C-53ED-4C9E-884D-28E06CEEEEDA} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F85E9BE4-35F1-47FF-A7A2-39A9C7E64D4D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F8B8F389-14A9-4288-9D6E-EFA2B90D2518} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F90255A1-974B-4D48-9BB2-3570467990B3} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F949A8AB-6395-49A9-A5FD-7119C0CDDAA2} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F9570A63-974D-4723-87A8-07E36F9800FD} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F9779469-E750-4027-9029-D46A14135711} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{F984318B-B5FF-4D6B-A34C-61F8F5A145A5} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{FB192912-696E-47E3-B275-09DA3885E004} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{FBB9E96D-6631-43A1-954E-58CEE1D6EE4D} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{FC988A28-E4B0-40DE-93D2-EBFE710C05C6} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{FD251CE6-2995-44B6-A445-049430181885} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{FDCDF9DD-4EDD-42A7-B633-1F305CFF1C88} Successfully deleted: [Empty Folder] C:\Users\Usuario\appdata\local\{FF3A9FB7-E18B-4A1B-88CF-96CF6AABD316} ~~~ FireFox Successfully deleted: [File] C:\user.js Successfully deleted the following from C:\Users\Usuario\AppData\Roaming\mozilla\firefox\profiles\bxb57zcd.Standard-Benutzer\prefs.js user_pref("extensions.defaulttab.active.affiliate", 3504); user_pref("extensions.defaulttab.browserID", "2BC42AC765DF1D0B181DA72314C2337B"); user_pref("extensions.defaulttab.firstrun", false); user_pref("extensions.defaulttab.installedVersion", "1.4.2"); ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 10/03/2014 at 19:57:20,41 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ (/code) Geändert von teach97 (10.03.2014 um 10:57 Uhr) |
|
10.03.2014, 20:23
| #8 |
| | laptop braucht 20-30 Minuten zum hochfahren Leider ist jetzt torch gelöscht..keine Ahnung warum..hatte ja extra den Haken entfernt.. (code) FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-03-2014
Ran by Usuario (administrator) on USUARIO-HP on 10-03-2014 20:05:09
Running from C:\Users\Usuario\Desktop
Windows 7 Home Premium (X64) OS Language: Spanish Modern Sort
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
==================== Registry (Whitelisted) ==================
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [602680 2010-07-02] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1067236468-1955715275-1871763032-1001\...\Run: [C9627F042FF14DA7EE9FE476B40759E6870DA618._service_run] - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe [859464 2014-03-02] (Google Inc.)
HKU\S-1-5-21-1067236468-1955715275-1871763032-1001\...\Run: [HP Deskjet 3050A J611 series (NET)] - C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
Startup: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\JustCloud.lnk.disabled
ShortcutTarget: JustCloud.lnk.disabled -> C:\Program Files (x86)\JustCloud\JustCloud.exe (No File)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyEnable: Internet Explorer proxy is enabled.
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON/10
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL =
SearchScopes: HKLM - {518FE17F-FACB-425A-A652-69B67267CC73} URL = hxxp://es.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM - {F2A748D4-7F46-4ACA-BE8A-14D98E7D1E3F} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 - {F2A748D4-7F46-4ACA-BE8A-14D98E7D1E3F} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKCU - {F2A748D4-7F46-4ACA-BE8A-14D98E7D1E3F} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll (Perfect World Entertainment Inc)
BHO-x32: Aplicación auxiliar de inicio de sesión de Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2010-07-17] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin - C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll (Perfect World Entertainment Inc)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Usuario\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Usuario\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-03-03]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewerV1alpha1460.net] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff
FF Extension: Media Viewer - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff [2014-02-24]
Chrome:
=======
CHR HomePage: homepage_is_newtabpage
CHR RestoreOnStartup: "sync": {
"suppress_start"
CHR Plugin: (Shockwave Flash) - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Happy Cloud Plugin) - C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll No File
CHR Plugin: (BrowserPlus (from Yahoo!) v2.9.8) - C:\Users\Usuario\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll No File
CHR Plugin: (Kalydo Player Plugin for Mozilla) - C:\Users\Usuario\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll No File
CHR Plugin: (Raidcall plugin) - C:\Users\Usuario\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (Media Viewer) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgdegkcffldnapfegkmjnhkfaofcjigf [2014-02-24]
CHR Extension: (Skype Click to Call) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-05-26]
CHR Extension: (Google Wallet) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [kgdegkcffldnapfegkmjnhkfaofcjigf] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ch\MediaViewerV1alpha1460.crx [2014-02-23]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]
CHR StartMenuInternet: Google Chrome - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) =================
S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [88400 2014-02-24] (Perfect World Entertainment Inc)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [27192 2010-07-02] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S2 TorchCrashHandler; C:\Users\Usuario\AppData\Local\Torch\Update\TorchCrashHandler.exe [X]
==================== Drivers (Whitelisted) ====================
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [225280 2009-09-23] (Realtek Semiconductor Corp.)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-10 20:05 - 2014-03-10 20:05 - 00019439 _____ () C:\Users\Usuario\Desktop\FRST.txt
2014-03-10 20:05 - 2014-03-10 20:05 - 00000000 ____D () C:\Users\Usuario\Desktop\FRST-OlderVersion
2014-03-10 20:00 - 2014-03-10 20:04 - 00000000 ____D () C:\Users\Usuario\Desktop\virenbeseiting
2014-03-10 19:49 - 2014-03-10 19:49 - 00000000 ____D () C:\Windows\ERUNT
2014-03-10 19:42 - 2014-03-10 19:42 - 00014334 _____ () C:\Users\Usuario\Desktop\chrome - Acceso directo.lnk
2014-03-10 10:02 - 2014-03-10 19:34 - 00000000 ____D () C:\AdwCleaner
2014-03-08 23:22 - 2014-03-08 23:22 - 00025264 _____ () C:\ComboFix.txt
2014-03-08 21:19 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-03-08 21:19 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-03-08 21:19 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-03-08 20:47 - 2014-03-08 20:47 - 00000000 ____D () C:\Users\Usuario\Documents\ProcAlyzer Dumps
2014-03-08 20:34 - 2014-03-08 23:22 - 00000000 ____D () C:\Qoobox
2014-03-08 20:34 - 2014-03-08 23:19 - 00000000 ____D () C:\Windows\erdnt
2014-03-08 20:27 - 2014-03-08 20:27 - 05187267 ____R (Swearware) C:\Users\Usuario\Desktop\ComboFix.exe
2014-03-07 23:25 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-03-07 23:25 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-03-07 23:25 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-03-07 23:25 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-03-07 23:25 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-03-07 23:25 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-03-07 23:25 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-03-07 23:25 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-03-07 22:59 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-03-07 22:59 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-03-07 22:59 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-03-07 22:59 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-03-07 22:58 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-03-07 22:58 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-03-07 22:58 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-03-07 22:58 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-03-07 22:58 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-03-07 22:58 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-03-07 22:56 - 2014-03-07 23:24 - 00035178 _____ () C:\Windows\DirectX.log
2014-03-07 22:47 - 2014-03-07 22:49 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Arc
2014-03-07 22:40 - 2014-03-07 22:55 - 00000000 ____D () C:\Program Files (x86)\Perfect World Entertainment
2014-03-07 22:40 - 2014-03-07 22:40 - 09005512 _____ (Perfect World Entertainment) C:\Users\Usuario\Downloads\ArcInstall_v20140224a.exe
2014-03-07 16:33 - 2014-03-07 16:33 - 08808582 _____ () C:\Users\Usuario\Downloads\As Seen On TV Balancing Act Skinny Body Care part 2 - YouTube.aac
2014-03-07 16:31 - 2014-03-07 16:33 - 85817666 _____ () C:\Users\Usuario\Downloads\As Seen On TV Balancing Act Skinny Body Care part 2 - YouTube.mp4
2014-03-07 10:04 - 2014-03-07 10:10 - 00045883 _____ () C:\Users\Usuario\Downloads\Addition.txt
2014-03-07 10:02 - 2014-03-10 20:05 - 00000000 ____D () C:\FRST
2014-03-07 10:01 - 2014-03-10 20:05 - 02157056 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2014-03-02 20:46 - 2014-03-02 20:46 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-03-02 20:46 - 2014-03-02 20:46 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-03-02 00:23 - 2014-03-02 00:24 - 39967251 _____ (Hi-Rez Studios) C:\Users\Usuario\Downloads\InstallHiRezGamesEnglish (2).exe
2014-03-01 14:07 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-03-01 14:07 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-03-01 14:07 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-03-01 14:07 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-03-01 14:06 - 2014-03-01 14:07 - 00005173 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-27 16:04 - 2014-03-01 18:07 - 00000000 ____D () C:\Users\Usuario\Downloads\Gameforge Live
2014-02-27 16:03 - 2014-03-07 22:30 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-02-27 16:02 - 2014-02-27 16:02 - 20463792 _____ (Gameforge ) C:\Users\Usuario\Downloads\Metin2_GameforgeLiveSetup.exe
2014-02-24 15:51 - 2014-02-24 15:51 - 00000000 ____D () C:\Program Files (x86)\MediaViewerV1
2014-02-19 15:51 - 2014-02-19 15:51 - 00000282 __RSH () C:\ProgramData\ntuser.pol
2014-02-18 22:36 - 2014-02-18 22:40 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\Documents\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Users\Usuario\AppData\Local\iSkysoft
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Program Files\Common Files\iSkysoft
2014-02-18 22:34 - 2014-02-18 22:41 - 00000000 ____D () C:\ProgramData\iSkysoft Video Converter Ultimate
2014-02-18 22:34 - 2014-02-18 22:34 - 00000000 ____D () C:\Program Files (x86)\iSkysoft
2014-02-18 22:34 - 2013-08-23 13:36 - 00721263 _____ () C:\Windows\SysWOW64\ISCM64.dll
2014-02-18 22:34 - 2013-08-07 14:31 - 00214528 _____ () C:\Windows\SysWOW64\ISCM32.dll
2014-02-18 22:32 - 2014-02-18 22:32 - 37244466 _____ (iSkysoft Software ) C:\Users\Usuario\Downloads\video-converter-ultimate_full1329.exe
2014-02-18 16:09 - 2014-02-18 16:09 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\OBS
2014-02-18 16:04 - 2014-02-19 12:34 - 00000000 ____D () C:\Program Files\OBS
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-02-18 16:03 - 2014-02-18 16:03 - 07868406 _____ () C:\Users\Usuario\Downloads\OBS_0_611b_Installer.exe
2014-02-17 18:35 - 2014-02-17 18:35 - 00003114 _____ () C:\Windows\System32\Tasks\{1B8D5B56-AFB9-4C6B-93ED-786734E592FC}
2014-02-17 17:20 - 2014-02-17 17:59 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Dxtory Software
2014-02-17 17:19 - 2014-02-17 17:19 - 00000000 ____D () C:\Program Files (x86)\Dxtory Software
2014-02-17 17:18 - 2014-02-17 17:18 - 02946889 _____ () C:\Users\Usuario\Downloads\Dxtory 2.0.119 by zasuke962013.rar
2014-02-17 16:57 - 2014-02-17 16:57 - 21983696 _____ () C:\Users\Usuario\Downloads\WT20 Australia vs New Zealand Game 5 - Highlights - YouTube.mp4
2014-02-11 15:58 - 2014-02-11 15:58 - 00006405 _____ () C:\Users\Usuario\AppData\Local\recently-used.xbel
2014-02-10 21:38 - 2014-02-10 21:38 - 01174683 _____ () C:\Users\Usuario\Downloads\Outlook.zip
==================== One Month Modified Files and Folders =======
2014-03-10 20:05 - 2014-03-10 20:05 - 00019439 _____ () C:\Users\Usuario\Desktop\FRST.txt
2014-03-10 20:05 - 2014-03-10 20:05 - 00000000 ____D () C:\Users\Usuario\Desktop\FRST-OlderVersion
2014-03-10 20:05 - 2014-03-07 10:02 - 00000000 ____D () C:\FRST
2014-03-10 20:05 - 2014-03-07 10:01 - 02157056 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2014-03-10 20:04 - 2014-03-10 20:00 - 00000000 ____D () C:\Users\Usuario\Desktop\virenbeseiting
2014-03-10 20:01 - 2011-12-16 08:06 - 00001118 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001UA.job
2014-03-10 19:49 - 2014-03-10 19:49 - 00000000 ____D () C:\Windows\ERUNT
2014-03-10 19:45 - 2009-07-14 05:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-10 19:45 - 2009-07-14 05:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-10 19:42 - 2014-03-10 19:42 - 00014334 _____ () C:\Users\Usuario\Desktop\chrome - Acceso directo.lnk
2014-03-10 19:40 - 2013-10-13 18:04 - 00000000 ____D () C:\Program Files (x86)\JustCloud
2014-03-10 19:39 - 2013-04-07 19:51 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\TS3Client
2014-03-10 19:38 - 2012-07-02 21:13 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-10 19:38 - 2011-12-30 20:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-10 19:37 - 2013-10-04 14:50 - 00026912 _____ () C:\Windows\setupact.log
2014-03-10 19:37 - 2013-09-06 14:41 - 00000000 ____D () C:\Users\Usuario\AppData\Local\LogMeIn Hamachi
2014-03-10 19:37 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-03-10 19:36 - 2013-04-14 19:28 - 00031336 _____ () C:\Windows\PFRO.log
2014-03-10 19:36 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-10 19:35 - 2011-01-04 16:39 - 01292948 _____ () C:\Windows\WindowsUpdate.log
2014-03-10 19:34 - 2014-03-10 10:02 - 00000000 ____D () C:\AdwCleaner
2014-03-10 19:33 - 2012-06-23 16:24 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-03-10 19:31 - 2012-07-02 21:13 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Skype
2014-03-10 19:30 - 2013-02-24 22:12 - 00000838 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-10 19:14 - 2012-10-24 14:41 - 00000000 ____D () C:\Users\Usuario\AppData\Local\PMB Files
2014-03-10 19:14 - 2012-10-24 14:40 - 00000000 ____D () C:\ProgramData\PMB Files
2014-03-09 21:01 - 2011-12-16 08:06 - 00001066 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001Core.job
2014-03-09 01:19 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-08 23:22 - 2014-03-08 23:22 - 00025264 _____ () C:\ComboFix.txt
2014-03-08 23:22 - 2014-03-08 20:34 - 00000000 ____D () C:\Qoobox
2014-03-08 23:22 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-03-08 23:19 - 2014-03-08 20:34 - 00000000 ____D () C:\Windows\erdnt
2014-03-08 23:18 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-03-08 21:14 - 2013-01-07 08:50 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-03-08 21:01 - 2011-12-02 19:11 - 00000000 ___RD () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-08 20:47 - 2014-03-08 20:47 - 00000000 ____D () C:\Users\Usuario\Documents\ProcAlyzer Dumps
2014-03-08 20:47 - 2013-01-07 08:50 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-08 20:27 - 2014-03-08 20:27 - 05187267 ____R (Swearware) C:\Users\Usuario\Desktop\ComboFix.exe
2014-03-08 12:32 - 2012-01-03 21:24 - 00000000 ____D () C:\Users\Usuario\Desktop\tj
2014-03-07 23:24 - 2014-03-07 22:56 - 00035178 _____ () C:\Windows\DirectX.log
2014-03-07 22:55 - 2014-03-07 22:40 - 00000000 ____D () C:\Program Files (x86)\Perfect World Entertainment
2014-03-07 22:49 - 2014-03-07 22:47 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Arc
2014-03-07 22:41 - 2010-07-17 16:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-07 22:40 - 2014-03-07 22:40 - 09005512 _____ (Perfect World Entertainment) C:\Users\Usuario\Downloads\ArcInstall_v20140224a.exe
2014-03-07 22:30 - 2014-02-27 16:03 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-03-07 22:22 - 2012-01-25 21:51 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\HpUpdate
2014-03-07 16:33 - 2014-03-07 16:33 - 08808582 _____ () C:\Users\Usuario\Downloads\As Seen On TV Balancing Act Skinny Body Care part 2 - YouTube.aac
2014-03-07 16:33 - 2014-03-07 16:31 - 85817666 _____ () C:\Users\Usuario\Downloads\As Seen On TV Balancing Act Skinny Body Care part 2 - YouTube.mp4
2014-03-07 15:48 - 2013-01-22 15:32 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\vlc
2014-03-07 10:10 - 2014-03-07 10:04 - 00045883 _____ () C:\Users\Usuario\Downloads\Addition.txt
2014-03-02 20:46 - 2014-03-02 20:46 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-03-02 20:46 - 2014-03-02 20:46 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-03-02 00:26 - 2013-06-02 13:46 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2014-03-02 00:26 - 2013-06-02 13:46 - 00000000 ____D () C:\Program Files (x86)\Hi-Rez Studios
2014-03-02 00:24 - 2014-03-02 00:23 - 39967251 _____ (Hi-Rez Studios) C:\Users\Usuario\Downloads\InstallHiRezGamesEnglish (2).exe
2014-03-01 18:07 - 2014-02-27 16:04 - 00000000 ____D () C:\Users\Usuario\Downloads\Gameforge Live
2014-03-01 14:08 - 2013-11-25 22:39 - 00000000 ____D () C:\ProgramData\Oracle
2014-03-01 14:07 - 2014-03-01 14:06 - 00005173 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-03-01 14:07 - 2013-11-25 22:39 - 00000000 ____D () C:\Program Files (x86)\Java
2014-03-01 13:52 - 2009-07-14 06:08 - 00032514 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-01 13:17 - 2013-08-21 16:57 - 00000002 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-03-01 01:27 - 2012-03-02 19:11 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Windows Live
2014-02-27 16:02 - 2014-02-27 16:02 - 20463792 _____ (Gameforge ) C:\Users\Usuario\Downloads\Metin2_GameforgeLiveSetup.exe
2014-02-26 18:06 - 2013-04-07 18:51 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-24 16:10 - 2013-03-30 20:07 - 00000000 ____D () C:\Program Files (x86)\FrostWire 5
2014-02-24 15:51 - 2014-02-24 15:51 - 00000000 ____D () C:\Program Files (x86)\MediaViewerV1
2014-02-23 19:16 - 2012-11-27 15:45 - 00003198 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForUsuario
2014-02-23 19:16 - 2012-11-27 15:45 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForUsuario.job
2014-02-23 14:22 - 2010-07-18 02:27 - 00758708 _____ () C:\Windows\system32\perfh00A.dat
2014-02-23 14:22 - 2010-07-18 02:27 - 00165624 _____ () C:\Windows\system32\perfc00A.dat
2014-02-23 14:22 - 2009-07-14 06:13 - 01710712 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-22 13:58 - 2013-08-27 13:51 - 00000000 ____D () C:\Fraps
2014-02-21 19:31 - 2013-02-24 22:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 19:31 - 2013-02-24 22:12 - 00003776 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-21 19:31 - 2011-12-06 23:52 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-19 15:51 - 2014-02-19 15:51 - 00000282 __RSH () C:\ProgramData\ntuser.pol
2014-02-19 15:51 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-19 15:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-02-19 12:34 - 2014-02-18 16:04 - 00000000 ____D () C:\Program Files\OBS
2014-02-18 22:41 - 2014-02-18 22:34 - 00000000 ____D () C:\ProgramData\iSkysoft Video Converter Ultimate
2014-02-18 22:40 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\Documents\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Users\Usuario\AppData\Local\iSkysoft
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Program Files\Common Files\iSkysoft
2014-02-18 22:34 - 2014-02-18 22:34 - 00000000 ____D () C:\Program Files (x86)\iSkysoft
2014-02-18 22:32 - 2014-02-18 22:32 - 37244466 _____ (iSkysoft Software ) C:\Users\Usuario\Downloads\video-converter-ultimate_full1329.exe
2014-02-18 16:09 - 2014-02-18 16:09 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\OBS
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-02-18 16:03 - 2014-02-18 16:03 - 07868406 _____ () C:\Users\Usuario\Downloads\OBS_0_611b_Installer.exe
2014-02-17 20:56 - 2011-12-16 08:06 - 00004092 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001UA
2014-02-17 20:56 - 2011-12-16 08:06 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001Core
2014-02-17 19:52 - 2013-08-28 18:25 - 00000000 ____D () C:\Users\Usuario\Desktop\fraps vids
2014-02-17 18:41 - 2013-01-04 15:23 - 00000000 ____D () C:\Program Files (x86)\LucasArts
2014-02-17 18:36 - 2013-03-30 19:54 - 00000000 ____D () C:\Program Files (x86)\RaidCall
2014-02-17 18:35 - 2014-02-17 18:35 - 00003114 _____ () C:\Windows\System32\Tasks\{1B8D5B56-AFB9-4C6B-93ED-786734E592FC}
2014-02-17 17:59 - 2014-02-17 17:20 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Dxtory Software
2014-02-17 17:19 - 2014-02-17 17:19 - 00000000 ____D () C:\Program Files (x86)\Dxtory Software
2014-02-17 17:18 - 2014-02-17 17:18 - 02946889 _____ () C:\Users\Usuario\Downloads\Dxtory 2.0.119 by zasuke962013.rar
2014-02-17 16:57 - 2014-02-17 16:57 - 21983696 _____ () C:\Users\Usuario\Downloads\WT20 Australia vs New Zealand Game 5 - Highlights - YouTube.mp4
2014-02-17 16:23 - 2012-07-02 21:13 - 00000000 ____D () C:\ProgramData\Skype
2014-02-17 10:32 - 2013-07-20 15:10 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-17 10:02 - 2011-12-05 10:53 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-13 21:30 - 2011-12-06 12:49 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\SoftGrid Client
2014-02-11 15:58 - 2014-02-11 15:58 - 00006405 _____ () C:\Users\Usuario\AppData\Local\recently-used.xbel
2014-02-11 15:58 - 2013-12-27 18:59 - 00000000 ____D () C:\Users\Usuario\AppData\Local\gtk-2.0
2014-02-11 15:58 - 2013-12-27 00:55 - 00000000 ____D () C:\Users\Usuario\.gimp-2.8
2014-02-10 21:38 - 2014-02-10 21:38 - 01174683 _____ () C:\Users\Usuario\Downloads\Outlook.zip
Some content of TEMP:
====================
C:\Users\Usuario\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-03-10 13:11
==================== End Of Log ============================
(/code) |
|
11.03.2014, 13:32
| #9 |
| /// the machine /// TB-Ausbilder | laptop braucht 20-30 Minuten zum hochfahren Torch ansich ist auch nit grad sauber. Von mir aus kannste ihn aber wieder installierne. ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
11.03.2014, 18:31
| #10 |
| | laptop braucht 20-30 Minuten zum hochfahren (code)ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=0f5d69f1ac9c52408a529f894c3c31d1 # engine=17397 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2014-03-11 05:14:50 # local_time=2014-03-11 06:14:50 (+0100, Hora estándar romance) # country="Spain" # lang=1033 # osver=6.1.7600 NT # compatibility_mode=5893 16776573 100 94 32877 146187940 0 0 # scanned=322331 # found=1 # cleaned=0 # scan_time=9932 sh=F957211A93D4E6FB74CEBDFB0A83D9E59E963A82 ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.H application" ac=I fn="C:\Qoobox\Quarantine\C\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer\extensions\diy5ti@oamqls.net\content\bg.js.vir" (/code) Hi, ich kann den Security check leider nicht ausführen. Bekomme eine Fehlermeldung, das das System nicht kompatibel ist mit dem Programm. (2x downgeloaded und ausgeführt mit der selben Fehlermeldung). Obwohl mein Sohn und ich das gleiche Pgrogramm und den gleichen Laptop haben und bei mir das Programm ohne Probleme gelaufen ist.. Was nun?? |
|
12.03.2014, 13:01
| #11 |
| /// the machine /// TB-Ausbilder | laptop braucht 20-30 Minuten zum hochfahren Ignorieren, weiter mit dem Rest
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
12.03.2014, 13:42
| #12 |
| | laptop braucht 20-30 Minuten zum hochfahren ok werd ich machen.. irgendeine Idee warum das bei mir ging und bei diesem Laptop nicht??(code) FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2014
Ran by Usuario (administrator) on USUARIO-HP on 12-03-2014 13:39:00
Running from C:\Users\Usuario\Desktop
Windows 7 Home Premium (X64) OS Language: Spanish Modern Sort
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================(/code)
(Code) Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2014
Ran by Usuario (administrator) on USUARIO-HP on 12-03-2014 13:39:00
Running from C:\Users\Usuario\Desktop
Windows 7 Home Premium (X64) OS Language: Spanish Modern Sort
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TorchMedia Inc.) C:\Users\Usuario\AppData\Local\Torch\Update\TorchCrashHandler.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Google Inc.) C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe
==================== Registry (Whitelisted) ==================
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [602680 2010-07-02] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1067236468-1955715275-1871763032-1001\...\Run: [C9627F042FF14DA7EE9FE476B40759E6870DA618._service_run] - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe [859464 2014-03-02] (Google Inc.)
HKU\S-1-5-21-1067236468-1955715275-1871763032-1001\...\Run: [HP Deskjet 3050A J611 series (NET)] - C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
Startup: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\JustCloud.lnk.disabled
ShortcutTarget: JustCloud.lnk.disabled -> C:\Program Files (x86)\JustCloud\JustCloud.exe (No File)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyEnable: Internet Explorer proxy is enabled.
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON/10
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL =
SearchScopes: HKLM - {518FE17F-FACB-425A-A652-69B67267CC73} URL = hxxp://es.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM - {F2A748D4-7F46-4ACA-BE8A-14D98E7D1E3F} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 - {F2A748D4-7F46-4ACA-BE8A-14D98E7D1E3F} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKCU - {F2A748D4-7F46-4ACA-BE8A-14D98E7D1E3F} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll (Perfect World Entertainment Inc)
BHO-x32: Aplicación auxiliar de inicio de sesión de Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2010-07-17] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\bxb57zcd.Standard-Benutzer
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin - C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll (Perfect World Entertainment Inc)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Usuario\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Usuario\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-03-03]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewerV1alpha1460.net] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff
FF Extension: Media Viewer - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ff [2014-02-24]
Chrome:
=======
CHR HomePage: homepage_is_newtabpage
CHR RestoreOnStartup: "sync": {
"suppress_start"
CHR Plugin: (Shockwave Flash) - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\33.0.1750.146\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Happy Cloud Plugin) - C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll No File
CHR Plugin: (BrowserPlus (from Yahoo!) v2.9.8) - C:\Users\Usuario\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll No File
CHR Plugin: (Kalydo Player Plugin for Mozilla) - C:\Users\Usuario\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll No File
CHR Plugin: (Raidcall plugin) - C:\Users\Usuario\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (Media Viewer) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgdegkcffldnapfegkmjnhkfaofcjigf [2014-02-24]
CHR Extension: (Skype Click to Call) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-05-26]
CHR Extension: (Google Wallet) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [kgdegkcffldnapfegkmjnhkfaofcjigf] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1460\ch\MediaViewerV1alpha1460.crx [2014-02-23]
CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\Usuario\AppData\Local\Torch\Plugins\TorchPlugin.crx [2014-03-10]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]
CHR StartMenuInternet: Google Chrome - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) =================
S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [88400 2014-02-24] (Perfect World Entertainment Inc)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [27192 2010-07-02] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 TorchCrashHandler; C:\Users\Usuario\AppData\Local\Torch\Update\TorchCrashHandler.exe [1206624 2013-07-20] (TorchMedia Inc.)
==================== Drivers (Whitelisted) ====================
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [225280 2009-09-23] (Realtek Semiconductor Corp.)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-12 13:37 - 2014-03-12 13:39 - 00019730 _____ () C:\Users\Usuario\Desktop\FRST.txt
2014-03-12 13:37 - 2014-03-12 13:37 - 02157056 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2014-03-12 13:36 - 2014-03-12 13:37 - 02157056 _____ (Farbar) C:\Users\Usuario\Downloads\FRST64.exe
2014-03-11 18:26 - 2014-03-11 18:26 - 00000079 _____ () C:\Users\Usuario\Downloads\SecurityCheck (1).exe
2014-03-11 18:24 - 2014-03-11 18:24 - 00000079 _____ () C:\Users\Usuario\Downloads\SecurityCheck.exe
2014-03-11 15:27 - 2014-03-11 15:27 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-03-11 15:24 - 2014-03-11 15:24 - 02347384 _____ (ESET) C:\Users\Usuario\Downloads\esetsmartinstaller_enu.exe
2014-03-10 20:30 - 2014-03-11 14:47 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-03-10 20:30 - 2014-03-10 20:30 - 00002191 _____ () C:\Users\Usuario\Desktop\Youtube.lnk
2014-03-10 20:30 - 2014-03-10 20:30 - 00001409 _____ () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-03-10 20:30 - 2014-03-10 20:30 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-03-10 20:28 - 2014-03-10 20:30 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Torch
2014-03-10 19:49 - 2014-03-10 19:49 - 00000000 ____D () C:\Windows\ERUNT
2014-03-10 10:02 - 2014-03-10 19:34 - 00000000 ____D () C:\AdwCleaner
2014-03-08 23:22 - 2014-03-08 23:22 - 00025264 _____ () C:\ComboFix.txt
2014-03-08 21:19 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-03-08 21:19 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-03-08 21:19 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-03-08 21:19 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-03-08 20:47 - 2014-03-08 20:47 - 00000000 ____D () C:\Users\Usuario\Documents\ProcAlyzer Dumps
2014-03-08 20:34 - 2014-03-08 23:22 - 00000000 ____D () C:\Qoobox
2014-03-08 20:34 - 2014-03-08 23:19 - 00000000 ____D () C:\Windows\erdnt
2014-03-08 20:27 - 2014-03-08 20:27 - 05187267 ____R (Swearware) C:\Users\Usuario\Desktop\ComboFix.exe
2014-03-07 23:25 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-03-07 23:25 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-03-07 23:25 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-03-07 23:25 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-03-07 23:25 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-03-07 23:25 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-03-07 23:25 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-03-07 23:25 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-03-07 22:59 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-03-07 22:59 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-03-07 22:59 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-03-07 22:59 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-03-07 22:58 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-03-07 22:58 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-03-07 22:58 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-03-07 22:58 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-03-07 22:58 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-03-07 22:58 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-03-07 22:58 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-03-07 22:56 - 2014-03-07 23:24 - 00035178 _____ () C:\Windows\DirectX.log
2014-03-07 22:47 - 2014-03-07 22:49 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Arc
2014-03-07 22:40 - 2014-03-07 22:55 - 00000000 ____D () C:\Program Files (x86)\Perfect World Entertainment
2014-03-07 22:40 - 2014-03-07 22:40 - 09005512 _____ (Perfect World Entertainment) C:\Users\Usuario\Downloads\ArcInstall_v20140224a.exe
2014-03-07 16:33 - 2014-03-07 16:33 - 08808582 _____ () C:\Users\Usuario\Downloads\As Seen On TV Balancing Act Skinny Body Care part 2 - YouTube.aac
2014-03-07 16:31 - 2014-03-07 16:33 - 85817666 _____ () C:\Users\Usuario\Downloads\As Seen On TV Balancing Act Skinny Body Care part 2 - YouTube.mp4
2014-03-07 10:04 - 2014-03-07 10:10 - 00045883 _____ () C:\Users\Usuario\Downloads\Addition.txt
2014-03-07 10:02 - 2014-03-12 13:39 - 00000000 ____D () C:\FRST
2014-03-02 20:46 - 2014-03-02 20:46 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-03-02 20:46 - 2014-03-02 20:46 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-03-02 00:23 - 2014-03-02 00:24 - 39967251 _____ (Hi-Rez Studios) C:\Users\Usuario\Downloads\InstallHiRezGamesEnglish (2).exe
2014-03-01 14:07 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-03-01 14:07 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-03-01 14:07 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-03-01 14:07 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-03-01 14:06 - 2014-03-01 14:07 - 00005173 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-27 16:04 - 2014-03-01 18:07 - 00000000 ____D () C:\Users\Usuario\Downloads\Gameforge Live
2014-02-27 16:03 - 2014-03-07 22:30 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-02-27 16:02 - 2014-02-27 16:02 - 20463792 _____ (Gameforge ) C:\Users\Usuario\Downloads\Metin2_GameforgeLiveSetup.exe
2014-02-24 15:51 - 2014-02-24 15:51 - 00000000 ____D () C:\Program Files (x86)\MediaViewerV1
2014-02-19 15:51 - 2014-02-19 15:51 - 00000282 __RSH () C:\ProgramData\ntuser.pol
2014-02-18 22:36 - 2014-02-18 22:40 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\Documents\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Users\Usuario\AppData\Local\iSkysoft
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Program Files\Common Files\iSkysoft
2014-02-18 22:34 - 2014-02-18 22:41 - 00000000 ____D () C:\ProgramData\iSkysoft Video Converter Ultimate
2014-02-18 22:34 - 2014-02-18 22:34 - 00000000 ____D () C:\Program Files (x86)\iSkysoft
2014-02-18 22:34 - 2013-08-23 13:36 - 00721263 _____ () C:\Windows\SysWOW64\ISCM64.dll
2014-02-18 22:34 - 2013-08-07 14:31 - 00214528 _____ () C:\Windows\SysWOW64\ISCM32.dll
2014-02-18 22:32 - 2014-02-18 22:32 - 37244466 _____ (iSkysoft Software ) C:\Users\Usuario\Downloads\video-converter-ultimate_full1329.exe
2014-02-18 16:09 - 2014-02-18 16:09 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\OBS
2014-02-18 16:04 - 2014-02-19 12:34 - 00000000 ____D () C:\Program Files\OBS
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-02-18 16:03 - 2014-02-18 16:03 - 07868406 _____ () C:\Users\Usuario\Downloads\OBS_0_611b_Installer.exe
2014-02-17 18:35 - 2014-02-17 18:35 - 00003114 _____ () C:\Windows\System32\Tasks\{1B8D5B56-AFB9-4C6B-93ED-786734E592FC}
2014-02-17 17:20 - 2014-02-17 17:59 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Dxtory Software
2014-02-17 17:19 - 2014-02-17 17:19 - 00000000 ____D () C:\Program Files (x86)\Dxtory Software
2014-02-17 17:18 - 2014-02-17 17:18 - 02946889 _____ () C:\Users\Usuario\Downloads\Dxtory 2.0.119 by zasuke962013.rar
2014-02-17 16:57 - 2014-02-17 16:57 - 21983696 _____ () C:\Users\Usuario\Downloads\WT20 Australia vs New Zealand Game 5 - Highlights - YouTube.mp4
2014-02-11 15:58 - 2014-02-11 15:58 - 00006405 _____ () C:\Users\Usuario\AppData\Local\recently-used.xbel
2014-02-10 21:38 - 2014-02-10 21:38 - 01174683 _____ () C:\Users\Usuario\Downloads\Outlook.zip
==================== One Month Modified Files and Folders =======
2014-03-12 13:39 - 2014-03-12 13:37 - 00019730 _____ () C:\Users\Usuario\Desktop\FRST.txt
2014-03-12 13:39 - 2014-03-07 10:02 - 00000000 ____D () C:\FRST
2014-03-12 13:37 - 2014-03-12 13:37 - 02157056 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2014-03-12 13:37 - 2014-03-12 13:36 - 02157056 _____ (Farbar) C:\Users\Usuario\Downloads\FRST64.exe
2014-03-12 13:31 - 2010-07-18 02:27 - 00758708 _____ () C:\Windows\system32\perfh00A.dat
2014-03-12 13:31 - 2010-07-18 02:27 - 00165624 _____ () C:\Windows\system32\perfc00A.dat
2014-03-12 13:31 - 2009-07-14 06:13 - 01710712 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-12 13:30 - 2013-02-24 22:12 - 00000838 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-12 13:29 - 2011-12-16 08:06 - 00001118 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001UA.job
2014-03-12 13:29 - 2011-01-04 16:39 - 01418300 _____ () C:\Windows\WindowsUpdate.log
2014-03-12 08:20 - 2013-02-24 22:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 08:20 - 2013-02-24 22:12 - 00003776 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-12 08:20 - 2011-12-06 23:52 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-11 21:13 - 2013-10-04 14:50 - 00027304 _____ () C:\Windows\setupact.log
2014-03-11 21:11 - 2011-12-16 08:06 - 00001066 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001Core.job
2014-03-11 18:26 - 2014-03-11 18:26 - 00000079 _____ () C:\Users\Usuario\Downloads\SecurityCheck (1).exe
2014-03-11 18:24 - 2014-03-11 18:24 - 00000079 _____ () C:\Users\Usuario\Downloads\SecurityCheck.exe
2014-03-11 15:27 - 2014-03-11 15:27 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-03-11 15:24 - 2014-03-11 15:24 - 02347384 _____ (ESET) C:\Users\Usuario\Downloads\esetsmartinstaller_enu.exe
2014-03-11 15:01 - 2013-09-06 14:41 - 00000000 ____D () C:\Users\Usuario\AppData\Local\LogMeIn Hamachi
2014-03-11 15:01 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-03-11 14:54 - 2009-07-14 05:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-11 14:54 - 2009-07-14 05:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-11 14:47 - 2014-03-10 20:30 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-03-11 14:46 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-11 10:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-11 08:27 - 2012-07-02 21:13 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Skype
2014-03-10 22:53 - 2012-10-24 14:41 - 00000000 ____D () C:\Users\Usuario\AppData\Local\PMB Files
2014-03-10 22:53 - 2012-10-24 14:40 - 00000000 ____D () C:\ProgramData\PMB Files
2014-03-10 20:30 - 2014-03-10 20:30 - 00002191 _____ () C:\Users\Usuario\Desktop\Youtube.lnk
2014-03-10 20:30 - 2014-03-10 20:30 - 00001409 _____ () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-03-10 20:30 - 2014-03-10 20:30 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-03-10 20:30 - 2014-03-10 20:28 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Torch
2014-03-10 19:49 - 2014-03-10 19:49 - 00000000 ____D () C:\Windows\ERUNT
2014-03-10 19:40 - 2013-10-13 18:04 - 00000000 ____D () C:\Program Files (x86)\JustCloud
2014-03-10 19:39 - 2013-04-07 19:51 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\TS3Client
2014-03-10 19:38 - 2012-07-02 21:13 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-10 19:38 - 2011-12-30 20:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-10 19:36 - 2013-04-14 19:28 - 00031336 _____ () C:\Windows\PFRO.log
2014-03-10 19:34 - 2014-03-10 10:02 - 00000000 ____D () C:\AdwCleaner
2014-03-10 19:33 - 2012-06-23 16:24 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-03-08 23:22 - 2014-03-08 23:22 - 00025264 _____ () C:\ComboFix.txt
2014-03-08 23:22 - 2014-03-08 20:34 - 00000000 ____D () C:\Qoobox
2014-03-08 23:22 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-03-08 23:19 - 2014-03-08 20:34 - 00000000 ____D () C:\Windows\erdnt
2014-03-08 23:18 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-03-08 21:14 - 2013-01-07 08:50 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-03-08 21:01 - 2011-12-02 19:11 - 00000000 ___RD () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-08 20:47 - 2014-03-08 20:47 - 00000000 ____D () C:\Users\Usuario\Documents\ProcAlyzer Dumps
2014-03-08 20:47 - 2013-01-07 08:50 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-08 20:27 - 2014-03-08 20:27 - 05187267 ____R (Swearware) C:\Users\Usuario\Desktop\ComboFix.exe
2014-03-08 12:32 - 2012-01-03 21:24 - 00000000 ____D () C:\Users\Usuario\Desktop\tj
2014-03-07 23:24 - 2014-03-07 22:56 - 00035178 _____ () C:\Windows\DirectX.log
2014-03-07 22:55 - 2014-03-07 22:40 - 00000000 ____D () C:\Program Files (x86)\Perfect World Entertainment
2014-03-07 22:49 - 2014-03-07 22:47 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Arc
2014-03-07 22:41 - 2010-07-17 16:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-07 22:40 - 2014-03-07 22:40 - 09005512 _____ (Perfect World Entertainment) C:\Users\Usuario\Downloads\ArcInstall_v20140224a.exe
2014-03-07 22:30 - 2014-02-27 16:03 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-03-07 22:22 - 2012-01-25 21:51 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\HpUpdate
2014-03-07 16:33 - 2014-03-07 16:33 - 08808582 _____ () C:\Users\Usuario\Downloads\As Seen On TV Balancing Act Skinny Body Care part 2 - YouTube.aac
2014-03-07 16:33 - 2014-03-07 16:31 - 85817666 _____ () C:\Users\Usuario\Downloads\As Seen On TV Balancing Act Skinny Body Care part 2 - YouTube.mp4
2014-03-07 15:48 - 2013-01-22 15:32 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\vlc
2014-03-07 10:10 - 2014-03-07 10:04 - 00045883 _____ () C:\Users\Usuario\Downloads\Addition.txt
2014-03-02 20:46 - 2014-03-02 20:46 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-03-02 20:46 - 2014-03-02 20:46 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-03-02 00:26 - 2013-06-02 13:46 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2014-03-02 00:26 - 2013-06-02 13:46 - 00000000 ____D () C:\Program Files (x86)\Hi-Rez Studios
2014-03-02 00:24 - 2014-03-02 00:23 - 39967251 _____ (Hi-Rez Studios) C:\Users\Usuario\Downloads\InstallHiRezGamesEnglish (2).exe
2014-03-01 18:07 - 2014-02-27 16:04 - 00000000 ____D () C:\Users\Usuario\Downloads\Gameforge Live
2014-03-01 14:08 - 2013-11-25 22:39 - 00000000 ____D () C:\ProgramData\Oracle
2014-03-01 14:07 - 2014-03-01 14:06 - 00005173 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-03-01 14:07 - 2013-11-25 22:39 - 00000000 ____D () C:\Program Files (x86)\Java
2014-03-01 13:52 - 2009-07-14 06:08 - 00032514 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-01 13:17 - 2013-08-21 16:57 - 00000002 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-03-01 01:27 - 2012-03-02 19:11 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Windows Live
2014-02-27 16:02 - 2014-02-27 16:02 - 20463792 _____ (Gameforge ) C:\Users\Usuario\Downloads\Metin2_GameforgeLiveSetup.exe
2014-02-26 18:06 - 2013-04-07 18:51 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-24 16:10 - 2013-03-30 20:07 - 00000000 ____D () C:\Program Files (x86)\FrostWire 5
2014-02-24 15:51 - 2014-02-24 15:51 - 00000000 ____D () C:\Program Files (x86)\MediaViewerV1
2014-02-23 19:16 - 2012-11-27 15:45 - 00003198 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForUsuario
2014-02-23 19:16 - 2012-11-27 15:45 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForUsuario.job
2014-02-22 13:58 - 2013-08-27 13:51 - 00000000 ____D () C:\Fraps
2014-02-19 15:51 - 2014-02-19 15:51 - 00000282 __RSH () C:\ProgramData\ntuser.pol
2014-02-19 15:51 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-19 15:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-02-19 12:34 - 2014-02-18 16:04 - 00000000 ____D () C:\Program Files\OBS
2014-02-18 22:41 - 2014-02-18 22:34 - 00000000 ____D () C:\ProgramData\iSkysoft Video Converter Ultimate
2014-02-18 22:40 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\Documents\iSkysoft Video Converter Ultimate
2014-02-18 22:36 - 2014-02-18 22:36 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Users\Usuario\AppData\Local\iSkysoft
2014-02-18 22:35 - 2014-02-18 22:35 - 00000000 ____D () C:\Program Files\Common Files\iSkysoft
2014-02-18 22:34 - 2014-02-18 22:34 - 00000000 ____D () C:\Program Files (x86)\iSkysoft
2014-02-18 22:32 - 2014-02-18 22:32 - 37244466 _____ (iSkysoft Software ) C:\Users\Usuario\Downloads\video-converter-ultimate_full1329.exe
2014-02-18 16:09 - 2014-02-18 16:09 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\OBS
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-02-18 16:04 - 2014-02-18 16:04 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-02-18 16:03 - 2014-02-18 16:03 - 07868406 _____ () C:\Users\Usuario\Downloads\OBS_0_611b_Installer.exe
2014-02-17 20:56 - 2011-12-16 08:06 - 00004092 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001UA
2014-02-17 20:56 - 2011-12-16 08:06 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1067236468-1955715275-1871763032-1001Core
2014-02-17 19:52 - 2013-08-28 18:25 - 00000000 ____D () C:\Users\Usuario\Desktop\fraps vids
2014-02-17 18:41 - 2013-01-04 15:23 - 00000000 ____D () C:\Program Files (x86)\LucasArts
2014-02-17 18:36 - 2013-03-30 19:54 - 00000000 ____D () C:\Program Files (x86)\RaidCall
2014-02-17 18:35 - 2014-02-17 18:35 - 00003114 _____ () C:\Windows\System32\Tasks\{1B8D5B56-AFB9-4C6B-93ED-786734E592FC}
2014-02-17 17:59 - 2014-02-17 17:20 - 00000000 ____D () C:\Users\Usuario\AppData\Local\Dxtory Software
2014-02-17 17:19 - 2014-02-17 17:19 - 00000000 ____D () C:\Program Files (x86)\Dxtory Software
2014-02-17 17:18 - 2014-02-17 17:18 - 02946889 _____ () C:\Users\Usuario\Downloads\Dxtory 2.0.119 by zasuke962013.rar
2014-02-17 16:57 - 2014-02-17 16:57 - 21983696 _____ () C:\Users\Usuario\Downloads\WT20 Australia vs New Zealand Game 5 - Highlights - YouTube.mp4
2014-02-17 16:23 - 2012-07-02 21:13 - 00000000 ____D () C:\ProgramData\Skype
2014-02-17 10:32 - 2013-07-20 15:10 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-17 10:02 - 2011-12-05 10:53 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-13 21:30 - 2011-12-06 12:49 - 00000000 ____D () C:\Users\Usuario\AppData\Roaming\SoftGrid Client
2014-02-11 15:58 - 2014-02-11 15:58 - 00006405 _____ () C:\Users\Usuario\AppData\Local\recently-used.xbel
2014-02-11 15:58 - 2013-12-27 18:59 - 00000000 ____D () C:\Users\Usuario\AppData\Local\gtk-2.0
2014-02-11 15:58 - 2013-12-27 00:55 - 00000000 ____D () C:\Users\Usuario\.gimp-2.8
2014-02-10 21:38 - 2014-02-10 21:38 - 01174683 _____ () C:\Users\Usuario\Downloads\Outlook.zip
Some content of TEMP:
====================
C:\Users\Usuario\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-03-10 13:11
==================== End Of Log ============================
(/code) |
|
13.03.2014, 09:06
| #13 |
| /// the machine /// TB-Ausbilder | laptop braucht 20-30 Minuten zum hochfahren Ja, Securitycheck is ne Zicke Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
ProxyEnable: Internet Explorer proxy is enabled.
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
13.03.2014, 10:08
| #14 | |
| | laptop braucht 20-30 Minuten zum hochfahren oooops.. jetzt nach dem Neustart bekomme ich folgende Fehlermeldung: SMART HARD DISK ERROR. IT HAS BEEN DETECTED AN IMMINENT FAILURE. Hard disk 1 (301) F2 System Diagnostic Enter to start up Der Laptop fährt zwar jetzt schneller hoch, aber ohne Enter nicht bis zum Ende.. (code)Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2014 Ran by Usuario at 2014-03-13 09:41:57 Run:1 Running from C:\Users\Usuario\Desktop\virenbeseiting Boot Mode: Normal ============================================== Content of fixlist: ***************** GroupPolicy: Group Policy on Chrome detected <======= ATTENTION ProxyEnable: Internet Explorer proxy is enabled. ***************** C:\Windows\system32\GroupPolicy\Machine => Moved successfully. C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully. HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => Value deleted successfully. The system needed a reboot. ==== End of Fixlog ==== (/code) Jetzt weiter mit Combofix??? Zitat:
|
|
14.03.2014, 08:54
| #15 |
| /// the machine /// TB-Ausbilder | laptop braucht 20-30 Minuten zum hochfahren Jetzt kannste anfangen aufzuräumen wie oben beschrieben. Und sichere mal deine Daten, ich glaub die HDD geht demnächst auf Urlaub
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu laptop braucht 20-30 Minuten zum hochfahren |
| ahnung, brauch, dateien, dateien gelöscht, dauert, ebook, einiger, ellung, gelöscht, gen, helft, hochfahren, hochgefahren, infizierte, infizierten, langsamer, laptop, malwarebyte, minute, minuten, notebook, problem, programme, scan, sekunden, spiele |
WARNUNG an die MITLESER: 
Linear-Darstellung
