TechSpot

[Closed] Google redirect Malware in Firefox (Windows 7)

By Ralp
Sep 20, 2011
Topic Status:
Not open for further replies.
  1. Hello,

    I'm new in this forum, and I'm here for the redirection problem in Google.
    Almost every time I try to enter on a link on Google, a redirection to thewebtimes, goingonearth, and others appears me.

    I've read and complete all the steps listed here: http://www.techspot.com/vb/topic58138.html

    And I've already have the following logs files:

    mbam
    gmer
    DDS
    Attach

    Should I post this log files here?

    Thanks!
    (Sorry for my English)
     
  2. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    Welcome to TechSpot! Yes, please post all of the logs per this:

    Note: Attach/txt is jut the name of the log- not a direction. it gets pasted in to the reply also. Please do not zip it.
    ========================================
    My Guidelines: please read and follow:
    • Be patient. Malware cleaning takes time and I am also working with other members while I am helping you.
    • Read my instructions carefully. If you don't understand or have a problem, ask me.
    • If you have questions, or if a program doesn't work, stop and tell me about it. Don't try to get around it yourself.
    • Follow the order of the tasks I give you. Order is crucial in cleaning process.
    • File sharing programs should be uninstalled or disabled during the cleaning process..
    • Observe these:
      [o] Don't use any other cleaning programs or scans while I'm helping you.
      [o] Don't use a Registry cleaner or make any changes in the Registry.
      [o] Don't download and install new programs- except those I give you.
    • Please let me know if there is any change in the system.

    If I don't get a reply from you in 5 days, the thread will be closed. If your problem persist, you can send a PM to reopen it.
    =====================================
     
  3. Ralp

    Ralp TS Rookie Topic Starter

    Log Files

    MBAM LOG:

    Malwarebytes' Anti-Malware 1.51.2.1300
    www.malwarebytes.org

    Versión de la Base de Datos: 7756

    Windows 6.1.7601 Service Pack 1
    Internet Explorer 9.0.8112.16421

    20/09/2011 21:02:12
    mbam-log-2011-09-20 (21-02-12).txt

    Tipos de Análisis: Análisis Rápido
    Objetos examinados: 175524
    Tiempo transcurrido: 43 segundo(s)

    Procesos en Memoria Infectados: 0
    Módulos de Memoria Infectados: 0
    Claves del Registro Infectadas: 0
    Valores del Registro Infectados: 0
    Elementos de Datos del Registro Infectados: 0
    Carpetas Infectadas: 0
    Archivos Infectados: 0

    Procesos en Memoria Infectados:
    (No se han detectado elementos maliciosos)

    Módulos de Memoria Infectados:
    (No se han detectado elementos maliciosos)

    Claves del Registro Infectadas:
    (No se han detectado elementos maliciosos)

    Valores del Registro Infectados:
    (No se han detectado elementos maliciosos)

    Elementos de Datos del Registro Infectados:
    (No se han detectado elementos maliciosos)

    Carpetas Infectadas:
    (No se han detectado elementos maliciosos)

    Archivos Infectados:
    (No se han detectado elementos maliciosos)
     
  4. Ralp

    Ralp TS Rookie Topic Starter

    Log Files

    GMER LOG:

    GMER 1.0.15.15641 - http://www.gmer.net
    Rootkit scan 2011-09-20 21:15:13
    Windows 6.1.7601 Service Pack 1
    Running: i5us6toj.exe


    ---- Files - GMER 1.0.15 ----

    File C:\## aswSnx private storage 0 bytes
    File C:\## aswSnx private storage\r69 0 bytes
    File C:\## aswSnx private storage\sfzone 0 bytes
    File C:\## aswSnx private storage\sfzone\attrib 0 bytes
    File C:\## aswSnx private storage\sfzone\image 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\chrome_shutdown_ms.txt 3 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\History Index 2011-09 217088 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Archived History 53248 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Bookmarks 512 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Bookmarks.bak 512 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\data_0 45056 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\data_1 270336 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\data_2 1056768 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\data_3 4202496 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000001 19741 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000002 18994 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000003 62486 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000004 106147 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000005 32401 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000006 36174 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000007 86971 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000008 25801 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000009 32727 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000a 28382 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000b 17362 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000c 23317 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000d 19303 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000e 21081 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000f 16811 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000010 77661 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000011 69272 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000012 21099 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000013 19670 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000014 55541 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\index 524656 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cookies 8192 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Current Session 23180 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Current Tabs 23063 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Favicons 14336 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\History 90112 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\JumpListIcons 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\JumpListIcons\971C.tmp 150798 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\JumpListIconsOld 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\JumpListIconsOld\7D32.tmp 150798 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Last Session 654 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Last Tabs 578 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Local Storage 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Plugin Data 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Plugin Data\Google Gears 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Preferences 1819 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Top Sites 24576 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\User StyleSheets 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\User StyleSheets\Custom.css 0 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Visited Links 131072 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Web Data 61440 bytes
    File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Local State 2492 bytes
    File C:\## aswSnx private storage\sfzone\image\Users 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Local 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Local\Temp 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\48C226A0FE7D97DE1C716B47235CB639_339FE4A15083BA9D58F96C1443F0D4C4 1083 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\48C226A0FE7D97DE1C716B47235CB639_339FE4A15083BA9D58F96C1443F0D4C4 400 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\4DB1DABDF57ED9997FE8DCC77E93C04F 186 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8890A77645B73478F5B1DED18ACBF795_D3DB95C0E7608ACC9AA10ACCCCEBBDF5 400 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\FDCDA60516A338BF2CE73506D1835F5D_EB0A434D23B40DF48D0DE6FB6A09D527 404 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla\Firefox 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\0n1y7vig.default 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\0n1y7vig.default\places.sqlite 10485760 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\Desktop 0 bytes
    File C:\## aswSnx private storage\sfzone\image\Users\Administrador\Desktop\Chromium.lnk 2125 bytes
    File C:\## aswSnx private storage\snx_rhive 262144 bytes
    File C:\## aswSnx private storage\snx_rhive.LOG1 33792 bytes
    File C:\## aswSnx private storage\snx_rhive.LOG2 0 bytes
    File C:\## aswSnx private storage\snx_rhive{f514ac5f-e3ae-11e0-aa03-00e081d64f53}.TM.blf 65536 bytes
    File C:\## aswSnx private storage\snx_rhive{f514ac5f-e3ae-11e0-aa03-00e081d64f53}.TMContainer00000000000000000001.regtrans-ms 524288 bytes
    File C:\## aswSnx private storage\snx_rhive{f514ac5f-e3ae-11e0-aa03-00e081d64f53}.TMContainer00000000000000000002.regtrans-ms 524288 bytes

    ---- EOF - GMER 1.0.15 ----
     
  5. Ralp

    Ralp TS Rookie Topic Starter

    Log Files

    DDS LOG:

    .
    DDS (Ver_2011-08-26.01) - NTFSAMD64
    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_26
    Run by Administrador at 21:22:02 on 2011-09-20
    Microsoft Windows 7 Professional 6.1.7601.1.1252.34.3082.18.32759.28338 [GMT 2:00]
    .
    SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\nvvsvc.exe
    C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Program Files\Tablet\Pen\Pen_TouchService.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Program Files\AVAST Software\Avast\afwServ.exe
    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\SYSTEM32\WISPTIS.EXE
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\rundll32.exe
    C:\Windows\SysWOW64\rundll32.exe
    C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
    C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
    C:\Program Files\Tablet\Pen\Pen_Tablet.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\system32\WUDFHost.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\SYSTEM32\WISPTIS.EXE
    C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
    C:\Windows\system32\taskhost.exe
    C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
    C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
    C:\Program Files (x86)\NeuroSky\ThinkGear Connector\ThinkGear Connector.exe
    C:\Program Files (x86)\NeuroSky\CogniScore Connector\CogniScore Connector.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Tablet\Pen\Pen_Tablet.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\system32\DllHost.exe
    C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
    C:\Windows\SysWOW64\ctfmon.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\Windows\SysWOW64\ctfmon.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\SysWOW64\cscript.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.es/
    uURLSearchHooks: H - No File
    mWinlogon: Userinit=userinit.exe,
    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    EB: Web Test Recorder 10.0: {5802d092-1784-4908-8cdb-99b6842d353d} - mscoree.dll
    uRun: [ThinkGear Connector] "C:\Program Files (x86)\NeuroSky\ThinkGear Connector\ThinkGear Connector.exe"
    uRun: [CogniScore Connector] "C:\Program Files (x86)\NeuroSky\CogniScore Connector\CogniScore Connector.exe"
    mRun: [<NO NAME>]
    mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    mRun: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
    mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
    mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\START3~1.LNK -
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableLUA = 0 (0x0)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
    IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    TCP: DhcpNameServer = 192.168.1.1
    TCP: Interfaces\{732A0B69-6D91-4776-A6F0-6CC1ABF65347} : DhcpNameServer = 192.168.1.1
    TCP: Interfaces\{D227B5C9-E897-46EE-81B5-23EBAB2FEAE5} : DhcpNameServer = 192.168.1.1
    {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
    {9030D464-4C02-4ABF-8ECC-5164760863C6}
    {AE7CD045-E861-484f-8273-0445EE161910}
    {DBC80044-A445-435b-BC74-9C25C1C588A9}
    {F4971EE7-DAA0-4053-9964-665D8EE6A077}
    {47833539-D0C5-4125-9FA8-0819E2EAAC93}
    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
    EB-X64: {5802D092-1784-4908-8CDB-99B6842D353D} - No File
    mRun-x64: [(Predeterminado)]
    mRun-x64: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    mRun-x64: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
    mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    mRun-x64: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
    mRun-x64: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
    mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\0n1y7vig.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com
    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
    FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
    FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 aswNdis;avast! Firewall NDIS Filter Service;C:\Windows\system32\DRIVERS\aswNdis.sys --> C:\Windows\system32\DRIVERS\aswNdis.sys [?]
    R0 aswNdis2;avast! Firewall Core Firewall Service;C:\Windows\system32\drivers\aswNdis2.sys --> C:\Windows\system32\drivers\aswNdis2.sys [?]
    R1 aswFW;avast! TDI Firewall driver;C:\Windows\system32\drivers\aswFW.sys --> C:\Windows\system32\drivers\aswFW.sys [?]
    R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
    R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
    R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
    R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
    R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-9-8 44768]
    R2 avast! Firewall;avast! Firewall;C:\Program Files\AVAST Software\Avast\afwServ.exe [2011-9-8 127192]
    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-9-20 366152]
    R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-8-5 379496]
    R2 TabletServicePen;TabletServicePen;C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2011-9-20 5790064]
    R2 TouchServicePen;Wacom Consumer Touch Service;C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2011-9-20 487280]
    R3 e1qexpress;Controlador de conexión de red PCI Express Intel(R) PRO/1000 Q;C:\Windows\system32\DRIVERS\e1q60x64.sys --> C:\Windows\system32\DRIVERS\e1q60x64.sys [?]
    R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
    R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S3 CH341ENUM_A64;CH341ENUM_A64;C:\Windows\System32\drivers\CH34EA64.sys [2011-8-16 30208]
    S3 CH341SER_A64;CH341SER_A64;C:\Windows\System32\drivers\CH341S64.SYS [2011-8-16 58368]
    S3 dmvsc;dmvsc;C:\Windows\system32\drivers\dmvsc.sys --> C:\Windows\system32\drivers\dmvsc.sys [?]
    S3 ENTECH64;ENTECH64;\??\C:\Windows\system32\DRIVERS\ENTECH64.sys --> C:\Windows\system32\DRIVERS\ENTECH64.sys [?]
    S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-7-14 1431888]
    S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
    S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
    S3 StorSvc;Servicio de almacenamiento;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
    S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
    S3 wacmoumonitor;Wacom Mode Helper;C:\Windows\system32\DRIVERS\wacmoumonitor.sys --> C:\Windows\system32\DRIVERS\wacmoumonitor.sys [?]
    S3 WatAdminSvc;Servicio de tecnologías de activación de Windows;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
    S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2009-7-22 61976]
    S4 RsFx0103;RsFx0103 Driver;C:\Windows\system32\DRIVERS\RsFx0103.sys --> C:\Windows\system32\DRIVERS\RsFx0103.sys [?]
    S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2010-9-17 430424]
    .
    =============== Created Last 30 ================
    .
    2011-09-20 17:32:08 -------- d-----w- C:\Users\Administrador\AppData\Roaming\Malwarebytes
    2011-09-20 17:32:00 -------- d-----w- C:\ProgramData\Malwarebytes
    2011-09-20 17:31:58 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2011-09-20 17:31:58 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2011-09-20 17:21:35 -------- d-----w- C:\Program Files (x86)\Trend Micro
    2011-09-20 08:54:07 749936 ----a-w- C:\Windows\System32\Pen_Touch_Tablet.dll
    2011-09-20 08:54:07 642928 ----a-w- C:\Windows\SysWow64\Pen_Touch_Tablet.dll
    2011-09-20 08:54:07 -------- d-----w- C:\Users\Administrador\AppData\Roaming\WTablet
    2011-09-20 08:54:03 18288 ----a-w- C:\Windows\System32\drivers\wacmoumonitor.sys
    2011-09-20 08:54:03 -------- d-----w- C:\Program Files (x86)\TabletPlugins
    2011-09-20 08:53:58 16168 ----a-w- C:\Windows\System32\drivers\wacomvhid.sys
    2011-09-20 08:53:57 756592 ----a-w- C:\Windows\System32\Pen_Tablet.dll
    2011-09-20 08:53:57 650096 ----a-w- C:\Windows\SysWow64\Pen_Tablet.dll
    2011-09-20 08:53:57 600432 ----a-w- C:\Windows\System32\Wintab32.dll
    2011-09-20 08:53:57 506736 ----a-w- C:\Windows\SysWow64\Wintab32.dll
    2011-09-20 08:53:55 -------- d-----w- C:\Program Files\Tablet
    2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin7.dll
    2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin6.dll
    2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin5.dll
    2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin4.dll
    2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin3.dll
    2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin2.dll
    2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin.dll
    2011-09-19 10:09:36 -------- d-----w- C:\Users\Administrador\AppData\Local\{D7F23C03-05D2-41D2-8233-0F7F28DF3C59}
    2011-09-19 10:09:25 -------- d-----w- C:\Users\Administrador\AppData\Local\{4F0BFF8A-A073-41F1-8C2B-EF5C1999B5DA}
    2011-09-15 11:59:14 -------- d-----w- C:\Users\Administrador\AppData\Local\{31DA93F8-C16D-4C21-9129-1110E5CA880F}
    2011-09-15 11:59:02 -------- d-----w- C:\Users\Administrador\AppData\Local\{CE1B09A6-C109-4F17-B3AA-28FE050A76F1}
    2011-09-13 17:55:50 -------- d-----w- C:\Users\Administrador\AppData\Local\{FE0D9142-3C4C-409C-AFEF-AB9D66777FBC}
    2011-09-13 17:55:40 -------- d-----w- C:\Users\Administrador\AppData\Local\{F57F9034-8B1D-4859-8D16-46AF4DA5CBD0}
    2011-09-12 15:06:23 -------- d-----w- C:\Users\Administrador\AppData\Local\{D9DE4522-8649-49E7-A558-09F15B282CC3}
    2011-09-12 15:06:13 -------- d-----w- C:\Users\Administrador\AppData\Local\{DDADFDA5-0EFC-4B82-8BA6-1C3C8440F4CC}
    2011-09-08 16:38:48 -------- d-----w- C:\Windows\SysWow64\wbem\en-US
    2011-09-08 16:38:47 -------- d-----w- C:\Windows\System32\wbem\en-US
    2011-09-08 16:32:27 72536 ----a-w- C:\Windows\SysWow64\perf-MSSQL$SQLEXPRESS-sqlctr10.2.4000.0.dll
    2011-09-08 16:32:27 108376 ----a-w- C:\Windows\System32\perf-MSSQL$SQLEXPRESS-sqlctr10.2.4000.0.dll
    2011-09-08 16:32:27 105816 ----a-w- C:\Windows\System32\SQSRVRES.DLL
    2011-09-08 16:31:05 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
    2011-09-08 16:31:04 -------- d-----w- C:\Program Files\Microsoft Security Client
    2011-09-06 17:36:30 -------- d-----w- C:\Users\Administrador\AppData\Local\ElevatedDiagnostics
    2011-09-06 16:14:13 -------- d-----w- C:\Program Files\Common Files\ChaosGroup
    2011-09-06 16:13:55 -------- d-----w- C:\Program Files\Chaos Group
    2011-08-31 10:02:32 -------- d-----w- C:\Users\Administrador\AppData\Local\{8C38BFF1-110A-4BA2-975E-6ED6A330A14F}
    2011-08-31 10:02:21 -------- d-----w- C:\Users\Administrador\AppData\Local\{A4749C6F-5301-40AD-96DA-83CDF6349A02}
    2011-08-29 18:46:29 -------- d-----w- C:\Users\Administrador\AppData\Roaming\thriXXX
    2011-08-29 18:46:29 -------- d-----w- C:\Program Files (x86)\thriXXX
    2011-08-29 17:34:09 -------- d-----w- C:\Users\Administrador\AppData\Local\{E460278C-0552-49AB-B8CB-0DEBF3173D99}
    2011-08-29 17:33:59 -------- d-----w- C:\Users\Administrador\AppData\Local\{EC4B3D45-DEF1-4A40-A5C2-F367487A29BD}
    2011-08-29 17:33:04 -------- d-----w- C:\Users\Administrador\AppData\Roaming\Arduino
    2011-08-29 13:18:33 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
    2011-08-29 13:18:33 2048 ----a-w- C:\Windows\System32\tzres.dll
    2011-08-22 18:44:36 -------- d-----w- C:\Users\Administrador\AppData\Roaming\Subversion
    2011-08-22 18:30:36 -------- d-----w- C:\Program Files\SlikSvn
    2011-08-22 17:31:55 -------- dc----w- C:\cygwin
    2011-08-22 17:25:42 -------- dc----w- C:\Lib
    .
    ==================== Find3M ====================
    .
    2011-09-06 20:45:29 41184 ----a-w- C:\Windows\avastSS.scr
    2011-09-06 20:39:00 140120 ----a-w- C:\Windows\System32\drivers\aswFW.sys
    2011-09-06 20:38:18 601944 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
    2011-09-06 20:37:45 258392 ----a-w- C:\Windows\System32\drivers\aswNdis2.sys
    2011-09-06 20:36:30 65368 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
    2011-08-31 18:18:53 151552 ----a-w- C:\Windows\SysWow64\nvRegDev.dll
    2011-08-06 02:52:00 807528 ----a-w- C:\Windows\System32\nv3dappshext.dll
    2011-08-06 02:52:00 739432 ----a-w- C:\Windows\System32\easyupdatusapiu64.dll
    2011-08-06 02:52:00 6318696 ----a-w- C:\Windows\System32\nvcpl.dll
    2011-08-06 02:52:00 61544 ----a-w- C:\Windows\System32\nvshext.dll
    2011-08-06 02:52:00 53864 ----a-w- C:\Windows\System32\nv3dappshextr.dll
    2011-08-06 02:52:00 3041384 ----a-w- C:\Windows\System32\nvsvc64.dll
    2011-08-06 02:52:00 2560616 ----a-w- C:\Windows\System32\nvsvcr.dll
    2011-08-06 02:52:00 117864 ----a-w- C:\Windows\System32\nvmctray.dll
    2011-08-06 02:52:00 1018472 ----a-w- C:\Windows\System32\nvvsvc.exe
    2011-08-05 16:52:12 305256 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
    2011-07-28 14:27:25 61440 ----a-w- C:\Windows\SysWow64\nvPhotoshopUtil.dll
    2011-07-28 14:27:25 40960 ----a-w- C:\Windows\SysWow64\nvISWOW64.dll
    2011-07-24 19:56:21 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
    2011-07-20 12:56:23 23112 ----a-w- C:\Windows\System32\drivers\hitmanpro35.sys
    2011-07-16 05:41:50 362496 ----a-w- C:\Windows\System32\wow64win.dll
    2011-07-16 05:41:49 243200 ----a-w- C:\Windows\System32\wow64.dll
    2011-07-16 05:41:49 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
    2011-07-16 05:39:10 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
    2011-07-16 05:37:12 421888 ----a-w- C:\Windows\System32\KernelBase.dll
    2011-07-16 04:29:19 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
    2011-07-16 04:26:00 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
    2011-07-16 04:25:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
    2011-07-16 04:24:23 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
    2011-07-16 04:24:22 272384 ----a-w- C:\Windows\SysWow64\KernelBase.dll
    2011-07-16 02:21:44 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
    2011-07-16 02:21:41 2048 ----a-w- C:\Windows\SysWow64\user.exe
    2011-07-16 02:17:19 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
    2011-07-16 02:17:19 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
    2011-07-16 02:17:19 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
    2011-07-16 02:17:19 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
    2011-07-15 11:06:06 64000 --sha-r- C:\Windows\SysWow64\d3dx10D.dll
    2011-07-14 14:58:30 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-07-09 02:46:28 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
    2011-07-05 16:37:00 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
    2011-07-05 16:37:00 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
    2011-07-04 11:12:07 12368 ----a-w- C:\Windows\System32\drivers\aswNdis.sys
    2011-07-01 20:13:32 45056 ----a-w- C:\Windows\System32\Launch3DxGUI.cpl
    2011-07-01 20:10:48 109056 ----a-w- C:\Windows\System32\siappdll.dll
    2011-07-01 20:09:26 53248 ----a-w- C:\Windows\System32\spwini.dll
    2011-07-01 20:01:16 85504 ----a-w- C:\Windows\SysWow64\siappdll.dll
    2011-07-01 19:59:38 43008 ----a-w- C:\Windows\SysWow64\spwini.dll
    2011-06-24 05:34:53 214528 ----a-w- C:\Windows\System32\winsrv.dll
    2011-06-24 05:25:49 338432 ----a-w- C:\Windows\System32\conhost.exe
    2011-06-23 05:43:12 5561216 ----a-w- C:\Windows\System32\ntoskrnl.exe
    2011-06-23 04:33:57 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
    2011-06-23 04:33:57 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
    .
    ============= FINISH: 21:23:46,50 ===============
     
  6. Ralp

    Ralp TS Rookie Topic Starter

    Log Files

    ATTACH LOG:

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-08-26.01)
    .
    Microsoft Windows 7 Professional
    Boot Device: \Device\HarddiskVolume1
    Install Date: 06/07/2011 13:37:08
    System Uptime: 20/09/2011 19:35:36 (2 hours ago)
    .
    Motherboard: TYAN | | S7025
    Processor: Intel(R) Xeon(R) CPU X5650 @ 2.67GHz | CPU 1 | 2668/133mhz
    Processor: Intel(R) Xeon(R) CPU X5650 @ 2.67GHz | CPU 2 | 2668/133mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 112 GiB total, 29,002 GiB free.
    D: is CDROM ()
    E: is FIXED (NTFS) - 932 GiB total, 911,03 GiB free.
    F: is FIXED (NTFS) - 932 GiB total, 912,3 GiB free.
    G: is Removable
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    No restore point in system.
    .
    ==== Installed Programs ======================
    .
    3Dconnexion 3DxSoftware (x64 Edition)
    3Dconnexion Collage
    3Dconnexion Extension for SketchUp
    3Dconnexion Plug-in for Acrobat 3D
    3Dconnexion Trainer
    Adobe Acrobat X Pro - English, Français, Deutsch
    Adobe After Effects CS5.5 Third Party Content
    Adobe AIR
    Adobe Community Help
    Adobe Content Viewer
    Adobe Creative Suite 5.5 Master Collection
    Adobe Download Assistant
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Story
    Apple Software Update
    Aptana Studio 3
    Autodesk Backburner 2012.0.0
    avast! Internet Security
    Compatibilidad con Aplicaciones de Apple
    Crystal Reports for Visual Studio
    D3DX10
    Dotfuscator Software Services - Community Edition
    erLT
    iZotope Ozone 4
    Java Auto Updater
    Java(TM) 6 Update 26
    Junk Mail filter update
    Live 8.2.2
    Logitech SetPoint
    Malwarebytes' Anti-Malware versión 1.51.2.1300
    Meditation Journal
    Microsoft .NET Framework 4 Multi-Targeting Pack
    Microsoft Application Error Reporting
    Microsoft ASP.NET MVC 2
    Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools
    Microsoft Silverlight
    Microsoft Silverlight 3 SDK
    Microsoft SQL Server 2008 Browser
    Microsoft SQL Server 2008 R2 Data-Tier Application Framework
    Microsoft SQL Server 2008 R2 Data-Tier Application Project
    Microsoft SQL Server 2008 R2 Management Objects
    Microsoft SQL Server 2008 R2 Transact-SQL Language Service
    Microsoft SQL Server Compact 3.5 SP2 ENU
    Microsoft SQL Server Database Publishing Wizard 1.4
    Microsoft SQL Server System CLR Types
    Microsoft Sync Framework SDK v1.0 SP1
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual Studio 2010 Ultimate - ENU
    Microsoft Windows Debugging Symbols
    Microsoft_VC80_ATL_x86
    Microsoft_VC80_CRT_x86
    Microsoft_VC80_MFC_x86
    Microsoft_VC80_MFCLOC_x86
    Microsoft_VC90_ATL_x86
    Microsoft_VC90_CRT_x86
    Microsoft_VC90_MFC_x86
    Microsoft_VC90_MFCLOC_x86
    Mozilla Firefox 6.0.2 (x86 es-ES)
    MSVCRT
    MSVCRT_amd64
    NeuroSky MindWave version 1.1.22
    NVIDIA 3D Vision Controller Driver
    NVIDIA CUDA Toolkit
    NVIDIA GPU Computing SDK
    NVIDIA OptiX 2.1.1
    NVIDIA Photoshop Plug-ins
    NVIDIA Photoshop Plug-ins 64 bit
    NVIDIA PhysX
    NVIDIA Stereoscopic 3D Driver
    OctaneRender 1.024 beta2.46b x64 CUDA 3.0 (remove only)
    OctaneRender Demo 1.024 beta2.46b x64 (remove only)
    OpenGL Extensions Viewer 4.0
    Pd-0.42.5-extended
    PDF Settings CS5
    Python 2.6 SndObj-2.6.99
    QuickTime
    RealFlow 5
    Renoise 2.7.2
    Royale Remixed Theme
    Safari
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
    Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
    SmartFTP Client Setup Files 4.0 (x64) (remove only)
    ThinkGear Connector
    thriXXX 3DSexVilla2-114.001
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft .NET Framework 4 Extended (KB2468871)
    Update for Microsoft .NET Framework 4 Extended (KB2533523)
    Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU
    VLC media player 1.1.11
    WebTablet IE Plugin
    WebTablet Netscape Plugin
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Installer
    Windows Live Mail
    Windows Live Photo Common
    Windows Live PIMT Platform
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    .
    ==== Event Viewer Messages From Past Week ========
    .
    20/09/2011 18:29:20, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:20, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:20, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
    16/09/2011 19:37:05, Error: Microsoft-Windows-Directory-Services-SAM [12291] - SAM no ha podido iniciar el TCP/IP o el subproceso de escucha
    15/09/2011 20:01:13, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
    15/09/2011 19:52:09, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
    15/09/2011 19:44:07, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
    15/09/2011 19:36:49, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
    15/09/2011 19:30:48, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
    15/09/2011 19:21:36, Error: NetBT [4321] - No se pudo registrar el nombre "WORKGROUP :1d" en la interfaz con dirección IP 192.168.1.19. El equipo la con dirección IP 192.168.1.18 no admite el nombre reclamado por este equipo.
    .
    ==== End Of File ===========================
     
  7. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    The second language is causing a problem because the scan can't read some of the entries.Is there any chance that you did not install this:
    2011-08-29 18:46:29 -------- d-----w- C:\Users\Administrador\AppData\Roaming\thriXXX
    2011-08-29 18:46:29 -------- d-----w- C:\Program Files (x86)\thriXXX
    "thriXXX - Interactive 3D Sex Games"
    ====================================
    [​IMG]
    SuperAntiSpyware Home Edition Free Version
    • Please download SuperAntiSpyware from HERE
    • Launch SuperAntiSpyware and click on 'Check for updates'.
    • Wait for the updates to be installed
    • On the main screen click on 'Scan your computer'.
    • Check: 'Perform Complete Scan then Click 'Next' to start the scan.
    • Superantispyware will now scan your computer,when it's finished it will list all/any infections found.
    • Make sure everything found has a checkmark next to it,then press 'Next'.
    • Click on 'Finish' when you've done.
    It's possible that the program will ask you to reboot in order to delete some files.

    Obtain the SuperAntiSpyware log as follows:
    • Click on 'Preferences'.
    • Click on the 'Statistics/Logs' tab.
    • Under 'Scanner Logs' double click on 'SuperAntiSpyware Scan Log'.
    It will then open in your default text editor,such as Notepad. Paste the notepad file here on your reply
    =========================================
    Download HijackThis and save to your desktop.
    • Extract it to a directory on your hard drive called c:\HijackThis.
    • Then navigate to that directory and double-click on the hijackthis.exe file.
    • When started click on the Scan button and then the Save Log button to create a log of your information.
    • The log file and then the log will open in notepad. Be sure to click on Format> Uncheck Word Wrap when you open Notepad
    • Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
    • Come back here to this thread and paste (Ctrl+V) the log in your next reply.

    NOTE: Do NOT have HijackThis fix anything yet! Most of what it finds will be harmless or even required.
     
  8. Ralp

    Ralp TS Rookie Topic Starter

    Thanks a lot!
    You mean that I have to remove this program? (3DSexVilla)

    I'm gonna download these programs and I'll paste the logs asap.
    Thanks again!
     
  9. Ralp

    Ralp TS Rookie Topic Starter

    SUPERANTISPYWARE SCAN LOG:

    SUPERAntiSpyware Scan Log
    http://www.superantispyware.com

    Generated 09/21/2011 at 09:49 PM

    Application Version : 5.0.1118

    Core Rules Database Version : 7715
    Trace Rules Database Version: 5527

    Scan type : Quick Scan
    Total Scan Time : 00:00:58

    Operating System Information
    Windows 7 Professional 64-bit, Service Pack 1 (Build 6.01.7601)
    UAC Off - Administrator

    Memory items scanned : 629
    Memory threats detected : 0
    Registry items scanned : 60108
    Registry threats detected : 0
    File items scanned : 11280
    File threats detected : 147

    Adware.Tracking Cookie
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@ad2.adfarm1.adition[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adfarm1.adition[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adserver.konouz[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adserver.spiroox[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adserving.ezanga[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adserving.versaneeds[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adservingstd[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adxpose[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@bidtraffic[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@clicks.thespecialsearch[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@eclickz[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@fidelity.rotator.hadj7.adjuggler[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@gostats[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@harrenmedianetwork[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@httptrack[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@imrworldwide[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@m1.mediasrv[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@mediabrandsww[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@mediatraffic[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@pops.find-seek[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@pops.purplefindonline[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@rdmedia.go2jump[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@rotator.hadj7.adjuggler[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@tracker.alianzis[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@tracking1.aleadpay[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@truedigitalmedia.go2cloud[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@vidasco.rotator.hadj7.adjuggler[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@www.cpcadnet[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@www.cpcadnet[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@www.matrix-media[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@www.pixeltrack66[2].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@xm.xtendmedia[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@zanox[1].txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\2WVEQJK3.txt
    C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\RBCTS61E.txt
    .weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .c.gigcount.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .specificclick.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .adtech.de [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .apmebf.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .mediaplex.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    fl01.ct2.comclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .adfarm1.adition.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .adfarm1.adition.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    ad2.adfarm1.adition.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .doubleclick.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .imrworldwide.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .imrworldwide.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .microsoftsto.112.2o7.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    s04.flagcounter.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    wstat.wibiya.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    a.visualrevenue.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .interclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .interclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .interclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .content.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .content.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    fl01.ct2.comclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    fl01.ct2.comclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    fl01.ct2.comclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .jazztelespaa.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .jazztelespaa.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .jazztelespaa.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .jazztelespaa.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .paypal.112.2o7.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .mediaplex.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .statcounter.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .pg.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .pg.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .pg.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .pg.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .digital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .digital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .digital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .digital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .jazztelespaadigital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .jazztelespaadigital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .jazztelespaadigital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .jazztelespaadigital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .bestspeedfind.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    clicks.bestspeedfind.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .bestspeedfind.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .mediaplex.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .revsci.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .revsci.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .revsci.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .revsci.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .kaspersky.122.2o7.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .clickbank.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .clickbank.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .anrtx.tacoda.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .ar.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .invitemedia.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .invitemedia.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .kontera.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .h.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .h.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .h.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .h.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .invitemedia.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .media6degrees.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .tacoda.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .advertising.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .advertising.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    accounts.google.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    accounts.google.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    accounts.google.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .tribalfusion.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
    .collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
     
  10. Ralp

    Ralp TS Rookie Topic Starter

    HIJACKTHIS LOG:

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 21:56:42, on 21/09/2011
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16421)
    Boot mode: Normal

    Running processes:
    C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
    C:\Program Files (x86)\NeuroSky\ThinkGear Connector\ThinkGear Connector.exe
    C:\Program Files (x86)\NeuroSky\CogniScore Connector\CogniScore Connector.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
    C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\HijackThis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.es/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} - (no file)
    F2 - REG:system.ini: UserInit=userinit.exe,
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
    O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    O4 - HKCU\..\Run: [ThinkGear Connector] "C:\Program Files (x86)\NeuroSky\ThinkGear Connector\ThinkGear Connector.exe"
    O4 - HKCU\..\Run: [CogniScore Connector] "C:\Program Files (x86)\NeuroSky\CogniScore Connector\CogniScore Connector.exe"
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICIO LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICIO LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: Start 3DxWare.lnk
    O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
    O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
    O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
    O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
    O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
    O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
    O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
    O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
    O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_Tablet.exe
    O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: Wacom Consumer Touch Service (TouchServicePen) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_TouchService.exe
    O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
    O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

    --
    End of file - 23836 bytes
     
  11. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    No, you don't have to uninstall thriXXX 3DSexVilla2-114.001 which you have set as a Global Startup- meaning it will be started whenever anyone signs on to the computer.

    But neither do I have to remove bad entries you get from that type of site. I suggest you keep your porn private.

    This thread is closed.
     
     
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.