[Closed] Google redirect Malware in Firefox (Windows 7)

Status
Not open for further replies.
R

Ralp

Posts: 8   +0
Hello,

I'm new in this forum, and I'm here for the redirection problem in Google.
Almost every time I try to enter on a link on Google, a redirection to thewebtimes, goingonearth, and others appears me.

I've read and complete all the steps listed here: https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/

And I've already have the following logs files:

mbam
gmer
DDS
Attach

Should I post this log files here?

Thanks!
(Sorry for my English)
 
Welcome to TechSpot! Yes, please post all of the logs per this:

When you have finished, leave the logs for review in your next reply .
NOTE: Logs must be pasted in the replies. Attached logs will not be reviewed.
Click to expand...
Note: Attach/txt is jut the name of the log- not a direction. it gets pasted in to the reply also. Please do not zip it.
========================================
My Guidelines: please read and follow:
  • Be patient. Malware cleaning takes time and I am also working with other members while I am helping you.
  • Read my instructions carefully. If you don't understand or have a problem, ask me.
  • If you have questions, or if a program doesn't work, stop and tell me about it. Don't try to get around it yourself.
  • Follow the order of the tasks I give you. Order is crucial in cleaning process.
  • File sharing programs should be uninstalled or disabled during the cleaning process..
  • Observe these:
    [o] Don't use any other cleaning programs or scans while I'm helping you.
    [o] Don't use a Registry cleaner or make any changes in the Registry.
    [o] Don't download and install new programs- except those I give you.
  • Please let me know if there is any change in the system.

If I don't get a reply from you in 5 days, the thread will be closed. If your problem persist, you can send a PM to reopen it.
=====================================
 
Log Files

MBAM LOG:

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Versión de la Base de Datos: 7756

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

20/09/2011 21:02:12
mbam-log-2011-09-20 (21-02-12).txt

Tipos de Análisis: Análisis Rápido
Objetos examinados: 175524
Tiempo transcurrido: 43 segundo(s)

Procesos en Memoria Infectados: 0
Módulos de Memoria Infectados: 0
Claves del Registro Infectadas: 0
Valores del Registro Infectados: 0
Elementos de Datos del Registro Infectados: 0
Carpetas Infectadas: 0
Archivos Infectados: 0

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos de Memoria Infectados:
(No se han detectado elementos maliciosos)

Claves del Registro Infectadas:
(No se han detectado elementos maliciosos)

Valores del Registro Infectados:
(No se han detectado elementos maliciosos)

Elementos de Datos del Registro Infectados:
(No se han detectado elementos maliciosos)

Carpetas Infectadas:
(No se han detectado elementos maliciosos)

Archivos Infectados:
(No se han detectado elementos maliciosos)
 
Log Files

GMER LOG:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-09-20 21:15:13
Windows 6.1.7601 Service Pack 1
Running: i5us6toj.exe


---- Files - GMER 1.0.15 ----

File C:\## aswSnx private storage 0 bytes
File C:\## aswSnx private storage\r69 0 bytes
File C:\## aswSnx private storage\sfzone 0 bytes
File C:\## aswSnx private storage\sfzone\attrib 0 bytes
File C:\## aswSnx private storage\sfzone\image 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\chrome_shutdown_ms.txt 3 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\History Index 2011-09 217088 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Archived History 53248 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Bookmarks 512 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Bookmarks.bak 512 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\data_0 45056 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\data_1 270336 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\data_2 1056768 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\data_3 4202496 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000001 19741 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000002 18994 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000003 62486 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000004 106147 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000005 32401 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000006 36174 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000007 86971 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000008 25801 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000009 32727 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000a 28382 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000b 17362 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000c 23317 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000d 19303 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000e 21081 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_00000f 16811 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000010 77661 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000011 69272 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000012 21099 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000013 19670 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\f_000014 55541 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cache\index 524656 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Cookies 8192 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Current Session 23180 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Current Tabs 23063 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Favicons 14336 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\History 90112 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\JumpListIcons 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\JumpListIcons\971C.tmp 150798 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\JumpListIconsOld 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\JumpListIconsOld\7D32.tmp 150798 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Last Session 654 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Last Tabs 578 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Local Storage 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Plugin Data 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Plugin Data\Google Gears 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Preferences 1819 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Top Sites 24576 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\User StyleSheets 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\User StyleSheets\Custom.css 0 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Visited Links 131072 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Default\Web Data 61440 bytes
File C:\## aswSnx private storage\sfzone\image\sfzone_profile\Local State 2492 bytes
File C:\## aswSnx private storage\sfzone\image\Users 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Local 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Local\Temp 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\48C226A0FE7D97DE1C716B47235CB639_339FE4A15083BA9D58F96C1443F0D4C4 1083 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\48C226A0FE7D97DE1C716B47235CB639_339FE4A15083BA9D58F96C1443F0D4C4 400 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\4DB1DABDF57ED9997FE8DCC77E93C04F 186 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8890A77645B73478F5B1DED18ACBF795_D3DB95C0E7608ACC9AA10ACCCCEBBDF5 400 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\FDCDA60516A338BF2CE73506D1835F5D_EB0A434D23B40DF48D0DE6FB6A09D527 404 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla\Firefox 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\0n1y7vig.default 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\0n1y7vig.default\places.sqlite 10485760 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\Desktop 0 bytes
File C:\## aswSnx private storage\sfzone\image\Users\Administrador\Desktop\Chromium.lnk 2125 bytes
File C:\## aswSnx private storage\snx_rhive 262144 bytes
File C:\## aswSnx private storage\snx_rhive.LOG1 33792 bytes
File C:\## aswSnx private storage\snx_rhive.LOG2 0 bytes
File C:\## aswSnx private storage\snx_rhive{f514ac5f-e3ae-11e0-aa03-00e081d64f53}.TM.blf 65536 bytes
File C:\## aswSnx private storage\snx_rhive{f514ac5f-e3ae-11e0-aa03-00e081d64f53}.TMContainer00000000000000000001.regtrans-ms 524288 bytes
File C:\## aswSnx private storage\snx_rhive{f514ac5f-e3ae-11e0-aa03-00e081d64f53}.TMContainer00000000000000000002.regtrans-ms 524288 bytes

---- EOF - GMER 1.0.15 ----
 
Log Files

DDS LOG:

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_26
Run by Administrador at 21:22:02 on 2011-09-20
Microsoft Windows 7 Professional 6.1.7601.1.1252.34.3082.18.32759.28338 [GMT 2:00]
.
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Tablet\Pen\Pen_TouchService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
C:\Program Files (x86)\NeuroSky\ThinkGear Connector\ThinkGear Connector.exe
C:\Program Files (x86)\NeuroSky\CogniScore Connector\CogniScore Connector.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.es/
uURLSearchHooks: H - No File
mWinlogon: Userinit=userinit.exe,
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
EB: Web Test Recorder 10.0: {5802d092-1784-4908-8cdb-99b6842d353d} - mscoree.dll
uRun: [ThinkGear Connector] "C:\Program Files (x86)\NeuroSky\ThinkGear Connector\ThinkGear Connector.exe"
uRun: [CogniScore Connector] "C:\Program Files (x86)\NeuroSky\CogniScore Connector\CogniScore Connector.exe"
mRun: [<NO NAME>]
mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\START3~1.LNK -
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{732A0B69-6D91-4776-A6F0-6CC1ABF65347} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{D227B5C9-E897-46EE-81B5-23EBAB2FEAE5} : DhcpNameServer = 192.168.1.1
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{AE7CD045-E861-484f-8273-0445EE161910}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
{F4971EE7-DAA0-4053-9964-665D8EE6A077}
{47833539-D0C5-4125-9FA8-0819E2EAAC93}
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
EB-X64: {5802D092-1784-4908-8CDB-99B6842D353D} - No File
mRun-x64: [(Predeterminado)]
mRun-x64: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun-x64: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
mRun-x64: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\0n1y7vig.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswNdis;avast! Firewall NDIS Filter Service;C:\Windows\system32\DRIVERS\aswNdis.sys --> C:\Windows\system32\DRIVERS\aswNdis.sys [?]
R0 aswNdis2;avast! Firewall Core Firewall Service;C:\Windows\system32\drivers\aswNdis2.sys --> C:\Windows\system32\drivers\aswNdis2.sys [?]
R1 aswFW;avast! TDI Firewall driver;C:\Windows\system32\drivers\aswFW.sys --> C:\Windows\system32\drivers\aswFW.sys [?]
R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-9-8 44768]
R2 avast! Firewall;avast! Firewall;C:\Program Files\AVAST Software\Avast\afwServ.exe [2011-9-8 127192]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-9-20 366152]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-8-5 379496]
R2 TabletServicePen;TabletServicePen;C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2011-9-20 5790064]
R2 TouchServicePen;Wacom Consumer Touch Service;C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2011-9-20 487280]
R3 e1qexpress;Controlador de conexión de red PCI Express Intel(R) PRO/1000 Q;C:\Windows\system32\DRIVERS\e1q60x64.sys --> C:\Windows\system32\DRIVERS\e1q60x64.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 CH341ENUM_A64;CH341ENUM_A64;C:\Windows\System32\drivers\CH34EA64.sys [2011-8-16 30208]
S3 CH341SER_A64;CH341SER_A64;C:\Windows\System32\drivers\CH341S64.SYS [2011-8-16 58368]
S3 dmvsc;dmvsc;C:\Windows\system32\drivers\dmvsc.sys --> C:\Windows\system32\drivers\dmvsc.sys [?]
S3 ENTECH64;ENTECH64;\??\C:\Windows\system32\DRIVERS\ENTECH64.sys --> C:\Windows\system32\DRIVERS\ENTECH64.sys [?]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-7-14 1431888]
S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
S3 StorSvc;Servicio de almacenamiento;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 wacmoumonitor;Wacom Mode Helper;C:\Windows\system32\DRIVERS\wacmoumonitor.sys --> C:\Windows\system32\DRIVERS\wacmoumonitor.sys [?]
S3 WatAdminSvc;Servicio de tecnologías de activación de Windows;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2009-7-22 61976]
S4 RsFx0103;RsFx0103 Driver;C:\Windows\system32\DRIVERS\RsFx0103.sys --> C:\Windows\system32\DRIVERS\RsFx0103.sys [?]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2010-9-17 430424]
.
=============== Created Last 30 ================
.
2011-09-20 17:32:08 -------- d-----w- C:\Users\Administrador\AppData\Roaming\Malwarebytes
2011-09-20 17:32:00 -------- d-----w- C:\ProgramData\Malwarebytes
2011-09-20 17:31:58 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-09-20 17:31:58 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-09-20 17:21:35 -------- d-----w- C:\Program Files (x86)\Trend Micro
2011-09-20 08:54:07 749936 ----a-w- C:\Windows\System32\Pen_Touch_Tablet.dll
2011-09-20 08:54:07 642928 ----a-w- C:\Windows\SysWow64\Pen_Touch_Tablet.dll
2011-09-20 08:54:07 -------- d-----w- C:\Users\Administrador\AppData\Roaming\WTablet
2011-09-20 08:54:03 18288 ----a-w- C:\Windows\System32\drivers\wacmoumonitor.sys
2011-09-20 08:54:03 -------- d-----w- C:\Program Files (x86)\TabletPlugins
2011-09-20 08:53:58 16168 ----a-w- C:\Windows\System32\drivers\wacomvhid.sys
2011-09-20 08:53:57 756592 ----a-w- C:\Windows\System32\Pen_Tablet.dll
2011-09-20 08:53:57 650096 ----a-w- C:\Windows\SysWow64\Pen_Tablet.dll
2011-09-20 08:53:57 600432 ----a-w- C:\Windows\System32\Wintab32.dll
2011-09-20 08:53:57 506736 ----a-w- C:\Windows\SysWow64\Wintab32.dll
2011-09-20 08:53:55 -------- d-----w- C:\Program Files\Tablet
2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin7.dll
2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin6.dll
2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin5.dll
2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin4.dll
2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin3.dll
2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin2.dll
2011-09-19 10:39:31 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Módulos\npqtplugin.dll
2011-09-19 10:09:36 -------- d-----w- C:\Users\Administrador\AppData\Local\{D7F23C03-05D2-41D2-8233-0F7F28DF3C59}
2011-09-19 10:09:25 -------- d-----w- C:\Users\Administrador\AppData\Local\{4F0BFF8A-A073-41F1-8C2B-EF5C1999B5DA}
2011-09-15 11:59:14 -------- d-----w- C:\Users\Administrador\AppData\Local\{31DA93F8-C16D-4C21-9129-1110E5CA880F}
2011-09-15 11:59:02 -------- d-----w- C:\Users\Administrador\AppData\Local\{CE1B09A6-C109-4F17-B3AA-28FE050A76F1}
2011-09-13 17:55:50 -------- d-----w- C:\Users\Administrador\AppData\Local\{FE0D9142-3C4C-409C-AFEF-AB9D66777FBC}
2011-09-13 17:55:40 -------- d-----w- C:\Users\Administrador\AppData\Local\{F57F9034-8B1D-4859-8D16-46AF4DA5CBD0}
2011-09-12 15:06:23 -------- d-----w- C:\Users\Administrador\AppData\Local\{D9DE4522-8649-49E7-A558-09F15B282CC3}
2011-09-12 15:06:13 -------- d-----w- C:\Users\Administrador\AppData\Local\{DDADFDA5-0EFC-4B82-8BA6-1C3C8440F4CC}
2011-09-08 16:38:48 -------- d-----w- C:\Windows\SysWow64\wbem\en-US
2011-09-08 16:38:47 -------- d-----w- C:\Windows\System32\wbem\en-US
2011-09-08 16:32:27 72536 ----a-w- C:\Windows\SysWow64\perf-MSSQL$SQLEXPRESS-sqlctr10.2.4000.0.dll
2011-09-08 16:32:27 108376 ----a-w- C:\Windows\System32\perf-MSSQL$SQLEXPRESS-sqlctr10.2.4000.0.dll
2011-09-08 16:32:27 105816 ----a-w- C:\Windows\System32\SQSRVRES.DLL
2011-09-08 16:31:05 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2011-09-08 16:31:04 -------- d-----w- C:\Program Files\Microsoft Security Client
2011-09-06 17:36:30 -------- d-----w- C:\Users\Administrador\AppData\Local\ElevatedDiagnostics
2011-09-06 16:14:13 -------- d-----w- C:\Program Files\Common Files\ChaosGroup
2011-09-06 16:13:55 -------- d-----w- C:\Program Files\Chaos Group
2011-08-31 10:02:32 -------- d-----w- C:\Users\Administrador\AppData\Local\{8C38BFF1-110A-4BA2-975E-6ED6A330A14F}
2011-08-31 10:02:21 -------- d-----w- C:\Users\Administrador\AppData\Local\{A4749C6F-5301-40AD-96DA-83CDF6349A02}
2011-08-29 18:46:29 -------- d-----w- C:\Users\Administrador\AppData\Roaming\thriXXX
2011-08-29 18:46:29 -------- d-----w- C:\Program Files (x86)\thriXXX
2011-08-29 17:34:09 -------- d-----w- C:\Users\Administrador\AppData\Local\{E460278C-0552-49AB-B8CB-0DEBF3173D99}
2011-08-29 17:33:59 -------- d-----w- C:\Users\Administrador\AppData\Local\{EC4B3D45-DEF1-4A40-A5C2-F367487A29BD}
2011-08-29 17:33:04 -------- d-----w- C:\Users\Administrador\AppData\Roaming\Arduino
2011-08-29 13:18:33 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2011-08-29 13:18:33 2048 ----a-w- C:\Windows\System32\tzres.dll
2011-08-22 18:44:36 -------- d-----w- C:\Users\Administrador\AppData\Roaming\Subversion
2011-08-22 18:30:36 -------- d-----w- C:\Program Files\SlikSvn
2011-08-22 17:31:55 -------- dc----w- C:\cygwin
2011-08-22 17:25:42 -------- dc----w- C:\Lib
.
==================== Find3M ====================
.
2011-09-06 20:45:29 41184 ----a-w- C:\Windows\avastSS.scr
2011-09-06 20:39:00 140120 ----a-w- C:\Windows\System32\drivers\aswFW.sys
2011-09-06 20:38:18 601944 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2011-09-06 20:37:45 258392 ----a-w- C:\Windows\System32\drivers\aswNdis2.sys
2011-09-06 20:36:30 65368 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2011-08-31 18:18:53 151552 ----a-w- C:\Windows\SysWow64\nvRegDev.dll
2011-08-06 02:52:00 807528 ----a-w- C:\Windows\System32\nv3dappshext.dll
2011-08-06 02:52:00 739432 ----a-w- C:\Windows\System32\easyupdatusapiu64.dll
2011-08-06 02:52:00 6318696 ----a-w- C:\Windows\System32\nvcpl.dll
2011-08-06 02:52:00 61544 ----a-w- C:\Windows\System32\nvshext.dll
2011-08-06 02:52:00 53864 ----a-w- C:\Windows\System32\nv3dappshextr.dll
2011-08-06 02:52:00 3041384 ----a-w- C:\Windows\System32\nvsvc64.dll
2011-08-06 02:52:00 2560616 ----a-w- C:\Windows\System32\nvsvcr.dll
2011-08-06 02:52:00 117864 ----a-w- C:\Windows\System32\nvmctray.dll
2011-08-06 02:52:00 1018472 ----a-w- C:\Windows\System32\nvvsvc.exe
2011-08-05 16:52:12 305256 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2011-07-28 14:27:25 61440 ----a-w- C:\Windows\SysWow64\nvPhotoshopUtil.dll
2011-07-28 14:27:25 40960 ----a-w- C:\Windows\SysWow64\nvISWOW64.dll
2011-07-24 19:56:21 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-07-20 12:56:23 23112 ----a-w- C:\Windows\System32\drivers\hitmanpro35.sys
2011-07-16 05:41:50 362496 ----a-w- C:\Windows\System32\wow64win.dll
2011-07-16 05:41:49 243200 ----a-w- C:\Windows\System32\wow64.dll
2011-07-16 05:41:49 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2011-07-16 05:39:10 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2011-07-16 05:37:12 421888 ----a-w- C:\Windows\System32\KernelBase.dll
2011-07-16 04:29:19 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2011-07-16 04:26:00 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2011-07-16 04:25:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2011-07-16 04:24:23 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2011-07-16 04:24:22 272384 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2011-07-16 02:21:44 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2011-07-16 02:21:41 2048 ----a-w- C:\Windows\SysWow64\user.exe
2011-07-16 02:17:19 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:17:19 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:17:19 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:17:19 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2011-07-15 11:06:06 64000 --sha-r- C:\Windows\SysWow64\d3dx10D.dll
2011-07-14 14:58:30 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-07-09 02:46:28 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2011-07-05 16:37:00 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
2011-07-05 16:37:00 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
2011-07-04 11:12:07 12368 ----a-w- C:\Windows\System32\drivers\aswNdis.sys
2011-07-01 20:13:32 45056 ----a-w- C:\Windows\System32\Launch3DxGUI.cpl
2011-07-01 20:10:48 109056 ----a-w- C:\Windows\System32\siappdll.dll
2011-07-01 20:09:26 53248 ----a-w- C:\Windows\System32\spwini.dll
2011-07-01 20:01:16 85504 ----a-w- C:\Windows\SysWow64\siappdll.dll
2011-07-01 19:59:38 43008 ----a-w- C:\Windows\SysWow64\spwini.dll
2011-06-24 05:34:53 214528 ----a-w- C:\Windows\System32\winsrv.dll
2011-06-24 05:25:49 338432 ----a-w- C:\Windows\System32\conhost.exe
2011-06-23 05:43:12 5561216 ----a-w- C:\Windows\System32\ntoskrnl.exe
2011-06-23 04:33:57 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2011-06-23 04:33:57 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
.
============= FINISH: 21:23:46,50 ===============
 
Log Files

ATTACH LOG:

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 06/07/2011 13:37:08
System Uptime: 20/09/2011 19:35:36 (2 hours ago)
.
Motherboard: TYAN | | S7025
Processor: Intel(R) Xeon(R) CPU X5650 @ 2.67GHz | CPU 1 | 2668/133mhz
Processor: Intel(R) Xeon(R) CPU X5650 @ 2.67GHz | CPU 2 | 2668/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 112 GiB total, 29,002 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 932 GiB total, 911,03 GiB free.
F: is FIXED (NTFS) - 932 GiB total, 912,3 GiB free.
G: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
3Dconnexion 3DxSoftware (x64 Edition)
3Dconnexion Collage
3Dconnexion Extension for SketchUp
3Dconnexion Plug-in for Acrobat 3D
3Dconnexion Trainer
Adobe Acrobat X Pro - English, Français, Deutsch
Adobe After Effects CS5.5 Third Party Content
Adobe AIR
Adobe Community Help
Adobe Content Viewer
Adobe Creative Suite 5.5 Master Collection
Adobe Download Assistant
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Story
Apple Software Update
Aptana Studio 3
Autodesk Backburner 2012.0.0
avast! Internet Security
Compatibilidad con Aplicaciones de Apple
Crystal Reports for Visual Studio
D3DX10
Dotfuscator Software Services - Community Edition
erLT
iZotope Ozone 4
Java Auto Updater
Java(TM) 6 Update 26
Junk Mail filter update
Live 8.2.2
Logitech SetPoint
Malwarebytes' Anti-Malware versión 1.51.2.1300
Meditation Journal
Microsoft .NET Framework 4 Multi-Targeting Pack
Microsoft Application Error Reporting
Microsoft ASP.NET MVC 2
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools
Microsoft Silverlight
Microsoft Silverlight 3 SDK
Microsoft SQL Server 2008 Browser
Microsoft SQL Server 2008 R2 Data-Tier Application Framework
Microsoft SQL Server 2008 R2 Data-Tier Application Project
Microsoft SQL Server 2008 R2 Management Objects
Microsoft SQL Server 2008 R2 Transact-SQL Language Service
Microsoft SQL Server Compact 3.5 SP2 ENU
Microsoft SQL Server Database Publishing Wizard 1.4
Microsoft SQL Server System CLR Types
Microsoft Sync Framework SDK v1.0 SP1
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual Studio 2010 Ultimate - ENU
Microsoft Windows Debugging Symbols
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
Microsoft_VC90_MFCLOC_x86
Mozilla Firefox 6.0.2 (x86 es-ES)
MSVCRT
MSVCRT_amd64
NeuroSky MindWave version 1.1.22
NVIDIA 3D Vision Controller Driver
NVIDIA CUDA Toolkit
NVIDIA GPU Computing SDK
NVIDIA OptiX 2.1.1
NVIDIA Photoshop Plug-ins
NVIDIA Photoshop Plug-ins 64 bit
NVIDIA PhysX
NVIDIA Stereoscopic 3D Driver
OctaneRender 1.024 beta2.46b x64 CUDA 3.0 (remove only)
OctaneRender Demo 1.024 beta2.46b x64 (remove only)
OpenGL Extensions Viewer 4.0
Pd-0.42.5-extended
PDF Settings CS5
Python 2.6 SndObj-2.6.99
QuickTime
RealFlow 5
Renoise 2.7.2
Royale Remixed Theme
Safari
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
SmartFTP Client Setup Files 4.0 (x64) (remove only)
ThinkGear Connector
thriXXX 3DSexVilla2-114.001
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU
VLC media player 1.1.11
WebTablet IE Plugin
WebTablet Netscape Plugin
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
.
==== Event Viewer Messages From Past Week ========
.
20/09/2011 18:29:20, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:20, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:20, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:19, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:18, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:17, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:16, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
20/09/2011 18:29:15, Error: Application Popup [1060] - Se bloqueó la carga de \??\C:\Program Files\Perfect Uninstaller\FKFAP.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.
16/09/2011 19:37:05, Error: Microsoft-Windows-Directory-Services-SAM [12291] - SAM no ha podido iniciar el TCP/IP o el subproceso de escucha
15/09/2011 20:01:13, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
15/09/2011 19:52:09, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
15/09/2011 19:44:07, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
15/09/2011 19:36:49, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
15/09/2011 19:30:48, Error: bowser [8003] - El explorador maestro recibió una notificación del equipo NEW-HOST-2 que cree que es el explorador maestro para el dominio en el transporte NetBT_Tcpip_{732A0B69-6D91-4776-A6F0-6CC1ABF65347}. El explorador maestro está detenido o se está forzando una elección.
15/09/2011 19:21:36, Error: NetBT [4321] - No se pudo registrar el nombre "WORKGROUP :1d" en la interfaz con dirección IP 192.168.1.19. El equipo la con dirección IP 192.168.1.18 no admite el nombre reclamado por este equipo.
.
==== End Of File ===========================
 
The second language is causing a problem because the scan can't read some of the entries.Is there any chance that you did not install this:
2011-08-29 18:46:29 -------- d-----w- C:\Users\Administrador\AppData\Roaming\thriXXX
2011-08-29 18:46:29 -------- d-----w- C:\Program Files (x86)\thriXXX
"thriXXX - Interactive 3D Sex Games"
====================================
SASLogo48x48.gif

SuperAntiSpyware Home Edition Free Version
  • Please download SuperAntiSpyware from HERE
  • Launch SuperAntiSpyware and click on 'Check for updates'.
  • Wait for the updates to be installed
  • On the main screen click on 'Scan your computer'.
  • Check: 'Perform Complete Scan then Click 'Next' to start the scan.
  • Superantispyware will now scan your computer,when it's finished it will list all/any infections found.
  • Make sure everything found has a checkmark next to it,then press 'Next'.
  • Click on 'Finish' when you've done.
It's possible that the program will ask you to reboot in order to delete some files.

Obtain the SuperAntiSpyware log as follows:
  • Click on 'Preferences'.
  • Click on the 'Statistics/Logs' tab.
  • Under 'Scanner Logs' double click on 'SuperAntiSpyware Scan Log'.
It will then open in your default text editor,such as Notepad. Paste the notepad file here on your reply
=========================================
Download HijackThis http://download.bleepingcomputer.com/hijackthis/HijackThis.zipand save to your desktop.
  • Extract it to a directory on your hard drive called c:\HijackThis.
  • Then navigate to that directory and double-click on the hijackthis.exe file.
  • When started click on the Scan button and then the Save Log button to create a log of your information.
  • The log file and then the log will open in notepad. Be sure to click on Format> Uncheck Word Wrap when you open Notepad
  • Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
  • Come back here to this thread and paste (Ctrl+V) the log in your next reply.

NOTE: Do NOT have HijackThis fix anything yet! Most of what it finds will be harmless or even required.
 
Thanks a lot!
You mean that I have to remove this program? (3DSexVilla)

I'm gonna download these programs and I'll paste the logs asap.
Thanks again!
 
SUPERANTISPYWARE SCAN LOG:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 09/21/2011 at 09:49 PM

Application Version : 5.0.1118

Core Rules Database Version : 7715
Trace Rules Database Version: 5527

Scan type : Quick Scan
Total Scan Time : 00:00:58

Operating System Information
Windows 7 Professional 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 629
Memory threats detected : 0
Registry items scanned : 60108
Registry threats detected : 0
File items scanned : 11280
File threats detected : 147

Adware.Tracking Cookie
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@ad2.adfarm1.adition[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adfarm1.adition[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adserver.konouz[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adserver.spiroox[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adserving.ezanga[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adserving.versaneeds[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adservingstd[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@adxpose[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@bidtraffic[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@clicks.thespecialsearch[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@eclickz[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@fidelity.rotator.hadj7.adjuggler[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@gostats[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@harrenmedianetwork[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@httptrack[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@imrworldwide[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@m1.mediasrv[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@mediabrandsww[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@mediatraffic[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@pops.find-seek[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@pops.purplefindonline[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@rdmedia.go2jump[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@rotator.hadj7.adjuggler[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@tracker.alianzis[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@tracking1.aleadpay[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@truedigitalmedia.go2cloud[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@vidasco.rotator.hadj7.adjuggler[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@www.cpcadnet[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@www.cpcadnet[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@www.matrix-media[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@www.pixeltrack66[2].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@xm.xtendmedia[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\administrador@zanox[1].txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\2WVEQJK3.txt
C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Cookies\RBCTS61E.txt
.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.c.gigcount.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.microsoftsto.112.2o7.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
s04.flagcounter.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
wstat.wibiya.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
a.visualrevenue.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.content.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.content.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.jazztelespaa.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.jazztelespaa.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.jazztelespaa.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.jazztelespaa.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.paypal.112.2o7.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.pg.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.pg.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.pg.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.pg.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.digital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.digital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.digital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.digital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.jazztelespaadigital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.jazztelespaadigital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.jazztelespaadigital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.jazztelespaadigital.solution.weborama.fr [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.bestspeedfind.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
clicks.bestspeedfind.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.bestspeedfind.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.kaspersky.122.2o7.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.clickbank.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.clickbank.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.anrtx.tacoda.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.ar.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.h.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.h.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.h.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.h.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.tacoda.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\0N1Y7VIG.DEFAULT\COOKIES.SQLITE ]
 
HIJACKTHIS LOG:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:56:42, on 21/09/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\NeuroSky\ThinkGear Connector\ThinkGear Connector.exe
C:\Program Files (x86)\NeuroSky\CogniScore Connector\CogniScore Connector.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.es/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [ThinkGear Connector] "C:\Program Files (x86)\NeuroSky\ThinkGear Connector\ThinkGear Connector.exe"
O4 - HKCU\..\Run: [CogniScore Connector] "C:\Program Files (x86)\NeuroSky\CogniScore Connector\CogniScore Connector.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Start 3DxWare.lnk
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_Tablet.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Wacom Consumer Touch Service (TouchServicePen) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_TouchService.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 23836 bytes
 
No, you don't have to uninstall thriXXX 3DSexVilla2-114.001 which you have set as a Global Startup- meaning it will be started whenever anyone signs on to the computer.

But neither do I have to remove bad entries you get from that type of site. I suggest you keep your porn private.

This thread is closed.
 
Status
Not open for further replies.

Similar threads

E
Solved Svchost.exe launching multiple iexplore.exe - unknown cause
Replies
23
Views
3K
Broni
Broni
C
Solved Malware \ProductData + possibly more, on two devices
Replies
4
Views
7K
Broni
Broni
apsts004
Solved My laptops got infected ?
Replies
6
Views
6K
Broni
Broni

Latest posts

Back