Log HijackThis

Tema en 'Logs HijackThis' comenzado por cehdmoy, 26/8/11.

Estado del tema:
No está abierto para más respuestas.
  1. cehdmoy

    cehdmoy Nuevo Miembro Miembro

    Acá les dejo el log, entre los problemas que tiene el pc, están, no abrir youtube en algunos navegadores, y no acceder a MSDN entre otros problemas, si me ayudaran se los agradecería.


    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 20:22:17, on 25-08-2011
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16421)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskhost.exe
    C:\Program Files\ASUS\Splendid\ACMON.exe
    C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
    C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
    C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
    C:\Windows\System32\ACEngSvr.exe
    C:\Program Files\P4G\BatteryLife.exe
    C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\Elantech\ETDCtrl.exe
    C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
    C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Elantech\ETDCtrlHelper.exe
    C:\Windows\AsScrPro.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Google\Google Talk\googletalk.exe
    C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    C:\Windows\System32\StikyNot.exe
    C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel.exe
    C:\Users\Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Users\Roberto\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\taskhost.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\Program Files\Microsoft Visual Studio 10.0\Common7\IDE\devenv.exe
    C:\Program Files\Microsoft SQL Server\100\Tools\Binn\VSShell\Common7\IDE\Ssms.exe
    C:\Users\Roberto\Documents\Visual Studio 2010\Projects\ConsoleApplication1\ConsoleApplication1\bin\Debug\ConsoleApplication1.vshost.exe
    C:\Users\Roberto\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, Noticias, Deportes, Música, Cine, Dinero, Motor, Compras en MSN España
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, Noticias, Deportes, Música, Cine, Dinero, Motor, Compras en MSN España
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: uTorrentBar_ES Toolbar - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\tbuTor.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: Trixie.Bho - {B0744341-96E0-4341-9ED2-8BC36CE0CCD0} - mscoree.dll (file missing)
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
    O2 - BHO: uTorrentBar_ES Toolbar - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\tbuTor.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: kikin Plugin - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Program Files\kikin\ie_kikin.dll
    O3 - Toolbar: uTorrentBar_ES Toolbar - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\tbuTor.dll
    O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
    O4 - HKLM\..\Run: [ETDWare] %ProgramFiles%\Elantech\ETDCtrl.exe
    O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
    O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
    O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [TortoiseHgOverlayIconServer] C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
    O4 - HKLM\..\Run: [FileZilla Server Interface] "C:\Program Files\FileZilla Server\FileZilla Server Interface.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
    O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
    O4 - HKCU\..\Run: [Google Update] "C:\Users\Roberto\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICIO LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICIO LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
    O4 - Startup: Dropbox.lnk = Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe
    O4 - Global Startup: FancyStart daemon.lnk = ?
    O4 - Global Startup: SRS Premium Sound.lnk = ?
    O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files\kikin\ie_kikin.dll
    O9 - Extra 'Tools' menuitem: My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files\kikin\ie_kikin.dll
    O9 - Extra button: (no name) - {20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - C:\Windows\system32\mscoree.DLL
    O9 - Extra 'Tools' menuitem: Tri&xie Options... - {20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - C:\Windows\system32\mscoree.DLL
    O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
    O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: AFBAgent - ASUSTeK Computer Inc. - C:\Windows\system32\FBAgent.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
    O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30011 (AppHostSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
    O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
    O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
    O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
    O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
    O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\Program Files\FileZilla Server\FileZilla Server.exe
    O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
    O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
    O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
    O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
    O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
    O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
    O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
    O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30003 (W3SVC) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
    O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30001 (WAS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
    O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
    O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
    O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

    --
    End of file - 26711 bytes
  2. Kbite

    Kbite Administrador Administrador

  3. cehdmoy

    cehdmoy Nuevo Miembro Miembro

    Log del anti malware

    Malwarebytes' Anti-Malware 1.51.1.1800
    Malwarebytes : Free anti-malware, anti-virus and spyware removal download

    Versión de la Base de Datos: 7570

    Windows 6.1.7601 Service Pack 1
    Internet Explorer 9.0.8112.16421

    26-08-2011 16:19:36
    mbam-log-2011-08-26 (16-19-36).txt

    Tipos de Análisis: Análisis Completo (C:\|D:\|)
    Objetos examinados: 551563
    Tiempo transcurrido: 12 hora(s), 46 minuto(s), 41 segundo(s)

    Procesos en Memoria Infectados: 0
    Módulos de Memoria Infectados: 0
    Claves del Registro Infectadas: 0
    Valores del Registro Infectados: 0
    Elementos de Datos del Registro Infectados: 0
    Carpetas Infectadas: 0
    Archivos Infectados: 5

    Procesos en Memoria Infectados:
    (No se han detectado elementos maliciosos)

    Módulos de Memoria Infectados:
    (No se han detectado elementos maliciosos)

    Claves del Registro Infectadas:
    (No se han detectado elementos maliciosos)

    Valores del Registro Infectados:
    (No se han detectado elementos maliciosos)

    Elementos de Datos del Registro Infectados:
    (No se han detectado elementos maliciosos)

    Carpetas Infectadas:
    (No se han detectado elementos maliciosos)

    Archivos Infectados:
    c:\Users\Roberto\downloads\Keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
    d:\descargas3\guitar pro 5.2\Keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
    d:\descargas3\GUTAR\guitar pro 6 setup + new crack\new crack by drspollonia\guitarpro6-patch-fixed_bydrspollonia.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
    d:\descargas3\GUTAR\guitar pro 6 setup + new crack\new crack by drspollonia\keygen_thanks_to_lz0.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
    d:\descargas3\nero 7.9.6 win7\nero keygen generador.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.


    ****************************************************************

    nuevo log del hijackthis

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 16:24:22, on 26-08-2011
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16421)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskhost.exe
    C:\Program Files\ASUS\Splendid\ACMON.exe
    C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
    C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
    C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
    C:\Windows\System32\ACEngSvr.exe
    C:\Program Files\P4G\BatteryLife.exe
    C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\Elantech\ETDCtrl.exe
    C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
    C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Elantech\ETDCtrlHelper.exe
    C:\Windows\AsScrPro.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Google\Google Talk\googletalk.exe
    C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    C:\Windows\System32\StikyNot.exe
    C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel.exe
    C:\Users\Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Windows\system32\taskhost.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, Noticias, Deportes, Música, Cine, Dinero, Motor, Compras en MSN España
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, Noticias, Deportes, Música, Cine, Dinero, Motor, Compras en MSN España
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: uTorrentBar_ES Toolbar - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\tbuTor.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: Trixie.Bho - {B0744341-96E0-4341-9ED2-8BC36CE0CCD0} - mscoree.dll (file missing)
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
    O2 - BHO: uTorrentBar_ES Toolbar - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\tbuTor.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: kikin Plugin - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Program Files\kikin\ie_kikin.dll
    O3 - Toolbar: uTorrentBar_ES Toolbar - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\tbuTor.dll
    O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
    O4 - HKLM\..\Run: [ETDWare] %ProgramFiles%\Elantech\ETDCtrl.exe
    O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
    O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
    O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [TortoiseHgOverlayIconServer] C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
    O4 - HKLM\..\Run: [FileZilla Server Interface] "C:\Program Files\FileZilla Server\FileZilla Server Interface.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
    O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
    O4 - HKCU\..\Run: [Google Update] "C:\Users\Roberto\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICIO LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICIO LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
    O4 - Startup: Dropbox.lnk = Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe
    O4 - Global Startup: FancyStart daemon.lnk = ?
    O4 - Global Startup: SRS Premium Sound.lnk = ?
    O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files\kikin\ie_kikin.dll
    O9 - Extra 'Tools' menuitem: My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files\kikin\ie_kikin.dll
    O9 - Extra button: (no name) - {20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - C:\Windows\system32\mscoree.DLL
    O9 - Extra 'Tools' menuitem: Tri&xie Options... - {20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - C:\Windows\system32\mscoree.DLL
    O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
    O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: AFBAgent - ASUSTeK Computer Inc. - C:\Windows\system32\FBAgent.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
    O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30011 (AppHostSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
    O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
    O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
    O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
    O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
    O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\Program Files\FileZilla Server\FileZilla Server.exe
    O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
    O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
    O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
    O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
    O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
    O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
    O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
    O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30003 (W3SVC) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
    O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30001 (WAS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
    O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
    O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
    O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

    --
    End of file - 26538 bytes
  4. Caito

    Caito Nuevo Miembro Miembro

    No veo nada raro pero te falta el scan on line...
    Saludos
    Caito
  5. cehdmoy

    cehdmoy Nuevo Miembro Miembro

    Perdon, perdon, se me olvió el scan on line... pero al anti malware me detectó 5 archivos corruptos... hago el scan online y posteo el log cierto?
  6. cehdmoy

    cehdmoy Nuevo Miembro Miembro

    Log Antivirus



    QuickScan Beta 32-bit v0.9.9.99
    -------------------------------
    Fecha de Análisis: Fri Aug 26 22:00:18 2011
    ID de la Máquina: EA8B8E39



    No se han encontrado infecciones.
    ---------------------------------



    Procesos
    --------
    ADSMSrv 2500 C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
    ADSMSrv 1672 C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
    ASPG application 3208 C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe
    ACEngSvr Module 3308 C:\Windows\System32\ACEngSvr.exe
    AFBAgent 1648 C:\Windows\System32\FBAgent.exe
    AMD External Events 1328 C:\Windows\System32\atieclxx.exe
    AMD External Events 940 C:\Windows\System32\atiesrxx.exe
    ASUS Screen Saver Protector 2076 C:\Windows\AsScrPro.exe
    ASUS SmartLogon 3132 C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
    ATK ACMON 3108 C:\Program Files\ASUS\Splendid\ACMON.exe
    ATK Generic Function Service 1692 C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    ATK Hotkey 4900 C:\Program Files\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
    ATK Hotkey 3692 C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
    ATK Hotkey 3952 C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    ATK Hotkey 5016 C:\Program Files\ASUS\ATK Package\ATK Hotkey\WDC.exe
    ATK Media 3940 C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
    ATKOSD2 3924 C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    Catalyst Control Centre 5148 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    Catalyst Control Centre 3908 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    ControlDeckStartUp.exe 3244 C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
    Dropbox 3616 C:\Users\Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe
    ELAN Smart-Pad 3916 C:\Program Files\Elantech\ETDCtrl.exe
    ELAN Smart-Pad 1392 C:\Program Files\Elantech\ETDCtrlHelper.exe
    ESET Smart Security 3964 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    ESET Smart Security 1952 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
    FileZilla Server 2032 C:\Program Files\FileZilla Server\FileZilla server.exe
    Firefox 1568 C:\Program Files\Mozilla Firefox\firefox.exe
    Firefox 5008 C:\Program Files\Mozilla Firefox\plugin-container.exe
    Firefox 2652 C:\Program Files\Mozilla Firefox\plugin-container.exe
    Google Talk 2444 C:\Program Files\Google\Google Talk\googletalk.exe
    Intel(R) Active Management Technology L 336 C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    Intel(R) Management & Security Applicat 4920 C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    Internet Information Services 124 C:\Windows\System32\inetsrv\inetinfo.exe
    Java(TM) Platform SE Auto Updater 2 0 2336 C:\Program Files\Common Files\Java\Java Update\jusched.exe
    Microsoft SQL Server 752 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
    Microsoft SQL Server 504 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
    Microsoft® Windows® Operating System 3744 C:\Windows\System32\wbem\WmiPrvSE.exe
    Microsoft® Windows® Operating System 3388 C:\Windows\System32\wbem\WmiPrvSE.exe
    Nero Home 824 C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    Nero Home 3504 C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    Nero Home 3012 C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    Net4Switch 3152 C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
    Power4Gear Hybrid 3232 C:\Program Files\P4G\BatteryLife.exe
    Sistema operativo Microsoft® Windows® 3476 C:\Program Files\Windows Media Player\wmpnetwk.exe
    Sistema operativo Microsoft® Windows® 3220 C:\Windows\explorer.exe
    Sistema operativo Microsoft® Windows® 508 C:\Windows\System32\csrss.exe
    Sistema operativo Microsoft® Windows® 580 C:\Windows\System32\csrss.exe
    Sistema operativo Microsoft® Windows® 680 C:\Windows\System32\lsm.exe
    Sistema operativo Microsoft® Windows® 628 C:\Windows\System32\services.exe
    Sistema operativo Microsoft® Windows® 320 C:\Windows\System32\smss.exe
    Sistema operativo Microsoft® Windows® 1792 C:\Windows\System32\spoolsv.exe
    Sistema operativo Microsoft® Windows® 2808 C:\Windows\System32\StikyNot.exe
    Sistema operativo Microsoft® Windows® 2992 C:\Windows\System32\taskeng.exe
    Sistema operativo Microsoft® Windows® 3044 C:\Windows\System32\taskhost.exe
    Sistema operativo Microsoft® Windows® 572 C:\Windows\System32\wininit.exe
    Sistema operativo Microsoft® Windows® 660 C:\Windows\System32\winlogon.exe
    spmgr Module 1020 C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
    SRS Universal Audio Processing Object f 3576 C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel.exe
    Virtual CloneDrive 4012 C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
    Windows Live Communications Platform 4752 C:\Program Files\Windows Live\Contacts\wlcomm.exe
    Windows Live Messenger 1560 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    Windows® Search 2868 C:\Windows\System32\SearchIndexer.exe
    Wireless Console 3 3120 C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
    (verificado) GrooveMonitor Utility 4044 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    (verificado) Microsoft® Windows® Operating System 5088 C:\Windows\System32\dllhost.exe
    (verificado) Microsoft® Windows® Operating System 672 C:\Windows\System32\lsass.exe
    (verificado) Sistema operativo Microsoft® Windows® 3084 C:\Windows\System32\dwm.exe
    (verificado) Sistema operativo Microsoft® Windows® 1248 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 1100 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 796 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 872 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 996 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 1916 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 1092 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 1424 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 2504 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 1048 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 1820 C:\Windows\System32\svchost.exe
    (verificado) Sistema operativo Microsoft® Windows® 1348 C:\Windows\System32\svchost.exe


    Actividad de red
    ----------------
    Proceso msnmsgr.exe (1560) conectado en el puerto 1863 (MSN) --> 65.54.49.79
    Proceso msnmsgr.exe (1560) conectado en el puerto 443 (HTTP over SSL) --> 65.54.50.229
    Proceso firefox.exe (1568) conectado en el puerto 443 (HTTP over SSL) --> 209.85.195.104
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 200.28.222.6
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 200.28.222.6
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 200.28.222.6
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 200.28.222.6
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 200.28.222.6
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 200.28.222.6
    Proceso firefox.exe (1568) conectado en el puerto 443 (HTTP over SSL) --> 74.125.234.4
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 69.171.242.39
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 64.212.172.185
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 64.212.172.185
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 64.212.172.185
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 64.212.172.185
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 64.212.172.185
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 64.212.172.185
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 209.85.195.148
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 209.85.195.148
    Proceso firefox.exe (1568) conectado en el puerto 443 (HTTP over SSL) --> 74.125.53.132
    Proceso firefox.exe (1568) conectado en el puerto 443 (HTTP over SSL) --> 74.125.234.21
    Proceso firefox.exe (1568) conectado en el puerto 443 (HTTP over SSL) --> 74.125.234.21
    Proceso firefox.exe (1568) conectado en el puerto 443 (HTTP over SSL) --> 209.85.195.164
    Proceso firefox.exe (1568) conectado en el puerto 443 (HTTP over SSL) --> 74.125.234.29
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 184.27.172.20
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 190.46.255.16
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 208.70.188.70
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 74.125.234.37
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 184.27.165.115
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 190.46.255.18
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 91.199.104.31
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 200.154.56.14
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 200.154.56.14
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 190.46.255.34
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 190.46.255.34
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 190.46.255.34
    Proceso firefox.exe (1568) conectado en el puerto 80 (HTTP) --> 190.46.255.34
    Proceso googletalk.exe (2444) conectado en el puerto 5222 (XMPP/Jabber) --> 74.125.53.125
    Proceso Dropbox.exe (3616) conectado en el puerto 80 (HTTP) --> 199.47.216.149

    Proceso wininit.exe (572) escuchar en puertos: 49152 (RPC)
    Proceso services.exe (628) escuchar en puertos: 49155 (RPC)
    Proceso lsass.exe (672) escuchar en puertos: 49156 (RPC)
    Proceso svchost.exe (872) escuchar en puertos: 135 (RPC)
    Proceso svchost.exe (996) escuchar en puertos: 49153 (RPC)
    Proceso svchost.exe (1092) escuchar en puertos: 49154 (RPC)
    Proceso FileZilla server.exe (2032) escuchar en puertos: 21 (FTP)
    Proceso wmpnetwk.exe (3476) escuchar en puertos: 554 (RTSP)


    Autoruns y archivos críticos
    ----------------------------
    Adobe Reader and Acrobat Manager C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    ATK Hotkey C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    ATK Media C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
    ATKOSD2 C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    Catalyst® Control Center C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
    Dropbox C:\Users\Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe
    ELAN Smart-Pad C:\Program Files\Elantech\ETDCtrl.exe
    ESET Smart Security C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    FileZilla Server C:\Program Files\FileZilla Server\FileZilla Server Interface.exe
    Google Talk C:\Program Files\Google\Google Talk\googletalk.exe
    GrooveShellExtensions Module C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    Java(TM) Platform SE Auto Updater 2 0 C:\Program Files\Common Files\Java\Java Update\jusched.exe
    Mozilla Firefox C:\Program Files\Mozilla Firefox
    Nero AG NeroCheck C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    Nero Home C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    SAIICpl Application C:\Program Files\CONEXANT\SAII\SAIICpl.exe
    Sistema operativo Microsoft® Windows® C:\Windows\System32\StikyNot.exe
    Sistema operativo Microsoft® Windows® c:\windows\system32\userinit.exe
    Skype C:\Program Files\Skype\Phone\Skype.exe
    TortoiseHg C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
    Virtual CloneDrive C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
    Windows Live Messenger C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    µTorrent C:\Program Files\uTorrent\uTorrent.exe
    (verificado) Google Update C:\Users\Roberto\AppData\Local\Google\Update\GoogleUpdate.exe
    (verificado) GrooveMonitor Utility C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe


    Plugins del Navegador
    ---------------------
    2007 Microsoft Office system C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
    AcroIEHelperShim Library c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
    Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
    Adobe Acrobat C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
    BitDefender QuickScan C:\Users\Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\414c9hvw.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll
    Conduit Toolbar c:\program files\conduitengine\conduitengine.dll
    Conduit Toolbar c:\program files\utorrentbar_es\tbutor.dll
    DivX® Web Player C:\Program Files\DivX\DivX Web Player\npdivx32.dll
    DivX® Web Player C:\Program Files\Mozilla Firefox\plugins\npdivx32.dll
    getPlus+(R) C:\Users\Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\414c9hvw.default\extensions\nostmp\content\getPlus_registrar.exe
    getPlusPlus for Adobe 16299 C:\Users\Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\414c9hvw.default\extensions\nostmp\plugins\np_gp.dll
    Google Update C:\Users\Roberto\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll
    GrooveShellExtensions Module C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    Java Deployment Toolkit 6.0.260.3 C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
    Java(TM) Platform SE 6 U26 c:\program files\java\jre6\bin\jp2ssv.dll
    Java(TM) Platform SE 6 U26 C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
    kikin plugin c:\program files\kikin\ie_kikin.dll
    Microsoft Office 2010 C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL
    Microsoft Office 2010 C:\Program Files\Microsoft Office\Office14\NPSPWRAP.DLL
    Microsoft Office 2010 c:\program files\microsoft office\office14\urlredir.dll
    Microsoft® Windows Media Player Firefox C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
    Microsoft® Windows® Operating System C:\Windows\system32\NLAapi.dll
    NPSWF32.dll C:\Windows\system32\Macromed\Flash\NPSWF32.dll
    Office Genuine Advantage C:\Program Files\Mozilla Firefox\plugins\npOGAPlugin.dll
    Silverlight Plug-In C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
    Sistema operativo Microsoft® Windows® C:\Windows\system32\mswsock.dll
    Skype Toolbars c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    Windows® Internet Explorer C:\Windows\System32\ieframe.dll
    WPI Detector 1.4 C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll
    (verificado) Microsoft® Windows Live Login Helper c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
    (verificado) Microsoft® Windows® Operating System C:\Windows\System32\winrnr.dll
    (verificado) Sistema operativo Microsoft® Windows® C:\Windows\system32\napinsp.dll
    (verificado) Sistema operativo Microsoft® Windows® C:\Windows\system32\pnrpnsp.dll


    Analizar
    --------
    MD5: 4393dcb856a2a109e266e6f59e2ef31a C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
    MD5: 433c5ea5c6470fcd4d1e97289c9ba4af C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe
    MD5: c0bf554d2277f7a4c735d475ade2e3b2 C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
    MD5: 01efa63d0e61e700a7d821759634257f C:\Program Files\ASUS\ASUS Data Security Manager\ASPWDFLT.DLL
    MD5: a95209b0323131e40309207d4c2616a8 C:\Program Files\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll
    MD5: 44cb8f8c28bc8cc2ae73740b3a1502f3 C:\Program Files\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
    MD5: 18e5c2f937f9deb8c282df66a3761925 C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
    MD5: 149126216a694e6ba84e92eca77aae3b C:\Program Files\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
    MD5: 53281bc7812f67534489ff4001a2887e C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
    MD5: 5aebf6fa9805c9101220aa4fb4fa17e7 C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    MD5: 4a7c441d99d86704d194e7678873b95d C:\Program Files\ASUS\ATK Package\ATK Hotkey\WDC.exe
    MD5: 6fca49b4085c32d1cc738c16142c0cdd C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
    MD5: dab0aa9970c68542c5b83db3076ccb96 C:\Program Files\ASUS\ATK Package\ATKGFNEX\AGFNEX.dll
    MD5: b9fdfa552eba5b4bf377f7ccec9b8bc7 C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys
    MD5: 7910158929571214a959d5a6d16dd9c0 C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    MD5: c32b36d2168aea9d4fa77c0a4f56379d C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    MD5: 852ee4f61139a1b3f44edaa0d5b3fc14 C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
    MD5: 247bb80a929ff381808feab2998f8c7c C:\Program Files\ASUS\NB Probe\SPM\ghadmi.dll
    MD5: 89a3fadbe9b26453c71b3b365ab70f9b C:\Program Files\ASUS\NB Probe\SPM\spdiskex.dll
    MD5: db029472e09f7c5db7ab05ba2833193b C:\Program Files\ASUS\NB Probe\SPM\spdmi.dll
    MD5: 1962d4b729cae91a063b3306c0f44ce4 C:\Program Files\ASUS\NB Probe\SPM\spmemory.dll
    MD5: 739db668dbd812285ecc553e64a5e212 C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
    MD5: b8eee72879838de037dd2683e1f3869e C:\Program Files\ASUS\NB Probe\SPM\spnbacpi.dll
    MD5: cc63071a849dae4d7ff3d727bc0ec6d9 C:\Program Files\ASUS\NB Probe\SPM\spos.dll
    MD5: 1dbe46e160c96c82a0f8771a3eda41d8 C:\Program Files\ASUS\Net4Switch\cxcmrt.dll
    MD5: 0970f4755b125996cece6e25b1d5f280 C:\Program Files\ASUS\Net4Switch\iphelper.dll
    MD5: 7a291bcc5d1b62cf074b72095c12caff C:\Program Files\ASUS\Net4Switch\ipsw_cfgmgr.dll
    MD5: 1fcf9564fdfe56b1049d58ef80d33868 C:\Program Files\ASUS\Net4Switch\ipswcom.dll
    MD5: d5192c85789b0b6c1504089e2c76b4be C:\Program Files\ASUS\Net4Switch\ipswcore.dll
    MD5: de1f8530964b6d4c8d19e5d6333f7bca C:\Program Files\ASUS\Net4Switch\ipswds.dll
    MD5: 1682725274692d11f90ac97131bada6f C:\Program Files\ASUS\Net4Switch\ipswgblset.dll
    MD5: 5f3a7cc16770a9d2604b5910b7562ead C:\Program Files\ASUS\Net4Switch\ipswhlp.dll
    MD5: 89e40f9c1b1803369475348668b42beb C:\Program Files\ASUS\Net4Switch\ipswobj.dll
    MD5: 2b45157a0c96979c4a412bcb473ee6df C:\Program Files\ASUS\Net4Switch\ipswresmgr.dll
    MD5: 108d3c9461694a3f953219983f717d65 C:\Program Files\ASUS\Net4Switch\ipswsysmon.dll
    MD5: e86b0df8090751c8a2a1c36f6ea76b6e C:\Program Files\ASUS\Net4Switch\ipswui.dll
    MD5: afa54d2b91f75ec7aff69e1168a7454d C:\Program Files\ASUS\Net4Switch\LogonStartup.dll
    MD5: 03d85dfd60b899d368b099f7ed49e537 C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
    MD5: 299f4bee1cba746d5abc211ddb1a473f C:\Program Files\ASUS\Net4Switch\ResItf.dll
    MD5: 868e3486e7ec522330344152a5535783 C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
    MD5: a86818d032314b555f5c0bb214b62a14 C:\Program Files\ASUS\Splendid\ACMON.exe
    MD5: 98ab7a3ac4155640146f6bec422c81e4 C:\Program Files\ASUS\Splendid\Chameleon.dll
    MD5: d2f561180ddff1498ee1af8b83b169a9 C:\Program Files\ASUS\Splendid\GLCDdll.dll
    MD5: 85c57cd47f292e248e56a41e7e7a19c6 C:\Program Files\ASUS\Splendid\OVS.dll
    MD5: 388ce212a119271eea68f42712f3f64f C:\Program Files\ASUS\Wireless Console 3\ATKWLIOC.DLL
    MD5: 06b4c8d5d9708a7494ac7c02cd54650e C:\Program Files\ASUS\Wireless Console 3\inter_f2.dll
    MD5: e7c665d4afaab45a9086d02ffc87a4b4 C:\Program Files\ASUS\Wireless Console 3\SiSPkt.dll
    MD5: bdd790326fabc31fb635130810245062 C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
    MD5: 0a7977ff7535f237c8c745ae09887c35 C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
    MD5: 175a3854d24aeb4afd65c1546a98a566 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
    MD5: 74ef310fac89341ce2897b7f2c4a7b0f C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    MD5: 77ac8322178fb8f3117cdd3b6dc6e126 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
    MD5: 40261429e4139a04d27bc9489f3ed7eb C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
    MD5: 5c281ffe91b8639a7448fcec5754e123 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
    MD5: 7f9a009e33940087fde0fa25d8aa5706 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
    MD5: 0386fad4fee556be7c263dd397d30e75 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll
    MD5: acfd0d2cd67c478673f2eab1cb4d9d79 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
    MD5: 258c457aed786e5f6360a8472bf6c176 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll
    MD5: e7704cbf568815c1caa6e513387bd3f2 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    MD5: 203a74767eb81f96a5166b1933db46d0 c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
    MD5: 47c1de0a890613ffcff1d67648eedf90 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    MD5: 955f8aedf2b5335a8d98a53e3ccd2ace C:\Program Files\Common Files\Ahead\Lib\AdvrCntr2.dll
    MD5: 77da24cc291b2bb3c001ac9196bc83ae C:\Program Files\Common Files\Ahead\Lib\log4cxx.dll
    MD5: 8112d0dacae746290fc87b3a980fa719 C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    MD5: 7403da4c3d15d837ec3af694a4c501b6 C:\Program Files\Common Files\Ahead\Lib\NeroIPP.dll
    MD5: 59d9856cd1420e2af778821b7e1b81d0 C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    MD5: d053b92ae72b533f602184f2d5211c10 C:\Program Files\Common Files\Ahead\Lib\NMCoFoundation.dll
    MD5: 95273094268b65087d2ebb3d509b1b4c C:\Program Files\Common Files\Ahead\Lib\NMDataServices.dll
    MD5: b64657c1607caa2f1b76abe1c34a5f4e C:\Program Files\Common Files\Ahead\Lib\NMFullTextExtraction.dll
    MD5: e32686b4e27d11f83e3f2844e104c66c C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    MD5: 7a733b19edbb72c8a853bd9e71595d9d C:\Program Files\Common Files\Ahead\Lib\NMIndexingServicePS.dll
    MD5: 6dc177f1626545f087892e73e7609dd0 C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    MD5: 7166edccbaaf359dfed42b46f4587044 C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvrPS.dll
    MD5: 4f266f317ad48f9127beef08d43ec05f C:\Program Files\Common Files\Ahead\Lib\NMLogCxx.dll
    MD5: 7f4c9599ee135ea3170697423d0affa6 C:\Program Files\Common Files\Ahead\Lib\NMPluginBase.dll
    MD5: ec887f39c825dd70df8cdeaf106eb369 C:\Program Files\Common Files\Ahead\Lib\NMSearchPluginSimilarImages.dll
    MD5: 577489e0b1178ca0ccd726c2527eb33f C:\Program Files\Common Files\Ahead\Lib\NMSQLDB.dll
    MD5: 9084844f844cfbf797ea0767ea553f4a C:\Program Files\Common Files\ATI Technologies\Multimedia\atimpenc.dll
    MD5: 633bd22451a4e04f14b3608c962e0d47 C:\Program Files\Common Files\ATI Technologies\Multimedia\atixcode.dll
    MD5: 13e7cfe8e269ed15e7fc9c3ebbcb7e2b C:\Program Files\Common Files\Java\Java Update\jusched.exe
    MD5: 4778cfcc920bf5cab4b0c26316a103f4 C:\Program Files\Common Files\Microsoft Shared\Ink\InkObj.dll
    MD5: 96dfd79eefdaf9460f21651c67fd8189 C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    MD5: d9a0ce26ada5bd15b1b03a752ddf14a6 c:\program files\conduitengine\conduitengine.dll
    MD5: 5b3719bdbf1f035558f2d73ba166a99c C:\Program Files\CONEXANT\SAII\SAIICpl.exe
    MD5: dcfd903c5953697fc94a803ad6877626 C:\Program Files\DivX\DivX Web Player\npdivx32.dll
    MD5: 4fdbaebe9c5d10034f210b2192dffa3a C:\Program Files\Elantech\ETDApix.dll
    MD5: b45d7f6872c1dd884f497f8958e914d0 C:\Program Files\Elantech\ETDCmds.dll
    MD5: 4c96d08a78d998b3936217a0e5959de3 C:\Program Files\Elantech\ETDCtrl.exe
    MD5: b6c2f6a64798688ac27617b7da6a59f0 C:\Program Files\Elantech\ETDCtrlHelper.exe
    MD5: 8e411d825731918e5bed0eef882d004a C:\Program Files\Elantech\ETDFavorite.dll
    MD5: 642fad18c7393e164fa871005359442f C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    MD5: ce175980534208389122b0421ac0107d C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll
    MD5: d44a42951e3603538aca0ee189ef7685 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll
    MD5: ef47508750d6ed9a492ca9185d8d040d C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll
    MD5: c59615e9805241e31640ea4f86f5a476 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll
    MD5: 1f711eb9949f469604fe6437f503b2d0 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll
    MD5: 3faa8d3776e47679d593076b03e0e7fe C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll
    MD5: 97e522f31aaff4a992fcb73532f9bfc5 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll
    MD5: 98b73963e8d2b89a9d5227fb6d245a00 C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
    MD5: 73b0195e0405051cc2b69e84ec3f64d1 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
    MD5: 89f12f8f68d8777b5223cf226933b6aa C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnAmon.dll
    MD5: 734c217668897aad3519c8e4ed35641d C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnDmon.dll
    MD5: 192babb5773e204b922a4e02a60d7541 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEmon.dll
    MD5: e20c7976d425f1c6454c9e220719affa C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEpfw.dll
    MD5: ba85e086ed073759f21e6509bdfd6998 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnMailPlugins.dll
    MD5: 15a57fb5f0f7d3fbe49f5b654965209d C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnScan.dll
    MD5: 4a356fa1d4be712e1cf283fe862ffe94 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnUpdate.dll
    MD5: 78d0369e63bb407f7d175ac799a05b83 C:\Program Files\ESET\ESET NOD32 Antivirus\updater.dll
    MD5: b77c4abbbdf71d2ab63f85b80b26d0be C:\Program Files\FileZilla Server\FileZilla Server Interface.exe
    MD5: e3a0cc636f313cb34867123539691dd5 C:\Program Files\FileZilla Server\FileZilla server.exe
    MD5: 658d9ba1014363ec9b0bb6e196952e15 C:\Program Files\Google\Google Talk\googletalk.exe
    MD5: a1c148801b4af64847aeb9f3ad9594ef C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    MD5: 1cbad5eee017fafea2bf75e82330783d C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\DTMessageLib.dll
    MD5: d480c9220bfe667de65a46cde80ea7e9 C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
    MD5: 41118d920b2b268c0adc36421248cdcf C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    MD5: 122f89e0905fc656d56f65cd7a2e9b4d C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
    MD5: a1659e4d08fe8d0f0bc61960d8c0369e C:\Program Files\Internet Explorer\ieproxy.dll
    MD5: e7d55e121ff1951cb86c7e0dc6a33877 c:\program files\java\jre6\bin\jp2ssv.dll
    MD5: 1040bd9bf3ddab7cda2346f8375480a2 C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
    MD5: 52a9c6d368f3caece326833678d78ac9 c:\program files\kikin\ie_kikin.dll
    MD5: 6256684495c499b22dcdba266e4f2494 C:\Program Files\Messenger Plus! Live\Detoured.dll
    MD5: 75430d2f8b2e204814247d62d9445ce4 C:\Program Files\Messenger Plus! Live\lame_enc.dll
    MD5: 00742b11f1492d15a0a8ff25e36ab9be C:\Program Files\Messenger Plus! Live\libsndfile.dll
    MD5: c2348907692ca843916aa6ee247a9694 C:\Program Files\Messenger Plus! Live\MsgPlusLive.dll
    MD5: 4ffbd864e5590e9fc69eb4912bde56cf C:\Program Files\Messenger Plus! Live\MsgPlusLiveRes.dll
    MD5: 11da24e40264b9fcb14b8477e25ed09a C:\Program Files\Microsoft Office\Office12\GrooveUtil.DLL
    MD5: a5d08b86e8a437aa6deaf7a187bf6ca5 c:\program files\microsoft office\office14\urlredir.dll
    MD5: c3e42cbf8215171a524d123a54ae3233 C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
    MD5: e31e4e9f644fbfe79dca532d9781f71d C:\Program Files\Microsoft SQL Server\100\Shared\instapi10.dll
    MD5: f1761c8fb2b25a32c6d63e36bb88c3ae C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
    MD5: 997bc62f49d0d84214fe887f09197d41 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
    MD5: a62a066efd9d305b5e86de7cb64d1ee5 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll
    MD5: 0fb5aa33d26f7212963d832083cd0c5c C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\BatchParser.dll
    MD5: b88613be5b9939bd5dd63f9e196413ad C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\opends60.dll
    MD5: 536594e2fed4601d2d53688f63375aaf C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\Resources\1033\sqlevn70.rll
    MD5: d659454b505bd857ab83a9353290c3eb C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\Resources\3082\sqlevn70.rll
    MD5: 69b1059003b26623da9a644ae2d5f3a6 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
    MD5: cc4053ae3e5f2e7063974c9e5a8a9130 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlos.dll
    MD5: b4bf2861257479c4d885ba7416817bd5 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
    MD5: d8a3fde47cbdc2d6dfac14243050526b C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll
    MD5: 27ed2e712be293476730e0eb8141552d C:\Program Files\Mozilla Firefox\components\browsercomps.dll
    MD5: 8af1980ad5bd21364a960299015dbedd C:\Program Files\Mozilla Firefox\firefox.exe
    MD5: f706f4c3a896222dafa343e3dc9024de C:\Program Files\Mozilla Firefox\freebl3.dll
    MD5: 62aa0c2e765ade2816c2441f9f50fae7 C:\Program Files\Mozilla Firefox\mozalloc.dll
    MD5: 68e1417ceebfa9f44ed6282e33210285 C:\Program Files\Mozilla Firefox\MOZCPP19.dll
    MD5: 8f917fc848884bf4e59f968ef34bda00 C:\Program Files\Mozilla Firefox\MOZCRT19.dll
    MD5: 76d0ecd2f55918ce7a4f42da019fbf73 C:\Program Files\Mozilla Firefox\mozjs.dll
    MD5: f6d6c1a341d5db2a34d97e5690033970 C:\Program Files\Mozilla Firefox\mozsqlite3.dll
    MD5: 676c3a339139a8ba5693ee1e54e1d2d3 C:\Program Files\Mozilla Firefox\nspr4.dll
    MD5: 9eeb99d6a3de1ca9a94ebbe896a07ac9 C:\Program Files\Mozilla Firefox\nss3.dll
    MD5: 1a990a621bdb29d69237755290537959 C:\Program Files\Mozilla Firefox\nssckbi.dll
    MD5: 9cb0f3853a56594f7ae8578ee31228b4 C:\Program Files\Mozilla Firefox\nssdbm3.dll
    MD5: 00fef56d0c6c922b99b3d10e5ba2a6df C:\Program Files\Mozilla Firefox\nssutil3.dll
    MD5: 5fe73fe0f2c85dfbf20b172d7fb97fec C:\Program Files\Mozilla Firefox\plc4.dll
    MD5: c45ab4709c2777e8c3004d4ad6e4eb7b C:\Program Files\Mozilla Firefox\plds4.dll
    MD5: 1bf14948a57a0af81c07f797ec0978d6 C:\Program Files\Mozilla Firefox\plugin-container.exe
    MD5: 99f97c9fe748c37528c338a423577fcb C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
    MD5: 5eb6f21d95e728c61bcfc89f899d6bb0 C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
    MD5: dcfd903c5953697fc94a803ad6877626 C:\Program Files\Mozilla Firefox\plugins\npdivx32.dll
    MD5: 9a6101f29e2e9d41b99cbcc8f106e8fe C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
    MD5: 4393dcb856a2a109e266e6f59e2ef31a C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
    MD5: 6e4869ce3762cc9d86e990c749276e1b C:\Program Files\Mozilla Firefox\smime3.dll
    MD5: 29bab502c4902b06f39e0f0d724f6990 C:\Program Files\Mozilla Firefox\softokn3.dll
    MD5: 472539b7feed76b7a917505695104191 C:\Program Files\Mozilla Firefox\ssl3.dll
    MD5: 406da1feeffc5ad2f726cf67addd3115 C:\Program Files\Mozilla Firefox\xpcom.dll
    MD5: 7c8b4afc2fb53e2478f8c267a3658e0b C:\Program Files\Mozilla Firefox\xul.dll
    MD5: 6d8fcdd5bb3b676ef58fa234073492c6 C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    MD5: a22f2c746f89edff54b51d2a2416af11 C:\Program Files\P4G\BatteryLife.exe
    MD5: 90e7c626162294e923ae58e7e0b1afad C:\Program Files\P4G\DevMng.dll
    MD5: 35e093aebfb6d4623522832d26976fa7 C:\Program Files\P4G\OvrClk.dll
    MD5: 2d841b7b7f6dec32162edfcc69d61f42 C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    MD5: 0ea8c1256aa9f68287cd8f06eb527238 C:\Program Files\Skype\Phone\Skype.exe
    MD5: 0ae3ee2a15685bcde716e1ef410d4436 c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    MD5: 43808ade416d8bd65f118ea7c916482c C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel.exe
    MD5: 245821cc73879ac7f5176d615fb643cd C:\Program Files\TortoiseHg\ThgShellx86.dll
    MD5: ca7110b95ec69a09fc97b32c564e77e1 C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
    MD5: 9b8bbf96b67046d2cbb39ad220cb267d C:\Program Files\uTorrent\uTorrent.exe
    MD5: d9a0ce26ada5bd15b1b03a752ddf14a6 c:\program files\utorrentbar_es\tbutor.dll
    MD5: b7aa215e4b8fa6043b33379888ebba4d C:\Program Files\Windows Live\Messenger\MSIMG32.dll
    MD5: 3b40d3a61aa8c21b88ae57c58ab3122e C:\Program Files\Windows Media Player\wmpnetwk.exe
    MD5: 87bbf47f728aeee862f9823d5b4c0bbc C:\Users\Roberto\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll
    MD5: fe36976864a30ea91e14d024f8bf7dd8 C:\Users\Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe
    MD5: 6d74290856347cf8682277a54b433d4b C:\Users\Roberto\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    MD5: 0b02d9aa67eea2c5524943b69418512e C:\Users\Roberto\AppData\Roaming\Dropbox\bin\PYTHON25.DLL
    MD5: d8ff9877eba78bee2a43188d159ea09f C:\Users\Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\414c9hvw.default\extensions\nostmp\content\getPlus_registrar.exe
    MD5: 9a5824a316f7145f7ad2f3446aa9cbe5 C:\Users\Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\414c9hvw.default\extensions\nostmp\plugins\np_gp.dll
    MD5: 3b4f2ab04f5b60a3f7914ef7077987e8 C:\Users\Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\414c9hvw.default\extensions\twitternotifier@naan.net\platform\WINNT\6\echofon.dll
    MD5: f4a569f89a90205a095965ae628625e1 C:\Users\Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\414c9hvw.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll
    MD5: 375640f39f2d613b6fdcf8c2f956205a c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
    MD5: 5c396dde6aaffb64abc0e0fd88f53553 C:\Windows\AsScrPro.exe
    MD5: 207e3c481c17301608a58b94091351a2 C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3639.21562__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
    MD5: e80fd6714c5416821a551268207a758b C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3639.21788__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
    MD5: 784ed23773099399f91fbf64033d730c C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3639.21606__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
    MD5: 44243b6b0ff2208813ac2f5a292948a4 C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3639.21789__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
    MD5: 719e8c909b442fbda574a4ba4c1fb43f C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3639.21569__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
    MD5: dd79fdfe74ccbcf461403e7e32739a8b C:\Windows\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3639.21806__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
    MD5: 177e034c65e020204f16b8dab357c79f C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3674.16088__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
    MD5: c1d2c99cece5bb12a14fb97300e479e8 C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3639.21613__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
    MD5: e084bf847a061ae4237595b1bb6908bb C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3639.21570__90ba9c70f846762e\AEM.Server.Shared.dll
    MD5: 1fb12a551b803b0fbcf2f47751540b0b C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3674.15983__90ba9c70f846762e\AEM.Server.dll
    MD5: bb1537e89235603ee1d42e47f698a4c4 C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3639.21604__90ba9c70f846762e\APM.Foundation.dll
    MD5: 0049a7c0d54f363454355b66a5a8dfd4 C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3674.15984__90ba9c70f846762e\APM.Server.dll
    MD5: 2e6cf00da25560490d86bfffac2785f3 C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
    MD5: ee850c95ed088e8835f2425ee551296f C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
    MD5: 16c96bbb97caad03216a9af31da0e057 C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3674.16077__90ba9c70f846762e\CCC.Implementation.dll
    MD5: 1542ca6726e6a29dc06207be7ab14697 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
    MD5: 42d173debd19bc3fd1538aecf4e0b6b0 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3639.21565__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
    MD5: 7e4f3528d41c1dcf2bf4b4d5052d17cd C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3674.16034__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
    MD5: 614dd66ab7148b3320a960b7b530cdb1 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3674.16034__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
    MD5: 72b5781f2e1727c7945c3ded6c3a3341 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3639.21670__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
    MD5: a80e0cf2c8ec83b2b4c6cfc58a56af67 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3674.16043__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
    MD5: 34910857c7ca74330522e1e89644c147 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3639.21601__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
    MD5: 0b305f1ffc2bfa8c853622eac63f0cce C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3674.16029__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
    MD5: 8ab4af931b75d24f9a44e0ff26866cf7 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3674.16033__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
    MD5: 5d44969c2a915550569086d84ee9bffa C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3639.21609__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
    MD5: 7923a444b9f54a1a96f01a3fec793d8a C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3674.16042__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
    MD5: a160d3ca479b977de1663a336f67a341 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3674.16042__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
    MD5: 7f4753eba0dadfca98ac36d74a7c0a5f C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3639.21623__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
    MD5: c37906ae7693adeca4029a05a193f4bd C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3674.16013__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll
    MD5: 0cea633b9aad590c217bad78b5ee1297 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3674.16033__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
    MD5: 92f177f4d1f359a2a1f77be5d463ae7b C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3639.21577__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
    MD5: 1896def8be17d64257c7d15c5cee92a1 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3674.16063__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
    MD5: 78cc9db010b1b31df5e15acc46d0c0c0 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3639.21679__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
    MD5: 98c398fe45bf1e737870aaaca581108a C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3674.16009__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
    MD5: 49d391459a77c98eefe7d715c41853ef C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3674.16013__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
    MD5: ff285eaeeed3424dff9ef0cb1a154768 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3639.21666__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
    MD5: 405e263cb0169c5a5bd13170992ea806 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Dashboard\2.0.3674.16110__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll
    MD5: b735762b15876c83bef46101b6d92bd5 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Wizard\2.0.3674.16114__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Wizard.dll
    MD5: 92fa07274de61646d9d90182583fd9c0 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3674.16041__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
    MD5: db781ae829707e1defa316088a30b84e C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3674.16040__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
    MD5: e502ebca0e3a50f4d106ad072ea91abe C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3639.21673__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
    MD5: 37dacece1f86a6ad096e6ff064aa5793 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3674.15997__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
    MD5: bd046a46f049b4e322ebd9a2e01d71e4 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3639.21611__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
    MD5: 2df8725c3d2cd763fe2025d4f3234209 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3674.16008__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
    MD5: 84e546709d9e88ad2b056d1c134aedf6 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3674.16008__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
    MD5: 7837201a23bb50897044f86162644032 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3674.16036__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
    MD5: b359b79c318cd9cc7bd86704d9462653 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3674.16035__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
    MD5: e92efe5e6930e77d6d58916f31e5715f C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3639.21608__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
    MD5: b34ad3bbf3c6ead14b9c4abc94930382 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3674.16057__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
    MD5: 68330d33822d2f65e35fb3aa5cf7e518 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard\2.0.3674.16082__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll
    MD5: 3351815fcb50b0e40f9a5c67451d6ed5 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.3674.16082__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll
    MD5: 52f5fccf9c4cffc09f505b162fa4f12a C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.3639.21765__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll
    MD5: a4cd180ca3a365dd8577fb19f9f3529b C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3674.16049__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
    MD5: ebf039e9fbc962f8b80f2d6012fef9e3 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3674.16048__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
    MD5: 4f4e13d71bb8783358ce5db685409504 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3639.21677__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
    MD5: c5f727c437a0c8fe26a00c77d1c2c249 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3674.16049__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
    MD5: 82b2785db6ac04b9911aeb7c55ab592f C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3639.21772__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
    MD5: 9d87c4ee119be4108bd07d13fd4a54ba C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3674.16083__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
    MD5: 1a4eea2fbca14ec01b1a8b3a2f3204c9 C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3674.16084__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
    MD5: ee01c0eb00b72445cd735bf12df1aaae C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Runtime\2.0.3674.16114__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Runtime.dll
    MD5: f8f6896631430ebff20d4513dbb0628e C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Shared\2.0.3639.21776__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Shared.dll
    MD5: 9e87a59520fde4cdc978bb6117f22ed1 C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3639.21591__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
    MD5: d6b3789369e642c3928edcc4760ee01b C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3674.15996__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
    MD5: 12b26aa4f1f8eff66f2f3d020e06a4ed C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3639.21681__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
    MD5: 6adf3862a29edef68d1ba86b3dddb6d1 C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3674.15987__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
    MD5: 733bd18aa35486649355ffe840576ef9 C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3639.21544__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
    MD5: 028fd658be166ca5eb91601a4e9fa80f C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3639.21663__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
    MD5: 57cc27776063e1787ec1aad4fb12be8a C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3674.16002__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
    MD5: b62326db414e3b873154a5dab500850b C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3639.21578__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
    MD5: 030cbe7552888f449c715a25fc2c5a18 C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3639.21557__90ba9c70f846762e\CLI.Component.Client.Shared.dll
    MD5: f2d246be229ab38f6a4d4c74b53cc2ec C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3639.21596__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
    MD5: 7abd8d6b65bd6d5926292daa73b805cd C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3639.21571__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
    MD5: 8f54897dfd0d1f14cf9276a5510f3f17 C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3674.15992__90ba9c70f846762e\CLI.Component.Dashboard.dll
    MD5: 91407051e2e8826d0b34503e78b96677 C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3674.15982__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
    MD5: b4ffe2f26be5e4a861a543bdf4f913bb C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3639.21589__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
    MD5: dc2a5d9b9ad53d81a1ee19a43984fbb6 C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3639.21566__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
    MD5: d8383bdec38525210e9c2718fce399f3 C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3674.15985__90ba9c70f846762e\CLI.Component.Runtime.dll
    MD5: 8ba28e31ed0e04d311f3670cc7059282 C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3674.15986__90ba9c70f846762e\CLI.Component.SkinFactory.dll
    MD5: 88639817e61497cb6f4feac4be29cfe3 C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3674.16071__90ba9c70f846762e\CLI.Component.Systemtray.dll
    MD5: eef956b18d385c22c705c71bab3c0e7d C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3639.21594__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
    MD5: 9ab9fae9531550286d8196ba9f5702be C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3639.21582__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
    MD5: 6040827dd1719e03787707f388ea5d93 C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3674.16002__90ba9c70f846762e\CLI.Component.Wizard.dll
    MD5: 9547f304cb0d8b1cba8c3587b0aa6a6d C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3639.21551__90ba9c70f846762e\CLI.Foundation.Private.dll
    MD5: 8953a6b080644c66e3c3cc15abb65340 C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3639.21922__90ba9c70f846762e\CLI.Foundation.XManifest.dll
    MD5: 97f6382b7b498dfce04be4dcdd2dfba0 C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3639.21529__90ba9c70f846762e\CLI.Foundation.dll
    MD5: 2e7fab502a8615b1aab0eab35afbca3b C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
    MD5: e29c668d80c751c47b971a1aecc6e985 C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3639.21620__90ba9c70f846762e\DEM.Graphics.dll
    MD5: 467dfb1d3354190b1649cddc4b93fa04 C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3639.21592__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
    MD5: dfd1153d61f07a7425e09eee50435ccd C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3674.16075__90ba9c70f846762e\LOG.Foundation.Implementation.dll
    MD5: cb22ed5bc4f1e7d3b44af6f7705aa66a C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3639.21521__90ba9c70f846762e\LOG.Foundation.Private.dll
    MD5: 1ab88303dc3000cb46b1138da2eefc49 C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3639.21517__90ba9c70f846762e\LOG.Foundation.dll
    MD5: fc18c2ec69174c5dca52cc84b47a132e C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3639.21599__90ba9c70f846762e\MOM.Foundation.dll
    MD5: 8c24d334ddbbbdf83cea5231cb83d7f5 C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3674.16077__90ba9c70f846762e\MOM.Implementation.dll
    MD5: ee27a9b9e65d5cb622cc529d8d80ee7f C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_es_b77a5c561934e089\mscorlib.resources.dll
    MD5: 500ad4948406532f5956ea560fefa84a C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3639.21518__90ba9c70f846762e\NEWAEM.Foundation.dll
    MD5: 8e8d0b6c2055090105083744855d0254 C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3674.16108__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll
    MD5: f1e3643084e070725e66f134f4812d1d C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3639.21539__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
    MD5: fc96b10618bf4ad2b3eafd544ef06086 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\16b68fcaff063835ae0ee348a1201f2a\mscorlib.ni.dll
    MD5: 65a8d2128f9a10d9b3ccec5c08e91bc5 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\36d0ed3f2a65b9d67933ed46dfcd2ccb\System.Configuration.ni.dll
    MD5: 507584a01d198a2ddc75879f3cecf10b C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\9e87dd8fe5d0f925d80a6a6eaf74fdb9\System.Drawing.ni.dll
    MD5: 0c9cfc05b00e65646cb21fb0d68e120f C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\e3e3b399b69c569ab1ed3b0ace2c8c20\System.Runtime.Remoting.ni.dll
    MD5: 807fc7c82ee7d81a974667b398b6e66c C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\33b601c8e2cf4993e68d763389246197\System.Web.ni.dll
    MD5: f0b98c494a252c7da33941dac8099b72 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\0d43c5e77ee7b8466700b16d7e7d4bb7\System.Windows.Forms.ni.dll
    MD5: 3a5bd85ada45dd34c2ee4815ce19fc6b C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\16d2854bf69d59d94e64a918365705f1\System.Xml.ni.dll
    MD5: 25d377ff500d4817289f452b5285e6c2 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\3da7c6c1a0f26ae91883fd8b03ec192d\System.ni.dll
    MD5: a8c362018efc87beb013ee28f29c0863 C:\Windows\ehome\ehRecvr.exe
    MD5: 8b88ebbb05a0e56b7dcc708498c02b3e C:\Windows\explorer.exe
    MD5: 59d16fd61802739988728790bf1232b3 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
    MD5: da587bab5c4ff4233d33ab02ba821a8a C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
    MD5: c521d7eb6497bb1af6afa89e322fb43c C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    MD5: 2c49b175aee1d4364b91b531417fe583 C:\Windows\servicing\TrustedInstaller.exe
    MD5: f6f213095d33ed25c57721c19289d9cf C:\Windows\system32\aac_parser.ax
    MD5: 82b0b872a489541980f3334a6330399f C:\Windows\system32\ac3DX.ax
    MD5: a391896cd406e6377f5cef31fdc12019 C:\Windows\System32\ACEngSvr.exe
    MD5: 9a39a2a5f443a756c568c6ed5748afe4 C:\Windows\System32\Actioncenter.dll
    MD5: d2958325c1ae1ae37a83334c6229e3bc C:\Windows\system32\actxprxy.dll
    MD5: f3127accce168c5b3351013d6a63be6c C:\Windows\system32\ADMWPROX.dll
    MD5: 95e2376b3323f062eb562b8586d0f14a C:\Windows\system32\ADVAPI32.dll
    MD5: 8b794ae6d5c7d42092804bc39a2eb8f6 c:\windows\system32\AEPIC.dll
    MD5: 37ce7a79d901235504f9add99a7ac177 C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
    MD5: 7a044b0746d957bfd7aae18cfd8422c5 C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    MD5: 0a12d948b2cc7fbb01e28daa5e7c01ea C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
    MD5: cb4863f2bd46aa02d954b86b56a149da C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    MD5: 2cae4ed96aa903578452b85e5383940c C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    MD5: e96170a923a69711b4d08e885f05d889 C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    MD5: 44ca750001f0db8c308d1ca4abd0f8e5 C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
    MD5: 15df9eb8daba744e4d0e9b117f760f49 C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
    MD5: a2385b02cb492131af6f79959a42a93f C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
    MD5: 3ad0832e8e29fbe9bd722e3354dd4f57 C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    MD5: 88dc1714e38d4eb41a4378aab98e753b C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
    MD5: a1d4deb5176c96b1a80715f6a1fdfb4f C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    MD5: b302a1630e5aea2d830b76bbcd761d72 C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
    MD5: 22f767bb3b704f79363999bd4a49e68e C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    MD5: 00b83152f99e846fefb139c574cd4a96 C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
    MD5: 50035c36acee069d0c209288208626d9 C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
    MD5: cdf677ad479fa99f2e4d9766b83ef53c C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    MD5: 12c34c7325b74e8347e8db75279a8f3f C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    MD5: 96324ed3218133a13fff82055afac733 C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    MD5: a7bdf88a46bcc218b73e383e6547ba5f C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
    MD5: 573c70d7076f2f101752a727db7c2280 C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    MD5: 29b01d02e9ff3d8a63f8747b50a5a1a3 C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
    MD5: 0cc90316b34118e3b8af760d92c262a4 C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
    MD5: 6f399c3e562c4e69df96039743a7aa26 C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    MD5: f3b94e04053c2483a6fecf953d6661d6 C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    MD5: c6942a18444bfffc3cceca69a7e1879c C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
    MD5: f47e08b025ae376ef1342fc9ecfecdf1 C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    MD5: 8a13e14b68e00ac2cb67420396d8a1c5 C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
    MD5: 863f793d15b4026b1a5fdeca873d4d84 C:\Windows\system32\apphelp.dll
    MD5: fb1959012294d6ad43e5304df65e3c26 C:\Windows\System32\appinfo.dll
    MD5: d39960862dc9419a0f509fdc579f551b C:\Windows\system32\atiadlxx.dll
    MD5: 0b0a00bba81d53c2a8394f79c235ee0c C:\Windows\system32\aticfx32.dll
    MD5: 7cb9762ba4f9e47305ce561eb6d06eab C:\Windows\system32\ATIDEMGX.dll
    MD5: 10255d7aeb762407d4f73d9197a6bcaa C:\Windows\system32\atidxx32.dll
    MD5: eea8ae59cf7c71252e38153d0588cf21 C:\Windows\System32\atieclxx.exe
    MD5: 86e479db9e34653e0b0a604bfd65262d C:\Windows\System32\atiesrxx.exe
    MD5: 9421cfb24e1fc9a660200787d5e72d23 C:\Windows\system32\atipdlxx.dll
    MD5: d71bdf009d3d900cdcacc72424b462f5 C:\Windows\system32\atiuxpag.dll
    MD5: c940f2f5c60b3727c5f18840735b229c C:\Windows\System32\audioses.dll
    MD5: ce3b4e731638d2ef62fcb419be0d39f0 c:\windows\system32\audiosrv.dll
    MD5: cdd35c1ce1ebfe80c055691cdc8df443 C:\Windows\system32\authui.dll
    MD5: 84957d0ce4ff261b0081679eb9c0c006 C:\Windows\system32\AVCDX.ax
    MD5: 6e30d02aac9cac84f421622e3a2f6178 C:\Windows\System32\AxInstSV.dll
    MD5: dab748ae0439955ed2fa22357533dddb C:\Windows\system32\basesrv.DLL
    MD5: 67c1b58706b47eeba4e117ac197289e6 C:\Windows\system32\BatMeter.dll
    MD5: 1e2bac209d184bb851e1a187d8a29136 c:\windows\system32\bfe.dll
    MD5: f45ed8c4f9af862cd9992849b5203c11 C:\Windows\system32\bitsigd.dll
    MD5: 0552a8684bf7566f744d5b19ff6aec6b c:\windows\system32\bitsperf.dll
    MD5: ea2b00551f3e7b3d5f7fb730a55f8246 C:\Windows\system32\BlackBox.dll
    MD5: 45760eecc8b74b251171be4f247f17cb C:\Windows\system32\BROWCLI.DLL
    MD5: 6e11f33d14d020f58d5e02e4d67dfa19 c:\windows\system32\browser.dll
    MD5: e3d5e244807ad655787fcd25477cc1bc C:\Windows\System32\bthprops.cpl
    MD5: 7a6986dd659b96398a11af5173892715 C:\Windows\system32\Cabinet.dll
    MD5: 319c6b309773d063541d01df8ac6f55f C:\Windows\System32\certprop.dll
    MD5: 3ffaea12666e565ff51bf2fca674f543 C:\Windows\system32\CFGMGR32.dll
    MD5: ae9898d5600a232cd8ae3298692162e5 C:\Windows\system32\CLUSAPI.DLL
    MD5: ad7b9c14083b52bc532fba5948342b98 C:\Windows\system32\cmd.exe
    MD5: 50ba656134f78af64e4dd3c8b6fefd7e C:\Windows\system32\cngaudit.dll
    MD5: d1de1eafde97be41cf6585027ff3e732 C:\Windows\system32\comdlg32.dll
    MD5: 6fbaa0f8e9f6552ccefd6bcf5a2e1060 C:\Windows\system32\CoreAAC.ax
    MD5: 4e5fe39c1076d115ec8bfcfe14d75b80 C:\Windows\system32\credssp.dll
    MD5: 454e292861a4ef1d72f43f42bbaf6917 C:\Windows\system32\CRYPT32.dll
    MD5: a585bebf7d054bd9618eda0922d5484a c:\windows\system32\cryptsvc.dll
    MD5: 28ca821606669bb9215ce010767720fa C:\Windows\system32\CRYPTUI.dll
    MD5: 465bea35f7ed4a4a57686dea7ea10f47 C:\Windows\system32\cscapi.dll
    MD5: 57a51217581614de07f30e34d6bb4993 C:\Windows\System32\CSCDLL.dll
    MD5: cf4274ceea9f7791fb7fc40a066bc2c7 C:\Windows\system32\cscobj.dll
    MD5: 15f93b37f6801943360d9eb42485d5d3 c:\windows\system32\cscsvc.dll
    MD5: 3ec541c196de18ed9a0d0ac82a694d4c C:\Windows\System32\cscui.dll
    MD5: 10de24cccd418c31107813682eb73542 C:\Windows\system32\CSRSRV.dll
    MD5: 342271f6142e7c70805b8a81e1ba5f5c C:\Windows\System32\csrss.exe
    MD5: 35cede6439ff0d8903223a0817ffe46c C:\Windows\system32\d2d1.dll
    MD5: 2de90400a63818fa38c4c5c9adb166bf C:\Windows\system32\d3d10_1.dll
    MD5: 9c36a3ca80f9b204c670336d344f5df8 C:\Windows\system32\d3d10_1core.dll
    MD5: 78b7a3bda25c90daa50d36a56a8d1351 C:\Windows\system32\D3D10Warp.dll
    MD5: 6ef5f3f18413c367195f06e503ab86a6 C:\Windows\system32\d3d9.dll
    MD5: 284b59d7b56fc76c80e622ab856b1fab C:\Windows\System32\davclnt.dll
    MD5: 53223b673a3fa2f9a4d1c31c8d3f6cd8 c:\windows\system32\dbghelp.dll
    MD5: e9e01eb683c132f7fa27cd607b8a2b63 c:\windows\system32\dhcpcore.dll
    MD5: 990a58a0b01720e419b55efc5ff387f8 C:\Windows\System32\dhcpcore6.dll
    MD5: ecf036299aa554b5e0455262857b39d0 C:\Windows\system32\diagperf.dll
    MD5: 62c08c8fe06eba769e1e7bc98ae47234 C:\Windows\system32\DiracSplitter.ax
    MD5: b40420876b9288e0a1c8cca8a84e5dc9 C:\Windows\system32\DNSAPI.dll
    MD5: 100103c6535c66265267f5eea5f5846e C:\Windows\System32\dnsext.dll
    MD5: 33ef4861f19a0736b11314aad9ae28d0 c:\windows\system32\dnsrslvr.dll
    MD5: 366ba8fb4b7bb7435e3b9eacb3843f67 C:\Windows\System32\dot3svc.dll
    MD5: 8ec04ca86f1d68da9e11952eb85973d6 c:\windows\system32\dps.dll
    MD5: 1b133875b8aa8ac48969bd3458afe9f5 C:\Windows\system32\drivers\1394ohci.sys
    MD5: cea80c80bed809aa0da6febc04733349 C:\Windows\system32\drivers\ACPI.sys
    MD5: 1efbc664abff416d1d07db115dcb264f C:\Windows\system32\drivers\acpipmi.sys
    MD5: 9ebbba55060f786f0fcaa3893bfa2806 C:\Windows\system32\drivers\afd.sys
    MD5: d320bf87125326f996d4904fe24300fc C:\Windows\system32\drivers\amdsata.sys
    MD5: 46387fb17b086d16dea267d5be23a2f2 C:\Windows\system32\drivers\amdxata.sys
    MD5: aea177f783e20150ace5383ee368da19 C:\Windows\system32\drivers\appid.sys
    MD5: b01751cc563aecac09bbe36aaa21fbef C:\Windows\system32\DRIVERS\athr.sys
    MD5: 40a07e6916ac098e31a9e39ac202b8a1 C:\Windows\system32\drivers\AtiHdmi.sys
    MD5: 7012faac2534b6dbb701517ca5ecd59b C:\Windows\system32\DRIVERS\atikmdag.sys
    MD5: 9df5761ee9cbef80199e737d85541bd4 C:\Windows\system32\DRIVERS\atikmpag.sys
    MD5: 7012faac2534b6dbb701517ca5ecd59b C:\Windows\system32\DRIVERS\atipmdag.sys
    MD5: 2e71504a74be4e3d4ea94568eff7556e C:\Windows\system32\DRIVERS\ATKACPI.sys
    MD5: 8f2da3028d5fcbd1a060a3de64cd6506 C:\Windows\system32\DRIVERS\bowser.sys
    MD5: be167ed0fdb9c1fa1133953c18d5a6c9 C:\Windows\system32\drivers\cdrom.sys
    MD5: e786008346afa5ea2109d5e8ad44a9dd C:\Windows\system32\drivers\CHDRT32.sys
    MD5: cbe8c58a8579cfe5fccf809e6f114e89 C:\Windows\system32\drivers\CompositeBus.sys
    MD5: 3c2177a897b4ca2788c6fb0c3fd81d4b C:\Windows\system32\drivers\csc.sys
    MD5: f024449c97ec1e464aaffda18593db88 C:\Windows\System32\Drivers\dfsc.sys
    MD5: 23f5d28378a160352ba8f817bd8c71cb C:\Windows\System32\drivers\dxgkrnl.sys
    MD5: d4f94d45e25d764462a5b95bc426c8d0 C:\Windows\system32\DRIVERS\eamon.sys
    MD5: 9456462c1425d2bbf1616edabfaba5f4 C:\Windows\system32\DRIVERS\ehdrv.sys
    MD5: 32102f2c07182523b1390c2d9341e397 C:\Windows\system32\DRIVERS\epfwwfpr.sys
    MD5: 79481903de854847e8f86e4777e3a6bf C:\Windows\system32\DRIVERS\ETD.sys
    MD5: 8a73e79089b282100b9393b644cb853b C:\Windows\System32\DRIVERS\fvevol.sys
    MD5: 9036377b8a6c15dc2eec53e489d159b5 C:\Windows\system32\drivers\HDAudBus.sys
    MD5: a5ef29d5315111c80a5c1abad14c8972 C:\Windows\system32\drivers\HdAudio.sys
    MD5: a88485dc6a7136c10d9a6c7e38fdfe3c C:\Windows\system32\DRIVERS\HECI.sys
    MD5: 10c19f8290891af023eaec0832e1eb4d C:\Windows\system32\DRIVERS\hidusb.sys
    MD5: 871917b07a141bff43d76d8844d48106 C:\Windows\system32\drivers\HTTP.sys
    MD5: 0c4e035c7f105f1299258c90886c64c5 C:\Windows\System32\drivers\hwpolicy.sys
    MD5: 8cdacd4ad63d49834c6b59db102e7cd7 C:\Windows\system32\DRIVERS\iaStor.sys
    MD5: 5cd5f9a5444e6cdcb0ac89bd62d8b76e C:\Windows\system32\drivers\iaStorV.sys
    MD5: 4bd7134618c1d2a27466a099062547bf C:\Windows\system32\drivers\IPMIDrv.sys
    MD5: 2254a5e78c55fd8f68f9676590468531 C:\Windows\system32\DRIVERS\jmcr.sys
    MD5: 8a06c7a0e701be6d618571095032dcb9 C:\Windows\system32\DRIVERS\JME.sys
    MD5: 9e3ced91863e6ee98c24794d05e27a71 C:\Windows\system32\DRIVERS\kbdhid.sys
    MD5: 3eb803312987ff44265c87cb960df6ab C:\Windows\system32\DRIVERS\kbfiltr.sys
    MD5: 412cea1aa78cc02a447f5c9e62b32ff1 C:\Windows\System32\Drivers\ksecdd.sys
    MD5: 969d61d7463d78037dc6b020a435fc0c C:\Windows\system32\DRIVERS\lullaby.sys
    MD5: b18225739ed9caa83ba2df966e9f43e8 C:\Windows\system32\drivers\mbamswissarmy.sys
    MD5: fc8771f45ecccfd89684e38842539b9b C:\Windows\System32\drivers\mountmgr.sys
    MD5: 2d699fb6e89ce0d8da14ecc03b3edfe0 C:\Windows\system32\drivers\mpio.sys
    MD5: ceb46ab7c01c9f825f8cc6babc18166a C:\Windows\system32\drivers\mrxdav.sys
    MD5: 5d16c921e3671636c0eba3bbaac5fd25 C:\Windows\system32\DRIVERS\mrxsmb.sys
    MD5: 6d17a4791aca19328c685d256349fefc C:\Windows\system32\DRIVERS\mrxsmb10.sys
    MD5: b81f204d146000be76651a50670a5e9e C:\Windows\system32\DRIVERS\mrxsmb20.sys
    MD5: 012c5f4e9349e711e11e0f19a8589f0a C:\Windows\system32\drivers\msahci.sys
    MD5: 55055f8ad8be27a64c831322a780a228 C:\Windows\system32\drivers\msdsm.sys
    MD5: cb7a9abb12b8415bce5d74994c7ba3ae C:\Windows\system32\drivers\msiscsi.sys
    MD5: e7c54812a2aaf43316eb6930c1ffa108 C:\Windows\system32\drivers\ndis.sys
    MD5: d8a65dafb3eb41cbb622745676fcd072 C:\Windows\system32\DRIVERS\ndisuio.sys
    MD5: 38fbe267e7e6983311179230facb1017 C:\Windows\system32\DRIVERS\ndiswan.sys
    MD5: 280122ddcf04b378edd1ad54d71c1e54 C:\Windows\System32\DRIVERS\netbt.sys
    MD5: b3e25ee28883877076e0e1ff877d02e0 C:\Windows\system32\drivers\nvraid.sys
    MD5: 4380e59a170d88c4f1022eff6719a8a4 C:\Windows\system32\drivers\nvstor.sys
    MD5: bf8f6af06da75b336f07e23aef97d93b C:\Windows\System32\drivers\partmgr.sys
    MD5: fd2041e9ba03db7764b2248f02475079 C:\Windows\system32\DRIVERS\pccsmcfd.sys
    MD5: 673e55c3498eb970088e812ea820aa8f C:\Windows\system32\drivers\pci.sys
    MD5: d528bc58a489409ba40334ebf96a311b C:\Windows\system32\DRIVERS\rdbss.sys
    MD5: 23dae03f29d253ae74c44f99e515f9a1 C:\Windows\System32\DRIVERS\RDPCDD.sys
    MD5: b973fcfc50dc1434e1970a146f7e3885 C:\Windows\System32\drivers\rdpdr.sys
    MD5: 518395321dc96fe2c9f0e96ac743b656 C:\Windows\System32\drivers\rdyboost.sys
    MD5: 05d860da1040f111503ac416ccef2bca C:\Windows\system32\drivers\sbp2port.sys
    MD5: 0693b5ec673e34dc147e195779a4dcf6 C:\Windows\System32\DRIVERS\scfilter.sys
    MD5: 0328be1c7f1cba23848179f8762e391c C:\Windows\system32\drivers\sdbus.sys
    MD5: 6d4ccaedc018f1cf52866bbbaa235982 C:\Windows\system32\drivers\sffp_sd.sys
    MD5: 32c2f59f6991a7a16f9acd1c5f88ecc7 C:\Windows\system32\DRIVERS\snp2uvc.sys
    MD5: c4bb8a12843d9cbb65f5ff617f389bbd C:\Windows\System32\Drivers\sptd.sys
    MD5: e4c2764065d66ea1d2d3ebc28fe99c46 C:\Windows\System32\DRIVERS\srv.sys
    MD5: 03f0545bd8d4c77fa0ae1ceedfcc71ab C:\Windows\System32\DRIVERS\srv2.sys
    MD5: be6bd660caa6f291ae06a718a4fa8abc C:\Windows\System32\DRIVERS\srvnet.sys
    MD5: dcaffd62259e0bdb433dd67b5bb37619 C:\Windows\system32\drivers\storvsc.sys
    MD5: 04e4a7d53a7ace02e8c55b17a498f631 C:\Windows\System32\drivers\tcpip.sys
    MD5: cca24162e055c3714ce5a88b100c64ed C:\Windows\System32\drivers\tcpipreg.sys
    MD5: 1cb91b2bd8f6dd367dfc2ef26fd751b2 C:\Windows\system32\drivers\tdpipe.sys
    MD5: 2c10395baa4847f83042813c515cc289 C:\Windows\system32\drivers\tdtcp.sys
    MD5: b459575348c20e8121d6039da063c704 C:\Windows\system32\DRIVERS\tdx.sys
    MD5: 04dbf4b01ea4bf25a9a3e84affac9b20 C:\Windows\system32\drivers\termdd.sys
    MD5: 254bb140eee3c59d6114c1a86b636877 C:\Windows\System32\DRIVERS\tssecsrv.sys
    MD5: fd1d6c73e6333be727cbcc6054247654 C:\Windows\system32\drivers\tsusbflt.sys
    MD5: b2fa25d9b17a68bb93d58b0556e8c90d C:\Windows\system32\DRIVERS\tunnel.sys
    MD5: ee43346c7e4b5e63e54f927babbb32ff C:\Windows\system32\DRIVERS\udfs.sys
    MD5: d295bed4b898f0fd999fcfa9b32b071b C:\Windows\system32\drivers\umbus.sys
    MD5: 1d9f2bd026e8e2d45033a4df3f16b78c C:\Windows\system32\drivers\usbaudio.sys
    MD5: bd9c55d7023c5de374507acc7a14e2ac C:\Windows\system32\DRIVERS\usbccgp.sys
    MD5: f92de757e4b7ce9c07c5e65423f3ae3b C:\Windows\system32\drivers\usbehci.sys
    MD5: 8dc94aec6a7e644a06135ae7506dc2e9 C:\Windows\system32\DRIVERS\usbhub.sys
    MD5: e185d44fac515a18d9deddc23c2cdf44 C:\Windows\system32\drivers\usbohci.sys
    MD5: 31181de6190b39fc8007dffd1a48ffd6 C:\Windows\system32\drivers\usbser.sys
    MD5: f991ab9cc6b908db552166768176896a C:\Windows\system32\DRIVERS\USBSTOR.SYS
    MD5: 68df884cf41cdada664beb01daf67e3d C:\Windows\system32\drivers\usbuhci.sys
    MD5: 45f4e7bf43db40a6c6b4d92c76cbc3f2 C:\Windows\System32\Drivers\usbvideo.sys
    MD5: f6d4e8be72d03a6b1a72c12790c51c48 C:\Windows\system32\DRIVERS\VBoxDrv.sys
    MD5: 42934f05ba89f589a34a11e0661c233b C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
    MD5: cbb6f6d2f9a90853f830876967e514c6 C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
    MD5: 0115e38f398dd71830b522ba28c1b2c5 C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
    MD5: 5461686cca2fda57b024547733ab42e3 C:\Windows\system32\drivers\vhdmp.sys
    MD5: c2f2911156fdc7817c52829c86da494e C:\Windows\system32\drivers\vmbus.sys
    MD5: d4d77455211e204f370d08f4963063ce C:\Windows\system32\drivers\VMBusHID.sys
    MD5: 7fa7f2e249a5dcbb7970630e15e1f482 C:\Windows\system32\drivers\vms3cap.sys
    MD5: 472af0311073dceceaa8fa18ba2bdf89 C:\Windows\system32\drivers\vmstorfl.sys
    MD5: 4c63e00f2f4b5f86ab48a58cd990f212 C:\Windows\system32\drivers\volmgr.sys
    MD5: f497f67932c6fa693d7de2780631cfe7 C:\Windows\system32\drivers\volsnap.sys
    MD5: 3c3c78515f5ab448b022bdf5b8ffdd2e C:\Windows\system32\DRIVERS\wanarp.sys
    MD5: 090a2b8f055343815556a01f725f6c35 C:\Windows\system32\DRIVERS\wimfltr.sys
    MD5: a67e5f9a400f3bd1be3d80613b45f708 C:\Windows\system32\DRIVERS\WinUsb.sys
    MD5: e714a1c0354636837e20ccbf00888ee7 C:\Windows\system32\drivers\WudfPf.sys
    MD5: 1023ee888c9b47178c5293ed5336ab69 C:\Windows\system32\DRIVERS\WUDFRd.sys
    MD5: 497e59d9f01c6f247e72222a61835119 C:\Windows\system32\dwmcore.dll
    MD5: 754afc50022c95da7c86b7020db78136 C:\Windows\system32\dwmredir.dll
    MD5: 0a5c7253183a6f956d10a3a4bbc96288 C:\Windows\system32\DWrite.dll
    MD5: 0411b7958c524bb2e91ee1b3035fe321 C:\Windows\system32\dxgi.dll
    MD5: addb05c93272a62606599b24730bd645 C:\Windows\system32\dxp.dll
    MD5: 9a892b3439884c62b04718f0303a49e9 C:\Windows\system32\eapphost.dll
    MD5: 91f434ff6606ed9bdc6a05d651b69553 C:\Windows\system32\efslsaext.dll
    MD5: 8444a7364d6877922049e99bf4b78c5c C:\Windows\system32\elscore.dll
    MD5: 02a2ed8497f437ea200df3aced255afe C:\Windows\system32\ElsLad.dll
    MD5: 5c3f9dba818cd93379d1a0f215270374 c:\windows\system32\ESENT.dll
    MD5: e2a17bcc08d92f42e08af6ba2f93aba7 C:\Windows\system32\explorerframe.dll
    MD5: 1e8d06aae74fed674c1156b3fea911c2 C:\Windows\system32\Faultrep.dll
    MD5: 2d4561e1665d72849a0b916ab30556d0 C:\Windows\System32\FBAgent.exe
    MD5: f34cfada6c48daa41b996d24c7d8d3ca C:\Windows\system32\fdPnp.dll
    MD5: f8bef2a3a77a22880bce13382d9302ce C:\Windows\system32\FLACDX.ax
    MD5: 8453687a045c926f0291301ebaf50370 C:\Windows\system32\flvDX.dll
    MD5: b3a5ec6b6b6673db7e87c2bcdbddc074 c:\windows\system32\fntcache.dll
    MD5: d0481fb85beedd30a0884be327880f80 C:\Windows\System32\framedynos.dll
    MD5: e6d90dc604f407b3b5e0fd285e46b2a0 C:\Windows\system32\FVEAPI.dll
    MD5: c87f28a34b3840f4b40011d170b1a159 C:\Windows\system32\FVECERTS.dll
    MD5: 03a03a453f1aaae0c73aaaf895321c7a C:\Windows\system32\fwpuclnt.dll
    MD5: 126f8331bd023178c7f0ef2f5ede16b3 C:\Windows\System32\FXSMON.DLL
    MD5: 967ea5b213e9984cbe270205df37755b C:\Windows\system32\fxssvc.exe
    MD5: 19bc13711ac403feb830522e4831701b C:\Windows\System32\gameux.dll
    MD5: e87f5393f7d8ce2facc4dff703531392 C:\Windows\system32\GDI32.dll
    MD5: e897eaf5ed6ba41e081060c9b447a673 c:\windows\system32\gpsvc.dll
    MD5: c7952d0a4c43a965a1741916bb134751 C:\Windows\System32\hgcpl.dll
    MD5: 8cd1dee212e52b9c22e66dba44991d32 C:\Windows\system32\HTTPAPI.dll
    MD5: d5c9f778d0ed2954eb83e1cf87dc0b65 C:\Windows\System32\ieframe.dll
    MD5: ab0e44c70c5c732c1e312eaeabecc1d5 C:\Windows\system32\iertutil.dll
    MD5: 86226b6304354c64ed1936f6d59bcd7a C:\Windows\system32\IisRTL.DLL
    MD5: f95622f161474511b8d80d6b093aa610 C:\Windows\System32\ikeext.dll
    MD5: b2fd31e20b423335fe3273b4bf95813c C:\Windows\system32\imagehlp.dll
    MD5: 2d11bc8b460957e62e4420373a0d8bda C:\Windows\system32\imapi2.dll
    MD5: 4a8e2f20809cc161107faa94f6cf2685 C:\Windows\system32\IMM32.DLL
    MD5: ed27d1d75bf5e683ad3edd9e3123520a C:\Windows\system32\inetcomm.dll
    MD5: d27dde7e0444c7f1819f958469eb7d93 C:\Windows\System32\inetpp.dll
    MD5: b7f06015281a0c5039e7bb3450e1efd6 C:\Windows\system32\inetsrv\abocomp.dll
    MD5: d1af38fbac0dc7e6d796b0ed01707ee0 c:\windows\system32\inetsrv\apphostsvc.dll
    MD5: e158556d5efd0a29db72d911c10b816a C:\Windows\system32\inetsrv\COADMIN.dll
    MD5: f28fed8361102ed9bd5e96687d89842c C:\Windows\system32\inetsrv\iisadmin.dll
    MD5: 62c5969251c778edba113af7b621fc7e C:\Windows\system32\inetsrv\IISCFG.DLL
    MD5: 938ca6f9747143d5e1c83abe7ede8992 C:\Windows\system32\inetsrv\IISRES.DLL
    MD5: 83563d51333ca29135929e1b902f7f05 C:\Windows\system32\inetsrv\IISUTIL.dll
    MD5: 57c8c20bfa5bef6bd851ebac67a8ced0 c:\windows\system32\inetsrv\iisw3adm.dll
    MD5: fc9735b66850cf8aebbc1e207ecb2ad8 C:\Windows\System32\inetsrv\inetinfo.exe
    MD5: 6841eda8f95105970f7d6889e61393a5 C:\Windows\system32\inetsrv\metadata.dll
    MD5: b7b41cf100e73a0a1b124e7bb47c9238 C:\Windows\system32\inetsrv\nativerd.dll
    MD5: 7e744c3c2f90e3a19ec964db8d61311c C:\Windows\system32\inetsrv\rpcref.dll
    MD5: e64f2b50867ca6f463c8de6793e41186 c:\windows\system32\inetsrv\W3TP.dll
    MD5: cde28dc62a760847f843603709a2a72a C:\Windows\system32\inetsrv\wamreg.dll
    MD5: a90dc9abd65db1a8902f361103029952 C:\Windows\system32\IPHLPAPI.DLL
    MD5: 4d65a07b795d6674312f879d09aa7663 c:\windows\system32\iphlpsvc.dll
    MD5: 7852e03bb44413b0b4c987040c1d0ad8 C:\Windows\system32\IPROP.dll
    MD5: 53946b69ba0836bd95b03759530c81ec C:\Windows\System32\ipsecsvc.dll
    MD5: 4be78e80530451f5ff970bd109c6df77 C:\Windows\System32\jscript9.dll
    MD5: 2f4348dc0d06a0eba5f5c4cb435790c1 C:\Windows\system32\kerberos.DLL
    MD5: e570cbd732848438eac574eb3442a2a8 C:\Windows\system32\kernel32.dll
    MD5: a9f8e23c1fc00190376b11ffad9de6c6 C:\Windows\system32\KERNELBASE.dll
    MD5: af75dba674e55221b7a055b0a4345f16 C:\Windows\system32\keyiso.dll
    MD5: 196b4e3f4cccc24af836ce58facbb699 C:\Windows\system32\kmsvc.dll
    MD5: c1585eaa67c37a05bf6f93726fafc069 c:\windows\system32\l2gpstore.dll
    MD5: 6658f4404de03d75fe3ba09f7aba6a30 C:\Windows\system32\ListSvc.dll
    MD5: 55ca01ba19d0006c8f2639b6c045e08b c:\windows\system32\lmhsvc.dll
    MD5: 12c4e95f468a5fd3fbb8166e27ed4d53 C:\Windows\System32\localspl.dll
    MD5: 8ea53101ff2b15bdff934b62a8fb326d C:\Windows\system32\LOGONCLI.DLL
    MD5: 7d388177ba300be55264411df6354d0d C:\Windows\system32\lsasrv.dll
    MD5: 8aea9a37c1a3565a204d37c5e72ab791 C:\Windows\System32\lsm.exe
    MD5: 0723fd1aa71f1222b95503794e30d7c7 C:\Windows\system32\Macromed\Flash\NPSWF32.dll
    MD5: a5408051b49a1bfd3c3ed889a318cc42 C:\Windows\system32\MatroskaDX.ax
    MD5: bfb9ee8ee977efe85d1a3105abef6dd1 C:\Windows\system32\Mcx2Svc.dll
    MD5: dc6612a9ee015a36ba2a27bc9cc12537 C:\Windows\system32\MFC42.DLL
    MD5: 243974ec02f7ae49e4179c54624143ab c:\windows\system32\MMDevAPI.DLL
    MD5: 4cb18f87c6bcf550ef48632935c80b5f C:\Windows\system32\MPCDx.ax
    MD5: d4191efab91e00fc09257aa5ebaf503b C:\Windows\System32\MPRAPI.dll
    MD5: 9835584e999d25004e1ee8e5f3e3b881 c:\windows\system32\mpssvc.dll
    MD5: 938f39b50bafe13d6f58c7790682c010 C:\Windows\system32\MSASN1.dll
    MD5: 7f8678c59f188528d60104e697c2361e C:\Windows\system32\mscms.dll
    MD5: d83947a58613e9091b4c9cc0f1546a8d C:\Windows\system32\MSCOREE.DLL
    MD5: 7069aab8536f29ed7323140973a2894b C:\Windows\system32\msdmo.dll
    MD5: 21d8f42d54598b73c2e1a9571399113b C:\Windows\system32\msfDX.dll
    MD5: 3a16ea01fcfaab40882db5bfee632322 C:\Windows\System32\MSFTEDIT.dll
    MD5: e6d5c7e4aac0c682169aa5021386eff3 C:\Windows\system32\MSHTML.dll
    MD5: 0ce4d3bd306da6d1f6f233c403f5b667 C:\Windows\system32\msi.dll
    MD5: eee470f2a771fc0b543bdeef74fceca0 C:\Windows\system32\msiexec.exe
    MD5: 35aae2e841aa1a949775168e119482c9 C:\Windows\system32\msls31.dll
    MD5: cbbd4d79eec3ef5a4adae9697944c6b9 C:\Windows\System32\msmpeg2enc.dll
    MD5: 387a8a473ecc5ba02cf453277c1f3274 c:\windows\system32\mspatcha.dll
    MD5: c90878913df3dc504790282043db5f4c C:\Windows\system32\msprivs.DLL
    MD5: 0241cb16136b9a4939ca0395768ae286 C:\Windows\system32\MSSRCH.DLL
    MD5: c5a99a4c0dc9f0f5a95ba0c83d30a549 C:\Windows\System32\mstask.dll
    MD5: 56ceed370508f69a1ba04939bd1badda C:\Windows\system32\MSUTB.dll
    MD5: 4c1e16b9a53102c8d6fba587cbcb95de C:\Windows\system32\msv1_0.DLL
    MD5: 8999b8631c7fd9f7f9ec3cafd953ba24 C:\Windows\system32\mswsock.dll
    MD5: 4205ca4cd43e725db9ff02b0a588a8c6 C:\Windows\System32\msxml3.dll
    MD5: 269d867585cda04d3972a39f3694e7df C:\Windows\System32\msxml6.dll
    MD5: 8b57a1ad493653bb57f281fe75dd175b C:\Windows\System32\NaturalLanguage6.dll
    MD5: e4b6b932b6e5ce386627ceea2a0a0f4c C:\Windows\system32\nbDX.dll
    MD5: 45d9f6cd2469cdb6a640dd4bd2b01471 C:\Windows\system32\NCI.dll
    MD5: a4cc7227a452c4909f9499d91b184364 C:\Windows\system32\NCObjAPI.DLL
    MD5: 75ea62927355189876081ef863064982 c:\windows\system32\ncsi.dll
    MD5: 6dcfaec6d1334aa6cdf8961db4633cbf C:\Windows\system32\negoexts.DLL
    MD5: 8ce1a6d16b9077e91e192499eb611c5f C:\Windows\system32\NETAPI32.dll
    MD5: 1ff7e4f548c7c372c804938f0d5b36ae C:\Windows\system32\netcfgx.dll
    MD5: e343cabbd8d600abaf3f11625d33b3d0 C:\Windows\system32\netjoin.dll
    MD5: c1809b9907adedaf16f50c894100883b C:\Windows\system32\netlogon.DLL
    MD5: eab975db4c2805927fe5bd047d05c9aa C:\Windows\System32\netshell.dll
    MD5: 20b3934db73eaba2b49b7177873cb81f C:\Windows\system32\netutils.dll
    MD5: 3d57ffbad3ed16b63de3879bab0fb56f C:\Windows\system32\NetworkExplorer.dll
    MD5: 104a1070e90f1c530328e69b49718841 C:\Windows\system32\NLAapi.dll
    MD5: 912084381d30d8b89ec4e293053f4710 c:\windows\system32\nlasvc.dll
    MD5: d2a937964199f647b1c3bc435712e5d9 c:\windows\system32\nrpsrv.DLL
    MD5: ba387e955e890c8a88306d9b8d06bf17 c:\windows\system32\nsisvc.dll
    MD5: ed60c95c805dbaee92c90c3ab930085a C:\Windows\SYSTEM32\ntdll.dll
    MD5: d7b7159bc8374e87d8c45a30377a3440 C:\Windows\System32\ntlanman.dll
    MD5: eb77db354791a5932ca559b6f6374e95 C:\Windows\system32\ntshrui.dll
    MD5: 7d34af98a706230cc2dedfe0cabf87ab C:\Windows\system32\ODBC32.dll
    MD5: 928cf7268086631f54c3d8e17238c6dd C:\Windows\system32\ole32.dll
    MD5: 1cbaedc5448cd922dcf82283383ad68b C:\Windows\system32\OLEAUT32.dll
    MD5: f748f53fe09d21d8ecbb6421e6792024 c:\windows\system32\OneX.DLL
    MD5: 487f44b08efeaf5ad087878357b9403d C:\Windows\system32\pdh.dll
    MD5: 7e82616bee76bf5eaa5b30f681414e21 C:\Windows\system32\perftrack.dll
    MD5: 37cc990d4e2cdfae12ac47f6b620fc13 C:\Windows\system32\pku2u.DLL
    MD5: 414bba67a3ded1d28437eb66aeb8a720 C:\Windows\system32\pla.dll
    MD5: 3d6f22551d422f97aacb0bb927e4c846 C:\Windows\System32\pnidui.dll
    MD5: e98278865e8daba21cfe5fe4be34210a C:\Windows\system32\PortableDeviceApi.dll
    MD5: c693e642acfbdd76433af6be3c3eee6f C:\Windows\System32\portabledeviceconnectapi.dll
    MD5: 5c112cb49b85449c418814bdfd537379 C:\Windows\System32\Primomonnt.dll
    MD5: 03cf941d031f30272d3063e5a4d686f5 C:\Windows\System32\PrintIsolationProxy.dll
    MD5: c8333f1f77a1b2e25f2202e892caf634 C:\Windows\system32\prnfldr.dll
    MD5: 43ca4ccc22d52fb58e8988f0198851d0 c:\windows\system32\profsvc.dll
    MD5: 12c45e3cb6d65f73209549e2d02eca7a C:\Windows\system32\PROPSYS.dll
    MD5: dbc02d918fff1cad628acbe0c0eaa8e8 C:\Windows\System32\provsvc.dll
    MD5: 02530b0b7e048dd5ac8d52daeacaeb2b C:\Windows\System32\QAgent.dll
    MD5: 61d57a5d7c6d9afe10e77dae6e1b445e C:\Windows\system32\qagentRT.dll
    MD5: e585445d5021971fae10393f0f1c3961 c:\windows\system32\qmgr.dll
    MD5: b4d0d2f098c7a68385560df4551551ca C:\Windows\system32\quartz.dll
    MD5: 63b282fb2550893724647a359ba2323f C:\Windows\system32\query.dll
    MD5: bd626ef05967d14c772b8096292731a3 C:\Windows\System32\QUtil.dll
    MD5: 7ffd52d73352806969d424ef327d10a7 C:\Windows\system32\radardt.dll
    MD5: cb9e04dc05eacf5b9a36ca276d475006 C:\Windows\System32\rasmans.dll
    MD5: 48b32991b01ffa2535050d4457f4b6d3 C:\Windows\system32\RealMediaDX.ax
    MD5: 2af094c822bd6094f14a8e85fb51d52a C:\Windows\system32\RESUTILS.DLL
    MD5: 102cf6879887bbe846a00c459e6d4abc C:\Windows\system32\Riched20.dll
    MD5: 624293ccba93b2dd1c062894977e7dcc C:\Windows\system32\RLAPEDec.ax
    MD5: 39396c3c3e4fb46fb3e087d4101a30be C:\Windows\system32\RLMPCDec.ax
    MD5: 00817d79cc4282859e9f5685ba686469 C:\Windows\system32\RLOgg.ax
    MD5: d126cd64568b093e6faddadce6fd0a47 C:\Windows\system32\RLSpeexDec.ax
    MD5: 8bd08b7bef08cb2f576832e88c70de93 C:\Windows\system32\RLTheoraDec.ax
    MD5: e25ed3eca867ee19be516528650e0506 C:\Windows\system32\RLVorbisDec.ax
    MD5: 6400774e903729add0a62a24a334ee56 C:\Windows\system32\RPCRT4.dll
    MD5: 5997d769cdb108390dcfaebf442bf816 C:\Windows\system32\RpcRtRemote.dll
    MD5: 7660f01d3b38aca1747e397d21d790af c:\windows\system32\rpcss.dll
    MD5: 0915c4db6dbc3bb9e11b7ecbbe4b7159 C:\Windows\System32\rtutils.dll
    MD5: 68ecca523ed760aafc03c5d587569859 C:\Windows\system32\samcli.dll
    MD5: 245f4691314f42d4d1bc06442f0b2086 C:\Windows\system32\SAMSRV.dll
    MD5: 8124944ec89d6a1815e4e53f5b96aaf4 C:\Windows\system32\scecli.DLL
    MD5: 250aa41de690561af1282d598914564c C:\Windows\system32\SCESRV.dll
    MD5: 3369d021265e369d57317d61fa86dd79 C:\Windows\system32\scext.dll
    MD5: 135f7ac9be35ab1df727faf2e60e92f8 C:\Windows\system32\schannel.DLL
    MD5: a42e7748be906434c5fd17161d168c20 C:\Windows\system32\SCHEDCLI.DLL
    MD5: a04bb13f8a72f8b6e8b4071723e4e336 c:\windows\system32\schedsvc.dll
    MD5: 08236c4bce5edd0a0318a438af28e0f7 C:\Windows\System32\SDRSVC.dll
    MD5: 236f286e103fd44bd85fdd93097fd5dd C:\Windows\System32\SearchIndexer.exe
    MD5: a8ce0c7f1d37e0b8082608a148b6b976 C:\Windows\system32\Secur32.dll
    MD5: 5f1b6a9c35d3d5ca72d6d6fdef9747d6 C:\Windows\System32\services.exe
    MD5: 4ae380f39a0032eab7dd953030b26d28 C:\Windows\system32\sessenv.dll
    MD5: 10fb16b50affda6d44588f3c445dc273 C:\Windows\system32\SETUPAPI.dll
    MD5: f14a9b1778376d0b1788e402ac1f831a C:\Windows\System32\shacct.dll
    MD5: be247ae996a9fde007a27b51413a6c79 C:\Windows\System32\shdocvw.dll
    MD5: 16ab4bd2acc52109f43739bf0e89e18f C:\Windows\system32\SHELL32.dll
    MD5: 8cc3c111d653e96f3ea1590891491d71 C:\Windows\system32\SHLWAPI.dll
    MD5: 414da952a35bf5d50192e28263b40577 c:\windows\system32\shsvcs.dll
    MD5: 16742790895960690237a5143cedec8b C:\Windows\System32\smss.exe
    MD5: 2cfa4569350b7f84f815e9ec34e85766 C:\Windows\system32\SndVolSSO.DLL
    MD5: 4b9e4ce667df26ada061aa81e9aa841d C:\Windows\system32\SPFILEQ.dll
    MD5: cd72c6406ba561bed6d42cb145e55307 C:\Windows\system32\spool\PRTPROCS\W32X86\winprint.dll
    MD5: 629181c26a78eb66b0b4e774e5ac2882 C:\Windows\System32\SPOOLSS.DLL
    MD5: 866a43013535dc8587c258e43579c764 C:\Windows\System32\spoolsv.exe
    MD5: cf87a1de791347e75b98885214ced2b8 C:\Windows\system32\sppsvc.exe
    MD5: b0180b20b065d89232a78a40fe56eaa6 C:\Windows\system32\sppuinotify.dll
    MD5: ce292c4c10b8db6070f262ea2733f0dc c:\windows\system32\sqmapi.dll
    MD5: 674b0c0f6a448eb185caab9c51d44032 C:\Windows\System32\srchadmin.dll
    MD5: c593ba885ade37c18fcecb991c676658 C:\Windows\system32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo32.dll
    MD5: 5ccdcd40e732d54e0f7451ac66ac1c87 C:\Windows\system32\srvcli.dll
    MD5: d64af876d53eca3668bb97b51b4e70ab c:\windows\system32\srvsvc.dll
    MD5: 89e783711af91af09e1ef30ef3107446 C:\Windows\system32\SSCORE.DLL
    MD5: 331534632d1da3377440493848e4a70e C:\Windows\system32\SspiCli.dll
    MD5: 4902ecf2a155a51f6ff7c013b7e212cd C:\Windows\system32\SspiSrv.dll
    MD5: 2f0eaaf91fc7a5c70d1f4be9b18a1cf5 C:\Windows\System32\StikyNot.exe
    MD5: 912649a1b3f9e6acb3899fbdaba2ed5f C:\Windows\system32\stobject.dll
    MD5: 0bf669f0a910beda4a32258d363af2a5 C:\Windows\system32\storsvc.dll
    MD5: 919001d2bb17df06ca3f8ac16ad039f6 C:\Windows\system32\sxs.dll
    MD5: 364455805e64882844ee9acb72522830 C:\Windows\system32\sxssrv.DLL
    MD5: 2ddea2c345da5bc589efd398f220db0e C:\Windows\System32\SyncCenter.dll
    MD5: 36650d618ca34c9d357dfd3d89b2c56f c:\windows\system32\sysmain.dll
    MD5: ba51ffe170c5b3ae8ec4f5bd2581a29e C:\Windows\system32\SYSNTFY.dll
    MD5: 6b140b1382f1fe04ba57b196aeb19725 C:\Windows\system32\t2embed.dll
    MD5: 763fecdc3d30c815fe72dd57936c6cd1 C:\Windows\System32\TabSvc.dll
    MD5: 613bf4820361543956909043a265c6ac C:\Windows\System32\tapisrv.dll
    MD5: 1c3e8371377e988b683797a132effe1b C:\Windows\system32\taskcomp.dll
    MD5: 4f2659160afcca990305816946f69407 C:\Windows\System32\taskeng.exe
    MD5: 7fa8ba5a780e4757964ac9d4238302b9 C:\Windows\System32\taskhost.exe
    MD5: 544eff88ac6c85df5a4d6f18dfe08cfc C:\Windows\system32\taskschd.dll
    MD5: eafc149cd3bd78c443e31bb157841197 C:\Windows\system32\tbs.dll
    MD5: b390c1d825c7687493bede237c6c2f25 C:\Windows\System32\tcpmon.dll
    MD5: 382c804c92811be57829d8e550a900e2 C:\Windows\System32\termsrv.dll
    MD5: 83c9840cf87a0ca55526327801716d27 C:\Windows\system32\timedate.cpl
    MD5: 465dbf63a5049e4db4bc5c12ffe781cb C:\Windows\system32\TQUERY.DLL
    MD5: d29e45078cf4020ce0aac82ec652d1ea C:\Windows\system32\tspkg.DLL
    MD5: 6db323f64f10dd6a8d9159dafa97fa41 C:\Windows\system32\TTADSDecoder.ax
    MD5: 555c91496e3584b6fc00ca0a1ce899eb C:\Windows\system32\TTADSSplitter.ax
    MD5: 7222995615bf93b628dcea4bd6ccacf7 C:\Windows\system32\UBPM.dll
    MD5: d33e95c0a2754061233b58dc41f8094c C:\Windows\system32\umb.dll
    MD5: ec7bc28d207da09e79b3e9faf8b232ca c:\windows\system32\umpnpmgr.dll
    MD5: f87d30e72e03d579a5199ccb3831d6ea c:\windows\system32\umpo.dll
    MD5: 409994a8eaceee4e328749c0353527a0 C:\Windows\System32\umrdp.dll
    MD5: 954ea9b34f155c844b11f4047a8f6f89 C:\Windows\system32\upnp.dll
    MD5: d217b0da82fdd942c048749993275ac6 C:\Windows\system32\urlmon.dll
    MD5: 923cdd30092db73ec4a0ebcddd16c686 C:\Windows\System32\usbmon.dll
    MD5: f1dd3acaee5e6b4bbc69bc6df75cef66 C:\Windows\system32\USER32.dll
    MD5: d15618a0ff8dbc2c5bf3726bacc75a0b C:\Windows\system32\USERENV.dll
    MD5: 61ac3efdfacfdd3f0f11dd4fd4044223 c:\windows\system32\userinit.exe
    MD5: 804aaafebb3ad5f49334dd906bcb1de5 C:\Windows\system32\USP10.dll
    MD5: a12829e9974f57e9b5dbfea7c93190f6 C:\Windows\system32\UXINIT.dll
    MD5: 5e7a2cf7719161c5e6c0e47d67ad45ae C:\Windows\system32\vbscript.dll
    MD5: c3cd30495687c2a2f66a65ca6fd89be9 C:\Windows\System32\vds.exe
    MD5: 13337a3fb17f2242487fd45488ed0485 C:\Windows\system32\VSSAPI.DLL
    MD5: 209a3b1901b83aeb8527ed211cce9e4c C:\Windows\system32\vssvc.exe
    MD5: cb67c2b94302dc94bc15ed6553a5c1c7 C:\Windows\system32\wbem\cimwin32.dll
    MD5: 5ae88135c6a86fcd67ba16afbb1c8389 C:\Windows\system32\wbem\esscli.dll
    MD5: cfc7d8289d2b5f3cf8d16e2db7f93d4a C:\Windows\system32\wbem\FastProx.dll
    MD5: f148865e4ac4f715e322ea06e6e21d84 C:\Windows\system32\wbem\ncprov.dll
    MD5: 371e3b05894549113d07cd3081ed55ef C:\Windows\system32\wbem\repdrvfs.dll
    MD5: 585eb475e7af55c9065256e8ffb751a1 C:\Windows\system32\wbem\wbemcore.dll
    MD5: b350509b6c9296529bc464c60feeaef1 C:\Windows\system32\wbem\wbemess.dll
    MD5: 701c9eb15e1e23d22f7c7184c0506673 C:\Windows\system32\wbem\wmidcprv.dll
    MD5: c6b0509aa89f656247694e2d6abf7255 C:\Windows\system32\wbem\wmiprov.dll
    MD5: 3cde2911462fec80064a409c07710c06 C:\Windows\system32\wbem\wmiprvsd.dll
    MD5: 4fb491ac8d46aaf22ba8bc5c73dabef7 C:\Windows\System32\wbem\WmiPrvSE.exe
    MD5: 704314fd398c81d5f342caa5df7b7f21 C:\Windows\system32\wbemcomn.dll
    MD5: 691e3285e53dca558e1a84667f13e15a C:\Windows\system32\wbengine.exe
    MD5: 34eee0dfaadb4f691d6d5308a51315dc C:\Windows\System32\wcncsvc.dll
    MD5: f0016853fa3f38f55fd868ff74c0359b C:\Windows\system32\wdiasqmmodule.dll
    MD5: d205c24a9d069049fe2df2a1b38726a7 C:\Windows\system32\wdmaud.drv
    MD5: a399514d3b28c9a3453a486bbaaff1c7 c:\windows\system32\WDSCORE.dll
    MD5: a9d880f97530d5b8fee278923349929d C:\Windows\System32\webclnt.dll
    MD5: 02c61d8ad469417f5508225c75de3236 C:\Windows\system32\webio.dll
    MD5: db846eeca70ee9d2e2ff31147c57b0f4 C:\Windows\System32\webservices.dll
    MD5: 590d5c506044fe02ff7643e32ff9bdac C:\Windows\system32\wer.dll
    MD5: 1869bd251211fb6275067372a45682d6 C:\Windows\System32\werconcpl.dll
    MD5: 241e015dd809cfb23242f890b1fc575b c:\windows\system32\wevtsvc.dll
    MD5: 019c372b1a9da73a22d0d35a4d40f5c9 C:\Windows\system32\wfapigp.dll
    MD5: e2d56ae1d40e3725084054cd8e9cfbb1 C:\Windows\system32\wiarpc.dll
    MD5: e1fb3706030fb4578a0d72c2fc3689e4 c:\windows\system32\wiaservc.dll
    MD5: 536e06b5a05c6e39c8748e3941fb083d C:\Windows\System32\win32spl.dll
    MD5: 1db71a41daee6b3f8cd0dda8209fa2d5 C:\Windows\system32\WindowsCodecs.dll
    MD5: ca9f7888b524d8100b977c81f44c3234 C:\Windows\system32\WINHTTP.dll
    MD5: 2c7332c222d1fe1fc57d622699a8c001 C:\Windows\system32\WININET.dll
    MD5: b5c5dcad3899512020d135600129d665 C:\Windows\System32\wininit.exe
    MD5: 6d13e1406f50c66e2a95d97f22c47560 C:\Windows\System32\winlogon.exe
    MD5: d5aefad57c08349a4393d987df7c715d C:\Windows\system32\WINMM.dll
    MD5: 81c0fa250ef6dc1c6b3fa2bce81d6c2e C:\Windows\system32\WinSATAPI.dll
    MD5: 9419abf3163b6f0e3ad3dd2b381c879f c:\windows\system32\WinSCard.dll
    MD5: 9e4b0e7472b4ceba9e17f440b8cb0ab8 C:\Windows\system32\WINSPOOL.DRV
    MD5: 183b4188d5d91b271613ec3efd1b3cef C:\Windows\system32\winsrv.DLL
    MD5: 418e881201583a3039d81f43e39e6c78 C:\Windows\system32\WINSTA.dll
    MD5: 2d0d2da87bea7144f2a17f19d0d17e4c C:\Windows\system32\WINTRUST.dll
    MD5: e5a4a1326a02f8e7b59e6c3270ce7202 C:\Windows\system32\wkscli.dll
    MD5: 58405e4f68ba8e4057c6e914f326aba2 c:\windows\system32\wkssvc.dll
    MD5: 3c9035085141162416a0dd34dbf3f3c1 c:\windows\system32\WLANMSM.DLL
    MD5: 20c06a50dfc097e134bc6fa8444ca9bc c:\windows\system32\WLANSEC.dll
    MD5: a8bb45f9ecad993461e0fef8e2a99152 C:\Windows\system32\WLDAP32.dll
    MD5: 749f9795f01c35eebe100a87d82b9681 c:\windows\system32\wlgpclnt.dll
    MD5: 633c2c060cf857099f6c4f8d75c952b1 C:\Windows\system32\wls0wndh.dll
    MD5: ff3c5379de4fd18498c255d096fed3f5 C:\Windows\System32\WMADMOD.DLL
    MD5: 5cf15474ffdb5005e54958df6edd97ab C:\Windows\system32\wmdrmdev.dll
    MD5: 1957d49a9613faad1c73b508cce02aa5 C:\Windows\system32\wmp.dll
    MD5: 0fbc74aa20fe0ae6884279f893169c60 C:\Windows\system32\wmploc.dll
    MD5: 7b97346ce563b74bbcc120fc83e5a6d9 C:\Windows\system32\wmpmde.dll
    MD5: 3f2b83695e5bf11930c16af50e991f96 C:\Windows\System32\wmpps.dll
    MD5: d412b1b72c5ab020218e9a047d90ca05 C:\Windows\system32\WMsgAPI.dll
    MD5: 0f416e23dd2eb4debe70608020cfd283 C:\Windows\system32\wmvcore.dll
    MD5: aa53356d60af47eacc85bc617a4f3f66 C:\Windows\system32\wpdbusenum.dll
    MD5: 735263da17bf5baf9ccd483843bf9d5a C:\Windows\system32\wpdshserviceobj.dll
    MD5: 7ff15a4f092cd4a96055ba69f903e3e9 C:\Windows\system32\WS2_32.dll
    MD5: a8cdf3768604ff95b54669e20053d569 C:\Windows\system32\WSCAPI.dll
    MD5: 7fd5532c142db6c9cc47aa4dcf71fdec C:\Windows\System32\wscui.cpl
    MD5: 73f6c5223f7e9b5780dd4a6c30fcf569 C:\Windows\System32\wsdapi.dll
    MD5: a8eb761de499242becf153b2b34f020e C:\Windows\System32\WSDMon.dll
    MD5: 81f08948a0f1475894c99d4d19a158a8 C:\Windows\System32\wshqos.dll
    MD5: 1b91cd34ea3a90ab6a4ef0550174f4cc C:\Windows\system32\WsmSvc.dll
    MD5: 6357e2b68753a1f5cf4a68a25c4fd14a C:\Windows\System32\wsnmp32.dll
    MD5: 6a6b2ee4565a178035be2a4ff6f2c968 C:\Windows\system32\WTSAPI32.dll
    MD5: 7d4dc95a1f5e0818e74a399960569ea1 C:\Windows\system32\wuapi.dll
    MD5: 3026418a50c5b4761befa632cedb7406 c:\windows\system32\wuaueng.dll
    MD5: 9fbcfd7e88a7ace0e94456504895dd7f c:\windows\system32\WUDFPlatform.dll
    MD5: 8d1e1e529a2c9e9b6a85b55a345f7629 c:\windows\system32\wudfsvc.dll
    MD5: fb633dcc8664e4ccacf562db5bae38cf C:\Windows\system32\wups.dll
    MD5: edf2a5e96bec469da3f64e9bdd386111 C:\Windows\system32\XmlLite.dll
    MD5: d5e459bed3db9cf7fc6cc1455f177d2d C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
    MD5: 0b3595a4ff0b36d68e5fc67fd7d70fdc C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCP80.dll
    MD5: c9564cf4976e7e96b4052737aa2492b4 C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCR80.dll
    MD5: e2c48cd0132d4d1dc7d0df9a6bef686a C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
    MD5: 4c39358ebdd2ffcd9132a30e1ec31e16 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCP90.dll
    MD5: cdbe9690cf2b8409facad94fac9479c9 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCR90.dll
    MD5: bdac1aa64495d0f7e1ff810ebbf1f018 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\COMCTL32.dll
    MD5: 352b3dc62a0d259a82a052238425c872 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\COMCTL32.dll
    MD5: 0029eba325f2fc9b6ba46bee33f32a09 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll


    Archivo no enviado

    Scan finished - communication took 4 sec
    Total traffic - 0.06 MB enviado, 3.01 KB recibido
    Scanned 1239 files and modules - 187 seconds

    ==============================================================================
  7. viru

    viru Super Moderador Super Moderador

    Descarga la utilidad ComboFix
    http://www.trucoswindows.net/descargas/herramienta-combofix-exe/

    Desactiva temporalmente el Antivirus y/o Antispyware.
    Cierra todas las ventanas abiertas.

    *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
    *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.

    -Ejecuta ComboFix.exe para iniciar el programa.

    -Se abrirá la ventana del programa en modo MS-DOS. Pulsa inmediatamente la tecla "Y" (Yes) y después sobre ENTER para iniciar el proceso de detección y limpieza.

    -Los iconos del Escritorio desaparecerán (esto es normal) y aparecerá el mensaje "Performing a scan of your machine".

    - A continuación, aparecerá el mensaje "Preparing a log report" "This takes a while. So, please be patient".

    -Seguidamente, aparecerán los mensajes "Almost done..." "A report of Combofix's actions would be produced at C:\Combofix.txt".

    -Se paciente y espera a que la ventana del programa se cierre sola y se muestre el archivo C:\Combofix.txt. Los iconos del Escritorio volverán a su sitio sin necesidad de tener que reiniciar el PC.

    -Por último, el informe combofix.txt mostrará los archivos detectados y eliminados, ese reporte lo pegas aquí.

    - Además pon un nuevo log del hijackThis.

    Saludos.
  8. cehdmoy

    cehdmoy Nuevo Miembro Miembro

    Log del ComboFix

    ComboFix 11-08-29.03 - Roberto 29-08-2011 17:50:17.1.4 - x86
    Microsoft Windows 7 Professional 6.1.7601.1.1252.56.3082.18.2989.1827 [GMT -3:00]
    Running from: c:\users\Roberto\Documents\ComboFix.exe
    AV: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
    SP: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\windows\system32\userinit.exe . . . is infected!!
    .
    .
    ((((((((((((((((((((((((( Files Created from 2011-07-28 to 2011-08-29 )))))))))))))))))))))))))))))))
    .
    .
    2011-08-29 21:01 . 2011-08-29 21:01 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
    2011-08-29 21:01 . 2011-08-29 21:01 -------- d-----w- c:\users\Default\AppData\Local\temp
    2011-08-29 21:01 . 2011-08-29 21:01 -------- d-----w- c:\users\Classic .NET AppPool\AppData\Local\temp
    2011-08-29 21:01 . 2011-08-29 21:01 -------- d-----w- c:\users\caseron\AppData\Local\temp
    2011-08-29 21:01 . 2011-08-29 21:01 -------- d-----w- c:\users\ASP.NET v4.0\AppData\Local\temp
    2011-08-27 01:00 . 2011-08-27 01:28 -------- d-----w- c:\users\Roberto\AppData\Roaming\QuickScan
    2011-08-26 19:36 . 2011-08-26 19:36 -------- d-----w- C:\found.000
    2011-08-26 00:00 . 2011-08-26 00:00 -------- d-----w- c:\users\Roberto\AppData\Roaming\Malwarebytes
    2011-08-25 23:59 . 2011-07-06 22:52 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2011-08-25 23:59 . 2011-08-25 23:59 -------- d-----w- c:\programdata\Malwarebytes
    2011-08-25 23:59 . 2011-07-06 22:52 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
    2011-08-25 23:59 . 2011-08-25 23:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
    2011-08-25 23:40 . 2011-08-25 23:40 -------- d-----w- c:\program files\CCleaner
    2011-08-25 23:17 . 2011-08-25 23:17 388096 ----a-r- c:\users\Roberto\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-08-25 23:17 . 2011-08-25 23:17 -------- d-----w- c:\program files\Trend Micro
    2011-08-24 18:14 . 2011-07-09 04:29 2048 ----a-w- c:\windows\system32\tzres.dll
    2011-08-09 19:25 . 2011-06-21 05:34 1290624 ----a-w- c:\windows\system32\drivers\tcpip.sys
    2011-08-09 19:25 . 2011-06-23 04:33 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
    2011-08-09 19:25 . 2011-06-23 04:33 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-08-18 15:02 . 2011-05-20 01:01 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2011-06-24 00:50 . 2010-08-06 03:43 45056 ----a-w- c:\windows\system32\acovcnt.exe
    2011-06-17 07:17 . 2011-06-14 19:20 2377696 ----a-w- c:\programdata\Microsoft\VisualStudio\10.0\1033\ResourceCache.dll
    2011-06-11 02:29 . 2011-07-13 16:31 2334208 ----a-w- c:\windows\system32\win32k.sys
    2009-04-08 14:31 . 2009-04-08 14:31 106496 ----a-w- c:\program files\Common Files\CPInstallAction.dll
    2008-08-12 01:45 . 2008-08-12 01:45 155648 ----a-w- c:\program files\Common Files\MSIactionall.dll
    2011-08-18 00:55 . 2011-03-23 23:39 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    2006-05-03 09:06 163328 --sh--r- c:\windows\System32\flvDX.dll
    2007-02-21 10:47 31232 --sh--r- c:\windows\System32\msfDX.dll
    2008-03-16 12:30 216064 --sh--r- c:\windows\System32\nbDX.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
    "{db131c55-60c8-4adc-84dc-9e76ab06e2dc}"= "c:\program files\uTorrentBar_ES\tbuTor.dll" [2010-12-09 3911776]
    .
    [HKEY_CLASSES_ROOT\clsid\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
    .
    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
    2010-12-09 15:51 3911776 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll
    .
    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
    2010-12-09 15:51 3911776 ----a-w- c:\program files\uTorrentBar_ES\tbuTor.dll
    .
    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E601996F-E400-41CA-804B-CD6373A7EEE2}]
    2010-08-16 19:35 799472 ----a-w- c:\program files\kikin\ie_kikin.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    "{db131c55-60c8-4adc-84dc-9e76ab06e2dc}"= "c:\program files\uTorrentBar_ES\tbuTor.dll" [2010-12-09 3911776]
    "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776]
    .
    [HKEY_CLASSES_ROOT\clsid\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
    .
    [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
    .
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
    "{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}"= "c:\program files\uTorrentBar_ES\tbuTor.dll" [2010-12-09 3911776]
    "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776]
    .
    [HKEY_CLASSES_ROOT\clsid\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}]
    .
    [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
    @="{C5994560-53D9-4125-87C9-F193FC689CB2}"
    [HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
    2010-04-23 22:50 66312 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
    @="{C5994561-53D9-4125-87C9-F193FC689CB2}"
    [HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
    2010-04-23 22:50 66312 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
    @="{C5994562-53D9-4125-87C9-F193FC689CB2}"
    [HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
    2010-04-23 22:50 66312 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
    @="{C5994563-53D9-4125-87C9-F193FC689CB2}"
    [HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
    2010-04-23 22:50 66312 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
    @="{C5994564-53D9-4125-87C9-F193FC689CB2}"
    [HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
    2010-04-23 22:50 66312 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
    @="{C5994565-53D9-4125-87C9-F193FC689CB2}"
    [HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
    2010-04-23 22:50 66312 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
    @="{C5994566-53D9-4125-87C9-F193FC689CB2}"
    [HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
    2010-04-23 22:50 66312 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
    @="{C5994567-53D9-4125-87C9-F193FC689CB2}"
    [HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
    2010-04-23 22:50 66312 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
    @="{C5994568-53D9-4125-87C9-F193FC689CB2}"
    [HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
    2010-04-23 22:50 66312 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
    @="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
    [HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
    2007-06-01 21:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2010-10-06 23:36 94208 ----a-w- c:\users\Roberto\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2010-10-06 23:36 94208 ----a-w- c:\users\Roberto\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2010-10-06 23:36 94208 ----a-w- c:\users\Roberto\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
    2010-10-06 23:36 94208 ----a-w- c:\users\Roberto\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2010-04-17 3872080]
    "uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-12-25 395640]
    "googletalk"="c:\program files\Google\Google Talk\googletalk.exe" [2007-11-21 3293184]
    "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-05-16 153136]
    "Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-05-27 15147400]
    "RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
    "SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2009-11-19 307768]
    "ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2010-01-13 509320]
    "ATKOSD2"="c:\program files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-02-04 7350912]
    "ATKMEDIA"="c:\program files\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-01-05 170624]
    "HControlUser"="c:\program files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
    "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-03-19 2029640]
    "VirtualCloneDrive"="c:\program files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2009-06-17 85160]
    "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
    "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
    "TortoiseHgOverlayIconServer"="c:\program files\TortoiseHg\TortoiseHgOverlayServer.exe" [2011-04-01 47056]
    "FileZilla Server Interface"="c:\program files\FileZilla Server\FileZilla Server Interface.exe" [2010-10-17 1259008]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
    .
    c:\users\Roberto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dropbox.lnk - c:\users\Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe [2011-5-25 24176560]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-7-28 12862]
    SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut4_E9C83B3EDF9141A39DA5EC05C79BBB91.exe [2010-7-28 156952]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 0 (0x0)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
    "aux4"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Notification Packages REG_MULTI_SZ scecli c:\program files\ASUS\ASUS Data Security Manager\ASPWDFLT
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    2011-06-08 04:02 37296 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSMTray]
    2009-06-24 16:30 272952 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\ADSMTray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
    2010-07-28 12:44 3054136 ----a-w- c:\windows\AsScrPro.exe
    .
    R0 injmm;injmm;c:\windows\System32\drivers\gcvqy.sys [x]
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R3 ipswuio;ipswuio;c:\windows\system32\DRIVERS\ipswuio.sys [x]
    R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-07-06 41272]
    R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4640000]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
    R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-07-29 1343400]
    R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-23 47128]
    R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 239336]
    R4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2011-03-03 370024]
    S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [2009-06-18 15416]
    S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-08-06 697328]
    S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-03-19 107256]
    S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2011-02-17 160560]
    S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2011-02-17 44784]
    S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
    S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2009-12-07 303744]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-01-22 172032]
    S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-03-19 731840]
    S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2009-03-19 93312]
    S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]
    S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [2010-01-22 5191680]
    S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-01-22 125440]
    S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-01-18 102400]
    S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2009-08-18 119408]
    S3 JME;JMicron Ethernet Adapter NDIS6.20 Driver;c:\windows\system32\DRIVERS\JME.sys [2009-12-04 92272]
    S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2011-02-17 111152]
    S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2011-02-17 122032]
    .
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    iissvcs REG_MULTI_SZ w3svc was
    apphost REG_MULTI_SZ apphostsvc
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2011-08-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2418909762-4077482361-2450349069-1000Core.job
    - c:\users\Roberto\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-09 03:18]
    .
    2011-08-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2418909762-4077482361-2450349069-1000UA.job
    - c:\users\Roberto\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-09 03:18]
    .
    .
    ------- Supplementary Scan -------
    .
    uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2851619
    IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
    IE: {{0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - {E601996F-E400-41CA-804B-CD6373A7EEE2} - c:\program files\kikin\ie_kikin.dll
    IE: {{20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - {20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - c:\windows\system32\mscoree.DLL
    TCP: DhcpNameServer = 192.168.1.1
    FF - ProfilePath - c:\users\Roberto\AppData\Roaming\Mozilla\Firefox\Profiles\414c9hvw.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2851619&SearchSource=3&q={searchTerms}
    FF - prefs.js: browser.startup.homepage - hxxp://www.terra.cl/
    FF - prefs.js: network.proxy.type - 0
    .
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    --------------------- DLLs Loaded Under Running Processes ---------------------
    .
    - - - - - - - > 'lsass.exe'(720)
    c:\program files\ASUS\ASUS Data Security Manager\ASPWDFLT.DLL
    .
    - - - - - - - > 'Explorer.exe'(1196)
    c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
    c:\program files\TortoiseHg\ThgShellx86.dll
    c:\program files\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll
    c:\program files\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
    c:\users\Roberto\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    ------------------------ Other Running Processes ------------------------
    .
    c:\windows\system32\atieclxx.exe
    c:\program files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
    c:\program files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    c:\program files\FileZilla Server\FileZilla Server.exe
    c:\windows\system32\inetsrv\inetinfo.exe
    c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
    c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
    c:\windows\system32\taskhost.exe
    c:\program files\ASUS\Net4Switch\Net4Switch.exe
    c:\program files\ASUS\SmartLogon\sensorsrv.exe
    c:\program files\ASUS\Splendid\ACMON.exe
    c:\program files\ASUS\ControlDeck\ControlDeckStartUp.exe
    c:\program files\ASUS\ASUS CopyProtect\aspg.exe
    c:\windows\System32\ACEngSvr.exe
    c:\program files\P4G\BatteryLife.exe
    c:\windows\system32\conhost.exe
    c:\program files\ASUS\ATK Package\ATK Hotkey\HControl.exe
    c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    c:\program files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
    c:\program files\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
    c:\program files\ASUS\NB Probe\SPM\spmgr.exe
    c:\program files\ASUS\ATK Package\ATK Hotkey\WDC.exe
    c:\program files\Elantech\ETDCtrlHelper.exe
    c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
    c:\program files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel.exe
    c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    c:\program files\Skype\Plugin Manager\skypePM.exe
    c:\windows\system32\sppsvc.exe
    c:\program files\Windows Media Player\wmpnetwk.exe
    c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
    .
    **************************************************************************
    .
    Completion time: 2011-08-29 18:08:36 - machine was rebooted
    ComboFix-quarantined-files.txt 2011-08-29 21:08
    .
    Pre-Run: 44.720.881.664 bytes libres
    Post-Run: 44.514.361.344 bytes libres
    .
    - - End Of File - - 2DAE8F9A0DF83BBFF1767AD079ED27FD


    Log del HijackThis

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 18:13:59, on 29-08-2011
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16421)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\ASUS\Splendid\ACMON.exe
    C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
    C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
    C:\Program Files\ASUS\ASUS Live Update\ALU.exe
    C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
    C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
    C:\Program Files\P4G\BatteryLife.exe
    C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
    C:\Windows\System32\ACEngSvr.exe
    C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
    C:\Program Files\Elantech\ETDCtrl.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
    C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Elantech\ETDCtrlHelper.exe
    C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\uTorrent\uTorrent.exe
    C:\Program Files\Google\Google Talk\googletalk.exe
    C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Windows\System32\StikyNot.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel.exe
    C:\Users\Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    C:\Program Files\ASUS\ASUS Data Security Manager\ADSMTray.exe
    C:\Windows\AsScrPro.exe
    C:\Program Files\Skype\Plugin Manager\skypePM.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, Noticias, Deportes, Música, Cine, Dinero, Motor, Compras en MSN España
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, Noticias, Deportes, Música, Cine, Dinero, Motor, Compras en MSN España
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: uTorrentBar_ES Toolbar - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\tbuTor.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: Trixie.Bho - {B0744341-96E0-4341-9ED2-8BC36CE0CCD0} - mscoree.dll (file missing)
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
    O2 - BHO: uTorrentBar_ES Toolbar - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\tbuTor.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: kikin Plugin - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Program Files\kikin\ie_kikin.dll
    O3 - Toolbar: uTorrentBar_ES Toolbar - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Program Files\uTorrentBar_ES\tbuTor.dll
    O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
    O4 - HKLM\..\Run: [ETDWare] %ProgramFiles%\Elantech\ETDCtrl.exe
    O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
    O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
    O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [TortoiseHgOverlayIconServer] C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
    O4 - HKLM\..\Run: [FileZilla Server Interface] "C:\Program Files\FileZilla Server\FileZilla Server Interface.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
    O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
    O4 - Startup: Dropbox.lnk = Roberto\AppData\Roaming\Dropbox\bin\Dropbox.exe
    O4 - Global Startup: FancyStart daemon.lnk = ?
    O4 - Global Startup: SRS Premium Sound.lnk = ?
    O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files\kikin\ie_kikin.dll
    O9 - Extra 'Tools' menuitem: My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files\kikin\ie_kikin.dll
    O9 - Extra button: (no name) - {20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - C:\Windows\system32\mscoree.DLL
    O9 - Extra 'Tools' menuitem: Tri&xie Options... - {20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - C:\Windows\system32\mscoree.DLL
    O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
    O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: AFBAgent - ASUSTeK Computer Inc. - C:\Windows\system32\FBAgent.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
    O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30011 (AppHostSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
    O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
    O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
    O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
    O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
    O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\Program Files\FileZilla Server\FileZilla Server.exe
    O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
    O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
    O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
    O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
    O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
    O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
    O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
    O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30003 (W3SVC) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
    O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30001 (WAS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
    O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
    O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
    O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

    --
    End of file - 25992 bytes
  9. Caito

    Caito Nuevo Miembro Miembro

  10. cehdmoy

    cehdmoy Nuevo Miembro Miembro

    No se si este es el log que me pides ; )

    File already submitted: The file sent has already been analysed by VirusTotal in the past. This is same basic info regarding the sample itself and its last analysis:
    MD5: 61ac3efdfacfdd3f0f11dd4fd4044223
    Date first seen: 2011-02-20 17:55:12 (UTC)
    Date last seen: 2011-08-28 06:13:04 (UTC)
    Detection ratio: 0/44

    What do you wish to do?
  11. cehdmoy

    cehdmoy Nuevo Miembro Miembro

    Como dato anexo, sigue sin abrir nada relacionado con esta página

    Foro de LINQ to SQL

    Gracias por su tiempo
  12. Caito

    Caito Nuevo Miembro Miembro

  13. cehdmoy

    cehdmoy Nuevo Miembro Miembro

  14. Caito

    Caito Nuevo Miembro Miembro

    Está limpio, sigues con problemas ?
    Saludos
    Caito
  15. cehdmoy

    cehdmoy Nuevo Miembro Miembro

    Al intentar loguarme en esta página
    http://social.msdn.microsoft.com/Forums/es-ES/linqtosql/threads

    Me arroja este error

    Bad Request - Invalid Verb

    HTTP Error 400. The request verb is invalid.

    Luego al intentar reingresar solo como invitado me sale el siguiente error

    Bad Request - Invalid Verb

    HTTP Error 400. The request verb is invalid.

    No se si está relacionado con el virus.

    Gracias
  16. Kbite

    Kbite Administrador Administrador

    Hola cehdmoy.

    Desde luego no es problema de virus ya que, buscando más información en el red, son bastantes los usurarios con este problema y la solución más aceptable es la que da Microsoft:

    FIX: Http.sys rejects requests that contain separator characters

    Incluso en ocasiones se ha visto que algún programa de seguridad recién instalado podría producir el error, piensa si instalaste alguno antes de la incidencia y de ser así lo desinstalas para probar.

    Saludos. Kbite
  17. cehdmoy

    cehdmoy Nuevo Miembro Miembro

    Entonces si es problema del soporte de Microsoft agradezco nuevamente su ayuda, y pueden cerrar el tema, añadiendo que nuevamente les doy las gracias ;)
Estado del tema:
No está abierto para más respuestas.

Comparte esta página