Solucionado mi log

Estado
Cerrado para nuevas respuestas

Athalberht

Miembro
Miembro
Llevo un par de días que el ordenador no va muy bien. Os dejo mi log por si tuviera algo extraño en el ordenador. Un saludo
Insertar CODE, HTML o PHP:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:07:22, on 27/05/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\ATHALB~1\AppData\Local\Temp\210570.Uninstall\uninstaller.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.fr - Actualités, magazines people & féminin, Outlook et Hotmail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.fr - Actualités, magazines people & féminin, Outlook et Hotmail
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Añadir a TOSHIBA Bulletin Board - res://C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-229 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-228 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Servicio Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Servicio de Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 25327 bytes
 

Kbite

Aprender y compartir
Administrador
Hola Athalberht.

Cuando dices que no te va muy bien ¿a que te refieres, a lentitud, a errores?.

Sigue todos estos pasos previos y en tu respuesta nos dejas todos los informes incluído un nuevo log de HijackThis:

Utiliza esta herramienta para limpiar los navegadoresy nos dejas su informe: AdwCleaner

https://www.trucoswindows.net/forowindows/temas/consejos-antes-de-pegar-su-log-de-hijackthis.89435/

En el log se ven dos entradas 015 que son "Sitios de confianza" en I. Explorer ¿lo configuraste tu así?:

O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
Saludos, Kbite
 

Athalberht

Miembro
Miembro
Hola Kbite, gracias por tu respuesta. Te comento, desde hace unos días me pasa que el disco duro se pone a funcionar y no para de hacerlo (el indicador led está constantemente encendido) hasta que llega un momento que se bloquea todo el sistema: no puedo minimizar, no puedo acceder a la barra de tareas, no se mueve el cursor del ratón... Había pensado que podría ser algún tipo de malware o similar porque recientemente he instalado algún programa descargado de internet y, sin darme cuenta, no deseleccioné las opciones de instalar la propaganda que les acompaña. Por eso pensaba que podría ser esto el causante del problema, aunque luego las he desinstalado, pero quizás no lo haya hecho bien; por eso lo del log éste.

En cuanto a las entradas O15 que comentas... en realidad si qué configuré algúnos sitios como seguros hace tiempo, pero no recuerdo ya qué son, y cuando he intentado acceder a ellos desde la ip no me lo ha permitido. Así que no puedo verificarte que los añadiese yo.

En breve añado los logs que me pides.

Un saludo.
 

Athalberht

Miembro
Miembro
Dejo los diferentes logs.

Log de adwcleaner:
Insertar CODE, HTML o PHP:
# AdwCleaner v2.301 - Fichero creado el 28/05/2013 a 13:16:07
# Actualizado el 16/05/2013 por Xplode
# Sistema operativo : Windows 7 Home Premium Service Pack 1 (64 bits)
# Usuario : Athalberht - ATHALBERHT-TOSH
# Modo de inicio : Normal
# Ejecutado desde : C:\Users\Athalberht\Desktop\adwcleaner.exe
# Opción [Supresión]

***** [Servicios] *****

***** [Ficheros / Carpetas] *****

Carpeta Suprimido : C:\Program Files (x86)\yourfiledownloader
Carpeta Suprimido : C:\ProgramData\Tarma Installer
Carpeta Suprimido : C:\Users\Athalberht\AppData\Local\APN
Carpeta Suprimido : C:\Users\Athalberht\AppData\Roaming\yourfiledownloader

***** [Registro] *****

Clave Supprimida : HKCU\Software\IGearSettings
Clave Supprimida : HKCU\Software\InstallCore
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Clave Supprimida : HKCU\Software\Softonic
Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Clave Supprimida : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Clave Supprimida : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Clave Supprimida : HKLM\SOFTWARE\Software
Clave Supprimida : HKLM\SOFTWARE\Tarma Installer

***** [Navegadores] *****

-\\ Internet Explorer v10.0.9200.16576

[OK] El registro no contiene ninguna entrada ilegítima.

-\\ Google Chrome v27.0.1453.94

Fichero : C:\Users\Athalberht\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] El fichero no contiene ninguna entrada ilegítima.

*************************

AdwCleaner[R1].txt - [2287 octets] - [28/05/2013 13:15:12]
AdwCleaner[S1].txt - [2263 octets] - [28/05/2013 13:16:07]

########## EOF - C:\AdwCleaner[S1].txt - [2323 octets] ##########
Log de Malwarebytes
Insertar CODE, HTML o PHP:
Malwarebytes Anti-Malware 1.75.0.1300
Malwarebytes : Free anti-malware download

Versión de la Base de Datos: v2013.05.28.02

Windows 7 Service Pack 1 x64 NTFS (Modo Seguro/Red)
Internet Explorer 10.0.9200.16576
Athalberht :: ATHALBERHT-TOSH [administrador]

28/05/2013 13:58:15
mbam-log-2013-05-28 (13-58-15).txt

Tipos de Análisis: Análisis Completo (C:\|D:\|)
Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opciones de análisis desactivados: P2P
Objetos examinados: 430278
Tiempo transcurrido: 52 minuto(s), 22 segundo(s)

Procesos en Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Módulos de Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Claves del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Valores del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Elementos de Datos del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Carpetas Detectadas: 0
(No se han detectado elementos maliciosos)

Archivos Detectados: 3
C:\Windows\KMService.exe (RiskWare.Tool.CK) -> En cuarentena y eliminado con éxito.
D:\emule\Incoming\Lana Del Rey - Born To Die (Deluxe Edition) {256 kbps}.rar (Backdoor.Bot) -> En cuarentena y eliminado con éxito.
D:\emule\Incoming\Lana Del Rey - Video Games - EP.rar (Backdoor.Bot) -> En cuarentena y eliminado con éxito.

fin)

El bitdefender no ha encontrado nada.

Log de Hijackthis:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:25:53, on 28/05/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.fr - Actualités, magazines people & féminin, Outlook et Hotmail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.fr - Actualités, magazines people & féminin, Outlook et Hotmail
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Añadir a TOSHIBA Bulletin Board - res://C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-229 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-228 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (Bitdefender QuickScan Control) - http://quickscan.bitdefender.com/qsax/qsax.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Servicio Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Servicio de Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 25820 bytes
 

Kbite

Aprender y compartir
Administrador
Hola Athalberht.

Según el log no veo causa para lo que te ocurre con el disco duro ya que está limpio, vamos a hacer unas comprobaciones para ver el estado de ese disco.

Reinicia en Modo seguro con funciones de red, ahora navega y trabaja un poco por el sistema y la red, a ver si te sucede lo mismo con el disco ya que así no habrá nada ajeno a Windows que esté en ejecución.

Descarga y utiliza esta herramienta gratuita para comprobar el estado de salud de tu disco duro, en ocasiones un disco con problemas da esos síntomas: CrystalDiskInfo y nos dices si te aparece el Estado: Bueno.

El archivo que eliminó "Malwarebytes":

C:\Windows\KMService.exe (RiskWare.Tool.CK) -> En cuarentena y eliminado con éxito.
..... lo devuelves a su lugar desde la carpeta de la Cuarentena, lo seleccionas y clic en Restaurar. (Se trata del activador del Office 2010 ) Lo puedes incluir en la Lista de ignorados para que no te lo detecte más.

Desinstala, al menos de momento, el Spybot Search & Destroy, ya lo instalarás si no tuviese nada que ver con el problema.

Las entradas 015 las eliminas, si no sabes exactamente que son mejor borrarlas, es algo que de hacerte falta podrás volver a configurar, pero evitamos riesgos:

○» Cierra todas las aplicaciones.

○» Ejecuta el HijackThis y da clic en el botón Do a system scan only

○» Selecciona las casillas de las siguientes entradas y presiona el botón Fix Checked:

O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
○» Reinicia tu sistema operativo normalmente.

En tu respuesta nos dejas un nuevo log de HijackThis, noticias sobre el estado de salud de tu disco y si el problema continúa en Modo seguro o se solucionó el problema.

Saludos, Kbite
 

Athalberht

Miembro
Miembro
Hola de nuevo. El funcionamiento en modo seguro no es correcto. No ha llegado a colgarse como en modo normal, pero todo va lentísimo: le cuesta abrirse a los programas, le cuesta aparecer a la barra de inicio, con cualquier acción se queda mucho rato pensando.

Diagnóstico del disco duro:
Insertar CODE, HTML o PHP:
----------------------------------------------------------------------------
CrystalDiskInfo 5.6.2 Shizuku Edition (C) 2008-2013 hiyohiyo
                                Crystal Dew World : Crystal Dew World
----------------------------------------------------------------------------

    OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x64)
  Date : 2013/05/28 17:03:19

-- Controller Map ----------------------------------------------------------
 + Intel(R) Mobile Express Chipset SATA AHCI Controller [ATA]
   - Hitachi HTS545050B9A300
   - TSSTcorp CDDVDW TS-L633F

-- Disk List ---------------------------------------------------------------
 (1) Hitachi HTS545050B9A300 : 500,1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
 (1) Hitachi HTS545050B9A300
----------------------------------------------------------------------------
           Model : Hitachi HTS545050B9A300
        Firmware : PB4OC64G
   Serial Number : 110418PBN403172RGP0E
       Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
     Buffer Size : 7208 KB
     Queue Depth : 32
    # of Sectors : 976773168
   Rotation Rate : 5400 RPM
       Interface : Serial ATA
   Major Version : ATA8-ACS
   Minor Version : ATA8-ACS versión 6
   Transfer Mode : SATA/300
  Power On Hours : 6061 horas
  Power On Count : 2200 veces
     Temparature : 37 C (98 F)
   Health Status : Bueno
        Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
       APM Level : 4080h [ON]
       AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Tasa de errores de lectura
02 100 100 _40 000000000000 Rendimiento
03 142 142 _33 001600000002 Tiempo de arranque
04 _99 _99 __0 000000000901 Nº de ciclos de arranque/parada
05 100 100 __5 000000000000 Nº de sectores reasignados
07 100 100 _67 000000000000 Tasa de errores de búsqueda
08 100 100 _40 000000000000 Rendimiento del tiempo de búsqueda
09 _87 _87 __0 0000000017AD Horas encendido
0A 100 100 _60 000000000000 Nº de reintentos de giro
0C _99 _99 __0 000000000898 Nº de ciclos de encendido del dispositivo
BF 100 100 __0 000000000000 Tasa de errores G-Sense
C0 100 100 __0 000000000025 Nº apagados del dispositivo
C1 _87 _87 __0 000000021F02 Nº de ciclos carga/descarga
C2 148 148 __0 002C000B0025 Temperatura
C4 100 100 __0 000000000000 Nº de eventos de recolocación
C5 100 100 __0 000000000000 Nº de sectores pendientes
C6 100 100 __0 000000000000 Nº de sectores no corregibles
C7 200 200 __0 000000000000 Número de errores CRC UltraDMA
DF 100 100 __0 000000000000 Número de cargas/descargas

-- IDENTIFY_DEVICE ---------------------------------------------------------
        0    1    2    3    4    5    6    7    8    9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 3131 3034 3138 5042 4E34 3033 3137 3252 4750 3045
020: 0003 3850 0004 5042 344F 4336 3447 4869 7461 6368
030: 6920 4854 5335 3435 3035 3042 3941 3330 3020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 0F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 005E 004C
080: 01FC 0028 746B 7F69 6163 7469 BC49 6163 407F 004E
090: 004F 4080 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 0000 8848 5000 CCA5
110: F6E6 6645 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 000B
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 4001 0000
150: 8000 0000 3454 0000 0000 8172 6381 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 02C7 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 93A5

-- SMART_READ_DATA ---------------------------------------------------------
     +0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 07 00 8E 8E 02
020: 00 00 00 16 00 00 04 12 00 63 63 01 09 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 12 00 57 57 AD 17 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 63 63 98 08 00 00 00 00 00 BF 0A 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 25 00 00 00 00
090: 00 00 C1 12 00 57 57 02 1F 02 00 00 00 00 C2 02
0A0: 00 94 94 25 00 0B 00 2C 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 22 00 64 64 00 00 00 00 00
0C0: 00 00 C6 08 00 64 64 00 00 00 00 00 00 00 C7 0A
0D0: 00 C8 C8 00 00 00 00 00 00 00 DF 0A 00 64 64 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 85 02 01 5B
170: 03 00 01 00 02 9E 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 6C

-- SMART_READ_THRESHOLD ----------------------------------------------------
     +0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DF 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 89
Log hijackthis:
Insertar CODE, HTML o PHP:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:18:08, on 28/05/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.fr - Actualités, magazines people & féminin, Outlook et Hotmail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.fr - Actualités, magazines people & féminin, Outlook et Hotmail
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Añadir a TOSHIBA Bulletin Board - res://C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-229 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-228 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (Bitdefender QuickScan Control) - http://quickscan.bitdefender.com/qsax/qsax.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Servicio Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Servicio de Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 24906 bytes
 

Kbite

Aprender y compartir
Administrador
Hola Athalberht.

El estado del disco es: Health Status : Bueno. En el log no se aprecia nada anormal por lo que emplearemos otra herramienta para ver si algo malicioso se detecta:

* Descarga la utilidad ComboFix
Descargar Herramienta Combofix.exe | Seguridad - Herramienta seguridad

* Desactiva temporalmente el Antivirus y/o Antispyware.
* Cierra todas las ventanas abiertas.

*Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
*Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.

* Ejecuta ComboFix.exe para iniciar el programa.

* Se abrirá la ventana del programa en modo MS-DOS. Pulsa inmediatamente la tecla "Y" (Yes) y después sobre ENTER para iniciar el proceso de detección y limpieza.

* Los iconos del Escritorio desaparecerán (esto es normal) y aparecerá el mensaje "Performing a scan of your machine".

* A continuación, aparecerá el mensaje "Preparing a log report" "This takes a while. So, please be patient".

* Seguidamente, aparecerán los mensajes "Almost done..." "A report of Combofix's actions would be produced at C:\Combofix.txt".

* Se paciente y espera a que la ventana del programa se cierre sola y se muestre el archivo C:\Combofix.txt. Los iconos del Escritorio volverán a su sitio sin necesidad de tener que reiniciar el PC.

* Por último, el informe combofix.txt mostrará los archivos detectados y eliminados, ese reporte lo pegas en tu respuesta. Cuando terminemos te daré indicaciones concretas para desinstalar el ComboFix.

Saludos. Kbite
 

Athalberht

Miembro
Miembro
Como dato curioso, he intentado jugar al Tomb Raider 2013, y durante la partida el ordenador ha ido muy bien, como si no tuviera ningún problema. Acabo de salir del juego y de momento vuelve a ir bien.

Voy a hacer lo del combofix.
 

Athalberht

Miembro
Miembro
ComboFix:
Insertar CODE, HTML o PHP:
ComboFix 13-05-28.02 - Athalberht 28/05/2013  19:10:14.2.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.34.3082.18.4078.3097 [GMT 2:00]
Running from: c:\users\Athalberht\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Naver
c:\program files (x86)\Naver\LINE\amp-dll.dll
c:\program files (x86)\Naver\LINE\CommLib.dll
c:\program files (x86)\Naver\LINE\CommModule.dll
c:\program files (x86)\Naver\LINE\DataModule.dll
c:\program files (x86)\Naver\LINE\dbghelp.dll
c:\program files (x86)\Naver\LINE\Line.exe
c:\program files (x86)\Naver\LINE\LineAppMgr.exe
c:\program files (x86)\Naver\LINE\LineUnInst.exe
c:\program files (x86)\Naver\LINE\LineUpgrader.exe
c:\program files (x86)\Naver\LINE\MediaInfo.dll
c:\program files (x86)\Naver\LINE\Microsoft.VC90.CRT.manifest
c:\program files (x86)\Naver\LINE\msvcp90.dll
c:\program files (x86)\Naver\LINE\msvcr90.dll
c:\program files (x86)\Naver\LINE\NELO.dll
c:\program files (x86)\Naver\LINE\NELO_CrashReporter.exe
c:\program files (x86)\Naver\LINE\README.license
c:\program files (x86)\Naver\LINE\res\locale\en-US\buddy.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\chatRoom.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\common.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\group.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\invite.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\login.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\menu.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\msgbox.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\setting.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\sticker.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\talk.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\upgrader.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\upic.xml
c:\program files (x86)\Naver\LINE\res\locale\en-US\voip.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\buddy.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\chatRoom.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\common.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\group.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\invite.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\login.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\menu.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\msgbox.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\setting.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\sticker.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\talk.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\upgrader.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\upic.xml
c:\program files (x86)\Naver\LINE\res\locale\ja-JP\voip.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\buddy.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\chatRoom.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\common.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\group.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\invite.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\login.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\menu.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\msgbox.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\setting.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\sticker.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\talk.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\upgrader.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\upic.xml
c:\program files (x86)\Naver\LINE\res\locale\ko-KR\voip.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\buddy.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\chatRoom.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\common.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\group.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\invite.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\login.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\menu.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\msgbox.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\setting.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\sticker.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\talk.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\upgrader.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\upic.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-CN\voip.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\buddy.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\chatRoom.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\common.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\group.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\invite.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\login.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\menu.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\msgbox.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\setting.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\sticker.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\talk.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\upgrader.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\upic.xml
c:\program files (x86)\Naver\LINE\res\locale\zh-TW\voip.xml
c:\program files (x86)\Naver\LINE\res\skin\basic\about.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\buddyInfo.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\chatMember.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\chatRoom.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\css\buddyInfo.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\chatMember.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\chatRoom.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\chatRoomMessage.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\common.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\emoji.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\emojiIcon.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\emojiLetter.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\groupMake.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\groupModify.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\invite.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\login.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\loginHelp.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\makeGroup.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\myInfo.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\setting.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\settingBasic.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\settingPrivacy.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\sticker.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\talk.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\talkAddBuddy.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\talkBuddyList.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\talkChatList.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\toast.css
c:\program files (x86)\Naver\LINE\res\skin\basic\css\voip.css
c:\program files (x86)\Naver\LINE\res\skin\basic\emoji.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\emojiIcon.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\emojiLetter.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\groupMake.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\groupModify.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_audio.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_btn_box.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_bubble_gray.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_bubble_gray2.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_image_frame.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_video.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_call.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_date_bubble.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_img_err.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_layer.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_menu_line.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_more.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_bubble_green.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_bubble_green2.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_bubble_light_green.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_image_frame.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_video.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_new_buddy.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_sep.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_splitter.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_top.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_video.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_btm_l.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_btm_m.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_btm_r.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_line.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_top_l.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_top_r.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_addblock.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_arrow_down.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_canel.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_chat_type1.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_close.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_emoji.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_file.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_max.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_menu.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_min.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_room_name.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style1.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style2.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style3.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style3_x.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style3_xx.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\flag.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_alarm_off.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_error_sticker.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_fail.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_person.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\icon_voip.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\icon_voip_disable.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\loading.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\loading_small.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\nick_bubble_l.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\nick_bubble_m.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\nick_bubble_r.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\slider_bar.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\slider_thumb.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\thumnail_box.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\bar_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\bar_02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\bg_dlg_title.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_btm_l.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_btm_r.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_line.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_top_l.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_top_r.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_close_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_close_02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_system.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_type1.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_type2.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_type3.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_update.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\check_type1.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\checkbox_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\ico_close.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\ico_dot01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\ico_return.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\icon_clear.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\input_box.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close_all.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close_click.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close_over.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_search_1.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\Line.ico
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\line_about.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\line_about_btn.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\loading.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\profile_frame.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\spin_down.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\spin_up.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_03.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_04.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_05.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\bg_tab.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_icon_bg.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_index.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_latest.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_left.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_letter.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_right.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_sticker_arrow1.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_sticker_arrow2.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\emoji_bottom.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\emoji_select.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\emoji_top_bg.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\select_emoticon.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\select_kaomoji.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\select_sticker.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\stiker_btn_bg.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\bg_add_profile_frame.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\bg_teamlayer_top_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_plus_02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_radio_off_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_radio_on_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_cancel_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_invite_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_make_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_member_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_no_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_save_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_talk_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_write_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_yes_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\check_style1.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\check_style3.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\group_edit_select.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_close.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_login.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_max.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_min.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_qrcode_refresh.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\01_main.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\02_email.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\03_qr01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\04_qr02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\btn_login.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\btn_qrcode.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ico_q.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ico_step01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ico_step02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\01_main.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\02_email.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\03_jp_main.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\04_jp_setting.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\05_app_qr01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\06_app_qr02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\07_wap_qr01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\08_wap_qr02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\btn_login.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\btn_qrcode.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\01_main.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\02_email.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\03_naver.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\04_qr01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\05_qr02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\btn_international.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\btn_login.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\btn_qrcode.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\line_logo.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bg1.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bg2.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_btm.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bullet.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bullet2.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_line.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_qrcode.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\01_main.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\02_email.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\03_qr01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\04_qr02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\btn_login.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\btn_qrcode.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\01_main.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\02_email.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\03_qr01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\04_qr02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\btn_login.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\btn_qrcode.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_bottom_l.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_bottom_m.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_bottom_r.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_check.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_middle_l.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_middle_r.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_top_l.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_top_m.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_top_r.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_uncheck.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_big.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_group.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_group_big.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_makegroup.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\list_img_default.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\list_img_default_group.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\list_img_default_makegroup.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_btm.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_line.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_top.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_topleft.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_topright.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\btn_block_user.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\btn_select.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\ico_arrow.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\layer_btn_close_all.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\tab_bg.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_badge.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_subpanel.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_tab.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_top.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_add_friend.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_chat.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_close.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_list_option.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_max.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_menu.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_min.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_top_friendtalk_01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\check_addbuddy.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\check_group_show.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\group_member_count_bg.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\ico_tab01.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\ico_tab02.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\ico_tab03.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\icon_search.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\img_no_data_1.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\img_no_data_2.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\img_no_data_3.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\input_cursor.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\list_tab_bar.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\nick_bubble_l.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\nick_bubble_m.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\nick_bubble_r.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\status_bg.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_bg.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_btn_call_accept.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_btn_call_bg.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_btn_call_refuse.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_close.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_icon_call_accept.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_icon_call_refuse.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\line_off.ico
c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\tray_icon_new.ico
c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\tray_icon_offline.ico
c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\tray_icon_online.ico
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_call_accept.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_call_refuse.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_mic.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_mic_dim.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol_dim.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol_gray.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol_green.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_win_btn.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_win_thumnail_110.png
c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_win_thumnail_bg.png
c:\program files (x86)\Naver\LINE\res\skin\basic\invite.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\login.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\loginHelp.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\loginKickout.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\macUpgradeNotice.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\myInfo.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\notice.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\picturePopup.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\QRCodeHelp.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\setting.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\settingBasic.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\settingPrivacy.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\skinMsgBox.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\sticker.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\talk.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\talkAddBuddy.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\talkBuddyList.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\talkChatList.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\test.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\toast.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\uploadPicture.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\voip.nxul
c:\program files (x86)\Naver\LINE\res\skin\basic\windowPositionHelperTester.nxul
c:\program files (x86)\Naver\LINE\res\skin\emoji\emoji_facemark.csv
c:\program files (x86)\Naver\LINE\res\skin\emoji\emoji_icon.csv
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_001.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_002.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_003.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_004.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_005.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_006.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_007.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_008.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_009.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_01s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_02s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_03s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_04s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_05s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_06s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_07s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_08s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_09s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_10s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_11s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_12s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_13s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_14s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_15s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_16s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_17s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_18s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_19s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_20s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_21s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_01s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_02s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_03s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_04s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_05s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_06s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_07s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_08s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_09s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_10s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_11s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_12s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_01s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_02s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_03s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_04s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_05s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_06s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_07s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_08s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_09s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_10s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_11s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_12s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_13s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_01s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_02s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_03s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_04s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_05s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_06s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_07s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_08s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_09s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_10s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_11s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_12s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_13s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_14s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_15s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_01s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_02s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_03s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_04s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_05s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_06s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_07s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_08s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_09s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_10s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_11s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_12s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_13s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_14s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_15s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_16s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_17s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_18s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_19s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_20s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_21s.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_01.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_02.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_03.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_04.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_05.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_06.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_07.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_08.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_09.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_10.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_11.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_12.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_13.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_14.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_15.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_16.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_17.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_18.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_19.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_20.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_21.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_01.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_02.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_03.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_04.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_05.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_06.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_07.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_08.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_09.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_10.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_11.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_12.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_13.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_14.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_15.png
c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_16.png
c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_1.png
c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_2.png
c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_3.png
c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_4.png
c:\program files (x86)\Naver\LINE\res\skin\sticker\tab\tab00_off.png
c:\program files (x86)\Naver\LINE\res\skin\sticker\tab\tab00_on.png
c:\program files (x86)\Naver\LINE\res\sounds\Bell.wav
c:\program files (x86)\Naver\LINE\res\sounds\VoipEnd.wav
c:\program files (x86)\Naver\LINE\res\sounds\VoipRing.wav
c:\program files (x86)\Naver\LINE\res\sounds\VoipRingback.wav
D:\install.exe
.
.
(((((((((((((((((((((((((   Files Created from 2013-04-28 to 2013-05-28  )))))))))))))))))))))))))))))))
.
.
2013-05-28 15:00 . 2013-05-28 15:01    --------    d-----w-    c:\program files (x86)\CrystalDiskInfo
2013-05-28 14:59 . 2013-05-28 14:59    151552    ----a-w-    c:\windows\KMService.exe
2013-05-28 11:30 . 2013-05-13 06:37    9460464    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{05D596A8-957A-4A19-A545-8C3DD297F703}\mpengine.dll
2013-05-28 11:20 . 2013-05-28 11:21    --------    d-----w-    c:\program files\AdwCleaner
2013-05-27 11:19 . 2013-05-27 11:26    --------    d-----w-    c:\users\Athalberht\AppData\Roaming\UDC Profiles
2013-05-27 11:13 . 2013-05-27 11:18    --------    d-----w-    c:\users\Athalberht\AppData\Roaming\PrintConductor
2013-05-25 16:15 . 2013-05-25 16:15    --------    d-----w-    c:\users\Athalberht\AppData\Roaming\XnConvert
2013-05-25 16:12 . 2013-05-25 16:13    --------    d-----w-    c:\program files\XnConvert
2013-05-25 16:11 . 2013-05-25 16:11    69632    ----a-r-    c:\users\Athalberht\AppData\Roaming\Microsoft\Installer\{89505A66-35F0-4401-B3AD-D077051F8698}\ARPPRODUCTICON.exe
2013-05-25 16:11 . 2013-05-25 16:11    49152    ----a-r-    c:\users\Athalberht\AppData\Roaming\Microsoft\Installer\{89505A66-35F0-4401-B3AD-D077051F8698}\UNINST_Uninstall_Q_336D8C9DB2424DE5BC518E574B25652F.exe
2013-05-25 16:11 . 2013-05-25 16:11    --------    d-----w-    c:\users\Athalberht\AppData\Local\Downloaded Installations
2013-05-25 16:09 . 2013-05-25 16:09    --------    d-----w-    c:\users\Athalberht\AppData\Roaming\DSite
2013-05-20 19:50 . 2013-05-20 19:50    --------    d-----w-    c:\program files (x86)\NVIDIA Corporation
2013-05-20 19:50 . 2013-05-20 19:50    --------    d-----w-    c:\program files (x86)\AGEIA Technologies
2013-05-20 19:46 . 2013-05-20 19:46    --------    d-----w-    C:\NVIDIA
2013-05-20 12:42 . 2013-05-20 12:42    --------    d-----w-    c:\program files (x86)\SQUARE ENIX
2013-05-20 12:42 . 2013-05-20 12:42    --------    d-----w-    c:\users\Athalberht\AppData\Local\Programs
2013-05-17 08:51 . 2013-05-17 08:51    --------    d-----w-    c:\users\Athalberht\AppData\Local\Chromium
2013-05-17 08:49 . 2013-05-17 08:49    --------    d-----w-    c:\users\Athalberht\AppData\Roaming\Sports Interactive
2013-05-17 08:49 . 2013-05-17 08:49    --------    d-----w-    c:\users\Athalberht\AppData\Local\Sports Interactive
2013-05-15 10:25 . 2013-02-27 05:52    14172672    ----a-w-    c:\windows\system32\shell32.dll
2013-05-07 15:49 . 2013-05-07 15:52    --------    d-----w-    c:\users\Athalberht\AppData\Roaming\Jitsi
2013-05-07 15:38 . 2013-05-07 15:39    --------    d-----w-    c:\program files (x86)\GTK2-Runtime
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 10:43 . 2013-02-19 13:00    692104    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-15 10:43 . 2011-12-02 10:09    71048    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-15 10:35 . 2011-09-09 19:37    75016696    ----a-w-    c:\windows\system32\MRT.exe
2013-05-09 08:59 . 2013-03-14 10:09    65336    ----a-w-    c:\windows\system32\drivers\aswRvrt.sys
2013-05-09 08:59 . 2013-03-14 10:09    189936    ----a-w-    c:\windows\system32\drivers\aswVmm.sys
2013-05-09 08:59 . 2012-04-23 17:05    378432    ----a-w-    c:\windows\system32\drivers\aswSP.sys
2013-05-09 08:59 . 2012-04-23 17:05    72016    ----a-w-    c:\windows\system32\drivers\aswRdr2.sys
2013-05-09 08:59 . 2012-04-23 17:04    64288    ----a-w-    c:\windows\system32\drivers\aswTdi.sys
2013-05-09 08:59 . 2012-04-23 17:04    1025808    ----a-w-    c:\windows\system32\drivers\aswSnx.sys
2013-05-09 08:59 . 2012-04-23 17:05    33400    ----a-w-    c:\windows\system32\drivers\aswFsBlk.sys
2013-05-09 08:59 . 2012-04-23 17:04    80816    ----a-w-    c:\windows\system32\drivers\aswMonFlt.sys
2013-05-09 08:58 . 2012-04-23 17:04    41664    ----a-w-    c:\windows\avastSS.scr
2013-05-09 08:58 . 2011-09-08 21:45    287840    ----a-w-    c:\windows\system32\aswBoot.exe
2013-05-09 08:41 . 2010-06-24 09:33    22240    ----a-w-    c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-02 00:06 . 2010-11-21 03:27    278800    ------w-    c:\windows\system32\MpSigStub.exe
2013-04-13 05:49 . 2013-05-15 10:25    135168    ----a-w-    c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 10:25    350208    ----a-w-    c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 10:25    308736    ----a-w-    c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 10:25    111104    ----a-w-    c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 10:25    474624    ----a-w-    c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 10:25    2176512    ----a-w-    c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 08:57    1656680    ----a-w-    c:\windows\system32\drivers\ntfs.sys
2013-04-04 12:50 . 2012-04-04 17:20    25928    ----a-w-    c:\windows\system32\drivers\mbam.sys
2013-04-04 03:35 . 2013-04-19 19:01    95648    ----a-w-    c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-19 06:04 . 2013-04-10 12:09    5550424    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 12:09    43520    ----a-w-    c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 12:09    3968856    ----a-w-    c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 12:09    3913560    ----a-w-    c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 12:09    6656    ----a-w-    c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 12:09    112640    ----a-w-    c:\windows\system32\smss.exe
2013-03-15 05:53 . 2011-07-22 07:24    2864144    ----a-w-    c:\windows\system32\nvapi64.dll
2013-03-15 05:53 . 2011-07-22 07:24    15508512    ----a-w-    c:\windows\system32\nvwgf2umx.dll
2013-03-15 05:53 . 2011-07-22 07:24    15042928    ----a-w-    c:\windows\SysWow64\nvd3dum.dll
2013-03-15 04:16 . 2011-01-16 04:29    3477280    ----a-w-    c:\windows\system32\nvsvc64.dll
2013-03-15 04:16 . 2011-01-16 04:30    6398240    ----a-w-    c:\windows\system32\nvcpl.dll
2013-03-15 04:16 . 2011-01-16 04:30    237856    ----a-w-    c:\windows\system32\nvmctray.dll
2013-03-15 04:16 . 2011-01-16 04:30    877856    ----a-w-    c:\windows\system32\nvvsvc.exe
2013-03-15 04:16 . 2011-01-16 04:30    63776    ----a-w-    c:\windows\system32\nvshext.dll
2013-03-15 04:16 . 2011-01-16 04:30    2555680    ----a-w-    c:\windows\system32\nvsvcr.dll
2013-03-13 11:02 . 2013-03-13 11:02    97280    ----a-w-    c:\windows\system32\mshtmled.dll
2013-03-13 11:02 . 2013-03-13 11:02    92160    ----a-w-    c:\windows\system32\SetIEInstalledDate.exe
2013-03-13 11:02 . 2013-03-13 11:02    905728    ----a-w-    c:\windows\system32\mshtmlmedia.dll
2013-03-13 11:02 . 2013-03-13 11:02    81408    ----a-w-    c:\windows\system32\icardie.dll
2013-03-13 11:02 . 2013-03-13 11:02    77312    ----a-w-    c:\windows\system32\tdc.ocx
2013-03-13 11:02 . 2013-03-13 11:02    762368    ----a-w-    c:\windows\system32\ieapfltr.dll
2013-03-13 11:02 . 2013-03-13 11:02    73728    ----a-w-    c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-13 11:02 . 2013-03-13 11:02    719360    ----a-w-    c:\windows\SysWow64\mshtmlmedia.dll
2013-03-13 11:02 . 2013-03-13 11:02    62976    ----a-w-    c:\windows\system32\pngfilt.dll
2013-03-13 11:02 . 2013-03-13 11:02    61952    ----a-w-    c:\windows\SysWow64\tdc.ocx
2013-03-13 11:02 . 2013-03-13 11:02    599552    ----a-w-    c:\windows\system32\vbscript.dll
2013-03-13 11:02 . 2013-03-13 11:02    523264    ----a-w-    c:\windows\SysWow64\vbscript.dll
2013-03-13 11:02 . 2013-03-13 11:02    52224    ----a-w-    c:\windows\system32\msfeedsbs.dll
2013-03-13 11:02 . 2013-03-13 11:02    51200    ----a-w-    c:\windows\system32\imgutil.dll
2013-03-13 11:02 . 2013-03-13 11:02    48640    ----a-w-    c:\windows\SysWow64\mshtmler.dll
2013-03-13 11:02 . 2013-03-13 11:02    48640    ----a-w-    c:\windows\system32\mshtmler.dll
2013-03-13 11:02 . 2013-03-13 11:02    452096    ----a-w-    c:\windows\system32\dxtmsft.dll
2013-03-13 11:02 . 2013-03-13 11:02    441856    ----a-w-    c:\windows\system32\html.iec
2013-03-13 11:02 . 2013-03-13 11:02    38400    ----a-w-    c:\windows\SysWow64\imgutil.dll
2013-03-13 11:02 . 2013-03-13 11:02    361984    ----a-w-    c:\windows\SysWow64\html.iec
2013-03-13 11:02 . 2013-03-13 11:02    281600    ----a-w-    c:\windows\system32\dxtrans.dll
2013-03-13 11:02 . 2013-03-13 11:02    27648    ----a-w-    c:\windows\system32\licmgr10.dll
2013-03-13 11:02 . 2013-03-13 11:02    270848    ----a-w-    c:\windows\system32\iedkcs32.dll
2013-03-13 11:02 . 2013-03-13 11:02    247296    ----a-w-    c:\windows\system32\webcheck.dll
2013-03-13 11:02 . 2013-03-13 11:02    235008    ----a-w-    c:\windows\system32\url.dll
2013-03-13 11:02 . 2013-03-13 11:02    23040    ----a-w-    c:\windows\SysWow64\licmgr10.dll
2013-03-13 11:02 . 2013-03-13 11:02    226304    ----a-w-    c:\windows\system32\elshyph.dll
2013-03-13 11:02 . 2013-03-13 11:02    216064    ----a-w-    c:\windows\system32\msls31.dll
2013-03-13 11:02 . 2013-03-13 11:02    197120    ----a-w-    c:\windows\system32\msrating.dll
2013-03-13 11:02 . 2013-03-13 11:02    185344    ----a-w-    c:\windows\SysWow64\elshyph.dll
2013-03-13 11:02 . 2013-03-13 11:02    173568    ----a-w-    c:\windows\system32\ieUnatt.exe
2013-03-13 11:02 . 2013-03-13 11:02    167424    ----a-w-    c:\windows\system32\iexpress.exe
2013-03-13 11:02 . 2013-03-13 11:02    158720    ----a-w-    c:\windows\SysWow64\msls31.dll
2013-03-13 11:02 . 2013-03-13 11:02    1509376    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-03-13 11:02 . 2013-03-13 11:02    150528    ----a-w-    c:\windows\SysWow64\iexpress.exe
2013-03-13 11:02 . 2013-03-13 11:02    149504    ----a-w-    c:\windows\system32\occache.dll
2013-03-13 11:02 . 2013-03-13 11:02    144896    ----a-w-    c:\windows\system32\wextract.exe
2013-03-13 11:02 . 2013-03-13 11:02    1441280    ----a-w-    c:\windows\SysWow64\inetcpl.cpl
2013-03-13 11:02 . 2013-03-13 11:02    1400416    ----a-w-    c:\windows\system32\ieapfltr.dat
2013-03-13 11:02 . 2013-03-13 11:02    138752    ----a-w-    c:\windows\SysWow64\wextract.exe
2013-03-13 11:02 . 2013-03-13 11:02    13824    ----a-w-    c:\windows\system32\mshta.exe
2013-03-13 11:02 . 2013-03-13 11:02    137216    ----a-w-    c:\windows\SysWow64\ieUnatt.exe
2013-03-13 11:02 . 2013-03-13 11:02    136192    ----a-w-    c:\windows\system32\iepeers.dll
2013-03-13 11:02 . 2013-03-13 11:02    135680    ----a-w-    c:\windows\system32\IEAdvpack.dll
2013-03-13 11:02 . 2013-03-13 11:02    12800    ----a-w-    c:\windows\SysWow64\mshta.exe
2013-03-13 11:02 . 2013-03-13 11:02    12800    ----a-w-    c:\windows\system32\msfeedssync.exe
2013-03-13 11:02 . 2013-03-13 11:02    110592    ----a-w-    c:\windows\SysWow64\IEAdvpack.dll
2013-03-13 11:02 . 2013-03-13 11:02    1054720    ----a-w-    c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-13 11:02 . 2013-03-13 11:02    102912    ----a-w-    c:\windows\system32\inseng.dll
2013-03-11 11:11 . 2012-04-27 08:24    861088    ----a-w-    c:\windows\SysWow64\npDeployJava1.dll
2013-03-11 11:11 . 2011-05-06 06:14    782240    ----a-w-    c:\windows\SysWow64\deployJava1.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-04-19 18678376]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-1 481184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-12-01 250984]
R3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RTSUVSTOR.sys [2010-11-30 307304]
R3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\rtl8187.sys [2010-01-07 448512]
R3 S3XXx64;SCR3xx USB SmartCardReader64;c:\windows\system32\DRIVERS\S3XXx64.sys [2011-09-07 70016]
R3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [2011-02-10 112080]
R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2011-02-11 54136]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-12-08 137632]
R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [2010-12-20 822704]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-09-09 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-09-09 867824]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200]
S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
S2 KMService;KMService;c:\windows\system32\srvany.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe [2011-03-02 266680]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys [2009-06-19 14472]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-20 2656280]
S3 BtFilter;Bluetooth LowerFilter Class Filter Driver;c:\windows\system32\DRIVERS\btfilter.sys [2010-10-18 42096]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-11-08 76912]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys [2011-02-08 38096]
S3 QIOMem;Generic IO & Memory Access;c:\windows\system32\drivers\QIOMem.sys [2009-06-15 12800]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-05-25 14:26    1165776    ----a-w-    c:\program files (x86)\Google\Chrome\Application\27.0.1453.94\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-05-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-19 10:44]
.
2013-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-18 10:08]
.
2013-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-18 10:08]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58    133840    ----a-w-    c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2010-12-14 316032]
"TosVolRegulator"="c:\program files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe" [2009-11-11 24376]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &Enviar a OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Añadir a TOSHIBA Bulletin Board - c:\program files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000
IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 62.42.63.52 62.42.230.24
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-HSON - c:\program files (x86)\TOSHIBA\TBS\HSON.exe
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Edward Vella's Personaemicon 1.1.0 - c:\windows\system32\ss2uinst.exe
AddRemove-Edward Vella's Personaemicon 1.2.0 - c:\windows\system32\ss2uinst.exe
AddRemove-LINE - c:\program files (x86)\Naver\LINE\LineUnInst.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FaxCover.Document\shell]
@DACL=(02 0000)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-05-28  19:26:08
ComboFix-quarantined-files.txt  2013-05-28 17:26
.
Pre-Run: 97.000.841.216 bytes libres
Post-Run: 98.569.928.704 bytes libres
.
- - End Of File - - 64AE4EDAE25961A4D02E82DB9FD3AF29
 

Kbite

Aprender y compartir
Administrador
HolaAthalberht.

El "ComboFix" eliminó un largo listado de archivos, ahora vamos a desinstalarlo:Cómo desinstalar ComboFix

¿Cómo te va todo ahora? Comprueba si se solucionó el problema, de no ser así mira si tienes algún consumo más elevado de lo normal:

Clic derecho en la barra de tareas / Iniciar el Administrador de tareas / pestaña Procesos / en la parte inferior toma nota del Uso del CPU / así mismo busca en el listado de proceso si hay algúno que tiene un consumo anormal, si es así tomas nota, o bien haz un pantallazo de esa ventana y lo dejas todo en tu respuesta: Como capturar y subir una imagen al foro.

Recuerda que los juegos tienden a tener un consumo de recursos bastante alto.

Saludos, Kbite
 

Athalberht

Miembro
Miembro
Parece que todo vuelve a funcionar como al principio de momento. Muchas gracias. Sólo una pregunta: ¿porqué el combifix me ha borrado el line? Es un programa de mensajería intantánea tipo whatsapp que también se puede utilizar en el pc. ¿Tendré algún problema si lo vuelvo a intalar?

Gracias de nuevo.
 

Kbite

Aprender y compartir
Administrador
Hola Athalberht.

Te agradecería que nos confirmases si se te ha solucionado el problema para cerrar el hilo o necesitas algo más.

Sobre el Line, la verdad es que me extrañó que lo eliminase, parece ser que se trató de un "falso positivo" que detectan las herramientas de eliminación de vez en cuando, supongo que en breve será incorporado a la base de datos del ComboFix para evitarlo en un futuro, por lo que puedes instalarlo de nuevo sin problema ya que se trata de un software legal y limpio.

Saludos. Kbite
 

Athalberht

Miembro
Miembro
El ordenador vuelve a funcionar correctamente, los tiempos de espera parecen correctos y el disco duro no se queda "pensando" como antes, por lo que supongo que podéis cerrar el hilo. Tendré en cuenta lo del line.

Muchas gracias por tu ayuda Kbite. Un saludo.
 
Estado
Cerrado para nuevas respuestas
Arriba Pie