Pantalla azul al cerrarse Windows 7

Cerrado
gabrielfarinella
Novato
Novato
Mensajes: 9
Registrado: 02 Sep 2012, 20:04

Pantalla azul al cerrarse Windows 7

Mensaje por gabrielfarinella » 02 Sep 2012, 20:49

Buenas tardes:



Ante todo deseo agradecer a todos Uds por cualquier tipo de respuesta que me puedan llegar a dar.



Tengo un inconveniente desde hace un tiempo y el cual consiste en que cada vez que apago la laptop me tira una pantalla azul cuando se cierra Windows 7. Lo hace desde un tiempo y como solución habia resuelto hibernar siempre el sistema. Lo que sucede ahora es que quiero hacer un update del sistema y no llega a instalarse la actualización. Como lo puedo solucionar? Si abró a modo de prueba de fallos no hace el error.

Ya he corrido el ccleaner





Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 03:20:24 p.m., on 02/09/2012

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16447)

Boot mode: Normal



Running processes:

C:\Program Files\ltmoh\ltmoh.exe

C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

C:\ProgramData\DatacardService\DCSHelper.exe

C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.EXE

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Gabriel\Documents\Downloads\hijackthis\HijackThis.exe

C:\windows\SysWOW64\DllHost.exe

C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe



R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL

O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL

O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)

O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)

O4 - HKLM\..\Run: [TUSBSleepChargeSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe

O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60

O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe" UNATTENDED

O4 - HKLM\..\Run: [MobileConnect] %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent

O4 - HKLM\..\Run: [starter4g] C:\windows\starter4g.exe

O4 - HKLM\..\Run: [Meditel Imola ModemListener] C:\Program Files (x86)\HSPA USB MODEM\BackgroundService\ModemListener.exe start

O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [TfcRst] C:\Program Files\TOSHIBA\FlashCards\TfcRst.exe

O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\Gabriel\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Gabriel\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - Startup: Dropbox.lnk = Gabriel\AppData\Roaming\Dropbox\bin\Dropbox.exe

O4 - Startup: Recorte de pantalla y Selector de OneNote 2010.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: Descargar con Mipony - file://C:\Program Files (x86)\MiPony\Browser\IEContext.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html

O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Agregar entrada en Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Barra de búsqueda de Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files (x86)\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL

O9 - Extra button: Mostrar u ocultar HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/2.9.2.0/GarminAxControl.CAB

O16 - DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} (RIM AxLoader) - http://mobileapps.blackberry.com/devicesoftware/AxLoader.cab

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = fragata.ara.mil.ar

O17 - HKLM\System\CCS\Services\Tcpip\..\{27A7D36C-4878-4AE0-B42F-8E21791A41AA}: NameServer = 212.217.0.12 212.217.1.12

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = fragata.ara.mil.ar

O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = fragata.ara.mil.ar

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)

O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: Nalpeiron Licensing Service (ASTSRV) - Nalpeiron Ltd. - C:\windows\system32\ASTSRV.EXE

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe

O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\DfsdkS64.exe

O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: DIGITEL. OUC (DIGITEL. RunOuc) - Unknown owner - C:\Program Files\DIGITEL 3G\UpdateDog\ouc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\windows\ehome\ehRecvr.exe

O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\windows\ehome\ehsched.exe

O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: GenericMount Helper Service - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe

O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: hpqcxs08 - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: HP CUE DeviceDiscovery Service (hpqddsvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: HP Network Devices Support (HPSLPSVC) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe

O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: Internet Mobile. OUC (Internet Mobile. RunOuc) - Unknown owner - C:\Program Files (x86)\Internet Mobile\UpdateDog\ouc.exe

O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: KMService - Unknown owner - C:\Windows\System32\srvany.exe

O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

O23 - Service: Meditel Imola Modem Device Helper - Unknown owner - C:\Program Files (x86)\HSPA USB MODEM\BackgroundService\ServiceManager.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\windows\system32\msiexec.exe

O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: Net Driver HPZ12 - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: Nalpeiron Licensing Service 64-bit (nlsInterface) - Unknown owner - C:\windows\system32\nlsInterface.exe (file missing)

O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe

O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: NTI BackupNowEZSvr - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Backup Now EZ\BackupNowEZSvr.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)

O23 - Service: Peer Networking Identity Manager (p2pimsvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\windows\SysWow64\perfhost.exe

O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: PNRP Machine Name Publication Service (PNRPAutoReg) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: Peer Name Resolution Protocol (PNRPsvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: ProtexisLicensing - Unknown owner - C:\windows\SysWOW64\PSIService.exe

O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)

O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: TOSHIBA Modem region select service (RSELSVC) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\rselect\RSelSvc.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: SymSnapService - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe

O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: TOSHIBA HDD Protection (Thpsrv) - Unknown owner - C:\windows\system32\ThpSrv.exe (file missing)

O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)

O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe

O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\windows\servicing\TrustedInstaller.exe

O23 - Service: TVStickDriverLoader - Unknown owner - C:\windows\SysWOW64\TVStickDriverLoader.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)

O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)

O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe

O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\windows\system32\SearchIndexer.exe

O23 - Service: WTGService - Unknown owner - C:\Program Files (x86)\XSManager\WTGService.exe

O23 - Service: Windows Update (wuauserv) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\windows\system32\svchost.exe

O23 - Service: XS Stick Service - 4G Systems GmbH & Co. KG - C:\windows\service4g.exe



--

End of file - 31262 bytes

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 02 Sep 2012, 21:02

Pues pruebe el ELISTARA y nos postea el informe resultante:


[quote="para DESCARGAR el ELISTARA, msc"]



http://www.zonavirus.com/descargas/descargar-elistara.asp



Tras probarlo, reiniciar y postearnos el contenido de C:\infosat.txt para ver el

resultado

del proceso [/quote]




Y si en el informe no se detectara nada ni pidiera muestra para analizar, proceder

con el SPROCES :




[quote="msc"]
[b]SPROCES.EXE[/b] (herramienta de investigación)

http://www.zonavirus.com/descargas/descargar-sproces.asp



Y tras pulsar en SALIR, postearnos el contenido del C:\SPROCLOG.TXT [/quote]


lo analizaremos e informaremos al respecto.



saludos



ms, 2.9.2012

gabrielfarinella
Novato
Novato
Mensajes: 9
Registrado: 02 Sep 2012, 20:04

Re: Pantalla azul al cerrarse Windows 7

Mensaje por gabrielfarinella » 07 Sep 2012, 03:01

Hola que tal msc



bueno te paso a dar unos datos aparte de lo que me pediste entre otros datos la pantalla azul dice que





system_service_exception



STOP: 0X0000003B symsnop.sys adress FFFFF88001532 base at FFFFF88001527000 Datestamo 4ab000d3



y cuando se reinicia windows salta el block de notas con esta info









[.ShellClassInfo]

LocalizedResourceName=@%SystemRoot%\system32\shell32.dll,-21787









ok





lo que me pediste

infosat.txt









(10-2-2012 02:42:25 (GMT))

EliStartPage v24.84 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 9 de Febrero del 2012)

--------------------------------------------------

Usuario: Gabriel

ID de Usuario: S-1-5-21-3046285260-2274902619-2769343597-1001



Lista de Acciones (por Acción Directa):

Restaurado "Userinit"

[Userinit anterior] = "userinit.exe"

[Userinit actual] = "userinit.exe,"

Eliminadas las Paginas de Inicio y de Busqueda del IE

Eliminados Ficheros Temporales del IE



(10-2-2012 02:42:42 (GMT))

EliStartPage v24.84 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 9 de Febrero del 2012)

--------------------------------------------------

Usuario: Gabriel

ID de Usuario: S-1-5-21-3046285260-2274902619-2769343597-1001



Lista de Acciones (por Exploración):

Explorando "C:\"



Nº Total de Directorios: 65

Nº Total de Ficheros: 277

Nº de Ficheros Analizados: 75

Nº de Ficheros Infectados: 0

Nº de Ficheros Limpiados: 0

Exploración Detenida por el Usuario.



(10-2-2012 02:42:50 (GMT))

EliStartPage v24.84 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 9 de Febrero del 2012)

--------------------------------------------------

Usuario: Gabriel

ID de Usuario: S-1-5-21-3046285260-2274902619-2769343597-1001



Lista de Acciones (por Exploración):

Explorando "I:\"



Nº Total de Directorios: 1

Nº Total de Ficheros: 14

Nº de Ficheros Analizados: 1

Nº de Ficheros Infectados: 0

Nº de Ficheros Limpiados: 0



(10-2-2012 02:43:02 (GMT))

EliStartPage v24.84 (c)2012 S.G.H. / Satinfo S.L. (Actualizado el 9 de Febrero del 2012)

--------------------------------------------------

Usuario: Gabriel

ID de Usuario: S-1-5-21-3046285260-2274902619-2769343597-1001





Y respecto del Sproces 6.5 lo abro pero no genera el informe, que estoy haciendo mal?

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 07 Sep 2012, 10:09

Pues envianos este fichero para analizar:



C:\windows\system32\shell32.dll



y para generar el informe del SPROCES, tras lanzarlo, pulsa en SALIR





saludos



ms, 7-9-2012

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 07 Sep 2012, 10:09

Pues envianos este fichero para analizar:



C:\windows\system32\shell32.dll



y para generar el informe del SPROCES, tras lanzarlo, pulsa en SALIR





saludos



ms, 7-9-2012

gabrielfarinella
Novato
Novato
Mensajes: 9
Registrado: 02 Sep 2012, 20:04

Re: Pantalla azul al cerrarse Windows 7

Mensaje por gabrielfarinella » 07 Sep 2012, 17:36

C:\windows\system32\shell32.dll



Y sigo sin conseguir que el Sproces.exe logre el archivo que me solicitais.

gabrielfarinella
Novato
Novato
Mensajes: 9
Registrado: 02 Sep 2012, 20:04

Re: Pantalla azul al cerrarse Windows 7

Mensaje por gabrielfarinella » 07 Sep 2012, 17:37

Me dice la pagina cuando quiero adjuntar el archivo que la extensión .dll no es permitida

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 07 Sep 2012, 21:20

Porque debes arrancar en modo seguro o bien ejecutar el SPROCES con Boton derecho -> Ejecutar como Administrador, sino el W7 no te deja crear el informe.



Y como que he mirado en el infosat a ver el sistema que usabas, al no aparecer me doy cuenta que estas usando un ELISTARA antiguo, pues los actuales lo indican.



Por ello recuerda que siempre has de probar las ultimas versiones para que detecten los ultimos malwares .



Estas usando la 24.84 y ya vamos por la 26.10 !



Descarga la actual y posteanos el log que te genere, que igual tenemos una sorpresa ...



saludos



ms, 7-9-2012

RMAASOA

gabrielfarinella
Novato
Novato
Mensajes: 9
Registrado: 02 Sep 2012, 20:04

Re: Pantalla azul al cerrarse Windows 7

Mensaje por gabrielfarinella » 08 Sep 2012, 00:17

Informe SPROCES





(7-9-2012 19:29:21 GMT)

SProces v6.5 (c)2012 S.G.H. / Satinfo S.L.

-------------------------------------------

Sistema Operativo: Windows 7 Ultimate (v6.1.7601)

Internet Explorer: (v9.0.8112.16421) 0

Equipo: FRLIW25

Usuario: Gabriel

Sesión de Usuario: Gabriel



150 Procesos Activos:

C:\WINDOWS\SYSTEM32\SMSS.EXE

C:\WINDOWS\SYSTEM32\CSRSS.EXE

C:\WINDOWS\SYSTEM32\CSRSS.EXE

C:\WINDOWS\SYSTEM32\WININIT.EXE

C:\WINDOWS\SYSTEM32\SERVICES.EXE

C:\WINDOWS\SYSTEM32\WINLOGON.EXE

C:\WINDOWS\SYSTEM32\LSASS.EXE

C:\WINDOWS\SYSTEM32\LSM.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\NVVSVC.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\NVVSVC.EXE

C:\WINDOWS\SYSTEM32\SPOOLSV.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\PROGRAM FILES (X86)\COMMON FILES\ADOBE\ARM\1.0\ARMSVC.EXE

C:\WINDOWS\SYSTEM32\AGR64SVC.EXE

C:\WINDOWS\SYSWOW64\ASTSRV.EXE

C:\PROGRAM FILES (X86)\MICROSOFT\BINGBAR\SEAPORT.EXE

C:\WINDOWS\SYSWOW64\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\HWDEVICESERVICE64.EXE

C:\PROGRAMDATA\INTERNET MOBILE\ONLINEUPDATE\OUC.EXE

C:\PROGRAM FILES (X86)\INTEL\INTEL(R) MANAGEMENT ENGINE COMPONENTS\LMS\LMS.EXE

C:\PROGRAM FILES (X86)\HSPA USB MODEM\BACKGROUNDSERVICE\SERVICEMANAGER.EXE

C:\WINDOWS\SYSTEM32\NLSINTERFACE.EXE

C:\PROGRAM FILES (X86)\NORTON GHOST\AGENT\VPROSVC.EXE

C:\PROGRAM FILES (X86)\NEWTECH INFOSYSTEMS\BACKUP NOW EZ\BACKUPNOWEZSVR.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSWOW64\PSISERVICE.EXE

C:\PROGRAM FILES (X86)\ALCOHOL SOFT\ALCOHOL 120\STARWIND\STARWINDSERVICEAE.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\THPSRV.EXE

C:\WINDOWS\SYSTEM32\TODDSRV.EXE

C:\WINDOWS\SYSTEM32\TOSCOSRV.EXE

C:\WINDOWS\SYSTEM32\TECOSERVICE.EXE

C:\WINDOWS\SYSWOW64\TVSTICKDRIVERLOADER.EXE

C:\PROGRAM FILES (X86)\ASHAMPOO\ASHAMPOO WINOPTIMIZER 8\LIVETUNERSERVICE.EXE

C:\WINDOWS\SYSTEM32\SEARCHINDEXER.EXE

C:\PROGRAM FILES (X86)\XSMANAGER\WTGSERVICE.EXE

C:\WINDOWS\SERVICE4G.EXE

C:\WINDOWS\SYSTEM32\TASKHOST.EXE

C:\WINDOWS\SYSTEM32\DWM.EXE

C:\WINDOWS\SYSTEM32\EXPLORER.EXE

C:\PROGRAMDATA\DATACARDSERVICE\DCSHELPER.EXE

C:\WINDOWS\SYSTEM32\TASKENG.EXE

C:\PROGRAM FILES (X86)\TOSHIBA\CONFIGFREE\NDSTRAY.EXE

C:\WINDOWS\SYSTEM32\HP1005MC.EXE

C:\PROGRAM FILES (X86)\VODAFONE\VODAFONE MOBILE CONNECT\BIN\VMCSERVICE.EXE

C:\WINDOWS\SYSTEM32\RAVCPL64.EXE

C:\WINDOWS\SYSTEM32\SYNTPENH.EXE

C:\WINDOWS\SYSTEM32\TPWRMAIN.EXE

C:\WINDOWS\SYSTEM32\THPSRV.EXE

C:\WINDOWS\SYSTEM32\TOSNCCORE.EXE

C:\PROGRAM FILES\LTMOH\LTMOH.EXE

C:\WINDOWS\SYSTEM32\IPOINT.EXE

C:\WINDOWS\SYSTEM32\SIDEBAR.EXE

C:\PROGRAM FILES (X86)\SPYBOT - SEARCH & DESTROY\TEATIMER.EXE

C:\WINDOWS\SYSTEM32\TCRDMAIN.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\UPDATE\1.3.21.115\GOOGLECRASHHANDLER.EXE

C:\WINDOWS\SYSTEM32\DPUPDCHK.EXE

C:\WINDOWS\SYSTEM32\GOOGLECRASHHANDLER64.EXE

C:\WINDOWS\SYSTEM32\TOSHIBASERVICESTATION.EXE

C:\PROGRAM FILES (X86)\INTEL\INTEL(R) RAPID STORAGE TECHNOLOGY\IASTORICON.EXE

C:\PROGRAM FILES (X86)\COMMON FILES\JAVA\JAVA UPDATE\JUSCHED.EXE

C:\WINDOWS\STARTER4G.EXE

C:\PROGRAM FILES (X86)\HSPA USB MODEM\BACKGROUNDSERVICE\MODEMLISTENER.EXE

C:\WINDOWS\SYSTEM32\TCRDKBB.EXE

C:\WINDOWS\SYSTEM32\SYMSNAPSERVICEX64.EXE

C:\WINDOWS\SYSTEM32\SYNTPHELPER.EXE

C:\WINDOWS\SYSTEM32\WMIPRVSE.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\SVCHOST.EXE

C:\WINDOWS\SYSTEM32\ALG.EXE

C:\WINDOWS\SYSTEM32\TOSSMARTSRV.EXE

C:\WINDOWS\SYSTEM32\TOSSENOTIFY.EXE

C:\WINDOWS\SYSTEM32\TPCHSRV.EXE

C:\PROGRAM FILES (X86)\TOSHIBA\CONFIGFREE\CFSWMGR.EXE

C:\WINDOWS\SYSTEM32\TPCHWMSG.EXE

C:\WINDOWS\SYSTEM32\TMACHINFO.EXE

C:\WINDOWS\SYSTEM32\CFIWMXSVCS64.EXE

C:\PROGRAM FILES (X86)\TOSHIBA\CONFIGFREE\CFSVCS.EXE

C:\WINDOWS\SYSTEM32\RSELSVC.EXE

C:\PROGRAM FILES (X86)\INTEL\INTEL(R) MANAGEMENT ENGINE COMPONENTS\UNS\UNS.EXE

C:\WINDOWS\SYSTEM32\WMPNETWK.EXE

C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IELOWUTIL.EXE

C:\WINDOWS\SYSTEM32\OSPPSVC.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\WINDOWS\SYSTEM32\CALC.EXE

C:\PROGRAM FILES (X86)\VODAFONE\VODAFONE MOBILE CONNECT\BIN\MOBILECONNECT.EXE

C:\PROGRAM FILES (X86)\ADOBE\READER 10.0\READER\ACRORD32.EXE

C:\PROGRAM FILES (X86)\ADOBE\READER 10.0\READER\ACRORD32.EXE

C:\WINDOWS\SYSTEM32\WUDFHOST.EXE

C:\WINDOWS\SYSTEM32\WUDFHOST.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\PROGRAM FILES (X86)\PC CONNECTIVITY SOLUTION\SERVICELAYER.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\GOOGLE TALK PLUGIN\GOOGLETALKPLUGIN.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\WINDOWS\SYSTEM32\CSRSS.EXE

C:\WINDOWS\SYSTEM32\WINLOGON.EXE

C:\WINDOWS\SYSTEM32\NVVSVC.EXE

C:\WINDOWS\SYSTEM32\TASKHOST.EXE

C:\WINDOWS\SYSTEM32\DWM.EXE

C:\WINDOWS\SYSTEM32\EXPLORER.EXE

C:\WINDOWS\SYSTEM32\RAVCPL64.EXE

C:\WINDOWS\SYSTEM32\SYNTPENH.EXE

C:\WINDOWS\SYSTEM32\TPWRMAIN.EXE

C:\WINDOWS\SYSTEM32\THPSRV.EXE

C:\WINDOWS\SYSTEM32\TOSNCCORE.EXE

C:\PROGRAM FILES\LTMOH\LTMOH.EXE

C:\PROGRAM FILES (X86)\ASHAMPOO\ASHAMPOO WINOPTIMIZER 8\LIVETUNER.EXE

C:\WINDOWS\SYSTEM32\IPOINT.EXE

C:\WINDOWS\SYSTEM32\TOSSENOTIFY.EXE

C:\WINDOWS\SYSTEM32\TPCHWMSG.EXE

C:\WINDOWS\SYSTEM32\SYNTPHELPER.EXE

C:\WINDOWS\SYSTEM32\TOSHIBASERVICESTATION.EXE

C:\PROGRAM FILES (X86)\INTEL\INTEL(R) RAPID STORAGE TECHNOLOGY\IASTORICON.EXE

C:\PROGRAM FILES (X86)\COMMON FILES\JAVA\JAVA UPDATE\JUSCHED.EXE

C:\WINDOWS\STARTER4G.EXE

C:\PROGRAM FILES (X86)\HSPA USB MODEM\BACKGROUNDSERVICE\MODEMLISTENER.EXE

C:\WINDOWS\SYSTEM32\DPUPDCHK.EXE

C:\WINDOWS\SYSTEM32\NCLUSBSRV64.EXE

C:\PROGRAM FILES (X86)\PC CONNECTIVITY SOLUTION\TRANSPORTS\NCLRSSRV.EXE

C:\PROGRAM FILES (X86)\PC CONNECTIVITY SOLUTION\TRANSPORTS\NCLMSBTSRVEX.EXE

C:\WINDOWS\SYSTEM32\WUAUCLT.EXE

C:\WINDOWS\SYSTEM32\EXCEL.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\USERS\GABRIEL\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE

C:\WINDOWS\SYSTEM32\AUDIODG.EXE

C:\PROGRAM FILES (X86)\INTERNETCALLS.COM\INTERNETCALLS\INTERNETCALLS.EXE

C:\WINDOWS\SYSTEM32\SEARCHPROTOCOLHOST.EXE

C:\WINDOWS\SYSTEM32\SEARCHFILTERHOST.EXE

C:\USERS\GABRIEL\DESKTOP\SPROCES.EXE



R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.ar/

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

R0 - HKUS\S-1-5-21-474029193-2495867438-3709673193-1137\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig?brand=TSNA&bmod=TSNA (User 'informatica')

R0 - HKUS\S-1-5-21-474029193-2495867438-3709673193-1137\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 (User 'informatica')

R0 - HKUS\S-1-5-21-474029193-2495867438-3709673193-1223\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig?brand=TSNA&bmod=TSNA (User 'jefearmamento')

R0 - HKUS\S-1-5-21-474029193-2495867438-3709673193-1223\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 (User 'jefearmamento')

R0 - HKUS\S-1-5-21-474029193-2495867438-3709673193-1288\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig?brand=TSNA&bmod=TSNA (User 'jefebrigestribor')

R0 - HKUS\S-1-5-21-474029193-2495867438-3709673193-1288\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 (User 'jefebrigestribor')

R1 - HKUS\S-1-5-21-474029193-2495867438-3709673193-1223\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxybsas.ara.mil.ar:8080 (0) (User 'jefearmamento')

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (User 'informatica')

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (User 'jefearmamento')

R3 - URLSearchHook: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) (User 'jefearmamento')

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (User 'jefebrigestribor')

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL

O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL

O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"

O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"

O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [TfcRst] C:\Program Files\TOSHIBA\FlashCards\TfcRst.exe

O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\Gabriel\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Gabriel\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - HKCU\..\Run: [InternetCalls] "C:\Program Files (x86)\InternetCalls.com\InternetCalls\InternetCalls.exe" -nosplash -minimized

O4 - HKUS\S-1-5-21-474029193-2495867438-3709673193-1223\..\Run: [Microsoft Outlook] C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE (User 'jefearmamento')

O4 - HKUS\S-1-5-21-474029193-2495867438-3709673193-1223\..\Run: [MobiLink3] C:\Program Files (x86)\Novatel Wireless\MobiLink3\MobiLink3.exe (User 'jefearmamento')

O4 - HKLM\..\Run: [TUSBSleepChargeSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe

O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60

O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe" UNATTENDED

O4 - HKLM\..\Run: [starter4g] C:\windows\starter4g.exe

O4 - HKLM\..\Run: [Meditel Imola ModemListener] C:\Program Files (x86)\HSPA USB MODEM\BackgroundService\ModemListener.exe start

O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio Local')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio Local')

O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')

O4 - Startup: Dropbox.lnk = C:\Users\Gabriel\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup

O4 - Startup: Recorte de pantalla y Selector de OneNote 2010.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE /tsr

O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: Descargar con Mipony - file://C:\Program Files (x86)\MiPony\Browser\IEContext.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html

O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 (User 'jefearmamento')

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 (User 'jefearmamento')

O8 - Extra context menu item: &Enviar a OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 (User 'jefebrigestribor')

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 (User 'jefebrigestribor')

O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Barra de búsqueda de Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files (x86)\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL

O9 - Extra button: Mostrar u ocultar HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/2.9.2.0/GarminAxControl.CAB

O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.6.0_35) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab

O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} (Java Plug-in 1.6.0_25)

O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} (Java Plug-in 1.6.0_35) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Plug-in 1.6.0_35) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab

O16 - DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} (RIM AxLoader) - http://mobileapps.blackberry.com/devicesoftware/AxLoader.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{3EEA4D96-1D19-4580-8877-46870BB6702A}: NameServer = 212.73.32.3 212.73.32.67

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - (no file)

O18 - Protocol: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (no file)

O22 - ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL



Información Adicional:

----------------------

WinSys\Drivers\hardlock.sys (de 665600 bytes) () Aladdin Knowledge Systems



Listado de Servicios (Carga Automatica):

----------------------------------------

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe

O23 - Service: Nalpeiron Licensing Service (ASTSRV) - Nalpeiron Ltd. - C:\windows\system32\ASTSRV.EXE

O23 - Service: Bing Bar Update Service (BBSvc) - Microsoft Corporation. - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE

O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe

O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

O23 - Service: DgiVecp - Samsung Electronics Co., Ltd. - C:\windows\system32\Drivers\DgiVecp.sys (file missing)

O23 - Service: DIGITEL. OUC (DIGITEL. RunOuc) - Unknown owner - C:\Program Files\DIGITEL 3G\UpdateDog\ouc.exe (file missing)

**O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted - C:\WINDOWS\SYSTEM32\NULL1 (file missing)

O23 - Service: Google Update Servicio (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: HP CUE DeviceDiscovery Service (hpqddsvc) - Hewlett-Packard Co. - %SystemRoot%\system32\svchost.exe -k hpdevmgmt - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll

O23 - Service: HP Network Devices Support (HPSLPSVC) - Hewlett-Packard Co. - %SystemRoot%\system32\svchost.exe -k HPService - C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL

O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe

O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: Internet Mobile. OUC (Internet Mobile. RunOuc) - Unknown owner - C:\Program Files (x86)\Internet Mobile\UpdateDog\ouc.exe

O23 - Service: KMService - Unknown owner - C:\Windows\System32\srvany.exe

O23 - Service: Ashampoo LiveTuner ProcessMonitor Driver (LiveTunerPM) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerProcessMonitor64.sys

O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

O23 - Service: Meditel Imola Modem Device Helper - Unknown owner - C:\Program Files (x86)\HSPA USB MODEM\BackgroundService\ServiceManager.exe

O23 - Service: Net Driver HPZ12 - Hewlett-Packard - %SystemRoot%\System32\svchost.exe -k HPZ12 - C:\Windows\system32\HPZinw12.dll (file missing)

O23 - Service: Nalpeiron Licensing Service 64-bit (nlsInterface) - Nalpeiron Ltd. - C:\windows\system32\nlsInterface.exe (file missing)

O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe

O23 - Service: NTI BackupNowEZSvr - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Backup Now EZ\BackupNowEZSvr.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\windows\system32\nvvsvc.exe (file missing)

O23 - Service: Pml Driver HPZ12 - Hewlett-Packard - %SystemRoot%\System32\svchost.exe -k HPZ12 - C:\Windows\system32\HPZipm12.dll (file missing)

O23 - Service: ProtexisLicensing - Unknown owner - C:\windows\SysWOW64\PSIService.exe

O23 - Service: rimspci - REDC - C:\WINDOWS\SYSTEM32\DRIVERS\rimspe64.sys (file missing)

O23 - Service: risdpcie - REDC - C:\WINDOWS\SYSTEM32\DRIVERS\risdpe64.sys (file missing)

O23 - Service: rixdpcie - REDC - C:\WINDOWS\SYSTEM32\DRIVERS\rixdpe64.sys (file missing)

O23 - Service: TOSHIBA Modem region select service (RSELSVC) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\rselect\RSelSvc.exe

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: SSPORT - Samsung Electronics - C:\windows\system32\Drivers\SSPORT.sys (file missing)

O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

O23 - Service: TOSHIBA HDD Protection (Thpsrv) - TOSHIBA Corporation - C:\windows\system32\ThpSrv.exe (file missing)

O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe (file missing)

O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe

O23 - Service: TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver (TVALZFL) - TOSHIBA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\TVALZFL.sys (file missing)

O23 - Service: TVStickDriverLoader - Unknown owner - C:\windows\SysWOW64\TVStickDriverLoader.exe

O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe

**O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - %SystemRoot%\System32\svchost.exe -k secsvcs - %ProgramFiles%\Windows Defender\mpsvc.dll (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe (file missing)

O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe

O23 - Service: WTGService - Unknown owner - C:\Program Files (x86)\XSManager\WTGService.exe

O23 - Service: XS Stick Service - 4G Systems GmbH & Co. KG - C:\windows\service4g.exe



Listado de Servicios (Carga Manual):

------------------------------------

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: adp94xx - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\adp94xx.sys (file missing)

O23 - Service: adpahci - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\adpahci.sys (file missing)

O23 - Service: adpu320 - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\adpu320.sys (file missing)

O23 - Service: TOSHIBA V.92 Software Modem (AgereSoftModem) - LSI Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\agrsm64.sys (file missing)

O23 - Service: aliide - Acer Laboratories Inc. - C:\WINDOWS\system32\drivers\aliide.sys (file missing)

O23 - Service: ALSysIO - Unknown owner - C:\Users\Gabriel\AppData\Local\Temp\ALSysIO64.sys (file missing)

O23 - Service: amdsata - Advanced Micro Devices - C:\WINDOWS\system32\drivers\amdsata.sys (file missing)

O23 - Service: amdsbs - AMD Technologies Inc. - C:\WINDOWS\system32\DRIVERS\amdsbs.sys (file missing)

O23 - Service: arc - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\arc.sys (file missing)

O23 - Service: arcsas - Adaptec, Inc. - C:\WINDOWS\system32\DRIVERS\arcsas.sys (file missing)

O23 - Service: Broadcom NetXtreme II VBD (b06bdrv) - Broadcom Corporation - C:\WINDOWS\system32\DRIVERS\bxvbda.sys (file missing)

O23 - Service: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60a) - Broadcom Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\b57nd60a.sys (file missing)

O23 - Service: Brother USB Mass-Storage Lower Filter Driver (BrFiltLo) - Brother Industries, Ltd. - C:\WINDOWS\system32\DRIVERS\BrFiltLo.sys (file missing)

O23 - Service: Brother USB Mass-Storage Upper Filter Driver (BrFiltUp) - Brother Industries, Ltd. - C:\WINDOWS\system32\DRIVERS\BrFiltUp.sys (file missing)

O23 - Service: Brother MFC Serial Port Interface Driver (WDM) (Brserid) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\Brserid.sys (file missing)

O23 - Service: Brother WDM Serial driver (BrSerWdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrSerWdm.sys (file missing)

O23 - Service: Brother MFC USB Fax Only Modem (BrUsbMdm) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbMdm.sys (file missing)

O23 - Service: Brother MFC USB Serial WDM Driver (BrUsbSer) - Brother Industries Ltd. - C:\WINDOWS\System32\Drivers\BrUsbSer.sys (file missing)

O23 - Service: Bluetooth AVRCP Profile (BthAvrcp) - CSR, plc - C:\WINDOWS\SYSTEM32\DRIVERS\BthAvrcp.sys (file missing)

O23 - Service: cmdide - CMD Technology, Inc. - C:\WINDOWS\system32\drivers\cmdide.sys (file missing)

O23 - Service: Mobile Connector USB Device for Legacy Serial Communication LCT2053s (cmnsusbser) - Mobile Connector - C:\WINDOWS\SYSTEM32\DRIVERS\cmnsusbser.sys (file missing)

O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\DfsdkS64.exe

O23 - Service: Broadcom NetXtreme II 10 GigE VBD (ebdrv) - Broadcom Corporation - C:\WINDOWS\system32\DRIVERS\evbda.sys (file missing)

O23 - Service: elxstor - Emulex - C:\WINDOWS\system32\DRIVERS\elxstor.sys (file missing)

O23 - Service: Lavalys EVEREST Kernel Driver (EverestDriver) - Unknown owner - C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd (file missing)

O23 - Service: HUAWEI USB-WWAN miniport (ewusbmbb) - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ewusbwwan.sys (file missing)

O23 - Service: HUAWEI USB-NDIS miniport (ewusbnet) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ewusbnet.sys (file missing)

O23 - Service: Huawei MobileBroadband USB PNP Device (ew_hwusbdev) - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ew_hwusbdev.sys (file missing)

O23 - Service: huawei_CompositeFilter (ew_usbenumfilter) - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ew_usbenumfilter.sys (file missing)

O23 - Service: FwLnk Driver (FwLnk) - TOSHIBA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\FwLnk.sys (file missing)

O23 - Service: GearAspiWDM (GEARAspiWDM) - GEAR Software Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys (file missing)

O23 - Service: Generic Mount Driver (GenericMount) - Symantec Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\GenericMount.sys (file missing)

O23 - Service: GenericMount Helper Service - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe

O23 - Service: SEMC USB Flash Driver Filter (ggflt) - Sony Ericsson Mobile Communications - C:\WINDOWS\SYSTEM32\DRIVERS\ggflt.sys (file missing)

O23 - Service: SEMC USB Flash Driver (ggsemc) - Sony Ericsson Mobile Communications - C:\WINDOWS\SYSTEM32\DRIVERS\ggsemc.sys (file missing)

O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Hamachi Network Interface (hamachi) - LogMeIn, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\hamachi.sys (file missing)

O23 - Service: Hauppauge Consumer Infrared Receiver (hcw85cir) - Hauppauge Computer Works, Inc. - C:\WINDOWS\system32\drivers\hcw85cir.sys (file missing)

O23 - Service: Intel(R) Management Engine Interface (HECIx64) - Intel Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\HECIx64.sys (file missing)

O23 - Service: hpqcxs08 - Hewlett-Packard Co. - %SystemRoot%\system32\svchost.exe -k hpdevmgmt - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll

O23 - Service: HpSAMD - Hewlett-Packard Company - C:\WINDOWS\system32\drivers\HpSAMD.sys (file missing)

O23 - Service: huawei_cdcacm - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ew_jucdcacm.sys (file missing)

O23 - Service: huawei_enumerator - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ew_jubusenum.sys (file missing)

O23 - Service: huawei_ext_ctrl - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ew_juextctrl.sys (file missing)

O23 - Service: huawei_wwanecm - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ew_juwwanecm.sys (file missing)

O23 - Service: Huawei DataCard USB Modem and USB Serial (hwdatacard) - Huawei Technologies Co., Ltd. - C:\WINDOWS\SYSTEM32\DRIVERS\ewusbmdm.sys (file missing)

O23 - Service: Huawei DataCard USB Fake (hwusbfake) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ewusbfake.sys (file missing)

O23 - Service: Intel RAID Controller Windows 7 (iaStorV) - Intel Corporation - C:\WINDOWS\system32\drivers\iaStorV.sys (file missing)

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iirsp - Intel Corp./ICP vortex GmbH - C:\WINDOWS\system32\DRIVERS\iirsp.sys (file missing)

O23 - Service: Service for Realtek HD Audio (WDM) (IntcAzAudAddService) - Realtek Semiconductor Corp. - C:\WINDOWS\SYSTEM32\drivers\RTKVHD64.sys (file missing)

O23 - Service: Mobile Connector Device for Legacy Serial Communication (jrdusbser) - TCT International Mobile Ltd - C:\WINDOWS\SYSTEM32\DRIVERS\jrdusbser.sys (file missing)

O23 - Service: LSI_FC - LSI Corporation - C:\WINDOWS\system32\DRIVERS\lsi_fc.sys (file missing)

O23 - Service: LSI_SAS - LSI Corporation - C:\WINDOWS\system32\DRIVERS\lsi_sas.sys (file missing)

O23 - Service: LSI_SAS2 - LSI Corporation - C:\WINDOWS\system32\DRIVERS\lsi_sas2.sys (file missing)

O23 - Service: LSI_SCSI - LSI Corporation - C:\WINDOWS\system32\DRIVERS\lsi_scsi.sys (file missing)

O23 - Service: ManyCam Virtual Webcam, WDM Video Capture Driver (ManyCam) - ManyCam LLC. - C:\WINDOWS\SYSTEM32\DRIVERS\ManyCam_x64.sys (file missing)

O23 - Service: Pinnacle Marvin Bus 64 (MarvinBus) - Pinnacle Systems GmbH - C:\WINDOWS\SYSTEM32\DRIVERS\MarvinBus64.sys (file missing)

O23 - Service: MBB Mass Storage Filter Driver (massfilter) - ZTE Incorporated - C:\WINDOWS\SYSTEM32\DRIVERS\massfilter.sys (file missing)

O23 - Service: megasas - LSI Corporation - C:\WINDOWS\system32\DRIVERS\megasas.sys (file missing)

O23 - Service: MegaSR - LSI Corporation, Inc. - C:\WINDOWS\system32\DRIVERS\MegaSR.sys (file missing)

O23 - Service: Motorola USB CDC ACM Driver (motmodem) - Motorola - C:\WINDOWS\SYSTEM32\DRIVERS\motmodem.sys (file missing)

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: nfrd960 - IBM Corporation - C:\WINDOWS\system32\DRIVERS\nfrd960.sys (file missing)

O23 - Service: Nokia USB Phone Parent Driver (nmwcd) - Nokia - C:\WINDOWS\SYSTEM32\drivers\ccdcmbx64.sys (file missing)

O23 - Service: Nokia USB Communication Driver (nmwcdc) - Nokia - C:\WINDOWS\SYSTEM32\drivers\ccdcmbox64.sys (file missing)

O23 - Service: Nokia USB Generic (nmwcdcx64) - Nokia - C:\WINDOWS\SYSTEM32\drivers\ccdcmbox64.sys (file missing)

O23 - Service: Nokia USB Flashing Phone Parent (nmwcdnsux64) - Nokia - C:\WINDOWS\SYSTEM32\drivers\nmwcdnsux64.sys (file missing)

O23 - Service: Nokia USB Phone Parent (nmwcdx64) - Nokia - C:\WINDOWS\SYSTEM32\drivers\ccdcmbx64.sys (file missing)

O23 - Service: NTIDrvr - NewTech Infosystems, Inc. - C:\windows\system32\drivers\NTIDrvr.sys (file missing)

O23 - Service: Service for NVIDIA High Definition Audio Driver (NVHDA) - NVIDIA Corporation - C:\WINDOWS\SYSTEM32\drivers\nvhda64v.sys (file missing)

O23 - Service: nvlddmkm - NVIDIA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\nvlddmkm.sys (file missing)

O23 - Service: nvraid - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvraid.sys (file missing)

O23 - Service: nvstor - NVIDIA Corporation - C:\WINDOWS\system32\drivers\nvstor.sys (file missing)

O23 - Service: PCCS Mode Change Filter Driver (pccsmcfd) - Nokia - C:\WINDOWS\SYSTEM32\DRIVERS\pccsmcfdx64.sys (file missing)

O23 - Service: Pangu effect driver (PGEffect) - TOSHIBA Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\pgeffect.sys (file missing)

O23 - Service: ql2300 - QLogic Corporation - C:\WINDOWS\system32\DRIVERS\ql2300.sys (file missing)

O23 - Service: ql40xx - QLogic Corporation - C:\WINDOWS\system32\DRIVERS\ql40xx.sys (file missing)

O23 - Service: USB Token Holder Service (R5BaseSmc) - OEM - C:\WINDOWS\SYSTEM32\DRIVERS\smccard.sys (file missing)

O23 - Service: Revoflt - VS Revo Group - C:\WINDOWS\SYSTEM32\DRIVERS\revoflt.sys (file missing)

O23 - Service: BlackBerry Smartphone (RimUsb) - Research In Motion Limited - C:\WINDOWS\SYSTEM32\Drivers\RimUsb_AMD64.sys (file missing)

O23 - Service: RIM Virtual Serial Port v2 (RimVSerPort) - Research in Motion Ltd - C:\WINDOWS\SYSTEM32\DRIVERS\RimSerial_AMD64.sys (file missing)

O23 - Service: Realtek 8167 NT Driver (RTL8167) - Realtek - C:\WINDOWS\SYSTEM32\DRIVERS\Rt64win7.sys (file missing)

O23 - Service: Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter (RTL8187B) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\rtl8187B.sys (file missing)

O23 - Service: Realtek Wireless LAN 802.11n PCI-E NIC NT Driver (rtl8192se) - Realtek Semiconductor Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\rtl8192se.sys (file missing)

O23 - Service: SDMC TV Device (SDMCBDADrv) - SDMC - C:\WINDOWS\SYSTEM32\DRIVERS\SDMCBDADrv.sys (file missing)

O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: SiSRaid2 - Silicon Integrated Systems Corp. - C:\WINDOWS\system32\DRIVERS\SiSRaid2.sys (file missing)

O23 - Service: SiSRaid4 - Silicon Integrated Systems - C:\WINDOWS\system32\DRIVERS\sisraid4.sys (file missing)

O23 - Service: SrvHsfHDA - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTAZL6.SYS (file missing)

O23 - Service: SrvHsfV92 - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTDPV6.SYS (file missing)

O23 - Service: SrvHsfWinac - Conexant Systems, Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\VSTCNXT6.SYS (file missing)

O23 - Service: stexstor - Promise Technology - C:\WINDOWS\system32\DRIVERS\stexstor.sys (file missing)

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: SymSnapService - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe

O23 - Service: Synth3dVsc - Unknown owner - C:\WINDOWS\SYSTEM32\drivers\synth3dvsc.sys (file missing)

O23 - Service: Synaptics TouchPad Driver (SynTP) - Synaptics Incorporated - C:\WINDOWS\SYSTEM32\DRIVERS\SynTP.sys (file missing)

O23 - Service: TOSHIBA Writing Engine Filter Driver (tdcmdpst) - TOSHIBA Corporation. - C:\WINDOWS\SYSTEM32\DRIVERS\tdcmdpst.sys (file missing)

O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

O23 - Service: @%SystemRoot%\system32\drivers\tsusbhub.sys,-1 (tsusbhub) - Unknown owner - C:\WINDOWS\SYSTEM32\drivers\tsusbhub.sys (file missing)

O23 - Service: UBHelper - NewTech Infosystems Corporation - C:\windows\system32\drivers\UBHelper.sys (file missing)

O23 - Service: upperdev - Nokia - C:\WINDOWS\SYSTEM32\DRIVERS\usbser_lowerfltx64.sys (file missing)

O23 - Service: UsbserFilt - Nokia - C:\WINDOWS\SYSTEM32\DRIVERS\usbser_lowerfltjx64.sys (file missing)

O23 - Service: VGPU - Unknown owner - C:\WINDOWS\SYSTEM32\drivers\rdvgkmd.sys (file missing)

O23 - Service: viaide - VIA Technologies, Inc. - C:\WINDOWS\system32\drivers\viaide.sys (file missing)

O23 - Service: VMware Virtual Ethernet Adapter Driver (VMnetAdapter) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\vmnetadapter.sys (file missing)

O23 - Service: vodafone_K3805-z_dc_enum - Vodafone - C:\WINDOWS\SYSTEM32\DRIVERS\vodafone_K3805-z_dc_enum.sys (file missing)

O23 - Service: Symantec Event Monitor Driver (VProEventMonitor) - Symantec Corporation - C:\WINDOWS\SYSTEM32\DRIVERS\vproeventmonitor.sys (file missing)

O23 - Service: vsmraid - VIA Technologies Inc.,Ltd - C:\WINDOWS\system32\DRIVERS\vsmraid.sys (file missing)

O23 - Service: ZTE Proprietary USB Driver (ZTEusbmdm6k) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ZTEusbmdm6k.sys (file missing)

O23 - Service: ZTE USB-NDIS miniport (ZTEusbnet) - ZTE Corporation. - C:\WINDOWS\SYSTEM32\DRIVERS\ZTEusbnet.sys (file missing)

O23 - Service: ZTE NMEA Port (ZTEusbnmea) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ZTEusbnmea.sys (file missing)

O23 - Service: ZTE Diagnostic Port (ZTEusbser6k) - Unknown owner - C:\WINDOWS\SYSTEM32\DRIVERS\ZTEusbser6k.sys (file missing)

O23 - Service: ZTE VoUSB Port (ZTEusbvoice) - ZTE Inc. - C:\WINDOWS\SYSTEM32\DRIVERS\ZTEusbvoice.sys (file missing)



Listado de Servicios (Deshabilitados):

--------------------------------------



164 Servicios.

47 de Carga Automatica.

117 de Carga Manual.

0 Deshabilitados.









Respecto a la versión de ELISTARA descargue el link que me paso MSC



Gracias

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 08 Sep 2012, 09:34

Pues pruebalo y posteanos el contenido de c:\infosat,txt, gracias



aparte, vemos esta informacion sobre un fichero que tienes:



http://www.prevx.com/filenames/X3821622589433269811-X1/DCSHELPER.EXE.html



envianoslo para analizar, gracias:



C:\PROGRAMDATA\DATACARDSERVICE\DCSHELPER.EXE



recuerda:



https://foros.zonavirus.com/viewtopic.php?f=5&t=14253



saludos



ms, 8-9-2012

gabrielfarinella
Novato
Novato
Mensajes: 9
Registrado: 02 Sep 2012, 20:04

Re: Pantalla azul al cerrarse Windows 7

Mensaje por gabrielfarinella » 18 Sep 2012, 02:21

Ya envíe el archivo para el analisis, quedo a sus ordenes!

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 18 Sep 2012, 09:24

Pues no hemos recibido ningun DATACARDSERVICE\DCSHELPER.EXE



Comprueba que lo hayas enviado empaquetado en un ZIP o RAR con password virus, para que no sea interceptado en el camino...



Y vuelvenoslo a enviar, gracias



saludos



ms, 18-9-2012

gabrielfarinella
Novato
Novato
Mensajes: 9
Registrado: 02 Sep 2012, 20:04

Re: Pantalla azul al cerrarse Windows 7

Mensaje por gabrielfarinella » 18 Sep 2012, 23:35

Estimado:



Espero haber enviado correctamente en esta oportunidad el archivo.



Estoy a su disposición.



Gabriel

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 19 Sep 2012, 10:15

Pues aun no lo hemos recibido.



En cuanto lo recibamos, procederemos en consecuencia e informaremos del resultado



saludos



ms, 19-9-2012

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 20 Sep 2012, 09:25

Como sea que aun no hemos recibido su fichero, hemos abierto la entrada de mails para que no haya problemas con su IP que parece ser de Senegal.



Por ello envienoslo de nuevo, a ver si ahora lo recibimos.



saludos



ms, 20-9-2012

gabrielfarinella
Novato
Novato
Mensajes: 9
Registrado: 02 Sep 2012, 20:04

Re: Pantalla azul al cerrarse Windows 7

Mensaje por gabrielfarinella » 20 Sep 2012, 11:03

Ahí lo envie nuevamente....



Es correcto, estoy haciendo un viaje y ahora estoy en Senegal

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 20 Sep 2012, 11:12

Correcto, ahora sí que lo hemos recibido y pasamos a analizarlo:



publisher................: Huawei Technologies Co., Ltd.

product..................: Huawei Technologies Co., Ltd. DataCardMonitor

internal name............: DataCardMonitor

copyright................: Copyright (C) Huawei Technologies Co., Ltd. 2004-2006. All rights reserved.

original name............: DataCardMonitor.EXE

signing date.............: 5:27 PM 3/14/2011

signers..................: HUAWEI Technologies Co., Ltd.; VeriSign Class 3 Code Signing 2009-2 CA; Class 3 Public Primary Certification Authority

file version.............: 2, 0, 0, 47

description..............: DataCardMonitor MFC Application



El nombre original del fichero es DataCardMonitor.EXE de HUAWEI Technologies Co y no se detectan en él rutinas víricas.



saludos



ms, 20-9-2012

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 20 Sep 2012, 11:40

Pues ya que la muestra enviada no ha resultado ser malware, envienos este otro:



C:\WINDOWS\SYSTEM32\AGR64SVC.EXE



Dado lo que indican al respecto en:



http://www.spydig.com/file-diagnosis/agr64svc-exe.html







y este otro



C:\WINDOWS\SYSTEM32\HWDEVICESERVICE64.EXE



por lo que indican en http://speedutilities.com/virus/hwdeviceservice64.exe.html







A ver si hay suerte...



saludos



ms, 20-9-2012

gabrielfarinella
Novato
Novato
Mensajes: 9
Registrado: 02 Sep 2012, 20:04

Re: Pantalla azul al cerrarse Windows 7

Mensaje por gabrielfarinella » 02 Oct 2012, 11:39

Buenos dias:



Abrí el WinOptimizer 8 inicie el Service Manager y desactivé el servicio que se inicia en forma automática al inicio del windows.



El servicio tiene el nombre del TVStickDriverLoader. Al desactivarlo e impedir que se inicie el servicio cuando prendia la laptop dejó de hacer la pantalla al cerrarse windows. Que es este servicio? Es un virus?



Como soluciono el tema de que cuando abro una sesión particular de windows se abre en automatico el block de notas con la siguiente info













[.ShellClassInfo]

LocalizedResourceName=@%SystemRoot%\system32\shell32.dll,-21787

Avatar de Usuario
msc hotline sat
Administrador
Administrador
Mensajes: 92730
Registrado: 09 Mar 2004, 20:39
Ubicación: BARCELONA (ESPAÑA)
Contactar:

Re: Pantalla azul al cerrarse Windows 7

Mensaje por msc hotline sat » 02 Oct 2012, 16:52

El servicio TVStickDriverLoader podría ser malware, segun http://incodesolutions.com/threats.php?file=System32Roottvstickdriverloaderexe



Mira el fichero que usa, añade .VIR a su extension y envianoslo para analizar



supongo que estará en :



C:\windows\System32\tvstickdriverloader.exe



o bien en



C:\windows\tvstickdriverloader.exe



Para enviarnos la muestra, recuerda:



https://foros.zonavirus.com/viewtopic.php?f=5&t=14253



Y sobre el que se abra el Bloc de Notas, lo hacen algunos malwares cuando son ejecutados, mira si tras renombrarlo y reiniciar, persiste el problema. y nos lo cuentas, gracias



saludos



ms, 2-10-2012

Cerrado

Volver a “Foro Spyware”