Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected by DHL spam, what do i do now?


  • Please log in to reply
3 replies to this topic

#1 luis_91

luis_91

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:08:59 AM

Posted 30 March 2015 - 09:03 PM

I forwarded a parcel to germany a few week ago and just received and e-mail in german by dhl delivery service. I opened up the email and clicked one of the links, then I firuged out I had been complete idiot... Now i have to get rid of the malware. I am applying the methodologies of this tread: http://www.bleepingcomputer.com/forums/t/500637/dhl-virus-removal/

 

I will post the log files as i get them.

 

######################################################################################################

 

This is FSS log

 

Farbar Service Scanner Version: 17-01-2015
Ran by MyName (administrator) on 30-03-2015 at 21:00:51
Running from "C:\Users\MyName\Downloads"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****



BC AdBot (Login to Remove)

 


#2 luis_91

luis_91
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:08:59 AM

Posted 30 March 2015 - 09:05 PM

This is SecurityCheck.exe checkup.txt

 

 Results of screen317's Security Check version 0.99.99  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Java 7 Update 60  
 Java version 32-bit out of Date!
  Adobe Flash Player 16.0.0.305 Flash Player out of Date!  
 Adobe Reader XI  
 Mozilla Firefox (36.0.4)
 Google Chrome (41.0.2272.101)
 Google Chrome (41.0.2272.89)
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast avastui.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 8%
````````````````````End of Log``````````````````````
 



#3 luis_91

luis_91
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:08:59 AM

Posted 30 March 2015 - 09:12 PM

This is MiniToolBox, my computer is in spanish and there is no option to change the language output

 

MiniToolBox by Farbar  Version: 09-03-2015
Ran by MyName (administrator) on 30-03-2015 at 21:06:53
Running from "C:\Users\MyName\Downloads"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Model: ACRPRDCT Manufacturer: Acer
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR5B97 Wireless Network Adapter = Conexión de red inalámbrica (Connected)
Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Conexión de área local (Media disconnected)


# ----------------------------------
# Configuraci�n de IPv4
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# Fin de la configuraci�n de IPv4



Configuraci�n IP de Windows

   Nombre de host. . . . . . . . . : MyName-PC
   Sufijo DNS principal  . . . . . :
   Tipo de nodo. . . . . . . . . . : h�brido
   Enrutamiento IP habilitado. . . : no
   Proxy WINS habilitado . . . . . : no

Adaptador de LAN inal�mbrica Conexi�n de red inal�mbrica:

   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Atheros AR5B97 Wireless Network Adapter
   Direcci�n f�sica. . . . . . . . . . . . . : C0-F8-DA-35-1A-16
   DHCP habilitado . . . . . . . . . . . . . : s�
   Configuraci�n autom�tica habilitada . . . : s�
   V�nculo: direcci�n IPv6 local. . . : fe80::41ec:b248:47ac:edb9%12(Preferido)
   Direcci�n IPv4. . . . . . . . . . . . . . : 192.168.0.11(Preferido)
   M�scara de subred . . . . . . . . . . . . : 255.255.255.0
   Concesi�n obtenida. . . . . . . . . . . . : lunes, 30 de marzo de 2015 08:44:01 p.m.
   La concesi�n expira . . . . . . . . . . . : lunes, 30 de marzo de 2015 09:44:01 p.m.
   Puerta de enlace predeterminada . . . . . : 192.168.0.1
   Servidor DHCP . . . . . . . . . . . . . . : 192.168.0.1
   IAID DHCPv6 . . . . . . . . . . . . . . . : 331413722
   DUID de cliente DHCPv6. . . . . . . . . . : 00-01-00-01-19-C9-8C-05-E8-9A-8F-29-5A-CB
   Servidores DNS. . . . . . . . . . . . . . : 190.157.8.33
                                       181.48.0.233
   NetBIOS sobre TCP/IP. . . . . . . . . . . : habilitado

Adaptador de Ethernet Conexi�n de �rea local:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
   Direcci�n f�sica. . . . . . . . . . . . . : E8-9A-8F-29-5A-CB
   DHCP habilitado . . . . . . . . . . . . . : s�
   Configuraci�n autom�tica habilitada . . . : s�

Adaptador de t�nel Conexi�n de �rea local* 15:

   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Direcci�n f�sica. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuraci�n autom�tica habilitada . . . : s�
   Direcci�n IPv6 . . . . . . . . . . : 2001:0:9d38:6abd:18d7:2f52:3f57:fff4(Preferido)
   V�nculo: direcci�n IPv6 local. . . : fe80::18d7:2f52:3f57:fff4%19(Preferido)
   Puerta de enlace predeterminada . . . . . : ::
   NetBIOS sobre TCP/IP. . . . . . . . . . . : deshabilitado

Adaptador de t�nel isatap.{BD807A7B-42F0-4F41-B029-506D70EE9714}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Adaptador ISATAP de Microsoft #3
   Direcci�n f�sica. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuraci�n autom�tica habilitada . . . : s�

Adaptador de t�nel isatap.{84D06BFB-2CA3-4C44-9486-5B269FAF2E9D}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Adaptador ISATAP de Microsoft #4
   Direcci�n f�sica. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuraci�n autom�tica habilitada . . . : s�
Servidor:  Static-IP-190157833.cable.net.co
Address:  190.157.8.33

Nombre:  google.com
Addresses:  2607:f8b0:4008:807::200e
      216.58.219.110


Haciendo ping a google.com [216.58.219.110] con 32 bytes de datos:
Respuesta desde 216.58.219.110: bytes=32 tiempo=56ms TTL=53
Respuesta desde 216.58.219.110: bytes=32 tiempo=56ms TTL=53

Estad�sticas de ping para 216.58.219.110:
    Paquetes: enviados = 2, recibidos = 2, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    M�nimo = 56ms, M�ximo = 56ms, Media = 56ms
Servidor:  Static-IP-190157833.cable.net.co
Address:  190.157.8.33

Nombre:  yahoo.com
Addresses:  98.138.253.109
      206.190.36.45
      98.139.183.24


Haciendo ping a yahoo.com [98.138.253.109] con 32 bytes de datos:
Respuesta desde 98.138.253.109: bytes=32 tiempo=153ms TTL=49
Respuesta desde 98.138.253.109: bytes=32 tiempo=297ms TTL=49

Estad�sticas de ping para 98.138.253.109:
    Paquetes: enviados = 2, recibidos = 2, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    M�nimo = 153ms, M�ximo = 297ms, Media = 225ms

Haciendo ping a 127.0.0.1 con 32 bytes de datos:
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128

Estad�sticas de ping para 127.0.0.1:
    Paquetes: enviados = 2, recibidos = 2, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    M�nimo = 0ms, M�ximo = 0ms, Media = 0ms
===========================================================================
ILista de interfaces
 12...c0 f8 da 35 1a 16 ......Atheros AR5B97 Wireless Network Adapter
 10...e8 9a 8f 29 5a cb ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
  1...........................Software Loopback Interface 1
 19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 22...00 00 00 00 00 00 00 e0 Adaptador ISATAP de Microsoft #3
 21...00 00 00 00 00 00 00 e0 Adaptador ISATAP de Microsoft #4
===========================================================================

IPv4 Tabla de enrutamiento
===========================================================================
Rutas activas:
Destino de red        M�scara de red   Puerta de enlace   Interfaz  M�trica
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.11     25
        127.0.0.0        255.0.0.0      En v�nculo         127.0.0.1    306
        127.0.0.1  255.255.255.255      En v�nculo         127.0.0.1    306
  127.255.255.255  255.255.255.255      En v�nculo         127.0.0.1    306
      192.168.0.0    255.255.255.0      En v�nculo      192.168.0.11    281
     192.168.0.11  255.255.255.255      En v�nculo      192.168.0.11    281
    192.168.0.255  255.255.255.255      En v�nculo      192.168.0.11    281
        224.0.0.0        240.0.0.0      En v�nculo         127.0.0.1    306
        224.0.0.0        240.0.0.0      En v�nculo      192.168.0.11    281
  255.255.255.255  255.255.255.255      En v�nculo         127.0.0.1    306
  255.255.255.255  255.255.255.255      En v�nculo      192.168.0.11    281
===========================================================================
Rutas persistentes:
  Ninguno

IPv6 Tabla de enrutamiento
===========================================================================
Rutas activas:
 Cuando destino de red m�trica      Puerta de enlace
 19     58 ::/0                     En v�nculo
  1    306 ::1/128                  En v�nculo
 19     58 2001::/32                En v�nculo
 19    306 2001:0:9d38:6abd:18d7:2f52:3f57:fff4/128
                                    En v�nculo
 12    281 fe80::/64                En v�nculo
 19    306 fe80::/64                En v�nculo
 19    306 fe80::18d7:2f52:3f57:fff4/128
                                    En v�nculo
 12    281 fe80::41ec:b248:47ac:edb9/128
                                    En v�nculo
  1    306 ff00::/8                 En v�nculo
 19    306 ff00::/8                 En v�nculo
 12    281 ff00::/8                 En v�nculo
===========================================================================
Rutas persistentes:
  Ninguno
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/30/2015 08:44:49 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x798
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3

Error: (03/30/2015 06:23:35 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x774
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3

Error: (03/30/2015 09:55:07 AM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x778
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3

Error: (03/29/2015 04:32:34 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x790
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3

Error: (03/29/2015 11:51:15 AM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x788
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3

Error: (03/28/2015 10:20:38 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x780
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3

Error: (03/27/2015 07:42:00 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x780
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3

Error: (03/27/2015 01:05:20 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x788
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3

Error: (03/27/2015 00:26:00 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x780
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3

Error: (03/26/2015 05:35:08 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: creator-ws.exe, versión: 1.0.0.0, marca de tiempo: 0x5437c98f
Nombre del módulo con errores: MSVCR110.dll, versión: 11.0.51106.1, marca de tiempo: 0x5098858e
Código de excepción: 0x40000015
Desplazamiento de errores: 0x000a327c
Id. del proceso con errores: 0x7b8
Hora de inicio de la aplicación con errores: 0xcreator-ws.exe0
Ruta de acceso de la aplicación con errores: creator-ws.exe1
Ruta de acceso del módulo con errores: creator-ws.exe2
Id. del informe: creator-ws.exe3


System errors:
=============
Error: (03/30/2015 08:52:58 PM) (Source: atapi) (User: )
Description: El controlador detectó un error de controladora en \Device\Ide\IdePort0.

Error: (03/30/2015 08:52:58 PM) (Source: atapi) (User: )
Description: El controlador detectó un error de controladora en \Device\Ide\IdePort0.

Error: (03/30/2015 08:52:58 PM) (Source: atapi) (User: )
Description: El controlador detectó un error de controladora en \Device\Ide\IdePort0.

Error: (03/30/2015 08:45:01 PM) (Source: Service Control Manager) (User: )
Description: El servicio PDF Architect 2 Creator se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (03/30/2015 06:31:43 PM) (Source: atapi) (User: )
Description: El controlador detectó un error de controladora en \Device\Ide\IdePort0.

Error: (03/30/2015 06:31:43 PM) (Source: atapi) (User: )
Description: El controlador detectó un error de controladora en \Device\Ide\IdePort0.

Error: (03/30/2015 06:25:12 PM) (Source: Service Control Manager) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio SysMain.

Error: (03/30/2015 06:23:48 PM) (Source: Service Control Manager) (User: )
Description: El servicio PDF Architect 2 Creator se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (03/30/2015 10:03:12 AM) (Source: atapi) (User: )
Description: El controlador detectó un error de controladora en \Device\Ide\IdePort0.

Error: (03/30/2015 10:03:12 AM) (Source: atapi) (User: )
Description: El controlador detectó un error de controladora en \Device\Ide\IdePort0.


Microsoft Office Sessions:
=========================
Error: (03/30/2015 08:44:49 PM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c79801d06b542fbf7179C:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dll84097c50-d747-11e4-a9d9-e89a8f295acb

Error: (03/30/2015 06:23:35 PM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c77401d06b407e6061b8C:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dllc9470afb-d733-11e4-8cf6-e89a8f295acb

Error: (03/30/2015 09:55:07 AM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c77801d06af973f14416C:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dllc0b789b0-d6ec-11e4-9d80-e89a8f295acb

Error: (03/29/2015 04:32:34 PM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c79001d06a67d4fb14dcC:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dll1c3dca74-d65b-11e4-bb3e-e89a8f295acb

Error: (03/29/2015 11:51:15 AM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c78801d06a4087a5d97fC:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dllcfcd1332-d633-11e4-8546-e89a8f295acb

Error: (03/28/2015 10:20:38 PM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c78001d069cf4ad918e9C:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dll91f5b87d-d5c2-11e4-b936-e89a8f295acb

Error: (03/27/2015 07:42:00 PM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c78001d068eff65362edC:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dll3e606d7d-d4e3-11e4-bda6-e89a8f295acb

Error: (03/27/2015 01:05:20 PM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c78801d068b8890c5f41C:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dlld453674f-d4ab-11e4-beed-c0f8da351a16

Error: (03/27/2015 00:26:00 PM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c78001d068b3095d3ed5C:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dll55c753ba-d4a6-11e4-ae6e-c0f8da351a16

Error: (03/26/2015 05:35:08 PM) (Source: Application Error)(User: )
Description: creator-ws.exe1.0.0.05437c98fMSVCR110.dll11.0.51106.15098858e40000015000a327c7b801d068150e1ac20cC:\Program Files (x86)\PDF Architect 2\creator-ws.exeC:\Windows\system32\MSVCR110.dll5af9921f-d408-11e4-876e-e89a8f295acb



=========================== Installed Programs ============================
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Refresh Manager (x32 Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{DD89CE29-BC88-40C6-A845-E2548682C5D6}) (Version: 1.9.17.06019 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.9.17.06019 - Alcor Micro Corp.) Hidden
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
ATI Catalyst Install Manager (HKLM\...\{EAC31886-EF21-15C7-1EB7-6DB86C65241E}) (Version: 3.0.804.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2206 - AVAST Software)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.100.249.2 - Broadcom Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.1215.2206.39639 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.1215.2206.39639 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.1215.2206.39639 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help English (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help French (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help German (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.1215.2205.39639 - ATI) Hidden
ccc-core-static (x32 Version: 2010.1215.2206.39639 - Nombre de su organización) Hidden
ccc-utility64 (Version: 2010.1215.2206.39639 - ATI) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.41.0.0 - Conexant)
Definition Update for Microsoft Office 2010 (KB2956207) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F8203B4D-AA8C-4ED9-BEA8-95B75D194F0C}) (Version:  - Microsoft)
Desinstalador de impresoras EPSON TX125 Series (HKLM\...\EPSON TX125 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.101 - Google Inc.)
Google Drive (HKLM-x32\...\{6C36881B-0E51-4231-9D02-BF2149664D34}) (Version: 1.20.8672.3137 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Microsoft .NET Framework 4.5.1 (ESN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Basque) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Catalan) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Galician) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Portuguese (Brazil)) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.31211.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN (Version: 10.0.50903 - Microsoft Corporation) Hidden
Mozilla Firefox 36.0.4 (x86 es-MX) (HKLM-x32\...\Mozilla Firefox 36.0.4 (x86 es-MX)) (Version: 36.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PDF Architect 2 Create Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDF Architect 2 Edit Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.0.0 - pdfforge)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
Skype™ 7.2 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.18.0 - Synaptics Incorporated)
Update for Microsoft Access 2010 (KB2837601) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{D926D412-C5D1-411E-9F85-7CCF049E502B}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2589348) 64-Bit Edition (HKLM\...\{90140000-0016-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{08E49E13-4958-4423-ADC5-DF6712983403}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2589348) 64-Bit Edition (HKLM\...\{90140000-0018-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{08E49E13-4958-4423-ADC5-DF6712983403}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2589348) 64-Bit Edition (HKLM\...\{90140000-001B-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{08E49E13-4958-4423-ADC5-DF6712983403}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{84B191B5-5319-463A-A305-8C4D53B1D20A}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{DB0B0CDF-77EC-47B0-94E2-4738573A1E58}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{1AA82E2E-7DB7-4C70-910C-BBB657A6B3A5}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{8C0FFF5F-4CC1-48F5-9B3F-8DE7DA2E116F}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition (HKLM\...\{90140000-006E-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{8C0FFF5F-4CC1-48F5-9B3F-8DE7DA2E116F}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{B340E9EB-DDA6-40E7-8501-5B7BAEC6D25F}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{9505441B-65A1-4AD5-B727-0CE42D24D2B7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{B6AD7E27-012A-4B63-82BA-AF62893E5435}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{6E760BBA-B83F-4C2D-918F-5F91EF6C9861}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0044-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837602) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{69CF587A-D75B-47F8-9D59-3958C37C0A88}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837602) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{69CF587A-D75B-47F8-9D59-3958C37C0A88}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{956B3213-0246-42A8-A6FE-3EF7DC6E66A9}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2889828) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{569742BC-C32F-4C9C-9B21-18409AFF9599}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2910896) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{512A0E32-6C63-4C73-9C82-FC1B10668ED8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2920813) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{1EABF62D-D0EA-47ED-A282-D00C6707E0A3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2956141) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{95323604-3146-4C5D-B95D-2F874B98DA14}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2956075) 64-Bit Edition (HKLM\...\{90140000-00A1-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{06CE23CF-EC68-4F23-89CB-2A22AC45B63A}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2956205) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A6A2614F-4E2F-4952-8DBF-57CA5241AEE3}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2956205) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A6A2614F-4E2F-4952-8DBF-57CA5241AEE3}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2956128) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{DC6584FA-F266-4EF1-AEC8-9AFE5C74148C}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2956203) 64-Bit Edition (HKLM\...\{90140000-001A-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{B812AB02-F77C-4C6A-8704-0ABBE13D4B2F}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2878283) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{0155BA8F-4220-479F-B63F-B95B07CFE9BF}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{C950A55F-82E3-4CC8-8FA2-E8A2A0F651F3}) (Version:  - Microsoft)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 3818.9 MB
Available physical RAM: 2256.21 MB
Total Pagefile: 7635.99 MB
Available Pagefile: 5869.02 MB
Total Virtual: 4095.88 MB
Available Virtual: 3986.17 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:375.8 GB) (Free:65.3 GB) NTFS

========================= Users: ========================================

Cuentas de usuario de \\MYNAME-PC

Administrador            Invitado                 Myname                  
Se ha completado el comando correctamente.


**** End of log ****



#4 luis_91

luis_91
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:08:59 AM

Posted 30 March 2015 - 09:32 PM

This is Rkill

 

Rkill 2.7.0 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2015 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/30/2015 09:18:14 PM in x64 mode.
Windows Version: Windows 7 Ultimate Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 03/30/2015 09:29:56 PM
Execution time: 0 hours(s), 11 minute(s), and 42 seconds(s)
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users