Jump to content

nicogib

Members
  • Posts

    15
  • Joined

  • Last visited

Reputation

0 Neutral
  1. No DMA option in IDE thing in device manager. I guess I´ll have to go with the usual format c: Thanks for everything Charlie and Matt! You can close this post.
  2. MCharlie, in task manager the CPU usage when I filter them to be able to see them in descending usage they never add more than 50%, but the green graphic of CPU usage goes up to 90/100% every few minutes with no apparent process eating up the resource. Can someone give their opinion about what DRMATTND said in the previous post? He may be right since we didn´t find any malware in my PC. Thanks to both of you! Nico
  3. # AdwCleaner v3.013 - Reporte Creado 29/11/2013 en 16:38:53 # Actualizado 24/11/2013 por Xplode # Sistema Operativo : Windows 7 Home Basic Service Pack 1 (64 bits) # Nombre de usuario : Nico - NICO-PC # Ejecutado desde : C:\Users\Nico\Desktop\AdwCleaner.exe # Opción : Limpiar ***** [ Servicios ] ***** ***** [ Archivos / Carpetas ] ***** ***** [ Accesos directos ] ***** ***** [ Registro ] ***** ***** [ Navegadores ] ***** -\\ Internet Explorer v11.0.9600.16428 -\\ Mozilla Firefox v25.0.1 (en-US) [ Archivo : C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\3zox0sku.default\prefs.js ] -\\ Google Chrome v31.0.1650.57 [ Archivo : C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [1880 octets] - [16/09/2013 14:45:09] AdwCleaner[R1].txt - [1765 octets] - [18/11/2013 14:25:42] AdwCleaner[R2].txt - [1174 octets] - [29/11/2013 16:35:12] AdwCleaner[s0].txt - [1900 octets] - [16/09/2013 14:48:05] AdwCleaner[s1].txt - [1649 octets] - [18/11/2013 14:31:28] AdwCleaner[s2].txt - [1094 octets] - [29/11/2013 16:38:53] ########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [1154 octets] ########## No result from Malware quick scan!
  4. I do, Computer is still going up to 100 % every few minutes,
  5. Maniac, Sorry for posting a new thread here: https://forums.malwarebytes.org/index.php?showtopic=137383&hl= when I followed the instructions, it said ¨post a new post HERE¨, so I thought you wanted me to start another one. Please delete this one. Thanks!
  6. OK. I´ll do that, just that when he sent me the instructions, it said ¨start a new topic HERE¨, so I started a new one. Using ¨Visor de eventos¨ I have found some critical events that are due to long time starting up, long time shutting down, and then this one that has appeared a few days ago: El Administrador de ventanas de escritorio está experimentando una contención elevada de recursos. Causa : Los recursos de CPU se están usando en exceso. Diagnóstico : Se detectó una degradación consistente en la velocidad de tramas del Administrador de ventanas de escritorio durante un periodo determinado. The CPU is still going up randomly to 100% and everything freezes.
  7. Yes it´s the same computer. Sorry, while following instructions I opened a new topic. Combofix has just finished. Here´s the log: ComboFix 13-11-27.01 - Nico 27/11/2013 19:25:24.2.2 - x64 Microsoft Windows 7 Home Basic 6.1.7601.1.1252.54.3082.18.3838.2476 [GMT -3:00] Running from: c:\users\Nico\Desktop\ComboFix.exe AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Created a new restore point . . ((((((((((((((((((((((((( Files Created from 2013-10-27 to 2013-11-27 ))))))))))))))))))))))))))))))) . . 2013-11-27 22:33 . 2013-11-27 22:33 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-11-26 18:01 . 2013-11-27 20:02 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E73B4DCA-BDDC-47CC-B3FB-7378F8AF2BE3}\offreg.dll 2013-11-26 15:48 . 2013-11-27 20:55 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable) 2013-11-26 15:48 . 2013-11-27 20:34 116440 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys 2013-11-26 15:41 . 2013-11-26 15:41 91352 ----a-w- c:\windows\system32\drivers\75A50B7B.sys 2013-11-26 15:40 . 2013-11-27 20:34 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys 2013-11-26 14:58 . 2013-11-08 03:12 10285968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E73B4DCA-BDDC-47CC-B3FB-7378F8AF2BE3}\mpengine.dll 2013-11-16 20:37 . 2013-11-20 23:13 -------- d-----w- c:\program files\DebugDiag 2013-11-16 20:11 . 2013-11-16 20:11 -------- d-----w- c:\program files (x86)\Tweaking.com 2013-11-16 20:03 . 2013-11-20 23:24 -------- d-----w- c:\users\Nico\AppData\Local\ElevatedDiagnostics 2013-11-16 02:31 . 2013-11-16 20:28 -------- d-----w- c:\users\Public\L001 2013-11-16 02:31 . 2013-01-05 08:02 235008 ----atw- c:\windows\SysWow64\FltEng.dll 2013-11-16 02:31 . 2012-12-14 03:45 61440 ----atw- c:\windows\SysWow64\secpro.exe 2013-11-16 02:30 . 2013-11-16 20:27 -------- d-sh--w- c:\users\Public\Temps 2013-11-15 10:24 . 2013-10-14 21:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE 2013-11-15 10:13 . 2013-10-02 01:10 44544 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll 2013-11-15 10:13 . 2013-10-02 04:57 3584 ----a-w- c:\windows\system32\drivers\es-ES\tsusbflt.sys.mui 2013-11-15 10:10 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll 2013-11-15 10:10 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll 2013-11-14 06:42 . 2013-10-04 02:24 1930752 ----a-w- c:\windows\system32\authui.dll 2013-11-14 06:42 . 2013-10-04 02:28 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll 2013-11-14 06:42 . 2013-10-04 02:25 197120 ----a-w- c:\windows\system32\credui.dll 2013-11-14 06:42 . 2013-10-04 01:58 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll 2013-11-14 06:42 . 2013-10-04 01:56 168960 ----a-w- c:\windows\SysWow64\credui.dll 2013-11-14 06:42 . 2013-10-04 01:56 1796096 ----a-w- c:\windows\SysWow64\authui.dll 2013-11-13 22:31 . 2013-11-26 15:15 -------- d-----r- c:\program files (x86)\Skype 2013-11-13 22:31 . 2013-11-13 22:31 -------- d-----w- c:\program files (x86)\Common Files\Skype 2013-11-12 22:38 . 2013-10-05 20:25 1474048 ----a-w- c:\windows\system32\crypt32.dll 2013-11-12 22:38 . 2013-10-05 19:57 1168384 ----a-w- c:\windows\SysWow64\crypt32.dll 2013-11-12 22:36 . 2013-10-12 02:29 859648 ----a-w- c:\windows\system32\IKEEXT.DLL 2013-11-12 22:36 . 2013-10-12 02:30 830464 ----a-w- c:\windows\system32\nshwfp.dll 2013-11-12 22:36 . 2013-10-12 02:29 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL 2013-11-12 22:36 . 2013-10-12 02:03 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll 2013-11-12 22:36 . 2013-10-12 02:01 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL 2013-11-06 18:06 . 2013-09-04 12:12 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys 2013-11-06 18:06 . 2013-09-04 12:11 325120 ----a-w- c:\windows\system32\drivers\usbport.sys 2013-11-06 18:06 . 2013-09-04 12:11 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2013-11-06 18:06 . 2013-09-04 12:11 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys 2013-11-06 18:06 . 2013-09-04 12:11 7808 ----a-w- c:\windows\system32\drivers\usbd.sys 2013-11-06 18:06 . 2013-09-04 12:11 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys 2013-11-06 18:06 . 2013-09-04 12:11 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-11-26 15:03 . 2013-05-20 16:49 83160 ----a-w- c:\windows\system32\drivers\avnetflt.sys 2013-11-26 15:03 . 2013-05-20 03:32 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys 2013-11-26 15:03 . 2013-05-20 03:32 132600 ----a-w- c:\windows\system32\drivers\avipbb.sys 2013-11-26 15:03 . 2013-05-20 03:32 106904 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2013-11-18 18:13 . 2012-11-26 00:55 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-11-18 18:13 . 2012-11-26 00:55 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-11-11 08:50 . 2012-11-26 00:46 267936 ------w- c:\windows\system32\MpSigStub.exe 2013-11-07 19:00 . 2012-11-28 17:21 82896128 ----a-w- c:\windows\system32\MRT.exe 2013-10-14 19:13 . 2013-11-18 23:01 15064 ----a-w- c:\windows\help\OEM\Scripts\LaunchMsHelpTopic.exe 2013-10-09 16:57 . 2013-11-18 23:01 21720 ----a-w- c:\windows\help\OEM\Scripts\PSGRedirector.exe 2013-10-08 10:50 . 2013-10-25 05:11 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-09-08 02:30 . 2013-10-10 15:33 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys 2013-09-08 02:27 . 2013-10-10 15:33 327168 ----a-w- c:\windows\system32\mswsock.dll 2013-09-08 02:03 . 2013-10-10 15:33 231424 ----a-w- c:\windows\SysWow64\mswsock.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-06-15 98304] "UpdatePRCShortCut"="c:\program files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504] "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576] "HPCam_Menu"="c:\program files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" [2009-02-25 218408] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-11-26 683576] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x] R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x] R2 SecStore;Secure Storage;c:\windows\SysWOW64\secpro.exe;c:\windows\SysWOW64\secpro.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R2 SwOffScheduler;Airytec Switch Off - Task Scheduler;c:\program files\Airytec\Switch Off\swoff.exe;c:\program files\Airytec\Switch Off\swoff.exe [x] R2 SwOffWeb;Airytec Switch Off - Web Interface;c:\program files\Airytec\Switch Off\swoff.exe;c:\program files\Airytec\Switch Off\swoff.exe [x] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x] R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x] S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.EXE;c:\program files\Realtek\Audio\HDA\AERTSr64.EXE [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x] S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x] S2 CodeMeter.exe;CodeMeter Runtime Server;c:\program files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe;c:\program files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [x] S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x] S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x] . . Contents of the 'Scheduled Tasks' folder . 2013-11-27 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-26 18:13] . 2013-11-27 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2530826501-1736942189-3856237442-1000Core.job - c:\users\Nico\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-10-03 20:53] . 2013-11-27 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2530826501-1736942189-3856237442-1000UA.job - c:\users\Nico\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-10-03 20:53] . 2013-11-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-13 01:39] . 2013-11-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-13 01:39] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-20 7981088] "SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2009-07-08 610360] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="c:\program files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" [2013-11-07 21720] . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\3zox0sku.default\ . - - - - ORPHANS REMOVED - - - - . Wow6432Node-HKLM-Run-<NO NAME> - (no file) HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start AddRemove-PhotoStage - c:\program files (x86)\NCH Software\PhotoStage\photostage.exe AddRemove-PokerStars - c:\program files (x86)\PokerStars\PokerStarsUninstall.exe AddRemove-Prism - c:\program files (x86)\NCH Software\Prism\prism.exe AddRemove-VideoPad - c:\program files (x86)\NCH Software\VideoPad\videopad.exe AddRemove-WavePad - c:\program files (x86)\NCH Software\WavePad\wavepad.exe . . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2013-11-27 19:36:34 ComboFix-quarantined-files.txt 2013-11-27 22:36 . Pre-Run: 83.349.045.248 bytes libres Post-Run: 85.392.920.576 bytes libres . - - End Of File - - E95D661AA6EFD04CA4C19CC175ECABF7
  8. Charlie, No malware was found after the rootkit scan. Internet is working OK, Windows Firewall is OK Windows Update isn´t, these two updates are failing constantly to install: Microsoft .NET Framework 4.5.1 para Windows 7 sistemas basados en x64 (KB2858725) Tamaño de la descarga: 53,0 MB Realtek Semiconductor Corp. - Audio - Realtek High Definition Audio Tamaño de la descarga: 27,4 MB Also the startup of Windows has been taking too long compared to a couple of days ago. No new programs were installed in these days and my computer has always ran as a Ferrari! Any ideas? Thanks
  9. The CPU usage goes up from 20/30% to 85/100% every few minutes. This happened from one day to the next. AUdio cracks and mouse lags, but that doesn´t bother as much as thinking that this is a virus on my PC. Here is the RK report: (THANKS!) RogueKiller V8.7.9 _x64_ [Nov 25 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.adlice.com/forum/ Website : http://www.adlice.com/softwares/roguekiller/ Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : Nico [Admin rights] Mode : Scan -- Date : 11/27/2013 17:18:15 | ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 4 ¤¤¤ [HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> FOUND [HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> FOUND [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Scheduled tasks : 0 ¤¤¤ ¤¤¤ Startup Entries : 0 ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤ ¤¤¤ External Hives: ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> %SystemRoot%\System32\drivers\etc\hosts ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD32 00AAJS-65M0A0 SATA Disk Device +++++ --- User --- [MBR] a8e9533b45c5ceac4c1f436644b88545 [bSP] 5ecef06491317f3bc1ffe61809d36b61 : Windows Vista/7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 294119 Mo 2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 602562560 | Size: 11024 Mo User = LL1 ... OK! Error reading LL2 MBR! ([0x1] Función incorrecta. ) Finished : << RKreport[0]_S_11272013_171815.txt >>
  10. DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.9600.16428 BrowserJavaVersion: 10.45.2 Run by Nico at 17:01:38 on 2013-11-27 Microsoft Windows 7 Home Basic 6.1.7601.1.1252.54.3082.18.3838.2365 [GMT -3:00] . AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Windows\SysWOW64\secpro.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\taskeng.exe c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files (x86)\Windows Media Player\wmplayer.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . mWinlogon: Userinit = userinit.exe BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: Aplicación auxiliar de inicio de sesión en la cuenta Microsoft: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll mRun: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe mRun: [startCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun: [updatePRCShortCut] "C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Hewlett-Packard\Recovery" UpdateWithCreateOnce "Software\CyberLink\PowerRecover" mRun: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe mRun: [HPCam_Menu] "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam" UpdateWithCreateOnce "Software\Hewlett-Packard\Media\Webcam" mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 TCP: NameServer = 192.168.1.1 TCP: Interfaces\{072B14B6-2110-4A82-8EC0-A699CC154BBF} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{CC7414AE-DE29-411C-B884-00E6D23C1F27} : DHCPNameServer = 192.168.1.1 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll SSODL: WebCheck - <orphaned> x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe x64-Run: [smartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background x64-RunOnce: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-SSODL: WebCheck - <orphaned> . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\3zox0sku.default\ FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll FF - plugin: C:\Users\Nico\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll . ============= SERVICES / DRIVERS =============== . R1 avkmgr;avkmgr;C:\Windows\System32\drivers\avkmgr.sys [2013-5-20 28600] R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-8-11 92160] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2009-8-11 203264] R2 AntiVirSchedulerService;Avira Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-5-20 440376] R2 AntiVirService;Avira Real-Time Protection;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-5-20 440376] R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2013-5-20 106904] R2 CodeMeter.exe;CodeMeter Runtime Server;C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2013-3-2 2571704] R2 SecStore;Secure Storage;C:\Windows\SysWOW64\secpro.exe [2013-11-15 61440] R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2009-8-11 139616] R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2009-8-11 34872] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-9-15 418376] S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-9-15 701512] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680] S2 SwOffScheduler;Airytec Switch Off - Task Scheduler;C:\Program Files\Airytec\Switch Off\swoff.exe -service --> C:\Program Files\Airytec\Switch Off\swoff.exe -service [?] S2 SwOffWeb;Airytec Switch Off - Web Interface;C:\Program Files\Airytec\Switch Off\swoff.exe -service --> C:\Program Files\Airytec\Switch Off\swoff.exe -service [?] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-9-19 102368] S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-11-15 111616] S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-9-15 25928] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-30 19456] S3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-8-11 233472] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-9-19 203104] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-11-15 56832] . =============== Created Last 30 ================ . 2013-11-26 18:01:48 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E73B4DCA-BDDC-47CC-B3FB-7378F8AF2BE3}\offreg.dll 2013-11-26 15:48:09 116440 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2013-11-26 15:48:09 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-11-26 15:41:15 91352 ----a-w- C:\Windows\System32\drivers\75A50B7B.sys 2013-11-26 15:40:43 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2013-11-26 14:58:11 10285968 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E73B4DCA-BDDC-47CC-B3FB-7378F8AF2BE3}\mpengine.dll 2013-11-16 20:37:30 -------- d-----w- C:\Program Files\DebugDiag 2013-11-16 20:11:38 -------- d-----w- C:\Program Files (x86)\Tweaking.com 2013-11-16 20:03:23 -------- d-----w- C:\Users\Nico\AppData\Local\ElevatedDiagnostics 2013-11-16 02:31:44 61440 ----atw- C:\Windows\SysWow64\secpro.exe 2013-11-16 02:31:44 235008 ----atw- C:\Windows\SysWow64\FltEng.dll 2013-11-15 10:13:05 44544 ----a-w- C:\Windows\System32\TsUsbGDCoInstaller.dll 2013-11-15 10:13:04 3584 ----a-w- C:\Windows\System32\drivers\es-ES\tsusbflt.sys.mui 2013-11-15 10:10:40 792576 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll 2013-11-15 10:10:40 1030144 ----a-w- C:\Windows\System32\TSWorkspace.dll 2013-11-14 06:42:46 1930752 ----a-w- C:\Windows\System32\authui.dll 2013-11-14 06:42:45 197120 ----a-w- C:\Windows\System32\credui.dll 2013-11-14 06:42:45 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll 2013-11-14 06:42:45 1796096 ----a-w- C:\Windows\SysWow64\authui.dll 2013-11-14 06:42:45 168960 ----a-w- C:\Windows\SysWow64\credui.dll 2013-11-14 06:42:45 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll 2013-11-13 22:31:48 -------- d-----r- C:\Program Files (x86)\Skype 2013-11-12 22:38:22 1474048 ----a-w- C:\Windows\System32\crypt32.dll 2013-11-12 22:38:21 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll 2013-11-12 22:36:09 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL 2013-11-12 22:36:08 830464 ----a-w- C:\Windows\System32\nshwfp.dll 2013-11-12 22:36:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll 2013-11-12 22:36:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL 2013-11-12 22:36:08 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL 2013-11-06 18:06:32 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys 2013-11-06 18:06:32 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys 2013-11-06 18:06:32 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys 2013-11-06 18:06:32 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2013-11-06 18:06:32 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys 2013-11-06 18:06:31 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys 2013-11-06 18:06:31 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys . ==================== Find3M ==================== . 2013-11-26 15:03:22 83160 ----a-w- C:\Windows\System32\drivers\avnetflt.sys 2013-11-26 15:03:22 28600 ----a-w- C:\Windows\System32\drivers\avkmgr.sys 2013-11-26 15:03:22 106904 ----a-w- C:\Windows\System32\drivers\avgntflt.sys 2013-11-18 18:13:16 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-11-18 18:13:16 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-11-11 08:50:16 267936 ------w- C:\Windows\System32\MpSigStub.exe 2013-10-14 19:13:38 15064 ----a-w- C:\Windows\help\OEM\Scripts\LaunchMsHelpTopic.exe 2013-10-09 16:57:32 21720 ----a-w- C:\Windows\help\OEM\Scripts\PSGRedirector.exe 2013-10-08 10:50:37 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll 2013-10-03 02:23:48 404480 ----a-w- C:\Windows\System32\gdi32.dll 2013-10-03 02:00:44 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll 2013-10-02 02:22:20 56832 ----a-w- C:\Windows\System32\drivers\TsUsbFlt.sys 2013-10-02 02:11:13 13824 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe 2013-10-02 02:08:53 12800 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll 2013-10-02 01:48:59 56832 ----a-w- C:\Windows\System32\MsRdpWebAccess.dll 2013-10-02 01:48:08 18944 ----a-w- C:\Windows\System32\wksprtPS.dll 2013-10-02 01:29:05 62976 ----a-w- C:\Windows\System32\tsgqec.dll 2013-10-02 00:15:45 1057280 ----a-w- C:\Windows\System32\rdvidcrl.dll 2013-10-02 00:14:58 50176 ----a-w- C:\Windows\SysWow64\MsRdpWebAccess.dll 2013-10-02 00:14:20 17920 ----a-w- C:\Windows\SysWow64\wksprtPS.dll 2013-10-02 00:08:30 83968 ----a-w- C:\Windows\System32\TSWbPrxy.exe 2013-10-02 00:01:16 420864 ----a-w- C:\Windows\System32\wksprt.exe 2013-10-01 23:58:48 53248 ----a-w- C:\Windows\SysWow64\tsgqec.dll 2013-10-01 23:31:09 1147392 ----a-w- C:\Windows\System32\mstsc.exe 2013-10-01 23:08:10 855552 ----a-w- C:\Windows\SysWow64\rdvidcrl.dll 2013-10-01 22:34:12 1068544 ----a-w- C:\Windows\SysWow64\mstsc.exe 2013-10-01 20:57:46 6578176 ----a-w- C:\Windows\System32\mstscax.dll 2013-10-01 20:55:10 5698048 ----a-w- C:\Windows\SysWow64\mstscax.dll 2013-09-28 01:09:10 497152 ----a-w- C:\Windows\System32\drivers\afd.sys 2013-09-25 02:26:40 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2013-09-25 02:26:40 154560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2013-09-25 02:23:33 28672 ----a-w- C:\Windows\System32\sspisrv.dll 2013-09-25 02:23:33 135680 ----a-w- C:\Windows\System32\sspicli.dll 2013-09-25 02:23:01 28160 ----a-w- C:\Windows\System32\secur32.dll 2013-09-25 02:22:59 340992 ----a-w- C:\Windows\System32\schannel.dll 2013-09-25 02:21:50 307200 ----a-w- C:\Windows\System32\ncrypt.dll 2013-09-25 02:21:07 1447936 ----a-w- C:\Windows\System32\lsasrv.dll 2013-09-25 01:58:17 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll 2013-09-25 01:57:26 22016 ----a-w- C:\Windows\SysWow64\secur32.dll 2013-09-25 01:57:24 247808 ----a-w- C:\Windows\SysWow64\schannel.dll 2013-09-25 01:56:42 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll 2013-09-25 01:03:24 30720 ----a-w- C:\Windows\System32\lsass.exe 2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll 2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll . ============= FINISH: 17:02:38,07 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Basic Boot Device: \Device\HarddiskVolume1 Install Date: 25/11/2012 09:22:41 p.m. System Uptime: 27/11/2013 04:48:30 p.m. (1 hours ago) . Motherboard: Hewlett-Packard | | Capirona Processor: AMD Athlon X2 Dual Core Processor 3250e | Socket S1G2 | 1500/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 287 GiB total, 79,443 GiB free. D: is FIXED (NTFS) - 11 GiB total, 2,011 GiB free. E: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Realtek PCIe FE Family Controller Device ID: PCI\VEN_10EC&DEV_8136&SUBSYS_2A97103C&REV_02\010000000000000000 Manufacturer: Realtek Name: Realtek PCIe FE Family Controller PNP Device ID: PCI\VEN_10EC&DEV_8136&SUBSYS_2A97103C&REV_02\010000000000000000 Service: RTL8167 . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Atheros AR5007EG Wireless Network Adapter Device ID: PCI\VEN_168C&DEV_001C&SUBSYS_2A97103C&REV_01\4&18BC40B5&0&0020 Manufacturer: Atheros Communications Inc. Name: Atheros AR5007EG Wireless Network Adapter PNP Device ID: PCI\VEN_168C&DEV_001C&SUBSYS_2A97103C&REV_01\4&18BC40B5&0&0020 Service: athr . ==== System Restore Points =================== . No restore point in system. . ==== Installed Programs ====================== . ActiveCheck component for HP Active Support Library Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader XI (11.0.05) Airytec Switch Off AMD USB Filter Driver Any Video Converter 5.0.5 ATI Catalyst Install Manager Avira Free Antivirus Catalyst Control Center - Branding Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Vista Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-core-static ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner CyberLink DVD Suite Deluxe D3DX10 DirectX for Managed Code Update (Summer 2004) Facebook Video Calling 1.2.0.287 Google Earth Google Update Helper Herramientas de Diagnóstico de Hardware HiJackThis HP Advisor HP Customer Experience Enhancements HP MediaSmart DVD HP MediaSmart Movie Themes HP MediaSmart Music/Photo/Video HP MediaSmart SmartMenu HP MediaSmart Webcam HP Odometer HP Setup HP Support Assistant HP Support Information HP Update HPAsset component for HP Active Support Library Java 7 Update 45 Java Auto Updater K-Lite Codec Pack 9.8.7 (Full) LabelPrint LightScribe System Software Malwarebytes Anti-Malware version 1.75.0.1300 MediaMonkey 4.0 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile ESN Language Pack Microsoft .NET Framework 4 Extended Microsoft .NET Framework 4 Extended ESN Language Pack Microsoft Application Error Reporting Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office File Validation Add-In Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office PowerPoint Viewer 2007 (English) Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared 64-bit MUI (English) 2007 Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft Visio Viewer 2010 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Mozilla Firefox 25.0.1 (x86 en-US) Mozilla Maintenance Service MSVCRT MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Office Password Recovery Magic v6.1.1.138 OpenOffice.org 3.4.1 Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN Paquete de idioma de Microsoft .NET Framework 4 Extended ESN Photo Common PhotoStage Slideshow Producer Pidgin PokerStars Power2Go PowerDirector PowerRecover Prism Video File Converter Realtek High Definition Audio Driver Recover My Files Recuva Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2) Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687309) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827329) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2827330) 32-Bit Edition Skype™ 6.11 Tweaking.com - Windows Repair (All in One) Ubuntu Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2836939) Update for Microsoft .NET Framework 4 Extended (KB2836939v3) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Access 2007 Help (KB963663) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office Infopath 2007 Help (KB963662) Update for Microsoft Office OneNote 2007 Help (KB963670) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 Help (KB963677) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825642) 32-Bit Edition Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Publisher 2007 Help (KB963667) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) VideoPad Video Editor VLC media player 2.0.8 WavePad Sound Editor Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Messenger Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Movie Maker 2.6 WinRAR 4.20 (32-bit) XviD Video Codec (remove only) . ==== Event Viewer Messages From Past Week ======== . 26/11/2013 12:47:20 p.m., Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Servicio de uso compartido de red del Reproductor de Windows Media. 26/11/2013 12:47:20 p.m., Error: Service Control Manager [7000] - El servicio Servicio de uso compartido de red del Reproductor de Windows Media no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control. 26/11/2013 12:08:42 p.m., Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Servicio de uso compartido de red del Reproductor de Windows Media. 26/11/2013 12:08:42 p.m., Error: Service Control Manager [7000] - El servicio Servicio de uso compartido de red del Reproductor de Windows Media no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control. 26/11/2013 12:01:27 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 26/11/2013 12:01:27 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 26/11/2013 12:01:25 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 26/11/2013 06:34:24 p.m., Error: mbamchameleon [61440] - 26/11/2013 01:26:27 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 26/11/2013 01:26:27 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 26/11/2013 01:26:25 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 21/11/2013 06:30:08 p.m., Error: Service Control Manager [7031] - El servicio Windows Defender terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio. 21/11/2013 06:30:01 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 21/11/2013 06:30:01 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 21/11/2013 06:29:58 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 12:40:35 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 20/11/2013 12:40:35 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 12:40:32 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 12:40:00 a.m., Error: Service Control Manager [7031] - El servicio Windows Defender terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio. 20/11/2013 12:39:44 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 12:39:44 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 12:39:42 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 10:46:31 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 09:27:11 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 20/11/2013 09:27:11 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 09:27:09 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 08:20:20 p.m., Error: Microsoft-Windows-WindowsUpdateClient [20] - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070103: Realtek Semiconductor Corp. - Audio - Realtek High Definition Audio. 20/11/2013 08:19:21 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 20/11/2013 08:19:21 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 08:19:19 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 08:16:36 p.m., Error: Service Control Manager [7031] - El servicio Windows Defender terminó inesperadamente. Esto se ha repetido 2 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio. 20/11/2013 08:16:31 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 20/11/2013 08:16:31 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 08:16:29 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 08:13:34 p.m., Error: Service Control Manager [7031] - El servicio Windows Defender terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio. 20/11/2013 08:13:27 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: Disk [15] - El dispositivo, \Device\Harddisk0\DR0, aún no está listo para acceso. 20/11/2013 08:13:27 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 08:13:25 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 20/11/2013 06:07:10 p.m., Error: Service Control Manager [7034] - El servicio Secure Storage se terminó de manera inesperada. Esto ha sucedido 1 veces. . ==== End Of File ===========================
  11. Please help me with a possible virus that from one day to the next made my computer very slow, it lags (mouse stays still for some seconds), and problems with audio when streaming video or music. Even without streaming anything, an mp3 from my computer has crackling sound when the mouse starts to freeze. This often happens when the CPU usage reaches 90%+ without having opened anything. It just happens every few minutes. Any suggestions? Thanks! Nico
  12. Well lately my PC has been working on 90/95% most of the time. The mouse lags and every time I put a video or sound file the sounds comes off as cracking or static. I´m also having trouble installing the Realtek update from Windows Update (27MB) but I´m pretty sure this is a virus and not a problem with my audio. Having read your tutorials, I´m attaching DDS files. Many thanks! Nico dds.txt attach.txt
  13. Hello Maniac, Did all these things. Just one question...is unistalling utorrent just for the analysis or should I stop using due to the possibility of attacks through those ports? I would really like to install it again. Thanks! Nico ______________________ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.0.1 (09.15.2013:1) OS: Windows 7 Home Basic x64 Ran by Nico on 16/09/2013 at 14:27:28,81 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\dnu.exe Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdate Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdater.downloaduibrowser Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdater.downloaduibrowser.1 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdater.downloadupdcontroller Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdater.downloadupdcontroller.1 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_para_eset-nod32-antivirus_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_para_eset-nod32-antivirus_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_para_trend-micro-hijackthis_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_para_trend-micro-hijackthis_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_para_eset-nod32-antivirus_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_para_eset-nod32-antivirus_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_para_trend-micro-hijackthis_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_para_trend-micro-hijackthis_RASMANCS Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{CB035CEA-95F2-498F-B5FD-880F1BB6AD66} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{CB035CEA-95F2-498F-B5FD-880F1BB6AD66} ~~~ Files ~~~ Folders Successfully deleted: [Folder] "C:\ProgramData\apn" Successfully deleted: [Folder] "C:\Program Files (x86)\Common Files\software update utility" ~~~ FireFox Emptied folder: C:\Users\Nico\AppData\Roaming\mozilla\firefox\profiles\3zox0sku.default\minidumps [160 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 16/09/2013 at 14:43:43,06 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # AdwCleaner v3.004 - Reporte Creado 16/09/2013 en 14:48:05 # Actualizado 15/09/2013 por Xplode # Sistema Operativo : Windows 7 Home Basic Service Pack 1 (64 bits) # Nombre de usuario : Nico - NICO-PC # Ejecutado desde : C:\Users\Nico\Desktop\AdwCleaner.exe # Opción : Limpiar ***** [ Servicios ] ***** ***** [ Archivos / Carpetas ] ***** ***** [ Accesos directos ] ***** ***** [ Registro ] ***** Clave Borrar : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1} Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96} Clave Borrar : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70} Clave Borrar : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5} Clave Borrar : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90} Clave Borrar : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA} Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96} Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Clave Borrar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility ***** [ Navegadores ] ***** -\\ Internet Explorer v10.0.9200.16686 -\\ Mozilla Firefox v23.0.1 (en-US) [ Archivo : C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\3zox0sku.default\prefs.js ] ************************* AdwCleaner[R0].txt - [1880 octets] - [16/09/2013 14:45:09] AdwCleaner[s0].txt - [1760 octets] - [16/09/2013 14:48:05] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1820 octets] ########## Malwarebytes Anti-Malware (Trial) 1.75.0.1300 www.malwarebytes.org Database version: v2013.09.16.06 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16686 Nico :: NICO-PC [administrator] Protection: Enabled 16/09/2013 02:52:25 p.m. mbam-log-2013-09-16 (14-52-25).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 221349 Time elapsed: 11 minute(s), 23 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end)
  14. Copying dds files, after having ran Malawares software (it detected: Files Detected: 1 C:\Users\Nico\AppData\Local\Temp\is1732802001\DeltaTB.exe (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.) DDS FILES DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16686 BrowserJavaVersion: 10.25.2 Run by Nico at 19:08:32 on 2013-09-15 Microsoft Windows 7 Home Basic 6.1.7601.1.1252.54.3082.18.3838.1893 [GMT -3:00] . AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\taskhost.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Windows\system32\taskeng.exe c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe C:\Windows\system32\taskmgr.exe . ============== Pseudo HJT Report =============== . mWinlogon: Userinit = userinit.exe BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: Aplicación auxiliar de inicio de sesión en la cuenta Microsoft: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll uRun: [Airytec Switch Off] "C:\Program Files\Airytec\Switch Off\swoff.exe" -auto mRun: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe mRun: [startCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun: [updatePRCShortCut] "C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Hewlett-Packard\Recovery" UpdateWithCreateOnce "Software\CyberLink\PowerRecover" mRun: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe mRun: [HPCam_Menu] "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam" UpdateWithCreateOnce "Software\Hewlett-Packard\Media\Webcam" mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 TCP: NameServer = 192.168.1.1 TCP: Interfaces\{072B14B6-2110-4A82-8EC0-A699CC154BBF} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{CC7414AE-DE29-411C-B884-00E6D23C1F27} : DHCPNameServer = 192.168.1.1 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll SSODL: WebCheck - <orphaned> x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe x64-Run: [smartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-SSODL: WebCheck - <orphaned> . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\3zox0sku.default\ FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll FF - plugin: C:\Windows\SysWOW64\npmproxy.dll FF - ExtSQL: 2013-08-15 21:50; jid0-3uZ3BaNBn8N0eej5ThAAoBGd4SA@jetpack; C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\3zox0sku.default\extensions\jid0-3uZ3BaNBn8N0eej5ThAAoBGd4SA@jetpack.xpi . ============= SERVICES / DRIVERS =============== . R1 avkmgr;avkmgr;C:\Windows\System32\drivers\avkmgr.sys [2013-5-20 28600] R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-8-11 92160] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2009-8-11 203264] R2 AntiVirSchedulerService;Avira Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-5-20 84024] R2 AntiVirService;Avira Real-Time Protection;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-5-20 108088] R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2013-5-20 105344] R2 CodeMeter.exe;CodeMeter Runtime Server;C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2013-3-2 2571704] R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-9-15 418376] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-9-15 701512] R2 PCPitstop Scheduling;PCPitstop Scheduling;C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe [2013-4-23 86216] R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2009-8-11 139616] R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-9-15 25928] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-8-11 233472] R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2009-8-11 34872] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-6-21 162408] S2 SwOffScheduler;Airytec Switch Off - Task Scheduler;C:\Program Files\Airytec\Switch Off\swoff.exe -service --> C:\Program Files\Airytec\Switch Off\swoff.exe -service [?] S2 SwOffWeb;Airytec Switch Off - Web Interface;C:\Program Files\Airytec\Switch Off\swoff.exe -service --> C:\Program Files\Airytec\Switch Off\swoff.exe -service [?] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-9-19 102368] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-30 19456] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-9-19 203104] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-11-30 57856] . =============== Created Last 30 ================ . 2013-09-15 17:27:01 -------- d-----w- C:\Users\Nico\AppData\Roaming\Malwarebytes 2013-09-15 17:26:30 -------- d-----w- C:\ProgramData\Malwarebytes 2013-09-15 17:26:28 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-09-15 17:26:28 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-09-15 07:30:56 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FB901FE5-DBF1-4C46-B6A3-FD203DF47BAE}\offreg.dll 2013-09-15 00:03:17 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys 2013-09-15 00:02:48 3155456 ----a-w- C:\Windows\System32\win32k.sys 2013-09-14 23:57:26 9515512 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FB901FE5-DBF1-4C46-B6A3-FD203DF47BAE}\mpengine.dll 2013-08-30 20:00:39 489128 ----a-w- C:\Windows\SysWow64\Vsflex7.ocx 2013-08-30 20:00:39 416528 ----a-w- C:\Windows\SysWow64\Comct332.ocx 2013-08-30 20:00:39 322336 ----a-w- C:\Windows\SysWow64\Roboex32.dll 2013-08-30 20:00:38 67584 ----a-w- C:\Windows\SysWow64\Cfx4Data.dll 2013-08-30 20:00:38 607528 ----a-w- C:\Windows\SysWow64\Cfx4032.ocx 2013-08-30 20:00:38 134144 ----a-w- C:\Windows\SysWow64\SfxBar.dll 2013-08-30 20:00:03 -------- d-----w- C:\Users\Nico\AppData\Local\ProModel 2013-08-30 20:00:00 54784 ----a-w- C:\Windows\SysWow64\INetWH32.dll 2013-08-18 20:33:14 92056 ----a-w- C:\Program Files (x86)\Mozilla Firefox\webapprt-stub.exe . ==================== Find3M ==================== . 2013-09-15 01:07:30 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-09-15 01:07:30 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-09-04 13:15:29 105344 ----a-w- C:\Windows\System32\drivers\avgntflt.sys 2013-08-29 11:32:26 81112 ----a-w- C:\Windows\System32\drivers\avnetflt.sys 2013-08-10 05:22:18 2241024 ----a-w- C:\Windows\System32\wininet.dll 2013-08-10 05:20:59 3959296 ----a-w- C:\Windows\System32\jscript9.dll 2013-08-10 05:20:55 67072 ----a-w- C:\Windows\System32\iesetup.dll 2013-08-10 05:20:55 136704 ----a-w- C:\Windows\System32\iesysprep.dll 2013-08-10 03:59:10 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll 2013-08-10 03:58:09 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll 2013-08-10 03:58:06 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll 2013-08-10 03:58:06 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll 2013-08-10 03:17:38 2706432 ----a-w- C:\Windows\System32\mshtml.tlb 2013-08-10 03:07:50 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2013-08-10 02:27:59 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-08-10 02:17:19 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe 2013-08-07 07:22:02 278800 ------w- C:\Windows\System32\MpSigStub.exe 2013-08-02 02:23:53 5550528 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-08-02 02:15:44 1732032 ----a-w- C:\Windows\System32\ntdll.dll 2013-08-02 02:15:03 362496 ----a-w- C:\Windows\System32\wow64win.dll 2013-08-02 02:15:03 243712 ----a-w- C:\Windows\System32\wow64.dll 2013-08-02 02:15:03 13312 ----a-w- C:\Windows\System32\wow64cpu.dll 2013-08-02 02:14:57 215040 ----a-w- C:\Windows\System32\winsrv.dll 2013-08-02 02:14:11 16384 ----a-w- C:\Windows\System32\ntvdm64.dll 2013-08-02 02:13:34 424448 ----a-w- C:\Windows\System32\KernelBase.dll 2013-08-02 01:59:30 3968960 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe 2013-08-02 01:59:30 3913664 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe 2013-08-02 01:51:23 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll 2013-08-02 01:50:42 5120 ----a-w- C:\Windows\SysWow64\wow32.dll 2013-08-02 01:50:42 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll 2013-08-02 01:09:17 338432 ----a-w- C:\Windows\System32\conhost.exe 2013-08-02 00:59:09 112640 ----a-w- C:\Windows\System32\smss.exe 2013-08-02 00:45:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe 2013-08-02 00:45:36 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll 2013-08-02 00:45:35 7680 ----a-w- C:\Windows\SysWow64\instnm.exe 2013-08-02 00:45:34 2048 ----a-w- C:\Windows\SysWow64\user.exe 2013-08-02 00:43:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll 2013-08-02 00:43:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll 2013-08-02 00:43:05 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll 2013-08-02 00:43:05 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll 2013-07-28 21:45:57 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll 2013-07-28 21:45:55 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll 2013-07-28 21:45:55 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll 2013-07-25 18:57:56 58584 ----a-w- C:\Windows\help\OEM\Scripts\PWAlertEnable.exe 2013-07-25 09:25:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL 2013-07-25 08:57:27 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL 2013-07-24 16:42:46 76600 ----a-w- C:\Windows\help\OEM\Scripts\HPSAPopupMessaging.dll 2013-07-19 01:58:42 2048 ----a-w- C:\Windows\System32\tzres.dll 2013-07-19 01:41:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll 2013-07-09 05:52:52 224256 ----a-w- C:\Windows\System32\wintrust.dll 2013-07-09 05:51:16 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll 2013-07-09 05:46:20 184320 ----a-w- C:\Windows\System32\cryptsvc.dll 2013-07-09 05:46:20 1472512 ----a-w- C:\Windows\System32\crypt32.dll 2013-07-09 05:46:20 139776 ----a-w- C:\Windows\System32\cryptnet.dll 2013-07-09 04:52:33 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll 2013-07-09 04:52:10 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll 2013-07-09 04:46:31 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll 2013-07-09 04:46:31 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll 2013-07-09 04:46:31 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll 2013-07-06 06:03:53 1910208 ----a-w- C:\Windows\System32\drivers\tcpip.sys . ============= FINISH: 19:09:49,74 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Basic Boot Device: \Device\HarddiskVolume1 Install Date: 25/11/2012 09:22:41 p.m. System Uptime: 15/09/2013 04:42:51 p.m. (3 hours ago) . Motherboard: Hewlett-Packard | | Capirona Processor: AMD Athlon X2 Dual Core Processor 3250e | Socket S1G2 | 1500/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 287 GiB total, 51,006 GiB free. D: is FIXED (NTFS) - 11 GiB total, 2,011 GiB free. E: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . No restore point in system. . ==== Installed Programs ====================== . ActiveCheck component for HP Active Support Library Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader XI (11.0.04) Airytec Switch Off AMD USB Filter Driver Any Video Converter 5.0.5 ATI Catalyst Install Manager µTorrent Avira Free Antivirus Catalyst Control Center - Branding Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Vista Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-core-static ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner CyberLink DVD Suite Deluxe D3DX10 DirectX for Managed Code Update (Summer 2004) Download Updater (AOL LLC) Driver Detective Google Earth Google Update Helper Herramientas de Diagnóstico de Hardware HiJackThis HP Advisor HP Customer Experience Enhancements HP MediaSmart DVD HP MediaSmart Movie Themes HP MediaSmart Music/Photo/Video HP MediaSmart SmartMenu HP MediaSmart Webcam HP Odometer HP Setup HP Support Assistant HP Support Information HP Update HPAsset component for HP Active Support Library Java 7 Update 25 Java Auto Updater K-Lite Codec Pack 9.8.7 (Full) LabelPrint LightScribe System Software Malwarebytes Anti-Malware version 1.75.0.1300 MediaMonkey 4.0 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile ESN Language Pack Microsoft .NET Framework 4 Extended Microsoft .NET Framework 4 Extended ESN Language Pack Microsoft Application Error Reporting Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office File Validation Add-In Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office PowerPoint Viewer 2007 (English) Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared 64-bit MUI (English) 2007 Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft Visio Viewer 2010 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Mozilla Firefox 23.0.1 (x86 en-US) Mozilla Maintenance Service MSVCRT MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) OpenOffice.org 3.4.1 Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN Paquete de idioma de Microsoft .NET Framework 4 Extended ESN PC Matic 1.1.0.50 PC Pitstop Info Center 1.0.0.16 Photo Common PhotoStage Slideshow Producer Pidgin PokerStars Power2Go PowerDirector PowerRecover Primavera Risk Analysis Prism Video File Converter ProModel 7.5 Realtek High Definition Audio Driver Recover My Files Recuva Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687309) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760588) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760823) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2760583) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB2825999) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2767773) 32-Bit Edition Skype™ 6.6 Ubuntu Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2836939) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Access 2007 Help (KB963663) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office Infopath 2007 Help (KB963662) Update for Microsoft Office OneNote 2007 Help (KB963670) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 Help (KB963677) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825641) 32-Bit Edition Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Publisher 2007 Help (KB963667) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) VideoPad Video Editor VLC media player 2.0.8 WavePad Sound Editor Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Messenger Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Movie Maker 2.6 WinRAR 4.20 (32-bit) XviD Video Codec (remove only) . ==== Event Viewer Messages From Past Week ======== . 15/09/2013 04:46:24 p.m., Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Microsoft .NET Framework NGEN v4.0.30319_X86. 15/09/2013 04:22:10 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 15/09/2013 04:22:10 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 15/09/2013 04:22:07 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 15/09/2013 03:19:34 a.m., Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search. 15/09/2013 03:19:34 a.m., Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control. 15/09/2013 03:01:55 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 15/09/2013 03:01:55 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 15/09/2013 03:01:53 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 15/09/2013 01:36:10 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 15/09/2013 01:36:10 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 15/09/2013 01:36:08 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 14/09/2013 09:35:33 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 14/09/2013 09:35:33 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 14/09/2013 09:35:30 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 14/09/2013 08:59:07 p.m., Error: Service Control Manager [7031] - El servicio Windows Defender terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio. 14/09/2013 08:58:46 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 14/09/2013 08:58:46 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 14/09/2013 08:58:44 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 11/09/2013 03:01:18 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 11/09/2013 03:01:18 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 11/09/2013 03:01:15 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 10/09/2013 10:53:42 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 10/09/2013 10:53:42 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 10/09/2013 10:53:39 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 10/09/2013 05:44:13 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 10/09/2013 05:44:13 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 10/09/2013 05:44:10 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 10/09/2013 03:56:36 a.m., Error: Service Control Manager [7023] - El servicio Hora de Windows se cerró con el siguiente error: Se está cerrando el sistema. 10/09/2013 03:24:15 a.m., Error: Microsoft-Windows-WindowsUpdateClient [20] - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.157.1576.0). 10/09/2013 03:21:23 a.m., Error: Service Control Manager [7031] - El servicio Windows Defender terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio. 10/09/2013 03:21:12 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 10/09/2013 03:21:12 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 10/09/2013 03:21:10 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 09/09/2013 12:59:44 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 09/09/2013 12:59:44 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 09/09/2013 12:59:41 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 09/09/2013 12:58:56 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 09/09/2013 12:58:56 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 09/09/2013 12:58:54 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 09/09/2013 07:06:59 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 09/09/2013 07:05:53 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 09/09/2013 04:06:17 p.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 09/09/2013 04:06:17 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 09/09/2013 04:06:15 p.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 08/09/2013 12:00:39 a.m., Error: volsnap [14] - Se anularon las instantáneas del volumen C: debido a un error de E/S en el volumen C:. 08/09/2013 12:00:39 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. 08/09/2013 12:00:37 a.m., Error: amdsata [11] - El controlador detectó un error de controladora en \Device\RaidPort0. . ==== End Of File =========================== Many thanks! Nico
  15. Hello, Yesterday Win32/Dealply was detected in a manual scan of my computer (lately I´m finding that it´s slow and I suspect some kind of malware). I have deleted the virus with Microsoft´s online scanner, and 5 minutes later, browsing the web a popup comes along saying that some random website wants to execute a program. Obviously I cancelled it, but I guess the cleaning hasn´t been done 100%. I´m attaching a hijackthis log of today. Using HP ALLinOne, Windows 7 SP1. Firefox is constantly not responding....I have sometimes 70 tabs open, but that never has been a problem with my RAM. Any help is highly appreciated! Nico hijackthis.log
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.