Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

im infected with luhe.sirefef.a trojan, how can i remove it??


  • This topic is locked This topic is locked
25 replies to this topic

#1 pabloescobar

pabloescobar

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 PM

Posted 08 July 2013 - 01:54 PM

Hi. im in in a great need of help, i have been infected with this trojan for a while and i can't remove it with any antivirus nor anti spyware. i have also tryed some online  guides to remove it manually but i have always failed.

 

Thanks



BC AdBot (Login to Remove)

 


#2 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:09 AM

Posted 08 July 2013 - 03:08 PM

Hi there,
my name is Marius and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 

 

 

Please download Malwarebytes Anti-Rootkit from here Malwarebytes : Malwarebytes Anti-Rootkit and save it to your desktop.

Be sure to print out and follow the instructions provided on that same page.

Caution: This is a beta version so please be sure to read the disclaimer and back up any important data before using.

  • Double click the mbar.zip file to open it, then 'Extract all files'.
  • Double click the mbar folder to open it, then double click mbar.exe to start the tool.

Check for Updates, then Scan your system for malware

If malware is found, do NOT press the Cleanup button yet. Click EXIT.

I'd like to see the log first so I can see what it sees. You'll find the log in that mbar folder as MBAR-log-***.txt . Please attach that to your next reply.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#3 pabloescobar

pabloescobar
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 PM

Posted 08 July 2013 - 07:13 PM

Thanks for helping me Marius, my name is Pablo and im not a native english speaker neither. here is the log file u asked and dont worry, im good following instructions  :thumbup2:

 

Malwarebytes Anti-Rootkit BETA 1.06.0.1004
www.malwarebytes.org
 
Database version: v2013.07.08.08
 
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Oso :: PLAN-B [administrator]
 
08/07/2013 19:17:26
mbar-log-2013-07-08 (19-17-26).txt
 
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUM | P2P
Scan options disabled: PUP
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 216087
Time elapsed: 22 minute(s), 52 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 1
HKLM\SOFTWARE\CLASSES\APPID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE} (Trojan.BHO) -> No action taken.
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 5
c:\Program Files\TSearch (Adware.TSearch) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\l (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\u (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407 (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\700158208 (Backdoor.0Access) -> No action taken.
 
Files Detected: 19
C:\windows\system32\drivers\tdx.sys (Trojan.Agent.MRGGen) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\l\00000004.@ (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\l\00000008.@ (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\l\201d3dde (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\l\4cce1f70 (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\l\6715e287 (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\l\76603ac3 (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\l\xadqgnnk (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\u\00000004.@ (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\u\00000008.@ (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\u\000000cb.@ (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\u\80000000.@ (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\u\80000032.@ (Backdoor.0Access) -> No action taken.
c:\Program Files\TSearch\easydownload.exe (Adware.TSearch) -> No action taken.
c:\Program Files\TSearch\libtorrent.pyd (Adware.TSearch) -> No action taken.
c:\Program Files\TSearch\python25.dll (Adware.TSearch) -> No action taken.
c:\Program Files\TSearch\results (Adware.TSearch) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\@ (Backdoor.0Access) -> No action taken.
c:\windows\$ntuninstallkb38716$\1919149407\desktop.ini (Backdoor.0Access) -> No action taken.
 
Physical Sectors Detected: 0
(No malicious items detected)
 
(end)


#4 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:09 AM

Posted 09 July 2013 - 01:06 AM

Run another scan with mbar.exe and click the CleanUp button. It will require a reboot.

When it has rebooted, run another scan with mbar.exe and click CleanUp again if necessary.

Send the mbar-log.txt along with an update on machine behavior.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#5 pabloescobar

pabloescobar
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 PM

Posted 09 July 2013 - 01:19 PM

Hi Marius, i had a little trouble but i think it was nothing to worry about. U told me to run mbar 3 times: the 1st time without cleaning anything and then 2 times cleaning. The 1st clean runned smoothly and removed a lot of threats but the second time the detection process got stuck at this point
 
944752_10151502190236272_1983059144_n.jp
for about 2 hours when i was out. so i runned it a 4th time and it found nothing.
 
i belive that im free of those trojans 4 now. so thank you very, very much, i was going insane  :killcomp:
 
Here is the log of the last time i runned mbar (the 4th time).

 

 
Malwarebytes Anti-Rootkit BETA 1.06.0.1004
www.malwarebytes.org
 
Database version: v2013.07.09.03
 
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Oso :: PLAN-B [administrator]
 
09/07/2013 04:32:09
mbar-log-2013-07-09 (04-32-09).txt
 
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUM | P2P
Scan options disabled: PUP
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 215929
Time elapsed: 42 minute(s), 5 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
Physical Sectors Detected: 0
(No malicious items detected)
 
(end)
 

 

thanks again, greetings from Chile :bowdown:


Edited by pabloescobar, 09 July 2013 - 01:20 PM.


#6 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:09 AM

Posted 10 July 2013 - 01:13 AM

Download DDS and save it to your desktop from here or here or
here.

Disable any script blocker, and then double click dds.scr to run the tool.

When done, DDS will open two (2) logs
DDS.txt
Attach.txt
Save both reports to your desktop.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#7 pabloescobar

pabloescobar
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 PM

Posted 10 July 2013 - 03:03 PM

here im posting the log files

 

DDS (Ver_2012-11-20.01) - NTFS_x86 
Internet Explorer: 9.0.8112.16450  BrowserJavaVersion: 10.21.2
Run by Oso at 15:54:41 on 2013-07-10
Microsoft Windows 7 Starter   6.1.7601.1.1252.52.3082.18.1639.423 [GMT -4:00]
.
AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ================
.
C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
C:\Program Files\AVG\AVG2013\avgcsrvx.exe
C:\windows\system32\wininit.exe
C:\windows\system32\lsm.exe
C:\windows\system32\atiesrxx.exe
C:\windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\AVG\AVG2013\avgidsagent.exe
C:\Program Files\AVG\AVG2013\avgwdsvc.exe
C:\ProgramData\Banda Ancha Movil\OnlineUpdate\ouc.exe
C:\ProgramData\DatacardService\HWDeviceService.exe
C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
C:\windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
C:\Program Files\AVG\AVG2013\avgnsx.exe
C:\Program Files\AVG\AVG2013\avgemcx.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\windows\system32\atieclxx.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\AUDIODG.EXE
C:\windows\system32\conhost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uDefault_Page_URL = hxxp://start.toshiba.com/
mStart Page = hxxp://start.toshiba.com/
mDefault_Page_URL = hxxp://start.toshiba.com/
uProxyOverride = <local>
BHO: BitComet Helper: {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - c:\program files\bitcomet\tools\BitCometBHO_1.5.4.11.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun                                                                                                                                                                                               
mRun: [SmartAudio] c:\program files\conexant\saii\SAIICpl.exe /t
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [TPwrMain] c:\program files\toshiba\power saver\TPwrMain.EXE
mRun: [TosVolRegulator] c:\program files\toshiba\tosvolregulator\TosVolRegulator.exe
mRun: [TosSENotify] c:\program files\toshiba\toshiba hdd ssd alert\TosWaitSrv.exe
mRun: [TosReelTimeMonitor] c:\program files\toshiba\reeltime\TosReelTimeMonitor.exe
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: &D&escargar &con BitComet - c:\program files\bitcomet\BitComet.exe/AddLink.htm
IE: &D&escargar todo con BitComet - c:\program files\bitcomet\BitComet.exe/AddAllLink.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - c:\program files\bitcomet\tools\BitCometBHO_1.5.4.11.dll/206
TCP: NameServer = 200.74.121.11 190.160.0.13 200.83.1.4
TCP: Interfaces\{CE4E75B7-1B50-4C79-B665-1B69FBF4F601} : DHCPNameServer = 200.74.121.11 190.160.0.13 200.83.1.4
TCP: Interfaces\{CE4E75B7-1B50-4C79-B665-1B69FBF4F601}\845627D616E6F6370264C6F6275637 : DHCPNameServer = 200.74.121.11 190.160.0.13 200.83.1.4
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\27.0.1453.116\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Hosts: 127.0.0.1 genuine.microsoft.com
Hosts: 127.0.0.1 mpa.one.microsoft.com
Hosts: 127.0.0.1 sls.microsoft.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\oso\appdata\roaming\mozilla\firefox\profiles\xv7t4t62.default\
FF - plugin: c:\progra~1\micros~4\office14\NPSPWRAP.DLL
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\update\1.3.21.149\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_224.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
FF - ExtSQL: 2013-06-23 00:24; 3tjldptd@idr.com; c:\users\oso\appdata\roaming\mozilla\firefox\profiles\xv7t4t62.default\extensions\3tjldptd@idr.com.xpi
FF - ExtSQL: 2013-06-23 21:52; owpr_ouia@kfk-zw.com; c:\users\oso\appdata\roaming\mozilla\firefox\profiles\xv7t4t62.default\extensions\owpr_ouia@kfk-zw.com.xpi
FF - ExtSQL: 2013-06-26 17:19; adblockpopups@jessehakanen.net; c:\users\oso\appdata\roaming\mozilla\firefox\profiles\xv7t4t62.default\extensions\adblockpopups@jessehakanen.net.xpi
FF - ExtSQL: 2013-06-26 17:21; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\oso\appdata\roaming\mozilla\firefox\profiles\xv7t4t62.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-07-02 17:08; {6d43fee4-72e7-4290-b75a-b898e4f4676d}; c:\users\oso\appdata\roaming\mozilla\firefox\profiles\xv7t4t62.default\extensions\{6d43fee4-72e7-4290-b75a-b898e4f4676d}
FF - ExtSQL: 2013-07-02 17:22; smarterwiki@wikiatic.com; c:\users\oso\appdata\roaming\mozilla\firefox\profiles\xv7t4t62.default\extensions\smarterwiki@wikiatic.com.xpi
FF - ExtSQL: 2013-07-02 17:37; {158d7cb3-7039-4a75-8e0b-3bd0a464edd2}; c:\users\oso\appdata\roaming\mozilla\firefox\profiles\xv7t4t62.default\extensions\{158d7cb3-7039-4a75-8e0b-3bd0a464edd2}.xpi
.
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys [2012-1-8 64128]
R0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys [2012-1-8 32384]
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2013-2-8 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2013-2-8 245048]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2013-2-8 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2013-2-8 39224]
R0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys [2013-6-6 13560]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2013-3-29 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2013-3-1 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2013-2-8 170808]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2013-3-21 182072]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-1-8 176128]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-5-13 4937264]
R2 avgwd;WatchDog de AVG;c:\program files\avg\avg2013\avgwdsvc.exe [2013-4-18 283136]
R2 cvhsvc;Client Virtualization Handler;c:\program files\common files\microsoft shared\virtualization handler\CVHSVC.EXE [2012-1-4 822624]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\datacardservice\hwdeviceservice.exe -/service --> c:\programdata\datacardservice\HWDeviceService.exe -/service [?]
R2 sftlist;Application Virtualization Client;c:\program files\microsoft application virtualization client\sftlist.exe [2011-10-1 508776]
R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2012-1-8 7680]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2012-11-24 73216]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2010-9-27 68208]
R3 PGEffect;Pangu effect driver;c:\windows\system32\drivers\PGEffect.sys [2012-1-8 33616]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\drivers\rtl8192ce.sys [2012-1-8 1004136]
R3 Sftfs;Sftfs;c:\windows\system32\drivers\Sftfslh.sys [2011-10-1 579944]
R3 Sftplay;Sftplay;c:\windows\system32\drivers\Sftplaylh.sys [2011-10-1 194408]
R3 Sftredir;Sftredir;c:\windows\system32\drivers\Sftredirlh.sys [2011-10-1 21864]
R3 Sftvol;Sftvol;c:\windows\system32\drivers\Sftvollh.sys [2011-10-1 19304]
R3 sftvsa;Application Virtualization Service Agent;c:\program files\microsoft application virtualization client\sftvsa.exe [2011-10-1 219496]
S2 Banda Ancha Movil. RunOuc;Banda Ancha Movil. OUC;c:\program files\banda ancha movil\updatedog\ouc.exe [2012-4-23 218624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 IB Updater Updater;IB Updater Updater;c:\program files\ib updater\extensionupdaterservice.exe --> c:\program files\ib updater\ExtensionUpdaterService.exe [?]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-4-19 161384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files\bitcomet\tools\bitcometservice.exe -service --> c:\program files\bitcomet\tools\BitCometService.exe -service [?]
S3 dblhost;Diginext DBL Hosting Service;"c:\program files\nextel\adn\dblhost.exe" --> c:\program files\nextel\adn\dblhost.exe [?]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2012-11-24 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2012-11-24 11136]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\drivers\ewusbwwan.sys [2012-11-24 353280]
S3 gfiark;gfiark;c:\windows\system32\drivers\gfiark.sys [2013-6-6 41584]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2012-11-24 90368]
S3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [2012-11-24 26624]
S3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\drivers\ew_juwwanecm.sys [2012-11-24 181760]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2012-1-8 190464]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2010-11-20 52224]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
.
=============== Created Last 30 ================
.
2013-07-10 18:33:36 60872 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{f4e0c823-5f5a-4da3-9815-a47e009be140}\offreg.dll
2013-07-10 10:32:42 -------- d-----w- C:\6f68bef6e7742a4f877e42b5d039100c
2013-07-10 10:10:39 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2013-07-09 08:54:08 2048 ----a-w- c:\windows\system32\tzres.dll
2013-07-09 08:52:43 101720 ----a-w- c:\windows\system32\consent.exe
2013-07-09 08:52:42 1796096 ----a-w- c:\windows\system32\authui.dll
2013-07-09 08:52:39 47104 ----a-w- c:\windows\system32\appinfo.dll
2013-07-09 08:51:18 7068072 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{f4e0c823-5f5a-4da3-9815-a47e009be140}\mpengine.dll
2013-07-08 22:20:13 -------- d-----w- c:\programdata\Malwarebytes
2013-07-08 16:11:10 -------- d-----w- c:\users\oso\appdata\local\ElevatedDiagnostics
2013-07-08 05:53:25 -------- d-----w- c:\programdata\SpywareTerminator2012Upgrade
2013-07-03 15:34:55 -------- d-----w- c:\programdata\StarApp
2013-07-03 15:34:11 -------- d-----w- c:\users\oso\appdata\local\Programs
2013-07-03 12:22:41 -------- d-----w- c:\program files\Enigma Software Group
2013-07-03 12:21:36 -------- d-----w- c:\windows\E89498D814304A2BA76A4A71326981E9.TMP
2013-07-03 12:21:33 -------- d-----w- c:\program files\common files\Wise Installation Wizard
2013-06-26 20:44:56 -------- d-----w- c:\program files\CCleaner
2013-06-18 16:25:21 -------- d-----w- c:\program files\Mozilla Maintenance Service
2013-06-18 14:16:19 -------- d-----w- c:\users\oso\appdata\local\Google
2013-06-13 05:56:35 -------- d--h--w- c:\windows\Icons
2013-06-13 03:46:16 -------- d-----w- c:\users\oso\appdata\roaming\AVG
2013-06-13 03:45:16 -------- d-----w- c:\programdata\AVG
2013-06-13 03:45:02 -------- d-sh--w- c:\programdata\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2013-06-13 03:15:36 -------- d-----w- c:\users\oso\appdata\roaming\AVG2013
2013-06-13 03:14:06 -------- d-----w- c:\users\oso\appdata\roaming\TuneUp Software
2013-06-13 03:13:19 -------- d--h--w- C:\$AVG
2013-06-13 03:13:19 -------- d-----w- c:\programdata\AVG2013
2013-06-13 03:12:09 -------- d-----w- c:\program files\AVG
2013-06-13 03:07:02 -------- d--h--w- c:\programdata\Common Files
2013-06-13 03:07:02 -------- d-----w- c:\users\oso\appdata\local\MFAData
2013-06-13 03:07:02 -------- d-----w- c:\users\oso\appdata\local\Avg2013
2013-06-13 03:07:02 -------- d-----w- c:\programdata\MFAData
.
==================== Find3M  ====================
.
2013-06-12 17:25:39 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-12 17:25:38 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-06 13:50:17 13560 ----a-w- c:\windows\system32\drivers\gfibto.sys
2013-05-06 11:52:24 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-05-06 11:52:23 866720 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-05-06 11:52:23 788896 ----a-w- c:\windows\system32\deployJava1.dll
2013-05-02 06:06:08 238872 ------w- c:\windows\system32\MpSigStub.exe
.
============= FINISH: 15:57:34.16 ===============
 

 

 

 

and here is the attach file

 

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Starter 
Boot Device: \Device\HarddiskVolume1
Install Date: 21/04/2012 21:32:00
System Uptime: 10/07/2013 12:54:50 (3 hours ago)
.
Motherboard: TOSHIBA |  | Portable PC
Processor: AMD E-300 APU with Radeon™ HD Graphics | Socket FT1 | 1300/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 464 GiB total, 208.11 GiB free.
D: is CDROM ()
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP161: 02/07/2013 10:56:36 - Quitado AVG PC TuneUp
RP162: 02/07/2013 10:57:56 - Quitado AVG PC TuneUp Language Pack (es-ES)
RP163: 03/07/2013 08:21:46 - Installed SpyHunter
RP164: 03/07/2013 12:00:14 - Removed SpyHunter
RP166: 03/07/2013 20:17:17 - Spyware Terminator - restore point
RP167: 09/07/2013 04:13:27 - Malwarebytes Anti-Rootkit Restore Point
RP168: 09/07/2013 04:49:04 - Windows Update
RP169: 09/07/2013 16:05:31 - Windows Update
RP170: 10/07/2013 00:04:26 - Windows Update
RP171: 10/07/2013 03:00:50 - Windows Update
RP172: 10/07/2013 12:59:59 - Windows Update
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.7) MUI
AMD Media Foundation Decoders
AMD VISION Engine Control Center
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
ATI Catalyst Install Manager
AVG 2013
Banda Ancha Movil
Bejeweled 3
BitComet 1.35
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
CDisplay 1.8
Conexant HD Audio
Control ActiveX de Windows Live Mesh para conexiones remotas
Counter-Strike 1.6
D3DX10
DAEMON Tools Lite
Diablo II
Galería fotográfica de Windows Live
Google Chrome
Google Update Helper
GraphPad Prism 5
Hacer clic y ejecutar de Microsoft Office 2010
HP Deskjet 1000 J110 series Ayuda
Java 7 Update 21
Java Auto Updater
Junk Mail filter update
K-Lite Codec Pack 8.4.0 (Full)
Label@Once 1.0
League of Legends
Medieval II Total War
Mesh Runtime
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office OneNote 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Standard 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Visual J# .NET Redistributable Package 1.1
Mozilla Firefox 22.0 (x86 es-ES)
Mozilla Maintenance Service
MpcStar 5.4
MSVCRT
Neverwinter Nights
Pando Media Booster
PlayReady PC Runtime x86
Real Alternative 1.8.2
Realtek USB 2.0 Card Reader
Realtek WLAN Driver
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Skype™ 6.3
Software básico del dispositivo HP Deskjet 1000 J110 series
Synaptics Pointing Device Driver
System Requirements Lab CYRI
TeamSpeak 3 Client
Tomb Raider: Legend 1.0
TOSHIBA Application and Driver Installer
TOSHIBA Assist
Toshiba Book Place
TOSHIBA Bulletin Board
TOSHIBA Disc Creator
TOSHIBA Face Recognition
TOSHIBA Hardware Setup
TOSHIBA HDD/SSD Alert
TOSHIBA Media Controller
TOSHIBA Quality Application
TOSHIBA ReelTime
TOSHIBA Service Station
TOSHIBA Supervisor Password
TOSHIBA Value Added Package
TOSHIBA VIDEO PLAYER
TOSHIBA Web Camera Application
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817563) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visor de Microsoft PowerPoint
Warcraft III Reign of Chaos & The Frozen Throne
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAR 4.11 (32-bit)
.
==== Event Viewer Messages From Past Week ========
.
10/07/2013 13:34:29, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x8024200d: Actualización para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2836943).
10/07/2013 12:59:46, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2763523).
10/07/2013 12:59:46, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2847927).
10/07/2013 12:59:46, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2834886).
10/07/2013 12:59:46, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2736422).
10/07/2013 12:59:46, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad acumulativa para ActiveX Killbits para Windows 7 (KB2820197).
10/07/2013 12:59:45, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2786081).
10/07/2013 12:59:45, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2845690).
10/07/2013 12:59:45, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2830290).
10/07/2013 12:59:45, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2727528).
10/07/2013 12:59:45, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2833946).
10/07/2013 12:59:44, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2773072).
10/07/2013 12:59:44, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2839229).
10/07/2013 12:59:44, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2835364).
10/07/2013 12:59:44, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2785220).
10/07/2013 12:59:44, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2742599).
10/07/2013 12:59:43, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Marco de controlador en modo Kernel versión 1.11 para Windows 7 (KB2685811).
10/07/2013 12:59:43, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Marco de controlador en modo de usuario versión 1.11 para Windows 7 (KB2685813).
10/07/2013 12:59:43, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2850851).
10/07/2013 12:59:43, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2743555).
10/07/2013 12:59:43, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2840631).
10/07/2013 12:59:42, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2732500).
10/07/2013 12:59:42, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2726535).
10/07/2013 12:59:42, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2845187).
10/07/2013 12:59:42, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2705219).
10/07/2013 12:59:42, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad acumulativa para Internet Explorer 9 para Windows 7 (KB2846071).
10/07/2013 12:59:41, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2820331).
10/07/2013 12:59:41, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2750841).
10/07/2013 12:59:41, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2729094).
10/07/2013 12:59:41, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2813430).
10/07/2013 12:59:41, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2803821).
10/07/2013 12:59:40, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2761217).
10/07/2013 12:59:40, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2732487).
10/07/2013 12:59:40, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2839894).
10/07/2013 12:59:40, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2813347).
10/07/2013 12:59:40, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2757638).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2834140).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2818604).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2813956).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2808679).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2799926).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2732059).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2770660).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2832414).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2804579).
10/07/2013 12:59:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2756921).
10/07/2013 12:59:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2749655).
10/07/2013 12:59:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2807986).
10/07/2013 12:59:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2758857).
10/07/2013 12:59:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2789645).
10/07/2013 12:59:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2729452).
10/07/2013 12:59:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2786400).
10/07/2013 12:59:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización para Windows 7 (KB2647753).
10/07/2013 12:59:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2840149).
10/07/2013 12:59:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Windows 7 (KB2753842).
10/07/2013 12:59:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070643: Actualización de seguridad para Microsoft .NET Framework 3.5.1 en Windows 7 SP1 x86 (KB2844286).
10/07/2013 12:55:43, Error: Service Control Manager [7026]  - El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:  SBRE
10/07/2013 12:55:36, Error: Service Control Manager [7009]  - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Banda Ancha Movil. OUC.
10/07/2013 12:55:36, Error: Service Control Manager [7000]  - El servicio Banda Ancha Movil. OUC no pudo iniciarse debido al siguiente error:  El servicio no respondió a tiempo a la solicitud de inicio o de control.
10/07/2013 12:53:19, Error: Service Control Manager [7026]  - El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:  AVGIDSDriver AVGIDSShim Avgldx86 discache SBRE spldr Wanarpv6
10/07/2013 12:53:19, Error: Service Control Manager [7001]  - El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:  No se puede iniciar el servicio o grupo de dependencia.
10/07/2013 12:53:19, Error: Service Control Manager [7001]  - El servicio Client Virtualization Handler depende del servicio Application Virtualization Client, el cual no pudo iniciarse debido al siguiente error:  No se puede iniciar el servicio o grupo de dependencia.
10/07/2013 12:53:19, Error: Service Control Manager [7001]  - El servicio AVGIDSAgent depende del servicio AVGIDSDriver, el cual no pudo iniciarse debido al siguiente error:  Uno de los dispositivos conectados al sistema no funciona.
10/07/2013 12:51:55, Error: sptd [4]  - El controlador detectó un error interno en la estructura de datos de .
10/07/2013 06:35:36, Error: Service Control Manager [7043]  - El servicio Windows Update no se cerró correctamente después de recibir un control de aviso de apagado.
10/07/2013 05:27:04, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x8024200d: Actualización de seguridad para Windows 7 (KB2835361).
10/07/2013 03:01:44, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80246007: Actualización de seguridad para Windows 7 (KB2790113).
10/07/2013 02:47:48, Error: Service Control Manager [7026]  - El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:  SBRE
10/07/2013 02:47:39, Error: Service Control Manager [7009]  - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Banda Ancha Movil. OUC.
10/07/2013 02:47:39, Error: Service Control Manager [7000]  - El servicio Banda Ancha Movil. OUC no pudo iniciarse debido al siguiente error:  El servicio no respondió a tiempo a la solicitud de inicio o de control.
10/07/2013 00:07:19, Error: Service Control Manager [7006]  - Error en la llamada ScRegSetValueExW para FailureActions con el error siguiente:  Acceso denegado.
10/07/2013 00:07:11, Error: Service Control Manager [7043]  - El servicio Windows Update no se cerró correctamente después de recibir un control de aviso de apagado.
10/07/2013 00:05:15, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Error de instalación: error de Windows al instalar la siguiente actualización, error 0x8024200d: Actualización de seguridad para Windows 7 (KB2790113).
09/07/2013 23:42:58, Error: Service Control Manager [7011]  - Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio ShellHWDetection.
09/07/2013 18:22:00, Error: Service Control Manager [7026]  - El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:  SBRE
09/07/2013 18:21:49, Error: Service Control Manager [7009]  - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Banda Ancha Movil. OUC.
09/07/2013 18:21:49, Error: Service Control Manager [7000]  - El servicio Banda Ancha Movil. OUC no pudo iniciarse debido al siguiente error:  El servicio no respondió a tiempo a la solicitud de inicio o de control.
.
==== End Of File ===========================
 

thanks again



#8 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:09 AM

Posted 11 July 2013 - 12:01 AM

Please download this tool and save it to your desktop: http://go.microsoft.com/fwlink/?linkid=52012

Run the file by double click and press the "Continue" button.

When the tool is finished, click the "Copy" button in the lower right corner.

 

Reply to your topic here, right click into the reply box and select paste.

Post up.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#9 pabloescobar

pabloescobar
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 PM

Posted 11 July 2013 - 10:26 AM

Hi, my laptop is running almost just like when it was new, i can't stop thanking u. could u tell me please that do u think about it?, is it getting better?, do u see any problem still remaining?.  
 
 
 
Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->
 
Validation Code: 0
Cached Online Validation Code: N/A, hr = 0xc004f012
Windows Product Key: *****-*****-3Y3J6-K8M2F-J2HJQ
Windows Product Key Hash: X4S+naDQfOXFxXXiUsQTBuGIF4E=
Windows Product ID: 00342-OEM-8992752-30015
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.1.7601.2.00010300.1.0.011
ID: {14894E2E-2F51-44F0-B8A5-87DD6C0BEF7C}(1)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Starter
Architecture: 0x00000000
Build lab: 7601.win7sp1_gdr.120330-1504
TTS Error: 
Validation Diagnostic: 
Resolution Status: N/A
 
Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
 
Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002
 
OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002
 
OGA Data-->
Office Status: 100 Genuine
Microsoft Office Standard 2007 - 100 Genuine
Microsoft Office OneNote 2007 - 100 Genuine
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3_E2AD56EA-765-d003_E2AD56EA-766-0_E2AD56EA-134-80004005_E2AD56EA-765-8009_E2AD56EA-766-2efd_E2AD56EA-148-80004005_16E0B333-89-80004005_B4D0AA8B-1029-80004005
 
Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files\Mozilla Firefox\firefox.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed
 
File Scan Data-->
File Mismatch: C:\windows\system32\wat\watadminsvc.exe[Hr = 0x80070003]
File Mismatch: C:\windows\system32\wat\npwatweb.dll[Hr = 0x80070003]
File Mismatch: C:\windows\system32\wat\watux.exe[Hr = 0x80070003]
File Mismatch: C:\windows\system32\wat\watweb.dll[Hr = 0x80070003]
File Mismatch: C:\windows\system32\systemcpl.dll[6.1.7600.16385], Hr = 0x800b0100
File Mismatch: C:\windows\system32\user32.dll[6.1.7600.16385], Hr = 0x800b0100
 
Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{14894E2E-2F51-44F0-B8A5-87DD6C0BEF7C}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010300.1.0.011</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-J2HJQ</PKey><PID>00342-OEM-8992752-30015</PID><PIDType>2</PIDType><SID>S-1-5-21-3041533321-160088876-3880181804</SID><SYSTEM><Manufacturer>TOSHIBA</Manufacturer><Model>Satellite C645D</Model></SYSTEM><BIOS><Manufacturer>Insyde Corp.</Manufacturer><Version>1.80</Version><SMBIOSVersion major="2" minor="7"/><Date>20111220000000.000000+000</Date></BIOS><HWID>5BBA3A07018400F2</HWID><UserLCID>080A</UserLCID><SystemLCID>0C0A</SystemLCID><TimeZone>Hora est. Sudamérica Pacífico(GMT-04:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>TOSINV</OEMID><OEMTableID>TOSINV00</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>100</Result><Products><Product GUID="{90120000-0012-0000-0000-0000000FF1CE}"><LegitResult>100</LegitResult><Name>Microsoft Office Standard 2007</Name><Ver>12</Ver><Val>C0A25836FDBE5AC</Val><Hash>FmDbcrRY1pTOcrz4ZUZRHhpUuc0=</Hash><Pid>89396-726-2958074-65411</Pid><PidType>14</PidType></Product><Product GUID="{90120000-00A1-0000-0000-0000000FF1CE}"><LegitResult>100</LegitResult><Name>Microsoft Office OneNote 2007</Name><Ver>12</Ver><Val>3AB862DE70D8D86</Val><Hash>UfpXsJvSSVcPufbDdjd0NK73+ug=</Hash><Pid>89397-707-4159871-63668</Pid><PidType>14</PidType></Product></Products><Applications><App Id="16" Version="12" Result="100"/><App Id="18" Version="12" Result="100"/><App Id="1A" Version="12" Result="100"/><App Id="1B" Version="12" Result="100"/><App Id="A1" Version="12" Result="100"/></Applications></Office></Software></GenuineResults>  
 
Spsys.log Content: 0x80070002
 
Licensing Data-->
Versión del Servicio de licencias de software: 6.1.7601.17514
 
Nombre: Windows® 7, Starter edition
Descripción: Windows Operating System - Windows® 7, OEM_SLP channel
Id. de activación: 8be4a481-9b5c-4588-a5ec-5dad4b1f15da
Id. de aplicación: 55c92734-d682-4d71-983e-d6ec3f16059f
PID extendido: 00342-00178-927-530015-02-3082-7601.0000-2352011
Id. de instalación: 012416416064061273951214747012180281108061500833986164
Clave de producto parcial: J2HJQ
Estado de la licencia: con licencia
 
Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: N/A
HealthStatus: 0x0000000000000000
Event Time Stamp: N/A
ActiveX: Not Registered - 0x80040154
Admin Service: Not Registered - 0x80040154
HealthStatus Bitmask Output:
 
 
HWID Data-->
HWID Hash Current: MAAAAAIAAQABAAEAAQABAAAAAgABAAEAJJQ2QZn46K/ustA7vkc9lUZTaJhsFFBe
 
OEM Activation 1.0 Data-->
N/A
 
OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information: 
  ACPI Table Name OEMID Value OEMTableID Value
  APIC TOSINV TOSINV00
  FACP TOSINV TOSINV00
  HPET TOSINV TOSINV00
  BOOT TOSINV TOSINV00
  MCFG TOSINV TOSINV00
  SLIC TOSINV TOSINV00
  SSDT TOSINV TsbOdm
  SSDT TOSINV TsbOdm
  SSDT TOSINV TsbOdm
 
 

thanks again. 



#10 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:09 AM

Posted 12 July 2013 - 02:55 AM

Combofix

Combofix should only be run when adviced by a team member!

Link


Important - Save the file to your desktop!


  • Deactivate any and all of your antivirus programs /spyware scanners - they can prevent CF from doing its work.
  • Run Combofix.exe


When finished, Combofix creates a log file named C:\Combofix.txt. Please post its content in your next reply.

Note: When receiving an error message containing ""Illegal operation attempted on a registry key that has been marked for deletion" simply restart your computer to fix this.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#11 pabloescobar

pabloescobar
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 PM

Posted 12 July 2013 - 09:38 PM

hi, im not pretty sure which is the txt file u needed so ill post 2 of them that contain all the information i saw:

 

here is the one named "combofix"

 

ComboFix 13-07-12.01 - Oso 12/07/2013  22:03:42.1.2 - x86
Microsoft Windows 7 Starter   6.1.7601.1.1252.52.3082.18.1639.606 [GMT -4:00]
Running from: C:\Users\Oso\Desktop\ComboFix.exe
AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
 

 

and here is the one called "pend"

 

.:\\\(0!\|0\\0\)
C:\\windows\\system32\\\(\\\|0!\|0\\0\)
C:\\windows\\system32\\config\\\(\\\|0!\|0\\0\)
C:\\windows\\system32\\csrss.exe\\\(0!\|0\\0\)
C:\\windows\\system32\\Drivers\\\(\\\|0!\|0\\0\)
C:\\windows\\system32\\hal.dll\\\(0!\|0\\0\)
C:\\windows\\system32\\lsass.exe\\\(0!\|0\\0\)
C:\\windows\\system32\\ntdll.dll\\\(0!\|0\\0\)
C:\\windows\\system32\\services.exe\\\(0!\|0\\0\)
C:\\windows\\system32\\smss.exe\\\(0!\|0\\0\)
C:\\windows\\system32\\svchost.exe\\\(0!\|0\\0\)
C:\\windows\\system32\\userinit.exe\\\(0!\|0\\0\)
C:\\windows\\system32\\wbem\\\(\\\|0!\|0\\0\)
C:\\windows\\system32\\winlogon.exe\\\(0!\|0\\0\)
C:\\boot.ini\\\(0!\|0\\0\)
C:\\ntdetect.com\\\(0!\|0\\0\)
C:\\ntldr\\\(0!\|0\\0\)
C:\\windows\\\(\\\|0!\|0\\0\)
C:\\windows\\explorer.exe\\\(0!\|0\\0\)
 

the blue window said it found some rootkit activity, but proceeded without showing any error.

 

thanks again for your help. should i do something else????

 



#12 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:09 AM

Posted 14 July 2013 - 08:35 AM

Please attach C:\combofix.txt to your next reply.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#13 pabloescobar

pabloescobar
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 PM

Posted 15 July 2013 - 02:24 PM

the specific directory you request does not exist in my computer, i searched for it finding nothing. the olny .txt files related to combofix i found are the posted above and the following:

 

 

"Resident"

 

AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
 

 

 

"OsId"

 

Microsoft Windows 7 Starter   6.1.7601.1.1252.52.3082.18.1639.876 [GMT -4:00]
 

im sorry but i have searched all day the file u asked and couldn't find it, are you sure that is the right file/location??

 

thanks



#14 pabloescobar

pabloescobar
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 PM

Posted 15 July 2013 - 02:40 PM

unless this is what u wanted, in that case im soooooooooo embarrassed =P Attached File  ComboFix.txt   456bytes   3 downloads

 

 

 

i couldnt attach the original file so i copyed it to my desktop and attached the copy


Edited by pabloescobar, 15 July 2013 - 02:42 PM.


#15 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:09 AM

Posted 16 July 2013 - 01:02 AM

Restart into safe mode with networking and try to run combofix again. Then post up the log it provides.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users