Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected PC. Very Slow. Unknown Virus.


  • Please log in to reply
5 replies to this topic

#1 HomeBoy247

HomeBoy247

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:29 AM

Posted 11 June 2014 - 02:25 PM

I ran differents malware removal, but dindn't work. Bellow, I will summit some reports so you can help me. I don't have experience in this kind of things. I always have problems with virus. I don't know what else to do. I've download different kind of anti-virus, but no one helped me. I surf a lot in the internet, and always try to not download anything suspicious. I have intalled: Malwarebytes, TuneUp Utilities and Eset. And to determine threats, but I don't understand results: Ad Blocker, CCleaner, TDSSKiller, SecurityCheck, OTM, MiniToooBar, GMER, FSS, ADWCleaner.

 

I will appreciate your help and advice.

 

Farbar Service Scanner Version: 10-06-2014
Ran by MM (administrator) on 11-06-2014 at 13:24:28
Running from "C:\Users\MM\Desktop\Programas\Cleaners\Windows Cleaners"
Microsoft Windows 7 Home Premium   (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Attempt to access Yahoo.com returned error: Yahoo.com is unreachable


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => File is digitally signed
C:\Windows\system32\Drivers\nsiproxy.sys => File is digitally signed
C:\Windows\system32\dhcpcore.dll => File is digitally signed
C:\Windows\system32\Drivers\afd.sys => File is digitally signed
C:\Windows\system32\Drivers\tdx.sys => File is digitally signed
C:\Windows\system32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\system32\dnsrslvr.dll => File is digitally signed
C:\Windows\system32\mpssvc.dll => File is digitally signed
C:\Windows\system32\bfe.dll => File is digitally signed
C:\Windows\system32\Drivers\mpsdrv.sys => File is digitally signed
C:\Windows\system32\SDRSVC.dll => File is digitally signed
C:\Windows\system32\vssvc.exe => File is digitally signed
C:\Windows\system32\wscsvc.dll => File is digitally signed
C:\Windows\system32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\system32\wuaueng.dll => File is digitally signed
C:\Windows\system32\qmgr.dll => File is digitally signed
C:\Windows\system32\es.dll => File is digitally signed
C:\Windows\system32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\system32\ipnathlp.dll => File is digitally signed
C:\Windows\system32\iphlpsvc.dll => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed


**** End of log ****

 

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\Users\MM\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Desktop
 
User: dub_cm_auto
 
User: Invitado
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: MM
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 82694 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 53324002 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 602 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4804 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 586757 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 51,00 mb
 
 
OTM by OldTimer - Version 3.1.21.0 log created on 06112014_131348

Files moved on Reboot...

Registry entries deleted on Reboot...
 

 

# AdwCleaner v3.212 - Reporte Creado 11/06/2014 en 12:13:46
# Actualizado 05/06/2014 por Xplode
# Sistema Operativo : Windows 7 Home Premium  (32 bits)
# Nombre de usuario : MM - MM-PC
# Ejecutado desde : C:\Users\MM\Desktop\Programas\Cleaners\Windows Cleaners\adwcleaner_3.212.exe
# Opción : Limpiar

***** [ Servicios ] *****


***** [ Archivos / Carpetas ] *****


***** [ Accesos directos ] *****


***** [ Registro ] *****


***** [ Navegadores ] *****

-\\ Internet Explorer v8.0.7600.16385


-\\ Mozilla Firefox v29.0.1 (es-ES)

[ Archivo : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\djlswu6k.default\prefs.js ]


-\\ Google Chrome v35.0.1916.153

[ Archivo : C:\Users\Invitado\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ Archivo : C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [8404 octets] - [22/05/2014 14:40:33]
AdwCleaner[R10].txt - [2251 octets] - [03/06/2014 00:18:27]
AdwCleaner[R11].txt - [2374 octets] - [03/06/2014 21:12:41]
AdwCleaner[R12].txt - [2496 octets] - [04/06/2014 00:06:14]
AdwCleaner[R13].txt - [2884 octets] - [06/06/2014 05:40:50]
AdwCleaner[R14].txt - [2706 octets] - [09/06/2014 13:34:26]
AdwCleaner[R15].txt - [2862 octets] - [11/06/2014 06:25:22]
AdwCleaner[R1].txt - [1801 octets] - [23/05/2014 11:20:28]
AdwCleaner[R2].txt - [1301 octets] - [23/05/2014 20:00:05]
AdwCleaner[R3].txt - [1430 octets] - [27/05/2014 12:44:57]
AdwCleaner[R4].txt - [1530 octets] - [27/05/2014 20:46:33]
AdwCleaner[R5].txt - [1650 octets] - [28/05/2014 10:15:23]
AdwCleaner[R6].txt - [1770 octets] - [28/05/2014 18:31:01]
AdwCleaner[R7].txt - [1944 octets] - [31/05/2014 15:54:56]
AdwCleaner[R8].txt - [2010 octets] - [02/06/2014 04:11:51]
AdwCleaner[R9].txt - [2184 octets] - [02/06/2014 06:48:04]
AdwCleaner[S0].txt - [8168 octets] - [22/05/2014 14:47:21]
AdwCleaner[S10].txt - [2312 octets] - [03/06/2014 00:19:51]
AdwCleaner[S11].txt - [2434 octets] - [03/06/2014 21:13:55]
AdwCleaner[S12].txt - [2556 octets] - [04/06/2014 00:07:15]
AdwCleaner[S13].txt - [2936 octets] - [06/06/2014 05:46:26]
AdwCleaner[S14].txt - [2766 octets] - [09/06/2014 13:35:34]
AdwCleaner[S15].txt - [2240 octets] - [11/06/2014 12:13:46]
AdwCleaner[S1].txt - [1832 octets] - [23/05/2014 11:38:12]
AdwCleaner[S2].txt - [1360 octets] - [23/05/2014 22:34:07]
AdwCleaner[S3].txt - [1485 octets] - [27/05/2014 12:49:25]
AdwCleaner[S4].txt - [1589 octets] - [27/05/2014 20:47:13]
AdwCleaner[S5].txt - [1709 octets] - [28/05/2014 16:49:45]
AdwCleaner[S6].txt - [1829 octets] - [28/05/2014 18:34:31]
AdwCleaner[S7].txt - [1999 octets] - [01/06/2014 12:58:34]
AdwCleaner[S8].txt - [2069 octets] - [02/06/2014 04:14:00]
AdwCleaner[S9].txt - [2239 octets] - [02/06/2014 06:49:41]

########## EOF - C:\AdwCleaner\AdwCleaner[S15].txt - [2841 octets] ##########
 

 

MiniToolBox by Farbar  Version: 11-06-2014
Ran by MM (administrator) on 11-06-2014 at 13:31:06
Running from "C:\Users\MM\Desktop\Programas\Cleaners\Windows Cleaners"
Microsoft Windows 7 Home Premium   (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Configuraci�n IP de Windows

Se vaci� correctamente la cach� de resoluci�n de DNS.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

NIC de Fast Ethernet PCI-E de la familia Realtek RTL8102E/RTL8103E (NDIS 6.20) = Conexión de área local (Connected)
Adaptador WiFi Atheros AR9285 802.11b/g = Conexión de red inalámbrica (Media disconnected)


# ----------------------------------
# Configuraci�n de IPv4
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# Fin de la configuraci�n de IPv4



Configuraci�n IP de Windows

   Nombre de host. . . . . . . . . : MM-PC
   Sufijo DNS principal  . . . . . :
   Tipo de nodo. . . . . . . . . . : h�brido
   Enrutamiento IP habilitado. . . : no
   Proxy WINS habilitado . . . . . : no
   Lista de b�squeda de sufijos DNS: aster.com.do

Adaptador de LAN inal�mbrica Conexi�n de red inal�mbrica:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Adaptador WiFi Atheros AR9285 802.11b/g
   Direcci�n f�sica. . . . . . . . . . . . . : 90-00-4E-22-52-E7
   DHCP habilitado . . . . . . . . . . . . . : s�
   Configuraci�n autom�tica habilitada . . . : s�

Adaptador de Ethernet Conexi�n de �rea local:

   Sufijo DNS espec�fico para la conexi�n. . : aster.com.do
   Descripci�n . . . . . . . . . . . . . . . : NIC de Fast Ethernet PCI-E de la familia Realtek RTL8102E/RTL8103E (NDIS 6.20)
   Direcci�n f�sica. . . . . . . . . . . . . : 98-4B-E1-9C-D3-BB
   DHCP habilitado . . . . . . . . . . . . . : s�
   Configuraci�n autom�tica habilitada . . . : s�
   V�nculo: direcci�n IPv6 local. . . : fe80::419e:43c2:cd94:9834%11(Preferido)
   Direcci�n IPv4. . . . . . . . . . . . . . : 190.0.73.5(Preferido)
   M�scara de subred . . . . . . . . . . . . : 255.255.248.0
   Concesi�n obtenida. . . . . . . . . . . . : mi�rcoles, 11 de junio de 2014 13:14:58
   La concesi�n expira . . . . . . . . . . . : mi�rcoles, 11 de junio de 2014 23:14:59
   Puerta de enlace predeterminada . . . . . : 190.0.72.1
   Servidor DHCP . . . . . . . . . . . . . . : 190.0.72.1
   IAID DHCPv6 . . . . . . . . . . . . . . . : 244861921
   DUID de cliente DHCPv6. . . . . . . . . . : 00-01-00-01-1A-C7-4F-64-98-4B-E1-9C-D3-BB
   Servidores DNS. . . . . . . . . . . . . . : 190.0.64.10
                                       190.0.64.12
   NetBIOS sobre TCP/IP. . . . . . . . . . . : habilitado

Adaptador de t�nel isatap.aster.com.do:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Adaptador ISATAP de Microsoft
   Direcci�n f�sica. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuraci�n autom�tica habilitada . . . : s�

Adaptador de t�nel 6TO4 Adapter:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Adaptador 6to4 de Microsoft
   Direcci�n f�sica. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuraci�n autom�tica habilitada . . . : s�

Adaptador de t�nel Teredo Tunneling Pseudo-Interface:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Direcci�n f�sica. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuraci�n autom�tica habilitada . . . : s�
DNS request timed out.
    timeout was 2 seconds.
Servidor:  UnKnown
Address:  190.0.64.10

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
La solicitud de ping no pudo encontrar el host google.com. Compruebe el nombre y
vuelva a intentarlo.
DNS request timed out.
    timeout was 2 seconds.
Servidor:  UnKnown
Address:  190.0.64.10

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
La solicitud de ping no pudo encontrar el host yahoo.com. Compruebe el nombre y
vuelva a intentarlo.

Haciendo ping a 127.0.0.1 con 32 bytes de datos:
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128

Estad�sticas de ping para 127.0.0.1:
    Paquetes: enviados = 2, recibidos = 2, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    M�nimo = 0ms, M�ximo = 0ms, Media = 0ms
===========================================================================
ILista de interfaces
 13...90 00 4e 22 52 e7 ......Adaptador WiFi Atheros AR9285 802.11b/g
 11...98 4b e1 9c d3 bb ......NIC de Fast Ethernet PCI-E de la familia Realtek RTL8102E/RTL8103E (NDIS 6.20)
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Adaptador ISATAP de Microsoft
 15...00 00 00 00 00 00 00 e0 Adaptador 6to4 de Microsoft
 16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Tabla de enrutamiento
===========================================================================
Rutas activas:
Destino de red        M�scara de red   Puerta de enlace   Interfaz  M�trica
          0.0.0.0          0.0.0.0       190.0.72.1       190.0.73.5     20
        127.0.0.0        255.0.0.0      En v�nculo         127.0.0.1    306
        127.0.0.1  255.255.255.255      En v�nculo         127.0.0.1    306
  127.255.255.255  255.255.255.255      En v�nculo         127.0.0.1    306
       190.0.72.0    255.255.248.0      En v�nculo        190.0.73.5    276
       190.0.73.5  255.255.255.255      En v�nculo        190.0.73.5    276
     190.0.79.255  255.255.255.255      En v�nculo        190.0.73.5    276
        224.0.0.0        240.0.0.0      En v�nculo         127.0.0.1    306
        224.0.0.0        240.0.0.0      En v�nculo        190.0.73.5    276
  255.255.255.255  255.255.255.255      En v�nculo         127.0.0.1    306
  255.255.255.255  255.255.255.255      En v�nculo        190.0.73.5    276
===========================================================================
Rutas persistentes:
  Ninguno

IPv6 Tabla de enrutamiento
===========================================================================
Rutas activas:
 Cuando destino de red m�trica      Puerta de enlace
  1    306 ::1/128                  En v�nculo
 11    276 fe80::/64                En v�nculo
 11    276 fe80::419e:43c2:cd94:9834/128
                                    En v�nculo
  1    306 ff00::/8                 En v�nculo
 11    276 ff00::/8                 En v�nculo
===========================================================================
Rutas persistentes:
  Ninguno
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/11/2014 00:46:11 PM) (Source: VSS) (User: )
Description: Error del Servicio de instantáneas de volumen: error al crear la clase de proveedor de instantáneas COM con Id. {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
].


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/11/2014 00:46:11 PM) (Source: VSS) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} y el nombre SW_PROV no puede iniciarse. [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
]


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/11/2014 00:44:43 PM) (Source: VSS) (User: )
Description: Error del Servicio de instantáneas de volumen: error al crear la clase de proveedor de instantáneas COM con Id. {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
].


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/11/2014 00:44:43 PM) (Source: VSS) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} y el nombre SW_PROV no puede iniciarse. [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
]


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/11/2014 00:16:35 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StartScreenSaver

Error: (06/11/2014 06:20:31 AM) (Source: VSS) (User: )
Description: Error del Servicio de instantáneas de volumen: error al crear la clase de proveedor de instantáneas COM con Id. {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
].


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/11/2014 06:20:31 AM) (Source: VSS) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} y el nombre SW_PROV no puede iniciarse. [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
]


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/11/2014 06:20:28 AM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: FreemakeUtilsService.exe, versión: 1.0.0.0, marca de tiempo: 0x5369fdea
Nombre del módulo con errores: KERNELBASE.dll, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bdaae
Código de excepción: 0xe0434352
Desplazamiento de errores: 0x00009617
Id. del proceso con errores: 0x674
Hora de inicio de la aplicación con errores: 0xFreemakeUtilsService.exe0
Ruta de acceso de la aplicación con errores: FreemakeUtilsService.exe1
Ruta de acceso del módulo con errores: FreemakeUtilsService.exe2
Id. del informe: FreemakeUtilsService.exe3

Error: (06/11/2014 06:20:26 AM) (Source: .NET Runtime) (User: )
Description: Aplicación: FreemakeUtilsService.exe
Versión de Framework: v4.0.30319
Descripción: el proceso terminó debido a una excepción no controlada.
Información de la excepción: System.ArgumentException
Pila:
   en System.Security.Principal.SecurityIdentifier..ctor(System.String)
   en FreemakeUtilsService.Common.ToolbarInstallationChecker.GetSidToUsernameDictionary()
   en FreemakeUtilsService.Common.ToolbarInstallationChecker.CheckInfo(FreemakeUtilsService.Common.FreemakeToolbarsInfo)
   en FreemakeUtilsService.Statistics.Manager.StartToolbarInfoCheck()
   en FreemakeUtilsService.Statistics.Manager.SettingsSyncFailed(System.Object, System.EventArgs)
   en FreemakeUtilsService.Common.Synchronizer.OnWorkerCompleted(System.Object, System.ComponentModel.RunWorkerCompletedEventArgs)
   en System.ComponentModel.BackgroundWorker.OnRunWorkerCompleted(System.ComponentModel.RunWorkerCompletedEventArgs)
   en System.ComponentModel.BackgroundWorker.AsyncOperationCompleted(System.Object)
   en System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   en System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   en System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   en System.Threading.ThreadPoolWorkQueue.Dispatch()
   en System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/11/2014 06:18:50 AM) (Source: VSS) (User: )
Description: Error del Servicio de instantáneas de volumen: error al crear la clase de proveedor de instantáneas COM con Id. {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
].


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator


System errors:
=============
Error: (06/11/2014 01:30:05 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/11/2014 01:17:30 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/11/2014 01:17:27 PM) (Source: Service Control Manager) (User: )
Description: El servicio Proveedor de Grupo Hogar depende del servicio Host de proveedor de detección de función, el cual no pudo iniciarse debido al siguiente error:
%%1058

Error: (06/11/2014 01:15:07 PM) (Source: Service Control Manager) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
SMR410

Error: (06/11/2014 01:13:49 PM) (Source: Service Control Manager) (User: )
Description: El servicio Adobe Acrobat Update Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (06/11/2014 00:18:17 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/11/2014 00:18:13 PM) (Source: Service Control Manager) (User: )
Description: El servicio Proveedor de Grupo Hogar depende del servicio Host de proveedor de detección de función, el cual no pudo iniciarse debido al siguiente error:
%%1058

Error: (06/11/2014 00:18:12 PM) (Source: Service Control Manager) (User: )
Description: El servicio Proveedor de Grupo Hogar depende del servicio Host de proveedor de detección de función, el cual no pudo iniciarse debido al siguiente error:
%%1058

Error: (06/11/2014 00:18:10 PM) (Source: Service Control Manager) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
SMR410

Error: (06/11/2014 06:21:05 AM) (Source: Service Control Manager) (User: )
Description: El servicio Freemake Improver se terminó de manera inesperada. Esto ha sucedido 1 veces.


Microsoft Office Sessions:
=========================


=========================== Installed Programs ============================
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 13.0.0.111 - Adobe Systems Incorporated)
Adobe AIR (Version: 13.0.0.111 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
CamStudio 2.7.2 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.2 - CamStudio Open Source)
Camtasia Studio 8 (HKLM\...\{2B1F8DD0-873D-4AC3-8400-766F255FE263}) (Version: 8.1.0.1281 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version:  3.0 - Acro Software Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.33 - Dropbox, Inc.)
DVDVideoMedia Free DVD Ripper 2.5 (HKLM\...\{395CBF52-AF02-4DBD-A832-9BFD1500161F}}_is1) (Version: 2.5 - DVDVideoMedia, Inc.)
ESET NOD32 Antivirus (HKLM\...\{202FFB64-84C3-41A5-9AD0-DCB772A84591}) (Version: 7.0.317.4 - ESET, spol s r. o.)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )
FileZilla Client 3.8.0 (HKLM\...\FileZilla Client) (Version: 3.8.0 - Tim Kosse)
Free YouTube Download version 3.2.32.327 (HKLM\...\Free YouTube Download_is1) (Version: 3.2.32.327 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.32.327 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.32.327 - DVDVideoSoft Ltd.)
Freemake Video Converter versión 4.1.4 (HKLM\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM\...\{FBD50733-2ABE-3D23-88B4-7B0C0A0ADDA0}) (Version: 65.181.32922 - Google, Inc.)
Google Drive (HKLM\...\{418BAAD1-754D-48B4-B078-46EF4F25AF42}) (Version: 1.15.6556.8063 - Google, Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.24.7 - Google Inc.) Hidden
HiJackThis (HKLM\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
K-Lite Codec Pack 10.4.0 Full (HKLM\...\KLiteCodecPack_is1) (Version: 10.4.0 - )
Malwarebytes Anti-Malware versión 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile ESN Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Basque) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Catalan) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Galician) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 es-ES) (HKLM\...\Mozilla Firefox 29.0.1 (x86 es-ES)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MWSnap 3 (HKLM\...\MWSnap 3) (Version: 3.0.0.74 - Mirek Wojtowicz)
myflare (HKCU\...\myflare) (Version: 1.0.3.6 - myflare)
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (HKLM\...\Microsoft .NET Framework 4 Client Profile ESN Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.2 - pdfforge)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.2211.0 - CyberLink Corporation)
Screencast-O-Matic (HKCU\...\Screencast-O-Matic) (Version:  - Screencast-O-Matic)
Skype™ 6.14 (HKLM\...\{1845470B-EB14-4ABC-835B-E36C693DC07D}) (Version: 6.14.104 - Skype Technologies S.A.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.27614 - TeamViewer)
TuneUp Utilities 2014 (en-US) (Version: 14.0.1000.296 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM\...\TuneUp Utilities) (Version: 14.0.1000.296 - TuneUp Software)
TuneUp Utilities 2014 (Version: 14.0.1000.296 - TuneUp Software) Hidden
UltraISO Premium V9.36 (HKLM\...\UltraISO_is1) (Version:  - )
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

========================= Memory info: ===================================

Percentage of memory in use: 33%
Total physical RAM: 2810.9 MB
Available physical RAM: 1882.13 MB
Total Pagefile: 5620.08 MB
Available Pagefile: 4609.69 MB
Total Virtual: 2047.88 MB
Available Virtual: 1942.2 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.69 GB) (Free:88.4 GB) NTFS

========================= Users: ========================================

Cuentas de usuario de \\MM-PC

Administrador            Invitado                 MM                       
Se ha completado el comando correctamente.


**** End of log ****
 

 

GMER 2.1.19357 - http://www.gmer.net
3rd party scan 2014-06-11 15:23:58
Windows 6.1.7600  \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 TOSHIBA_MK1237GSX rev.DL130M 111,79GB
Running: GMER 2.1.19357.exe; Driver: C:\Users\MM\AppData\Local\Temp\pxldypoc.sys


---- System - GMER 2.1 ----

SSDT  \SystemRoot\system32\DRIVERS\ehdrv.sys                                                                                                                   ZwCreateThread [0x8E6F9F80]
SSDT  \SystemRoot\system32\DRIVERS\ehdrv.sys                                                                                                                   ZwLoadDriver [0x8E6FA040]
SSDT  \SystemRoot\system32\DRIVERS\ehdrv.sys                                                                                                                   ZwSetSystemInformation [0x8E6FA000]
SSDT  \SystemRoot\system32\DRIVERS\ehdrv.sys                                                                                                                   ZwSystemDebugControl [0x8E6F9FC0]

---- Registry - GMER 2.1 ----

Reg   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002109E600A0C00000000000F01FEC\Usage@ProductNonBootFilesIntl_3082  1154089101
Reg   HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList@MRUList                                                               bca
Reg   HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@SIGN.MEDIA=713F4 \xa0\Office 2007\SETUP.EXE           1

---- EOF - GMER 2.1 ----
 


Edited by hamluis, 11 June 2014 - 02:34 PM.
Moved from MRL to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 Netghost56

Netghost56

  • Members
  • 973 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:07:29 AM

Posted 11 June 2014 - 02:47 PM

Would it be possible to run Farbar in English?



#3 Netghost56

Netghost56

  • Members
  • 973 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:07:29 AM

Posted 11 June 2014 - 02:50 PM

I would check into the legality of these apps...some are notorious for being bundled with malware:

 

FileZilla Client 3.8.0
Free YouTube Download version 3.2.32.327
Free YouTube to MP3 Converter version 3.12.32.327
Freemake Video Converter versión 4.1.4
CutePDF Writer 3.0
CamStudio 2.7.2
Camtasia Studio 8
PDFCreator
Screencast-O-Matic
TuneUp Utilities 2014 (en-US) (Version: 14.0.1000.296 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM\...\TuneUp Utilities) (Version: 14.0.1000.296 - TuneUp Software)
TuneUp Utilities 2014 (Version: 14.0.1000.296 - TuneUp Software) Hidden
UltraISO Premium V9.36

 

Not sure why you have 3 copies of TuneUp Utilities installed...but it's 3 copies too many...



#4 HomeBoy247

HomeBoy247
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:29 AM

Posted 12 June 2014 - 09:29 AM

Would it be possible to run Farbar in English?

Let me try it. Let me find it. I don't I what program is that. Just run it? Or do anything else? Do I have to check all boxes in Farbar before run it?I will tell you when I do it. Thank you very much.

 

I didn't know I have those 3 app. I only find one TuneUp Utility in my programs.

 

Regards


Edited by HomeBoy247, 12 June 2014 - 09:38 AM.


#5 HomeBoy247

HomeBoy247
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:29 AM

Posted 12 June 2014 - 09:47 AM

I ran Fabar and didn't check the List BCD, Drivers MD5 and Shorcut.txt

 

This is the 2 reports. They were in 2 separated notepad:

 

#1

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:12-06-2014
Ran by MM (administrator) on MM-PC on 12-06-2014 10:44:58
Running from C:\Users\MM\Downloads
Platform: Microsoft Windows 7 Home Premium  (X86) OS Language: Spanish Modern Sort
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\MM\Downloads\Farbar.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5075104 2014-02-24] (ESET)
IFEO\dropbox.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO\dropboxuninstaller.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO\powerdvd.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO\teamviewer.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO\uninst.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.do/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://es.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDCDC3948CF4BCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es
SearchScopes: HKLM - DefaultScope value is missing.
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 190.0.64.10 190.0.64.12

FireFox:
========
FF ProfilePath: C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\djlswu6k.default
FF Homepage: www.google.com.do
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\drae.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-es.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-es.xml
FF Extension: AD Block - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\djlswu6k.default\Extensions\searchads@instair.net [2014-05-22]
FF Extension: SeoQuake - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\djlswu6k.default\Extensions\{317B5128-0B0B-49b2-B2DB-1E7560E16C74} [2014-05-09]
FF Extension: WOT - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\djlswu6k.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-05-23]
FF Extension: PageRank for Firefox - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\djlswu6k.default\Extensions\pagerank@any-tech.ws.xpi [2014-03-30]
FF Extension: Adblock Plus - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\djlswu6k.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-30]
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff [2014-03-30]
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ []
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014-06-03]
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ []

Chrome:
=======
CHR HomePage:
CHR DefaultSearchKeyword: google.com.do
CHR Extension: (Google Docs) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-30]
CHR Extension: (Google Drive) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-30]
CHR Extension: (YouTube) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-30]
CHR Extension: (Búsqueda de Google) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-30]
CHR Extension: (AD Block) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfgjbmhakaffflkjecineeaadpidgikb [2014-05-22]
CHR Extension: (Google Wallet) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-30]
CHR Extension: (Gmail) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-30]

========================== Services (Whitelisted) =================

R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1343408 2014-02-24] (ESET)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-07] (Freemake) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1774904 2014-04-15] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [188808 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [134248 2013-09-17] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [122376 2013-09-17] (ESET)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82320 2010-01-29] (EZB Systems, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2014-02-10] (TuneUp Software)
S0 SMR410; System32\drivers\SMR410.SYS [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-12 10:44 - 2014-06-12 10:45 - 00008565 _____ () C:\Users\MM\Downloads\FRST.txt
2014-06-12 10:35 - 2014-06-12 10:45 - 00000000 ___DC () C:\FRST
2014-06-12 10:34 - 2014-06-12 10:34 - 01073152 _____ (Farbar) C:\Users\MM\Downloads\Farbar.exe
2014-06-12 05:15 - 2014-06-12 09:43 - 00002542 _____ () C:\Windows\PFRO.log
2014-06-12 05:15 - 2014-06-12 09:43 - 00000112 _____ () C:\Windows\setupact.log
2014-06-12 05:15 - 2014-06-12 05:15 - 00413392 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-12 05:15 - 2014-06-12 05:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-12 03:15 - 2014-06-12 03:15 - 00001740 _____ () C:\Users\MM\Desktop\Antocoagulation.txt
2014-06-11 13:27 - 2014-06-11 13:28 - 00400384 _____ (Farbar) C:\Users\MM\Downloads\MiniToolBox.exe
2014-06-11 13:22 - 2014-06-11 13:23 - 00415744 _____ (Farbar) C:\Users\MM\Downloads\FSS.exe
2014-06-11 04:50 - 2014-06-11 04:50 - 00001892 _____ () C:\Users\MM\Desktop\Organo Gold Holiday Cookbook.htm
2014-06-06 06:47 - 2014-06-06 06:47 - 04558848 _____ (Google Inc.) C:\Windows\system32\GPhotos.scr
2014-06-06 05:40 - 2014-06-06 05:40 - 01333465 _____ () C:\Users\MM\Downloads\adwcleaner_3.212.exe
2014-06-03 22:06 - 2014-06-03 22:08 - 00000112 _____ () C:\Users\MM\Desktop\PLS Codes.txt
2014-06-03 21:25 - 2014-06-03 21:25 - 00083271 _____ () C:\Users\MM\Desktop\Tails-signing.key
2014-06-03 21:24 - 2014-06-03 21:24 - 00000836 _____ () C:\Users\MM\Desktop\tails-i386-1.0.iso.signature.sig
2014-06-03 01:03 - 2014-06-03 01:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-06-03 01:03 - 2014-06-03 01:03 - 00000000 ____D () C:\ProgramData\ESET
2014-06-02 19:52 - 2014-06-02 20:46 - 64233472 _____ () C:\Users\MM\Downloads\eav_nt32_esn.msi
2014-06-02 14:15 - 2014-06-02 14:15 - 00000000 ___DC () C:\_OTM
2014-06-02 00:28 - 2014-06-02 00:27 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1401683314875
2014-06-02 00:28 - 2014-06-02 00:27 - 00411552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1401683314875
2014-06-01 14:03 - 2014-06-01 18:57 - 00004333 _____ () C:\Users\MM\Desktop\Facebook Ads.txt
2014-05-31 11:25 - 2014-05-31 11:26 - 01132704 _____ (ESET spol. s r.o.) C:\Users\MM\Downloads\Eset Anti Virus Remover.exe
2014-05-30 19:43 - 2014-05-30 19:43 - 00000000 ____D () C:\Users\MM\AppData\Local\Adobe
2014-05-30 18:30 - 2014-05-30 18:30 - 00000111 _____ () C:\Users\MM\Desktop\Productos USA-OG.txt
2014-05-30 00:01 - 2014-03-31 09:35 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-05-29 01:55 - 2014-06-01 13:25 - 00000000 ____D () C:\Users\MM\Documents\PDF
2014-05-28 18:59 - 2014-06-03 01:03 - 00000000 ___DC () C:\Program Files\ESET
2014-05-28 06:37 - 2014-05-28 06:37 - 00022516 _____ () C:\Users\MM\AppData\Local\recently-used.xbel
2014-05-27 20:19 - 2014-05-27 20:19 - 00003584 _____ () C:\Users\MM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-27 12:43 - 2014-05-27 12:44 - 01327971 _____ () C:\Users\MM\Downloads\adwcleaner_3.211.exe
2014-05-27 12:31 - 2014-05-27 12:32 - 04144369 _____ () C:\Users\MM\Downloads\tdsskiller.zip
2014-05-26 22:17 - 2014-05-26 22:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-24 01:46 - 2014-05-29 02:13 - 00000000 ____D () C:\Users\MM\Desktop\ESTUDIA Y SINTETIZAR
2014-05-24 01:34 - 2014-05-24 01:35 - 02347384 _____ (ESET) C:\Users\MM\Downloads\Eset Smart Installer Online.exe
2014-05-23 00:59 - 2014-05-23 00:59 - 00000000 ____D () C:\Users\MM\AppData\Roaming\Spiritsoft
2014-05-23 00:58 - 2014-05-23 00:58 - 00319240 _____ () C:\Users\MM\Downloads\kissofdragon.zip
2014-05-23 00:43 - 2014-05-23 00:43 - 01601617 _____ () C:\Users\MM\Downloads\KOTD2014_New.zip
2014-05-22 19:08 - 2014-05-22 19:08 - 00000000 ____D () C:\Users\MM\AppData\Local\webkit
2014-05-22 18:58 - 2014-05-31 11:18 - 00000000 ____D () C:\Users\MM\.thumbnails
2014-05-22 18:58 - 2014-05-28 06:37 - 00000000 ____D () C:\Users\MM\AppData\Local\gtk-2.0
2014-05-22 18:52 - 2014-05-28 06:38 - 00000000 ____D () C:\Users\MM\.gimp-2.8
2014-05-22 18:52 - 2014-05-22 18:52 - 00000000 ____D () C:\Users\MM\AppData\Local\gegl-0.2
2014-05-22 14:40 - 2014-06-12 05:18 - 00000000 ___DC () C:\AdwCleaner
2014-05-22 14:27 - 2014-05-22 14:27 - 00000000 ___DC () C:\Program Files\Secunia
2014-05-22 14:27 - 2014-05-22 14:27 - 00000000 ____D () C:\Users\MM\AppData\Local\Secunia PSI
2014-05-22 14:26 - 2014-05-22 14:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-22 14:26 - 2014-05-22 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-22 14:26 - 2014-04-14 20:13 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-05-22 14:26 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-05-22 14:26 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-05-22 14:26 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-05-22 14:25 - 2014-05-22 14:26 - 00004001 _____ () C:\Windows\system32\jupdate-1.7.0_55-b14.log
2014-05-22 13:17 - 2014-05-22 13:18 - 00921512 _____ (Oracle Corporation) C:\Users\MM\Downloads\jxpiinstall.exe
2014-05-22 13:14 - 2014-05-22 13:16 - 05329480 _____ (Secunia) C:\Users\MM\Downloads\PSISetup.exe
2014-05-22 13:06 - 2014-05-22 13:06 - 01326389 _____ () C:\Users\MM\Downloads\adwcleaner_3.210.exe
2014-05-22 12:33 - 2014-05-22 12:33 - 00380416 _____ () C:\Users\MM\Downloads\gj9iu6r6.exe
2014-05-22 12:01 - 2014-05-22 12:01 - 00000000 ___DC () C:\Program Files\Trend Micro
2014-05-22 12:01 - 2014-05-22 12:01 - 00000000 ____D () C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-05-22 11:59 - 2014-05-22 11:59 - 01402880 _____ () C:\Users\MM\Downloads\HiJackThis.msi
2014-05-22 02:55 - 2014-05-22 02:55 - 00000000 ____D () C:\ProgramData\IObit
2014-05-22 02:54 - 2014-01-23 17:40 - 00268968 _____ () C:\Windows\system32\sqlite3.dll
2014-05-22 00:08 - 2014-05-22 00:08 - 00000000 ____D () C:\Users\MM\Desktop\Secret Cash Formula
2014-05-21 18:39 - 2014-05-21 18:39 - 00000000 ____D () C:\Users\MM\Documents\DESIREE
2014-05-20 09:16 - 2014-05-20 09:16 - 00056237 _____ () C:\Users\MM\Desktop\Red Tea150x150.jpeg
2014-05-16 07:00 - 2014-05-16 07:00 - 00000000 ____D () C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\myflare
2014-05-14 19:07 - 2014-05-14 23:23 - 00000000 ____D () C:\Users\MM\Documents\Magaly
2014-05-14 16:45 - 2014-05-14 16:45 - 00000000 ____D () C:\Users\MM\AppData\Roaming\TechSmith
2014-05-14 16:43 - 2014-05-14 16:43 - 00000000 ____D () C:\Users\MM\AppData\Local\TechSmith
2014-05-14 16:41 - 2014-05-14 16:41 - 00000000 ____D () C:\Users\MM\Documents\Camtasia Studio
2014-05-14 16:40 - 2014-05-14 16:40 - 00000000 ___DC () C:\Program Files\QuickTime
2014-05-14 16:40 - 2014-05-14 16:40 - 00000000 ____D () C:\ProgramData\regid.1995-08.com.techsmith
2014-05-14 16:40 - 2014-05-14 16:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2014-05-14 16:40 - 2014-05-14 16:40 - 00000000 ____D () C:\Program Files\Common Files\TechSmith Shared
2014-05-14 16:39 - 2014-05-14 16:39 - 00000000 ___DC () C:\Program Files\TechSmith
2014-05-14 16:39 - 2014-05-14 16:39 - 00000000 ____D () C:\ProgramData\TechSmith
2014-05-14 13:11 - 2014-05-14 13:28 - 250287464 _____ () C:\Users\MM\Downloads\camtasia.exe
2014-05-14 09:57 - 2014-05-14 09:57 - 00000000 ____D () C:\Users\MM\AppData\Local\FreemakeVideoConverter
2014-05-14 09:54 - 2014-05-14 09:57 - 00000000 ____D () C:\Users\MM\Documents\Freemake
2014-05-14 09:54 - 2014-05-14 09:56 - 00000000 ____D () C:\ProgramData\Freemake
2014-05-14 09:54 - 2014-05-14 09:54 - 00000000 ____D () C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2014-05-14 09:54 - 2014-05-14 09:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2014-05-14 09:53 - 2014-05-14 09:54 - 00000000 ___DC () C:\Program Files\Freemake
2014-05-14 09:49 - 2014-05-14 09:49 - 01308200 _____ (Ellora Assets Corporation ) C:\Users\MM\Downloads\FreemakeVideoConverterSetup.exe
2014-05-14 08:16 - 2014-05-14 16:51 - 00000000 ___DC () C:\Program Files\Aimersoft
2014-05-14 08:16 - 2014-05-14 08:20 - 00000000 ____D () C:\ProgramData\Aimersoft Video Converter Ultimate
2014-05-14 08:16 - 2014-05-14 08:16 - 00000000 ____D () C:\Users\MM\AppData\Local\Aimersoft
2014-05-14 08:16 - 2014-05-14 08:16 - 00000000 ____D () C:\Program Files\Common Files\Aimersoft
2014-05-14 08:16 - 2013-08-07 14:31 - 00214528 _____ () C:\Windows\system32\AiCM32.dll
2014-05-14 07:54 - 2014-05-14 08:04 - 00000000 ____D () C:\Users\MM\Documents\My CamStudio Temp Files
2014-05-14 07:49 - 2014-05-14 07:49 - 00000000 ___DC () C:\Program Files\DVDVideoMedia
2014-05-14 07:49 - 2014-05-14 07:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoMedia
2014-05-14 02:51 - 2014-06-02 14:15 - 00000000 ____D () C:\Users\Invitado\AppData\Local\Temp
2014-05-14 02:51 - 2014-05-14 02:52 - 00000000 ____D () C:\Users\Invitado\AppData\Local\Google
2014-05-14 02:51 - 2014-05-14 02:51 - 00001357 _____ () C:\Users\Invitado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-14 02:51 - 2014-05-14 02:51 - 00000020 ___SH () C:\Users\Invitado\ntuser.ini
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Reciente
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Plantillas
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Mis documentos
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Menú Inicio
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Impresoras
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Entorno de red
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Documents\Mis vídeos
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Documents\Mis imágenes
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Documents\Mi música
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Datos de programa
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\AppData\Local\Historial
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\AppData\Local\Datos de programa
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\AppData\Local\Archivos temporales de Internet
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 ____D () C:\Users\Invitado\AppData\Local\VirtualStore
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 ____D () C:\Users\Invitado
2014-05-14 02:51 - 2014-03-30 11:29 - 00000000 ____D () C:\Users\Invitado\AppData\Roaming\Macromedia
2014-05-14 02:51 - 2009-07-14 00:42 - 00000000 ___RD () C:\Users\Invitado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-14 02:51 - 2009-07-14 00:37 - 00000000 ___RD () C:\Users\Invitado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-13 01:09 - 2014-05-23 11:13 - 00000000 ____D () C:\Users\MM\AppData\Local\CrashDumps

==================== One Month Modified Files and Folders =======

2014-06-12 10:45 - 2014-06-12 10:44 - 00008565 _____ () C:\Users\MM\Downloads\FRST.txt
2014-06-12 10:45 - 2014-06-12 10:35 - 00000000 ___DC () C:\FRST
2014-06-12 10:45 - 2014-03-28 16:41 - 00000000 ____D () C:\Users\MM\AppData\Local\Temp
2014-06-12 10:34 - 2014-06-12 10:34 - 01073152 _____ (Farbar) C:\Users\MM\Downloads\Farbar.exe
2014-06-12 10:04 - 2014-03-30 01:08 - 00000838 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-12 09:51 - 2009-07-14 00:34 - 00014336 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-12 09:51 - 2009-07-14 00:34 - 00014336 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-12 09:45 - 2014-03-28 11:37 - 01217550 _____ () C:\Windows\WindowsUpdate.log
2014-06-12 09:43 - 2014-06-12 05:15 - 00002542 _____ () C:\Windows\PFRO.log
2014-06-12 09:43 - 2014-06-12 05:15 - 00000112 _____ () C:\Windows\setupact.log
2014-06-12 09:43 - 2009-07-14 00:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-12 05:18 - 2014-05-22 14:40 - 00000000 ___DC () C:\AdwCleaner
2014-06-12 05:15 - 2014-06-12 05:15 - 00413392 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-12 05:15 - 2014-06-12 05:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-12 03:18 - 2014-03-31 00:04 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-12 03:15 - 2014-06-12 03:15 - 00001740 _____ () C:\Users\MM\Desktop\Antocoagulation.txt
2014-06-11 13:28 - 2014-06-11 13:27 - 00400384 _____ (Farbar) C:\Users\MM\Downloads\MiniToolBox.exe
2014-06-11 13:23 - 2014-06-11 13:22 - 00415744 _____ (Farbar) C:\Users\MM\Downloads\FSS.exe
2014-06-11 12:17 - 2014-03-30 11:26 - 00001088 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-11 12:17 - 2014-03-30 11:26 - 00001084 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-11 05:44 - 2014-05-09 04:07 - 00000000 ____D () C:\Users\MM\AppData\Local\CutePDF Writer
2014-06-11 04:50 - 2014-06-11 04:50 - 00001892 _____ () C:\Users\MM\Desktop\Organo Gold Holiday Cookbook.htm
2014-06-10 13:42 - 2014-03-28 16:43 - 01555646 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-09 23:54 - 2014-05-02 00:18 - 00000000 ____D () C:\Users\MM\Documents\Word
2014-06-06 06:47 - 2014-06-06 06:47 - 04558848 _____ (Google Inc.) C:\Windows\system32\GPhotos.scr
2014-06-06 05:40 - 2014-06-06 05:40 - 01333465 _____ () C:\Users\MM\Downloads\adwcleaner_3.212.exe
2014-06-03 22:08 - 2014-06-03 22:06 - 00000112 _____ () C:\Users\MM\Desktop\PLS Codes.txt
2014-06-03 21:25 - 2014-06-03 21:25 - 00083271 _____ () C:\Users\MM\Desktop\Tails-signing.key
2014-06-03 21:24 - 2014-06-03 21:24 - 00000836 _____ () C:\Users\MM\Desktop\tails-i386-1.0.iso.signature.sig
2014-06-03 20:42 - 2014-03-30 10:43 - 00000000 ___RD () C:\Users\MM\Desktop\Programas
2014-06-03 01:03 - 2014-06-03 01:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-06-03 01:03 - 2014-06-03 01:03 - 00000000 ____D () C:\ProgramData\ESET
2014-06-03 01:03 - 2014-05-28 18:59 - 00000000 ___DC () C:\Program Files\ESET
2014-06-03 00:38 - 2014-03-30 14:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-03 00:38 - 2014-03-30 14:36 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-06-03 00:31 - 2014-03-30 15:36 - 00000000 ____D () C:\ProgramData\Norton
2014-06-03 00:31 - 2014-03-30 15:10 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-02 20:46 - 2014-06-02 19:52 - 64233472 _____ () C:\Users\MM\Downloads\eav_nt32_esn.msi
2014-06-02 14:15 - 2014-06-02 14:15 - 00000000 ___DC () C:\_OTM
2014-06-02 14:15 - 2014-05-14 02:51 - 00000000 ____D () C:\Users\Invitado\AppData\Local\Temp
2014-06-02 00:27 - 2014-06-02 00:28 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1401683314875
2014-06-02 00:27 - 2014-06-02 00:28 - 00411552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1401683314875
2014-06-01 18:57 - 2014-06-01 14:03 - 00004333 _____ () C:\Users\MM\Desktop\Facebook Ads.txt
2014-06-01 13:25 - 2014-05-29 01:55 - 00000000 ____D () C:\Users\MM\Documents\PDF
2014-05-31 11:40 - 2014-04-29 01:19 - 00000000 ____D () C:\Users\MM\Documents\Internet Marketing
2014-05-31 11:26 - 2014-05-31 11:25 - 01132704 _____ (ESET spol. s r.o.) C:\Users\MM\Downloads\Eset Anti Virus Remover.exe
2014-05-31 11:18 - 2014-05-22 18:58 - 00000000 ____D () C:\Users\MM\.thumbnails
2014-05-30 19:43 - 2014-05-30 19:43 - 00000000 ____D () C:\Users\MM\AppData\Local\Adobe
2014-05-30 18:30 - 2014-05-30 18:30 - 00000111 _____ () C:\Users\MM\Desktop\Productos USA-OG.txt
2014-05-29 23:33 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\Registration
2014-05-29 04:13 - 2014-03-30 01:08 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-05-29 04:13 - 2014-03-30 01:08 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-05-29 02:13 - 2014-05-24 01:46 - 00000000 ____D () C:\Users\MM\Desktop\ESTUDIA Y SINTETIZAR
2014-05-28 06:38 - 2014-05-22 18:52 - 00000000 ____D () C:\Users\MM\.gimp-2.8
2014-05-28 06:37 - 2014-05-28 06:37 - 00022516 _____ () C:\Users\MM\AppData\Local\recently-used.xbel
2014-05-28 06:37 - 2014-05-22 18:58 - 00000000 ____D () C:\Users\MM\AppData\Local\gtk-2.0
2014-05-27 20:19 - 2014-05-27 20:19 - 00003584 _____ () C:\Users\MM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-27 13:12 - 2014-03-28 17:21 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-27 12:44 - 2014-05-27 12:43 - 01327971 _____ () C:\Users\MM\Downloads\adwcleaner_3.211.exe
2014-05-27 12:32 - 2014-05-27 12:31 - 04144369 _____ () C:\Users\MM\Downloads\tdsskiller.zip
2014-05-26 22:17 - 2014-05-26 22:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-24 01:35 - 2014-05-24 01:34 - 02347384 _____ (ESET) C:\Users\MM\Downloads\Eset Smart Installer Online.exe
2014-05-23 11:13 - 2014-05-13 01:09 - 00000000 ____D () C:\Users\MM\AppData\Local\CrashDumps
2014-05-23 00:59 - 2014-05-23 00:59 - 00000000 ____D () C:\Users\MM\AppData\Roaming\Spiritsoft
2014-05-23 00:58 - 2014-05-23 00:58 - 00319240 _____ () C:\Users\MM\Downloads\kissofdragon.zip
2014-05-23 00:43 - 2014-05-23 00:43 - 01601617 _____ () C:\Users\MM\Downloads\KOTD2014_New.zip
2014-05-22 19:08 - 2014-05-22 19:08 - 00000000 ____D () C:\Users\MM\AppData\Local\webkit
2014-05-22 18:58 - 2014-03-28 16:41 - 00000000 ____D () C:\Users\MM
2014-05-22 18:52 - 2014-05-22 18:52 - 00000000 ____D () C:\Users\MM\AppData\Local\gegl-0.2
2014-05-22 15:03 - 2014-03-30 11:29 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-05-22 14:27 - 2014-05-22 14:27 - 00000000 ___DC () C:\Program Files\Secunia
2014-05-22 14:27 - 2014-05-22 14:27 - 00000000 ____D () C:\Users\MM\AppData\Local\Secunia PSI
2014-05-22 14:26 - 2014-05-22 14:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-22 14:26 - 2014-05-22 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-22 14:26 - 2014-05-22 14:25 - 00004001 _____ () C:\Windows\system32\jupdate-1.7.0_55-b14.log
2014-05-22 14:26 - 2014-03-30 11:31 - 00000000 ____D () C:\Program Files\Java
2014-05-22 13:18 - 2014-05-22 13:17 - 00921512 _____ (Oracle Corporation) C:\Users\MM\Downloads\jxpiinstall.exe
2014-05-22 13:16 - 2014-05-22 13:14 - 05329480 _____ (Secunia) C:\Users\MM\Downloads\PSISetup.exe
2014-05-22 13:06 - 2014-05-22 13:06 - 01326389 _____ () C:\Users\MM\Downloads\adwcleaner_3.210.exe
2014-05-22 12:33 - 2014-05-22 12:33 - 00380416 _____ () C:\Users\MM\Downloads\gj9iu6r6.exe
2014-05-22 12:16 - 2014-05-08 02:15 - 00000000 ___RD () C:\Users\MM\Dropbox
2014-05-22 12:03 - 2014-03-28 16:41 - 00000000 ____D () C:\Users\MM\AppData\Local\VirtualStore
2014-05-22 12:01 - 2014-05-22 12:01 - 00000000 ___DC () C:\Program Files\Trend Micro
2014-05-22 12:01 - 2014-05-22 12:01 - 00000000 ____D () C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-05-22 11:59 - 2014-05-22 11:59 - 01402880 _____ () C:\Users\MM\Downloads\HiJackThis.msi
2014-05-22 02:55 - 2014-05-22 02:55 - 00000000 ____D () C:\ProgramData\IObit
2014-05-22 00:10 - 2014-04-29 01:17 - 00000000 ____D () C:\Users\MM\Documents\OG
2014-05-22 00:08 - 2014-05-22 00:08 - 00000000 ____D () C:\Users\MM\Desktop\Secret Cash Formula
2014-05-21 21:04 - 2014-03-30 12:06 - 00000000 ____D () C:\Users\MM\AppData\Roaming\Dropbox
2014-05-21 18:39 - 2014-05-21 18:39 - 00000000 ____D () C:\Users\MM\Documents\DESIREE
2014-05-20 09:16 - 2014-05-20 09:16 - 00056237 _____ () C:\Users\MM\Desktop\Red Tea150x150.jpeg
2014-05-16 07:00 - 2014-05-16 07:00 - 00000000 ____D () C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\myflare
2014-05-16 07:00 - 2014-05-09 12:17 - 00000000 ____D () C:\Users\MM\AppData\Local\myflare
2014-05-14 23:23 - 2014-05-14 19:07 - 00000000 ____D () C:\Users\MM\Documents\Magaly
2014-05-14 16:51 - 2014-05-14 08:16 - 00000000 ___DC () C:\Program Files\Aimersoft
2014-05-14 16:45 - 2014-05-14 16:45 - 00000000 ____D () C:\Users\MM\AppData\Roaming\TechSmith
2014-05-14 16:43 - 2014-05-14 16:43 - 00000000 ____D () C:\Users\MM\AppData\Local\TechSmith
2014-05-14 16:41 - 2014-05-14 16:41 - 00000000 ____D () C:\Users\MM\Documents\Camtasia Studio
2014-05-14 16:40 - 2014-05-14 16:40 - 00000000 ___DC () C:\Program Files\QuickTime
2014-05-14 16:40 - 2014-05-14 16:40 - 00000000 ____D () C:\ProgramData\regid.1995-08.com.techsmith
2014-05-14 16:40 - 2014-05-14 16:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2014-05-14 16:40 - 2014-05-14 16:40 - 00000000 ____D () C:\Program Files\Common Files\TechSmith Shared
2014-05-14 16:39 - 2014-05-14 16:39 - 00000000 ___DC () C:\Program Files\TechSmith
2014-05-14 16:39 - 2014-05-14 16:39 - 00000000 ____D () C:\ProgramData\TechSmith
2014-05-14 13:28 - 2014-05-14 13:11 - 250287464 _____ () C:\Users\MM\Downloads\camtasia.exe
2014-05-14 13:11 - 2009-07-13 22:37 - 00000000 ___RD () C:\Users\Public
2014-05-14 13:07 - 2014-03-30 04:28 - 00004534 _____ () C:\Users\MM\AppData\Roaming\CamStudio.cfg
2014-05-14 13:07 - 2014-03-30 04:28 - 00000408 _____ () C:\Users\MM\AppData\Roaming\CamShapes.ini
2014-05-14 13:07 - 2014-03-30 04:28 - 00000408 _____ () C:\Users\MM\AppData\Roaming\CamLayout.ini
2014-05-14 13:07 - 2014-03-30 04:28 - 00000096 _____ () C:\Users\MM\AppData\Roaming\version2.xml
2014-05-14 13:07 - 2014-03-30 04:28 - 00000096 _____ () C:\Users\MM\AppData\Roaming\Camdata.ini
2014-05-14 09:57 - 2014-05-14 09:57 - 00000000 ____D () C:\Users\MM\AppData\Local\FreemakeVideoConverter
2014-05-14 09:57 - 2014-05-14 09:54 - 00000000 ____D () C:\Users\MM\Documents\Freemake
2014-05-14 09:56 - 2014-05-14 09:54 - 00000000 ____D () C:\ProgramData\Freemake
2014-05-14 09:54 - 2014-05-14 09:54 - 00000000 ____D () C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2014-05-14 09:54 - 2014-05-14 09:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2014-05-14 09:54 - 2014-05-14 09:53 - 00000000 ___DC () C:\Program Files\Freemake
2014-05-14 09:49 - 2014-05-14 09:49 - 01308200 _____ (Ellora Assets Corporation ) C:\Users\MM\Downloads\FreemakeVideoConverterSetup.exe
2014-05-14 09:09 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\security
2014-05-14 08:20 - 2014-05-14 08:16 - 00000000 ____D () C:\ProgramData\Aimersoft Video Converter Ultimate
2014-05-14 08:16 - 2014-05-14 08:16 - 00000000 ____D () C:\Users\MM\AppData\Local\Aimersoft
2014-05-14 08:16 - 2014-05-14 08:16 - 00000000 ____D () C:\Program Files\Common Files\Aimersoft
2014-05-14 08:04 - 2014-05-14 07:54 - 00000000 ____D () C:\Users\MM\Documents\My CamStudio Temp Files
2014-05-14 07:49 - 2014-05-14 07:49 - 00000000 ___DC () C:\Program Files\DVDVideoMedia
2014-05-14 07:49 - 2014-05-14 07:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoMedia
2014-05-14 07:30 - 2014-03-30 11:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-05-14 07:30 - 2014-03-30 11:04 - 00000000 ____D () C:\Program Files\DVDVideoSoft
2014-05-14 07:30 - 2014-03-30 11:04 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-05-14 07:30 - 2014-03-30 10:59 - 00000000 ____D () C:\Users\MM\AppData\Roaming\DVDVideoSoft
2014-05-14 02:52 - 2014-05-14 02:51 - 00000000 ____D () C:\Users\Invitado\AppData\Local\Google
2014-05-14 02:51 - 2014-05-14 02:51 - 00001357 _____ () C:\Users\Invitado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-14 02:51 - 2014-05-14 02:51 - 00000020 ___SH () C:\Users\Invitado\ntuser.ini
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Reciente
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Plantillas
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Mis documentos
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Menú Inicio
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Impresoras
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Entorno de red
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Documents\Mis vídeos
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Documents\Mis imágenes
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Documents\Mi música
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\Datos de programa
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\AppData\Local\Historial
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\AppData\Local\Datos de programa
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 _SHDL () C:\Users\Invitado\AppData\Local\Archivos temporales de Internet
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 ____D () C:\Users\Invitado\AppData\Local\VirtualStore
2014-05-14 02:51 - 2014-05-14 02:51 - 00000000 ____D () C:\Users\Invitado
2014-05-13 22:40 - 2014-05-02 00:19 - 00000000 ____D () C:\Users\MM\Documents\PLS
2014-05-13 12:13 - 2014-03-30 00:38 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-05-13 00:49 - 2014-03-30 04:20 - 00000000 ____D () C:\Users\MM\AppData\Local\Screencast-O-Matic

Files to move or delete:
====================
C:\Users\MM\AppData\Roaming\Camdata.ini
C:\Users\MM\AppData\Roaming\CamLayout.ini
C:\Users\MM\AppData\Roaming\CamShapes.ini


Some content of TEMP:
====================
C:\Users\MM\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-09 15:00

==================== End Of Log ============================

 

 

#2

Additional scan result of Farbar Recovery Scan Tool (x86) Version:12-06-2014
Ran by MM at 2014-06-12 10:46:13
Running from C:\Users\MM\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: ESET NOD32 Antivirus 7.0 (Enabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 7.0 (Enabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 13.0.0.111 - Adobe Systems Incorporated)
Adobe AIR (Version: 13.0.0.111 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
CamStudio 2.7.2 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.2 - CamStudio Open Source)
Camtasia Studio 8 (HKLM\...\{2B1F8DD0-873D-4AC3-8400-766F255FE263}) (Version: 8.1.0.1281 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version:  3.0 - Acro Software Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.33 - Dropbox, Inc.)
DVDVideoMedia Free DVD Ripper 2.5 (HKLM\...\{395CBF52-AF02-4DBD-A832-9BFD1500161F}}_is1) (Version: 2.5 - DVDVideoMedia, Inc.)
ESET NOD32 Antivirus (HKLM\...\{202FFB64-84C3-41A5-9AD0-DCB772A84591}) (Version: 7.0.317.4 - ESET, spol s r. o.)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )
FileZilla Client 3.8.0 (HKLM\...\FileZilla Client) (Version: 3.8.0 - Tim Kosse)
Free YouTube Download version 3.2.32.327 (HKLM\...\Free YouTube Download_is1) (Version: 3.2.32.327 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.32.327 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.32.327 - DVDVideoSoft Ltd.)
Freemake Video Converter versión 4.1.4 (HKLM\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM\...\{FBD50733-2ABE-3D23-88B4-7B0C0A0ADDA0}) (Version: 65.181.32922 - Google, Inc.)
Google Drive (HKLM\...\{418BAAD1-754D-48B4-B078-46EF4F25AF42}) (Version: 1.15.6556.8063 - Google, Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.24.7 - Google Inc.) Hidden
HiJackThis (HKLM\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
K-Lite Codec Pack 10.4.0 Full (HKLM\...\KLiteCodecPack_is1) (Version: 10.4.0 - )
Malwarebytes Anti-Malware versión 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile ESN Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Basque) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Catalan) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Galician) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 es-ES) (HKLM\...\Mozilla Firefox 29.0.1 (x86 es-ES)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MWSnap 3 (HKLM\...\MWSnap 3) (Version: 3.0.0.74 - Mirek Wojtowicz)
myflare (HKCU\...\myflare) (Version: 1.0.3.6 - myflare)
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (HKLM\...\Microsoft .NET Framework 4 Client Profile ESN Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.2 - pdfforge)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.2211.0 - CyberLink Corporation)
Screencast-O-Matic (HKCU\...\Screencast-O-Matic) (Version:  - Screencast-O-Matic)
Skype™ 6.14 (HKLM\...\{1845470B-EB14-4ABC-835B-E36C693DC07D}) (Version: 6.14.104 - Skype Technologies S.A.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.27614 - TeamViewer)
TuneUp Utilities 2014 (en-US) (Version: 14.0.1000.296 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM\...\TuneUp Utilities) (Version: 14.0.1000.296 - TuneUp Software)
TuneUp Utilities 2014 (Version: 14.0.1000.296 - TuneUp Software) Hidden
UltraISO Premium V9.36 (HKLM\...\UltraISO_is1) (Version:  - )
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points  =========================


==================== Hosts content: ==========================

2009-07-13 22:04 - 2009-06-10 17:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {362A3DA9-25E3-4463-80D5-00B372429E81} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-29] (Adobe Systems Incorporated)
Task: {503CCB12-741B-40CC-9CDB-5615475FED58} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd)
Task: {616DE1C7-FF45-46A6-9F97-B0302287A809} - System32\Tasks\Adobe online update program => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21] (Adobe Systems Incorporated)
Task: {6A51812E-93AC-41C7-8463-C7EF90FE382B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-30] (Google Inc.)
Task: {74BAA7C1-33D2-468C-8232-B36AAB7233E7} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\TuneUp Utilities 2014\OneClick.exe [2014-04-15] (TuneUp Software)
Task: {78EF8084-07F2-4BE1-9219-4DCB8B139A2E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-30] (Google Inc.)
Task: {8EDE93A0-250F-4D5E-A1F5-0AD0969AC6C4} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2341956299-2282092623-583542569-1000
Task: {F6ADAC58-A744-4681-81C9-81C075BEE82F} - System32\Tasks\FinishInstall igdhbblpcellaljokkpfhcjlagemhgjl => C:\Users\MM\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl\minibarchrome.exe
Task: {F94B6553-20D7-48F4-A9BE-940F9A11F770} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-03-28 05:35 - 2014-03-28 05:35 - 00093696 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2014-05-14 08:16 - 2013-08-07 14:31 - 00214528 _____ () C:\Windows\System32\AiCM32.dll
2014-03-30 11:34 - 2013-10-23 14:23 - 00089136 _____ () C:\Windows\System32\cpwmon2k.dll
2014-04-15 09:59 - 2014-04-15 09:59 - 00568120 _____ () C:\Program Files\TuneUp Utilities 2014\avgreplibx.dll
2006-10-26 13:56 - 2006-10-26 13:56 - 00757008 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
2014-05-11 23:10 - 2014-05-11 23:10 - 03839088 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/12/2014 10:46:14 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Error del Servicio de instantáneas de volumen: error al crear la clase de proveedor de instantáneas COM con Id. {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
].


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/12/2014 10:46:14 AM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} y el nombre SW_PROV no puede iniciarse. [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
]


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/12/2014 05:05:22 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Error del Servicio de instantáneas de volumen: error al crear la clase de proveedor de instantáneas COM con Id. {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
].


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/12/2014 05:05:22 AM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} y el nombre SW_PROV no puede iniciarse. [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
]


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/12/2014 04:57:04 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Error del Servicio de instantáneas de volumen: error al crear la clase de proveedor de instantáneas COM con Id. {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
].


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/12/2014 04:57:04 AM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} y el nombre SW_PROV no puede iniciarse. [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
]


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/12/2014 04:56:02 AM) (Source: VSS) (EventID: 12292) (User: )
Description: Error del Servicio de instantáneas de volumen: error al crear la clase de proveedor de instantáneas COM con Id. {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
].


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/12/2014 04:56:02 AM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} y el nombre SW_PROV no puede iniciarse. [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
]


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/11/2014 00:46:11 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Error del Servicio de instantáneas de volumen: error al crear la clase de proveedor de instantáneas COM con Id. {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
].


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator

Error: (06/11/2014 00:46:11 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} y el nombre SW_PROV no puede iniciarse. [0x80070422, No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
]


Operación:
   Obtener una interfaz disponible para este proveedor
   Mostrar lista de interfaces de todos los proveedores compatibles con este contexto
   Consultar instantáneas

Contexto:
   Id. de proveedor: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Id. de clase: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Contexto de instantánea: 13
   Contexto de instantánea: 13
   Contexto de ejecución: Coordinator


System errors:
=============
Error: (06/12/2014 09:44:04 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/12/2014 09:43:52 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Proveedor de Grupo Hogar depende del servicio Host de proveedor de detección de función, el cual no pudo iniciarse debido al siguiente error:
%%1058

Error: (06/12/2014 09:43:49 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
SMR410

Error: (06/12/2014 05:16:06 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Proveedor de Grupo Hogar depende del servicio Host de proveedor de detección de función, el cual no pudo iniciarse debido al siguiente error:
%%1058

Error: (06/12/2014 05:16:06 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/12/2014 05:15:44 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
SMR410

Error: (06/12/2014 05:14:11 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Adobe Acrobat Update Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (06/11/2014 01:33:14 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/11/2014 01:30:05 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/11/2014 01:17:30 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 47%
Total physical RAM: 2810.9 MB
Available physical RAM: 1470.88 MB
Total Pagefile: 5620.08 MB
Available Pagefile: 4313.18 MB
Total Virtual: 2047.88 MB
Available Virtual: 1875.39 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:87.88 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: 34AF8C74)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=112 GB) - (Type=07 NTFS)

==================== End Of Log ============================


Edited by HomeBoy247, 12 June 2014 - 09:50 AM.


#6 Netghost56

Netghost56

  • Members
  • 973 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:07:29 AM

Posted 12 June 2014 - 11:45 AM

Not seeing any definite infection, but you do have a lot of programs running.

 

I'd download Revo Uninstaller (Free version) and install it. Run the Program.

 

I'd remove TuneUp Utilities. Select "Advanced" on uninstall options. Complete the uninstallation and close Revo.

Reboot.

In the Run box type 'msconfig' (without ' ), select Startup, select Disable All, then select Services, check the box for Hide All Microsoft Services, select Disable All, then reselect your ESET Nod32 Antivirus services.

Reboot.

 

You need to update your ESET virus definitions, so do that next and run a full scan.


Edited by Netghost56, 12 June 2014 - 11:45 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users