Jump to content

may be infected

fishertiger
 Share

Recommended Posts

fishertiger

fishertiger

Posted
Posted

A long while ago my computer started showing many BSODs, they have stopped by now although sometimes they reappear. Besides that, sometimes my computer slows down a lot, the physical memory indicator indicator of the task manager is always over 50% and I feel like there are too many processes being used(around 70, most of them svchost.exe)

DDS

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_33

Run by Diego Carlos 1 at 12:23:21 on 2012-07-26

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.34.3082.18.4094.1976 [GMT 2:00]

.

AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}

FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\taskeng.exe

C:\Windows\SysWOW64\svchost.exe -k netsvcs

C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Windows\System32\svchost.exe -k HPZ12

C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\WUDFHost.exe

C:\Windows\SysWOW64\DllHost.exe

C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\WINDOWS\vsnpstd3.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

C:\Program Files (x86)\Skype\Phone\Skype.exe

C:\Users\Diego Carlos 1\Desktop\uTorrent.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\hp\support\hpsysdrv.exe

C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

C:\hp\kbd\kbd.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_265.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_265.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\SysWOW64\conime.exe

C:\Windows\SysWOW64\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.es/

uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=es_es&c=84&bd=Pavilion&pf=cndt

mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=es_es&c=84&bd=Pavilion&pf=cndt

mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=es_es&c=84&bd=Pavilion&pf=cndt

uURLSearchHooks: N/A: {9cb65206-89c4-402c-ba80-02d8c59f9b1d} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL

mWinlogon: Userinit=userinit.exe,

BHO: Aplicación auxiliar de vínculos de Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

BHO: Norton Identity Protection: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\coIEPlg.dll

BHO: Norton Vulnerability Protection: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\IPS\IPSBHO.DLL

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Ask Search Assistant BHO: {9cb65201-89c4-402c-ba80-02d8c59f9b1d} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL

BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: Ask Toolbar BHO: {fe063db1-4ec0-403e-8dd8-394c54984b2c} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL

TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\coIEPlg.dll

TB: Ask Toolbar: {fe063db9-4ec0-403e-8dd8-394c54984b2c} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [HPAdvisor] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe autorun=AUTORUN

uRun: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

uRun: [uTorrent] "C:\Users\Diego Carlos 1\Desktop\uTorrent.exe" /MINIMIZED

uRun: [Google Update] "C:\Users\Diego Carlos 1\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

mRun: [hpsysdrv] c:\hp\support\hpsysdrv.exe

mRun: [KBD] C:\HP\KBD\KbdStub.EXE

mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

mRun: [Reader Library Launcher] C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe

mRun: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe

mRun: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: E&xportar a Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab

TCP: DhcpNameServer = 192.168.0.1 192.168.0.1

TCP: Interfaces\{D7311F11-E68F-47F5-BE80-DBAB748A84A1} : NameServer = 208.67.222.222,208.67.220.220

TCP: Interfaces\{D7311F11-E68F-47F5-BE80-DBAB748A84A1} : DhcpNameServer = 192.168.0.1 192.168.0.1

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}

{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}

{6D53EC84-6AAE-4787-AEEE-F4628F01010C}

{72853161-30C5-4D22-B7F9-0BBC1D38A37E}

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{9CB65201-89C4-402c-BA80-02D8C59F9B1D}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

{FE063DB1-4EC0-403e-8DD8-394C54984B2C}

{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}

{FE063DB9-4EC0-403e-8DD8-394C54984B2C}

mRun-x64: [hpsysdrv] c:\hp\support\hpsysdrv.exe

mRun-x64: [KBD] C:\HP\KBD\KbdStub.EXE

mRun-x64: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

mRun-x64: [Reader Library Launcher] C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe

mRun-x64: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe

mRun-x64: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe

SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook

.

================= FIREFOX ===================

.

FF - ProfilePath -

.

============= SERVICES / DRIVERS ===============

.

R0 SymDS;Symantec Data Store;C:\Windows\system32\drivers\NISx64\1307010.005\SYMDS64.SYS --> C:\Windows\system32\drivers\NISx64\1307010.005\SYMDS64.SYS [?]

R0 SymEFA;Symantec Extended File Attributes;C:\Windows\system32\drivers\NISx64\1307010.005\SYMEFA64.SYS --> C:\Windows\system32\drivers\NISx64\1307010.005\SYMEFA64.SYS [?]

R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\BASHDefs\20120711.002\BHDrvx64.sys [2012-7-12 1161376]

R1 ccSet_NIS;Norton Internet Security Settings Manager;C:\Windows\system32\drivers\NISx64\1307010.005\ccSetx64.sys --> C:\Windows\system32\drivers\NISx64\1307010.005\ccSetx64.sys [?]

R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\IPSDefs\20120725.001\IDSviA64.sys [2012-7-26 509088]

R1 SymIRON;Symantec Iron Driver;C:\Windows\system32\drivers\NISx64\1307010.005\Ironx64.SYS --> C:\Windows\system32\drivers\NISx64\1307010.005\Ironx64.SYS [?]

R1 SYMTDIv;Symantec Vista Network Dispatch Driver;C:\Windows\system32\Drivers\NISx64\1307010.005\SYMTDIV.SYS --> C:\Windows\system32\Drivers\NISx64\1307010.005\SYMTDIV.SYS [?]

R2 ezSharedSvc;Easybits Shared Services for Windows;C:\Windows\system32\svchost.exe -k netsvcs [2008-1-21 21504]

R2 FontCache;Servicio de caché de fuentes de Windows;C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]

R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccsvchst.exe [2012-5-18 138232]

R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-3-23 2348352]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-2-9 382272]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-5-31 138912]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-13 250056]

S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-4-26 113120]

S3 PerfHost;DLL de host del Contador de rendimiento;C:\WINDOWS\SysWOW64\perfhost.exe [2008-1-21 19968]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-3-18 1020768]

S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2012-3-24 89920]

.

=============== File Associations ===============

.

JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*

.

=============== Created Last 30 ================

.

2012-07-24 15:17:27 -------- d-----w- C:\Users\Diego Carlos 1\AppData\Local\Microsoft Games

2012-07-24 08:56:58 9133488 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D96D092C-F5D3-4ADD-AAFD-C1BF6E67FA44}\mpengine.dll

2012-07-23 10:50:04 469264 ----a-w- C:\Windows\System32\d3dx10.dll

2012-07-23 10:50:04 440080 ----a-w- C:\Windows\SysWow64\d3dx10.dll

2012-07-23 10:49:14 466456 ----a-w- C:\Windows\System32\wrap_oal.dll

2012-07-23 10:49:14 444952 ----a-w- C:\Windows\SysWow64\wrap_oal.dll

2012-07-23 10:49:14 122904 ----a-w- C:\Windows\System32\OpenAL32.dll

2012-07-23 10:49:14 109080 ----a-w- C:\Windows\SysWow64\OpenAL32.dll

2012-07-23 10:49:14 -------- d-----w- C:\Program Files (x86)\OpenAL

2012-07-21 20:56:43 -------- d-----w- C:\ProgramData\LightScribe

2012-07-21 20:53:11 -------- d-----w- C:\ProgramData\Nero

2012-07-21 20:12:45 106496 ----a-w- C:\Windows\SysWow64\TwnLib20.dll

2012-07-21 20:12:44 155648 ----a-w- C:\Windows\SysWow64\NeroCheck.exe

2012-07-21 19:58:16 -------- d-----w- C:\Program Files (x86)\AskTBar

2012-07-17 18:23:09 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx

2012-07-17 18:23:09 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts

2012-07-17 18:23:09 180224 ----a-w- C:\Windows\SysWow64\QTCF.dll

2012-07-17 18:23:07 -------- d-----w- C:\Program Files (x86)\QuickTime Alternative

2012-07-17 17:59:38 -------- d-----w- C:\Users\Diego Carlos 1\AppData\Local\{FF78E469-CE48-4558-B8F6-D7CB53CEF741}

2012-07-17 17:59:36 -------- d-----w- C:\Users\Diego Carlos 1\AppData\Local\{A93A81A4-E74C-475D-A7EC-4D93577FE055}

2012-07-17 17:50:14 -------- d-----w- C:\Windows\es

2012-07-17 17:46:55 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

2012-07-17 17:43:41 89944 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\b3dc9c031cd644303\DSETUP.dll

2012-07-17 17:43:41 537432 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\b3dc9c031cd644303\DXSETUP.exe

2012-07-17 17:43:41 1801048 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\b3dc9c031cd644303\dsetup32.dll

2012-07-17 17:43:37 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\b0b2fa631cd644302\DSETUP.dll

2012-07-17 17:43:37 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\b0b2fa631cd644302\DXSETUP.exe

2012-07-17 17:43:37 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\b0b2fa631cd644302\dsetup32.dll

2012-07-17 17:42:55 -------- d-----w- C:\Users\Diego Carlos 1\AppData\Local\Windows Live

2012-07-17 17:42:54 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live

2012-07-17 16:58:03 -------- d-----w- C:\Program Files (x86)\AviSynth 2.5

2012-07-17 16:57:02 -------- d-----w- C:\Program Files (x86)\Avi2Dvd

2012-07-13 22:14:20 -------- d-----w- C:\Program Files (x86)\Common Files\AIPTEK HD-DV

2012-07-12 20:45:26 -------- d-----w- C:\Users\Diego Carlos 1\AppData\Roaming\NVIDIA

2012-07-12 20:42:42 -------- d-----w- C:\Users\Diego Carlos 1\AppData\Local\Sony

2012-07-12 15:46:39 9822920 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe

2012-07-11 09:32:00 974848 ----a-w- C:\Program Files\Common Files\System\ado\msado15.dll

2012-07-11 09:31:59 708608 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msado15.dll

2012-07-11 09:31:54 1869824 ----a-w- C:\Windows\System32\msxml3.dll

2012-07-11 09:31:54 1797120 ----a-w- C:\Windows\System32\msxml6.dll

2012-07-11 09:31:53 1401856 ----a-w- C:\Windows\SysWow64\msxml6.dll

2012-07-11 09:31:53 1248768 ----a-w- C:\Windows\SysWow64\msxml3.dll

2012-07-11 09:31:51 77312 ----a-w- C:\Windows\SysWow64\secur32.dll

2012-07-11 09:31:51 516480 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2012-07-11 09:31:51 347136 ----a-w- C:\Windows\System32\schannel.dll

2012-07-11 09:31:51 278528 ----a-w- C:\Windows\SysWow64\schannel.dll

2012-07-11 09:31:51 254464 ----a-w- C:\Windows\System32\ncrypt.dll

2012-07-11 09:31:51 204288 ----a-w- C:\Windows\SysWow64\ncrypt.dll

2012-07-11 09:19:17 -------- d-----w- C:\Users\Diego Carlos 1\AppData\Roaming\TuneUp Software

2012-07-11 09:16:46 -------- d-----w- C:\ProgramData\TuneUp Software

2012-07-11 09:16:31 -------- d-sh--w- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}

2012-07-11 09:16:31 -------- d--h--w- C:\ProgramData\Common Files

2012-07-07 08:48:06 476936 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll

.

==================== Find3M ====================

.

2012-07-12 15:46:48 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-07-12 15:46:48 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-07-07 08:47:57 472840 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-06-13 13:58:27 2769408 ----a-w- C:\Windows\System32\win32k.sys

2012-06-02 22:15:31 2622464 ----a-w- C:\Windows\System32\wucltux.dll

2012-06-02 22:15:08 99840 ----a-w- C:\Windows\System32\wudriver.dll

2012-06-02 22:12:13 88576 ----a-w- C:\Windows\SysWow64\wudriver.dll

2012-06-02 13:19:42 186752 ----a-w- C:\Windows\System32\wuwebv.dll

2012-06-02 13:19:42 171904 ----a-w- C:\Windows\SysWow64\wuwebv.dll

2012-06-02 13:15:12 36864 ----a-w- C:\Windows\System32\wuapp.exe

2012-06-02 13:12:20 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe

2012-06-02 12:12:17 2311680 ----a-w- C:\Windows\System32\jscript9.dll

2012-06-02 12:05:28 1392128 ----a-w- C:\Windows\System32\wininet.dll

2012-06-02 12:04:50 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl

2012-06-02 12:01:40 173056 ----a-w- C:\Windows\System32\ieUnatt.exe

2012-06-02 11:57:08 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2012-06-02 08:33:25 1800192 ----a-w- C:\Windows\SysWow64\jscript9.dll

2012-06-02 08:25:08 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll

2012-06-02 08:25:03 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2012-06-02 08:20:33 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

2012-06-02 08:16:52 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2012-05-31 10:25:12 279656 ------w- C:\Windows\System32\MpSigStub.exe

2012-05-01 14:29:44 209920 ----a-w- C:\Windows\System32\drivers\rdpwd.sys

.

============= FINISH: 12:24:01,59 ===============

Attach

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft® Windows Vista™ Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 22/03/2012 21:12:47

System Uptime: 26/07/2012 8:39:56 (4 hours ago)

.

Motherboard: PEGATRON CORPORATION | | Benicia

Processor: Intel® Core™2 Quad CPU Q9400 @ 2.66GHz | CPU 1 | 2667/1333mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 582 GiB total, 529,508 GiB free.

D: is FIXED (NTFS) - 14 GiB total, 1,897 GiB free.

E: is CDROM ()

G: is Removable

H: is Removable

I: is Removable

J: is Removable

K: is Removable

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP120: 22/07/2012 23:05:55 - Windows Update

RP121: 23/07/2012 12:49:37 - Se ha instalado DirectX

.

==== Installed Programs ======================

.

2500

2500_Help

2500Trb

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Adobe Reader 8.1.2 - Español

AIO_CDB_ProductContext

AIO_CDB_Software

AIO_Scan

Apple Software Update

Ask Toolbar

µTorrent

BufferChm

Cards_Calendar_OrderGift_DoMorePlugout

Complemento Guardar como PDF o XPS de Microsoft para programas de Microsoft Office 2007

Copy

CustomerResearchQFolder

CyberLink DVD Suite Deluxe

D3DX10

Destinations

DeviceManagementQFolder

DocProc

DocProcQFolder

eSupportQFolder

Fax

Final Fantasy VII - Ultima Edition

Galería fotográfica de Windows Live

Google Chrome

Hardware Diagnostic Tools

HD-DV decoder

Hewlett-Packard Active Check for Health Check

Hewlett-Packard Asset Agent for Health Check

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

HP Active Support Library

HP Customer Experience Enhancements

HP Customer Feedback

HP Demo

HP Easy Setup - Frontend

HP Photosmart Essential

HP Photosmart Essential 2.5

HP Picasso Media Center Add-In

HP Product Assistant

HP Recovery Manager RSS

HP Total Care Advisor

HP Update

HPPhotoSmartPhotobookWebPack1

HPProductAssistant

HPSSupply

Java Auto Updater

Java™ 6 Update 33

Java™ SE Runtime Environment 6 Update 1

LabelPrint

Malwarebytes Anti-Malware versión 1.61.0.1400

MarketResearch

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Access MUI (Spanish) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel 2007 Help Actualización (KB963678)

Microsoft Office Excel MUI (Spanish) 2007

Microsoft Office File Validation Add-In

Microsoft Office Groove MUI (Spanish) 2007

Microsoft Office InfoPath MUI (Spanish) 2007

Microsoft Office OneNote MUI (Spanish) 2007

Microsoft Office Outlook 2007 Help Actualización (KB963677)

Microsoft Office Outlook MUI (Spanish) 2007

Microsoft Office Powerpoint 2007 Help Actualización (KB963669)

Microsoft Office PowerPoint MUI (Spanish) 2007

Microsoft Office Proof (Basque) 2007

Microsoft Office Proof (Catalan) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Galician) 2007

Microsoft Office Proof (Portuguese (Brazil)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (Spanish) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (Spanish) 2007

Microsoft Office Shared MUI (Spanish) 2007

Microsoft Office Word 2007 Help Actualización (KB963665)

Microsoft Office Word MUI (Spanish) 2007

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft Works

Mozilla Firefox 14.0.1 (x86 es-ES)

Mozilla Maintenance Service

MSVCRT

MSVCRT Redists

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

muvee autoProducer 6.1

My HP Games

Norton Internet Security

NVIDIA PhysX

NVIDIA Stereoscopic 3D Driver

OpenAL

Paquete de compatibilidad para 2007 Office system

Power2Go

PowerDirector

PSSWCORE

Python 2.5.2

QuickTime Alternative 3.2.0

Reader Library by Sony

Realtek High Definition Audio Driver

Scan

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

Security Update for Microsoft Office 2007 suites (KB2596666) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition

Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition

Security Update for Microsoft Office InfoPath 2007 (KB2596786) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition

Security Update for Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (KB2478663)

Security Update for Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (KB2518870)

Segoe UI

Skype Toolbars

Skype™ 5.10

Solución de Teclado Multimedia Optimizado

SolutionCenter

Status

Toolbox

TrayApp

UnloadSupport

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition

VideoToolkit01

VLC media player 1.0.3

WebReg

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

WinRAR archiver

.

==== Event Viewer Messages From Past Week ========

.

26/07/2012 8:40:21, Error: Microsoft-Windows-Dhcp-Client [1002] - El servidor DHCP 192.168.0.1 denegó la concesión de la dirección IP 192.168.0.192 para la tarjeta de red con dirección de red 002215256FC3 (el servidor DHCP envió un mensaje DHCPNACK).

25/07/2012 13:52:10, Error: Microsoft-Windows-Dhcp-Client [1002] - El servidor DHCP 192.168.0.1 denegó la concesión de la dirección IP 192.168.0.192 para la tarjeta de red con dirección de red 002215256FC3 (el servidor DHCP envió un mensaje DHCPNACK).

25/07/2012 11:49:56, Error: Microsoft-Windows-Dhcp-Client [1002] - El servidor DHCP 192.168.0.1 denegó la concesión de la dirección IP 192.168.0.193 para la tarjeta de red con dirección de red 002215256FC3 (el servidor DHCP envió un mensaje DHCPNACK).

24/07/2012 10:51:56, Error: Microsoft-Windows-Dhcp-Client [1002] - El servidor DHCP 192.168.0.1 denegó la concesión de la dirección IP 192.168.0.192 para la tarjeta de red con dirección de red 002215256FC3 (el servidor DHCP envió un mensaje DHCPNACK).

22/07/2012 23:06:13, Error: volsnap [20] - Se anularon las instantáneas del volumen C: debido a un error de cálculo de espacio disponible.

20/07/2012 17:57:56, Error: Microsoft-Windows-Dhcp-Client [1002] - El servidor DHCP 192.168.0.1 denegó la concesión de la dirección IP 192.168.0.192 para la tarjeta de red con dirección de red 002215256FC3 (el servidor DHCP envió un mensaje DHCPNACK).

20/07/2012 15:17:45, Error: Service Control Manager [7011] - Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio SysMain.

20/07/2012 15:17:15, Error: Service Control Manager [7011] - Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio TrkWks.

19/07/2012 11:49:11, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:49:11, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:49:11, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:49:11, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:48:52, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:48:52, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:48:31, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:48:31, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:47:44, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:47:44, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:47:44, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:47:44, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:47:29, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:47:29, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:46:55, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:46:55, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:46:34, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:46:34, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:46:01, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:46:01, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:45:29, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:45:29, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:45:29, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:45:29, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:45:11, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:45:11, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:44:56, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:44:56, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:44:10, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:44:10, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:44:10, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:44:10, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:43:43, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:43:43, Error: Service Control Manager [7009] - Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Search.

19/07/2012 11:43:43, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:43:43, Error: Service Control Manager [7000] - El servicio Windows Search no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control.

19/07/2012 11:43:43, Error: Microsoft-Windows-DistributedCOM [10005] - Error de DCOM "1053" al intentar iniciar el servicio WSearch con argumentos "" para ejecutar el servidor: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

19/07/2012 11:38:16, Error: Microsoft-Windows-Dhcp-Client [1002] - El servidor DHCP 192.168.0.1 denegó la concesión de la dirección IP 192.168.0.192 para la tarjeta de red con dirección de red 002215256FC3 (el servidor DHCP envió un mensaje DHCPNACK).

.

==== End Of File ===========================

Link to post
Share on other sites
  • Staff
screen317

screen317

Posted
  • Staff
Posted

Hi and welcome to Malwarebytes.

Please see:

Forum Piracy Policy

We will not assist users that are obviously using illegal software.

If any such evidence is found you will be given the benefit of the doubt and the opportunity to completely uninstall and delete any such data from your system.

During the scanning process if any further evidence shows up your topic will be closed and no further assistance will be provided.

If you're using Peer 2 Peer software such as uTorrent or similar you must either fully uninstall it or completely disable it from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

It's likely why your issue began in the first place.

Link to post
Share on other sites
  • Staff
screen317

screen317

Posted
  • Staff
Posted

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.