Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Help, need farbar fixlist.txt windows 7 32bit, [Closed]

Started by joseanshadow , Aug 16 2014 11:53 AM
farbar fixlist boot startup loop

  • This topic is locked This topic is locked

#1
joseanshadow
Posted 16 August 2014 - 11:53 AM

joseanshadow

    New Member

  • Member
  • Pip
  • 1 posts
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:16-08-2014 03
Ran by SYSTEM on MININT-9DLK29T on 16-08-2014 13:30:25
Running from E:\
Platform: Windows 7 Ultimate (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Recovery
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,
HKU\Default\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\Default User\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\josean\...\Run: [Raptr] => C:\PROGRA~1\Raptr\raptrstub.exe --startup
HKU\josean\...\Run: [UpdateChecker] => C:\Users\josean\AppData\Local\Popajar\UpdateChecker\UpdateCheckerApp.exe [7168 2014-01-16] (Popajar, inc)
HKU\josean\...\Run: [BackgroundContainerV2] => "C:\Windows\system32\Rundll32.exe" "C:\Users\josean\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun
HKU\Mcx1-JOSEAN-PC\...\Winlogon: [Shell] C:\Windows\eHome\McrMgr.exe [313344 2009-07-13] (Microsoft Corporation) <==== ATTENTION 
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-09-07] (AVAST Software)
S3 avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-09-07] (AVAST Software)
S3 avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-09-07] (AVAST Software)
S2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1617072 2014-07-18] (Microsoft Corporation)
S3 WinHttpAutoProxySvc; winhttp.dll [348672 2009-07-13] (Microsoft Corporation)
S2 AdobeARMservice; "C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
S3 Appinfo; %SystemRoot%\System32\appinfo.dll [X]
S2 AudioEndpointBuilder; %SystemRoot%\System32\Audiosrv.dll [X]
S2 Audiosrv; %SystemRoot%\System32\Audiosrv.dll [X]
S3 AxInstSV; %SystemRoot%\System32\AxInstSV.dll [X]
S2 BBSvc; C:\Program Files\Microsoft\BingBar\7.1.361.0\BBSvc.exe [X]
S3 BBUpdate; C:\Program Files\Microsoft\BingBar\7.1.361.0\SeaPort.exe [X]
S2 BFE; %SystemRoot%\System32\bfe.dll [X]
S2 BITS; %SystemRoot%\System32\qmgr.dll [X]
S3 Browser; %SystemRoot%\System32\browser.dll [X]
S3 CertPropSvc; %SystemRoot%\System32\certprop.dll [X]
S2 CryptSvc; %SystemRoot%\system32\cryptsvc.dll [X]
S2 CscService; %SystemRoot%\System32\cscsvc.dll [X]
S2 DcomLaunch; %SystemRoot%\system32\rpcss.dll [X]
S2 Dhcp; %SystemRoot%\system32\dhcpcore.dll [X]
S2 Dnscache; %SystemRoot%\System32\dnsrslvr.dll [X]
S3 dot3svc; %SystemRoot%\System32\dot3svc.dll [X]
S2 DPS; %SystemRoot%\system32\dps.dll [X]
S3 EFS; %SystemRoot%\System32\lsass.exe [X]
S3 ehRecvr; %systemroot%\ehome\ehRecvr.exe [X]
S2 eventlog; %SystemRoot%\System32\wevtsvc.dll [X]
S3 Fax; %systemroot%\system32\fxssvc.exe [X]
S2 FontCache; %SystemRoot%\system32\FntCache.dll [X]
S3 fsssvc; "C:\Program Files\Windows Live\Family Safety\fsssvc.exe" [X]
S2 gpsvc; %SystemRoot%\System32\gpsvc.dll [X]
S3 hkmsvc; %SystemRoot%\system32\kmsvc.dll [X]
S3 HomeGroupListener; %SystemRoot%\system32\ListSvc.dll [X]
S3 HomeGroupProvider; %SystemRoot%\system32\provsvc.dll [X]
S3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [X]
S2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [X]
S2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [X]
S3 IDriverT; "C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe" [X]
S3 idsvc; "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [X]
S3 IEEtwCollectorService; %SystemRoot%\system32\IEEtwCollector.exe /V [X]
S3 IKEEXT; %SystemRoot%\System32\ikeext.dll [X]
S2 iphlpsvc; %SystemRoot%\System32\iphlpsvc.dll [X]
S3 KeyIso; %SystemRoot%\system32\lsass.exe [X]
S2 LanmanServer; %SystemRoot%\system32\srvsvc.dll [X]
S2 LanmanWorkstation; %SystemRoot%\System32\wkssvc.dll [X]
S2 lxda_device; C:\Windows\system32\lxdacoms.exe -service [X]
S2 Mcx2Svc; %SystemRoot%\system32\Mcx2Svc.dll [X]
S2 MpsSvc; %SystemRoot%\system32\mpssvc.dll [X]
S3 msiserver; %systemroot%\system32\msiexec.exe /V [X]
S3 napagent; %SystemRoot%\system32\qagentRT.dll [X]
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [X]
S3 Netlogon; %systemroot%\system32\lsass.exe [X]
S4 NetTcpPortSharing; "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [X]
S2 NlaSvc; %SystemRoot%\System32\nlasvc.dll [X]
S3 ose; "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE" [X]
S3 osppsvc; "C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE" [X]
S3 pla; %systemroot%\system32\pla.dll [X]
S2 PlugPlay; %SystemRoot%\system32\umpnpmgr.dll [X]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [X]
S3 PolicyAgent; %SystemRoot%\System32\ipsecsvc.dll [X]
S2 Power; %SystemRoot%\system32\umpo.dll [X]
S2 ProfSvc; %systemroot%\system32\profsvc.dll [X]
S3 ProtectedStorage; %SystemRoot%\system32\lsass.exe [X]
S3 RasMan; %SystemRoot%\System32\rasmans.dll [X]
S2 RpcSs; %SystemRoot%\system32\rpcss.dll [X]
S2 SamSs; %SystemRoot%\system32\lsass.exe [X]
S2 Schedule; %systemroot%\system32\schedsvc.dll [X]
S3 SCPolicySvc; %SystemRoot%\System32\certprop.dll [X]
S3 SDRSVC; %Systemroot%\System32\SDRSVC.dll [X]
S3 SessionEnv; %SystemRoot%\system32\sessenv.dll [X]
S2 ShellHWDetection; %SystemRoot%\System32\shsvcs.dll [X]
S2 Spooler; %SystemRoot%\System32\spoolsv.exe [X]
S2 sppsvc; %SystemRoot%\system32\sppsvc.exe [X]
S3 sppuinotify; %SystemRoot%\system32\sppuinotify.dll [X]
S2 StiSvc; %SystemRoot%\System32\wiaservc.dll [X]
S2 SysMain; %systemroot%\system32\sysmain.dll [X]
S3 TabletInputService; %SystemRoot%\System32\TabSvc.dll [X]
S3 TapiSrv; %SystemRoot%\System32\tapisrv.dll [X]
S2 TBSrv; C:\Program Files\Tbccint\ToolbarService\ToolbarService.exe [X]
S3 TermService; %SystemRoot%\System32\termsrv.dll [X]
S3 TrustedInstaller; %SystemRoot%\servicing\TrustedInstaller.exe [X]
S2 TuneUp.UtilitiesSvc; "C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe" [X]
S3 UmRdpService; %SystemRoot%\System32\umrdp.dll [X]
S3 VaultSvc; %SystemRoot%\system32\lsass.exe [X]
S3 vds; %SystemRoot%\System32\vds.exe [X]
S3 VSS; %systemroot%\system32\vssvc.exe [X]
S3 wbengine; "%systemroot%\system32\wbengine.exe" [X]
S3 wcncsvc; %SystemRoot%\System32\wcncsvc.dll [X]
S3 WebClient; %SystemRoot%\System32\webclnt.dll [X]
S2 WinDefend; %ProgramFiles%\Windows Defender\mpsvc.dll [X]
S3 WinRM; %SystemRoot%\system32\WsmSvc.dll [X]
S2 wlidsvc; "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" [X]
S2 WMPNetworkSvc; "%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe" [X]
S3 WPDBusEnum; %SystemRoot%\system32\wpdbusenum.dll [X]
S2 WSearch; %systemroot%\system32\SearchIndexer.exe /Embedding [X]
S2 wuauserv; %systemroot%\system32\wuaueng.dll [X]
S2 wudfsvc; %SystemRoot%\System32\WUDFSvc.dll [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [17744 2010-09-07] (AVAST Software)
S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [50768 2010-09-07] (AVAST Software)
S1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [23376 2010-09-07] (AVAST Software)
S1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [165584 2010-09-07] (AVAST Software)
S1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [46672 2010-09-07] (AVAST Software)
S3 ti21sony; C:\Windows\System32\drivers\ti21sony.sys [818688 2008-01-30] (Texas Instruments)
S3 1394ohci; \SystemRoot\system32\drivers\1394ohci.sys [X]
S0 ACPI; system32\drivers\ACPI.sys [X]
S3 AcpiPmi; \SystemRoot\system32\drivers\acpipmi.sys [X]
S1 AFD; \SystemRoot\system32\drivers\afd.sys [X]
S3 agp440; \SystemRoot\system32\drivers\agp440.sys [X]
S3 aliide; \SystemRoot\system32\drivers\aliide.sys [X]
S3 amdagp; \SystemRoot\system32\drivers\amdagp.sys [X]
S3 amdide; \SystemRoot\system32\drivers\amdide.sys [X]
S3 amdsata; \SystemRoot\system32\drivers\amdsata.sys [X]
S0 amdxata; system32\drivers\amdxata.sys [X]
S3 AppID; \SystemRoot\system32\drivers\appid.sys [X]
S0 atapi; system32\drivers\atapi.sys [X]
S3 bowser; system32\DRIVERS\bowser.sys [X]
S1 cdrom; \SystemRoot\system32\drivers\cdrom.sys [X]
S3 cmdide; \SystemRoot\system32\drivers\cmdide.sys [X]
S0 CNG; System32\Drivers\cng.sys [X]
S3 CompositeBus; \SystemRoot\system32\drivers\CompositeBus.sys [X]
S1 CSC; system32\drivers\csc.sys [X]
S1 DfsC; System32\Drivers\dfsc.sys [X]
S3 Dot4; system32\DRIVERS\Dot4.sys [X]
S3 Dot4Print; system32\DRIVERS\Dot4Prt.sys [X]
S3 dot4usb; system32\DRIVERS\dot4usb.sys [X]
S3 DXGKrnl; \SystemRoot\System32\drivers\dxgkrnl.sys [X]
S3 ErrDev; \SystemRoot\system32\drivers\errdev.sys [X]
S3 fssfltr; system32\DRIVERS\fssfltr.sys [X]
S0 Fs_Rec; No ImagePath
S0 fvevol; System32\DRIVERS\fvevol.sys [X]
S3 GEARAspiWDM; system32\DRIVERS\GEARAspiWDM.sys [X]
S3 HdAudAddService; \SystemRoot\system32\drivers\HdAudio.sys [X]
S3 HDAudBus; \SystemRoot\system32\drivers\HDAudBus.sys [X]
S3 HpSAMD; \SystemRoot\system32\drivers\HpSAMD.sys [X]
S3 HTTP; system32\drivers\HTTP.sys [X]
S0 hwpolicy; System32\drivers\hwpolicy.sys [X]
S3 i8042prt; \SystemRoot\system32\drivers\i8042prt.sys [X]
S3 iaStorV; \SystemRoot\system32\drivers\iaStorV.sys [X]
S0 intelide; system32\drivers\intelide.sys [X]
S3 IPMIDRV; \SystemRoot\system32\drivers\IPMIDrv.sys [X]
S3 isapnp; \SystemRoot\system32\drivers\isapnp.sys [X]
S3 iScsiPrt; \SystemRoot\system32\drivers\msiscsi.sys [X]
S3 kbdclass; \SystemRoot\system32\drivers\kbdclass.sys [X]
S3 kbdhid; \SystemRoot\system32\drivers\kbdhid.sys [X]
S0 KSecDD; System32\Drivers\ksecdd.sys [X]
S0 KSecPkg; System32\Drivers\ksecpkg.sys [X]
S3 massfilter_hs; \??\C:\Windows\system32\drivers\massfilter_hs.sys [X]
S3 mouclass; system32\DRIVERS\mouclass.sys [X]
S0 mountmgr; System32\drivers\mountmgr.sys [X]
S3 mpio; \SystemRoot\system32\drivers\mpio.sys [X]
S3 MRxDAV; \SystemRoot\system32\drivers\mrxdav.sys [X]
S3 mrxsmb; system32\DRIVERS\mrxsmb.sys [X]
S3 mrxsmb10; system32\DRIVERS\mrxsmb10.sys [X]
S3 mrxsmb20; system32\DRIVERS\mrxsmb20.sys [X]
S3 msahci; \SystemRoot\system32\drivers\msahci.sys [X]
S3 msdsm; \SystemRoot\system32\drivers\msdsm.sys [X]
S0 msisadrv; system32\drivers\msisadrv.sys [X]
S1 mssmbios; \SystemRoot\system32\drivers\mssmbios.sys [X]
S0 NDIS; system32\drivers\ndis.sys [X]
S3 Ndisuio; system32\DRIVERS\ndisuio.sys [X]
S3 NdisWan; system32\DRIVERS\ndiswan.sys [X]
S3 NDProxy; No ImagePath
S1 NetBT; System32\DRIVERS\netbt.sys [X]
S3 nvraid; \SystemRoot\system32\drivers\nvraid.sys [X]
S3 nvstor; \SystemRoot\system32\drivers\nvstor.sys [X]
S3 nv_agp; \SystemRoot\system32\drivers\nv_agp.sys [X]
S3 ohci1394; \SystemRoot\system32\drivers\ohci1394.sys [X]
S0 partmgr; System32\drivers\partmgr.sys [X]
S0 pci; system32\drivers\pci.sys [X]
S3 pciide; \SystemRoot\system32\drivers\pciide.sys [X]
S3 R5U870FLx86; System32\Drivers\R5U870FLx86.sys [X]
S3 R5U870FUx86; System32\Drivers\R5U870FUx86.sys [X]
S1 rdbss; system32\DRIVERS\rdbss.sys [X]
S1 RDPCDD; System32\DRIVERS\RDPCDD.sys [X]
S3 RDPDR; System32\drivers\rdpdr.sys [X]
S3 RdpVideoMiniport; System32\drivers\rdpvideominiport.sys [X]
S3 RDPWD; No ImagePath
S0 rdyboost; System32\drivers\rdyboost.sys [X]
S3 RimUsb; System32\Drivers\RimUsb.sys [X]
S3 s3cap; \SystemRoot\system32\drivers\vms3cap.sys [X]
S3 sbp2port; \SystemRoot\system32\drivers\sbp2port.sys [X]
S3 scfilter; System32\DRIVERS\scfilter.sys [X]
S3 sermouse; \SystemRoot\system32\DRIVERS\sermouse.sys [X]
S3 sffdisk; \SystemRoot\system32\drivers\sffdisk.sys [X]
S3 sffp_mmc; \SystemRoot\system32\drivers\sffp_mmc.sys [X]
S3 sffp_sd; \SystemRoot\system32\drivers\sffp_sd.sys [X]
S3 sisagp; \SystemRoot\system32\drivers\sisagp.sys [X]
S3 srv; System32\DRIVERS\srv.sys [X]
S3 srv2; System32\DRIVERS\srv2.sys [X]
S3 srvnet; System32\DRIVERS\srvnet.sys [X]
S3 StillCam; system32\DRIVERS\serscan.sys [X]
S0 storflt; system32\drivers\vmstorfl.sys [X]
S3 storvsc; \SystemRoot\system32\drivers\storvsc.sys [X]
S3 swenum; \SystemRoot\system32\drivers\swenum.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S0 Tcpip; System32\drivers\tcpip.sys [X]
S3 TCPIP6; system32\DRIVERS\tcpip.sys [X]
S2 tcpipreg; System32\drivers\tcpipreg.sys [X]
S3 TDPIPE; system32\drivers\tdpipe.sys [X]
S3 TDTCP; system32\drivers\tdtcp.sys [X]
S1 tdx; system32\DRIVERS\tdx.sys [X]
S1 TermDD; \SystemRoot\system32\drivers\termdd.sys [X]
S3 tssecsrv; System32\DRIVERS\tssecsrv.sys [X]
S3 TsUsbFlt; System32\drivers\tsusbflt.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [X]
S3 tunnel; system32\DRIVERS\tunnel.sys [X]
S4 udfs; system32\DRIVERS\udfs.sys [X]
S3 uliagpkx; \SystemRoot\system32\drivers\uliagpkx.sys [X]
S3 umbus; \SystemRoot\system32\drivers\umbus.sys [X]
S3 usbccgp; system32\DRIVERS\usbccgp.sys [X]
S3 usbehci; system32\DRIVERS\usbehci.sys [X]
S3 usbhub; system32\DRIVERS\usbhub.sys [X]
S3 usbohci; \SystemRoot\system32\drivers\usbohci.sys [X]
S3 USBSTOR; system32\DRIVERS\USBSTOR.SYS [X]
S3 usbuhci; system32\DRIVERS\usbuhci.sys [X]
S3 V0410Dev; system32\DRIVERS\V0410Dev.sys [X]
S3 V0410Vfx; system32\DRIVERS\V0410Vfx.sys [X]
S0 vdrvroot; system32\drivers\vdrvroot.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 vhdmp; \SystemRoot\system32\drivers\vhdmp.sys [X]
S3 viaagp; \SystemRoot\system32\drivers\viaagp.sys [X]
S3 viaide; \SystemRoot\system32\drivers\viaide.sys [X]
S0 vmbus; system32\drivers\vmbus.sys [X]
S3 VMBusHID; \SystemRoot\system32\drivers\VMBusHID.sys [X]
S0 volmgr; system32\drivers\volmgr.sys [X]
S0 volsnap; system32\drivers\volsnap.sys [X]
S5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-13] (Microsoft Corporation)
S3 WANARP; system32\DRIVERS\wanarp.sys [X]
S1 Wanarpv6; system32\DRIVERS\wanarp.sys [X]
S3 WinUsb; system32\DRIVERS\WinUsb.sys [X]
S3 WmiAcpi; \SystemRoot\system32\drivers\wmiacpi.sys [X]
S3 WudfPf; system32\drivers\WudfPf.sys [X]
S3 WUDFRd; system32\DRIVERS\WUDFRd.sys [X]
S3 zghsmdm; system32\DRIVERS\zghsmdm.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-08-16 13:14 - 2014-08-16 13:30 - 00000000 ____D () C:\FRST
2014-08-16 01:09 - 2014-08-16 01:09 - 00000000 ____D () C:\Windows\System32\config\backup
2014-08-16 00:27 - 2014-08-16 00:28 - 00000000 ____D () C:\Windows\System32\config\mybackup
2014-08-12 05:39 - 2014-08-12 05:39 - 00000000 __SHD () C:\found.002
2014-08-10 14:13 - 2014-08-10 14:13 - 00003360 ____N () C:\bootsqm.dat
2014-08-10 14:12 - 2014-08-14 02:01 - 00000000 __SHD () C:\found.001
2014-08-06 17:08 - 2014-08-06 17:08 - 00173056 _____ () C:\Users\josean\Downloads\tipos_citas.ppt
2014-08-06 15:35 - 2014-08-06 15:36 - 00879616 _____ () C:\Users\josean\Downloads\fichas_trabajo (1).ppt
2014-08-06 15:01 - 2014-08-06 15:02 - 00879616 _____ () C:\Users\josean\Downloads\fichas_trabajo.ppt
2014-08-05 20:43 - 2014-08-05 20:43 - 00426439 _____ () C:\Users\josean\Downloads\criterios_evalinfo.mht
2014-08-05 20:38 - 2014-08-05 20:39 - 00266752 _____ () C:\Users\josean\Downloads\busquedas_internet.ppt
2014-08-05 20:24 - 2014-08-05 20:24 - 00044032 _____ () C:\Users\josean\Downloads\conceptos_busquedas.ppt
2014-08-05 20:21 - 2014-08-05 20:21 - 00143872 _____ () C:\Users\josean\Downloads\ventajas.ppt
2014-08-05 20:09 - 2014-08-05 20:09 - 00121344 _____ () C:\Users\josean\Downloads\localinfo.ppt
2014-08-05 19:45 - 2014-08-05 19:46 - 00384000 _____ () C:\Users\josean\Downloads\cronograma.ppt
2014-08-05 18:50 - 2014-08-05 18:50 - 00053248 _____ () C:\Users\josean\Downloads\justificacion.ppt
2014-08-05 18:28 - 2014-08-05 18:28 - 00359936 _____ () C:\Users\josean\Downloads\tecnicas_limitartema (2).ppt
2014-08-05 18:26 - 2014-08-05 18:26 - 00359936 _____ () C:\Users\josean\Downloads\tecnicas_limitartema (1).ppt
2014-08-05 17:54 - 2014-08-05 17:54 - 00359936 _____ () C:\Users\josean\Downloads\tecnicas_limitartema.ppt
2014-08-05 17:07 - 2014-08-05 17:07 - 00081920 _____ () C:\Users\josean\Downloads\estudio_de_campo (1).ppt
2014-08-05 16:44 - 2014-08-05 16:44 - 00081920 _____ () C:\Users\josean\Downloads\estudio_de_campo.ppt
2014-08-05 16:28 - 2014-08-05 16:28 - 00077312 _____ () C:\Users\josean\Downloads\importancia.ppt
2014-08-05 16:23 - 2014-08-05 16:23 - 00073728 _____ () C:\Users\josean\Downloads\caracteristicas.ppt
2014-08-04 18:58 - 2014-08-14 01:59 - 00000000 ____D () C:\Users\josean\AppData\Local\Microsoft Help
2014-08-04 15:10 - 2014-08-04 15:10 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-08-04 14:29 - 2014-08-04 14:30 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-08-04 14:28 - 2014-08-04 14:28 - 01030840 _____ (Microsoft Corporation) C:\Users\josean\Downloads\Setup.X86.en-us_O365ProPlusRetail_794952d5-2547-4c3f-ae6c-19957dad9ae1_TX_PR_.exe
2014-07-31 19:57 - 2014-07-31 19:57 - 00000000 ____D () C:\Users\josean\AppData\Local\{9098C3AF-58DB-4E40-934B-861901F3EC23}
2014-07-25 10:29 - 2014-07-25 10:29 - 00006770 _____ () C:\Users\josean\AppData\Local\recently-used.xbel
2014-07-25 10:29 - 2014-07-25 10:29 - 00004151 _____ () C:\Users\josean\Desktop\gtrz.svg
2014-07-20 17:57 - 2014-07-20 18:06 - 00000000 ____D () C:\Users\josean\AppData\Roaming\HorizonWimba
2014-07-20 17:55 - 2014-07-20 17:55 - 00000000 ____D () C:\Program Files\Blackboard
2014-07-20 17:29 - 2014-07-20 17:29 - 00000000 ____D () C:\Users\josean\AppData\Local\{33C31C64-1A57-4D37-9058-BB49E1B47520}
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-08-16 13:30 - 2014-08-16 13:14 - 00000000 ____D () C:\FRST
2014-08-16 01:09 - 2014-08-16 01:09 - 00000000 ____D () C:\Windows\System32\config\backup
2014-08-16 00:28 - 2014-08-16 00:27 - 00000000 ____D () C:\Windows\System32\config\mybackup
2014-08-14 02:01 - 2014-08-10 14:12 - 00000000 __SHD () C:\found.001
2014-08-14 02:01 - 2014-06-02 15:49 - 00000000 ____D () C:\Program Files\HP
2014-08-14 02:01 - 2014-04-21 10:02 - 00000000 ____D () C:\Program Files\Inkscape
2014-08-14 02:01 - 2014-04-04 13:55 - 00000000 ____D () C:\Program Files\iTunes
2014-08-14 02:01 - 2013-11-04 11:36 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-08-14 02:01 - 2013-10-28 23:15 - 00000000 ____D () C:\Program Files\MagicDVDCopier
2014-08-14 02:01 - 2013-03-04 20:29 - 00000000 ____D () C:\Program Files\CamStudio 2.7
2014-08-14 02:01 - 2013-01-18 13:49 - 00000000 ____D () C:\Program Files\Glarysoft Toolbar
2014-08-14 02:01 - 2012-10-16 17:37 - 00000000 ____D () C:\Users\josean\AppData\Roaming\Raptr
2014-08-14 02:01 - 2012-09-25 17:54 - 00000000 ____D () C:\Program Files\DVDVideoSoftTB
2014-08-14 02:01 - 2012-04-02 23:25 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-08-14 02:01 - 2011-06-16 19:03 - 00000000 ____D () C:\users\Mcx1-JOSEAN-PC
2014-08-14 02:01 - 2011-05-21 01:43 - 00000000 ____D () C:\Program Files\Adobe Download Assistant
2014-08-14 02:01 - 2010-12-30 10:24 - 00000000 ____D () C:\Program Files\DVDVideoSoft
2014-08-14 02:01 - 2010-12-12 08:34 - 00000000 ____D () C:\Program Files\Common Files\ArcSoft
2014-08-14 02:01 - 2010-12-11 18:42 - 00000000 ____D () C:\users\josean
2014-08-14 02:01 - 2009-07-13 20:52 - 00000000 ____D () C:\Program Files\DVD Maker
2014-08-14 02:01 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\wfp
2014-08-14 02:01 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\AppCompat
2014-08-14 02:01 - 2009-07-13 18:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-08-14 02:01 - 2009-07-13 18:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-08-14 02:00 - 2010-12-12 08:47 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-14 01:59 - 2014-08-04 18:58 - 00000000 ____D () C:\Users\josean\AppData\Local\Microsoft Help
2014-08-14 01:59 - 2014-06-02 14:13 - 00000000 ____D () C:\ProgramData\HP
2014-08-14 01:59 - 2014-03-23 21:35 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2014
2014-08-14 01:59 - 2013-03-31 12:15 - 00000000 ____D () C:\Program Files\Project64 1.6
2014-08-14 01:59 - 2013-02-06 16:49 - 00000000 ____D () C:\Program Files\Vuze
2014-08-14 01:59 - 2012-12-10 18:32 - 00000000 ____D () C:\Program Files\ZTE Handset USB Driver
2014-08-14 01:59 - 2012-10-16 17:37 - 00000000 ____D () C:\Program Files\Raptr
2014-08-14 01:59 - 2012-06-23 17:36 - 00000000 ____D () C:\ProgramData\Skype
2014-08-14 01:59 - 2011-05-21 02:48 - 00000000 ____D () C:\Program Files\WinRAR
2014-08-14 01:59 - 2009-07-13 23:50 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-14 01:59 - 2009-07-13 20:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-08-14 01:59 - 2009-07-13 20:52 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-08-14 01:59 - 2009-07-13 20:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-14 01:57 - 2013-10-15 16:31 - 00000000 ____D () C:\Users\josean\Desktop\stuff
2014-08-14 01:57 - 2013-09-27 07:19 - 00000000 ___RD () C:\Users\Public\Desktop\DVDVideoSoft
2014-08-14 01:57 - 2013-02-06 16:47 - 00000000 ____D () C:\Users\josean\AppData\Local\Torch
2014-08-14 01:57 - 2012-10-16 17:34 - 00000000 ____D () C:\Users\josean\AppData\Roaming\Azureus
2014-08-14 01:57 - 2012-09-25 17:53 - 00000000 ____D () C:\Users\josean\AppData\Roaming\OpenCandy
2014-08-14 01:57 - 2012-06-23 17:36 - 00000000 ____D () C:\Users\josean\AppData\Roaming\Skype
2014-08-14 01:57 - 2009-07-13 23:48 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-08-14 01:56 - 2011-07-12 12:40 - 00000000 ____D () C:\Windows\Minidump
2014-08-14 01:56 - 2009-07-13 20:52 - 00000000 ____D () C:\Windows\twain_32
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ___HD () C:\Windows\System32\GroupPolicy
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\zh-TW
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\zh-HK
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\zh-CN
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\tr-TR
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\sv-SE
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\ru-RU
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\pt-PT
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\pt-BR
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\pl-PL
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\nl-NL
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\nb-NO
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\ko-KR
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\ja-JP
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\it-IT
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\hu-HU
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\fr-FR
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\fi-FI
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\el-GR
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\de-DE
2014-08-14 01:56 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\System32\AdvancedInstallers
2014-08-14 01:52 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\registration
2014-08-12 05:39 - 2014-08-12 05:39 - 00000000 __SHD () C:\found.002
2014-08-10 14:27 - 2012-07-15 20:38 - 01205760 ___SH () C:\Users\josean\Downloads\Thumbs.db
2014-08-10 14:13 - 2014-08-10 14:13 - 00003360 ____N () C:\bootsqm.dat
2014-08-06 23:34 - 2010-12-11 18:34 - 02043475 _____ () C:\Windows\WindowsUpdate.log
2014-08-06 23:25 - 2009-07-13 20:34 - 00010240 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-06 23:25 - 2009-07-13 20:34 - 00010240 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-06 17:08 - 2014-08-06 17:08 - 00173056 _____ () C:\Users\josean\Downloads\tipos_citas.ppt
2014-08-06 15:36 - 2014-08-06 15:35 - 00879616 _____ () C:\Users\josean\Downloads\fichas_trabajo (1).ppt
2014-08-06 15:02 - 2014-08-06 15:01 - 00879616 _____ () C:\Users\josean\Downloads\fichas_trabajo.ppt
2014-08-05 20:43 - 2014-08-05 20:43 - 00426439 _____ () C:\Users\josean\Downloads\criterios_evalinfo.mht
2014-08-05 20:39 - 2014-08-05 20:38 - 00266752 _____ () C:\Users\josean\Downloads\busquedas_internet.ppt
2014-08-05 20:24 - 2014-08-05 20:24 - 00044032 _____ () C:\Users\josean\Downloads\conceptos_busquedas.ppt
2014-08-05 20:21 - 2014-08-05 20:21 - 00143872 _____ () C:\Users\josean\Downloads\ventajas.ppt
2014-08-05 20:09 - 2014-08-05 20:09 - 00121344 _____ () C:\Users\josean\Downloads\localinfo.ppt
2014-08-05 19:46 - 2014-08-05 19:45 - 00384000 _____ () C:\Users\josean\Downloads\cronograma.ppt
2014-08-05 18:50 - 2014-08-05 18:50 - 00053248 _____ () C:\Users\josean\Downloads\justificacion.ppt
2014-08-05 18:28 - 2014-08-05 18:28 - 00359936 _____ () C:\Users\josean\Downloads\tecnicas_limitartema (2).ppt
2014-08-05 18:26 - 2014-08-05 18:26 - 00359936 _____ () C:\Users\josean\Downloads\tecnicas_limitartema (1).ppt
2014-08-05 17:54 - 2014-08-05 17:54 - 00359936 _____ () C:\Users\josean\Downloads\tecnicas_limitartema.ppt
2014-08-05 17:07 - 2014-08-05 17:07 - 00081920 _____ () C:\Users\josean\Downloads\estudio_de_campo (1).ppt
2014-08-05 16:44 - 2014-08-05 16:44 - 00081920 _____ () C:\Users\josean\Downloads\estudio_de_campo.ppt
2014-08-05 16:28 - 2014-08-05 16:28 - 00077312 _____ () C:\Users\josean\Downloads\importancia.ppt
2014-08-05 16:23 - 2014-08-05 16:23 - 00073728 _____ () C:\Users\josean\Downloads\caracteristicas.ppt
2014-08-05 15:51 - 2009-07-13 20:39 - 00272134 _____ () C:\Windows\setupact.log
2014-08-04 20:35 - 2010-12-11 18:44 - 00111832 _____ () C:\Users\josean\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-04 19:40 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\rescache
2014-08-04 19:09 - 2009-07-13 18:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-04 19:03 - 2009-07-13 20:33 - 03787704 _____ () C:\Windows\System32\FNTCACHE.DAT
2014-08-04 19:02 - 2010-12-11 18:45 - 00027464 _____ () C:\Windows\PFRO.log
2014-08-04 16:55 - 2010-12-19 18:13 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-08-04 15:10 - 2014-08-04 15:10 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-08-04 14:30 - 2014-08-04 14:29 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-08-04 14:28 - 2014-08-04 14:28 - 01030840 _____ (Microsoft Corporation) C:\Users\josean\Downloads\Setup.X86.en-us_O365ProPlusRetail_794952d5-2547-4c3f-ae6c-19957dad9ae1_TX_PR_.exe
2014-07-31 21:55 - 2012-08-04 20:32 - 01268736 ___SH () C:\Users\josean\Desktop\Thumbs.db
2014-07-31 19:57 - 2014-07-31 19:57 - 00000000 ____D () C:\Users\josean\AppData\Local\{9098C3AF-58DB-4E40-934B-861901F3EC23}
2014-07-27 17:12 - 2010-12-28 12:50 - 00000000 ____D () C:\Program Files\StepMania4
2014-07-25 10:29 - 2014-07-25 10:29 - 00006770 _____ () C:\Users\josean\AppData\Local\recently-used.xbel
2014-07-25 10:29 - 2014-07-25 10:29 - 00004151 _____ () C:\Users\josean\Desktop\gtrz.svg
2014-07-20 18:06 - 2014-07-20 17:57 - 00000000 ____D () C:\Users\josean\AppData\Roaming\HorizonWimba
2014-07-20 17:55 - 2014-07-20 17:55 - 00000000 ____D () C:\Program Files\Blackboard
2014-07-20 17:29 - 2014-07-20 17:29 - 00000000 ____D () C:\Users\josean\AppData\Local\{33C31C64-1A57-4D37-9058-BB49E1B47520}
2014-07-17 20:42 - 2014-06-16 21:54 - 00000681 _____ () C:\Users\josean\Desktop\first page.txt
 
==================== Known DLLs (Whitelisted) ============
 
C:\Windows\System32\ole32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\advapi32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\COMDLG32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\gdi32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\IERTUTIL.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\IMAGEHLP.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\IMM32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\LPK.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\MSVCRT.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\OLEAUT32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\rpcrt4.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\Setupapi.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\SHLWAPI.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\URLMON.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\user32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\USP10.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\WININET.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\WLDAP32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\WS2_32.dll IS MISSING <==== ATTENTION!.
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe IS MISSING <==== ATTENTION!.
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\userinit.exe IS MISSING <==== ATTENTION!.
C:\Windows\System32\rpcss.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\Drivers\volsnap.sys IS MISSING <==== ATTENTION!.
C:\Windows\System32\winsrv.dll IS MISSING <==== ATTENTION!.
 
==================== Restore Points  =========================
 
Restore point made on: 2014-07-25 09:43:02
Restore point made on: 2014-07-30 18:55:57
Restore point made on: 2014-08-06 23:35:19
 
==================== Memory info =========================== 
 
Percentage of memory in use: 21%
Total physical RAM: 2037.11 MB
Available physical RAM: 1595.96 MB
Total Pagefile: 2037.11 MB
Available Pagefile: 1593.88 MB
Total Virtual: 2047.88 MB
Available Virtual: 1960.25 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:148.95 GB) (Free:91.2 GB) NTFS
Drive e: (KINGSTON) (Removable) (Total:3.73 GB) (Free:1.28 GB) NTFS
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 192B26C6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 3.7 GB) (Disk ID: 04030201)
Partition 1: (Active) - (Size=3.7 GB) - (Type=07 NTFS)
 
 
LastRegBack: 2014-08-06 23:29
 
==================== End Of Log ============================

 


  • 0

Advertisements

#2
emeraldnzl
Posted 17 August 2014 - 05:52 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts

Hello joseanshadow,

Welcome to Geekstogo.

Can you tell me how your machine got like this? Did it happen after you did something or was there an infection involved?

Lot's of system files missing there, how is your machine performing, any unusual noises or overheating?

Tell me when you return.

Meantime

Please download the attached fixlist.txt file to your flashdrive .

NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Now please enter System Recovery Options.
Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.
 


  • 0

#3
emeraldnzl
Posted 20 August 2014 - 10:44 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Computer Won't Boot - Malware Related · Next Unread Topic →




Similar Topics


Also tagged with one or more of these keywords: farbar, fixlist, boot, startup loop

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Computer Won't Boot - Malware Related

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP