• Registrarse
  • Iniciar sesión


  • Resultados 1 al 8 de 8

    uso del cpu al 100% con procedimientos basicos (Solucionado)

    Resumen del tema: uso del cpu al 100% con procedimientos basicos (Solucionado) - hola buenas, he tenido problemas últimamente con mi pc y la razón es que salta el uso del cpu a un 100% con procedimientos básicos, por ejemplo un juego Minecraft, al ejecutarlo no baja de ...

      
    1. #1
      Usuario Avatar de Carlos Ekmeiro
      Registrado
      dic 2012
      Mensajes
      4

      uso del cpu al 100% con procedimientos basicos (Solucionado)

      hola buenas, he tenido problemas últimamente con mi pc y la razón es que salta el uso del cpu a un 100% con procedimientos básicos, por ejemplo un juego Minecraft, al ejecutarlo no baja de 80% y varias veces queda en 100% con navegadores cuando inicio alguna descarga, y en los navegadores también pasa aveces que no abre ninguna pagina o no la carga completamente, con respecto al uso del cpu verifique desarmando todo y le faltaba pasta térmica, pero al colocarle mejoro pero aun así sigue lanzando picos de 80% a 100%, he buscado la forma de solucionarlo viendo temas en este foro referente a mi problema, pero todos hace uso de un programa que pide se use con ayuda de un experto y te guié en el proceso, pero sin embargo he descargado algunos antivirus como: Malwarebytes Anti-Malware y PandaCloudAntivirus mas el que uso que es el AVG free 2013 y el AVG pc tuneup 2012, todo se lo he ejecutado y puedo decir que mi pc esta totalmente desfragmentada y libre de virus, pero sigue mi problema y quisiera saber cual podría ser la solución.

      Programas que he descargado del foro (siguiendo los pasos que indican en otros problemas) y espero puedan ayudarme a usarlos:
      iExplorer
      Hijackthis
      WinsockxpFix

      las características de mi pc son las siguientes:

      Intel(R) Pentium(R) Dual CPU @2.00 GHz 1.99 GHz
      4,00 GB de memoria RAM
      Sistema operativo de 64bits Windows 7
      1,00 GB de Video NVIDIA GeForce 210 que no sale en las especificaciones del sistema de la imagen del enlace de abajo, que creo que debería de salir.

      http://imgur.com/AE3MF

      sin mas que agregar espero que me puedan ayudar a solventar mi problema, gracias de antemano.

    2. #2
      Moderador Gral.
      Avatar de Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      54.839

      Re: uso del cpu al 100% con procedimientos basicos

      Hola



      Descargá SecurityCheck.exe a Tu escritorio.


      • Ejecutá la herramienta como administrador.
      • (Si usas Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador.")

      • Presioná una Tecla y esperá a que analice Tu sistema.

      • Cuando termine, abrirá un reporte. Copialo y pegalo en Tu próxima respuesta.











      Vas a trabajar con 3 herramientas. Intentá hacer todos los pasos que menciono mas abajo. Si alguno NO podes hacer, lo saltas y seguis con los otros.


      Paso 1: Descarga










      Paso 2: Ejecución



      AT - Destroyer

      • Ejecuta la herramienta como administrador.
      • (Si usas Windows Vista o 7 Presiona clic derecho y selecciona "Ejecutar como Administrador.")

      • Aparecerá el Disclaimer de la herramienta. Presiona .

      • Presiona sobre la opción 1 (Buscar y Destruir)

      • La herramienta desconectará el escritorio moméntaneamente.

      • En caso de estar infectado,la herramienta lo indicará con lineas rojas donde se haya encontrado la infección,sino,serán lineas verdes.

      • Una vez terminado el escaneo,podrás volver a ver el escritorio y se te abrirá un reporte,que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.




      Glary Utilities


      • Presioná el Boton Mantenimiento un Clic
      • Presioná el Boton Ver Resultados y esperá a que termine.
      • Cuando termine, presionas el Boton Reparar Problemas.





      ComboFix


      • Desactivá temporalmente el Antivirus y/o Antispyware.
      • Cerrá todas las ventanas abiertas.
      • Hacé doble clic al archivo ComboFix.exe y seguí las instrucciones.
      • Cuando termine, generará un reporte en C:\ComboFix.txt.


      • *Nota* Mientras CF este trabajando no debes mover el mouse ya que pararía su proceso.
      • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.
      • *Nota* No vuelvas a utilizar ComboFix ni ningun otro programa antivirus hasta que no te de una respuesta.



      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.


      NOTAS IMPORTANTES:

      ° Una vez Terminado el Trabajo de ComboFix, podes activar Tu antivirus.

      ° No Pongas los Reportes Dentro de Etiquetas Code ni HTML.

      ° No vuelvas a ejecutar ningún otro programa antivirus hasta que vuelva con una respuesta.

      ° Si No podes realizar un paso, lo saltas y seguis con el próximo.


      Paso 3: Respuesta


      En Tu próxima respuesta, debes poner los reportes de AT - Destroyer y ComboFix, que se encuentra en C:\ComboFix.txt Y Comentarnos Como Va El ordenador Ahora.



      Saludos

      `·.¸¸.·´´¯`··._.· ·.¸¸.·´´¯`··._.· No Desesperes.....Seguí Luchando `·.¸¸.·´´¯`··._.· ·.¸¸.·´´¯`··._.·

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Carlos Ekmeiro
      Registrado
      dic 2012
      Mensajes
      4

      Re: uso del cpu al 100% con procedimientos basicos

      hola amigo gracias por responder tan rápido, estos son los registros:

      SecurityCheck.exe

      Results of screen317's Security Check version 0.99.56
      Windows 7 Service Pack 1 x64 (UAC is disabled!)
      Internet Explorer 9
      ``````````````Antivirus/Firewall Check:``````````````
      Panda Cloud Antivirus
      AVG Anti-Virus Free Edition 2013
      Antivirus up to date!
      `````````Anti-malware/Other Utilities Check:`````````
      Malwarebytes Anti-Malware versión 1.65.1.1000
      AVG PC Tuneup
      Java 7 Update 9
      Adobe Flash Player 10 Flash Player out of Date!
      Adobe Reader 10.1.2 Adobe Reader out of Date!
      Mozilla Firefox (9.0.1)
      Google Chrome 21.0.1180.83
      Google Chrome 21.0.1180.89
      Google Chrome 22.0.1229.79
      Google Chrome 22.0.1229.94
      Google Chrome 23.0.1271.64
      Google Chrome 23.0.1271.91
      Google Chrome 23.0.1271.95
      ````````Process Check: objlist.exe by Laurent````````
      Malwarebytes Anti-Malware mbamservice.exe
      Malwarebytes Anti-Malware mbamgui.exe
      AVG avgwdsvc.exe
      Panda Security Panda Cloud Antivirus PSUAMain.exe
      Panda Security Panda Cloud Antivirus PSANHost.exe
      Panda Security Panda Cloud Antivirus PSUAService.exe
      mbamscheduler.exe
      `````````````````System Health check`````````````````
      Total Fragmentation on Drive C: 2%
      ````````````````````End of Log``````````````````````



      ---------------------------------------------------------------------------------------------

      AT_ Destroyer

      ######################## AT-Destroyer [2.1] By Infospyware.
      Hora/Día/Mes/Año: 10:22:47 \\\ 11/12/2012
      AT-Destroyer 2.1 By Infospyware ---> www.infospyware.com
      Última actualización: 30/11/2012
      Opción escogida: 2 :Buscar y Destruir
      Versión Internet Explorer:9.0.8112.16421
      Privilegios: Carlos - Administrador
      Modo Actual: Modo Normal.
      Nombre del pc: CARLOS-PC
      Información del sistema operativo:X64-WIN_7-Service Pack 1
      nombre del usuario:Carlos
      Lenguaje del sistema: Español



      >>>>>>> Servicios <<<<<<<



      >>>>>> Carpetas <<<<<<

      C:\Program Files (x86)\Conduit\Community Alerts 92
      C:\Program Files (x86)\Conduit\Community Alerts\Alert.dll 92
      C:\Program Files (x86)\Conduit 92


      >>>>>> Archivos <<<<<<

      C:\user.js


      >>>>>> Registro <<<<<<

      HKEY_CLASSES_ROOT\AppID\escort.DLL
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
      HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}


      >>>>>> Heurística <<<<<<



      >>>>>> Internet Explorer <<<<<<

      Start Page==www.google.com
      Local Page==C:\Windows\SysWOW64\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_Page_URL==http://go.microsoft.com/fwlink/?LinkId=69157


      ''HKCU\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==


      HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\Microsoft\Internet Explorer\Main''
      Start Page==www.google.com
      Local Page==C:\Windows\system32\blank.htm
      Search Page==http://go.microsoft.com/fwlink/?LinkId=54896
      Default_search_url==
      Default_Page_URL==


      >>>>>> Firefox <<<<<<

      user_pref("browser.startup.homepage", "http://isearch.babylon.com/?babsrc=HP_ss&mntrId=ac6a1cce000000000000001966a6d366");
      user_pref("browser.startup.homepage_override.buildID", "20120215223356");
      user_pref("browser.startup.homepage_override.mstone", "rv:10.0.2");
      user_pref("browser.startup.homepage", "http://pandasecurity.mystart.com/?source=5b97eeb3&tbp=homepage&toolbarid=pandasecuritytb&v=4_0&u=4C7D4AF057A6D6C4AF3FE050C6ABBCAE");


      >>>>>> Extensiones Firefox <<<<<<



      >>>>>> Plugins Firefox <<<<<<

      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308
      HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision

      >>>>>> Google Chrome <<<<<<

      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,


      >>>>>> Extensiones Google Chrome <<<<<<

      C:\Users\Carlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\3
      C:\Users\Carlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
      C:\Users\Carlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
      C:\Users\Carlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

      ======== Listado ===========

      [01/11/2012 02:45 a.m.] [12/01/2012 11:52 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Adobe
      C:\Users\Carlos\AppData\Roaming\Adobe GIF Format CS5 Prefs [ACI] 132 bytes ( )
      [08/10/2012 11:38 p.m.] [08/10/2012 11:38 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Adobe Mini Bridge CS5
      C:\Users\Carlos\AppData\Roaming\Adobe PNG Format CS5 Prefs [ACI] 132 bytes ( )
      [10/05/2012 09:47 a.m.] [10/05/2012 09:47 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Apple Computer
      [21/01/2012 01:50 p.m.] [21/01/2012 01:50 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Autodesk
      [10/12/2012 04:28 a.m.] [02/12/2012 03:24 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\AVG
      [02/12/2012 02:38 a.m.] [02/12/2012 02:38 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\AVG2013
      [05/12/2012 06:21 p.m.] [19/10/2012 06:48 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Azureus
      [14/02/2012 10:09 p.m.] [14/02/2012 10:09 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
      [06/12/2012 04:54 a.m.] [04/12/2012 06:36 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\DAEMON Tools Pro
      [10/12/2012 05:18 a.m.] [23/11/2012 01:03 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Fantasy Grounds II
      [21/02/2012 06:20 p.m.] [12/01/2012 10:42 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\FontCreator
      [13/01/2012 01:35 a.m.] [13/01/2012 01:35 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Google
      [12/01/2012 09:23 p.m.] [12/01/2012 09:23 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Identities
      [04/12/2012 06:38 a.m.] [04/12/2012 06:38 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\InstallShield
      [18/02/2012 02:37 a.m.] [18/02/2012 02:36 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Ipswitch
      [12/01/2012 11:52 p.m.] [12/01/2012 11:52 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Macromedia
      [30/11/2012 05:47 a.m.] [30/11/2012 05:47 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Malwarebytes
      [14/07/2009 05:40 a.m.] [12/01/2012 09:22 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Media Center Programs
      [18/08/2005 12:58 p.m.] [18/08/2005 12:58 p.m.] [RHSDCI] C:\Users\Carlos\AppData\Roaming\Microsoft
      [16/11/2012 05:54 a.m.] [16/11/2012 05:35 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Mount&Blade
      [20/11/2012 03:42 a.m.] [16/11/2012 05:36 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Mount&Blade Warband
      [21/01/2012 07:34 p.m.] [21/01/2012 07:34 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Mozilla
      [28/02/2012 07:06 p.m.] [28/02/2012 07:06 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Nero
      [16/02/2012 11:20 p.m.] [12/01/2012 10:40 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\NVIDIA
      [16/02/2012 11:20 p.m.] [16/02/2012 11:20 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\PACE Anti-Piracy
      [10/12/2012 11:13 p.m.] [10/12/2012 11:13 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Panda Security
      [23/06/2012 03:12 a.m.] [23/06/2012 03:12 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\pymclevel
      [16/04/2012 07:42 p.m.] [15/04/2012 08:57 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Real
      [14/07/2012 02:14 p.m.] [14/07/2012 02:13 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Screaming Bee
      [05/09/2012 09:18 p.m.] [05/09/2012 09:18 p.m.] [RHDCI] C:\Users\Carlos\AppData\Roaming\SecuROM
      [28/11/2012 03:49 p.m.] [29/04/2012 03:37 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Skype
      [16/02/2012 11:22 p.m.] [16/02/2012 11:22 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
      [30/11/2012 02:12 a.m.] [30/11/2012 02:12 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\StepMania 5
      [04/05/2012 11:31 p.m.] [04/05/2012 11:31 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\SYSTEMAX Software Development
      [01/11/2012 02:57 a.m.] [01/11/2012 02:57 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Systweak
      [22/10/2012 01:44 p.m.] [18/02/2012 04:39 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Thinstall
      [05/04/2012 11:43 p.m.] [05/04/2012 09:53 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\TS3Client
      [02/12/2012 02:37 a.m.] [02/12/2012 02:37 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\TuneUp Software
      [26/11/2012 03:50 a.m.] [26/11/2012 03:50 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Unity
      [03/10/2012 10:46 p.m.] [12/01/2012 10:39 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\vlc
      [13/01/2012 04:04 a.m.] [13/01/2012 04:04 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Windows Live Writer
      [12/01/2012 09:52 p.m.] [12/01/2012 09:46 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\WinRAR
      [12/01/2012 09:56 p.m.] [12/01/2012 09:56 p.m.] [DCI] C:\Users\Carlos\AppData\Roaming\Yahoo!
      [23/11/2012 03:01 a.m.] [23/11/2012 03:01 a.m.] [DCI] C:\Users\Carlos\AppData\Roaming\YourFileDownloader
      [13/01/2012 12:31 a.m.] [13/01/2012 12:31 a.m.] [DCI] C:\Program Files (x86)\Adobe Media Player
      [04/12/2012 07:36 p.m.] [04/12/2012 07:36 p.m.] [DCI] C:\Program Files (x86)\AGEIA Technologies
      [09/05/2012 09:51 p.m.] [09/05/2012 09:51 p.m.] [DCI] C:\Program Files (x86)\Apple Software Update
      [21/01/2012 01:42 p.m.] [21/01/2012 01:42 p.m.] [DCI] C:\Program Files (x86)\Autodesk
      [02/12/2012 03:24 a.m.] [02/12/2012 02:36 a.m.] [DCI] C:\Program Files (x86)\AVG
      [10/12/2012 05:18 a.m.] [13/07/2009 10:50 p.m.] [DCI] C:\Program Files (x86)\Common Files
      C:\Program Files (x86)\desktop.ini [HSA] 174 bytes( 0)
      [04/12/2012 06:38 a.m.] [13/01/2012 12:52 a.m.] [HDC] C:\Program Files (x86)\InstallShield Installation Information
      [16/11/2012 06:10 a.m.] [13/07/2009 10:50 p.m.] [DCI] C:\Program Files (x86)\Internet Explorer
      [08/11/2012 12:21 p.m.] [20/03/2012 01:09 a.m.] [DCI] C:\Program Files (x86)\Java
      [12/04/2012 04:33 p.m.] [13/01/2012 01:23 a.m.] [DCI] C:\Program Files (x86)\Microsoft
      [10/04/2012 02:01 a.m.] [10/04/2012 02:01 a.m.] [DCI] C:\Program Files (x86)\Microsoft ASP.NET
      [02/06/2012 12:29 a.m.] [12/01/2012 10:19 p.m.] [DCI] C:\Program Files (x86)\Microsoft Office
      [02/06/2012 01:03 a.m.] [13/01/2012 01:05 a.m.] [DCI] C:\Program Files (x86)\Microsoft Silverlight
      [10/04/2012 01:50 a.m.] [10/04/2012 01:48 a.m.] [DCI] C:\Program Files (x86)\Microsoft SQL Server
      [15/04/2012 10:17 p.m.] [10/04/2012 01:46 a.m.] [DCI] C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      [12/01/2012 10:22 p.m.] [12/01/2012 10:22 p.m.] [DCI] C:\Program Files (x86)\Microsoft Visual Studio
      [12/01/2012 10:19 p.m.] [12/01/2012 10:19 p.m.] [DCI] C:\Program Files (x86)\Microsoft Visual Studio 8
      [15/01/2012 02:29 a.m.] [12/01/2012 10:22 p.m.] [DCI] C:\Program Files (x86)\Microsoft Works
      [15/01/2012 11:51 a.m.] [12/01/2012 10:21 p.m.] [DCI] C:\Program Files (x86)\Microsoft.NET
      [12/01/2012 10:22 p.m.] [14/07/2009 01:02 a.m.] [DCI] C:\Program Files (x86)\MSBuild
      [28/02/2012 07:05 p.m.] [28/02/2012 07:04 p.m.] [DCI] C:\Program Files (x86)\Nero
      [04/12/2012 07:37 p.m.] [12/01/2012 10:07 p.m.] [DCI] C:\Program Files (x86)\NVIDIA Corporation
      [13/07/2012 01:24 p.m.] [13/07/2012 01:24 p.m.] [DCI] C:\Program Files (x86)\Oracle
      [10/12/2012 11:11 p.m.] [10/12/2012 11:11 p.m.] [DCI] C:\Program Files (x86)\Panda Security
      [10/12/2012 11:13 p.m.] [10/12/2012 11:12 p.m.] [DCI] C:\Program Files (x86)\pandasecuritytb
      [10/07/2012 02:49 a.m.] [10/07/2012 02:49 a.m.] [DCI] C:\Program Files (x86)\Pando Networks
      [12/10/2012 01:25 a.m.] [12/10/2012 01:25 a.m.] [DCI] C:\Program Files (x86)\Pixologic
      [07/06/2012 06:30 a.m.] [07/06/2012 06:29 a.m.] [DCI] C:\Program Files (x86)\QuickTime
      [14/07/2009 01:02 a.m.] [14/07/2009 01:02 a.m.] [DCI] C:\Program Files (x86)\Reference Assemblies
      [01/11/2012 02:57 a.m.] [01/11/2012 02:57 a.m.] [DCI] C:\Program Files (x86)\RegClean Pro
      [29/06/2012 11:20 p.m.] [29/04/2012 03:36 p.m.] [RDCI] C:\Program Files (x86)\Skype
      [29/04/2012 12:56 p.m.] [29/04/2012 12:55 p.m.] [DCI] C:\Program Files (x86)\TABLET
      [10/12/2012 11:13 p.m.] [10/12/2012 11:13 p.m.] [DCI] C:\Program Files (x86)\Toolbar Cleaner
      [14/07/2009 12:27 a.m.] [14/07/2009 12:27 a.m.] [HDCI] C:\Program Files (x86)\Uninstall Information
      [19/10/2012 06:48 p.m.] [19/10/2012 06:47 p.m.] [DCI] C:\Program Files (x86)\Vuze
      [02/06/2012 01:01 a.m.] [14/07/2009 01:02 a.m.] [DCI] C:\Program Files (x86)\Windows Defender
      [18/07/2012 01:52 p.m.] [13/01/2012 02:23 a.m.] [DCI] C:\Program Files (x86)\Windows Live
      [02/06/2012 01:01 a.m.] [13/07/2009 10:50 p.m.] [DCI] C:\Program Files (x86)\Windows Mail
      [02/06/2012 01:01 a.m.] [14/07/2009 01:02 a.m.] [DCI] C:\Program Files (x86)\Windows Media Player
      [14/07/2009 01:02 a.m.] [13/07/2009 10:50 p.m.] [DCI] C:\Program Files (x86)\Windows NT
      [02/06/2012 01:01 a.m.] [14/07/2009 01:02 a.m.] [DCI] C:\Program Files (x86)\Windows Photo Viewer
      [22/03/2012 03:51 a.m.] [14/07/2009 01:02 a.m.] [DCI] C:\Program Files (x86)\Windows Portable Devices
      [02/06/2012 01:01 a.m.] [14/07/2009 01:02 a.m.] [DCI] C:\Program Files (x86)\Windows Sidebar
      [12/10/2012 01:16 a.m.] [12/01/2012 09:45 p.m.] [DCI] C:\Program Files (x86)\WinRAR
      [19/01/2012 08:33 p.m.] [12/01/2012 09:56 p.m.] [DCI] C:\Program Files (x86)\Yahoo!
      [01/11/2012 02:43 a.m.] [01/11/2012 02:43 a.m.] [DCI] C:\ProgramData\Adobe Systems
      [21/01/2012 02:29 a.m.] [21/01/2012 02:29 a.m.] [DCI] C:\ProgramData\ALM
      [09/05/2012 09:51 p.m.] [09/05/2012 09:51 p.m.] [DCI] C:\ProgramData\Apple
      [07/06/2012 06:29 a.m.] [07/06/2012 06:29 a.m.] [DCI] C:\ProgramData\Apple Computer
      [14/07/2009 12:38 a.m.] [14/07/2009 12:38 a.m.] [HSDLI] C:\ProgramData\Application Data
      [21/01/2012 01:50 p.m.] [21/01/2012 01:41 p.m.] [DCI] C:\ProgramData\Autodesk
      [02/12/2012 03:25 a.m.] [02/12/2012 03:24 a.m.] [DCI] C:\ProgramData\AVG
      [02/12/2012 02:38 a.m.] [02/12/2012 02:37 a.m.] [DCI] C:\ProgramData\AVG2013
      [21/04/2012 12:33 p.m.] [21/04/2012 12:31 p.m.] [DCI] C:\ProgramData\Battle.net
      [10/12/2012 11:13 p.m.] [10/12/2012 11:13 p.m.] [DCI] C:\ProgramData\blekko toolbars
      [12/09/2012 01:57 a.m.] [22/04/2012 12:45 a.m.] [DCI] C:\ProgramData\Blizzard Entertainment
      [21/05/2012 12:40 p.m.] [06/04/2012 03:21 p.m.] [DCI] C:\ProgramData\boost_interprocess
      [16/03/2012 03:13 p.m.] [16/03/2012 03:13 p.m.] [HDCI] C:\ProgramData\Common Files
      [04/12/2012 06:38 a.m.] [04/12/2012 06:35 a.m.] [DCI] C:\ProgramData\DAEMON Tools Pro
      [12/01/2012 09:22 p.m.] [12/01/2012 09:22 p.m.] [HSDLI] C:\ProgramData\Datos de programa
      [14/07/2009 12:38 a.m.] [14/07/2009 12:38 a.m.] [HSDLI] C:\ProgramData\Desktop
      [12/01/2012 09:22 p.m.] [12/01/2012 09:22 p.m.] [HSDLI] C:\ProgramData\Documentos
      [14/07/2009 12:38 a.m.] [14/07/2009 12:38 a.m.] [HSDLI] C:\ProgramData\Documents
      [12/01/2012 09:22 p.m.] [12/01/2012 09:22 p.m.] [HSDLI] C:\ProgramData\Escritorio
      [14/07/2009 12:38 a.m.] [14/07/2009 12:38 a.m.] [HSDLI] C:\ProgramData\Favorites
      [12/01/2012 09:22 p.m.] [12/01/2012 09:22 p.m.] [HSDLI] C:\ProgramData\Favoritos
      [30/11/2012 05:47 a.m.] [30/11/2012 05:47 a.m.] [DCI] C:\ProgramData\Malwarebytes
      [12/01/2012 09:22 p.m.] [12/01/2012 09:22 p.m.] [HSDLI] C:\ProgramData\Menú Inicio
      [11/12/2012 09:54 a.m.] [01/12/2012 11:15 p.m.] [DCI] C:\ProgramData\MFAData
      [24/06/2012 01:31 a.m.] [13/07/2009 10:50 p.m.] [SDACI] C:\ProgramData\Microsoft
      [16/11/2012 03:20 a.m.] [12/01/2012 10:19 p.m.] [DCI] C:\ProgramData\Microsoft Help
      [28/02/2012 07:06 p.m.] [28/02/2012 07:03 p.m.] [DCI] C:\ProgramData\Nero
      [01/12/2012 10:23 p.m.] [25/11/2012 03:02 a.m.] [DCI] C:\ProgramData\Norton
      [25/11/2012 03:01 a.m.] [25/11/2012 03:01 a.m.] [DCI] C:\ProgramData\NortonInstaller
      [11/12/2012 09:48 a.m.] [12/01/2012 10:07 p.m.] [DCI] C:\ProgramData\NVIDIA
      [12/01/2012 10:07 p.m.] [12/01/2012 10:07 p.m.] [DCI] C:\ProgramData\NVIDIA Corporation
      [16/02/2012 11:20 p.m.] [16/02/2012 11:20 p.m.] [DCI] C:\ProgramData\PACE Anti-Piracy
      [10/12/2012 11:11 p.m.] [10/12/2012 11:11 p.m.] [DCI] C:\ProgramData\Panda Security
      [11/12/2012 09:48 a.m.] [10/12/2012 11:13 p.m.] [DCI] C:\ProgramData\Panda Security URL Filtering
      [12/01/2012 09:22 p.m.] [12/01/2012 09:22 p.m.] [HSDLI] C:\ProgramData\Plantillas
      [17/11/2012 12:40 a.m.] [10/07/2012 02:50 a.m.] [DCI] C:\ProgramData\PMB Files
      [21/01/2012 03:04 a.m.] [13/01/2012 12:34 a.m.] [DCI] C:\ProgramData\regid.1986-12.com.adobe
      [31/10/2012 12:39 p.m.] [31/10/2012 12:39 p.m.] [DACI] C:\ProgramData\Reprise
      [14/07/2012 02:14 p.m.] [14/07/2012 02:12 p.m.] [DCI] C:\ProgramData\Screaming Bee
      [01/11/2012 03:05 a.m.] [29/04/2012 03:36 p.m.] [DCI] C:\ProgramData\Skype
      [14/07/2009 12:38 a.m.] [14/07/2009 12:38 a.m.] [HSDLI] C:\ProgramData\Start Menu
      [13/01/2012 11:31 p.m.] [13/01/2012 11:31 p.m.] [DCI] C:\ProgramData\Sun
      [04/05/2012 11:31 p.m.] [04/05/2012 11:31 p.m.] [DCI] C:\ProgramData\SYSTEMAX Software Development
      [11/12/2012 10:22 a.m.] [23/04/2012 08:22 p.m.] [DACI] C:\ProgramData\TEMP
      [14/07/2009 12:38 a.m.] [14/07/2009 12:38 a.m.] [HSDLI] C:\ProgramData\Templates
      [17/08/2012 07:19 a.m.] [18/07/2012 07:30 p.m.] [DCI] C:\ProgramData\TuneUp Software
      [18/07/2012 06:24 p.m.] [18/07/2012 06:24 p.m.] [HSDCI] C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
      [02/12/2012 03:24 a.m.] [02/12/2012 03:24 a.m.] [HSDC] C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}

      ==================== EOF ==================

      ---------------------------------------------------------------------------------------------


      ComboFix.exe

      ComboFix 12-12-10.01 - Carlos 11/12/2012 10:45:47.1.2 - x64
      Microsoft Windows 7 Ultimate 6.1.7601.1.1252.58.3082.18.3199.2139 [GMT -4,5:30]
      Running from: c:\users\Carlos\Desktop\ComboFix.exe
      AV: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
      AV: Panda Cloud Antivirus *Disabled/Updated* {3456760B-FDAA-FFFD-06C2-7BB528D2066C}
      FW: Cloud Antivirus Firewall *Disabled* {0C6DF72E-B7C5-FEA5-2D9D-D280D6014117}
      SP: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
      SP: Panda Cloud Antivirus *Disabled/Updated* {8F3797EF-DB90-F073-3C72-40C753554CD1}
      SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\windows\SysWow64\URTTemp
      c:\windows\SysWow64\URTTemp\regtlib.exe
      D:\install.exe
      D:\setup.exe
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-11-11 to 2012-12-11 )))))))))))))))))))))))))))))))
      .
      .
      2012-12-11 15:26 . 2012-11-07 13:30 58360 -c--a-w- c:\windows\system32\drivers\PSKMAD.sys
      2012-12-11 15:06 . 2012-12-11 15:06 -------- dc----w- c:\users\Carlos\AppData\Roaming\GlarySoft
      2012-12-11 15:01 . 2012-12-11 15:02 -------- dc----w- c:\program files (x86)\Glary Utilities
      2012-12-11 14:52 . 2012-12-11 14:53 -------- dc----w- C:\_AT-Destroyer
      2012-12-11 04:39 . 2012-10-19 16:17 37248 -c--a-w- c:\windows\system32\drivers\PsBoot.sys
      2012-12-11 03:43 . 2012-12-11 03:43 -------- dc----w- c:\programdata\blekko toolbars
      2012-12-11 03:43 . 2012-12-11 03:43 -------- dc----w- c:\users\Carlos\AppData\Local\panda4_0dn
      2012-12-11 03:43 . 2012-12-11 14:55 -------- dc----w- c:\programdata\Panda Security URL Filtering
      2012-12-11 03:43 . 2012-12-11 03:43 -------- dc----w- c:\users\Carlos\AppData\Roaming\Panda Security
      2012-12-11 03:43 . 2012-12-11 03:43 -------- dc----w- c:\program files (x86)\Toolbar Cleaner
      2012-12-11 03:42 . 2012-12-11 03:43 -------- dc----w- c:\program files (x86)\pandasecuritytb
      2012-12-11 03:41 . 2012-12-11 03:41 -------- dc----w- c:\programdata\Panda Security
      2012-12-11 03:41 . 2012-12-11 03:41 -------- dc----w- c:\program files (x86)\Panda Security
      2012-12-09 19:18 . 2012-12-09 19:18 -------- dc----w- c:\users\Default\AppData\Roaming\TuneUp Software
      2012-12-07 08:59 . 2012-12-07 08:59 -------- dc----w- c:\users\Carlos\RAPELAY
      2012-12-07 05:58 . 2012-12-07 06:00 -------- dc----w- c:\users\Carlos\AppData\Roaming\.minecraft
      2012-12-05 06:25 . 2012-11-19 05:31 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8E91C42D-5C58-482A-99F1-00628A1D500C}\mpengine.dll
      2012-12-05 00:06 . 2012-12-05 00:06 -------- dc----w- c:\program files (x86)\AGEIA Technologies
      2012-12-05 00:02 . 2012-12-03 15:47 9271352 -c--a-w- c:\windows\system32\nvcuda.dll
      2012-12-05 00:02 . 2012-12-03 15:47 7819016 -c--a-w- c:\windows\SysWow64\nvcuda.dll
      2012-12-05 00:02 . 2012-12-03 15:47 7446192 -c--a-w- c:\windows\system32\nvopencl.dll
      2012-12-05 00:02 . 2012-12-03 15:47 6149904 -c--a-w- c:\windows\SysWow64\nvopencl.dll
      2012-12-05 00:02 . 2012-12-03 15:47 2784104 -c--a-w- c:\windows\system32\nvcuvid.dll
      2012-12-05 00:02 . 2012-12-03 15:47 25256296 -c--a-w- c:\windows\system32\nvcompiler.dll
      2012-12-05 00:02 . 2012-12-03 15:47 2226024 -c--a-w- c:\windows\system32\nvcuvenc.dll
      2012-12-05 00:02 . 2012-12-03 15:47 20335976 -c--a-w- c:\windows\SysWow64\nvoglv32.dll
      2012-12-05 00:02 . 2012-12-03 15:47 1874280 -c--a-w- c:\windows\SysWow64\nvcuvenc.dll
      2012-12-05 00:02 . 2012-12-03 15:47 17559912 -c--a-w- c:\windows\SysWow64\nvcompiler.dll
      2012-12-05 00:02 . 2012-12-03 15:47 2606440 -c--a-w- c:\windows\SysWow64\nvcuvid.dll
      2012-12-05 00:02 . 2012-12-03 15:47 11532648 -c--a-w- c:\windows\system32\drivers\nvlddmkm.sys
      2012-12-04 11:08 . 2012-12-04 11:08 -------- dc----w- c:\users\Carlos\AppData\Roaming\InstallShield
      2012-12-04 11:06 . 2012-12-04 11:07 283200 -c--a-w- c:\windows\system32\drivers\dtsoftbus01.sys
      2012-12-04 11:06 . 2012-12-06 09:24 -------- dc----w- c:\users\Carlos\AppData\Roaming\DAEMON Tools Pro
      2012-12-04 11:05 . 2012-12-04 11:07 -------- dc----w- c:\programdata\DAEMON Tools Pro
      2012-12-02 07:54 . 2012-12-10 08:58 -------- dc----w- c:\users\Carlos\AppData\Roaming\AVG
      2012-12-02 07:54 . 2012-12-02 07:55 -------- dc----w- c:\programdata\AVG
      2012-12-02 07:54 . 2012-12-02 07:54 -------- dcsh--w- c:\programdata\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
      2012-12-02 07:07 . 2012-12-02 07:07 -------- dc----w- c:\users\Carlos\AppData\Roaming\TuneUp Software
      2012-12-02 07:07 . 2012-12-02 07:07 -------- dc----w- C:\$AVG
      2012-12-02 07:06 . 2012-12-02 07:54 -------- dc----w- c:\program files (x86)\AVG
      2012-12-02 03:45 . 2012-12-11 14:24 -------- dc----w- c:\programdata\MFAData
      2012-12-02 03:45 . 2012-12-02 08:17 -------- dc----w- c:\users\Carlos\AppData\Local\Avg2013
      2012-12-02 03:45 . 2012-12-02 03:45 -------- dc----w- c:\users\Carlos\AppData\Local\MFAData
      2012-12-01 03:13 . 2012-12-01 03:13 438632 -c--a-w- c:\windows\SysWow64\nvStreaming.exe
      2012-11-30 10:17 . 2012-11-30 10:17 -------- dc----w- c:\users\Carlos\AppData\Roaming\Malwarebytes
      2012-11-30 10:17 . 2012-11-30 10:17 -------- dc----w- c:\programdata\Malwarebytes
      2012-11-30 10:17 . 2012-09-30 00:24 25928 -c--a-w- c:\windows\system32\drivers\mbam.sys
      2012-11-30 06:42 . 2012-11-30 06:42 -------- dc----w- c:\users\Carlos\AppData\Roaming\StepMania 5
      2012-11-30 02:03 . 2012-11-30 02:03 21712 -c--a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
      2012-11-30 01:54 . 2012-12-06 09:24 -------- dc----w- c:\users\Carlos\AppData\Local\CrashDumps
      2012-11-29 06:29 . 2012-11-30 09:34 2224 -c--a-w- c:\windows\system32\ASOROSet.bin
      2012-11-26 08:19 . 2012-11-26 08:19 -------- dc----w- c:\users\Carlos\AppData\Roaming\Unity
      2012-11-26 08:11 . 2012-11-29 07:02 -------- dc----w- c:\users\Carlos\AppData\Local\Unity
      2012-11-25 08:09 . 2012-12-02 02:33 -------- dc----w- c:\program files (x86)\Common Files\Symantec Shared
      2012-11-25 07:32 . 2012-12-02 02:53 -------- dc----w- c:\programdata\Norton
      2012-11-23 07:31 . 2012-11-23 07:31 -------- dc----w- c:\users\Carlos\AppData\Roaming\YourFileDownloader
      2012-11-23 05:33 . 2012-12-10 09:48 -------- dc----w- c:\users\Carlos\AppData\Roaming\Fantasy Grounds II
      2012-11-16 22:06 . 2012-11-20 08:12 -------- dc----w- c:\users\Carlos\AppData\Roaming\Mount&Blade Warband
      2012-11-16 10:05 . 2012-11-16 10:24 -------- dc----w- c:\users\Carlos\AppData\Roaming\Mount&Blade
      2012-11-16 07:45 . 2012-11-16 07:45 2560 ----a-w- c:\windows\system32\drivers\ja-JP\wdf01000.sys.mui
      2012-11-16 07:45 . 2012-11-16 07:45 2560 ----a-w- c:\windows\system32\drivers\es-ES\wdf01000.sys.mui
      2012-11-16 07:45 . 2012-11-16 07:45 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
      2012-11-16 07:45 . 2012-11-16 07:45 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
      2012-11-16 07:45 . 2012-11-16 07:45 9728 ----a-w- c:\windows\system32\Wdfres.dll
      2012-11-16 07:31 . 2012-11-16 07:31 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
      2012-11-16 07:31 . 2012-11-16 07:31 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
      2012-11-16 07:31 . 2012-11-16 07:31 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
      2012-11-16 07:31 . 2012-11-16 07:31 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
      2012-11-16 07:31 . 2012-11-16 07:31 744448 ----a-w- c:\windows\system32\WUDFx.dll
      2012-11-16 07:31 . 2012-11-16 07:31 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
      2012-11-16 07:31 . 2012-11-16 07:31 229888 ----a-w- c:\windows\system32\WUDFHost.exe
      2012-11-16 07:03 . 2012-11-16 07:50 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
      2012-11-16 07:03 . 2012-11-16 07:50 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
      2012-11-16 07:03 . 2012-11-16 07:50 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
      2012-11-16 07:03 . 2012-11-16 07:50 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
      2012-11-16 07:03 . 2012-11-16 07:49 3149824 ----a-w- c:\windows\system32\win32k.sys
      2012-11-16 06:50 . 2012-11-16 07:44 216576 ----a-w- c:\windows\system32\ncsi.dll
      2012-11-16 06:50 . 2012-11-16 07:44 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
      2012-11-16 06:50 . 2012-11-16 07:44 1914248 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2012-11-16 06:50 . 2012-11-16 07:44 303104 ----a-w- c:\windows\system32\nlasvc.dll
      2012-11-16 06:50 . 2012-11-16 07:44 246272 ----a-w- c:\windows\system32\netcorehc.dll
      2012-11-16 06:50 . 2012-11-16 07:44 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
      2012-11-16 06:50 . 2012-11-16 07:44 70656 ----a-w- c:\windows\system32\nlaapi.dll
      2012-11-16 06:50 . 2012-11-16 07:44 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
      2012-11-16 06:50 . 2012-11-16 07:44 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
      2012-11-16 06:50 . 2012-11-16 07:44 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
      2012-11-16 06:50 . 2012-11-16 07:44 18944 ----a-w- c:\windows\SysWow64\netevent.dll
      2012-11-16 06:50 . 2012-11-16 07:44 18944 ----a-w- c:\windows\system32\netevent.dll
      2012-11-16 06:37 . 2012-11-16 07:31 95744 ----a-w- c:\windows\system32\synceng.dll
      2012-11-16 06:37 . 2012-11-16 07:31 78336 ----a-w- c:\windows\SysWow64\synceng.dll
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-12-03 15:47 . 2012-10-11 01:53 18045968 -c--a-w- c:\windows\system32\nvd3dumx.dll
      2012-12-03 15:47 . 2012-10-11 01:53 12603960 -c--a-w- c:\windows\SysWow64\nvwgf2um.dll
      2012-12-03 15:47 . 2012-10-11 01:52 26811240 -c--a-w- c:\windows\system32\nvoglv64.dll
      2012-12-03 15:47 . 2012-09-18 06:47 2496976 -c--a-w- c:\windows\SysWow64\nvapi.dll
      2012-12-03 15:47 . 2012-09-18 06:47 1504104 -c--a-w- c:\windows\system32\nvdispgenco64.dll
      2012-12-03 15:47 . 2012-03-20 08:53 15122280 -c--a-w- c:\windows\SysWow64\nvd3dum.dll
      2012-12-03 15:47 . 2012-01-13 02:36 2816824 -c--a-w- c:\windows\system32\nvapi64.dll
      2012-12-03 15:47 . 2012-01-13 02:36 1805672 -c--a-w- c:\windows\system32\nvdispco64.dll
      2012-12-03 15:47 . 2012-01-13 02:36 15016256 -c--a-w- c:\windows\system32\nvwgf2umx.dll
      2012-12-01 05:49 . 2012-01-13 02:37 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
      2012-12-01 05:49 . 2012-01-13 02:37 63336 -c--a-w- c:\windows\system32\nvshext.dll
      2012-12-01 05:49 . 2012-01-13 02:37 118120 -c--a-w- c:\windows\system32\nvmctray.dll
      2012-12-01 05:49 . 2012-01-13 02:37 890216 ----a-w- c:\windows\system32\nvvsvc.exe
      2012-12-01 05:48 . 2012-01-13 02:37 6223208 -c--a-w- c:\windows\system32\nvcpl.dll
      2012-12-01 05:48 . 2012-01-13 02:37 3311464 ----a-w- c:\windows\system32\nvsvc64.dll
      2012-11-28 07:30 . 2012-11-28 06:46 561664 ----a-w- c:\windows\apppatch\AcLayers.dll
      2012-11-28 07:30 . 2012-11-28 06:46 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
      2012-11-28 07:30 . 2012-11-28 06:45 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
      2012-11-16 07:32 . 2012-06-02 05:26 66395536 -c--a-w- c:\windows\system32\MRT.exe
      2012-11-09 23:31 . 2012-11-09 23:31 204328 -c--a-w- c:\windows\system32\drivers\PSINKNC.sys
      2012-11-09 23:31 . 2012-11-09 23:31 133160 -c--a-w- c:\windows\system32\drivers\PSINProt.sys
      2012-11-09 23:31 . 2012-11-09 23:31 123944 -c--a-w- c:\windows\system32\drivers\PSINProc.sys
      2012-11-09 23:31 . 2012-11-09 23:31 167976 -c--a-w- c:\windows\system32\drivers\PSINAflt.sys
      2012-11-09 23:31 . 2012-11-09 23:31 119848 -c--a-w- c:\windows\system32\drivers\PSINFile.sys
      2012-11-09 15:54 . 2012-11-09 15:54 291368 -c--a-w- c:\windows\system32\drivers\NNSStrm.sys
      2012-11-09 15:54 . 2012-11-09 15:54 148520 -c--a-w- c:\windows\system32\drivers\NNStlsc.sys
      2012-11-09 15:54 . 2012-11-09 15:54 150568 -c--a-w- c:\windows\system32\drivers\NNSPrv.sys
      2012-11-09 15:54 . 2012-11-09 15:54 135208 -c--a-w- c:\windows\system32\drivers\NNSSmtp.sys
      2012-11-09 15:54 . 2012-11-09 15:54 397864 -c--a-w- c:\windows\system32\drivers\NNSProt.sys
      2012-11-09 15:54 . 2012-11-09 15:54 83496 -c--a-w- c:\windows\system32\drivers\NNSPihsw.sys
      2012-11-09 15:54 . 2012-11-09 15:54 139304 -c--a-w- c:\windows\system32\drivers\NNSPop3.sys
      2012-11-09 15:54 . 2012-11-09 15:54 154152 -c--a-w- c:\windows\system32\drivers\NNSIds.sys
      2012-11-09 15:54 . 2012-11-09 15:54 134696 -c--a-w- c:\windows\system32\drivers\NNSpicc.sys
      2012-11-09 15:54 . 2012-11-09 15:54 136232 -c--a-w- c:\windows\system32\drivers\NNSHttp.sys
      2012-11-09 15:54 . 2012-11-09 15:54 127016 -c--a-w- c:\windows\system32\drivers\NNSAlpc.sys
      2012-11-01 08:13 . 2012-11-01 05:39 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
      2012-11-01 08:03 . 2012-11-01 05:34 2004480 ----a-w- c:\windows\system32\msxml6.dll
      2012-11-01 08:03 . 2012-11-01 05:34 1881600 ----a-w- c:\windows\system32\msxml3.dll
      2012-11-01 08:03 . 2012-11-01 05:34 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll
      2012-11-01 08:03 . 2012-11-01 05:34 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
      2012-11-01 08:03 . 2012-11-01 05:34 2048 ----a-w- c:\windows\system32\msxml3r.dll
      2012-11-01 08:03 . 2012-11-01 05:34 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
      2012-11-01 07:53 . 2012-11-01 05:34 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
      2012-11-01 07:53 . 2012-11-01 05:34 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
      2012-11-01 07:53 . 2012-11-01 05:34 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
      2012-11-01 07:52 . 2012-11-01 05:34 14172672 ----a-w- c:\windows\system32\shell32.dll
      2012-11-01 07:51 . 2012-11-01 05:34 424448 ----a-w- c:\windows\system32\KernelBase.dll
      2012-11-01 07:51 . 2012-11-01 05:34 1162240 ----a-w- c:\windows\system32\kernel32.dll
      2012-11-01 07:51 . 2012-11-01 05:34 338432 ----a-w- c:\windows\system32\conhost.exe
      2012-11-01 07:51 . 2012-11-01 05:34 215040 ----a-w- c:\windows\system32\winsrv.dll
      2012-11-01 07:51 . 2012-11-01 05:34 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
      2012-11-01 07:51 . 2012-11-01 05:34 243200 ----a-w- c:\windows\system32\wow64.dll
      2012-11-01 07:51 . 2012-11-01 05:34 44032 ----a-w- c:\windows\apppatch\acwow64.dll
      2012-11-01 07:51 . 2012-11-01 05:34 25600 ----a-w- c:\windows\SysWow64\setup16.exe
      2012-11-01 07:51 . 2012-11-01 05:34 362496 ----a-w- c:\windows\system32\wow64win.dll
      2012-11-01 07:51 . 2012-11-01 05:34 16384 ----a-w- c:\windows\system32\ntvdm64.dll
      2012-11-01 07:51 . 2012-11-01 05:34 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
      2012-11-01 07:51 . 2012-11-01 05:34 13312 ----a-w- c:\windows\system32\wow64cpu.dll
      2012-11-01 07:51 . 2012-11-01 05:34 5120 ----a-w- c:\windows\SysWow64\wow32.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 7680 ----a-w- c:\windows\SysWow64\instnm.exe
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}]
      2012-10-15 13:02 87176 -c--a-w- c:\program files (x86)\pandasecuritytb\pandasecurityDx.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
      "{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}"= "c:\program files (x86)\pandasecuritytb\pandasecurityDx.dll" [2012-10-15 87176]
      .
      [HKEY_CLASSES_ROOT\clsid\{b821bf60-5c2d-41eb-92dc-3e4ccd3a22e4}]
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
      "DAEMON Tools Pro Agent"="d:\daemon tools pro\DTAgent.exe" [2012-10-23 3108480]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-11-06 3143800]
      "PSUAMain"="c:\program files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe" [2012-11-15 32032]
      "Panda Security URL Filtering"="c:\programdata\Panda Security URL Filtering\Panda_URL_Filtering.exe" [2012-10-15 221832]
      "LogMeIn Hamachi Ui"="d:\hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableLUA"= 0 (0x0)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
      BootExecute REG_MULTI_SZ \0
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
      "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
      .
      R1 gypgpbqc;gypgpbqc;c:\windows\system32\drivers\gypgpbqc.sys [x]
      R1 jnplzzkz;jnplzzkz;c:\windows\system32\drivers\jnplzzkz.sys [x]
      R1 NNSNAHSL;Network Activity Hook Server LightWeight Filter Driver;c:\windows\system32\DRIVERS\NNSNAHSL.sys [2012-10-22 33320]
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-11-26 160944]
      R2 wntpport;wntpport; [x]
      R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2011-07-29 16776]
      R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2011-07-29 9096]
      R3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [x]
      R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [x]
      R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [x]
      R3 PTSimHid;PenTablet Simulated HID MiniDriver;c:\windows\system32\DRIVERS\PTSimHid.sys [2009-06-18 17064]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
      R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
      R3 SydexFDD;Sydex Diskette Driver;c:\windows\SysWOW64\Drivers\sydexfdd.sys [2011-01-18 13359]
      R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
      R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
      R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-01-13 1255736]
      R3 X6va008;X6va008;c:\windows\SysWOW64\Drivers\X6va008 [x]
      R4 NNSPIHSW;NNSPIHSW;c:\windows\system32\DRIVERS\NNSPihsw.sys [2012-11-09 83496]
      S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-10-15 63328]
      S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-09-21 225120]
      S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-10-05 111456]
      S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-09-14 40800]
      S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-10-22 154464]
      S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-10-02 185696]
      S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-09-21 200032]
      S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-04 283200]
      S1 NNSALPC;NNSALPC;c:\windows\system32\DRIVERS\NNSAlpc.sys [2012-11-09 127016]
      S1 NNSHTTP;NNSHTTP;c:\windows\system32\DRIVERS\NNSHttp.sys [2012-11-09 136232]
      S1 NNSIDS;NNSIDS;c:\windows\system32\DRIVERS\NNSIds.sys [2012-11-09 154152]
      S1 NNSPICC;NNSPICC;c:\windows\system32\DRIVERS\NNSPicc.sys [2012-11-09 134696]
      S1 NNSPOP3;NNSPOP3;c:\windows\system32\DRIVERS\NNSPop3.sys [2012-11-09 139304]
      S1 NNSPROT;NNSPROT;c:\windows\system32\DRIVERS\NNSProt.sys [2012-11-09 397864]
      S1 NNSPRV;NNSPRV;c:\windows\system32\DRIVERS\NNSPrv.sys [2012-11-09 150568]
      S1 NNSSMTP;NNSSMTP;c:\windows\system32\DRIVERS\NNSSmtp.sys [2012-11-09 135208]
      S1 NNSSTRM;NNSSTRM;c:\windows\system32\DRIVERS\NNSStrm.sys [2012-11-09 291368]
      S1 NNSTLSC;NNSTLSC;c:\windows\system32\DRIVERS\NNSTlsc.sys [2012-11-09 148520]
      S1 PSINKNC;PSINKNC;c:\windows\system32\DRIVERS\psinknc.sys [2012-11-09 204328]
      S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-06 5814392]
      S2 avgwd;WatchDog de AVG;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
      S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;d:\hamachi\hamachi-2.exe [2012-12-10 2465712]
      S2 MBAMScheduler;MBAMScheduler;d:\malwarebytes' anti-malware\mbamscheduler.exe [2012-09-30 399432]
      S2 MBAMService;MBAMService;d:\malwarebytes' anti-malware\mbamservice.exe [2012-09-30 676936]
      S2 NanoServiceMain;Panda Cloud Antivirus Service;c:\program files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe [2012-11-12 140064]
      S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-09-23 641832]
      S2 PSINAflt;PSINAflt;c:\windows\system32\DRIVERS\PSINAflt.sys [2012-11-09 167976]
      S2 PSINFile;PSINFile;c:\windows\system32\DRIVERS\PSINFile.sys [2012-11-09 119848]
      S2 PSINProc;PSINProc;c:\windows\system32\DRIVERS\PSINProc.sys [2012-11-09 123944]
      S2 PSINProt;PSINProt;c:\windows\system32\DRIVERS\PSINProt.sys [2012-11-09 133160]
      S2 PSUAService;Panda Product Service;c:\program files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe [2012-11-15 36640]
      S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-12-01 382824]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-30 25928]
      S3 PSKMAD;PSKMAD;c:\windows\system32\DRIVERS\PSKMAD.sys [2012-11-07 58360]
      S3 PTSimBus;PenTablet Bus Enumerator;c:\windows\system32\DRIVERS\PTSimBus.sys [2009-06-18 27304]
      S3 RTL8167;Controlador NT de Realtek 8167;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
      S3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys [2010-07-01 38992]
      .
      .
      --- Other Services/Drivers In Memory ---
      .
      *NewlyCreated* - WS2IFSL
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-12-11 c:\windows\Tasks\GlaryInitialize.job
      - c:\program files (x86)\Glary Utilities\initialize.exe [2012-12-11 17:40]
      .
      2012-12-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-798180238-1948416329-3047070514-1000Core.job
      - c:\users\Carlos\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-13 03:56]
      .
      2012-12-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-798180238-1948416329-3047070514-1000UA.job
      - c:\users\Carlos\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-13 03:56]
      .
      2012-12-10 c:\windows\Tasks\RegClean Pro_DEFAULT.job
      - c:\program files (x86)\RegClean Pro\RegCleanPro.exe [2012-11-01 16:34]
      .
      2012-12-05 c:\windows\Tasks\RegClean Pro_UPDATES.job
      - c:\program files (x86)\RegClean Pro\RegCleanPro.exe [2012-11-01 16:34]
      .
      .
      --------- X64 Entries -----------
      .
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = www.google.com
      mStart Page = www.google.com
      mLocal Page = c:\windows\SysWOW64\blank.htm
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
      FF - ProfilePath - c:\users\Carlos\AppData\Roaming\Mozilla\Firefox\Profiles\1o6bydgh.default\
      FF - prefs.js: browser.startup.homepage - hxxp://google.com
      FF - prefs.js: keyword.URL - hxxps://www.google.com/search?q=
      FF - prefs.js: browser.search.selectedEngine - Google
      FF - prefs.js: browser.search.defaulturl - www.Google.com
      FF - prefs.js: network.proxy.socks - 127.0.0.1
      FF - prefs.js: network.proxy.socks_port - 9050
      FF - prefs.js: network.proxy.type - 1
      FF - user.js: network.http.max-persistent-connections-per-server - 4
      FF - user.js: nglayout.initialpaint.delay - 600
      FF - user.js: content.notify.interval - 600000
      FF - user.js: content.max.tokenizing.time - 1800000
      FF - user.js: content.switch.threshold - 600000
      .
      - - - - ORPHANS REMOVED - - - -
      .
      URLSearchHooks-{c95a4e8e-816d-4655-8c79-d736da1adb6d} - (no file)
      BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
      AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
      AddRemove-Rainbow Sentinel Driver - c:\windows\SYSTEM32\RNBOSENT\SETUPX86.EXE
      .
      .
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va008]
      "ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va008"
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*ð_]
      @Class="Shell"
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*ð_\OpenWithList]
      @Class="Shell"
      "a"="vlc.exe"
      "MRUList"="a"
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**ˆ]
      @Class="Shell"
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**ˆ\OpenWithList]
      @Class="Shell"
      "a"="vlc.exe"
      "MRUList"="a"
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
      @Allowed: (Read) (RestrictedCode)
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
      "Version"=hex:21,a2,ae,f4,83,ef,19,24,80,c3,1e,7c,65,12,f3,ec,2f,13,ef,3c,18,
      a4,e8,86,8e,35,0f,6d,51,e9,98,ee,de,81,d9,72,0f,b3,93,de,1a,15,f2,16,bf,4d,\
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10g_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10g_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.10"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker3"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
      @="{6EF568F4-D437-4466-AA63-A3645136D93E}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
      @="{6EF568F4-D437-4466-AA63-A3645136D93E}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker2"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
      @="{6EF568F4-D437-4466-AA63-A3645136D93E}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker4"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
      "Version"=hex:21,a2,ae,f4,83,ef,19,24,80,c3,1e,7c,65,12,f3,ec,2f,13,ef,3c,18,
      a4,e8,86,8e,35,0f,6d,51,e9,98,ee,de,81,d9,72,0f,b3,93,de,1a,15,f2,16,bf,4d,\
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      d:\avg pc tuneup\BoostSpeed.exe
      c:\windows\System32\Drivers\WTSRV.EXE
      d:\malwarebytes' anti-malware\mbamgui.exe
      d:\daemon tools pro\DTShellHlp.exe
      c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
      .
      **************************************************************************
      .
      Completion time: 2012-12-11 11:03:00 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-12-11 15:32
      .
      Pre-Run: 14.688.907.264 bytes libres
      Post-Run: 14.673.022.976 bytes libres
      .
      - - End Of File - - D6AF6ED0231D77FA367233D5492059A8

      -----------------------------------------------------------------------------------------------------


      esos son todos los reportes.


      bueno, todo va bien, con uso del CPU normal, pero lo que observo es que al ejecutar cualquier programa no llena tanto % del CPU como lo hace con Minecraft me refiero a que tengo programas y juegos muchos mas pesados que eso y no llega a consumir ni un 50% de uso como lo hace Minecraft a un 80% 70% y aveces los 100%

      para darles un ejemplo de los demás programas, UDK que es un motor gráfico para realizar vídeo juegos, World Of Warcraft teniendo 2 cesiones iniciadas, programas de modelaje 3D, osea hago mi observación con respecto a los programas que mas uso, y bueno anteriormente no sucedía este problema, vale recalcar que el Minecraft recién lo reinstalo hace como 3 días mas o menos, pero anterior a eso nunca me daba problemas.

      gracias por la ayuda, estaré pendiente a cualquier respuesta sobre los registros.

    4. #4
      Moderador Gral.
      Avatar de Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      54.839

      Re: uso del cpu al 100% con procedimientos basicos

      Hola



      Con Revouninstaller desinstalá las sigientes aplicaciones:


      Panda Cloud Antivirus

      Malwarebytes

      AVG Tune UP



      Ejecutá Glary Utilities

      • Presioná el Boton Mantenimiento un Clic
      • Presioná el Boton Ver Resultados y esperá a que termine.
      • Cuando termine, presionas el Boton Reparar Problemas.




      Realiza lo siguiente :

      • Clic en INICIO > EJECUTAR >
        • Y ahí pones notepad.exe y ACEPTAR
        • Ahora copia y pega el texto del cuadro de mas abajo dentro del Notepad


      Código:
      KillAll::
      ClearJavaCache::
      File::
      c:\windows\system32\drivers\gypgpbqc.sys
      c:\windows\system32\drivers\jnplzzkz.sys
      Driver::
      gypgpbqc
      jnplzzkz
      X6va008
      Registry::
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va008]
      "ImagePath"=-
      NetSvc::


      • Guarda este archivo con el nombre CFScript.txt
      • Arrastra y suelta el archivo CFScript.txt dentro del archivo ComboFix.exe como lo muestra el screenshot de abajo.



      • ComboFix comenzará otra vez a ejecutarse. Cuando termine generara un nuevo reporte que tendras que pegar en este mismo tema.




      Después de reiniciar, comprobas en funcionamiento y nos comentás.



      saludos

      `·.¸¸.·´´¯`··._.· ·.¸¸.·´´¯`··._.· No Desesperes.....Seguí Luchando `·.¸¸.·´´¯`··._.· ·.¸¸.·´´¯`··._.·

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de Carlos Ekmeiro
      Registrado
      dic 2012
      Mensajes
      4

      Re: uso del cpu al 100% con procedimientos basicos

      hola echo todo acá traigo el registro que arrojo el ComboFix
      reiniciare para luego probar y les comento :D


      ComboFix 12-12-10.01 - Carlos 11/12/2012 15:30:53.2.2 - x64
      Microsoft Windows 7 Ultimate 6.1.7601.1.1252.58.3082.18.3199.1953 [GMT -4,5:30]
      Running from: c:\users\Carlos\Desktop\ComboFix.exe
      Command switches used :: c:\users\Carlos\Desktop\CFScript.txt
      AV: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
      SP: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
      SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point
      .
      FILE ::
      "c:\windows\system32\drivers\gypgpbqc.sys"
      "c:\windows\system32\drivers\jnplzzkz.sys"
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      -------\Legacy_X6VA008
      -------\Service_gypgpbqc
      -------\Service_jnplzzkz
      -------\Service_X6va008
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-11-11 to 2012-12-11 )))))))))))))))))))))))))))))))
      .
      .
      2012-12-11 20:33 . 2012-12-11 20:33 -------- dc----w- c:\users\UpdatusUser\AppData\Local\temp
      2012-12-11 20:33 . 2012-12-11 20:33 -------- dc----w- c:\users\Default\AppData\Local\temp
      2012-12-11 15:06 . 2012-12-11 15:06 -------- dc----w- c:\users\Carlos\AppData\Roaming\GlarySoft
      2012-12-11 15:01 . 2012-12-11 15:02 -------- dc----w- c:\program files (x86)\Glary Utilities
      2012-12-11 14:52 . 2012-12-11 14:53 -------- dc----w- C:\_AT-Destroyer
      2012-12-11 04:39 . 2012-10-19 16:17 37248 -c--a-w- c:\windows\system32\drivers\PsBoot.sys
      2012-12-11 03:43 . 2012-12-11 03:43 -------- dc----w- c:\users\Carlos\AppData\Local\panda4_0dn
      2012-12-11 03:43 . 2012-12-11 14:55 -------- dc----w- c:\programdata\Panda Security URL Filtering
      2012-12-11 03:43 . 2012-12-11 03:43 -------- dc----w- c:\users\Carlos\AppData\Roaming\Panda Security
      2012-12-11 03:41 . 2012-12-11 20:36 -------- dc----w- c:\program files (x86)\Panda Security
      2012-12-11 03:41 . 2012-12-11 03:41 -------- dc----w- c:\programdata\Panda Security
      2012-12-09 19:18 . 2012-12-09 19:18 -------- dc----w- c:\users\Default\AppData\Roaming\TuneUp Software
      2012-12-07 08:59 . 2012-12-07 08:59 -------- dc----w- c:\users\Carlos\RAPELAY
      2012-12-07 05:58 . 2012-12-07 06:00 -------- dc----w- c:\users\Carlos\AppData\Roaming\.minecraft
      2012-12-05 06:25 . 2012-11-19 05:31 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8E91C42D-5C58-482A-99F1-00628A1D500C}\mpengine.dll
      2012-12-05 00:06 . 2012-12-05 00:06 -------- dc----w- c:\program files (x86)\AGEIA Technologies
      2012-12-05 00:02 . 2012-12-03 15:47 9271352 -c--a-w- c:\windows\system32\nvcuda.dll
      2012-12-05 00:02 . 2012-12-03 15:47 7819016 -c--a-w- c:\windows\SysWow64\nvcuda.dll
      2012-12-05 00:02 . 2012-12-03 15:47 7446192 -c--a-w- c:\windows\system32\nvopencl.dll
      2012-12-05 00:02 . 2012-12-03 15:47 6149904 -c--a-w- c:\windows\SysWow64\nvopencl.dll
      2012-12-05 00:02 . 2012-12-03 15:47 2784104 -c--a-w- c:\windows\system32\nvcuvid.dll
      2012-12-05 00:02 . 2012-12-03 15:47 25256296 -c--a-w- c:\windows\system32\nvcompiler.dll
      2012-12-05 00:02 . 2012-12-03 15:47 2226024 -c--a-w- c:\windows\system32\nvcuvenc.dll
      2012-12-05 00:02 . 2012-12-03 15:47 20335976 -c--a-w- c:\windows\SysWow64\nvoglv32.dll
      2012-12-05 00:02 . 2012-12-03 15:47 1874280 -c--a-w- c:\windows\SysWow64\nvcuvenc.dll
      2012-12-05 00:02 . 2012-12-03 15:47 17559912 -c--a-w- c:\windows\SysWow64\nvcompiler.dll
      2012-12-05 00:02 . 2012-12-03 15:47 2606440 -c--a-w- c:\windows\SysWow64\nvcuvid.dll
      2012-12-05 00:02 . 2012-12-03 15:47 11532648 -c--a-w- c:\windows\system32\drivers\nvlddmkm.sys
      2012-12-04 11:08 . 2012-12-04 11:08 -------- dc----w- c:\users\Carlos\AppData\Roaming\InstallShield
      2012-12-04 11:06 . 2012-12-04 11:07 283200 -c--a-w- c:\windows\system32\drivers\dtsoftbus01.sys
      2012-12-04 11:06 . 2012-12-06 09:24 -------- dc----w- c:\users\Carlos\AppData\Roaming\DAEMON Tools Pro
      2012-12-04 11:05 . 2012-12-04 11:07 -------- dc----w- c:\programdata\DAEMON Tools Pro
      2012-12-02 07:54 . 2012-12-10 08:58 -------- dc----w- c:\users\Carlos\AppData\Roaming\AVG
      2012-12-02 07:54 . 2012-12-02 07:55 -------- dc----w- c:\programdata\AVG
      2012-12-02 07:54 . 2012-12-02 07:54 -------- dcsh--w- c:\programdata\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
      2012-12-02 07:07 . 2012-12-02 07:07 -------- dc----w- c:\users\Carlos\AppData\Roaming\TuneUp Software
      2012-12-02 07:07 . 2012-12-02 07:07 -------- dc----w- C:\$AVG
      2012-12-02 07:06 . 2012-12-02 07:54 -------- dc----w- c:\program files (x86)\AVG
      2012-12-02 03:45 . 2012-12-11 14:24 -------- dc----w- c:\programdata\MFAData
      2012-12-02 03:45 . 2012-12-02 08:17 -------- dc----w- c:\users\Carlos\AppData\Local\Avg2013
      2012-12-02 03:45 . 2012-12-02 03:45 -------- dc----w- c:\users\Carlos\AppData\Local\MFAData
      2012-12-01 03:13 . 2012-12-01 03:13 438632 -c--a-w- c:\windows\SysWow64\nvStreaming.exe
      2012-11-30 10:17 . 2012-11-30 10:17 -------- dc----w- c:\users\Carlos\AppData\Roaming\Malwarebytes
      2012-11-30 10:17 . 2012-11-30 10:17 -------- dc----w- c:\programdata\Malwarebytes
      2012-11-30 06:42 . 2012-11-30 06:42 -------- dc----w- c:\users\Carlos\AppData\Roaming\StepMania 5
      2012-11-30 02:03 . 2012-11-30 02:03 21712 -c--a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
      2012-11-30 01:54 . 2012-12-11 16:54 -------- dc----w- c:\users\Carlos\AppData\Local\CrashDumps
      2012-11-29 06:29 . 2012-11-30 09:34 2224 -c--a-w- c:\windows\system32\ASOROSet.bin
      2012-11-26 08:19 . 2012-11-26 08:19 -------- dc----w- c:\users\Carlos\AppData\Roaming\Unity
      2012-11-26 08:11 . 2012-11-29 07:02 -------- dc----w- c:\users\Carlos\AppData\Local\Unity
      2012-11-25 08:09 . 2012-12-02 02:33 -------- dc----w- c:\program files (x86)\Common Files\Symantec Shared
      2012-11-25 07:32 . 2012-12-02 02:53 -------- dc----w- c:\programdata\Norton
      2012-11-23 07:31 . 2012-11-23 07:31 -------- dc----w- c:\users\Carlos\AppData\Roaming\YourFileDownloader
      2012-11-23 05:33 . 2012-12-10 09:48 -------- dc----w- c:\users\Carlos\AppData\Roaming\Fantasy Grounds II
      2012-11-16 22:06 . 2012-11-20 08:12 -------- dc----w- c:\users\Carlos\AppData\Roaming\Mount&Blade Warband
      2012-11-16 10:05 . 2012-11-16 10:24 -------- dc----w- c:\users\Carlos\AppData\Roaming\Mount&Blade
      2012-11-16 07:45 . 2012-11-16 07:45 2560 ----a-w- c:\windows\system32\drivers\ja-JP\wdf01000.sys.mui
      2012-11-16 07:45 . 2012-11-16 07:45 2560 ----a-w- c:\windows\system32\drivers\es-ES\wdf01000.sys.mui
      2012-11-16 07:45 . 2012-11-16 07:45 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
      2012-11-16 07:45 . 2012-11-16 07:45 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
      2012-11-16 07:45 . 2012-11-16 07:45 9728 ----a-w- c:\windows\system32\Wdfres.dll
      2012-11-16 07:31 . 2012-11-16 07:31 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
      2012-11-16 07:31 . 2012-11-16 07:31 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
      2012-11-16 07:31 . 2012-11-16 07:31 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
      2012-11-16 07:31 . 2012-11-16 07:31 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
      2012-11-16 07:31 . 2012-11-16 07:31 744448 ----a-w- c:\windows\system32\WUDFx.dll
      2012-11-16 07:31 . 2012-11-16 07:31 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
      2012-11-16 07:31 . 2012-11-16 07:31 229888 ----a-w- c:\windows\system32\WUDFHost.exe
      2012-11-16 07:03 . 2012-11-16 07:50 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
      2012-11-16 07:03 . 2012-11-16 07:50 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
      2012-11-16 07:03 . 2012-11-16 07:50 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
      2012-11-16 07:03 . 2012-11-16 07:50 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
      2012-11-16 07:03 . 2012-11-16 07:49 3149824 ----a-w- c:\windows\system32\win32k.sys
      2012-11-16 06:50 . 2012-11-16 07:44 216576 ----a-w- c:\windows\system32\ncsi.dll
      2012-11-16 06:50 . 2012-11-16 07:44 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
      2012-11-16 06:50 . 2012-11-16 07:44 1914248 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2012-11-16 06:50 . 2012-11-16 07:44 303104 ----a-w- c:\windows\system32\nlasvc.dll
      2012-11-16 06:50 . 2012-11-16 07:44 246272 ----a-w- c:\windows\system32\netcorehc.dll
      2012-11-16 06:50 . 2012-11-16 07:44 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
      2012-11-16 06:50 . 2012-11-16 07:44 70656 ----a-w- c:\windows\system32\nlaapi.dll
      2012-11-16 06:50 . 2012-11-16 07:44 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
      2012-11-16 06:50 . 2012-11-16 07:44 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
      2012-11-16 06:50 . 2012-11-16 07:44 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
      2012-11-16 06:50 . 2012-11-16 07:44 18944 ----a-w- c:\windows\SysWow64\netevent.dll
      2012-11-16 06:50 . 2012-11-16 07:44 18944 ----a-w- c:\windows\system32\netevent.dll
      2012-11-16 06:37 . 2012-11-16 07:31 95744 ----a-w- c:\windows\system32\synceng.dll
      2012-11-16 06:37 . 2012-11-16 07:31 78336 ----a-w- c:\windows\SysWow64\synceng.dll
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-12-03 15:47 . 2012-10-11 01:53 18045968 -c--a-w- c:\windows\system32\nvd3dumx.dll
      2012-12-03 15:47 . 2012-10-11 01:53 12603960 -c--a-w- c:\windows\SysWow64\nvwgf2um.dll
      2012-12-03 15:47 . 2012-10-11 01:52 26811240 -c--a-w- c:\windows\system32\nvoglv64.dll
      2012-12-03 15:47 . 2012-09-18 06:47 2496976 -c--a-w- c:\windows\SysWow64\nvapi.dll
      2012-12-03 15:47 . 2012-09-18 06:47 1504104 -c--a-w- c:\windows\system32\nvdispgenco64.dll
      2012-12-03 15:47 . 2012-03-20 08:53 15122280 -c--a-w- c:\windows\SysWow64\nvd3dum.dll
      2012-12-03 15:47 . 2012-01-13 02:36 2816824 -c--a-w- c:\windows\system32\nvapi64.dll
      2012-12-03 15:47 . 2012-01-13 02:36 1805672 -c--a-w- c:\windows\system32\nvdispco64.dll
      2012-12-03 15:47 . 2012-01-13 02:36 15016256 -c--a-w- c:\windows\system32\nvwgf2umx.dll
      2012-12-01 05:49 . 2012-01-13 02:37 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
      2012-12-01 05:49 . 2012-01-13 02:37 63336 -c--a-w- c:\windows\system32\nvshext.dll
      2012-12-01 05:49 . 2012-01-13 02:37 118120 -c--a-w- c:\windows\system32\nvmctray.dll
      2012-12-01 05:49 . 2012-01-13 02:37 890216 ----a-w- c:\windows\system32\nvvsvc.exe
      2012-12-01 05:48 . 2012-01-13 02:37 6223208 -c--a-w- c:\windows\system32\nvcpl.dll
      2012-12-01 05:48 . 2012-01-13 02:37 3311464 ----a-w- c:\windows\system32\nvsvc64.dll
      2012-11-28 07:30 . 2012-11-28 06:46 561664 ----a-w- c:\windows\apppatch\AcLayers.dll
      2012-11-28 07:30 . 2012-11-28 06:46 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
      2012-11-28 07:30 . 2012-11-28 06:45 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
      2012-11-16 07:32 . 2012-06-02 05:26 66395536 -c--a-w- c:\windows\system32\MRT.exe
      2012-11-01 08:13 . 2012-11-01 05:39 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
      2012-11-01 08:03 . 2012-11-01 05:34 2004480 ----a-w- c:\windows\system32\msxml6.dll
      2012-11-01 08:03 . 2012-11-01 05:34 1881600 ----a-w- c:\windows\system32\msxml3.dll
      2012-11-01 08:03 . 2012-11-01 05:34 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll
      2012-11-01 08:03 . 2012-11-01 05:34 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
      2012-11-01 08:03 . 2012-11-01 05:34 2048 ----a-w- c:\windows\system32\msxml3r.dll
      2012-11-01 08:03 . 2012-11-01 05:34 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
      2012-11-01 07:53 . 2012-11-01 05:34 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
      2012-11-01 07:53 . 2012-11-01 05:34 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
      2012-11-01 07:53 . 2012-11-01 05:34 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
      2012-11-01 07:52 . 2012-11-01 05:34 14172672 ----a-w- c:\windows\system32\shell32.dll
      2012-11-01 07:51 . 2012-11-01 05:34 424448 ----a-w- c:\windows\system32\KernelBase.dll
      2012-11-01 07:51 . 2012-11-01 05:34 1162240 ----a-w- c:\windows\system32\kernel32.dll
      2012-11-01 07:51 . 2012-11-01 05:34 338432 ----a-w- c:\windows\system32\conhost.exe
      2012-11-01 07:51 . 2012-11-01 05:34 215040 ----a-w- c:\windows\system32\winsrv.dll
      2012-11-01 07:51 . 2012-11-01 05:34 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
      2012-11-01 07:51 . 2012-11-01 05:34 243200 ----a-w- c:\windows\system32\wow64.dll
      2012-11-01 07:51 . 2012-11-01 05:34 44032 ----a-w- c:\windows\apppatch\acwow64.dll
      2012-11-01 07:51 . 2012-11-01 05:34 25600 ----a-w- c:\windows\SysWow64\setup16.exe
      2012-11-01 07:51 . 2012-11-01 05:34 362496 ----a-w- c:\windows\system32\wow64win.dll
      2012-11-01 07:51 . 2012-11-01 05:34 16384 ----a-w- c:\windows\system32\ntvdm64.dll
      2012-11-01 07:51 . 2012-11-01 05:34 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
      2012-11-01 07:51 . 2012-11-01 05:34 13312 ----a-w- c:\windows\system32\wow64cpu.dll
      2012-11-01 07:51 . 2012-11-01 05:34 5120 ----a-w- c:\windows\SysWow64\wow32.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 7680 ----a-w- c:\windows\SysWow64\instnm.exe
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
      2012-11-01 07:51 . 2012-11-01 05:34 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
      "DAEMON Tools Pro Agent"="d:\daemon tools pro\DTAgent.exe" [2012-10-23 3108480]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-11-06 3143800]
      "LogMeIn Hamachi Ui"="d:\hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableLUA"= 0 (0x0)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
      BootExecute REG_MULTI_SZ \0
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
      "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
      "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
      .
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-11-26 160944]
      R2 wntpport;wntpport; [x]
      R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2011-07-29 16776]
      R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2011-07-29 9096]
      R3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [x]
      R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [x]
      R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [x]
      R3 PTSimHid;PenTablet Simulated HID MiniDriver;c:\windows\system32\DRIVERS\PTSimHid.sys [2009-06-18 17064]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
      R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
      R3 SydexFDD;Sydex Diskette Driver;c:\windows\SysWOW64\Drivers\sydexfdd.sys [2011-01-18 13359]
      R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
      R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
      R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-01-13 1255736]
      S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-10-15 63328]
      S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-09-21 225120]
      S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-10-05 111456]
      S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-09-14 40800]
      S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-10-22 154464]
      S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-10-02 185696]
      S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-09-21 200032]
      S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-04 283200]
      S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-06 5814392]
      S2 avgwd;WatchDog de AVG;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
      S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;d:\hamachi\hamachi-2.exe [2012-12-10 2465712]
      S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-09-23 641832]
      S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-12-01 382824]
      S3 PTSimBus;PenTablet Bus Enumerator;c:\windows\system32\DRIVERS\PTSimBus.sys [2009-06-18 27304]
      S3 RTL8167;Controlador NT de Realtek 8167;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
      S3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys [2010-07-01 38992]
      .
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-12-11 c:\windows\Tasks\GlaryInitialize.job
      - c:\program files (x86)\Glary Utilities\initialize.exe [2012-12-11 17:40]
      .
      2012-12-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-798180238-1948416329-3047070514-1000Core.job
      - c:\users\Carlos\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-13 03:56]
      .
      2012-12-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-798180238-1948416329-3047070514-1000UA.job
      - c:\users\Carlos\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-13 03:56]
      .
      2012-12-11 c:\windows\Tasks\RegClean Pro_DEFAULT.job
      - c:\program files (x86)\RegClean Pro\RegCleanPro.exe [2012-11-01 16:34]
      .
      2012-12-05 c:\windows\Tasks\RegClean Pro_UPDATES.job
      - c:\program files (x86)\RegClean Pro\RegCleanPro.exe [2012-11-01 16:34]
      .
      .
      --------- X64 Entries -----------
      .
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = www.google.com
      mStart Page = www.google.com
      mLocal Page = c:\windows\SysWOW64\blank.htm
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
      TCP: DhcpNameServer = 10.0.0.141
      FF - ProfilePath - c:\users\Carlos\AppData\Roaming\Mozilla\Firefox\Profiles\1o6bydgh.default\
      FF - prefs.js: browser.startup.homepage - hxxp://google.com
      FF - prefs.js: keyword.URL - hxxps://www.google.com/search?q=
      FF - prefs.js: browser.search.selectedEngine - Google
      FF - prefs.js: browser.search.defaulturl - www.Google.com
      FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
      FF - prefs.js: network.proxy.socks - 127.0.0.1
      FF - prefs.js: network.proxy.socks_port - 9050
      FF - prefs.js: network.proxy.type - 1
      FF - user.js: network.http.max-persistent-connections-per-server - 4
      FF - user.js: nglayout.initialpaint.delay - 600
      FF - user.js: content.notify.interval - 600000
      FF - user.js: content.max.tokenizing.time - 1800000
      FF - user.js: content.switch.threshold - 600000
      .
      - - - - ORPHANS REMOVED - - - -
      .
      BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
      AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
      AddRemove-Rainbow Sentinel Driver - c:\windows\SYSTEM32\RNBOSENT\SETUPX86.EXE
      .
      .
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*ð_]
      @Class="Shell"
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*ð_\OpenWithList]
      @Class="Shell"
      "a"="vlc.exe"
      "MRUList"="a"
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**ˆ]
      @Class="Shell"
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**ˆ\OpenWithList]
      @Class="Shell"
      "a"="vlc.exe"
      "MRUList"="a"
      .
      [HKEY_USERS\S-1-5-21-798180238-1948416329-3047070514-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
      @Allowed: (Read) (RestrictedCode)
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
      "Version"=hex:21,a2,ae,f4,83,ef,19,24,80,c3,1e,7c,65,12,f3,ec,2f,13,ef,3c,18,
      a4,e8,86,8e,35,0f,6d,51,e9,98,ee,de,81,d9,72,0f,b3,93,de,1a,15,f2,16,bf,4d,\
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10g_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10g_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.10"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker3"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
      @="{6EF568F4-D437-4466-AA63-A3645136D93E}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
      @="{6EF568F4-D437-4466-AA63-A3645136D93E}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker2"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
      @="{6EF568F4-D437-4466-AA63-A3645136D93E}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker4"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
      "Version"=hex:21,a2,ae,f4,83,ef,19,24,80,c3,1e,7c,65,12,f3,ec,2f,13,ef,3c,18,
      a4,e8,86,8e,35,0f,6d,51,e9,98,ee,de,81,d9,72,0f,b3,93,de,1a,15,f2,16,bf,4d,\
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      c:\windows\System32\Drivers\WTSRV.EXE
      d:\daemon tools pro\DTShellHlp.exe
      c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
      .
      **************************************************************************
      .
      Completion time: 2012-12-11 16:11:45 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-12-11 20:41
      ComboFix2.txt 2012-12-11 15:33
      .
      Pre-Run: 14.776.410.112 bytes libres
      Post-Run: 14.738.751.488 bytes libres
      .
      - - End Of File - - 91FBFD05583BEFE18174AB825C7B54A2

    6. #6
      Moderador Gral.
      Avatar de Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      54.839

      Re: uso del cpu al 100% con procedimientos basicos

      Hola

      Desinstalá CF de la siguiente manera:
      • Ir a Inicio > Ejecutar
      • Escribir lo siguiente: ComboFix /Uninstall como muestra la imagen debajo:

      • Esto activara el desinstalador de ComboFix abriendo su pantalla principal y luego de unos segundos veras ("ComboFix is uninstalled")



      Si No podes desinstalalrlo asì, Descargá OTC.exe en el escritorio.

      Lo ejecutás y presionás Cleanup para Desinstalar ComboFix y sus carpetas creadas.

      Eso reiniciará tu pc.



      Nos comentas como sigue Todo ahora



      Saludos

      `·.¸¸.·´´¯`··._.· ·.¸¸.·´´¯`··._.· No Desesperes.....Seguí Luchando `·.¸¸.·´´¯`··._.· ·.¸¸.·´´¯`··._.·

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de Carlos Ekmeiro
      Registrado
      dic 2012
      Mensajes
      4

      Re: uso del cpu al 100% con procedimientos basicos

      listo todo echo al pie de la letra, pero aun me lanza picos de 80% y se inicia con picos de hasta los 100% y va disminuyendo y no baja de los 70% no con todos los programas si no con el antes mencionado que siendo algo tan bajo en gráficos y demás y teniendo lo suficiente para correrlo me lance esos picos tan altos, supongo que problema de virus ya no se trata, sera el mismo juego, intentare borrarlo he instalar otro, agradezco toda su ayuda y la pronta respuesta a mi problema que a pesar de todo acelero un poco mas mi pc, altamente agradecido

    8. #8
      Moderador Gral.
      Avatar de Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      54.839

      Re: uso del cpu al 100% con procedimientos basicos

      Por cualquier otro problema, no dudes en volver a postear


      Tema Solucionado


      Si deseas REABRIR ESTE TEMA, presiona y Tu consulta serà atendida



      Te dejo saludos.



      Como recomendación final, te invitamos a seguirnos en nuestros canales de difusión: Blog, Twitter, Facebook, vía E-Mail, para estar al tanto de los nuevos malwares y como prevenirlos.

      `·.¸¸.·´´¯`··._.· ·.¸¸.·´´¯`··._.· No Desesperes.....Seguí Luchando `·.¸¸.·´´¯`··._.· ·.¸¸.·´´¯`··._.·

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.