Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Pc Check First OTl Log

Started by Guille2007 , Jul 22 2011 10:42 PM

  • Please log in to reply

#1
Guille2007
Posted 22 July 2011 - 10:42 PM

Guille2007

    New Member

  • Member
  • Pip
  • 1 posts
OTL logfile created on: 23/07/2011 1:29:14 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Administrador.COMP\Mis documentos\Descargas
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000C0A | Country: España | Language: ESN | Date Format: dd/MM/yyyy

895,23 Mb Total Physical Memory | 211,67 Mb Available Physical Memory | 23,64% Memory free
1,29 Gb Paging File | 0,70 Gb Available in Paging File | 54,44% Paging File free
Paging file location(s): C:\pagefile.sys 500 1500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
Drive C: | 55,72 Gb Total Space | 47,38 Gb Free Space | 85,03% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 88,19 Gb Free Space | 90,30% Space Free | Partition Type: NTFS
Drive E: | 695,36 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: COMP | User Name: Administrador | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Administrador.COMP\Mis documentos\Descargas\OTL.exe (OldTimer Tools)
PRC - C:\Archivos de programa\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Archivos de programa\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Archivos de programa\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Archivos de programa\AVG\AVG10\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Archivos de programa\AVG\AVG10\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Archivos de programa\AVG\AVG10\avgemcx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Archivos de programa\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Archivos de programa\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe ()
PRC - C:\Archivos de programa\AVG\AVG10\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Archivos de programa\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Archivos de programa\Sygate\SPF\Smc.exe (Sygate Technologies, Inc.)


========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Administrador.COMP\Mis documentos\Descargas\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\SSSensor.dll (Sygate Technologies, Inc.)


========== Win32 Services (SafeList) ==========

SRV - (HidServ) -- File not found
SRV - (MBAMService) -- C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (AVG Security Toolbar Service) -- C:\Archivos de programa\AVG\AVG10\Toolbar\ToolbarBroker.exe ()
SRV - (AVGIDSAgent) -- C:\Archivos de programa\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
SRV - (avgwd) -- C:\Archivos de programa\AVG\AVG10\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (SmcService) -- C:\Archivos de programa\Sygate\SPF\Smc.exe (Sygate Technologies, Inc.)


========== Driver Services (SafeList) ==========

DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (AVGIDSDriver) -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys (AVG Technologies CZ, s.r.o. )
DRV - (Avgtdix) -- C:\WINDOWS\system32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgrkx86) -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgmfx86) -- C:\WINDOWS\system32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (AVGIDSEH) -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys (AVG Technologies CZ, s.r.o. )
DRV - (AVGIDSShim) -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys (AVG Technologies CZ, s.r.o. )
DRV - (AVGIDSFilter) -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys (AVG Technologies CZ, s.r.o. )
DRV - (Avgldx86) -- C:\WINDOWS\system32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Revoflt) -- C:\WINDOWS\system32\drivers\revoflt.sys (VS Revo Group)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
DRV - (nvgts) -- C:\WINDOWS\system32\DRIVERS\nvgts.sys (NVIDIA Corporation)
DRV - (wg6n) -- C:\WINDOWS\SYSTEM32\Drivers\wg6n.sys (Sygate Technologies, Inc.)
DRV - (wg5n) -- C:\WINDOWS\SYSTEM32\Drivers\wg5n.sys (Sygate Technologies, Inc.)
DRV - (wg4n) -- C:\WINDOWS\SYSTEM32\Drivers\wg4n.sys (Sygate Technologies, Inc.)
DRV - (wg3n) -- C:\WINDOWS\SYSTEM32\Drivers\wg3n.sys (Sygate Technologies, Inc.)
DRV - (wpsdrvnt) -- C:\WINDOWS\system32\drivers\wpsdrvnt.sys (Sygate Technologies, Inc.)
DRV - (Teefer) -- C:\WINDOWS\SYSTEM32\Drivers\Teefer.sys (Sygate Technologies, Inc.)
DRV - (DILUSBCamera) -- C:\WINDOWS\system32\drivers\stream18.sys (Sound Vision Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search, =


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Archivos de programa\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Archivos de programa\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.ar

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.ar

IE - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.ar
IE - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Internet Explorer\Search, =
IE - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.openintab: true
FF - prefs.js..browser.search.update: false
FF - prefs.js..network.proxy.type: 2

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Archivos de programa\Google\Picasa3\npPicasa3.dll (Google, Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Archivos de programa\AVG\AVG10\Firefox4\ [2011/07/21 22:07:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Components: C:\Archivos de programa\Mozilla Firefox\components [2011/07/22 13:19:16 | 000,000,000 | ---D | M]

[2011/07/22 13:19:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Mozilla\Extensions
[2011/07/22 20:59:36 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Mozilla\Firefox\Profiles\44jcrezy.default\extensions
[2011/07/22 13:19:16 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
File not found (No name found) --
[2011/07/21 22:07:07 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\ARCHIVOS DE PROGRAMA\AVG\AVG10\FIREFOX4
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRADOR.COMP\DATOS DE PROGRAMA\MOZILLA\FIREFOX\PROFILES\44JCREZY.DEFAULT\EXTENSIONS\{3D7EB24F-2740-49DF-8937-200B1CC08F8A}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRADOR.COMP\DATOS DE PROGRAMA\MOZILLA\FIREFOX\PROFILES\44JCREZY.DEFAULT\EXTENSIONS\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.XPI
[2011/07/08 04:33:44 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Archivos de programa\mozilla firefox\components\browsercomps.dll
[2010/01/01 05:00:00 | 000,002,252 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\bing.xml
[2010/01/01 05:00:00 | 000,003,996 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\drae.xml
[2010/01/01 05:00:00 | 000,001,143 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\eBay-es.xml
[2010/01/01 05:00:00 | 000,001,178 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\wikipedia-es.xml
[2010/01/01 05:00:00 | 000,001,102 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\yahoo-es.xml

O1 HOSTS File: ([2011/07/23 01:09:48 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Archivos de programa\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Windows Live Aplicación auxiliar de inicio de sesión) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Archivos de programa\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Archivos de programa\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Archivos de programa\AVG\AVG10\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG_TRAY] C:\Archivos de programa\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SmcService] C:\Archivos de programa\Sygate\SPF\Smc.exe (Sygate Technologies, Inc.)
O4 - Startup: C:\Documents and Settings\Administrador\Menú Inicio\Programas\Inicio\StartupFaster [2011/07/08 23:12:25 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\StartupFaster [2011/07/08 23:12:25 | 000,000,000 | -H-D | M]
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MemCheckBoxInRunDlg = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWelcomeScreen = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutoUpdate = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MaxRecentDocs = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetConnectDisconnect = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutoUpdate = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MaxRecentDocs = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetConnectDisconnect = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetIcon = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutoUpdate = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MaxRecentDocs = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetConnectDisconnect = 0
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetIcon = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutoUpdate = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MaxRecentDocs = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetConnectDisconnect = 0
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutoUpdate = 1
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MaxRecentDocs = 0
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetConnectDisconnect = 0
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1311379336031 (WUWebControl Class)
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Archivos de programa\AVG\AVG10\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Archivos de programa\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Mi página de inicio actual) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Felicidad.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Felicidad.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/06/21 08:13:01 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011/07/08 19:19:41 | 000,000,000 | ---D | M] - C:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011/07/20 17:29:38 | 000,000,000 | ---D | M] - D:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2008/04/16 19:56:25 | 000,000,055 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\ARCHIV~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Archivos de programa\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\ARCHIV~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Archivos de programa\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (pgdfgsvc C 1) - C:\WINDOWS\System32\pgdfgsvc.exe (Sysinternals - www.sysinternals.com)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/07/23 01:13:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011/07/23 01:04:53 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011/07/23 01:03:05 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011/07/23 01:03:05 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011/07/23 01:03:05 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011/07/23 01:03:05 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011/07/23 01:02:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/07/23 01:02:49 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/07/23 01:02:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrador.COMP\Mis documentos\Mis vídeos
[2011/07/23 01:02:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrador.COMP\Menú Inicio\Programas\Herramientas administrativas
[2011/07/23 00:56:44 | 004,153,604 | R--- | C] (Swearware) -- C:\Documents and Settings\Administrador.COMP\Escritorio\ComboFix.exe
[2011/07/23 00:42:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Picasa 3
[2011/07/23 00:42:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Configuración local\Datos de programa\Google
[2011/07/22 22:09:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Menú Inicio\Programas\Agfa ePhoto CL18 Digital Camera
[2011/07/22 22:09:24 | 000,070,708 | ---- | C] (Sound Vision Inc.) -- C:\WINDOWS\System32\drivers\stream18.sys
[2011/07/22 22:09:21 | 000,061,440 | ---- | C] (Sound Vision) -- C:\WINDOWS\System32\epcomlib.dll
[2011/07/22 22:09:07 | 000,000,000 | ---D | C] -- C:\My Pictures
[2011/07/22 21:07:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\Windows Genuine Advantage
[2011/07/22 20:59:28 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrador.COMP\Recent
[2011/07/22 20:58:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\TEMP
[2011/07/22 17:27:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documentos\microsoft
[2011/07/22 17:15:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Tracing
[2011/07/22 13:58:35 | 000,014,568 | ---- | C] (Sygate Technologies, Inc.) -- C:\WINDOWS\System32\drivers\wg6n.sys
[2011/07/22 13:58:34 | 000,014,568 | ---- | C] (Sygate Technologies, Inc.) -- C:\WINDOWS\System32\drivers\wg5n.sys
[2011/07/22 13:58:34 | 000,014,568 | ---- | C] (Sygate Technologies, Inc.) -- C:\WINDOWS\System32\drivers\wg4n.sys
[2011/07/22 13:58:33 | 000,060,496 | ---- | C] (Sygate Technologies, Inc.) -- C:\WINDOWS\System32\drivers\Teefer.sys
[2011/07/22 13:58:33 | 000,014,568 | ---- | C] (Sygate Technologies, Inc.) -- C:\WINDOWS\System32\drivers\wg3n.sys
[2011/07/22 13:58:31 | 000,021,075 | ---- | C] (Sygate Technologies, Inc.) -- C:\WINDOWS\System32\drivers\wpsdrvnt.sys
[2011/07/22 13:58:20 | 000,083,096 | ---- | C] (Sygate Technologies, Inc.) -- C:\WINDOWS\System32\SSSensor.dll
[2011/07/22 13:58:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Sygate Personal Firewall
[2011/07/22 13:58:14 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Sygate
[2011/07/22 13:57:56 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\Wise Installation Wizard
[2011/07/22 13:33:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Mis documentos\Descargas
[2011/07/22 13:19:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Mozilla
[2011/07/22 13:19:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Configuración local\Datos de programa\Mozilla
[2011/07/22 13:19:15 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Mozilla Firefox
[2011/07/22 12:53:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Winamp
[2011/07/22 12:53:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\vlc
[2011/07/22 12:51:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\URSoft
[2011/07/21 23:30:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Macromedia
[2011/07/21 23:30:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Adobe
[2011/07/21 23:29:42 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Microsoft
[2011/07/21 23:29:22 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Windows Live SkyDrive
[2011/07/21 23:29:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Windows Live
[2011/07/21 23:28:51 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Windows Live
[2011/07/21 23:24:57 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\Windows Live
[2011/07/21 23:16:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Configuración local\Datos de programa\VS Revo Group
[2011/07/21 23:16:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Revo Uninstaller Pro
[2011/07/21 23:16:33 | 000,027,064 | ---- | C] (VS Revo Group) -- C:\WINDOWS\System32\drivers\revoflt.sys
[2011/07/21 22:55:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Configuración local\Datos de programa\Opera
[2011/07/21 22:40:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Opera
[2011/07/21 22:40:02 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Opera
[2011/07/21 22:37:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Configuración local\Datos de programa\Moonchild Productions
[2011/07/21 22:35:35 | 000,025,992 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS\System32\pgdfgsvc.exe
[2011/07/21 22:23:58 | 000,000,000 | ---D | C] -- C:\$AVG
[2011/07/21 22:22:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Malwarebytes
[2011/07/21 22:21:47 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/07/21 22:21:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Malwarebytes' Anti-Malware
[2011/07/21 22:21:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\Malwarebytes
[2011/07/21 22:21:43 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/07/21 22:21:43 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Malwarebytes' Anti-Malware
[2011/07/21 22:08:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\AVG10
[2011/07/21 22:07:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\Common Files
[2011/07/21 22:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\AVG Security Toolbar
[2011/07/21 22:07:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\AVG 2011
[2011/07/21 22:06:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\AVG10
[2011/07/21 22:06:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2011/07/21 22:05:25 | 000,000,000 | ---D | C] -- C:\Archivos de programa\AVG
[2011/07/21 22:04:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\MFAData
[2011/07/21 21:58:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\WinRAR
[2011/07/21 21:57:15 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Foxit Software
[2011/07/21 21:57:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Foxit Reader
[2011/07/21 21:56:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\WinRAR
[2011/07/21 21:56:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Menú Inicio\Programas\WinRAR
[2011/07/21 21:51:19 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe
[2011/07/21 21:51:18 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe
[2011/07/21 21:51:17 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2011/07/21 21:51:17 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys
[2011/07/21 21:24:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrador.COMP\Mis documentos\Mi música
[2011/07/21 21:24:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrador.COMP\Mis documentos\Mis imágenes
[2011/07/21 21:24:04 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Microsoft
[2011/07/21 21:24:04 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrador.COMP\Cookies
[2011/07/21 21:24:04 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrador.COMP\SendTo
[2011/07/21 21:24:04 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrador.COMP\Datos de programa
[2011/07/21 21:24:04 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrador.COMP\Mis documentos
[2011/07/21 21:24:04 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrador.COMP\Menú Inicio
[2011/07/21 21:24:04 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrador.COMP\Menú Inicio\Programas\Inicio
[2011/07/21 21:24:04 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrador.COMP\Favoritos
[2011/07/21 21:24:04 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrador.COMP\Menú Inicio\Programas\Accesorios
[2011/07/21 21:24:04 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrador.COMP\Plantillas
[2011/07/21 21:24:04 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrador.COMP\Impresoras
[2011/07/21 21:24:04 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrador.COMP\Entorno de red
[2011/07/21 21:24:04 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrador.COMP\Configuración local
[2011/07/21 21:24:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Configuración local\Datos de programa\Microsoft
[2011/07/21 21:24:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrador.COMP\Escritorio
[2011/07/21 21:20:49 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2011/07/21 21:20:49 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2011/07/21 21:20:49 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2011/07/21 21:14:26 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2011/07/21 20:55:52 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users.WINDOWS\DRM
[2011/07/21 20:54:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documentos\Mis imágenes
[2011/07/21 20:53:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Juegos
[2011/07/21 20:53:30 | 000,000,000 | ---D | C] -- C:\Archivos de programa\ComPlus Applications
[2011/07/21 20:53:22 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Herramientas administrativas
[2011/07/21 20:53:12 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documentos\Mi música
[2011/07/21 20:52:30 | 000,000,000 | ---D | C] -- C:\Archivos de programa\MSN
[2011/07/21 20:52:29 | 000,284,160 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2011/07/21 20:52:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documentos\Mis vídeos
[2011/07/21 20:51:48 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Accesorios
[2011/07/21 19:52:31 | 000,000,000 | ---D | C] -- C:\Archivos de programa\MSN Messenger
[2011/07/21 17:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011/07/21 17:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2011/07/21 16:48:34 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\ODBC
[2011/07/21 16:47:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio
[2011/07/21 16:47:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Inicio
[2011/07/21 16:47:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documentos
[2011/07/21 16:47:55 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Plantillas
[2011/07/21 16:47:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Favoritos
[2011/07/21 16:47:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Escritorio
[2011/07/21 16:45:58 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\Microsoft
[2011/07/21 16:45:58 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa
[2011/07/20 17:34:06 | 000,000,000 | ---D | C] -- C:\!KillBox
[2011/07/09 15:05:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2011/07/08 19:19:41 | 000,000,000 | ---D | C] -- C:\Autorun.inf
[2011/07/08 18:57:02 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Argente Utilities
[2011/07/08 18:27:51 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Microsoft Windows Script
[2011/07/08 18:06:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011/07/08 17:20:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011/07/06 12:35:31 | 000,000,000 | ---D | C] -- C:\Archivos de programa\NVIDIA Corporation
[2011/07/04 15:40:15 | 000,000,000 | ---D | C] -- C:\Archivos de programa\K-Lite Codec Pack
[2011/07/03 16:55:57 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Xenocode
[2011/07/01 10:26:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011/06/29 10:12:11 | 000,000,000 | ---D | C] -- C:\Archivos de programa\MSConfig CleanUp
[2011/06/27 12:26:24 | 000,000,000 | ---D | C] -- C:\Archivos de programa\xerox
[2011/06/27 12:26:23 | 000,000,000 | ---D | C] -- C:\Archivos de programa\microsoft frontpage
[2011/06/27 12:08:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/06/27 11:51:20 | 000,000,000 | ---D | C] -- C:\Archivos de programa\XP Smoker
[2011/06/26 14:20:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\ESET
[2011/06/26 04:14:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2011/06/26 04:14:37 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2011/06/26 04:14:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2011/06/26 04:14:16 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$968930Uinstall_KB968930$
[2011/06/26 03:37:46 | 000,000,000 | ---D | C] -- C:\Archivos de programa\IObit
[2011/06/25 06:07:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2011/06/25 04:33:59 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Trend Micro
[2011/06/24 02:28:39 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Media Player Classic - Home Cinema
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/07/23 01:21:59 | 000,362,204 | ---- | M] () -- C:\WINDOWS\System32\perfh00A.dat
[2011/07/23 01:21:59 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/07/23 01:21:59 | 000,051,068 | ---- | M] () -- C:\WINDOWS\System32\perfc00A.dat
[2011/07/23 01:21:59 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/07/23 01:18:09 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/07/23 01:18:05 | 000,236,466 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2011/07/23 01:16:11 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/07/23 01:15:02 | 000,000,256 | RHS- | M] () -- C:\boot.ini
[2011/07/23 01:09:48 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/07/23 00:58:08 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2011/07/23 00:56:51 | 004,153,604 | R--- | M] (Swearware) -- C:\Documents and Settings\Administrador.COMP\Escritorio\ComboFix.exe
[2011/07/23 00:40:23 | 000,003,584 | ---- | M] () -- C:\Documents and Settings\Administrador.COMP\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/07/22 23:07:10 | 000,085,721 | ---- | M] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\img3743877.jpg
[2011/07/22 22:11:39 | 000,004,168 | ---- | M] () -- C:\INFCACHE.1
[2011/07/22 22:04:06 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/07/22 21:56:51 | 118,831,104 | ---- | M] () -- C:\Documents and Settings\Administrador.COMP\Mis documentos\Gala_-_AS_21-07-11.avi
[2011/07/22 20:36:45 | 000,013,204 | ---- | M] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\29316_100593406652988_100001069863387_2422_2269509_n.jpg
[2011/07/22 20:32:54 | 000,072,536 | ---- | M] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\180697_194152460612004_100000517550402_692628_5898605_n.jpg
[2011/07/22 13:19:20 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Escritorio\Mozilla Firefox.lnk
[2011/07/22 13:15:46 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\Acceso directo a Downloads.lnk
[2011/07/22 12:53:30 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\Acceso directo a winamp.lnk
[2011/07/22 11:40:27 | 125,025,595 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011/07/22 11:31:52 | 000,155,568 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/07/21 23:42:44 | 000,001,894 | ---- | M] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\Windows Live Messenger .lnk
[2011/07/21 22:55:19 | 000,001,555 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Escritorio\Opera.lnk
[2011/07/21 22:37:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2011/07/21 22:35:35 | 000,025,992 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS\System32\pgdfgsvc.exe
[2011/07/21 22:09:56 | 000,000,554 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Escritorio\Adsl.lnk
[2011/07/21 21:53:34 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2011/07/21 21:53:34 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2011/07/21 21:23:35 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2011/07/21 21:21:36 | 000,001,243 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011/07/21 20:56:59 | 000,002,909 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/07/21 20:56:50 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011/07/21 20:56:50 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/07/21 20:56:50 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/07/21 20:56:37 | 000,004,205 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2011/07/21 20:53:39 | 000,021,900 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/07/21 16:48:39 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/06/26 03:45:56 | 000,256,000 | ---- | M] () -- C:\WINDOWS\PEV.exe
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/23 01:04:57 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2011/07/23 01:04:55 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2011/07/23 01:03:05 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011/07/23 01:03:05 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011/07/23 01:03:05 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011/07/23 01:03:05 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011/07/23 01:03:05 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011/07/22 22:59:01 | 000,085,721 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\img3743877.jpg
[2011/07/22 22:11:39 | 000,004,168 | ---- | C] () -- C:\INFCACHE.1
[2011/07/22 21:44:15 | 118,831,104 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Mis documentos\Gala_-_AS_21-07-11.avi
[2011/07/22 21:06:54 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011/07/22 20:36:44 | 000,013,204 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\29316_100593406652988_100001069863387_2422_2269509_n.jpg
[2011/07/22 20:32:52 | 000,072,536 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\180697_194152460612004_100000517550402_692628_5898605_n.jpg
[2011/07/22 13:19:20 | 000,000,785 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Mozilla Firefox.lnk
[2011/07/22 13:19:20 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Escritorio\Mozilla Firefox.lnk
[2011/07/22 13:15:46 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\Acceso directo a Downloads.lnk
[2011/07/22 12:53:30 | 000,000,703 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\Acceso directo a winamp.lnk
[2011/07/22 11:40:27 | 125,025,595 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011/07/21 23:42:44 | 000,001,894 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\Windows Live Messenger .lnk
[2011/07/21 22:55:19 | 000,001,561 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Opera.lnk
[2011/07/21 22:55:18 | 000,001,555 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Escritorio\Opera.lnk
[2011/07/21 22:44:36 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/07/21 22:37:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011/07/21 22:09:56 | 000,000,554 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Escritorio\Adsl.lnk
[2011/07/21 21:53:34 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2011/07/21 21:53:34 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2011/07/21 21:45:24 | 000,019,495 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2011/07/21 21:44:58 | 000,006,136 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2011/07/21 21:44:57 | 000,007,090 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu
[2011/07/21 21:24:28 | 000,000,773 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Menú Inicio\Programas\Outlook Express.lnk
[2011/07/21 21:24:26 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Menú Inicio\Programas\Internet Explorer.lnk
[2011/07/21 21:24:04 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Menú Inicio\Programas\Asistencia remota.lnk
[2011/07/21 21:24:04 | 000,000,827 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Menú Inicio\Programas\Reproductor de Windows Media.lnk
[2011/07/21 21:23:35 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2011/07/21 21:21:32 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/07/21 21:20:40 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2011/07/21 21:15:05 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2011/07/21 21:15:03 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2011/07/21 21:14:53 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2011/07/21 21:14:48 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2011/07/21 21:14:43 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2011/07/21 21:14:29 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2011/07/21 20:56:59 | 000,002,909 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/07/21 20:56:50 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/07/21 20:56:50 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/07/21 20:56:48 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2011/07/21 20:55:25 | 000,000,835 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menú Inicio\Programas\Windows Movie Maker.lnk
[2011/07/21 20:55:13 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2011/07/21 20:54:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2011/07/21 20:54:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2011/07/21 20:54:53 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2011/07/21 20:54:26 | 000,381,440 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2011/07/21 20:53:39 | 000,021,900 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/07/21 20:52:48 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe.bmp
[2011/07/21 20:52:48 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Azteca.bmp
[2011/07/21 20:52:47 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Pompas.bmp
[2011/07/21 20:52:47 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Viento.bmp
[2011/07/21 20:52:47 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Abanicos.bmp
[2011/07/21 20:52:47 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Roca verde.bmp
[2011/07/21 20:52:47 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendro.bmp
[2011/07/21 20:52:47 | 000,017,336 | ---- | C] () -- C:\WINDOWS\A pescar.bmp
[2011/07/21 20:52:47 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Grano de café.bmp
[2011/07/21 20:52:47 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Plumas.bmp
[2011/07/21 20:52:47 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Lazo azul 16.bmp
[2011/07/21 20:52:45 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2011/07/21 20:52:45 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2011/07/21 20:52:44 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2011/07/21 20:52:39 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2011/07/21 17:43:47 | 000,001,243 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2011/07/21 16:48:39 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2011/07/21 16:48:34 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/07/21 16:48:07 | 000,001,936 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2011/07/21 16:46:16 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2011/07/21 16:46:16 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2011/07/21 16:46:16 | 000,105,926 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2011/07/21 16:46:16 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2011/07/21 16:46:16 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2011/07/21 16:46:16 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2011/07/21 16:46:16 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2011/07/21 16:46:16 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2011/07/21 16:46:16 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2011/07/21 16:46:16 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2011/07/21 16:46:16 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2011/07/21 16:46:16 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2011/07/21 16:46:16 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2011/07/21 16:46:15 | 002,036,803 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2011/07/21 16:46:15 | 001,246,421 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2011/07/21 16:46:15 | 000,810,264 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2011/07/21 16:46:15 | 000,635,470 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2011/07/21 16:45:31 | 000,155,568 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/07/21 14:59:26 | 001,344,576 | ---- | C] () -- C:\Documents and Settings\Administrador.COMP\Escritorio\bookmarks.html
[2009/07/08 10:58:18 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009/07/08 10:58:18 | 001,657,376 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009/07/08 10:58:18 | 001,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009/07/08 10:58:18 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009/07/08 10:58:18 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009/07/08 10:58:18 | 000,449,056 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009/07/08 10:58:18 | 000,436,768 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2009/07/08 09:07:00 | 001,580,550 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2008/04/16 21:05:11 | 000,000,166 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2008/04/14 05:59:59 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008/04/14 05:59:59 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008/04/14 05:59:59 | 000,362,204 | ---- | C] () -- C:\WINDOWS\System32\perfh00A.dat
[2008/04/14 05:59:59 | 000,317,534 | ---- | C] () -- C:\WINDOWS\System32\perfi00A.dat
[2008/04/14 05:59:59 | 000,311,604 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008/04/14 05:59:59 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008/04/14 05:59:59 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008/04/14 05:59:59 | 000,051,068 | ---- | C] () -- C:\WINDOWS\System32\perfc00A.dat
[2008/04/14 05:59:59 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008/04/14 05:59:59 | 000,039,992 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008/04/14 05:59:59 | 000,036,284 | ---- | C] () -- C:\WINDOWS\System32\perfd00A.dat
[2008/04/14 05:59:59 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008/04/14 05:59:59 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008/04/14 05:59:59 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008/04/14 05:59:59 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008/04/14 05:59:59 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004/10/15 18:31:56 | 000,218,264 | ---- | C] () -- C:\WINDOWS\System32\SetAid.dll

========== LOP Check ==========

[2011/07/21 19:46:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Cleaner Kit
[2011/07/09 15:12:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\driveridentifier
[2011/06/21 10:21:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\eMule
[2011/06/26 01:55:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\ESET
[2011/07/06 13:39:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\IObit
[2011/07/20 04:18:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\uTorrent
[2011/07/04 12:23:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador\Datos de programa\Vso
[2011/07/21 22:08:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\AVG10
[2011/07/21 22:40:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\Opera
[2011/07/22 12:51:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrador.COMP\Datos de programa\URSoft
[2011/07/22 21:01:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\AVG Security Toolbar
[2011/07/21 22:07:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\AVG10
[2011/07/21 22:07:26 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\Common Files
[2011/07/21 22:08:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\MFAData
[2011/07/22 20:59:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Datos de programa\TEMP
[2011/06/22 14:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Datos de programa\iolo

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users.WINDOWS\Datos de programa\TEMP:5C321E34

< End of report >


OTL Extras logfile created on: 23/07/2011 1:29:14 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Administrador.COMP\Mis documentos\Descargas
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000C0A | Country: España | Language: ESN | Date Format: dd/MM/yyyy

895,23 Mb Total Physical Memory | 211,67 Mb Available Physical Memory | 23,64% Memory free
1,29 Gb Paging File | 0,70 Gb Available in Paging File | 54,44% Paging File free
Paging file location(s): C:\pagefile.sys 500 1500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
Drive C: | 55,72 Gb Total Space | 47,38 Gb Free Space | 85,03% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 88,19 Gb Free Space | 90,30% Space Free | Partition Type: NTFS
Drive E: | 695,36 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: COMP | User Name: Administrador | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = Opera.HTML] -- C:\Archivos de programa\Opera\Opera.exe (Opera Software)
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1343024091-2111687655-1417001333-500\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Archivos de programa\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
https [open] -- "C:\Archivos de programa\Opera\Opera.exe" "%1" (Opera Software)
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Command] -- cmd.exe /k cd %1 (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Archivos de programa\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Archivos de programa\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Archivos de programa\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"FirewallDisableNotify" = 0
"FirewallOverride" = 1
"AntiVirusOverride" = 1
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Archivos de programa\Opera\opera.exe" = C:\Archivos de programa\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1E1300BC-6DBA-476B-8CCF-4AA81ED4DF6A}" = AVG 2011
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Herramienta de carga de Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2B83A043-BA8C-4164-98AA-29529D0BE756}" = Windows Live Essentials
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{350C9C0A-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.5.3
"{7593234B-2AEB-4FC9-B02D-C9B30D86084C}" = Windows Live Asistente para el inicio de sesión
"{80490945-CE48-45CF-9CCA-CA0EF44D9FE4}" = AVG 2011
"{8924FD04-AFF1-4387-B08B-6A979485F2BD}" = Windows Live Call
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{C4156B59-DD7E-40DF-AF08-E568A27A6409}" = Windows Live Messenger
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F34D9A5F-484A-4E31-A9D3-908CB265B289}" = Sygate Personal Firewall
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agfa ePhoto CL18 Digital Camera Driver" = Agfa ePhoto CL18 Digital Camera Driver
"AVG" = AVG 2011
"CCleaner" = CCleaner
"Foxit Reader" = Foxit Reader
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware versión 1.51.1.1800
"Mozilla Firefox 5.0.1 (x86 es-ES)" = Mozilla Firefox 5.0.1 (x86 es-ES)
"NVIDIA Drivers" = NVIDIA Drivers
"Opera 11.50.1074" = Opera 11.50
"Picasa 3" = Picasa 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = Compresor WinRAR

========== Last 10 Event Log Errors ==========

[ System Events ]
Error - 23/07/2011 0:17:57 | Computer Name = COMP | Source = Service Control Manager | ID = 7026
Description = El controlador de inicialización siguiente no se cargó correctamente:
i8042prt

Error - 23/07/2011 0:18:00 | Computer Name = COMP | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
SENS con argumentos "" para ejecutar el servidor: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 23/07/2011 0:18:00 | Computer Name = COMP | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
SENS con argumentos "" para ejecutar el servidor: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 23/07/2011 0:18:00 | Computer Name = COMP | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
SENS con argumentos "" para ejecutar el servidor: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 23/07/2011 0:18:00 | Computer Name = COMP | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
SENS con argumentos "" para ejecutar el servidor: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 23/07/2011 0:18:00 | Computer Name = COMP | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
SENS con argumentos "" para ejecutar el servidor: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 23/07/2011 0:18:00 | Computer Name = COMP | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
SENS con argumentos "" para ejecutar el servidor: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 23/07/2011 0:18:00 | Computer Name = COMP | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
SENS con argumentos "" para ejecutar el servidor: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 23/07/2011 0:18:00 | Computer Name = COMP | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
SENS con argumentos "" para ejecutar el servidor: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 23/07/2011 0:18:23 | Computer Name = COMP | Source = DCOM | ID = 10005
Description = DCOM ha obtenido un error "%1058" al intentar iniciar el servicio
SENS con argumentos "" para ejecutar el servidor: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}


< End of report >
Thanks a lot.
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP