View Single Post
  #5  
Old June 22nd, 2013, 05:42 PM
rrodulfo rrodulfo is offline
Senior Member
 
Join Date: Sep 2006
O/S: Windows XP Pro
Location: Monterrey, Nuevo Leon, Mexico
Posts: 159
Cont. OTL.txt

[2013/06/08 12:03:27 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2013/06/08 12:03:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2013/06/08 12:03:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Datos de programa\Microsoft
[2013/06/08 12:03:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft
[2013/06/08 11:51:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2013/06/08 11:50:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Datos de programa\Microsoft
[2013/06/08 11:50:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft
[2013/06/08 11:50:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2013/06/08 11:50:35 | 000,000,000 | ---D | C] -- C:\Archivos de programa\MSBuild
[2013/06/08 11:50:33 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Reference Assemblies
[2013/06/08 11:45:06 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2013/06/08 11:44:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2013/06/08 11:44:49 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Microsoft.NET
[2013/06/08 11:44:39 | 000,150,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rgb9rast_2.dll
[2013/06/08 11:43:29 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2013/06/08 11:43:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache
[2013/06/08 11:43:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Microsoft Silverlight
[2013/06/08 11:42:59 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Microsoft Silverlight
[2013/06/08 11:41:32 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2013/06/08 11:41:04 | 000,000,000 | -H-D | C] -- C:\Archivos de programa\WindowsUpdate
[2013/06/08 11:40:59 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Servicios en línea
[2013/06/08 11:40:15 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/06/08 11:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2013/06/08 11:39:53 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2013/06/08 11:39:35 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2013/06/08 11:39:33 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2013/06/08 11:39:31 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\Services
[2013/06/08 11:39:20 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2013/06/08 11:39:20 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2013/06/08 11:39:17 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\MSSoap
[2013/06/08 11:39:14 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll.mui
[2013/06/08 11:39:13 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll.mui
[2013/06/08 11:39:13 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe.mui
[2013/06/08 11:39:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2013/06/08 11:39:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2013/06/08 11:38:56 | 000,329,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2013/06/08 11:38:55 | 000,195,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2013/06/08 11:38:55 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2013/06/08 11:38:54 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2013/06/08 11:38:54 | 000,175,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2013/06/08 11:38:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2013/06/08 11:38:53 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2013/06/08 11:38:53 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2013/06/08 11:38:52 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2013/06/08 11:38:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2013/06/08 11:38:47 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Movie Maker
[2013/06/08 11:37:48 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2013/06/08 11:37:47 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2013/06/08 11:37:47 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2013/06/08 11:37:47 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2013/06/08 11:37:41 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe
[2013/06/08 11:37:40 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2013/06/08 11:37:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2013/06/08 11:37:39 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2013/06/08 11:37:39 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2013/06/08 11:37:38 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2013/06/08 11:37:38 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2013/06/08 11:37:37 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2013/06/08 11:37:34 | 000,000,000 | ---D | C] -- C:\Archivos de programa\NetMeeting
[2013/06/08 11:37:33 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2013/06/08 11:37:32 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2013/06/08 11:37:30 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2013/06/08 11:37:27 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2013/06/08 11:37:27 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Outlook Express
[2013/06/08 11:37:25 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2013/06/08 11:37:25 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2013/06/08 11:37:25 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2013/06/08 11:37:25 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2013/06/08 11:37:05 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\System
[2013/06/08 11:37:03 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Internet Explorer
[2013/06/08 11:37:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Mis imágenes
[2013/06/08 11:36:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Juegos
[2013/06/08 11:36:15 | 000,000,000 | ---D | C] -- C:\Archivos de programa\ComPlus Applications
[2013/06/08 11:36:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Herramientas administrativas
[2013/06/08 11:36:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2013/06/08 11:35:58 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Windows Media Player
[2013/06/08 11:35:46 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Messenger
[2013/06/08 11:35:41 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pwrshplugin.dll
[2013/06/08 11:35:41 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PSCustomSetupUtil.exe
[2013/06/08 11:35:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2013/06/08 11:35:18 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncDMS.dll
[2013/06/08 11:35:18 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncNE.dll
[2013/06/08 11:35:18 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncCplExt.dll
[2013/06/08 11:35:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncRes.dll
[2013/06/08 11:35:17 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oeph.dll
[2013/06/08 11:35:17 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncPH.dll
[2013/06/08 11:35:17 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oephRes.dll
[2013/06/08 11:35:09 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Windows Desktop Search
[2013/06/08 11:35:06 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2013/06/08 11:35:05 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll
[2013/06/08 11:35:05 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rtffilt.dll
[2013/06/08 11:35:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlfilter.dll
[2013/06/08 11:35:03 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshsq.dll
[2013/06/08 11:35:03 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshooks.dll
[2013/06/08 11:35:01 | 001,576,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll
[2013/06/08 11:35:01 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscb.dll
[2013/06/08 11:35:00 | 001,480,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll
[2013/06/08 11:35:00 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\propdefs.dll
[2013/06/08 11:35:00 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msstrc.dll
[2013/06/08 11:34:59 | 000,351,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll
[2013/06/08 11:34:59 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll
[2013/06/08 11:34:59 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssprxy.dll
[2013/06/08 11:34:58 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssitlb.dll
[2013/06/08 11:34:58 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscntrs.dll
[2013/06/08 11:34:57 | 000,000,000 | ---D | C] -- C:\Archivos de programa\MSXML 4.0
[2013/06/08 11:34:48 | 000,000,000 | ---D | C] -- C:\Archivos de programa\MSN Gaming Zone
[2013/06/08 11:34:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2013/06/08 11:34:04 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2013/06/08 11:34:04 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2013/06/08 11:34:03 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2013/06/08 11:34:02 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2013/06/08 11:34:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2013/06/08 11:34:01 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2013/06/08 11:33:35 | 000,652,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2013/06/08 11:33:34 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2013/06/08 11:33:33 | 000,967,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2013/06/08 11:33:33 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2013/06/08 11:33:32 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2013/06/08 11:33:32 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2013/06/08 11:33:31 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2013/06/08 11:33:29 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2013/06/08 11:33:29 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2013/06/08 11:33:29 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2013/06/08 11:33:28 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2013/06/08 11:33:27 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2013/06/08 11:33:27 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2013/06/08 11:33:27 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2013/06/08 11:33:26 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2013/06/08 11:33:26 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2013/06/08 11:33:26 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2013/06/08 11:33:26 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2013/06/08 11:33:25 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2013/06/08 11:33:25 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2013/06/08 11:33:25 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2013/06/08 11:33:01 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2013/06/08 11:33:00 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2013/06/08 11:33:00 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2013/06/08 11:33:00 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2013/06/08 11:32:59 | 000,353,280 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2013/06/08 11:32:59 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Windows NT
[2013/06/08 11:32:58 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2013/06/08 11:32:58 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2013/06/08 11:32:58 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2013/06/08 11:32:54 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2013/06/08 11:32:54 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2013/06/08 11:32:54 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2013/06/08 11:32:53 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2013/06/08 11:32:52 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2013/06/08 11:32:52 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2013/06/08 11:32:51 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2013/06/08 11:32:50 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2013/06/08 11:32:50 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2013/06/08 11:32:50 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2013/06/08 11:32:50 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2013/06/08 11:32:49 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2013/06/08 11:32:48 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2013/06/08 11:32:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2013/06/08 11:32:47 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2013/06/08 11:32:47 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2013/06/08 11:32:47 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2013/06/08 11:32:47 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2013/06/08 11:32:44 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2013/06/08 11:32:44 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2013/06/08 11:32:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2013/06/08 11:32:44 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2013/06/08 11:32:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2013/06/08 11:32:43 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2013/06/08 11:32:43 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2013/06/08 11:32:42 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2013/06/08 11:32:42 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2013/06/08 11:32:42 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2013/06/08 11:32:40 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2013/06/08 11:32:40 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2013/06/08 11:32:24 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2013/06/08 11:32:23 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2013/06/08 11:32:23 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2013/06/08 11:32:22 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2013/06/08 11:31:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Accesorios
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/06/22 11:13:05 | 000,000,916 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/21 18:47:00 | 000,000,838 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/06/21 18:13:00 | 000,000,912 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/06/21 17:56:57 | 000,001,804 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\HijackThis.lnk
[2013/06/21 16:14:25 | 000,000,792 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts_tmp
[2013/06/21 15:51:09 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/06/21 15:46:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/06/20 17:24:46 | 000,001,883 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Google Chrome.lnk
[2013/06/20 11:35:00 | 000,162,224 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2013/06/20 11:34:59 | 000,149,936 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2013/06/20 11:34:59 | 000,149,936 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2013/06/20 11:34:59 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2013/06/20 11:34:58 | 000,477,616 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\npdeployJava1.dll
[2013/06/20 11:34:58 | 000,473,520 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2013/06/20 11:10:40 | 000,001,872 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Cotizador único.lnk
[2013/06/20 11:10:40 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Acceso directo a Papelera de reciclaje.lnk
[2013/06/19 13:04:50 | 000,000,059 | ---- | M] () -- C:\WINDOWS\wpd99.drv
[2013/06/17 20:08:30 | 000,000,112 | ---- | M] () -- C:\WINDOWS\OPLK.INI
[2013/06/17 11:51:37 | 000,002,553 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\GNP Movil.lnk
[2013/06/17 11:51:37 | 000,001,917 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\HP Photosmart Express.lnk
[2013/06/17 11:51:37 | 000,001,914 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\HP Photosmart Essential 2.01.lnk
[2013/06/17 11:51:37 | 000,001,883 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Google Chrome.lnk
[2013/06/17 11:51:37 | 000,001,873 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Configuración de etiquetas HP Photosmart.lnk
[2013/06/17 11:51:37 | 000,001,584 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\iTunes.lnk
[2013/06/17 11:51:37 | 000,001,088 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Centro de soluciones HP.lnk
[2013/06/17 11:51:37 | 000,000,952 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Configuración de Uso compartido de HP Photosmart.lnk
[2013/06/17 11:51:37 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\CCleaner.lnk
[2013/06/17 11:51:36 | 000,001,822 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Asistente para impresoras Bonjour.lnk
[2013/06/17 11:51:36 | 000,001,812 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\AhnLab Online Security Personal.lnk
[2013/06/17 11:51:36 | 000,001,783 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Canon MF Toolbox 4.9.lnk
[2013/06/17 11:51:36 | 000,001,769 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Adobe Reader XI.lnk
[2013/06/17 02:03:55 | 000,001,863 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Logitech QuickCam.lnk
[2013/06/16 23:52:44 | 000,001,892 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Skype.lnk
[2013/06/14 15:15:29 | 000,000,792 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013/06/14 10:07:45 | 000,038,545 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Datos de programa\Valores separados por tabulaciones (Windows).ADR
[2013/06/14 10:06:16 | 000,024,488 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Datos de programa\Valores separados por tabulaciones (DOS).ADR
[2013/06/13 12:34:18 | 000,001,584 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\iTunes.lnk
[2013/06/13 12:31:48 | 000,000,298 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2013/06/13 10:46:00 | 002,274,544 | ---- | M] (AhnLab, Inc.) -- C:\WINDOWS\System32\btscan.exe
[2013/06/13 09:51:08 | 000,001,812 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\AhnLab Online Security Personal.lnk
[2013/06/13 09:50:49 | 000,077,921 | ---- | M] (Ahnlab, Inc.) -- C:\WINDOWS\System32\v3w32se2.dll
[2013/06/13 08:57:20 | 000,154,768 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/06/12 19:36:09 | 000,017,476 | ---- | M] () -- C:\WINDOWS\System32\OPB4350.cah
[2013/06/12 19:36:08 | 000,029,960 | ---- | M] () -- C:\WINDOWS\System32\OPLK_M00.cah
[2013/06/12 19:24:21 | 000,000,810 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Menú Inicio\Programas\Inicio\Trillian.lnk
[2013/06/12 18:50:36 | 000,000,327 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Herramientas de diagnóstico de impresora HP.url
[2013/06/12 16:58:43 | 000,001,731 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Cotizadores Vida MetLife.lnk
[2013/06/12 16:57:12 | 000,001,844 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\MetLife Gastos Médicos.lnk
[2013/06/12 16:55:59 | 000,086,016 | ---- | M] () -- C:\WINDOWS\System32\custmon32.dll
[2013/06/12 13:59:37 | 000,000,143 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Configuración local\Datos de programa\fusioncache.dat
[2013/06/12 12:44:54 | 001,672,192 | ---- | M] (TODO: <Company name>) -- C:\WINDOWS\System32\pdfmona.dll
[2013/06/12 12:44:54 | 000,036,864 | ---- | M] () -- C:\WINDOWS\System32\pdf995mon.dll
[2013/06/12 12:43:19 | 000,109,517 | ---- | M] () -- C:\WINDOWS\hpiins04.dat
[2013/06/12 12:41:54 | 000,000,952 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Configuración de Uso compartido de HP Photosmart.lnk
[2013/06/12 12:39:06 | 000,000,966 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\HP Photosmart Premier.lnk
[2013/06/12 12:39:06 | 000,000,840 | ---- | M] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\Inicio rápido de HP Photosmart Premier.lnk
[2013/06/12 12:31:16 | 000,001,917 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\HP Photosmart Express.lnk
[2013/06/12 12:27:19 | 000,001,873 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Configuración de etiquetas HP Photosmart.lnk
[2013/06/12 11:48:51 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/06/12 11:48:49 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/06/12 11:47:20 | 008,610,696 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2013/06/12 11:03:17 | 000,001,783 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Canon MF Toolbox 4.9.lnk
[2013/06/12 10:17:02 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\YNAB 4.lnk
[2013/06/12 08:55:27 | 000,001,822 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Asistente para impresoras Bonjour.lnk
[2013/06/11 18:04:51 | 000,159,428 | ---- | M] () -- C:\WINDOWS\hpoins14.dat
[2013/06/11 18:03:50 | 000,001,914 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\HP Photosmart Essential 2.01.lnk
[2013/06/11 18:01:24 | 000,001,850 | ---- | M] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\HP Digital Imaging Monitor.lnk
[2013/06/11 18:00:42 | 000,001,088 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Centro de soluciones HP.lnk
[2013/06/11 12:18:17 | 000,000,810 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Trillian.lnk
[2013/06/11 10:33:10 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\SideACT!.lnk
[2013/06/11 10:33:10 | 000,000,690 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\SideACT!.lnk
[2013/06/11 10:33:10 | 000,000,684 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Application Data\Microsoft\Internet Explorer\Quick Launch\ACT!.lnk
[2013/06/11 10:33:10 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\ACT!.lnk
[2013/06/11 10:33:09 | 000,000,449 | ---- | M] () -- C:\WINDOWS\System32\MAPISVC.INF
[2013/06/11 10:30:37 | 000,000,073 | ---- | M] () -- C:\CONFIG.SYS
[2013/06/11 10:30:37 | 000,000,073 | ---- | M] () -- C:\config.bak
[2013/06/10 19:23:22 | 000,001,037 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Dropbox.lnk
[2013/06/10 19:21:12 | 000,001,067 | ---- | M] () -- C:\Documents and Settings\Rafael Rodulfo\Menú Inicio\Programas\Inicio\Dropbox.lnk
[2013/06/10 18:01:06 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\CCleaner.lnk
[2013/06/10 13:29:28 | 000,596,896 | ---- | M] () -- C:\WINDOWS\System32\perfh00A.dat
[2013/06/10 13:29:28 | 000,504,180 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/06/10 13:29:28 | 000,121,852 | ---- | M] () -- C:\WINDOWS\System32\perfc00A.dat
[2013/06/10 13:29:28 | 000,088,130 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/06/10 13:10:15 | 000,002,553 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\GNP Movil.lnk
[2013/06/10 09:52:13 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_SynTP_0100 7.Wdf
[2013/06/09 09:34:58 | 000,002,909 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013/06/08 19:38:27 | 000,001,769 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Adobe Reader XI.lnk
[2013/06/08 13:20:02 | 000,000,210 | RHS- | M] () -- C:\BOOT.001
[2013/06/08 12:28:43 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2013/06/08 12:02:03 | 000,000,504 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/06/08 11:43:54 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2013/06/08 11:43:54 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2013/06/08 11:43:54 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2013/06/08 11:43:41 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/06/08 11:43:41 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/06/08 11:43:40 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2013/06/08 11:43:29 | 000,004,205 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2013/06/08 11:36:31 | 000,000,934 | ---- | M] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\Windows Search.lnk
[2013/06/08 11:36:26 | 000,021,900 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/06/08 11:31:21 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/06/21 17:56:57 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\HijackThis.lnk
[2013/06/20 11:10:40 | 000,001,872 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Cotizador único.lnk
[2013/06/20 11:10:40 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Acceso directo a Papelera de reciclaje.lnk
[2013/06/17 11:51:37 | 000,002,553 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\GNP Movil.lnk
[2013/06/17 11:51:37 | 000,001,917 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\HP Photosmart Express.lnk
[2013/06/17 11:51:37 | 000,001,914 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\HP Photosmart Essential 2.01.lnk
[2013/06/17 11:51:37 | 000,001,883 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Google Chrome.lnk
[2013/06/17 11:51:37 | 000,001,873 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Configuración de etiquetas HP Photosmart.lnk
[2013/06/17 11:51:37 | 000,001,584 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\iTunes.lnk
[2013/06/17 11:51:37 | 000,001,088 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Centro de soluciones HP.lnk
[2013/06/17 11:51:37 | 000,000,952 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Configuración de Uso compartido de HP Photosmart.lnk
[2013/06/17 11:51:37 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\CCleaner.lnk
[2013/06/17 11:51:36 | 000,001,822 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Asistente para impresoras Bonjour.lnk
[2013/06/17 11:51:36 | 000,001,812 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\AhnLab Online Security Personal.lnk
[2013/06/17 11:51:36 | 000,001,783 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Canon MF Toolbox 4.9.lnk
[2013/06/17 11:51:36 | 000,001,769 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Adobe Reader XI.lnk
[2013/06/17 01:56:21 | 000,015,558 | ---- | C] () -- C:\WINDOWS\System32\Repository.reg
[2013/06/17 01:56:20 | 000,057,126 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2013/06/17 01:55:12 | 000,001,863 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Logitech QuickCam.lnk
[2013/06/16 23:52:44 | 000,001,892 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Skype.lnk
[2013/06/14 09:58:18 | 000,038,545 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Datos de programa\Valores separados por tabulaciones (Windows).ADR
[2013/06/14 00:35:47 | 000,024,488 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Datos de programa\Valores separados por tabulaciones (DOS).ADR
[2013/06/13 13:57:46 | 000,000,375 | ---- | C] () -- C:\WINDOWS\System32\CNCMFP38.INI
[2013/06/13 12:34:18 | 000,001,584 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\iTunes.lnk
[2013/06/13 12:31:48 | 000,000,298 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2013/06/13 10:05:30 | 000,000,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts_tmp
[2013/06/13 09:56:54 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\drivers\klb32mkd.sig
[2013/06/13 09:51:08 | 000,001,812 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\AhnLab Online Security Personal.lnk
[2013/06/12 19:36:09 | 000,017,476 | ---- | C] () -- C:\WINDOWS\System32\OPB4350.cah
[2013/06/12 19:36:09 | 000,000,112 | ---- | C] () -- C:\WINDOWS\OPLK.INI
[2013/06/12 19:36:08 | 000,029,960 | ---- | C] () -- C:\WINDOWS\System32\OPLK_M00.cah
[2013/06/12 19:24:21 | 000,000,810 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Menú Inicio\Programas\Inicio\Trillian.lnk
[2013/06/12 18:50:36 | 000,000,327 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Herramientas de diagnóstico de impresora HP.url
[2013/06/12 16:58:43 | 000,001,731 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Cotizadores Vida MetLife.lnk
[2013/06/12 16:57:12 | 000,001,844 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\MetLife Gastos Médicos.lnk
[2013/06/12 16:56:42 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\custmon32.dll
[2013/06/12 13:59:37 | 000,000,143 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Configuración local\Datos de programa\fusioncache.dat
[2013/06/12 12:44:54 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\pdf995mon.dll
[2013/06/12 12:44:54 | 000,000,059 | ---- | C] () -- C:\WINDOWS\wpd99.drv
[2013/06/12 12:41:54 | 000,000,952 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Configuración de Uso compartido de HP Photosmart.lnk
[2013/06/12 12:39:06 | 000,000,966 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\HP Photosmart Premier.lnk
[2013/06/12 12:39:06 | 000,000,840 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\Inicio rápido de HP Photosmart Premier.lnk
[2013/06/12 12:31:16 | 000,001,917 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\HP Photosmart Express.lnk
[2013/06/12 12:27:19 | 000,001,873 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Configuración de etiquetas HP Photosmart.lnk
[2013/06/12 12:22:06 | 000,109,517 | ---- | C] () -- C:\WINDOWS\hpiins04.dat
[2013/06/12 12:22:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hpimdl04.dat
[2013/06/12 11:03:17 | 000,001,783 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Canon MF Toolbox 4.9.lnk
[2013/06/12 10:17:02 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\YNAB 4.lnk
[2013/06/12 08:55:27 | 000,001,822 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Asistente para impresoras Bonjour.lnk
[2013/06/12 08:53:11 | 000,001,830 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Apple Software Update.lnk
[2013/06/11 18:03:50 | 000,001,914 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\HP Photosmart Essential 2.01.lnk
[2013/06/11 18:02:13 | 000,000,757 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Registro de I.R.I.S. OCR.lnk
[2013/06/11 18:01:24 | 000,001,850 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\HP Digital Imaging Monitor.lnk
[2013/06/11 18:00:42 | 000,001,088 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Centro de soluciones HP.lnk
[2013/06/11 17:51:28 | 000,159,428 | ---- | C] () -- C:\WINDOWS\hpoins14.dat
[2013/06/11 17:51:28 | 000,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat
[2013/06/11 12:18:17 | 000,000,816 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Menú Inicio\Programas\Trillian.lnk
[2013/06/11 12:18:17 | 000,000,810 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Trillian.lnk
[2013/06/11 10:45:57 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\EmailShared.dll
[2013/06/11 10:33:10 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\SideACT!.lnk
[2013/06/11 10:33:10 | 000,000,690 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\SideACT!.lnk
[2013/06/11 10:33:10 | 000,000,684 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Application Data\Microsoft\Internet Explorer\Quick Launch\ACT!.lnk
[2013/06/11 10:33:10 | 000,000,666 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\ACT!.lnk
[2013/06/11 10:33:09 | 000,000,449 | ---- | C] () -- C:\WINDOWS\System32\MAPISVC.INF
[2013/06/11 10:32:42 | 000,048,128 | ---- | C] () -- C:\WINDOWS\System32\ActiveActX.FRA
[2013/06/11 10:32:42 | 000,043,008 | ---- | C] () -- C:\WINDOWS\System32\ActiveActX.ENU
[2013/06/10 19:23:22 | 000,001,037 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Escritorio\Dropbox.lnk
[2013/06/10 19:21:12 | 000,001,067 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Menú Inicio\Programas\Inicio\Dropbox.lnk
[2013/06/10 18:10:44 | 000,001,883 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Google Chrome.lnk
[2013/06/10 18:08:08 | 000,000,916 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/10 18:08:07 | 000,000,912 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/06/10 18:01:06 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\CCleaner.lnk
[2013/06/10 13:09:09 | 000,002,553 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\GNP Movil.lnk
[2013/06/10 09:52:13 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_SynTP_0100 7.Wdf
[2013/06/08 19:51:06 | 000,148,992 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mpg2splt.ax
[2013/06/08 19:50:43 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\encdec.dll
[2013/06/08 19:38:27 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Adobe Reader XI.lnk
[2013/06/08 19:38:27 | 000,001,769 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Adobe Reader XI.lnk
[2013/06/08 19:35:35 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2013/06/08 19:35:35 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2013/06/08 19:34:20 | 000,000,838 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/06/08 13:20:02 | 000,000,211 | -HS- | C] () -- C:\boot.ini
[2013/06/08 13:19:57 | 000,000,504 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/06/08 12:28:43 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2013/06/08 12:23:24 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013/06/08 12:22:27 | 000,001,936 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2013/06/08 12:21:05 | 000,000,210 | RHS- | C] () -- C:\BOOT.001
[2013/06/08 12:20:41 | 000,154,768 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/06/08 12:07:36 | 000,000,838 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Menú Inicio\Programas\Internet Explorer.lnk
[2013/06/08 12:07:29 | 000,000,773 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Menú Inicio\Programas\Outlook Express.lnk
[2013/06/08 12:05:43 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Menú Inicio\Programas\Asistencia remota.lnk
[2013/06/08 12:05:43 | 000,000,830 | ---- | C] () -- C:\Documents and Settings\Rafael Rodulfo\Menú Inicio\Programas\Windows Media Player.lnk
[2013/06/08 12:02:03 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/06/08 11:50:54 | 000,067,560 | ---- | C] () -- C:\Documents and Settings\LocalService\Configuración local\Datos de programa\FontCache3.0.0.0.dat
[2013/06/08 11:43:54 | 000,002,909 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2013/06/08 11:43:54 | 000,000,073 | ---- | C] () -- C:\CONFIG.SYS
[2013/06/08 11:43:54 | 000,000,073 | ---- | C] () -- C:\config.bak
[2013/06/08 11:43:54 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2013/06/08 11:43:54 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2013/06/08 11:43:54 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2013/06/08 11:43:41 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/06/08 11:43:41 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/06/08 11:43:40 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2013/06/08 11:41:02 | 000,000,835 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Windows Movie Maker.lnk
[2013/06/08 11:39:48 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2013/06/08 11:39:48 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2013/06/08 11:36:31 | 000,000,950 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Windows Search.lnk
[2013/06/08 11:36:31 | 000,000,934 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio\Windows Search.lnk
[2013/06/08 11:36:29 | 000,001,478 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\XPS Viewer EP.lnk
[2013/06/08 11:36:26 | 000,021,900 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/06/08 11:35:59 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Windows Messenger.lnk
[2013/06/08 11:35:41 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\PSSetupNativeUtils.exe
[2013/06/08 11:35:04 | 000,107,612 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2013/06/08 11:35:04 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.b in
[2013/06/08 11:35:03 | 000,023,640 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2013/06/08 11:35:02 | 000,016,892 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2013/06/08 11:35:02 | 000,004,640 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.h
[2013/06/08 11:35:01 | 000,016,164 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2013/06/08 11:35:01 | 000,003,100 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.h
[2013/06/08 11:35:01 | 000,002,590 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.h
[2013/06/08 11:33:41 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe.bmp
[2013/06/08 11:33:41 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Azteca.bmp
[2013/06/08 11:33:40 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Viento.bmp
[2013/06/08 11:33:40 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Abanicos.bmp
[2013/06/08 11:33:40 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Roca verde.bmp
[2013/06/08 11:33:40 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendro.bmp
[2013/06/08 11:33:39 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Pompas.bmp
[2013/06/08 11:33:39 | 000,017,336 | ---- | C] () -- C:\WINDOWS\A pescar.bmp
[2013/06/08 11:33:39 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Grano de café.bmp
[2013/06/08 11:33:39 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Plumas.bmp
[2013/06/08 11:33:38 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Lazo azul 16.bmp
[2013/06/08 11:33:29 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2013/06/08 11:33:28 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2013/06/08 11:33:24 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2013/06/08 11:33:03 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2013/05/28 14:05:52 | 000,506,686 | ---- | C] () -- C:\WINDOWS\System32\autorun.inf
[2013/01/12 13:58:32 | 000,121,852 | ---- | C] () -- C:\WINDOWS\System32\perfc00A.dat
[2013/01/12 13:58:32 | 000,088,130 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2013/01/12 13:58:29 | 000,596,896 | ---- | C] () -- C:\WINDOWS\System32\perfh00A.dat
[2013/01/12 13:58:29 | 000,504,180 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2013/01/12 13:58:29 | 000,036,284 | ---- | C] () -- C:\WINDOWS\System32\perfd00A.dat
[2013/01/12 13:58:29 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2013/01/12 13:58:28 | 000,317,534 | ---- | C] () -- C:\WINDOWS\System32\perfi00A.dat
[2013/01/12 13:58:28 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2013/01/12 13:58:21 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\msvcrt10.dll
[2013/01/12 13:53:46 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2013/01/12 13:53:46 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2013/01/12 13:52:53 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2013/01/12 13:51:58 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2013/01/12 13:51:26 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2013/01/12 13:51:14 | 000,394,240 | ---- | C] () -- C:\WINDOWS\System32\HMTCD.dll
[2013/01/12 13:51:05 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2013/01/12 13:50:59 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2013/01/12 13:50:41 | 000,084,784 | ---- | C] () -- C:\WINDOWS\System32\fciv.exe
[2013/01/12 13:50:16 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2013/01/12 13:50:01 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\drivers\rdummy.sys

========== ZeroAccess Check ==========

[2013/06/08 11:49:43 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc8 7-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2011/07/12 15:35:10 | 001,510,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA 9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2011/07/12 13:33:58 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CD B-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/13 22:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

< End of report >
Reply With Quote