pase el combofix, reincie y volvio a aparecer la madita infeccion!
aqui los logs:
ComboFix 08-07-15.4 - toro 2008-07-16 11:37:47.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.3082.18.258 [GMT -3:00]
Se ejecuta desde: C:\Documents and Settings\toro\Escritorio\ComboFix.exe
* Creado un nuevo punto de restauración
* Resident AV is active
ADVERTENCIA - ESTE EQUIPO NO TIENE INSTALADA LA CONSOLA DE RECUPERACION! .
(((((((((((((((((((((((((((((((((((( Otras eliminaciones )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\InfoSat.txt
.
(((((((((((((((((( Archivos creados desde 2008-06-16 - 2008-07-16 )))))))))))))))))))))))))))))))))
.
2008-07-15 22:12 . 2008-07-15 22:12 <DIR> d-------- C:\Documents and Settings\toro\Datos de programa\Malwarebytes
2008-07-15 22:12 . 2008-07-15 22:12 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\Malwarebytes
2008-07-15 22:12 . 2008-07-15 22:12 <DIR> d-------- C:\Archivos de programa\Malwarebytes' Anti-Malware
2008-07-15 22:12 . 2008-07-07 17:42 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys
2008-07-15 22:12 . 2008-07-07 17:42 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-07-15 21:14 . 2008-07-15 21:14 <DIR> d-------- C:\Documents and Settings\toro\Datos de programa\LEAPS
2008-07-15 21:13 . 2008-07-15 21:13 <DIR> d-------- C:\Documents and Settings\toro\Datos de programa\Pegasys Inc
2008-07-15 21:13 . 2008-07-15 21:13 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\Pegasys Inc
2008-07-15 21:12 . 2008-07-15 21:12 <DIR> d-------- C:\Archivos de programa\Pegasys Inc
2008-07-15 12:23 . 2008-07-15 12:23 <DIR> d-------- C:\Archivos de programa\Incomplete
2008-07-14 12:54 . 2008-07-14 12:55 <DIR> d-------- C:\Archivos de programa\Total Video Converter
2008-07-08 20:56 . 2008-07-08 20:56 <DIR> d-------- C:\Archivos de programa\NASA
2008-07-08 20:48 . 2008-07-08 20:48 1,355 --a------ C:\WINDOWS\imsins.BAK
2008-07-03 19:19 . 2008-07-03 19:19 <DIR> d-------- C:\Archivos de programa\Ares
2008-07-01 17:28 . 2008-07-01 17:28 <DIR> d-------- C:\Documents and Settings\toro\Datos de programa\Motive
2008-07-01 17:22 . 2008-07-01 18:10 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\Motive
2008-07-01 17:22 . 2008-07-01 18:40 <DIR> d-------- C:\Archivos de programa\Common Files
2008-07-01 12:49 . 2008-07-01 13:39 48 --a------ C:\
0001.key
2008-07-01 12:49 . 2008-07-01 13:39 34 --a------ C:\
0000.key
2008-07-01 12:36 . 2008-07-01 12:36 6 --a------ C:\
0000.cfg
2008-06-25 13:00 . 2008-06-25 13:00 <DIR> d-------- C:\Archivos de programa\SpywareBlaster
2008-06-25 12:26 . 2008-06-25 12:26 <DIR> d-------- C:\Archivos de programa\Microsoft CAPICOM 2.1.0.2
2008-06-25 10:53 . 2004-08-19 15:43 539,136 --a------ C:\WINDOWS\system32\spider.exe
2008-06-25 10:53 . 2001-08-22 22:15 128,000 --a------ C:\WINDOWS\system32\mshearts.exe
2008-06-25 10:53 . 2001-08-22 22:15 120,320 --a------ C:\WINDOWS\system32\WINmine.exe
2008-06-25 10:53 . 2001-08-22 22:15 57,344 --a------ C:\WINDOWS\system32\sol.exe
2008-06-25 10:53 . 2001-08-22 22:15 55,808 --a------ C:\WINDOWS\system32\freecell.exe
2008-06-23 20:09 . 2008-06-23 20:09 2,347,264 --a------ C:\WINDOWS\system32\TUKernel.exe
2008-06-23 19:20 . 2008-06-23 19:22 <DIR> d-------- C:\Documents and Settings\toro\Datos de programa\ViStart
2008-06-23 19:05 . 2008-06-23 19:05 <DIR> d-------- C:\Archivos de programa\WinFlip
2008-06-23 19:05 . 2008-06-23 19:05 <DIR> d-------- C:\Archivos de programa\TrueTransparency
2008-06-23 19:05 . 2008-06-25 10:53 <DIR> d-------- C:\Archivos de programa\Styler
2008-06-23 18:58 . 2008-06-23 18:58 78,942 --a------ C:\WINDOWS\Icon_2.ico
2008-06-20 14:47 . 2008-06-20 14:47 248,320 -----c--- C:\WINDOWS\system32\dllcache\mswsock.dll
2008-06-20 14:47 . 2008-06-20 14:47 147,968 -----c--- C:\WINDOWS\system32\dllcache\dnsapi.dll
2008-06-20 11:00 . 2008-06-20 11:00 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\Logitech
2008-06-20 11:00 . 2008-06-20 11:07 <DIR> d-------- C:\Documents and Settings\All Users\Datos de programa\Logishrd
2008-06-20 11:00 . 2008-06-20 11:00 <DIR> d-------- C:\Archivos de programa\Logitech
2008-06-20 11:00 . 2008-06-20 11:01 <DIR> d-------- C:\Archivos de programa\Archivos comunes\LogiShrd
2008-06-20 08:51 . 2008-06-20 08:51 361,600 -----c--- C:\WINDOWS\system32\dllcache\tcpip.sys
2008-06-20 08:40 . 2008-06-20 08:40 138,496 -----c--- C:\WINDOWS\system32\dllcache\afd.sys
2008-06-20 08:08 . 2008-06-20 08:08 225,856 -----c--- C:\WINDOWS\system32\dllcache\tcpip6.sys
2008-06-18 14:51 . 2008-06-18 14:51 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Configuraci¾n local
2008-06-18 14:51 . 2008-06-18 14:51 <DIR> d-------- C:\Documents and Settings\toro\Configuraci¾n local
2008-06-18 14:51 . 2008-06-18 14:51 <DIR> d-------- C:\Documents and Settings\NetworkService\Configuraci¾n local
2008-06-18 14:51 . 2008-06-18 14:51 <DIR> d-------- C:\Documents and Settings\LocalService\Configuraci¾n local
2008-06-18 14:51 . 2008-06-18 14:51 <DIR> d-------- C:\Documents and Settings\Invitado\Configuraci¾n local
2008-06-18 14:34 . 2007-11-23 14:18 <DIR> d--h----- C:\Documents and Settings\Administrador\Reciente
2008-06-18 14:34 . 2007-11-23 18:27 <DIR> d--h----- C:\Documents and Settings\Administrador\Plantillas
2008-06-18 14:34 . 2007-11-23 14:18 <DIR> d-------- C:\Documents and Settings\Administrador\Mis documentos
2008-06-18 14:34 . 2007-11-23 14:18 <DIR> dr------- C:\Documents and Settings\Administrador\Menú Inicio
2008-06-18 14:34 . 2007-11-23 14:18 <DIR> d--h----- C:\Documents and Settings\Administrador\Impresoras
2008-06-18 14:34 . 2007-11-23 14:18 <DIR> d-------- C:\Documents and Settings\Administrador\Favoritos
2008-06-18 14:34 . 2007-11-23 14:18 <DIR> d-------- C:\Documents and Settings\Administrador\Escritorio
2008-06-18 14:34 . 2007-11-23 14:18 <DIR> d--h----- C:\Documents and Settings\Administrador\Entorno de red
2008-06-18 14:34 . 2007-11-23 14:18 <DIR> dr-h----- C:\Documents and Settings\Administrador\Datos de programa
2008-06-18 14:34 . 2008-07-16 11:40 <DIR> d--h----- C:\Documents and Settings\Administrador\Configuración local
2008-06-18 14:34 . 2008-06-18 14:34 <DIR> d-------- C:\Documents and Settings\Administrador
2008-06-17 19:58 . 2008-06-17 19:58 <DIR> d-------- C:\Archivos de programa\CCleaner
.
(((((((((((((((((((((((((((((((((((((( Reporte Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-15 23:36 --------- d-----w C:\Archivos de programa\Archivos comunes\Nero
2008-07-15 23:33 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Nero
2008-07-15 21:28 --------- d---a-w C:\Documents and Settings\All Users\Datos de programa\TEMP
2008-07-15 21:16 --------- d-----w C:\Archivos de programa\AvRack
2008-07-15 15:23 --------- d-----w C:\Documents and Settings\toro\Datos de programa\LimeWire
2008-07-08 23:43 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Microsoft Help
2008-07-02 00:23 --------- d-----w C:\Documents and Settings\toro\Datos de programa\BearShare
2008-06-30 21:09 --------- d-----w C:\Archivos de programa\TuneUp Utilities 2008
2008-06-20 17:47 248,320 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys
2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-18 18:45 --------- d-----w C:\Archivos de programa\FlashGet
2008-06-14 17:33 272,512 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-06-13 15:39 2,828 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
2008-06-13 15:35 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\Spybot - Search & Destroy
2008-06-13 15:35 --------- d-----w C:\Archivos de programa\Spybot - Search & Destroy
2008-06-11 12:58 691,545 ----a-w C:\WINDOWS\unins000.exe
2008-06-10 00:08 --------- d--h--w C:\Archivos de programa\InstallShield Installation Information
2008-06-06 13:01 --------- d-----w C:\Documents and Settings\toro\Datos de programa\Corel
2008-06-06 13:01 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\InstallShield
2008-06-06 12:57 --------- d-----w C:\Archivos de programa\Corel
2008-06-06 12:57 --------- d-----w C:\Archivos de programa\Archivos comunes\Corel
2008-06-02 22:37 --------- d-----w C:\Archivos de programa\Valve
2008-06-02 02:04 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\IM
2008-06-02 02:03 --------- d-----w C:\Documents and Settings\All Users\Datos de programa\IncrediMail
2008-05-29 14:53 --------- d-----w C:\Archivos de programa\nLite
2008-05-29 14:41 --------- d-----w C:\Archivos de programa\sXe Injected
2008-05-29 14:40 --------- d-----w C:\Archivos de programa\Messenger Detect
2008-05-29 14:40 --------- d-----w C:\Archivos de programa\Counter-Strike 1.6
2008-05-29 14:40 --------- d-----w C:\Archivos de programa\Artlantis Studio 2
2008-05-28 22:17 2,568 --sha-w C:\Documents and Settings\All Users\Datos de programa\KGyGaAvL.sys
2008-05-26 22:43 --------- d-----w C:\Documents and Settings\toro\Datos de programa\Messenger Detect
2008-05-26 18:38 --------- d-----w C:\Archivos de programa\Microsoft Silverlight
2008-05-20 14:01 --------- d-----w C:\Archivos de programa\NeroInstall.bak
2008-05-20 13:58 --------- d-----w C:\Documents and Settings\toro\Datos de programa\Nero
2008-05-20 13:50 --------- d-----w C:\Archivos de programa\Nero
2008-05-17 07:43 --------- d-----w C:\Documents and Settings\toro\Datos de programa\RegClean
2008-05-09 10:55 90,112 ----a-w C:\WINDOWS\system32\wshext.dll
2008-05-09 10:55 430,080 ----a-w C:\WINDOWS\system32\vbscript.dll
2008-05-09 10:55 180,224 ----a-w C:\WINDOWS\system32\scrobj.dll
2008-05-09 10:55 172,032 ----a-w C:\WINDOWS\system32\scrrun.dll
2008-05-08 11:24 155,648 ----a-w C:\WINDOWS\system32\wscript.exe
2008-05-07 09:07 135,168 ----a-w C:\WINDOWS\system32\cscript.exe
2008-05-07 05:11 1,294,336 ----a-w C:\WINDOWS\system32\quartz.dll
2008-04-23 04:16 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-03-04 22:41 8 --sh--r C:\Documents and Settings\All Users\Datos de programa\67D8907805.sys
.
------- Sigcheck -------
2007-10-06 16:05 2061824 fda9504c4993043ef75ad2f59cd6daba C:\WINDOWS\$NtServicePackUninstall$\ntkrnlpa.exe
2008-04-14 07:27 2068224 2e2931a58b112cdf2a99b00b5dacdbe4 C:\WINDOWS\ServicePackFiles\i386\ntkrnlpa.exe
2008-04-14 07:27 2080256 2794f2bf6742c006b9a962e8d00cdb0e C:\WINDOWS\system32\ntkrnlpa.exe
2007-10-06 15:51 2184576 61bdb2667827d484604c9a09248d6223 C:\WINDOWS\$NtServicePackUninstall$\ntoskrnl.exe
2008-04-14 07:27 2191360 6468827016fa22cae81d7059f1a974c0 C:\WINDOWS\ServicePackFiles\i386\ntoskrnl.exe
2007-02-28 10:08 2184576 61bdb2667827d484604c9a09248d6223 C:\WINDOWS\system32\ntoskrnl.exe
2007-06-13 07:10 1035776 dbb6b75cc6cb2cf8ec0bafca08aed6be C:\WINDOWS\explorer.exe
2007-10-06 15:52 1035776 dbb6b75cc6cb2cf8ec0bafca08aed6be C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
2008-04-14 07:48 1036288 7522f548a84abad8fa516de5ab3931ef C:\WINDOWS\ServicePackFiles\i386\explorer.exe
.
((((((((((((((((((((((((((((( snapshot[arroba]2008-06-18_ 0.11.29.25 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-04-02 23:41:55 53,248 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2008-07-09 00:04:33 53,248 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
- 2008-04-02 23:41:55 12,800 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2008-07-09 00:04:33 12,800 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
- 2008-04-02 23:41:56 473,600 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2008-07-09 00:04:34 473,600 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2008-07-09 00:04:34 577,536 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-04-02 23:41:56 145,920 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2008-07-09 00:04:34 145,920 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
- 2008-04-02 23:41:56 159,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
+ 2008-07-09 00:04:35 159,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2008-04-02 23:41:57 364,544 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2008-07-09 00:04:35 364,544 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
- 2008-04-02 23:41:57 178,176 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2008-07-09 00:04:35 178,176 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
- 2008-04-02 23:41:55 223,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2008-07-09 00:04:33 223,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
- 2008-04-14 15:59:30 272,512 ------w C:\WINDOWS\Driver Cache\i386\bthport.sys
+ 2008-06-14 17:33:37 272,512 ------w C:\WINDOWS\Driver Cache\i386\bthport.sys
- 2004-08-20 12:00:00 93,184 -c----w C:\WINDOWS\ie7\iexplore.exe
+ 2004-08-19 18:42:50 93,184 -c----w C:\WINDOWS\ie7\iexplore.exe
- 2007-08-22 12:57:25 3,085,824 -c----w C:\WINDOWS\ie7\mshtml.dll
+ 2007-06-15 05:12:30 3,085,312 -c----w C:\WINDOWS\ie7\mshtml.dll
- 2004-08-20 12:00:00 280,576 -c----w C:\WINDOWS\ie7\webcheck.dll
+ 2004-08-19 18:42:30 280,576 -c----w C:\WINDOWS\ie7\webcheck.dll
- 2008-05-29 15:15:53 1,165,584 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\accicons.exe
+ 2008-07-08 23:43:28 1,165,584 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\accicons.exe
- 2008-05-29 15:15:54 20,240 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\cagicon.exe
+ 2008-07-08 23:43:28 20,240 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\cagicon.exe
- 2008-05-29 15:15:54 159,504 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\inficon.exe
+ 2008-07-08 23:43:28 159,504 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\inficon.exe
- 2008-05-29 15:15:54 217,864 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\misc.exe
+ 2008-07-08 23:43:28 217,864 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\misc.exe
- 2008-05-29 15:15:54 18,704 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\mspicons.exe
+ 2008-07-08 23:43:28 18,704 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\mspicons.exe
- 2008-05-29 15:15:54 35,088 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\oisicon.exe
+ 2008-07-08 23:43:28 35,088 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\oisicon.exe
- 2008-05-29 15:15:54 845,584 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\outicon.exe
+ 2008-07-08 23:43:28 845,584 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\outicon.exe
- 2008-05-29 15:15:54 922,384 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe
+ 2008-07-08 23:43:28 922,384 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe
- 2008-05-29 15:15:54 272,648 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pubs.exe
+ 2008-07-08 23:43:28 272,648 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pubs.exe
- 2008-05-29 15:15:54 888,080 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
+ 2008-07-08 23:43:28 888,080 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
- 2008-05-29 15:15:54 1,172,240 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe
+ 2008-07-08 23:43:28 1,172,240 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe
+ 2008-06-20 14:03:40 15,086 ----a-r C:\WINDOWS\Installer\{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}\ARPPRODUCTICON.exe
+ 2008-06-20 14:03:40 15,086 ----a-r C:\WINDOWS\Installer\{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}\DesktopShortcut_10110FE91EE84A3DADFD1294F86BE5FC.exe
+ 2008-06-20 14:03:40 53,248 ----a-r C:\WINDOWS\Installer\{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}\ProgramGroupShortcut_EFA2BBEBCF93493B904B1B970B8DFAB6.exe
+ 2008-07-16 00:12:51 61,440 ----a-r C:\WINDOWS\Installer\{AB212B59-FF45-4C18-B369-F630CB268DAF}\NewShortcut1_85D6ED5C0A5C4423B575A88AD0ACDE6A.exe
+ 2008-07-16 00:12:50 61,440 ----a-r C:\WINDOWS\Installer\{AB212B59-FF45-4C18-B369-F630CB268DAF}\NewShortcut2_85D6ED5C0A5C4423B575A88AD0ACDE6A_1.exe
+ 2008-07-16 00:12:51 61,440 ----a-r C:\WINDOWS\Installer\{AB212B59-FF45-4C18-B369-F630CB268DAF}\NewShortcut5_85D6ED5C0A5C4423B575A88AD0ACDE6A.exe
- 2005-03-18 19:23:10 53,248 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2005-03-18 20:23:10 53,248 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.AudioVideoPlayback.dll
- 2005-03-18 19:23:10 12,800 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Diagnostics.dll
+ 2005-03-18 20:23:10 12,800 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Diagnostics.dll
- 2005-03-18 19:23:14 473,600 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3D.dll
+ 2005-03-18 20:23:14 473,600 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3D.dll
- 2005-03-18 19:23:10 145,920 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectDraw.dll
+ 2005-03-18 20:23:10 145,920 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectDraw.dll
- 2005-03-18 19:23:10 159,232 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectInput.dll
+ 2005-03-18 20:23:10 159,232 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectInput.dll
- 2005-03-18 19:23:14 364,544 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectPlay.dll
+ 2005-03-18 20:23:14 364,544 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectPlay.dll
- 2005-03-18 19:23:12 178,176 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectSound.dll
+ 2005-03-18 20:23:12 178,176 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectSound.dll
- 2005-03-18 19:23:14 223,232 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.dll
+ 2005-03-18 20:23:14 223,232 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.dll
+ 2005-09-28 17:11:52 577,536 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2908.0\Microsoft.DirectX.Direct3DX.dll
- 2000-08-31 11:00:00 28,160 ----a-w C:\WINDOWS\Nircmd.exe
+ 2000-08-31 11:00:00 28,672 ----a-w C:\WINDOWS\Nircmd.exe
- 2008-04-14 10:49:10 152,064 ----a-w C:\WINDOWS\regedit.exe
+ 2008-04-14 10:49:10 229,888 ----a-w C:\WINDOWS\regedit.exe
- 2006-11-03 05:29:40 7,680 ----a-w C:\WINDOWS\system32\asferror.dll
+ 2006-11-03 12:59:40 7,680 ----a-w C:\WINDOWS\system32\asferror.dll
- 2008-04-14 10:48:20 29,184 ----a-w C:\WINDOWS\system32\batmeter.dll
+ 2004-08-19 18:41:48 28,672 ----a-w C:\WINDOWS\system32\batmeter.dll
- 2004-08-20 12:00:00 115,200 ----a-w C:\WINDOWS\system32\calc.exe
+ 2001-08-23 01:15:28 115,200 ----a-w C:\WINDOWS\system32\calc.exe
+ 2007-10-21 21:38:06 516,832 ----a-w C:\WINDOWS\system32\capicom.dll
- 2004-08-20 12:00:00 80,896 ----a-w C:\WINDOWS\system32\charmap.exe
+ 2001-08-23 01:15:28 80,896 ----a-w C:\WINDOWS\system32\charmap.exe
- 2008-04-14 10:48:22 350,720 ----a-w C:\WINDOWS\system32\cmdial32.dll
+ 2004-08-19 18:41:52 349,696 ----a-w C:\WINDOWS\system32\cmdial32.dll
+ 2005-07-22 22:59:04 2,319,568 ----a-w C:\WINDOWS\system32\d3dx9_27.dll
- 2006-11-03 05:29:40 7,680 -c--a-w C:\WINDOWS\system32\dllcache\asferror.dll
+ 2006-11-03 12:59:40 7,680 -c--a-w C:\WINDOWS\system32\dllcache\asferror.dll
+ 2006-09-23 16:12:54 1,022,976 -c----w C:\WINDOWS\system32\dllcache\browseui.dll
- 2008-04-14 15:59:30 272,512 -c----w C:\WINDOWS\system32\dllcache\bthport.sys
+ 2008-06-14 17:33:37 272,512 -c----w C:\WINDOWS\system32\dllcache\bthport.sys
+ 2007-08-13 21:42:54 17,408 -c----w C:\WINDOWS\system32\dllcache\corpol.dll
+ 2008-05-07 09:07:23 135,168 -c----w C:\WINDOWS\system32\dllcache\cscript.exe
+ 2007-08-13 21:45:18 78,336 -c----w C:\WINDOWS\system32\dllcache\ieencode.dll
+ 2008-05-09 10:55:06 512,000 -c----w C:\WINDOWS\system32\dllcache\jscript.dll
+ 2008-04-14 10:49:20 220,672 -c--a-w C:\WINDOWS\system32\dllcache\logon.scr
- 2006-11-03 05:29:52 244,224 -c--a-w C:\WINDOWS\system32\dllcache\mpvis.dll
+ 2006-11-03 12:59:52 244,224 -c--a-w C:\WINDOWS\system32\dllcache\mpvis.dll
+ 2008-05-09 10:55:06 180,224 -c----w C:\WINDOWS\system32\dllcache\scrobj.dll
+ 2008-05-09 10:55:06 172,032 -c----w C:\WINDOWS\system32\dllcache\scrrun.dll
- 2006-11-03 05:32:36 1,678,848 -c--a-w C:\WINDOWS\system32\dllcache\setup_wm.exe
+ 2006-11-03 13:02:36 1,678,848 -c--a-w C:\WINDOWS\system32\dllcache\setup_wm.exe
+ 2006-09-23 16:12:54 1,497,600 -c----w C:\WINDOWS\system32\dllcache\shdocvw.dll
+ 2006-09-23 16:12:54 474,624 -c----w C:\WINDOWS\system32\dllcache\shlwapi.dll
+ 2008-04-14 10:48:44 151,552 -c--a-w C:\WINDOWS\system32\dllcache\sqldb20.dll
+ 2008-04-14 10:48:44 462,848 -c--a-w C:\WINDOWS\system32\dllcache\sqlqp20.dll
+ 2008-04-14 10:48:44 110,592 -c--a-w C:\WINDOWS\system32\dllcache\sqlse20.dll
+ 2008-05-09 10:55:06 430,080 -c----w C:\WINDOWS\system32\dllcache\vbscript.dll
- 2006-11-03 05:31:26 272,896 -c--a-w C:\WINDOWS\system32\dllcache\wmerror.dll
+ 2006-11-03 13:01:26 272,896 -c--a-w C:\WINDOWS\system32\dllcache\wmerror.dll
- 2006-11-03 05:31:34 96,768 -c--a-w C:\WINDOWS\system32\dllcache\wmpband.dll
+ 2006-11-03 13:01:34 96,768 -c--a-w C:\WINDOWS\system32\dllcache\wmpband.dll
- 2006-11-03 05:31:46 64,000 -c--a-w C:\WINDOWS\system32\dllcache\wmplayer.exe
+ 2006-11-03 13:01:46 64,000 -c--a-w C:\WINDOWS\system32\dllcache\wmplayer.exe
- 2006-11-03 05:34:08 8,287,232 -c--a-w C:\WINDOWS\system32\dllcache\wmploc.dll
+ 2006-11-03 13:04:08 8,287,232 -c--a-w C:\WINDOWS\system32\dllcache\wmploc.dll
- 2006-11-03 05:31:52 100,352 -c--a-w C:\WINDOWS\system32\dllcache\wmpshell.dll
+ 2006-11-03 13:01:52 100,352 -c--a-w C:\WINDOWS\system32\dllcache\wmpshell.dll
+ 2008-05-08 11:24:44 155,648 -c----w C:\WINDOWS\system32\dllcache\wscript.exe
+ 2008-05-09 10:55:06 90,112 -c----w C:\WINDOWS\system32\dllcache\wshext.dll
- 2007-07-30 14:49:36 549,720 -c--a-w C:\WINDOWS\system32\dllcache\wuapi.dll
+ 2007-07-30 22:19:36 549,720 -c--a-w C:\WINDOWS\system32\dllcache\wuapi.dll
- 2008-04-14 10:48:22 147,968 ----a-w C:\WINDOWS\system32\dnsapi.dll
+ 2008-06-20 17:47:55 147,968 ----a-w C:\WINDOWS\system32\dnsapi.dll
+ 2008-02-18 19:21:08 11,304 ----a-w C:\WINDOWS\system32\drivers\imagedrv.sys
+ 2008-02-18 19:21:08 132,904 ----a-w C:\WINDOWS\system32\drivers\imagesrv.sys
+ 2007-10-19 16:16:30 2,109,976 ----a-w C:\WINDOWS\system32\drivers\Lvckap.sys
+ 2007-10-11 21:59:02 2,142,488 ----a-w C:\WINDOWS\system32\drivers\LVMVdrv.sys
+ 2007-10-11 21:59:24 25,624 ----a-w C:\WINDOWS\system32\drivers\LVPr2Mon.sys
+ 2007-10-12 01:56:20 490,776 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvELCHv_BBE6DEA618C212D1D4C404825FD824D3C6FE5D57\LV561AV.sys
+ 2007-10-12 01:57:28 416,280 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvELCHv_BBE6DEA618C212D1D4C404825FD824D3C6FE5D57\lvcodec2.dll
+ 2007-10-12 01:57:40 195,096 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvELCHv_BBE6DEA618C212D1D4C404825FD824D3C6FE5D57\lvcoinst.dll
+ 2007-10-12 02:00:20 490,008 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvELCHv_BBE6DEA618C212D1D4C404825FD824D3C6FE5D57\LVUI2.dll
+ 2007-10-12 02:00:32 465,432 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvELCHv_BBE6DEA618C212D1D4C404825FD824D3C6FE5D57\LVUI2RC.dll
+ 2007-10-12 02:00:42 41,752 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvELCHv_BBE6DEA618C212D1D4C404825FD824D3C6FE5D57\LVUSBSta.sys
+ 2007-10-12 02:01:28 236,056 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvELCHv_BBE6DEA618C212D1D4C404825FD824D3C6FE5D57\lvWIAext.dll
+ 2007-10-12 02:03:10 439,568 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvELCHv_BBE6DEA618C212D1D4C404825FD824D3C6FE5D57\WUApp32.exe
+ 2007-10-12 01:55:58 13,848 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2s_62F19BA954DED83DBA6DF160C36D5918D3EEA33F\lv302af.sys
+ 2007-10-12 01:57:40 195,096 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2s_62F19BA954DED83DBA6DF160C36D5918D3EEA33F\lvcoinst.dll
+ 2007-10-12 02:00:42 41,752 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2s_62F19BA954DED83DBA6DF160C36D5918D3EEA33F\LVUSBSta.sys
+ 2007-10-12 02:03:10 439,568 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2s_62F19BA954DED83DBA6DF160C36D5918D3EEA33F\WUApp32.exe
+ 2007-10-12 01:55:58 1,279,000 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2v_19F47D0F20E353A86247DADE40C70EC0358A7AE9\LV302V32.SYS
+ 2007-10-12 01:57:28 416,280 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2v_19F47D0F20E353A86247DADE40C70EC0358A7AE9\lvcodec2.dll
+ 2007-10-12 01:57:40 195,096 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2v_19F47D0F20E353A86247DADE40C70EC0358A7AE9\lvcoinst.dll
+ 2007-10-12 02:00:20 490,008 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2v_19F47D0F20E353A86247DADE40C70EC0358A7AE9\LVUI2.dll
+ 2007-10-12 02:00:32 465,432 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2v_19F47D0F20E353A86247DADE40C70EC0358A7AE9\LVUI2RC.dll
+ 2007-10-12 02:00:42 41,752 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2v_19F47D0F20E353A86247DADE40C70EC0358A7AE9\LVUSBSta.sys
+ 2007-10-12 02:01:28 236,056 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2v_19F47D0F20E353A86247DADE40C70EC0358A7AE9\lvWIAext.dll
+ 2007-10-12 02:03:10 439,568 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPEPI2v_19F47D0F20E353A86247DADE40C70EC0358A7AE9\WUApp32.exe
+ 2007-10-12 02:01:06 23,832 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5c_F4502E86C545666FAEEA2E5BC0ECF142B1B952DA\lvuvcflt.sys
+ 2007-10-12 01:57:40 195,096 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5s_FF147DEF58280327E126F11A9918B00DAAF40F64\lvcoinst.dll
+ 2007-10-12 01:59:12 1,920,920 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5s_FF147DEF58280327E126F11A9918B00DAAF40F64\lvpopflt.sys
+ 2007-10-12 02:00:08 2,091,800 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5s_FF147DEF58280327E126F11A9918B00DAAF40F64\lvrs.sys
+ 2007-10-12 02:00:20 66,456 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5s_FF147DEF58280327E126F11A9918B00DAAF40F64\lvselsus.sys
+ 2007-10-12 02:00:42 41,752 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5s_FF147DEF58280327E126F11A9918B00DAAF40F64\LVUSBSta.sys
+ 2007-10-12 02:03:10 439,568 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5s_FF147DEF58280327E126F11A9918B00DAAF40F64\WUApp32.exe
+ 2007-10-12 01:57:28 416,280 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5v_D6FAB2B0793183BA050A90A5CC9D79EF71551623\lvcodec2.dll
+ 2007-10-12 01:57:40 195,096 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5v_D6FAB2B0793183BA050A90A5CC9D79EF71551623\lvcoinst.dll
+ 2007-10-12 02:00:20 490,008 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5v_D6FAB2B0793183BA050A90A5CC9D79EF71551623\LVUI2.dll
+ 2007-10-12 02:00:32 465,432 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5v_D6FAB2B0793183BA050A90A5CC9D79EF71551623\LVUI2RC.dll
+ 2007-10-12 02:00:42 41,752 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5v_D6FAB2B0793183BA050A90A5CC9D79EF71551623\LVUSBSta.sys
+ 2007-10-12 02:00:54 3,647,384 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5v_D6FAB2B0793183BA050A90A5CC9D79EF71551623\lvuvc.sys
+ 2007-10-12 02:01:28 236,056 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5v_D6FAB2B0793183BA050A90A5CC9D79EF71551623\lvWIAext.dll
+ 2007-10-12 02:03:10 439,568 -c--a-w C:\WINDOWS\system32\DRVSTORE\lvPRO5v_D6FAB2B0793183BA050A90A5CC9D79EF71551623\WUApp32.exe
- 2008-06-06 18:11:20 1,713,896 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-07-15 11:31:27 1,713,760 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
- 2008-04-14 10:48:22 385,024 ----a-w C:\WINDOWS\system32\fontext.dll
+ 2004-08-19 18:42:08 385,024 ----a-w C:\WINDOWS\system32\fontext.dll
+ 2006-03-17 14:45:52 1,757,184 ----a-w C:\WINDOWS\system32\imagX7.dll
+ 2006-03-17 14:45:54 497,296 ----a-w C:\WINDOWS\system32\imagXpr7.dll
+ 2006-03-17 14:45:54 258,048 ----a-w C:\WINDOWS\system32\imagXR7.dll
+ 2006-03-17 14:45:54 802,816 ----a-w C:\WINDOWS\system32\imagXRA7.dll
+ 2006-12-19 12:30:26 81,920 ----a-w C:\WINDOWS\system32\IoctlSvc.exe
- 2008-04-14 10:48:26 512,000 ----a-w C:\WINDOWS\system32\jscript.dll
+ 2008-05-09 10:55:06 512,000 ----a-w C:\WINDOWS\system32\jscript.dll
- 2008-04-14 01:15:32 216,064 ----a-w C:\WINDOWS\system32\moricons.dll
+ 2004-08-19 18:39:18 216,064 ----a-w C:\WINDOWS\system32\moricons.dll
- 2008-05-29 23:35:11 17,486,968 ----a-w C:\WINDOWS\system32\MRT.exe
+ 2008-06-25 16:15:46 17,972,344 ----a-w C:\WINDOWS\system32\MRT.exe
- 2008-04-14 10:48:28 1,003,008 ----a-w C:\WINDOWS\system32\msgina.dll
+ 2004-08-19 18:42:16 999,936 ----a-w C:\WINDOWS\system32\msgina.dll
- 2008-04-14 10:49:06 346,624 ----a-w C:\WINDOWS\system32\mspaint.exe
+ 2004-08-19 18:43:00 346,624 ----a-w C:\WINDOWS\system32\mspaint.exe
- 2008-04-14 10:48:30 279,552 ----a-w C:\WINDOWS\system32\mstask.dll
+ 2004-08-19 18:42:18 279,552 ----a-w C:\WINDOWS\system32\mstask.dll
- 2008-04-14 10:49:02 677,888 ----a-w C:\WINDOWS\system32\mstsc.exe
+ 2004-08-19 18:19:12 409,088 ----a-w C:\WINDOWS\system32\mstsc.exe
- 2008-04-14 10:48:30 91,136 ----a-w C:\WINDOWS\system32\mydocs.dll
+ 2004-08-19 18:42:20 91,136 ----a-w C:\WINDOWS\system32\mydocs.dll
+ 2008-02-18 19:04:04 95,600 ----a-w C:\WINDOWS\system32\NeroCo.dll
- 2008-04-14 10:48:30 1,713,664 ----a-w C:\WINDOWS\system32\netshell.dll
+ 2004-08-19 18:42:20 1,717,760 ----a-w C:\WINDOWS\system32\netshell.dll
- 2008-04-14 10:49:08 70,144 ----a-w C:\WINDOWS\system32\notepad.exe
+ 2004-08-19 18:43:00 70,144 ----a-w C:\WINDOWS\system32\notepad.exe
- 2008-04-14 10:48:34 172,032 ----a-w C:\WINDOWS\system32\photowiz.dll
+ 2004-08-19 18:42:22 172,032 ----a-w C:\WINDOWS\system32\photowiz.dll
- 2008-04-14 10:48:34 677,888 ----a-w C:\WINDOWS\system32\rasdlg.dll
+ 2004-08-19 18:42:22 677,376 ----a-w C:\WINDOWS\system32\rasdlg.dll
- 2008-04-14 10:49:10 382,976 ----a-w C:\WINDOWS\system32\Restore\rstrui.exe
+ 2004-08-19 18:43:08 382,976 ----a-w C:\WINDOWS\system32\Restore\rstrui.exe
- 2008-04-14 10:48:36 1,000,960 ----a-w C:\WINDOWS\system32\setupapi.dll
+ 2004-08-19 18:42:26 999,424 ----a-w C:\WINDOWS\system32\setupapi.dll
- 2008-04-14 10:48:38 8,503,296 ----a-w C:\WINDOWS\system32\shell32.dll
+ 2006-12-19 18:48:28 8,500,736 ----a-w C:\WINDOWS\system32\shell32.dll
- 2008-04-14 10:48:38 440,320 ----a-w C:\WINDOWS\system32\shimgvw.dll
+ 2004-08-19 18:42:26 440,320 ----a-w C:\WINDOWS\system32\shimgvw.dll
- 2004-08-20 12:00:00 139,264 ----a-w C:\WINDOWS\system32\sndvol32.exe
+ 2001-08-23 01:15:40 139,264 ----a-w C:\WINDOWS\system32\sndvol32.exe
- 2007-11-30 11:18:55 18,808 ------w C:\WINDOWS\system32\spmsg.dll
+ 2007-11-30 12:39:24 18,808 ------w C:\WINDOWS\system32\spmsg.dll
- 2008-04-14 10:48:46 122,368 ----a-w C:\WINDOWS\system32\stobject.dll
+ 2004-08-19 18:42:28 122,368 ----a-w C:\WINDOWS\system32\stobject.dll
- 2008-04-14 10:49:14 141,312 ----a-w C:\WINDOWS\system32\taskmgr.exe
+ 2004-08-19 18:43:14 141,312 ----a-w C:\WINDOWS\system32\taskmgr.exe
+ 2006-03-17 17:49:46 368,640 ----a-w C:\WINDOWS\system32\TwnLib4.dll
- 2008-04-14 10:48:46 220,160 ----a-w C:\WINDOWS\system32\uxtheme.dll
+ 2004-08-19 18:42:28 220,160 ----a-w C:\WINDOWS\system32\uxtheme.dll
+ 2004-08-19 18:43:18 218,112 ----a-w C:\WINDOWS\system32\VITrans\wordpad.exe
- 2008-04-14 10:49:16 435,200 ----a-w C:\WINDOWS\system32\wiaacmgr.exe
+ 2004-08-19 18:43:16 435,200 ----a-w C:\WINDOWS\system32\wiaacmgr.exe
+ 2007-10-21 21:51:58 323,624 ----a-w C:\WINDOWS\system32\wiaaut.dll
- 2008-04-14 10:48:48 592,384 ----a-w C:\WINDOWS\system32\wiashext.dll
+ 2004-08-19 18:42:30 592,384 ----a-w C:\WINDOWS\system32\wiashext.dll
- 2008-04-14 01:18:54 1,647,616 ----a-w C:\WINDOWS\system32\winbrand.dll
+ 2004-08-19 18:41:10 937,984 ----a-w C:\WINDOWS\system32\WINbrand.dll
- 2006-11-03 05:31:26 272,896 ----a-w C:\WINDOWS\system32\wmerror.dll
+ 2006-11-03 13:01:26 272,896 ----a-w C:\WINDOWS\system32\wmerror.dll
- 2006-11-03 05:34:08 8,287,232 ----a-w C:\WINDOWS\system32\wmploc.dll
+ 2006-11-03 13:04:08 8,287,232 ----a-w C:\WINDOWS\system32\wmploc.dll
- 2006-11-03 05:31:52 100,352 ----a-w C:\WINDOWS\system32\wmpshell.dll
+ 2006-11-03 13:01:52 100,352 ----a-w C:\WINDOWS\system32\wmpshell.dll
- 2006-11-02 07:22:02 43,520 ------w C:\WINDOWS\system32\wpdshextres.dll
+ 2006-11-02 14:52:02 43,520 ------w C:\WINDOWS\system32\wpdshextres.dll
- 2007-07-30 14:49:36 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
+ 2007-07-30 22:19:36 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
- 2008-04-14 03:06:26 2,966,528 ----a-w C:\WINDOWS\system32\xpsp2res.dll
+ 2008-04-14 03:06:26 3,455,488 ----a-w C:\WINDOWS\system32\xpsp2res.dll
- 2008-04-14 10:48:50 340,480 ----a-w C:\WINDOWS\system32\zipfldr.dll
+ 2004-08-19 18:42:34 339,968 ----a-w C:\WINDOWS\system32\zipfldr.dll
+ 2007-03-20 23:22:04 972,336 ----a-w C:\WINDOWS\UNNeroBackItUp.exe
+ 2008-02-28 20:38:48 972,072 ----a-w C:\WINDOWS\UNNeroMediaHome.exe
+ 2007-02-28 18:41:02 972,336 ----a-w C:\WINDOWS\UNNeroShowTime.exe
+ 2007-03-21 23:02:12 972,336 ----a-w C:\WINDOWS\UNNeroVision.exe
+ 2008-02-26 19:14:26 972,072 ----a-w C:\WINDOWS\UNRecode.exe
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((( Cargando Puntos Reg ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Nota* entradas vacías & entradas legítimas predeterminadas no son mostradas
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 07:48 15360]
"MsnMsgr"="C:\Archivos de programa\Windows Live\Messenger\MsnMsgr.Exe" [2007-11-23 21:29 5724184]
"TuneUp MemOptimizer"="C:\Archivos de programa\TuneUp Utilities 2008\MemOptimizer.exe" [2008-03-03 09:48 197376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"!AVG Anti-Spyware"="C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\_avgas.exe" [2007-12-10 11:26 6731312]
"egui"="C:\Archivos de programa\ESET\ESET NOD32 Antivirus\egui.exe" [2008-03-13 16:48 1443072]
"NodLogin"="C:\Archivos de programa\ESET\ESET NOD32 Antivirus\nodlogin.exe" [2008-06-27 16:40 358380]
"ISUSPM Startup"="C:\Archivos de programa\Archivos comunes\InstallShield\UpdateService\isuspm.exe" [2005-08-11 16:30 249856]
"ISUSScheduler"="C:\Archivos de programa\Archivos comunes\InstallShield\UpdateService\issch.exe" [2005-08-11 16:30 81920]
"LogitechCommunicationsManager"="C:\Archivos de programa\Archivos comunes\LogiShrd\LComMgr\Communications_Helper.exe" [2007-10-25 16:33 563984]
"LogitechQuickCamRibbon"="C:\Archivos de programa\Logitech\QuickCam\Quickcam.exe" [2007-10-25 16:37 2178832]
"QuickTime Task"="C:\Archivos de programa\QuickTime\qttask.exe" [2008-03-28 23:37 413696]
"NeroFilterCheck"="C:\Archivos de programa\Archivos comunes\Nero\Lib\NeroCheck.exe" [2008-02-28 09:59 570664]
"NBKeyScan"="C:\Archivos de programa\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 16:29 2221352]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 07:48 15360]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoRecentDocsNetHood"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2007-10-04 17:14 8491008 C:\WINDOWS\system32\nvcpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-03-28 23:37 413696 C:\Archivos de programa\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
-ra------ 2007-05-28 10:14 528384 C:\Archivos de programa\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"odserv"=3 (0x3)
"WZCSVC"=2 (0x2)
"lanmanserver"=2 (0x2)
"RemoteRegistry"=2 (0x2)
"Schedule"=2 (0x2)
"seclogon"=2 (0x2)
"W32Time"=2 (0x2)
"Browser"=2 (0x2)
"wscsvc"=2 (0x2)
"ose"=3 (0x3)
"IDriverT"=3 (0x3)
"Themes"=2 (0x2)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
"SoundMan"=SOUNDMAN.EXE
"SMSERIAL"=sm56hlpr.exe
"Adobe Reader Speed Launcher"="C:\Archivos de programa\Adobe\Reader 8.0\Reader\Reader_sl.exe"
"QuickTime Task"="C:\Archivos de programa\QuickTime\qttask.exe" -atboottime
"SunJavaUpdateSched"="C:\Archivos de programa\Java\jre1.6.0_03\bin\jusched.exe"
"Synchronization Manager"=%SystemRoot%\system32\mobsync.exe /logon
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\WINDOWS\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Archivos de programa\\FlashGet\\flashget.exe"=
"C:\\Archivos de programa\\Autodesk\\Backburner\\monitor.exe"=
"C:\\Archivos de programa\\Autodesk\\Backburner\\manager.exe"=
"C:\\Archivos de programa\\Autodesk\\Backburner\\server.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\\Archivos de programa\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Archivos de programa\\@Last Software\\SketchUp 5\\SketchUp.exe"=
"C:\\Archivos de programa\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Archivos de programa\\Graphisoft\\ArchiCAD 10\\ArchiCAD.exe"=
"C:\\Archivos de programa\\Ares\\Ares.exe"=
"C:\\Archivos de programa\\BearShare Applications\\BearShare\\BearShare.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"48997:TCP"= 48997:TCP:tcp48997
"48997:UDP"= 48997:UDP:udp48997
R1 epfwtdir;epfwtdir;C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2008-03-13 16:52]
R1 eusk2par;EUTRON SmartKey Parallel Driver;C:\WINDOWS\system32\Drivers\eusk2par.sys [2004-11-18 11:49]
R3 SISNICXP;SiS PCI Fast Ethernet Adapter Driver for NDIS51;C:\WINDOWS\system32\DRIVERS\sisnicxp.sys [2004-11-05 05:43]
S2 UxTuneUp;TuneUp Ampliación del thema;C:\WINDOWS\System32\svchost.exe [2008-04-14 07:49]
S3 ddsxeiservice;ddsxeiservice2;C:\Archivos de programa\sXe Injected\ddsxei.sys []
S3 eusk3usb;SmartKey 3 USB;C:\WINDOWS\system32\Drivers\eusk3usb.sys [2004-11-18 11:49]
S3 gggen;Generic USB Flash Driver;C:\WINDOWS\system32\DRIVERS\gggen.sys [2006-09-28 09:10]
S3 ip100xp;IC Plus IP100 10/100 Fast Ethernet Adapter NT Driver;C:\WINDOWS\system32\DRIVERS\ipfnd51.sys [2004-08-04 01:04]
S3 MREMP50;MREMP50 NDIS Protocol Driver;C:\ARCHIV~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver;C:\ARCHIV~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver;C:\ARCHIV~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver;C:\ARCHIV~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 TuneUp.Defrag;TuneUp Drive Defrag Service;C:\WINDOWS\System32\TuneUpDefragService.exe [2008-03-08 15:15]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM);C:\WINDOWS\system32\DRIVERS\w300bus.sys [2006-03-13 16:49]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\w300mdfl.sys [2006-03-13 16:50]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\w300mdm.sys [2006-03-13 16:50]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\w300mgmt.sys [2006-03-13 16:50]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\w300obex.sys [2006-03-13 16:50]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1cd2c7bd-2ab9-11dd-9d46-0013d477c13f}]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL \Install\WPI\wpi.hta
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7eead936-279a-11dd-9d3e-0013d477c13f}]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL \Install\WPI\wpi.hta
*Newly Created Service* - CATCHME
.
Contenido de carpeta 'Tareas Programadas'
"2008-05-15 01:11:18 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Archivos de programa\Apple Software Update\SoftwareUpdate.exe
"2008-06-19 14:00:00 C:\WINDOWS\Tasks\Mantenimiento con 1 clic.job"
- C:\Archivos de programa\TuneUp Utilities 2008\OneClickStarter.exe
.
- - - - ORPHANS REMOVED - - - -
MSConfigStartUp-Steam - c:\archivos de programa\valve\steam\steam.exe
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-07-16 11:41:06
Windows 5.1.2600 Service Pack 3 NTFS
escaneando procesos ocultos ...
escaneando entradas ocultas de autostart ...
escaneando archivos ocultos ...
**************************************************************************
.
Tiempo completado: 2008-07-16 11:45:02
ComboFix-quarantined-files.txt 2008-07-16 14:43:53
ComboFix2.txt 2008-06-18 03:12:02
16 dirs 14,993,440,768 bytes libres
20 dirs 15,718,187,008 bytes libres
500
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:54:05 a.m., on 16/07/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Archivos comunes\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Archivos de programa\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Archivos de programa\Archivos comunes\LogiShrd\LVCOMSER\LVComSer.exe
C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Archivos de programa\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\IoctlSvc.exe
C:\Archivos de programa\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\_avgas.exe
C:\Archivos de programa\ESET\ESET NOD32 Antivirus\egui.exe
C:\Archivos de programa\Archivos comunes\InstallShield\UpdateService\issch.exe
C:\Archivos de programa\Archivos comunes\LogiShrd\LComMgr\Communications_Helper.exe
C:\Archivos de programa\Logitech\QuickCam\Quickcam.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Archivos de programa\Windows Live\Messenger\MsnMsgr.Exe
C:\Archivos de programa\TuneUp Utilities 2008\MemOptimizer.exe
C:\Archivos de programa\Archivos comunes\Logishrd\LQCVFX\COCIManager.exe
C:\HiJackThis\HiJackThis.exe
c:\archivos de programa\logitech\quickcam\lu\lulnchr.exe
c:\archivos de programa\logitech\quickcam\lu\LogitechUpdate.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos
O2 - BHO: Aplicación auxiliar de vínculos de Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Archivos de programa\FlashGet\jccatch.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Archivos de programa\FlashGet\getflash.dll
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\_avgas.exe" /minimized
O4 - HKLM\..\Run: [egui] "C:\Archivos de programa\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [NodLogin] C:\Archivos de programa\ESET\ESET NOD32 Antivirus\nodlogin.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Archivos de programa\Archivos comunes\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Archivos de programa\Archivos comunes\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Archivos de programa\Archivos comunes\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Archivos de programa\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Archivos de programa\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Archivos de programa\Archivos comunes\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Archivos de programa\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Archivos de programa\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Archivos de programa\TuneUp Utilities 2008\MemOptimizer.exe" autostart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Servicio de red')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Descargar con Fl&ashGet - C:\Archivos de programa\FlashGet\jc_link.htm
O8 - Extra context menu item: &Descargar todo con Flas&hGet - C:\Archivos de programa\FlashGet\jc_all.htm
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Agregar entrada en Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Archivos de programa\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Archivos de programa\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Archivos de programa\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) -
http://downloads.ewido.net/ewidoOnlineScan.cabO16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) -
http://messenger.zone.msn.com/ES-AR/a-UNO1/GAME_UNO1.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://www.update.microsoft.com/windowsupd...b?1195855598417O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) -
http://www.systemrequirementslab.com/sysreqlab2.cabO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.microsoft.com/microsoftu...b?1196210055109O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) -
http://josefain.spaces.live.com/PhotoUpload/MsnPUpld.cabO16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cabO23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Archivos de programa\Ares&#
malware inborrable, HeLp mE!!!
Jul 15 2008, 10:44 PM
