Tema: Uso de la CPU 100%
Ver Mensaje Individual
  post #3 (permalink)  
Antiguo 05/08/08, 19:19:35
Tanque13 Tanque13 está offline
Usuario
  
Registrado: feb 2006
Ubicación: Tanzania
Mensajes: 2
Re: Uso de la CPU 100%
Deckard's System Scanner v20071014.68
Run by Administrador on 2008-08-05 19:15:52
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

CreateFirstRunRp is disabled or missing; attempting to fix...success.
System Restore is disabled; attempting to re-enable...success.


-- Last 1 Restore Point(s) --
1: 2008-08-05 22:15:57 UTC - RP1 - Punto de control del sistema


Backed up registry hives.
Performed disk cleanup.



-- HijackThis (run as Administrador.exe) ---------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:16:41 p.m., on 05/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Archivos de programa\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Archivos de programa\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Archivos de programa\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\INF\MSI\SlowDownCPU\SlowDownCPU.exe
C:\Archivos de programa\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Archivos de programa\Analog Devices\SoundMAX\Smax4.exe
C:\Archivos de programa\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Administrador\Escritorio\dss.exe
C:\ARCHIV~1\TRENDM~1\HIJACK~1\Administrador.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Aplicación auxiliar de vínculos de Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\ARCHIV~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Archivos de programa\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [WinSys2] C:\WINDOWS\system32\winsys2.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SlowDownCPU] C:\WINDOWS\INF\MSI\SlowDownCPU\SlowDownCPU.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Archivos de programa\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Archivos de programa\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [egui] "C:\Archivos de programa\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Servicio de red')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Servicio de red')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{F47C3988-B27D-42FA-BD45-DB8EE518F7B6}: NameServer = 200.69.128.1,200.69.128.2
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Archivos de programa\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Archivos de programa\Ares\chatServer.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Archivos de programa\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Archivos de programa\ESET\ESET Smart Security\ekrn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Archivos de programa\Analog Devices\SoundMAX\SMAgent.exe

--
End of file - 5548 bytes

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R3 pcouffin (VSO Software pcouffin) - c:\windows\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
R3 RushTopDevice - c:\windows\inf\msi\slowdowncpu\rushtop.sys <Not Verified; Your Corporation; Your Product Name>
R3 SlowDownCPU - c:\windows\inf\msi\slowdowncpu\ntglm7x.sys <Not Verified; Your Corporation; Your Product Name>

S2 OMSCAN - \sys"u (file missing)
S3 ASPI (Advanced SCSI Programming Interface Driver) - c:\windows\system32\drivers\aspi32.sys <Not Verified; Adaptec; Adaptec's ASPI Layer>
S3 GMSIPCI - e:\install\gmsipci.sys (file missing)


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 ekrn (Eset Service) - "c:\archivos de programa\eset\eset smart security\ekrn.exe" <Not Verified; ESET; Eset Smart Security>

S3 AresChatServer (Ares Chatroom server) - c:\archivos de programa\ares\chatserver.exe <Not Verified; Ares Development Group; Ares Chat Server>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Files created between 2008-07-05 and 2008-08-05 -----------------------------

2008-08-05 13:56:09 0 d-------- C:\WINDOWS\system32\QuickTime
2008-08-05 13:56:05 102400 --a------ C:\WINDOWS\system32\tsccvid.dll <Not Verified; TechSmith Corporation; TechSmith Screen Capture Codec>
2008-08-05 13:55:54 0 d-------- C:\Archivos de programa\TechSmith
2008-08-05 13:41:20 0 d-------- C:\Archivos de programa\Lavasoft
2008-08-05 13:40:37 0 d-------- C:\Archivos de programa\Archivos comunes\Wise Installation Wizard
2008-08-05 02:44:51 0 d-------- C:\Archivos de programa\Trend Micro
2008-08-05 01:55:22 0 d-------- C:\Archivos de programa\Panda Security
2008-08-05 01:24:40 16512 --a------ C:\WINDOWS\system32\drivers\ASPI32.SYS <Not Verified; Adaptec; Adaptec's ASPI Layer>
2008-08-05 01:22:15 0 d-------- C:\Archivos de programa\4Musics Multiformat Converter
2008-08-04 21:44:50 0 d-------- C:\WINDOWS\pss
2008-08-04 21:41:25 352 --ah----- C:\WINDOWS\nod32fixtemdono.reg
2008-08-03 02:19:35 306688 --a------ C:\WINDOWS\IsUninst.exe <Not Verified; InstallShield Software Corporation; InstallShield® unInstaller>
2008-08-03 02:18:25 0 d-------- C:\Archivos de programa\HP
2008-08-03 01:27:20 0 d-------- C:\audiograbber
2008-08-03 00:51:09 47360 --a------ C:\WINDOWS\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
2008-08-03 00:51:00 626688 --a------ C:\WINDOWS\system32\vp7vfw.dll <Not Verified; On2.com; On2_VP70>
2008-08-03 00:51:00 217127 --a------ C:\WINDOWS\system32\drv43260.dll <Not Verified; RealNetworks, Inc.; RealVideo 9 (32-bit)>
2008-08-03 00:51:00 208935 --a------ C:\WINDOWS\system32\drv33260.dll <Not Verified; RealNetworks, Inc.; RealVideo 8 (32-bit)>
2008-08-03 00:51:00 176165 --a------ C:\WINDOWS\system32\drv23260.dll <Not Verified; RealNetworks, Inc.; RealVideo G2 (32-bit)>
2008-08-03 00:51:00 65602 --a------ C:\WINDOWS\system32\cook3260.dll <Not Verified; RealNetworks, Inc.; RealPlayer 10>
2008-08-03 00:50:58 0 d-------- C:\Archivos de programa\VSO
2008-08-02 17:25:21 0 d-------- C:\WINDOWS\Sun
2008-08-02 16:28:41 0 d-------- C:\Archivos de programa\Vstplugins
2008-08-02 16:28:23 0 d-------- C:\Archivos de programa\Sony
2008-08-02 16:23:02 0 d-------- C:\Archivos de programa\MSBuild
2008-08-02 16:18:41 0 d-------- C:\WINDOWS\system32\XPSViewer
2008-08-02 16:18:08 0 d-------- C:\Archivos de programa\Reference Assemblies
2008-08-02 16:00:51 0 d-------- C:\Archivos de programa\Sony Setup
2008-08-02 15:53:50 0 d-------- C:\Archivos de programa\Ant Movie Catalog
2008-08-02 15:32:12 0 d-------- C:\Archivos de programa\honestech
2008-08-02 15:29:56 0 --a------ C:\WINDOWS\nsreg.dat
2008-08-02 15:27:41 0 d-------- C:\VideoCAM Express V2
2008-08-02 15:23:16 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
2008-08-02 15:22:58 30208 --a------ C:\WINDOWS\system32\wdmioctl.dll <Not Verified; Analog Devices Inc.; Analog Devices Inc. wdmioctl>
2008-08-02 15:22:57 1285632 --a------ C:\WINDOWS\system32\SMMedia.dll <Not Verified; Analog Devices; SoundMAX Integrated Digital Audio>
2008-08-02 15:22:54 0 d-------- C:\WINDOWS\VirtualEar
2008-08-02 15:22:54 765952 --a------ C:\WINDOWS\system\crlds3d.dll <Not Verified; Sensaura Ltd; Sensaura 3DPA>
2008-08-02 15:22:51 49152 --a------ C:\WINDOWS\system32\DSndUp.exe <Not Verified; Analog Devices Inc.; adi DSndUp>
2008-08-02 15:22:51 45056 --a------ C:\WINDOWS\system32\CleanUp.exe <Not Verified; adi; adi CleanUp>
2008-08-02 15:22:51 0 d-------- C:\Archivos de programa\Analog Devices
2008-08-02 15:18:32 0 d-------- C:\Archivos de programa\Intel
2008-08-02 15:17:30 0 d-------- C:\WINDOWS\system32\ReinstallBackups
2008-08-02 15:11:26 0 d-------- C:\WINDOWS\nview
2008-08-02 15:07:49 223128 --a------ C:\WINDOWS\system32\drivers\dtscsi.sys
2008-08-02 15:07:48 0 d-------- C:\Archivos de programa\DAEMON Tools
2008-08-02 15:06:08 7287808 --a------ C:\WINDOWS\system32\vistaui.exe
2008-08-02 15:05:39 0 d-------- C:\Archivos de programa\Winamp
2008-08-02 15:05:28 0 d-------- C:\Archivos de programa\Messenger Plus! Live
2008-08-02 15:05:11 0 d-------- C:\Archivos de programa\Windows Live Safety Center
2008-08-02 15:05:08 0 d------c- C:\WINDOWS\system32\DRVSTORE
2008-08-02 15:05:05 0 d-------- C:\Archivos de programa\MSN Messenger
2008-08-02 15:04:13 0 d-------- C:\WINDOWS\system32\es-es
2008-08-02 15:01:54 364544 --a------ C:\WINDOWS\system32\TwnLib4.dll <Not Verified; Pegasus Imaging Corp.; TwnLib4>
2008-08-02 15:01:54 471040 --a------ C:\WINDOWS\system32\imagXRA7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2008-08-02 15:01:54 262144 --a------ C:\WINDOWS\system32\imagXR7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2008-08-02 15:01:53 1568768 --a------ C:\WINDOWS\system32\imagX7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2008-08-02 15:01:53 0 d-------- C:\Archivos de programa\Archivos comunes\Ahead
2008-08-02 15:01:52 0 d-------- C:\Archivos de programa\Nero
2008-08-02 15:01:48 0 d-------- C:\Archivos de programa\DVD Shrink
2008-08-02 15:01:47 0 d-------- C:\Archivos de programa\DVD Decrypter
2008-08-02 15:01:44 96256 --a------ C:\WINDOWS\system32\drivers\sptd8173.sys
2008-08-02 15:01:44 642560 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-08-02 15:01:36 0 d-------- C:\Archivos de programa\Lavalys
2008-08-02 15:01:30 0 d-------- C:\Archivos de programa\Yahoo!
2008-08-02 15:01:27 0 d-------- C:\Archivos de programa\CCleaner
2008-08-02 15:01:21 0 d-------- C:\Archivos de programa\Real Alternative
2008-08-02 15:01:08 0 d-------- C:\Archivos de programa\QuickTime Alternative
2008-08-02 15:01:08 0 d-------- C:\Archivos de programa\Media Player Classic
2008-08-02 15:00:44 0 d--h----- C:\Archivos de programa\InstallShield Installation Information
2008-08-02 15:00:44 0 d-------- C:\Archivos de programa\CyberLink
2008-08-02 15:00:42 0 d-------- C:\Archivos de programa\Archivos comunes\InstallShield
2008-08-02 15:00:26 765952 --a------ C:\WINDOWS\system32\xvidcore.dll
2008-08-02 15:00:26 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2008-08-02 15:00:25 0 d-------- C:\Archivos de programa\K-Lite Codec Pack
2008-08-02 15:00:14 0 d-------- C:\Archivos de programa\VideoLAN
2008-08-02 15:00:00 0 d-------- C:\Archivos de programa\Webteh
2008-08-02 14:59:58 0 d-------- C:\Archivos de programa\uTorrent
2008-08-02 14:59:54 0 d-------- C:\Archivos de programa\Ares
2008-08-02 14:59:00 0 d-------- C:\Archivos de programa\Microsoft Works
2008-08-02 14:58:55 0 d-------- C:\WINDOWS\SHELLNEW
2008-08-02 14:58:54 0 d-------- C:\Archivos de programa\Microsoft.NET
2008-08-02 14:57:35 0 d-------- C:\Archivos de programa\Archivos comunes\Adobe
2008-08-02 14:56:08 0 d-------- C:\Archivos de programa\Java
2008-08-02 14:56:08 0 d-------- C:\Archivos de programa\Archivos comunes\Java
2008-08-02 14:55:46 0 d-------- C:\WINDOWS\system32\DirectX
2008-08-02 14:51:03 0 d-------- C:\WINDOWS\system32\URTTemp
2008-08-02 14:47:16 0 d-------- C:\Archivos de programa\Windows Media Connect 2
2008-08-02 14:46:41 0 d-------- C:\WINDOWS\system32\LogFiles
2008-08-02 14:46:41 0 d-------- C:\WINDOWS\system32\drivers\UMDF
2008-08-02 14:46:31 0 d--h----- C:\WINDOWS\system32\GroupPolicy
2008-08-02 14:45:42 0 d-------- C:\WINDOWS\SoftwareDistribution
2008-08-02 14:45:41 0 d-------- C:\WINDOWS\Prefetch
2008-08-02 14:45:40 0 d---s---- C:\WINDOWS\system32\Microsoft
2008-08-02 14:44:26 0 d--h----- C:\WINDOWS\$hf_mig$
2008-08-02 14:44:10 0 -rahs---- C:\MSDOS.SYS
2008-08-02 14:44:10 0 -rahs---- C:\IO.SYS
2008-08-02 14:44:10 0 --a------ C:\CONFIG.SYS
2008-08-02 14:44:10 0 --a------ C:\AUTOEXEC.BAT
2008-08-02 14:43:58 0 d-------- C:\WINDOWS\system32\dllcache
2008-08-02 14:43:03 0 dr------- C:\WINDOWS\Offline Web Pages
2008-08-02 14:43:03 0 d---s---- C:\WINDOWS\Downloaded Program Files
2008-08-02 14:42:50 0 d--h----- C:\Archivos de programa\WindowsUpdate
2008-08-02 14:42:45 0 d-------- C:\Archivos de programa\Servicios en línea
2008-08-02 14:42:05 0 d---s---- C:\WINDOWS\Tasks
2008-08-02 14:42:03 0 d-------- C:\Archivos de programa\Archivos comunes\MSSoap
2008-08-02 14:42:00 0 d-------- C:\WINDOWS\srchasst
2008-08-02 14:41:59 0 d-------- C:\WINDOWS\system32\Macromed
2008-08-02 14:41:47 0 d-------- C:\WINDOWS\system32\Restore
2008-08-02 14:41:37 336384 --a------ C:\WINDOWS\system32\mstask.dll <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:40:58 21900 --a------ C:\WINDOWS\system32\emptyregdb.dat
2008-08-02 14:40:39 0 d-------- C:\WINDOWS\Registration
2008-08-02 14:40:20 0 d-------- C:\Archivos de programa\MSN Gaming Zone
2008-08-02 14:40:08 159232 --a------ C:\WINDOWS\system32\sndvol32.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:40:01 0 d-------- C:\WINDOWS\Cursores
2008-08-02 14:40:00 83968 --a------ C:\WINDOWS\system32\charmap.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:40:00 118272 --a------ C:\WINDOWS\system32\calc.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:39:59 123392 --a------ C:\WINDOWS\system32\winmine.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:39:59 60416 --a------ C:\WINDOWS\system32\sol.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:39:58 131584 --a------ C:\WINDOWS\system32\mshearts.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:39:58 58880 --a------ C:\WINDOWS\system32\freecell.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:39:47 364544 --a------ C:\WINDOWS\system32\mspaint.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:39:47 0 d-------- C:\Archivos de programa\Windows NT
2008-08-02 14:39:46 543232 --a------ C:\WINDOWS\system32\spider.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:39:45 718848 --a------ C:\WINDOWS\system32\mstsc.exe <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 14:39:43 0 d-------- C:\WINDOWS\system32\MsDtc
2008-08-02 14:39:41 0 d-------- C:\WINDOWS\system32\Com
2008-08-02 11:19:13 0 d-------- C:\WINDOWS
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\WinSxS
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Web
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\twain_32
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\wins
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\wbem
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\VITrans
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\usmt
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\spool
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\ShellExt
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\Setup
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\ras
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\PreInstall
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\oobe
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\npp
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\mui
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\inetsrv
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\IME
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\icsxml
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\ias
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\export
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\drivers
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\drivers\etc
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\drivers\disdn
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\dhcp
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\config
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\3com_dmi
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\3082
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\3076
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\2052
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\1054
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\1042
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\1041
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\1037
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\1033
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\1031
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\1028
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system32\1025
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\system
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\security
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Resources
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\repair
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Provisioning
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\PeerNet
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\pchealth
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\mui
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\msapps
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\msagent
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Media
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\java
2008-08-02 11:19:13 0 d--h----- C:\WINDOWS\inf
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\ime
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Help
2008-08-02 11:19:13 0 dr--s---- C:\WINDOWS\Fonts
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\ehome
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Driver Cache
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Debug
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Cursors
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Connection Wizard
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\Config
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\AppPatch
2008-08-02 11:19:13 0 d-------- C:\WINDOWS\addins
2008-08-02 10:31:36 4026112 --a------ C:\WINDOWS\system32\drivers\ALCXWDM.SYS <Not Verified; Realtek Semiconductor Corp.; Windows (R) WDM driver for Realtek AC'97 Audio(HRTF data Copyright 1994 by MIT Media Lab)>
2008-08-02 10:28:34 0 d--hs---- C:\WINDOWS\Installer
2008-08-02 10:28:33 0 d-------- C:\Archivos de programa\Archivos comunes\ODBC
2008-08-02 10:28:29 0 d-------- C:\Archivos de programa\Archivos comunes\SpeechEngines
2008-08-02 10:28:28 0 d-------- C:\Archivos de programa
2008-08-02 10:28:28 0 d-------- C:\Archivos de programa\Archivos comunes
2008-08-02 10:28:03 71680 --a------ C:\WINDOWS\NOTEPAD.EXE <Not Verified; Microsoft Corporation; Sistema operativo Microsoft® Windows®>
2008-08-02 10:27:26 0 d-------- C:\WINDOWS\system32\CatRoot2
2008-08-02 10:27:26 0 d-------- C:\WINDOWS\system32\CatRoot
2008-08-02 10:25:38 147456 --a------ C:\WINDOWS\system32\RTLCPAPI.dll <Not Verified; ; RtlCPAPI Module>
2008-08-02 10:25:36 577536 --a------ C:\WINDOWS\SOUNDMAN.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek Sound Manager>
2008-08-02 10:25:35 10528768 --a------ C:\WINDOWS\system32\RTLCPL.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek Audio Sound Effect Manager>
2008-08-02 10:25:34 217088 --a------ C:\WINDOWS\Alcrmv.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Removing driver Tool>
2008-08-02 10:24:21 0 d-------- C:\Documents and Settings
2008-08-02 10:24:20 0 d--hs---- C:\System Volume Information
2008-07-31 04:15:42 208896 --a------ C:\WINDOWS\system32\WinSys2.exe <Not Verified; ; DOT Application>
2008-07-31 04:15:42 131072 --a------ C:\WINDOWS\system32\smdll.dll <Not Verified; ; SMdll Dynamic Link Library>
2008-07-31 04:15:42 1630208 --a------ C:\WINDOWS\system32\nwiz.exe
2008-07-31 04:15:41 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
2008-07-31 04:15:41 1703936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2008-07-31 04:15:39 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2008-07-31 04:15:39 286720 --a------ C:\WINDOWS\system32\nvnt4cpl.dll
2008-07-31 04:15:38 1486848 --a------ C:\WINDOWS\system32\nview.dll
2008-07-31 04:15:37 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
2008-07-31 04:15:35 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
2008-07-31 04:15:35 614400 --a------ C:\WINDOWS\system32\msvcr80.dll <Not Verified; Microsoft Corporation; Microsoft® Visual Studio® .NET>
2008-07-31 04:15:35 1777664 --a------ C:\WINDOWS\system32\msicpl.dll <Not Verified; MSI; MSI MsiCpl>
2008-07-31 04:15:35 130048 --a------ C:\WINDOWS\system32\MadCHook.dll <Not Verified; www.madshi.net; madCHook>
2008-07-31 04:15:35 425984 --a------ C:\WINDOWS\system32\keystone.exe
2008-07-31 04:15:35 262144 --a------ C:\WINDOWS\system32\HookShield.dll
2008-07-31 04:15:35 258048 --a------ C:\WINDOWS\system32\HookMAp.dll
2008-07-31 04:15:35 32768 --a------ C:\WINDOWS\system32\Auxiliary.dll


-- Find3M Report ---------------------------------------------------------------

2008-08-05 19:05:36 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\uTorrent
2008-08-05 15:42:06 668 --a------ C:\Documents and Settings\Administrador\Datos de programa\vso_ts_preview.xml
2008-08-05 15:42:06 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Vso
2008-08-05 01:37:29 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Thinstall
2008-08-04 21:40:56 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\ESET
2008-08-03 12:49:52 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Ahead
2008-08-03 00:51:14 34 --a------ C:\Documents and Settings\Administrador\Datos de programa\pcouffin.log
2008-08-03 00:51:09 47360 --a------ C:\Documents and Settings\Administrador\Datos de programa\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
2008-08-03 00:51:09 1144 --a------ C:\Documents and Settings\Administrador\Datos de programa\pcouffin.inf
2008-08-03 00:51:09 7887 --a------ C:\Documents and Settings\Administrador\Datos de programa\pcouffin.cat
2008-08-02 21:51:29 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\CyberLink
2008-08-02 21:39:10 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Adobe
2008-08-02 17:40:58 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Media Player Classic
2008-08-02 17:25:13 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Sun
2008-08-02 17:14:40 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\vlc
2008-08-02 16:32:10 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Publish Providers
2008-08-02 16:31:48 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Sony
2008-08-02 16:24:08 498788 --a------ C:\WINDOWS\system32\perfh00A.dat
2008-08-02 16:24:08 89136 --a------ C:\WINDOWS\system32\perfc00A.dat
2008-08-02 16:09:42 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\BSplayer Pro
2008-08-02 16:01:56 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Sony Setup
2008-08-02 16:00:45 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Macromedia
2008-08-02 15:30:03 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Talkback
2008-08-02 15:29:52 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Mozilla
2008-08-02 15:06:11 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Identities
2008-08-02 15:01:21 0 d-------- C:\Documents and Settings\Administrador\Datos de programa\Real
2008-08-02 10:34:29 62 --ahs---- C:\Documents and Settings\Administrador\Datos de programa\desktop.ini


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"DAEMON Tools"="C:\Archivos de programa\DAEMON Tools\daemon.exe" [10/12/2005 11:57 a.m.]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [03/05/2008 11:16 a.m.]
"nwiz"="nwiz.exe" [03/05/2008 11:16 a.m. C:\WINDOWS\system32\nwiz.exe]
"WinSys2"="C:\WINDOWS\system32\winsys2.exe" [09/07/2008 12:12 p.m.]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray. dll" [03/05/2008 11:16 a.m.]
"SlowDownCPU"="C:\WINDOWS\INF\MSI\SlowDownCPU\Slow DownCPU.exe" [24/02/2005 11:22 p.m.]
"SoundMAXPnP"="C:\Archivos de programa\Analog Devices\SoundMAX\SMax4PNP.exe" [14/10/2004 09:11 a.m.]
"SoundMAX"="C:\Archivos de programa\Analog Devices\SoundMAX\Smax4.exe" [06/08/2004 07:27 a.m.]
"egui"="C:\Archivos de programa\ESET\ESET Smart Security\egui.exe" [25/10/2007 05:26 a.m.]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [19/08/2004 12:42 p.m.]

[HKEY_USERS\.default\software\microsoft\windows\cur rentversion\runonce]
"nltide_3"=rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\explorer]
"NoDesktopCleanupWizard"=1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\policies\explorer]
"ForceClassicControlPanel"=1 (0x1)
"NoStartBanner"=1 (0x1)
"NoRecentDocsMenu"=1 (0x1)
"NoRecentDocsHistory"=1 (0x1)
"NoSMHelp"=1 (0x1)
"NoSMConfigurePrograms"=1 (0x1)
"NoResolveTrack"=1 (0x1)
"LinkResolveIgnoreLinkInfo"=1 (0x1)
"NoResolveSearch"=1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\cur rentversion\policies\explorer]
"ForceClassicControlPanel"=1 (0x1)
"NoStartBanner"=1 (0x1)
"NoRecentDocsMenu"=1 (0x1)
"NoRecentDocsHistory"=1 (0x1)
"NoSMHelp"=1 (0x1)
"NoSMConfigurePrograms"=1 (0x1)
"NoResolveTrack"=1 (0x1)
"LinkResolveIgnoreLinkInfo"=1 (0x1)
"NoResolveSearch"=1 (0x1)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\aawservice]
@="Service"


[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{EEBF9CA6-567B-41cd-B5F6-EF2C7FEF37B5}]
rundll32.exe advpack.dll,LaunchINFSectionEx C:\WINDOWS\INF\wmactedp.inf,PerUserStub,,4



-- End of Deckard's System Scanner: finished at 2008-08-05 19:17:41 ------------
Responder Con Cita