• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 11

    Virus o troyanos in detectables por antivirus y herramientas

    H ola como sabrán, tuve hace poco tiempo un problema con mi ordenador, mi ordenador empezó a elevar su "uso de cpu a 100%", y no baja. Intente scanear con antivirus online y mas el ...

    1. #1
      Usuario Avatar de h4ckm4n
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      68

      Virus o troyanos in detectables por antivirus y herramientas

      Hola como sabrán, tuve hace poco tiempo un problema con mi ordenador, mi ordenador empezó a elevar su "uso de cpu a 100%", y no baja. Intente scanear con antivirus online y mas el Avast 2013 full que tengo instalado pero no nada funcionaba. El sistema empeorando cada ves mas, e opte por fijarme que ningún servicio que no sea parte del sistema estuviesen molestando o si algún controlador de .sys este fallando y no era nada de eso.
      he recurrido a limpiarla en modo de seguro con los siguientes programas Malwarebytes,ComboFix,SDFix,hijackthis y otros. Pero nada Resulto, hace unos días prendo la Pc y llegando al cartel de bienvenida del windows xp sp3, me salta un cuadro blanco con un botón para aceptar que no dice nada y tiene dos símbolos erróneos algo así ---> ▄ ▄. Digamos algo parecido.

      Me seria de gran utilidad un poco de ayuda de su parte, Saludos

      atte: h4ckm4n

    2. #2
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Virus o troyanos in detectables por antivirus y herramientas

      Hola h4ckm4n

      al Foro.

      Consejos para antes de publicar un nuevo mensaje

      Políticas del Foro de InfoSpyware

      Políticas Foro Oficial de HijackThis en español
      --------------------------------------------------


      Hola como sabrán, tuve hace poco tiempo un problema con mi ordenador



      Cuantos mas programas instales mas problemas puedes tener en el consumo del CPU.


      Sobre Combofix::

      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.

      Sobre Sdfix, esta obsoleto hace años no lo usamos.


      Comenta características de tu maquina.


      En tu próxima respuesta pegarnos ese reporte del Combofix que ejecutaste.



      Sobre el problema que mencionas:


      me salta un cuadro blanco con un botón para aceptar que no dice nada y tiene dos símbolos erróneos algo así ---> ▄ ▄. Digamos algo parecido.

      Abres el Block de Notas. Pega dentro de el lo siguiente, no va la palabra Código:


      Código:
      Windows Registry Editor Version 5.00
      ;
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "legalnoticecaption"=-
      "legalnoticetext"=-
      "legalnoticecaption"=""
      "legalnoticetext"=""
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
      "LegalNoticeCaption"=-
      "LegalNoticeText"=-
      "system"=-
      "LegalNoticeCaption"=""
      "LegalNoticeText"=""
      "system"=""
      ;
      Guardas el archivo con el nombre de CChinos.reg >>> esto es muy importante.

      Lo ejecutas (Doble clic). Reinicias la Pc y nos comentas si ha desaparecido el cartel.


      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de h4ckm4n
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      68

      Re: Virus o troyanos in detectables por antivirus y herramientas

      Hola, Gracias el problema se ha soluciono, no me aparece el cartel en blanco con los simbolos, el proceso inactivo trabaja a 99 %, el uso de cpu es de 20 % . Solo que el único problema que me quedo, fue al entrar al panel de control y ver las herramientas me quedaron con un mensaje erróneo .



      Saludos y Gracias

      Igual Gracias de todo modo

    4. #4
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Virus o troyanos in detectables por antivirus y herramientas

      Hola h4ckm4n:


      En tu próxima respuesta pegarnos ese reporte del Combofix que ejecutaste.

      Falta ese reporte que te pedi.


      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de h4ckm4n
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      68

      Re: Virus o troyanos in detectables por antivirus y herramientas

      Hola Disculpas tienes razon me olvide.
      ComboFix Log: omboFix 13-03-19.01 - hackman 19/03/2013 12:53:16.1.2 - x86
      Microsoft Windows XP Professional 5.1.2600.3.1252.34.3082.18.1279.834 [GMT -3:00]
      Running from: c:\documents and settings\hackman\Escritorio\ComboFix.exe
      .
      WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
      .
      .
      ((((((((((((((((((((((((( Files Created from 2013-02-19 to 2013-03-19 )))))))))))))))))))))))))))))))
      .
      .
      2013-03-19 08:01 . 2013-03-19 08:01 -------- d-----w- c:\documents and settings\All Users\Datos de programa\ParetoLogic
      2013-03-19 02:17 . 2013-03-19 02:17 -------- d-----w- c:\documents and settings\hackman\Datos de programa\DriverCure
      2013-03-19 02:17 . 2013-03-19 02:17 -------- d-----w- c:\documents and settings\hackman\Datos de programa\ParetoLogic
      2013-03-19 00:30 . 2013-03-19 00:30 -------- d-----w- c:\archivos de programa\VIA
      2013-03-19 00:06 . 2008-04-14 10:48 29184 -c--a-w- c:\windows\system32\dllcache\irmon.dll
      2013-03-19 00:06 . 2008-04-14 10:48 29184 ----a-w- c:\windows\system32\irmon.dll
      2013-03-19 00:06 . 2008-04-14 10:49 152576 -c--a-w- c:\windows\system32\dllcache\irftp.exe
      2013-03-19 00:06 . 2008-04-14 10:49 152576 ----a-w- c:\windows\system32\irftp.exe
      2013-03-19 00:06 . 2008-04-14 10:48 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
      2013-03-19 00:06 . 2008-04-14 10:48 8192 ----a-w- c:\windows\system32\wshirda.dll
      2013-03-18 22:26 . 2005-03-23 19:56 306688 ----a-w- c:\windows\IsUninst.exe
      2013-03-18 06:08 . 2013-03-18 06:08 -------- d-----w- c:\documents and settings\hackman\Datos de programa\Malwarebytes
      2013-03-18 06:08 . 2013-03-18 06:08 -------- d-----w- c:\documents and settings\All Users\Datos de programa\Malwarebytes
      2013-03-17 00:28 . 2013-03-17 00:28 -------- d-----w- c:\documents and settings\All Users\Plantillas
      2013-03-17 00:22 . 2013-03-17 00:22 -------- d-----w- c:\archivos de programa\microsoft frontpage
      2013-03-17 00:05 . 2013-03-17 00:05 -------- d--h--w- c:\windows\system32\GroupPolicy
      2013-03-16 21:02 . 2008-04-14 10:48 4255 ------w- c:\windows\system32\drivers\adv01nt5.dll
      2013-03-16 05:58 . 2013-03-16 05:58 -------- d-----w- c:\archivos de programa\Motorola
      2013-03-16 05:58 . 2013-03-17 00:43 516096 ----a-w- c:\windows\system32\sm56co85.dll
      2013-03-16 05:58 . 2013-03-17 00:43 1095936 ----a-w- c:\windows\system32\drivers\smserial.sys
      2013-03-15 07:22 . 2013-03-15 07:22 -------- d-----w- c:\archivos de programa\Archivos comunes\Windows Live
      2013-03-13 23:14 . 2008-04-14 10:48 116736 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
      2013-03-13 23:14 . 2008-04-14 10:48 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
      2013-03-13 23:14 . 2001-08-23 01:15 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
      2013-03-13 23:14 . 2001-08-23 01:15 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
      2013-03-13 23:14 . 2001-08-23 01:15 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
      2013-03-13 23:14 . 2001-08-23 01:15 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
      2013-03-13 23:14 . 2001-08-17 23:11 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
      2013-03-13 23:14 . 2008-04-14 01:04 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
      2013-03-13 23:14 . 2008-04-14 01:04 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
      2013-03-13 23:13 . 2008-04-14 03:06 8832 -c--a-w- c:\windows\system32\dllcache\wmiacpi.sys
      2013-03-13 23:13 . 2008-04-14 01:05 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
      2013-03-13 23:13 . 2001-08-23 00:35 35402 -c--a-w- c:\windows\system32\dllcache\wlandrv2.sys
      2013-03-13 23:13 . 2001-08-18 00:28 771581 -c--a-w- c:\windows\system32\dllcache\winacisa.sys
      2013-03-13 23:13 . 2001-08-23 01:15 54272 -c--a-w- c:\windows\system32\dllcache\wiamsmud.dll
      2013-03-13 23:13 . 2001-08-23 01:15 87040 -c--a-w- c:\windows\system32\dllcache\wiafbdrv.dll
      2013-03-13 23:13 . 2001-08-18 00:28 701386 -c--a-w- c:\windows\system32\dllcache\wdhaalba.sys
      2013-03-13 23:13 . 2008-04-14 01:04 23615 -c--a-w- c:\windows\system32\dllcache\wch7xxnt.sys
      2013-03-13 23:13 . 2008-04-14 10:21 32000 -c--a-w- c:\windows\system32\dllcache\wceusbsh.sys
      2013-03-13 23:13 . 2001-08-17 23:10 35871 -c--a-w- c:\windows\system32\dllcache\wbfirdma.sys
      2013-03-13 23:11 . 2001-08-18 00:28 687999 -c--a-w- c:\windows\system32\dllcache\usrwdxjs.sys
      2013-03-13 23:10 . 2001-08-17 23:51 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
      2013-03-13 23:09 . 2001-08-18 01:07 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
      2013-03-13 23:08 . 2001-08-18 00:53 7040 -c--a-w- c:\windows\system32\dllcache\snyaitmc.sys
      2013-03-13 23:07 . 2008-04-14 02:53 13240 -c--a-w- c:\windows\system32\dllcache\slwdmsup.sys
      2013-03-13 23:06 . 2001-08-23 00:49 18176 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
      2013-03-13 23:05 . 2001-08-23 01:14 179264 -c--a-w- c:\windows\system32\dllcache\s3sav3d.dll
      2013-03-13 23:04 . 2001-08-23 01:15 10240 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
      2013-03-13 23:04 . 2001-08-17 23:19 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
      2013-03-13 23:04 . 2008-04-14 10:22 79360 -c--a-w- c:\windows\system32\dllcache\rocket.sys
      2013-03-13 23:04 . 2008-04-14 03:26 30592 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
      2013-03-13 23:04 . 2001-08-17 23:12 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
      2013-03-13 23:04 . 2008-04-14 03:16 59136 -c--a-w- c:\windows\system32\dllcache\rfcomm.sys
      2013-03-13 23:04 . 2001-08-23 01:15 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
      2013-03-13 23:03 . 2008-04-14 02:53 13776 -c--a-w- c:\windows\system32\dllcache\recagent.sys
      2013-03-13 23:03 . 2001-08-18 00:51 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
      2013-03-13 23:03 . 2001-08-23 00:46 715370 -c--a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
      2013-03-13 23:03 . 2001-08-23 00:46 899754 -c--a-w- c:\windows\system32\dllcache\r2mdkxga.sys
      2013-03-13 23:03 . 2001-08-23 01:15 41984 -c--a-w- c:\windows\system32\dllcache\qvusd.dll
      2013-03-13 23:03 . 2001-08-18 00:53 3328 -c--a-w- c:\windows\system32\dllcache\qv2kux.sys
      2013-03-13 23:03 . 2001-08-18 00:52 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
      2013-03-13 23:03 . 2001-08-18 00:52 40448 -c--a-w- c:\windows\system32\dllcache\ql1240.sys
      2013-03-13 23:03 . 2001-08-18 00:52 45312 -c--a-w- c:\windows\system32\dllcache\ql12160.sys
      2013-03-13 23:03 . 2001-08-18 00:52 33152 -c--a-w- c:\windows\system32\dllcache\ql10wnt.sys
      2013-03-13 23:01 . 2001-08-18 01:04 173696 -c--a-w- c:\windows\system32\dllcache\philcam2.sys
      2013-03-13 23:00 . 2001-08-23 01:15 44544 -c--a-w- c:\windows\system32\dllcache\ovui2.dll
      2013-03-13 22:59 . 2001-08-23 01:14 123776 -c--a-w- c:\windows\system32\dllcache\nv3.dll
      2013-03-13 22:59 . 2001-08-17 23:50 198144 -c--a-w- c:\windows\system32\dllcache\nv3.sys
      2013-03-13 22:59 . 2008-04-14 02:53 180360 -c--a-w- c:\windows\system32\dllcache\ntmtlfax.sys
      2013-03-13 22:58 . 2001-08-17 23:49 51552 -c--a-w- c:\windows\system32\dllcache\ntgrip.sys
      2013-03-13 22:58 . 2001-08-23 00:40 9472 -c--a-w- c:\windows\system32\dllcache\ntapm.sys
      2013-03-13 22:58 . 2001-08-18 00:53 7552 -c--a-w- c:\windows\system32\dllcache\nsmmc.sys
      2013-03-13 22:57 . 2008-04-14 03:24 28672 -c--a-w- c:\windows\system32\dllcache\nscirda.sys
      2013-03-13 22:57 . 2001-08-17 23:20 87040 -c--a-w- c:\windows\system32\dllcache\nm6wdm.sys
      2013-03-13 22:57 . 2001-08-17 23:20 126080 -c--a-w- c:\windows\system32\dllcache\nm5a2wdm.sys
      2013-03-13 22:57 . 2001-08-17 23:12 32840 -c--a-w- c:\windows\system32\dllcache\ngrpci.sys
      2013-03-13 22:57 . 2008-04-14 10:25 132695 -c--a-w- c:\windows\system32\dllcache\netwlan5.sys
      2013-03-13 22:56 . 2001-08-23 00:39 67166 -c--a-w- c:\windows\system32\dllcache\netflx3.sys
      2013-03-13 22:56 . 2001-08-23 01:14 60480 -c--a-w- c:\windows\system32\dllcache\neo20xx.dll
      2013-03-13 22:56 . 2001-08-17 23:50 39264 -c--a-w- c:\windows\system32\dllcache\neo20xx.sys
      2013-03-13 22:56 . 2001-08-18 00:49 15872 -c--a-w- c:\windows\system32\dllcache\ne2000.sys
      2013-03-13 22:54 . 2008-04-14 03:16 49024 -c--a-w- c:\windows\system32\dllcache\mstape.sys
      2013-03-13 22:54 . 2001-08-18 00:48 12416 -c--a-w- c:\windows\system32\dllcache\msriffwv.sys
      2013-03-13 22:54 . 2001-08-18 01:00 2944 -c--a-w- c:\windows\system32\dllcache\msmpu401.sys
      2013-03-13 22:54 . 2008-04-14 03:24 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
      2013-03-13 22:53 . 2001-08-18 01:02 35200 -c--a-w- c:\windows\system32\dllcache\msgame.sys
      2013-03-13 22:53 . 2001-08-18 00:48 6016 -c--a-w- c:\windows\system32\dllcache\msfsio.sys
      2013-03-13 22:53 . 2008-04-14 03:16 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
      2013-03-13 22:53 . 2001-08-18 00:52 17280 -c--a-w- c:\windows\system32\dllcache\mraid35x.sys
      2013-03-13 22:52 . 2008-04-14 03:16 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
      2013-03-13 22:52 . 2001-08-18 00:52 6528 -c--a-w- c:\windows\system32\dllcache\miniqic.sys
      2013-03-13 22:52 . 2001-08-23 01:14 235648 -c--a-w- c:\windows\system32\dllcache\mgaud.dll
      2013-03-13 22:52 . 2001-08-23 00:33 320512 -c--a-w- c:\windows\system32\dllcache\mgaum.sys
      2013-03-13 22:52 . 2008-04-14 03:11 26112 -c--a-w- c:\windows\system32\dllcache\memstpci.sys
      2013-03-13 22:52 . 2001-08-23 01:15 47616 -c--a-w- c:\windows\system32\dllcache\memgrp.dll
      2013-03-13 22:52 . 2001-08-18 00:58 8320 -c--a-w- c:\windows\system32\dllcache\memcard.sys
      2013-03-13 22:50 . 2001-08-18 00:53 4992 -c--a-w- c:\windows\system32\dllcache\loop.sys
      2013-03-13 22:50 . 2001-08-17 23:12 70730 -c--a-w- c:\windows\system32\dllcache\lne100tx.sys
      2013-03-13 22:50 . 2001-08-17 23:12 20573 -c--a-w- c:\windows\system32\dllcache\lne100.sys
      2013-03-13 22:50 . 2001-08-17 23:11 25065 -c--a-w- c:\windows\system32\dllcache\lmndis3.sys
      2013-03-13 22:50 . 2001-08-23 00:30 16128 -c--a-w- c:\windows\system32\dllcache\lit220p.sys
      2013-03-13 22:50 . 2008-04-14 03:10 34688 -c--a-w- c:\windows\system32\dllcache\lbrtfdc.sys
      2013-03-13 22:50 . 2001-08-23 00:29 26922 -c--a-w- c:\windows\system32\dllcache\lanepic5.sys
      2013-03-13 22:50 . 2001-08-17 23:12 19016 -c--a-w- c:\windows\system32\dllcache\ktc111.sys
      2013-03-13 22:50 . 2001-08-23 01:15 37376 -c--a-w- c:\windows\system32\dllcache\kousd.dll
      2013-03-13 22:50 . 2008-04-14 10:48 254464 -c--a-w- c:\windows\system32\dllcache\kdsusd.dll
      2013-03-13 22:50 . 2008-04-14 10:48 49152 -c--a-w- c:\windows\system32\dllcache\kdsui.dll
      2013-03-13 22:49 . 2001-08-23 01:15 8704 -c--a-w- c:\windows\system32\dllcache\kbdjpn.dll
      2013-03-13 22:49 . 2001-08-23 01:15 8192 -c--a-w- c:\windows\system32\dllcache\kbdkor.dll
      2013-03-13 22:49 . 2008-04-14 10:25 14720 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys
      2013-03-13 22:49 . 2008-04-14 10:46 6144 -c--a-w- c:\windows\system32\dllcache\kbd106.dll
      2013-03-13 22:49 . 2001-08-18 01:55 5632 -c--a-w- c:\windows\system32\dllcache\kbd103.dll
      2013-03-13 22:49 . 2001-08-18 01:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101c.dll
      2013-03-13 22:49 . 2001-08-18 01:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101b.dll
      2013-03-13 22:49 . 2001-08-18 00:49 26624 -c--a-w- c:\windows\system32\dllcache\irstusb.sys
      2013-03-13 22:49 . 2001-08-18 00:51 18688 -c--a-w- c:\windows\system32\dllcache\irsir.sys
      2013-03-13 22:49 . 2001-08-18 00:49 23552 -c--a-w- c:\windows\system32\dllcache\irmk7.sys
      2013-03-13 22:49 . 2008-04-14 03:24 88192 -c--a-w- c:\windows\system32\dllcache\irda.sys
      2013-03-13 22:49 . 2008-04-14 03:15 46592 -c--a-w- c:\windows\system32\dllcache\irbus.sys
      2013-03-13 22:48 . 2001-08-23 01:15 90200 -c--a-w- c:\windows\system32\dllcache\io8ports.dll
      2013-03-13 22:48 . 2001-08-17 23:12 45632 -c--a-w- c:\windows\system32\dllcache\ip5515.sys
      2013-03-13 22:48 . 2001-08-18 00:50 38784 -c--a-w- c:\windows\system32\dllcache\io8.sys
      2013-03-13 22:48 . 2008-04-14 10:24 5632 -c--a-w- c:\windows\system32\dllcache\intelide.sys
      2013-03-13 22:48 . 2001-08-23 00:27 13568 -c--a-w- c:\windows\system32\dllcache\inport.sys
      2013-03-13 22:48 . 2001-08-18 00:52 16000 -c--a-w- c:\windows\system32\dllcache\ini910u.sys
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2013-03-15 01:57 . 2012-12-28 02:45 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
      2013-03-15 01:57 . 2012-12-28 02:45 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
      2013-03-13 18:54 . 2013-01-01 22:41 47360 ----a-w- c:\windows\system32\drivers\Pcouffin.sys
      2013-03-06 04:31 . 2012-12-26 23:03 143872 ----a-w- c:\windows\system32\javacpl.cpl
      2013-03-06 04:31 . 2012-12-26 23:03 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
      2013-03-06 04:31 . 2012-12-26 23:03 782240 ----a-w- c:\windows\system32\deployJava1.dll
      2013-02-28 21:39 . 2012-12-28 02:19 1249888 ----a-w- c:\windows\system32\drivers\rt2870.sys
      2013-02-12 00:32 . 2008-04-14 00:26 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
      2013-02-05 20:13 . 2008-04-14 07:48 916480 ----a-w- c:\windows\system32\wininet.dll
      2013-02-05 20:13 . 2008-04-14 07:48 43520 ------w- c:\windows\system32\licmgr10.dll
      2013-02-05 20:13 . 2008-04-14 07:49 1469440 ------w- c:\windows\system32\inetcpl.cpl
      2013-02-05 05:54 . 2008-04-14 07:22 385024 ------w- c:\windows\system32\html.iec
      2013-01-26 03:55 . 2008-04-14 07:48 552448 ----a-w- c:\windows\system32\oleaut32.dll
      2013-01-10 01:06 . 2013-01-10 01:03 27632 ----a-w- c:\windows\system32\drivers\seehcri.sys
      2013-01-08 16:12 . 2007-04-27 13:43 120200 ----a-w- c:\windows\system32\DLLDEV32i.dll
      2013-01-07 07:25 . 2008-04-14 07:27 2151424 ----a-w- c:\windows\system32\ntoskrnl.exe
      2013-01-07 07:25 . 2008-04-14 07:27 2030080 ----a-w- c:\windows\system32\ntkrnlpa.exe
      2013-01-04 10:09 . 2008-04-14 07:22 1867392 ----a-w- c:\windows\system32\win32k.sys
      2013-01-02 06:49 . 2008-04-14 07:49 148992 ----a-w- c:\windows\system32\mpg2splt.ax
      2013-01-02 06:49 . 2008-04-14 07:48 1298432 ----a-w- c:\windows\system32\quartz.dll
      2012-12-28 03:11 . 2012-12-28 03:11 446464 ----a-w- c:\windows\system32\nvuninst.exe
      2012-12-28 03:11 . 2012-12-28 03:11 768544 ----a-w- c:\windows\system32\nvcplui.exe
      2012-12-28 03:11 . 2012-12-28 03:11 45056 ----a-w- c:\windows\system32\nvmccsrs.dll
      2012-12-28 03:11 . 2012-12-28 03:11 425984 ----a-w- c:\windows\system32\nvapi.dll
      2012-12-28 03:11 . 2012-12-28 03:11 420384 ----a-w- c:\windows\system32\nvcpl.cpl
      2012-12-28 03:11 . 2012-12-28 03:11 313888 ----a-w- c:\windows\system32\nvexpbar.dll
      2012-12-28 03:11 . 2012-12-28 03:11 2629632 ----a-w- c:\windows\system32\nvwss.dll
      2012-12-28 03:11 . 2012-12-28 03:11 229376 ----a-w- c:\windows\system32\nvmccs.dll
      2012-12-28 03:11 . 2012-12-28 03:11 1241088 ----a-w- c:\windows\system32\nvcuda.dll
      2012-12-28 03:11 . 2012-12-28 03:11 3776512 ----a-w- c:\windows\system32\nvvitvs.dll
      2012-12-28 03:11 . 2012-12-26 21:11 73728 ----a-w- c:\windows\system32\nvtuicpl.cpl
      2012-12-28 03:11 . 2012-12-26 21:11 1703936 ----a-w- c:\windows\system32\nvwdmcpl.dll
      2012-12-28 03:11 . 2012-12-26 21:11 1630208 ----a-w- c:\windows\system32\nwiz.exe
      2012-12-28 03:11 . 2012-12-26 21:11 1019904 ----a-w- c:\windows\system32\nvwimg.dll
      2012-12-28 03:11 . 2012-12-26 21:11 466944 ----a-w- c:\windows\system32\nvshell.dll
      2012-12-28 03:11 . 2012-12-26 21:11 442368 ----a-w- c:\windows\system32\nvappbar.exe
      2012-12-28 03:11 . 2012-12-26 21:11 1486848 ----a-w- c:\windows\system32\nview.dll
      2012-12-28 03:11 . 2012-12-26 21:11 1339392 ----a-w- c:\windows\system32\nvdspsch.exe
      2012-12-28 03:11 . 2012-12-26 21:11 81920 ----a-w- c:\windows\system32\nvwddi.dll
      2012-12-28 03:11 . 2012-12-26 21:11 446464 ----a-w- c:\windows\system32\nvudisp.exe
      2012-12-28 03:11 . 2012-12-26 21:11 286720 ----a-w- c:\windows\system32\nvnt4cpl.dll
      2012-12-28 03:11 . 2012-12-26 21:11 8769536 ----a-w- c:\windows\system32\nvoglnt.dll
      2012-12-28 03:11 . 2012-12-26 21:10 159812 ----a-w- c:\windows\system32\nvsvc32.exe
      2012-12-28 03:11 . 2012-12-26 21:10 114688 ----a-w- c:\windows\system32\nvcodins.dll
      2012-12-28 03:11 . 2012-12-26 21:10 114688 ----a-w- c:\windows\system32\nvcod.dll
      2012-12-28 03:11 . 2012-12-28 03:11 6582272 ----a-w- c:\windows\system32\nvdisps.dll
      2012-12-28 03:11 . 2012-12-28 03:11 3391488 ----a-w- c:\windows\system32\nvgames.dll
      2012-12-28 03:11 . 2012-12-28 03:11 188416 ----a-w- c:\windows\system32\nvmccss.dll
      2012-12-28 03:11 . 2012-12-28 03:11 1257472 ----a-w- c:\windows\system32\nvmobls.dll
      2012-12-28 03:11 . 2012-12-26 21:11 425984 ----a-w- c:\windows\system32\keystone.exe
      2012-12-28 03:11 . 2012-12-26 21:11 86016 ----a-w- c:\windows\system32\nvmctray.dll
      2012-12-28 03:11 . 2012-12-26 21:11 13529088 ----a-w- c:\windows\system32\nvcpl.dll
      2012-12-28 03:11 . 2012-12-26 16:26 6557408 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
      2012-12-28 03:11 . 2012-12-26 16:26 6108928 ----a-w- c:\windows\system32\nv4_disp.dll
      2012-12-28 03:11 . 2012-12-28 03:11 147456 ----a-w- c:\windows\system32\nvcolor.exe
      2012-12-28 03:06 . 2012-12-28 03:06 54928 ----a-w- c:\windows\system32\drivers\fetn63.sys
      2012-12-28 02:59 . 2012-12-28 02:59 26624 ----a-w- c:\windows\system32\drivers\pmserenum.sys
      2012-12-28 02:19 . 2012-12-26 21:25 238944 ----a-w- c:\windows\system32\RaCoInst.dll
      2012-12-28 00:54 . 2012-12-28 00:54 6656 ----a-w- c:\windows\system32\drivers\Msikbd2k.sys
      2012-12-28 00:53 . 2012-12-28 00:53 37814 ----a-w- c:\windows\system32\drivers\LHidUsb.sys
      2012-12-28 00:52 . 2012-12-28 00:52 73576 ----a-w- c:\windows\system32\drivers\LMouFlt2.Sys
      2012-12-28 00:52 . 2012-12-28 00:52 26104 ----a-w- c:\windows\system32\drivers\LHidFlt2.Sys
      2012-12-28 00:52 . 2012-12-28 00:52 19968 ----a-w- c:\windows\Logi_MwX.Exe
      2012-12-26 21:26 . 2012-12-26 21:26 48640 ----a-w- c:\windows\system32\ANPD64.SYS
      2012-12-26 21:26 . 2012-12-26 21:26 315392 ----a-w- c:\windows\system32\ANPDApi.dll
      2012-12-26 21:26 . 2012-12-26 21:26 34008 ----a-w- c:\windows\system32\ANPD.VXD
      2012-12-26 21:26 . 2012-12-26 21:26 29411 ----a-w- c:\windows\system32\ANPD.SYS
      .
      Última edición por h4ckm4n fecha: 19/03/13 a las 17:55:06

    6. #6
      Usuario Avatar de h4ckm4n
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      68

      Re: Virus o troyanos in detectables por antivirus y herramientas

      .
      ------- Sigcheck -------
      Note: Unsigned files aren't necessarily malware.
      .
      [-] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys
      [-] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\atapi.sys
      [-] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys
      .
      [-] 2008-04-14 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\asyncmac.sys
      [-] 2008-04-14 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\asyncmac.sys
      [-] 2008-04-14 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys
      .
      [-] 2001-08-24 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys
      [-] 2001-08-24 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys
      .
      [-] 2008-04-14 . 188DDD286BC0DAEA6984858C6A4D7BBF . 25088 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kbdclass.sys
      [-] 2008-04-14 . 188DDD286BC0DAEA6984858C6A4D7BBF . 25088 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\kbdclass.sys
      [-] 2008-04-14 . 188DDD286BC0DAEA6984858C6A4D7BBF . 25088 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys
      [-] 2008-04-14 . 188DDD286BC0DAEA6984858C6A4D7BBF . 25088 . . [5.1.2600.5512] . . c:\windows\system32\ReinstallBackups\0003\DriverFiles\i386\kbdclass.sys
      .
      [-] 2008-04-14 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ndis.sys
      [-] 2008-04-14 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ndis.sys
      [-] 2008-04-14 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys
      .
      [-] 2008-04-14 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntfs.sys
      [-] 2008-04-14 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ntfs.sys
      [-] 2008-04-14 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys
      .
      [-] 2001-08-24 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys
      [-] 2001-08-24 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys
      .
      [-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
      [-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
      [-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
      [-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
      [-] 2008-04-14 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys
      .
      [-] 2012-07-06 . DCA0E43CB14D2390FAA5A21B9DC92274 . 78336 . . [5.1.2600.6260] . . c:\windows\system32\browser.dll
      [-] 2012-07-06 . DCA0E43CB14D2390FAA5A21B9DC92274 . 78336 . . [5.1.2600.6260] . . c:\windows\system32\dllcache\browser.dll
      [-] 2012-07-06 . 88F61096EDAF97F86128ED9007802709 . 78336 . . [5.1.2600.6260] . . c:\windows\$hf_mig$\KB2705219-v2\SP3QFE\browser.dll
      [-] 2008-04-14 . E28818BD591F8AF8FBE9897472B9665E . 77824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\browser.dll
      .
      [-] 2008-04-14 . 671ACA589DA3733FAC878A751C5BF0ED . 13312 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lsass.exe
      [-] 2008-04-14 . 671ACA589DA3733FAC878A751C5BF0ED . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe
      [-] 2008-04-14 . 671ACA589DA3733FAC878A751C5BF0ED . 13312 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\lsass.exe
      .
      [-] 2008-04-14 . A48884C9359EE9F1FC8F3F0D93FB1D95 . 198144 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netman.dll
      [-] 2008-04-14 . A48884C9359EE9F1FC8F3F0D93FB1D95 . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll
      [-] 2008-04-14 . A48884C9359EE9F1FC8F3F0D93FB1D95 . 198144 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\netman.dll
      .
      [-] 2008-04-14 10:48 . 93F4E612C695E81512110956454E6E25 . 837120 . . [2001.12.4414.700] . . c:\windows\ServicePackFiles\i386\comres.dll
      [-] 2008-04-14 07:48 . 93F4E612C695E81512110956454E6E25 . 837120 . . [2001.12.4414.700] . . c:\windows\system32\comres.dll
      [-] 2008-04-14 07:48 . 93F4E612C695E81512110956454E6E25 . 837120 . . [2001.12.4414.700] . . c:\windows\system32\dllcache\comres.dll
      .
      [-] 2008-04-14 . 8EE9639C01B92490E09638CAA1B16C3C . 409088 . . [6.7.2600.5512] . . c:\windows\ServicePackFiles\i386\qmgr.dll
      [-] 2008-04-14 . 8EE9639C01B92490E09638CAA1B16C3C . 409088 . . [6.7.2600.5512] . . c:\windows\system32\bits\qmgr.dll
      [-] 2008-04-14 . 8EE9639C01B92490E09638CAA1B16C3C . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll
      [-] 2008-04-14 . 8EE9639C01B92490E09638CAA1B16C3C . 409088 . . [6.7.2600.5512] . . c:\windows\system32\dllcache\qmgr.dll
      .
      [-] 2009-02-09 . AEF41FC6F108CC4F94F9B4E96AFA9C70 . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll
      [-] 2009-02-09 . 97869C55F562B777987100EA30AD8108 . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll
      [-] 2009-02-09 . 97869C55F562B777987100EA30AD8108 . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\rpcss.dll
      [-] 2008-04-14 . 53D02EFFA72CA5C57687BEE20610ABA6 . 399360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rpcss.dll
      .
      [-] 2009-02-09 . 953DF7327510DF0DE048B8E80E504EF9 . 111104 . . [5.1.2600.5755] . . c:\windows\system32\services.exe
      [-] 2009-02-09 . 953DF7327510DF0DE048B8E80E504EF9 . 111104 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\services.exe
      [-] 2009-02-09 . AA6E1769469F9D15603A619FC1FB9E18 . 111104 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe
      [-] 2008-04-14 . D658A8C2FC7B2AD53D1259741A09EE04 . 109056 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\services.exe
      .
      [-] 2010-08-17 . 258DD5D4283FD9F9A7166BE9AE45CE73 . 58880 . . [5.1.2600.6024] . . c:\windows\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
      [-] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\spoolsv.exe
      [-] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\dllcache\spoolsv.exe
      [-] 2008-04-14 . CDD2DC6AE65084481E723E746C20539A . 57856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\spoolsv.exe
      .
      [-] 2008-04-14 . 213C80D912880BBF04453D09FFCCB28C . 510976 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\winlogon.exe
      [-] 2008-04-14 . 213C80D912880BBF04453D09FFCCB28C . 510976 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe
      [-] 2008-04-14 . 213C80D912880BBF04453D09FFCCB28C . 510976 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\winlogon.exe
      .
      [-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ipsec.sys
      [-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ipsec.sys
      [-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
      .
      [-] 2010-08-23 . 3DDEC846E57F668C07407F3AC3B66220 . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll
      [-] 2010-08-23 . 3DDEC846E57F668C07407F3AC3B66220 . 617472 . . [5.82] . . c:\windows\system32\dllcache\comctl32.dll
      [-] 2010-08-23 . 24B09ED0C5B019A5198A74504179EEB0 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
      [-] 2008-04-14 . 618A4C7A7C0CA86DA884C8C0FACAD8C2 . 617472 . . [5.82] . . c:\windows\ServicePackFiles\i386\comctl32.dll
      [-] 2008-04-14 . 08D17A982CD6191B34D1B8C8A2E694B6 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
      [-] 2001-08-24 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
      .
      [-] 2008-04-14 . E423C9C1946C656E0E4840210A0A8681 . 62464 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll
      [-] 2008-04-14 . E423C9C1946C656E0E4840210A0A8681 . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll
      [-] 2008-04-14 . E423C9C1946C656E0E4840210A0A8681 . 62464 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cryptsvc.dll
      .
      [-] 2008-07-07 20:27 . A225DD0D0489BD580781D19524A10B19 . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll
      [-] 2008-07-07 20:27 . A225DD0D0489BD580781D19524A10B19 . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll
      [-] 2008-07-07 20:25 . 6EC3C2A5CEA41B78BB55B30444292CB8 . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll
      [-] 2008-04-14 10:48 . 76ABF3BB5A6D684641EC92B28240811D . 246272 . . [2001.12.4414.701] . . c:\windows\ServicePackFiles\i386\es.dll
      .
      [-] 2008-04-14 . 95DF6A7520912B1040F748A287EA382A . 110080 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\imm32.dll
      [-] 2008-04-14 . 95DF6A7520912B1040F748A287EA382A . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll
      [-] 2008-04-14 . 95DF6A7520912B1040F748A287EA382A . 110080 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\imm32.dll
      .
      [-] 2012-10-03 . 32A43970B5B4042D00D7652B89EA838B . 1043456 . . [5.1.2600.6293] . . c:\windows\system32\kernel32.dll
      [-] 2012-10-03 . 32A43970B5B4042D00D7652B89EA838B . 1043456 . . [5.1.2600.6293] . . c:\windows\system32\dllcache\kernel32.dll
      [-] 2012-10-03 . 34A51DE07EB51D7F0A8EEA573F58FC31 . 1044992 . . [5.1.2600.6293] . . c:\windows\$hf_mig$\KB2758857\SP3QFE\kernel32.dll
      [-] 2009-03-21 . 97D5372816EC546BD035EDAEDB5E6918 . 1044992 . . [5.1.2600.5781] . . c:\windows\$hf_mig$\KB959426\SP3QFE\kernel32.dll
      [-] 2008-04-14 . F43FE49CF77EC1CEF9DB9E67BDDB970F . 1042944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kernel32.dll
      .
      [-] 2008-04-14 . FB67F1E092AB9967D0CD17300D751874 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\linkinfo.dll
      [-] 2008-04-14 . FB67F1E092AB9967D0CD17300D751874 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll
      [-] 2008-04-14 . FB67F1E092AB9967D0CD17300D751874 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\linkinfo.dll
      .
      [-] 2008-04-14 . 87F15A88AA3376B48F75D7D176B312A0 . 22016 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lpk.dll
      [-] 2008-04-14 . 87F15A88AA3376B48F75D7D176B312A0 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll
      [-] 2008-04-14 . 87F15A88AA3376B48F75D7D176B312A0 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\lpk.dll
      .
      [-] 2013-03-01 . D2E49B4EB0EDCC97AEE4F2C472E9A068 . 6011392 . . [8.00.6001.19403] . . c:\windows\system32\mshtml.dll
      [-] 2013-03-01 . D2E49B4EB0EDCC97AEE4F2C472E9A068 . 6011392 . . [8.00.6001.19403] . . c:\windows\system32\dllcache\mshtml.dll
      [-] 2013-03-01 . 5996F1EEBE1E2FA3B6719FC11B9E9E5E . 6012928 . . [8.00.6001.23471] . . c:\windows\$hf_mig$\KB2809289-IE8\SP3QFE\mshtml.dll
      [-] 2013-01-08 . 3AD487ACF6B1B9AE3B101DFF8422700F . 6010368 . . [8.00.6001.19400] . . c:\windows\ie8updates\KB2809289-IE8\mshtml.dll
      [-] 2013-01-08 . 033A62F251F9D64FDAB494FB461E9BB8 . 6011904 . . [8.00.6001.23468] . . c:\windows\$hf_mig$\KB2792100-IE8\SP3QFE\mshtml.dll
      [-] 2013-01-06 . 510635A726AF7636EDCAA7BF11CC8B26 . 6009856 . . [8.00.6001.19394] . . c:\windows\ie8updates\KB2792100-IE8\mshtml.dll
      [-] 2013-01-06 . 0EE37F47A2B1F02CC6A4545E484A1704 . 6011392 . . [8.00.6001.23462] . . c:\windows\$hf_mig$\KB2799329-IE8\SP3QFE\mshtml.dll
      [-] 2012-11-12 . B765320F394D79BD727A8377CA2334FC . 6008832 . . [8.00.6001.19393] . . c:\windows\ie8updates\KB2799329-IE8\mshtml.dll
      [-] 2012-11-12 . C906C650AD1E1361683448199FE07EB9 . 6010880 . . [8.00.6001.23461] . . c:\windows\$hf_mig$\KB2761465-IE8\SP3QFE\mshtml.dll
      [-] 2012-11-10 . E88E4C4FEDFCEDD47DF136EC6471AB80 . 3109888 . . [6.00.2900.6315] . . c:\windows\ie8\mshtml.dll
      [-] 2012-11-10 . 2C44E54005FB0E00F8D1172036686DE7 . 3110400 . . [6.00.2900.6315] . . c:\windows\$hf_mig$\KB2761465\SP3QFE\mshtml.dll
      [-] 2012-08-28 . 1206A54AD9B011118EA975D17BAF1541 . 6008832 . . [8.00.6001.19328] . . c:\windows\ie8updates\KB2761465-IE8\mshtml.dll
      [-] 2012-08-28 . EB44F76332080FD115B8589D6DD8072F . 6010368 . . [8.00.6001.23415] . . c:\windows\$hf_mig$\KB2744842-IE8\SP3QFE\mshtml.dll
      [-] 2011-11-04 . 289A867941DB68C289315A680D8CE395 . 5978112 . . [8.00.6001.19170] . . c:\windows\ie8updates\KB2744842-IE8\mshtml.dll
      [-] 2011-11-04 . 4BB3B66CCBD71BCF84FDFEF9A4955D63 . 5978624 . . [8.00.6001.23266] . . c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\mshtml.dll
      [-] 2010-05-06 . 4B1BB5DB92DF08ACA55EA93B29F4BCF5 . 5950976 . . [8.00.6001.18928] . . c:\windows\ie8updates\KB2618444-IE8\mshtml.dll
      [-] 2010-05-06 . 5D7062AA7BBC8A5FF8ED8109325984E1 . 5953024 . . [8.00.6001.23019] . . c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\mshtml.dll
      [-] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB982381-IE8\mshtml.dll
      [-] 2008-06-25 . 92F115B8F1794BD0CFB6FD0121FFFEEF . 3088896 . . [6.00.2900.5626] . . c:\windows\$hf_mig$\KB953838\SP3QFE\mshtml.dll
      [-] 2008-04-14 . 85B88C504D1527978F1C2FBE6A41E799 . 3066880 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\mshtml.dll
      .
      [-] 2008-04-14 . 0F021B29E0C2C9D897258399FB2149CD . 343040 . . [7.0.2600.5512] . . c:\windows\ServicePackFiles\i386\msvcrt.dll
      [-] 2008-04-14 . B1CB86D70023988360DA136B317D8546 . 343040 . . [7.0.2600.5512] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5512_x-ww_3fd60d63\msvcrt.dll
      [-] 2008-04-14 . 0F021B29E0C2C9D897258399FB2149CD . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll
      [-] 2008-04-14 . 0F021B29E0C2C9D897258399FB2149CD . 343040 . . [7.0.2600.5512] . . c:\windows\system32\dllcache\msvcrt.dll
      [-] 2001-08-24 . 4200BE3808F6406DBE45A7B88DAE5035 . 322560 . . [7.0.2600.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.0.0_x-ww_2726e76a\msvcrt.dll
      .
      [-] 2008-06-20 . DC10B07F256C8EDF6642015E380C741E . 248320 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\mswsock.dll
      [-] 2008-06-20 . DC10B07F256C8EDF6642015E380C741E . 248320 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll
      [-] 2008-06-20 . 5E11D375C92A0DDA7AC4D487FC4E1978 . 248320 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll
      [-] 2008-06-20 . 5E11D375C92A0DDA7AC4D487FC4E1978 . 248320 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\mswsock.dll
      [-] 2008-04-14 . AD893C9D3A09081D55A4BDFBC66AD592 . 248320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\mswsock.dll
      .
      [-] 2008-04-14 . CD2BBB52DFAAB666B812A51B1E96F2A0 . 407040 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netlogon.dll
      [-] 2008-04-14 . CD2BBB52DFAAB666B812A51B1E96F2A0 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll
      [-] 2008-04-14 . CD2BBB52DFAAB666B812A51B1E96F2A0 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\netlogon.dll
      .
      [-] 2008-04-14 . 56DE6FD410B277C4345D7A2C3414DB64 . 17408 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\powrprof.dll
      [-] 2008-04-14 . 56DE6FD410B277C4345D7A2C3414DB64 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll
      [-] 2008-04-14 . 56DE6FD410B277C4345D7A2C3414DB64 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\powrprof.dll
      .
      [-] 2008-04-14 . B6BE3C96CD33336A551DB3F2299A8E69 . 185856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\scecli.dll
      [-] 2008-04-14 . B6BE3C96CD33336A551DB3F2299A8E69 . 185856 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll
      [-] 2008-04-14 . B6BE3C96CD33336A551DB3F2299A8E69 . 185856 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\scecli.dll
      .
      [-] 2008-04-14 . D5AC9FA63EBEFD7AACCB14BA0DB1BAC3 . 5120 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfc.dll
      [-] 2008-04-14 . D5AC9FA63EBEFD7AACCB14BA0DB1BAC3 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll
      [-] 2008-04-14 . D5AC9FA63EBEFD7AACCB14BA0DB1BAC3 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\sfc.dll
      .
      [-] 2008-04-14 . 4F2340F0BD5B6365C38E74DD391919A8 . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\svchost.exe
      [-] 2008-04-14 . 4F2340F0BD5B6365C38E74DD391919A8 . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe
      [-] 2008-04-14 . 4F2340F0BD5B6365C38E74DD391919A8 . 14336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\svchost.exe
      .
      [-] 2008-04-14 . 04A5B8EA326951DB27DF60A14F2999FF . 249856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tapisrv.dll
      [-] 2008-04-14 . 04A5B8EA326951DB27DF60A14F2999FF . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll
      [-] 2008-04-14 . 04A5B8EA326951DB27DF60A14F2999FF . 249856 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\tapisrv.dll
      .
      [-] 2008-04-14 . DA8898129E0075C7DE4DEE457514A73C . 579584 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\user32.dll
      [-] 2008-04-14 . DA8898129E0075C7DE4DEE457514A73C . 579584 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll
      [-] 2008-04-14 . DA8898129E0075C7DE4DEE457514A73C . 579584 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\user32.dll
      .
      [-] 2008-04-14 . F5B8745B9A90EAF17E30C0574E049AA3 . 26624 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\userinit.exe
      [-] 2008-04-14 . F5B8745B9A90EAF17E30C0574E049AA3 . 26624 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe
      [-] 2008-04-14 . F5B8745B9A90EAF17E30C0574E049AA3 . 26624 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\userinit.exe
      .
      [-] 2013-02-05 . A52A0AD6FF79F08B634B03A10D8E30C6 . 916480 . . [8.00.6001.19401] . . c:\windows\system32\wininet.dll
      [-] 2013-02-05 . A52A0AD6FF79F08B634B03A10D8E30C6 . 916480 . . [8.00.6001.19401] . . c:\windows\system32\dllcache\wininet.dll
      [-] 2013-02-05 . 60872897190A0C18F1F535EC2FCBFDE8 . 920064 . . [8.00.6001.23469] . . c:\windows\$hf_mig$\KB2809289-IE8\SP3QFE\wininet.dll
      [-] 2012-12-26 . BD43A5FE6330B3C26271375B72422E4C . 916480 . . [8.00.6001.19394] . . c:\windows\ie8updates\KB2809289-IE8\wininet.dll
      [-] 2012-12-26 . E3646857E43ECB099E435338F299B9AA . 920064 . . [8.00.6001.23462] . . c:\windows\$hf_mig$\KB2792100-IE8\SP3QFE\wininet.dll
      [-] 2012-11-01 . F2B3AABDEB62F3425C03007346274730 . 916992 . . [8.00.6001.19389] . . c:\windows\ie8updates\KB2792100-IE8\wininet.dll
      [-] 2012-11-01 . 2ACCFB3A52634380461A8F042D45CED2 . 920064 . . [8.00.6001.23458] . . c:\windows\$hf_mig$\KB2761465-IE8\SP3QFE\wininet.dll
      [-] 2012-10-31 . 019AA863B34EEE4082E3B56FAF0E2C26 . 669696 . . [6.00.2900.6309] . . c:\windows\ie8\wininet.dll
      [-] 2012-10-31 . DEE4B76ABAD77AAB1133E03F94D4CC54 . 671232 . . [6.00.2900.6309] . . c:\windows\$hf_mig$\KB2761465\SP3QFE\wininet.dll
      [-] 2012-08-28 . 93E89539BC12E61B31A20EDC41DA8FF4 . 916992 . . [8.00.6001.19328] . . c:\windows\ie8updates\KB2761465-IE8\wininet.dll
      [-] 2012-08-28 . F503CFA1863EE2745677B6D5302454EF . 920064 . . [8.00.6001.23415] . . c:\windows\$hf_mig$\KB2744842-IE8\SP3QFE\wininet.dll
      [-] 2011-11-04 . E23DCA6F31B9A97714F334B67B412FBD . 916992 . . [8.00.6001.19165] . . c:\windows\ie8updates\KB2744842-IE8\wininet.dll
      [-] 2011-11-04 . B6716DC84CAE442957E40875D012F183 . 919552 . . [8.00.6001.23261] . . c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\wininet.dll
      [-] 2010-05-06 . 26412D06783E47EAC7667569BF6962D3 . 916480 . . [8.00.6001.18923] . . c:\windows\ie8updates\KB2618444-IE8\wininet.dll
      [-] 2010-05-06 . 9ACFBEE8E9573EE39CB93C636DF36F78 . 919040 . . [8.00.6001.23014] . . c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\wininet.dll
      [-] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB982381-IE8\wininet.dll
      [-] 2008-06-23 . 24207433B012CD6B3C746D245C6EBCE6 . 669184 . . [6.00.2900.5626] . . c:\windows\$hf_mig$\KB953838\SP3QFE\wininet.dll
      [-] 2008-04-14 . A9A84CFC20D5F4C609E9CBF9491B8DF6 . 668672 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\wininet.dll
      .
      [-] 2008-04-14 . 22DB5B3DA7005C6472D35BEF3FFDA5EC . 82432 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2_32.dll
      [-] 2008-04-14 . 22DB5B3DA7005C6472D35BEF3FFDA5EC . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll
      [-] 2008-04-14 . 22DB5B3DA7005C6472D35BEF3FFDA5EC . 82432 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ws2_32.dll
      .
      [-] 2008-04-14 . F7EE4BBFB48437EDC6F7F061DE1E8F2F . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2help.dll
      [-] 2008-04-14 . F7EE4BBFB48437EDC6F7F061DE1E8F2F . 19968 . . [5.1.2600.5512] . . c:\windows\system32\ws2help.dll
      [-] 2008-04-14 . F7EE4BBFB48437EDC6F7F061DE1E8F2F . 19968 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ws2help.dll
      .
      [-] 2008-04-14 . 7522F548A84ABAD8FA516DE5AB3931EF . 1036288 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\explorer.exe
      [-] 2008-04-14 . 7522F548A84ABAD8FA516DE5AB3931EF . 1036288 . . [6.00.2900.5512] . . c:\windows\explorer.exe
      [-] 2008-04-14 . 7522F548A84ABAD8FA516DE5AB3931EF . 1036288 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\explorer.exe
      .
      [-] 2008-04-14 . F4B9F9AA2F72FAD20D09C3E3FF2BE224 . 152064 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regedit.exe
      [-] 2008-04-14 . F4B9F9AA2F72FAD20D09C3E3FF2BE224 . 152064 . . [5.1.2600.5512] . . c:\windows\regedit.exe
      [-] 2008-04-14 . F4B9F9AA2F72FAD20D09C3E3FF2BE224 . 152064 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\regedit.exe
      .
      [-] 2011-11-01 . 494276CFE71555AE0F3234C1B227E67A . 1288192 . . [5.1.2600.6168] . . c:\windows\system32\ole32.dll
      [-] 2011-11-01 . 494276CFE71555AE0F3234C1B227E67A . 1288192 . . [5.1.2600.6168] . . c:\windows\system32\dllcache\ole32.dll
      [-] 2011-11-01 . E8C2FA9AC16C25C0AB0677BA12D74BC1 . 1288704 . . [5.1.2600.6168] . . c:\windows\$hf_mig$\KB2624667\SP3QFE\ole32.dll
      [-] 2010-07-16 . BCFEA258277FB42DD7F447EB61C34D06 . 1288704 . . [5.1.2600.6010] . . c:\windows\$hf_mig$\KB979687\SP3QFE\ole32.dll
      [-] 2008-04-14 . 463D57BF9FE5871208FF99399360A57D . 1287168 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ole32.dll
      .
      [-] 2010-04-16 . A8374FF31AC6EDEBB806D2B61D44618D . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\usp10.dll
      [-] 2010-04-16 . A8374FF31AC6EDEBB806D2B61D44618D . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\dllcache\usp10.dll
      [-] 2010-04-16 . 964D29711065A944E1BEC7FD676E61D9 . 406016 . . [1.0420.2600.5969] . . c:\windows\$hf_mig$\KB981322\SP3QFE\usp10.dll
      [-] 2008-04-14 . D2ABEB6AF76DA414D1FFF8B409F00635 . 406016 . . [1.0420.2600.5512] . . c:\windows\ServicePackFiles\i386\usp10.dll

    7. #7
      Usuario Avatar de h4ckm4n
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      68

      Re: Virus o troyanos in detectables por antivirus y herramientas

      .
      [-] 2008-04-14 . D9A84134776399F6BD244BC456076575 . 4096 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\ksuser.dll
      [-] 2008-04-14 . D9A84134776399F6BD244BC456076575 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ksuser.dll
      [-] 2008-04-14 . D9A84134776399F6BD244BC456076575 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\dllcache\ksuser.dll
      [-] 2008-04-14 . D9A84134776399F6BD244BC456076575 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\ksuser.dll
      .
      [-] 2008-04-14 . DAAE1CB1B1875B760496E7D3336DA1AD . 15360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe
      [-] 2008-04-14 . DAAE1CB1B1875B760496E7D3336DA1AD . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
      [-] 2008-04-14 . DAAE1CB1B1875B760496E7D3336DA1AD . 15360 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ctfmon.exe
      .
      [-] 2009-07-27 . 1F617C5A76215C380478D750CE92CC73 . 135168 . . [6.00.2900.5853] . . c:\windows\system32\shsvcs.dll
      [-] 2009-07-27 . 1F617C5A76215C380478D750CE92CC73 . 135168 . . [6.00.2900.5853] . . c:\windows\system32\dllcache\shsvcs.dll
      [-] 2009-07-27 . 8A34F9730A2206726B1BE4DC4209CAB9 . 135168 . . [6.00.2900.5853] . . c:\windows\$hf_mig$\KB971029\SP3QFE\shsvcs.dll
      [-] 2008-04-14 . CA70EDBF32032EA53F114CB930741CB5 . 135168 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\shsvcs.dll
      .
      [-] 2008-04-14 . B5D9EFEBE404A9A2C74EF27E1823A78B . 4608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msimg32.dll
      [-] 2008-04-14 . B5D9EFEBE404A9A2C74EF27E1823A78B . 4608 . . [5.1.2600.5512] . . c:\windows\system32\msimg32.dll
      [-] 2008-04-14 . B5D9EFEBE404A9A2C74EF27E1823A78B . 4608 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\msimg32.dll
      .
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\srsvc.dll
      .
      [-] 2008-04-14 . B2718EC9DC738E915D4177498E92BC4D . 13824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wscntfy.exe
      [-] 2008-04-14 . B2718EC9DC738E915D4177498E92BC4D . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
      [-] 2008-04-14 . B2718EC9DC738E915D4177498E92BC4D . 13824 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wscntfy.exe
      .
      [-] 2008-04-14 . 14FDADCF05A37582399DAF1DA1DE1C7B . 129024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\xmlprov.dll
      [-] 2008-04-14 . 14FDADCF05A37582399DAF1DA1DE1C7B . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
      [-] 2008-04-14 . 14FDADCF05A37582399DAF1DA1DE1C7B . 129024 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\xmlprov.dll
      .
      [-] 2010-12-09 . 48AADE1D5F48819A4C3978C09AAD1DC9 . 742912 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntdll.dll
      [-] 2010-12-09 . 45B458684F0471C4F25A31A0BE4D2C70 . 742912 . . [5.1.2600.6055] . . c:\windows\system32\ntdll.dll
      [-] 2010-12-09 . 45B458684F0471C4F25A31A0BE4D2C70 . 742912 . . [5.1.2600.6055] . . c:\windows\system32\dllcache\ntdll.dll
      [-] 2009-02-09 . 6CBEC637D1B5A19A1C91F2B84E03CDE2 . 739840 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntdll.dll
      [-] 2008-04-14 . 91346D0D58E9FA1C75D8D0319F281745 . 730624 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntdll.dll
      .
      [-] 2009-02-27 . 3AEC5DBB88B5DF8982857317A00AF9D1 . 177152 . . [5.1.2600.5768] . . c:\windows\system32\msctfime.ime
      [-] 2009-02-27 . 3AEC5DBB88B5DF8982857317A00AF9D1 . 177152 . . [5.1.2600.5768] . . c:\windows\system32\dllcache\msctfime.ime
      [-] 2009-02-27 . EE8205E9F125C970711F78908D828B25 . 177152 . . [5.1.2600.5768] . . c:\windows\$hf_mig$\KB961503\SP3QFE\msctfime.ime
      [-] 2008-04-14 . DFE0E9229DD3C1441B93AAB15610B9B8 . 177152 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msctfime.ime
      .
      [-] 2008-04-14 . 2744C713F0217BD8FFD13E2EF731371C . 56320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\eventlog.dll
      [-] 2008-04-14 . 2744C713F0217BD8FFD13E2EF731371C . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
      [-] 2008-04-14 . 2744C713F0217BD8FFD13E2EF731371C . 56320 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\eventlog.dll
      .
      [-] 2008-04-14 . 2A1E1DF559B291583903D2F9CC504522 . 1572352 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll
      [-] 2008-04-14 . 2A1E1DF559B291583903D2F9CC504522 . 1572352 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
      [-] 2008-04-14 . 2A1E1DF559B291583903D2F9CC504522 . 1572352 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\sfcfiles.dll
      .
      [-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ipsec.sys
      [-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ipsec.sys
      [-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
      .
      [-] 2008-04-14 . E424F05B07AC4357DC08D06218D76C7C . 59904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regsvc.dll
      [-] 2008-04-14 . E424F05B07AC4357DC08D06218D76C7C . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
      [-] 2008-04-14 . E424F05B07AC4357DC08D06218D76C7C . 59904 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\regsvc.dll
      .
      [-] 2008-04-14 . 51BE25C404D3DD344C6079DE715E4977 . 193536 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\schedsvc.dll
      [-] 2008-04-14 . 51BE25C404D3DD344C6079DE715E4977 . 193536 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
      [-] 2008-04-14 . 51BE25C404D3DD344C6079DE715E4977 . 193536 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\schedsvc.dll
      .
      [-] 2008-04-14 . B622A432EF02895DE4AA38AC8B85FA4C . 71680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll
      [-] 2008-04-14 . B622A432EF02895DE4AA38AC8B85FA4C . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
      [-] 2008-04-14 . B622A432EF02895DE4AA38AC8B85FA4C . 71680 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ssdpsrv.dll
      .
      [-] 2008-04-14 . 288B20D56D5F0EC4BCC77FBFA5A81740 . 296960 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\termsrv.dll
      [-] 2008-04-14 . 288B20D56D5F0EC4BCC77FBFA5A81740 . 296960 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll
      [-] 2008-04-14 . 288B20D56D5F0EC4BCC77FBFA5A81740 . 296960 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\termsrv.dll
      .
      [-] 2008-04-14 . 54B34DA91EAF52A8EAC654CED8977980 . 347136 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\hnetcfg.dll
      [-] 2008-04-14 . 54B34DA91EAF52A8EAC654CED8977980 . 347136 . . [5.1.2600.5512] . . c:\windows\system32\hnetcfg.dll
      [-] 2008-04-14 . 54B34DA91EAF52A8EAC654CED8977980 . 347136 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\hnetcfg.dll
      .
      [-] 2008-04-14 . 30CD42BFCDAFEFE8567B9E527DD3AE08 . 175104 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\appmgmts.dll
      [-] 2008-04-14 . 30CD42BFCDAFEFE8567B9E527DD3AE08 . 175104 . . [5.1.2600.5512] . . c:\windows\system32\appmgmts.dll
      [-] 2008-04-14 . 30CD42BFCDAFEFE8567B9E527DD3AE08 . 175104 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\appmgmts.dll
      .
      [-] 2001-08-24 . 1C905333C0B9F3D7C68DDF25E54B00F9 . 12032 . . [5.1.2600.0] . . c:\windows\system32\dllcache\acpiec.sys
      [-] 2001-08-24 . 1C905333C0B9F3D7C68DDF25E54B00F9 . 12032 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys
      .
      [-] 2008-04-14 01:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\ServicePackFiles\i386\aec.sys
      [-] 2008-04-14 01:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\dllcache\aec.sys
      [-] 2008-04-14 01:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys
      .
      [-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\agp440.sys
      [-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\agp440.sys
      [-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys
      .
      [-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ip6fw.sys
      [-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ip6fw.sys
      [-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
      .
      [-] 2010-09-18 07:18 . C7D2DE04EEA71D72EB0A8793FA6E9FC1 . 953856 . . [4.1.6151] . . c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc40u.dll
      [-] 2010-09-18 06:53 . 46EF24BCFAF0F7AB46B1A80CCC5BCC71 . 953856 . . [4.1.6151] . . c:\windows\system32\mfc40u.dll
      [-] 2010-09-18 06:53 . 46EF24BCFAF0F7AB46B1A80CCC5BCC71 . 953856 . . [4.1.6151] . . c:\windows\system32\dllcache\mfc40u.dll
      [-] 2008-04-14 10:48 . 27415CEEB58C8C2F92AFF8CFE2517A3C . 927504 . . [4.1.0.61] . . c:\windows\ServicePackFiles\i386\mfc40u.dll
      .
      [-] 2008-04-14 . 047E70B04B288439245DDC8DD1A31982 . 33792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msgsvc.dll
      [-] 2008-04-14 . 047E70B04B288439245DDC8DD1A31982 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
      [-] 2008-04-14 . 047E70B04B288439245DDC8DD1A31982 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\msgsvc.dll
      .
      [-] 2006-10-19 00:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll
      [-] 2006-10-19 00:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\dllcache\mspmsnsv.dll
      .
      [-] 2013-01-07 . C3D8034849831B11906A5C796A9D6DDF . 2072192 . . [5.1.2600.6335] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe
      [-] 2013-01-07 . C3D8034849831B11906A5C796A9D6DDF . 2072192 . . [5.1.2600.6335] . . c:\windows\system32\dllcache\ntkrnlpa.exe
      [-] 2013-01-07 . 240DE6DFD0BE50798F365848A6C03A9C . 2030080 . . [5.1.2600.6335] . . c:\windows\system32\ntkrnlpa.exe
      [-] 2013-01-07 . A88240BA6F7EF5C72293C06A773C3376 . 2072192 . . [5.1.2600.6335] . . c:\windows\$hf_mig$\KB2799494\SP3QFE\ntkrnlpa.exe
      [-] 2012-08-23 . 16ECD7B345B29EE30559908E65BB6BCF . 2072064 . . [5.1.2600.6284] . . c:\windows\$hf_mig$\KB2724197\SP3QFE\ntkrnlpa.exe
      [-] 2012-04-11 . F3364F7432D706F7550FBA400DEC258E . 2071552 . . [5.1.2600.6206] . . c:\windows\$hf_mig$\KB2676562\SP3QFE\ntkrnlpa.exe
      [-] 2010-12-09 . 9F35605BC629F27AA34423B9DE652284 . 2071808 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlpa.exe
      [-] 2009-02-09 . 9B5E5D325CEDBB10A9A86679634A38CC . 2068608 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe
      [-] 2008-08-14 . F285B6D10EFF2C06ED021E9FBD282A77 . 2068480 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
      [-] 2008-04-14 . 2E2931A58B112CDF2A99B00B5DACDBE4 . 2068224 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe
      .
      [-] 2008-04-14 10:48 . D60C40D71A4D874C903255E4827AFA0C . 437760 . . [5.1.2400.5512] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll
      [-] 2008-04-14 07:48 . D60C40D71A4D874C903255E4827AFA0C . 437760 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
      [-] 2008-04-14 07:48 . D60C40D71A4D874C903255E4827AFA0C . 437760 . . [5.1.2400.5512] . . c:\windows\system32\dllcache\ntmssvc.dll
      .
      [-] 2008-04-14 . 7594203F459ABDB5FE53C08D6B1BD53B . 186368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\upnphost.dll
      [-] 2008-04-14 . 7594203F459ABDB5FE53C08D6B1BD53B . 186368 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
      [-] 2008-04-14 . 7594203F459ABDB5FE53C08D6B1BD53B . 186368 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\upnphost.dll
      .
      [-] 2008-04-14 . 9EF059A2C76BCE8DB9B0DD95EFE23A48 . 367616 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\dsound.dll
      [-] 2008-04-14 . 9EF059A2C76BCE8DB9B0DD95EFE23A48 . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
      [-] 2008-04-14 . 9EF059A2C76BCE8DB9B0DD95EFE23A48 . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dllcache\dsound.dll
      .
      [-] 2008-04-14 . AE5DD931EFAB3687BA4DF0671F4CE078 . 1689088 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\d3d9.dll
      [-] 2008-04-14 . AE5DD931EFAB3687BA4DF0671F4CE078 . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\d3d9.dll
      [-] 2008-04-14 . AE5DD931EFAB3687BA4DF0671F4CE078 . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\dllcache\d3d9.dll
      .
      [-] 2008-04-14 . 28D0D87445F4ADD6614155EC13F042DD . 279552 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\ddraw.dll
      [-] 2008-04-14 . 28D0D87445F4ADD6614155EC13F042DD . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
      [-] 2008-04-14 . 28D0D87445F4ADD6614155EC13F042DD . 279552 . . [5.03.2600.5512] . . c:\windows\system32\dllcache\ddraw.dll
      .
      [-] 2008-04-14 10:48 . F71CB6064DFC10DFB767B537BFA33D61 . 84992 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\olepro32.dll
      [-] 2008-04-14 07:48 . F71CB6064DFC10DFB767B537BFA33D61 . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
      [-] 2008-04-14 07:48 . F71CB6064DFC10DFB767B537BFA33D61 . 84992 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\olepro32.dll
      .
      [-] 2008-04-14 . 91C2A139745F2AF17E4685A1E54B4FDA . 41984 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\perfctrs.dll
      [-] 2008-04-14 . 91C2A139745F2AF17E4685A1E54B4FDA . 41984 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
      [-] 2008-04-14 . 91C2A139745F2AF17E4685A1E54B4FDA . 41984 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\perfctrs.dll
      .
      [-] 2008-04-14 . F4968D88123785BCF95A31E0225C5592 . 18944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\version.dll
      [-] 2008-04-14 . F4968D88123785BCF95A31E0225C5592 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\version.dll
      [-] 2008-04-14 . F4968D88123785BCF95A31E0225C5592 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\version.dll
      .
      [-] 2013-01-07 . E81CC22E7AB05129991D539731539278 . 2151424 . . [5.1.2600.6335] . . c:\windows\system32\ntoskrnl.exe
      [-] 2013-01-07 . EF24649D2907048825F30B92277E3F03 . 2195456 . . [5.1.2600.6335] . . c:\windows\Driver Cache\i386\ntoskrnl.exe
      [-] 2013-01-07 . EF24649D2907048825F30B92277E3F03 . 2195456 . . [5.1.2600.6335] . . c:\windows\system32\dllcache\ntoskrnl.exe
      [-] 2013-01-07 . FAACFDAC432F3851FB5BA94ABB2EC9CD . 2195584 . . [5.1.2600.6335] . . c:\windows\$hf_mig$\KB2799494\SP3QFE\ntoskrnl.exe
      [-] 2012-08-23 . 022030CDB8ACC8FD6D7522CDFA33B14B . 2195456 . . [5.1.2600.6284] . . c:\windows\$hf_mig$\KB2724197\SP3QFE\ntoskrnl.exe
      [-] 2012-04-11 . 90EB3AFD0833502E05D1D7A4B6F238A5 . 2195072 . . [5.1.2600.6206] . . c:\windows\$hf_mig$\KB2676562\SP3QFE\ntoskrnl.exe
      [-] 2010-12-09 . 4F2053B8B0D20F4B398A95BDD1905893 . 2195200 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntoskrnl.exe
      [-] 2009-02-10 . 6BC8E4AAFC98B556B8FB616AD30CD5A3 . 2191616 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe
      [-] 2008-08-14 . 894487999106154C4CF4383E93E7380E . 2191616 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
      [-] 2008-04-14 . 6468827016FA22CAE81D7059F1A974C0 . 2191360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe
      .
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\srsvc.dll
      .
      [-] 2008-04-14 . C71CFACDBFADD819736F61F5738BDDC1 . 177152 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\w32time.dll
      [-] 2008-04-14 . C71CFACDBFADD819736F61F5738BDDC1 . 177152 . . [5.1.2600.5512] . . c:\windows\system32\w32time.dll
      [-] 2008-04-14 . C71CFACDBFADD819736F61F5738BDDC1 . 177152 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\w32time.dll
      .
      [-] 2008-04-14 . 7226422C95FDF8AA6092EE964912B0DF . 334336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wiaservc.dll
      [-] 2008-04-14 . 7226422C95FDF8AA6092EE964912B0DF . 334336 . . [5.1.2600.5512] . . c:\windows\system32\wiaservc.dll
      [-] 2008-04-14 . 7226422C95FDF8AA6092EE964912B0DF . 334336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wiaservc.dll
      .
      [-] 2008-04-14 . D94FF77931D467AC3ED916F767FA7E1F . 18944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\midimap.dll
      [-] 2008-04-14 . D94FF77931D467AC3ED916F767FA7E1F . 18944 . . [5.1.2600.5512] . . c:\windows\system32\midimap.dll
      [-] 2008-04-14 . D94FF77931D467AC3ED916F767FA7E1F . 18944 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\midimap.dll
      .
      [-] 2008-04-14 . 73ECA7B33EB3F7262D92EA80B61708CD . 7680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rasadhlp.dll
      [-] 2008-04-14 . 73ECA7B33EB3F7262D92EA80B61708CD . 7680 . . [5.1.2600.5512] . . c:\windows\system32\rasadhlp.dll
      [-] 2008-04-14 . 73ECA7B33EB3F7262D92EA80B61708CD . 7680 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\rasadhlp.dll
      .
      [-] 2008-04-14 . AF6AFCD7BAB71127B3812762500EFBA1 . 19456 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wshtcpip.dll
      [-] 2008-04-14 . AF6AFCD7BAB71127B3812762500EFBA1 . 19456 . . [5.1.2600.5512] . . c:\windows\system32\wshtcpip.dll
      [-] 2008-04-14 . AF6AFCD7BAB71127B3812762500EFBA1 . 19456 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wshtcpip.dll
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "PCTVOICE"="pctspk.exe" [2003-07-17 180224]
      "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2012-12-28 13529088]
      "UnlockerAssistant"="c:\archivos de programa\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
      "SMSERIAL"="c:\archivos de programa\Motorola\SMSERIAL\sm56hlpr.exe" [2013-03-17 1458176]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "DisableRegedit"= 0 (0x0)
      .
      [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
      "DisableRegedit"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
      "FLEXnet Licensing Service"=3 (0x3)
      "Nhksrv"=2 (0x2)
      "WMPNetworkSvc"=3 (0x3)
      "Steam Client Service"=3 (0x3)
      "MDM"=2 (0x2)
      "gupdatem"=3 (0x3)
      "AdobeFlashPlayerUpdateSvc"=3 (0x3)
      "gupdate"=2 (0x2)
      "ose"=3 (0x3)
      "idsvc"=3 (0x3)
      .
      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
      "%windir%\\system32\\sessmgr.exe"=
      "c:\\Archivos de programa\\Winamp\\winamp.exe"=
      "c:\\Archivos de programa\\valve\\Counter Strike 1.6\\hl.exe"=
      "c:\\Program Files\\Counter-Strike Xtreme V6\\hl.exe"=
      "c:\\Archivos de programa\\Java\\jre7\\bin\\javaw.exe"=
      "c:\\Archivos de programa\\valve\\Counter Strike 1.6\\hltv.exe"=
      "c:\\Archivos de programa\\Steam\\Steam.exe"=
      "c:\\Documents and Settings\\hackman\\Datos de programa\\uTorrent\\uTorrent.exe"=
      "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
      "c:\\Archivos de programa\\Skype\\Phone\\Skype.exe"=
      .
      R?2 D_Link_DWA-125;D_Link_DWA-125 Service;c:\archivos de programa\D-Link\DWA-125 revA\ANIWZCSdS.exe [26/12/2012 18:26 126976]
      R2 ANPD;ANPD Service;c:\windows\system32\ANPD.SYS [26/12/2012 18:26 29411]
      R2 D_Link_DWA-125_WPS;D_Link_DWA-125_WPS Service;c:\archivos de programa\D-Link\DWA-125 revA\ANIWConnService.exe [26/12/2012 18:26 40960]
      R3 Msikbd2k;DellTouch;c:\windows\system32\drivers\Msikbd2k.sys [27/12/2012 21:54 6656]
      R3 Pcouffin;Low level access layer for CD devices;c:\windows\system32\drivers\Pcouffin.sys [01/01/2013 19:41 47360]
      R3 pmserenum;PenMount Serial Device Enumeration Service;c:\windows\system32\drivers\pmserenum.sys [27/12/2012 23:59 26624]
      R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [09/01/2013 22:03 27632]
      S3 PAEAFLT.sys;USB Composite Device;c:\windows\system32\drivers\PAEAFLT.sys [21/01/2013 20:03 8576]
      S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [27/12/2012 11:46 27064]
      S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [26/11/2009 0:06 34384]
      S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; [x]
      S4 SkypeUpdate;Skype Updater;c:\archivos de programa\Skype\Updater\Updater.exe [07/02/2013 13:10 161384]
      .
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
      UxTuneUp
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2013-03-19 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-28 01:57]
      .
      2013-03-19 c:\windows\Tasks\User_Feed_Synchronization-{9F800338-C93E-41CC-BA6B-380F6C7D5A0B}.job
      - c:\windows\system32\msfeedssync.exe [2009-03-08 07:31]
      .
      .
      ------- Supplementary Scan -------
      .
      uStart Page = hxxp://www.bing.com
      mWindow Title = Microsoft Internet Explorer
      uInternet Settings,ProxyOverride = <local>
      TCP: DhcpNameServer = 192.168.1.1
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Toolbar-Locked - (no file)
      .
      .
      .
      **************************************************************************
      .
      catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
      Rootkit scan 2013-03-19 12:58
      Windows 5.1.2600 Service Pack 3 NTFS
      .
      scanning hidden processes ...
      .
      scanning hidden autostart entries ...
      .
      scanning hidden files ...
      .
      scan completed successfully
      hidden files: 0
      .
      **************************************************************************
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\h–€|ÿÿÿÿ¤•€|ù•9~*]
      "A0C0110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum]
      @Denied: (Full) (LocalSystem)
      @Denied: (Full) (Everyone)
      "NextParentID.daba3ff.2"=dword:00000001
      "NextParentID.267a616a.3"=dword:00000001
      "NextParentID.354aea31.4"=dword:00000001
      "NextParentID.30647147.4"=dword:00000001
      "NextParentID.53af4df.4"=dword:00000001
      "NextParentID.4f07476.4"=dword:00000001
      "NextParentID.6edbab.5"=dword:00000001
      "NextParentID.28538922.4"=dword:00000001
      "NextParentID.3b0d39c7.4"=dword:00000001
      "NextParentID.122c2065.4"=dword:00000001
      "NextParentID.24e5d10a.4"=dword:00000001
      "NextParentID.87115de.4"=dword:00000001
      "NextParentID.39700ba5.5"=dword:00000001
      "NextParentID.35730f66.5"=dword:00000001
      "NextParentID.15a56e73.5"=dword:00000001
      "NextParentID.7dedc0b.6"=dword:00000001
      "NextParentID.30a96598.1"=dword:00000001
      "NextParentID.131bfd66.5"=dword:00000001
      "NextParentID.35fb2ad7.5"=dword:00000001
      "NextParentID.3130d70.7"=dword:00000001
      "NextParentID.15ccbe15.7"=dword:00000001
      "NextParentID.28866eba.7"=dword:00000001
      "NextParentID.1a22391b.5"=dword:00000001
      "NextParentID.3451b8a.6"=dword:00000001
      "NextParentID.636fbdf.6"=dword:00000002
      "NextParentID.4b8fdad.5"=dword:00000001
      "NextParentID.3451cebe.6"=dword:00000001
      "NextParentID.26b65b00.5"=dword:00000001
      "NextParentID.b70b55c.6"=dword:00000001
      "NextParentID.1bfe1c47.5"=dword:00000001
      "NextParentID.28d46231.7"=dword:00000001
      "NextParentID.293fdb8f.5"=dword:00000001
      "NextParentID.939d86b.6"=dword:00000001
      "NextParentID.369e458e.6"=dword:00000001
      "NextParentID.dbd2c2c.6"=dword:00000001
      "NextParentID.321af1cd.6"=dword:00000001
      "NextParentID.392a22d6.7"=dword:00000001
      "NextParentID.1653bff5.6"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\GenuineIntel_-_x86_Family_15_Model_2\_0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\GenuineIntel_-_x86_Family_15_Model_2\_1\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0000\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0100\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0200\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0303\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      "Migrated"=dword:00000001
      "KeyboardDataQueueSize"=dword:00000064
      "PollStatusIterations"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0401\1\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      "PortName"="LPT1"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0501\1\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      "PortName"="COM1"
      "PollingPeriod"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0700\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0800\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0A03\0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0B00\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0C01\1\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0C02\0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0C02\10\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0C04\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\BTH\MS_BTHPAN\6&1653bff5&0&2\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\BTH\MS_RFCOMM\6&1653bff5&0&0\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\DISPLAY\Default_Monitor\5&131bfd66&0&11223344&01&00\Device Parameters]
      "BAD_EDID"=hex:00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,
      00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\DISPLAY\Default_Monitor\5&131bfd66&0&11337799&01&00\Device Parameters]
      "BAD_EDID"=hex:00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,
      00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\DISPLAY\GLC4A4C\5&131bfd66&0&11335577&01&00\Device Parameters]
      "EDID"=hex:00,ff,ff,ff,ff,ff,ff,00,1d,83,4c,4a,01,01,01,01,2e,0c,01,01,7e,20,
      18,aa,e8,e0,59,a3,54,46,9b,24,10,21,4c,ff,fe,00,31,59,45,59,61,59,31,7c,45,\
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\DISPLAY\GLC4A4C\5&131bfd66&0&22446688&01&00\Device Parameters]
      "EDID"=hex:00,ff,ff,ff,ff,ff,ff,00,1d,83,4c,4a,01,01,01,01,2e,0c,01,01,7e,20,
      18,aa,e8,e0,59,a3,54,46,9b,24,10,21,4c,ff,fe,00,31,59,45,59,61,59,31,7c,45,\
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&321af1cd&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&3451cebe&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&369e458e&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&7dedc0b&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      "WaitWakeEnabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&939d86b&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&b70b55c&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&dbd2c2c&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.0.0\Device Parameters]
      "DefaultDvdRegion"=dword:00000002
      "DefaultRequestFlags"=dword:00000008
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.0.0\Device Parameters\CdRom]
      "NonMmc"=dword:00000001
      "ReadCD"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.0.0\Device Parameters\DigitalAudio]
      "ReadSizesSupported"=dword:ffffffff
      "CDDASupported"=dword:00000001
      "CDDAAccurate"=dword:00000000
      "SettingsFromDevice"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.1.0\Device Parameters]
      "DefaultDvdRegion"=dword:00000002
      "DefaultRequestFlags"=dword:00000008
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.1.0\Device Parameters\CdRom]
      "NonMmc"=dword:00000001
      "ReadCD"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.1.0\Device Parameters\DigitalAudio]
      "ReadSizesSupported"=dword:ffffffff
      "CDDASupported"=dword:00000001
      "CDDAAccurate"=dword:00000001
      "SettingsFromDevice"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomTSSTcorp_CD-R/RW_TS-H292A_______________TS00____\5&35730f66&0&0.1.0\Device Parameters]
      "DefaultDvdRegion"=dword:00000002
      "DefaultRequestFlags"=dword:00000008
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomTSSTcorp_CD-R/RW_TS-H292A_______________TS00____\5&35730f66&0&0.1.0\Device Parameters\Classpnp]
      "MMCDetectionState"=dword:00000002
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomTSSTcorp_CD-R/RW_TS-H292A_______________TS00____\5&35730f66&0&0.1.0\Device Parameters\DigitalAudio]
      "ReadSizesSupported"=dword:ffffffff
      "CDDASupported"=dword:00000001
      "CDDAAccurate"=dword:00000001
      "SettingsFromDevice"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomTSSTcorp_CD-R/RW_TS-H292A_______________TS00____\5&35730f66&0&0.1.0\Device Parameters\Imapi]
      "EnableImapi"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\LPTENUM\MicrosoftRawPort\5&35fb2ad7&0&LPT1\Device Parameters]
      "PortName"="LPT1:"
      "IEEE_1284_Manufacturer"="Microsoft"
      "IEEE_1284_Model"="RawPort"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_10DE&DEV_0322&SUBSYS_203C1682&REV_A1\4&354aea31&0&0008\Device Parameters]
      "VideoID"="{3F50C898-0268-48BB-98CE-21A747ADA751}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3038&SUBSYS_30381849&REV_81\3&267a616a&0&80\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000001
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3038&SUBSYS_30381849&REV_81#3&267a616a&0&80#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      "Haction"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3038&SUBSYS_30381849&REV_81\3&267a616a&0&81\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000001
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3038&SUBSYS_30381849&REV_81#3&267a616a&0&81#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      "Haction"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3038&SUBSYS_30381849&REV_81\3&267a616a&0&82\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000001
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3038&SUBSYS_30381849&REV_81#3&267a616a&0&82#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      "Haction"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3038&SUBSYS_30381849&REV_81\3&267a616a&0&83\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000001
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3038&SUBSYS_30381849&REV_81#3&267a616a&0&83#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      "Haction"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3065&SUBSYS_30651849&REV_78\3&267a616a&0&90\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3068&SUBSYS_4C211543&REV_80\3&267a616a&0&8E\Device Parameters]
      "PortName"="COM3"
      "PermanentGuid"=hex:14,65,f4,32,e7,cd,f7,4d,b6,ed,f1,c6,d8,3e,10,a2
      "WakeOnRing"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3104&SUBSYS_31041849&REV_86\3&267a616a&0&84\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000000
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3104&SUBSYS_31041849&REV_86#3&267a616a&0&84#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\*PNP0501\1_0_17_0_0_0\Device Parameters]
      "DosDeviceName"="COM1"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\LEGACY_BEEP]
      "NextInstance"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\LEGACY_BEEP\0000]
      "Service"="Beep"
      "Legacy"=dword:00000001
      "ConfigFlags"=dword:00000020
      "Class"="LegacyDriver"
      "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"
      "DeviceDesc"="Beep"
      "Capabilities"=dword:00000000
      "Driver"="{8ECC055D-047F-11D1-A537-0000F8753ED1}\\0002"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_L2TPMINIPORT\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_NDISWANIP\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PPPOEMINIPORT\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PPTPMINIPORT\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PSCHEDMP\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PSCHEDMP\0001\Device Parameters]
      "InstanceIndex"=dword:00000002
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PSCHEDMP\0002\Device Parameters]
      "InstanceIndex"=dword:00000003
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PSCHEDMP\0003\Device Parameters]
      "InstanceIndex"=dword:00000004
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PTIMINIPORT\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\SW\{48926476-2cae-4ded-a86e-73ddebed6779}\NDISIP\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\SW\{eeab7790-c514-11d1-b42b-00805fc1270e}\asyncmac\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB\4&122c2065&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB#4&122c2065&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB\4&24e5d10a&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB#4&24e5d10a&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB\4&28538922&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB#4&28538922&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB\4&3b0d39c7&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB#4&3b0d39c7&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB20\4&87115de&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB20#4&87115de&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0000&Pid_0000\5&1a22391b&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0000&Pid_0000\5&1a22391b&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0000&Pid_0000\5&1bfe1c47&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&15a56e73&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&15a56e73&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&1a22391b&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&1a22391b&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&1a22391b&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&1a22391b&0&2#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&293fdb8f&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&293fdb8f&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&293fdb8f&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&293fdb8f&0&2#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&4b8fdad&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&4b8fdad&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&4b8fdad&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&4b8fdad&0&2#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_054c&Pid_053b\D863E008B445\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_054c&Pid_053b#D863E008B445#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_07d1&Pid_3c16\1.0\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "InstanceIndex"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_07d1&Pid_3c16#1.0#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_07d1&Pid_3c16\5\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "InstanceIndex"=dword:00000002
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0930&Pid_6545\001CC0EC348DEA8115E4007B\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_0930&Pid_6545#001CC0EC348DEA8115E4007B#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_093a&Pid_262c&MI_00\6&636fbdf&0&0000\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0a12&Pid_0001\5&1a22391b&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "COD Type"=dword:00000001
      "Scans Before Out of Range"=dword:00000008
      "Store Link Key COD Masks"=hex:00,00,1f,43,00,00,05,40,00,00,1f,83,00,00,05,80
      "SymbolicLinkName"="\\??\\USB#Vid_0a12&Pid_0001#5&1a22391b&0&1#{0850302a-b344-4fda-9be9-90576b8d46f0}"
      "SymbolicName"="\\??\\USB#Vid_0a12&Pid_0001#5&1a22391b&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      "Write Scan Enable"=dword:00000002
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0bb4&Pid_0ff9\HT23KTX05026\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_0bb4&Pid_0ff9#HT23KTX05026#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_152d&Pid_2339\152D203380B6\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_152d&Pid_2339#152D203380B6#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_152d&Pid_2339\2E9BB200425F\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_152d&Pid_2339#2E9BB200425F#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_15ca&Pid_1806\5&1a22391b&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_15ca&Pid_1806#5&1a22391b&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_15ca&Pid_1806&MI_00\6&3451b8a&0&0000\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      --------------------- DLLs Loaded Under Running Processes ---------------------
      .
      - - - - - - - > 'winlogon.exe'(1388)
      c:\windows\system32\l3codeca.acm
      c:\windows\system32\ac3acm.acm
      c:\windows\system32\lameACM.acm
      c:\windows\system32\sirenacm.dll
      c:\windows\system32\vorbis.acm
      .
      - - - - - - - > 'explorer.exe'(2844)
      c:\windows\system32\WININET.dll
      c:\windows\system32\msi.dll
      c:\windows\system32\webcheck.dll
      c:\windows\system32\WPDShServiceObj.dll
      c:\windows\system32\PortableDeviceTypes.dll
      c:\windows\system32\PortableDeviceApi.dll
      c:\windows\system32\l3codeca.acm
      c:\windows\system32\ac3acm.acm
      c:\windows\system32\lameACM.acm
      c:\windows\system32\sirenacm.dll
      c:\windows\system32\vorbis.acm
      .
      Completion time: 2013-03-19 13:01:40
      ComboFix-quarantined-files.txt 2013-03-19 16:01
      .
      Pre-Run: 283.606.163.456 bytes libres
      Post-Run: 283.621.384.192 bytes libres
      .
      - - End Of File - - F18029B70C346082476382685DEF694E

    8. #8
      Usuario Avatar de h4ckm4n
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      68

      Re: Virus o troyanos in detectables por antivirus y herramientas

      .
      [-] 2008-04-14 . D9A84134776399F6BD244BC456076575 . 4096 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\ksuser.dll
      [-] 2008-04-14 . D9A84134776399F6BD244BC456076575 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ksuser.dll
      [-] 2008-04-14 . D9A84134776399F6BD244BC456076575 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\dllcache\ksuser.dll
      [-] 2008-04-14 . D9A84134776399F6BD244BC456076575 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\ksuser.dll
      .
      [-] 2008-04-14 . DAAE1CB1B1875B760496E7D3336DA1AD . 15360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe
      [-] 2008-04-14 . DAAE1CB1B1875B760496E7D3336DA1AD . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
      [-] 2008-04-14 . DAAE1CB1B1875B760496E7D3336DA1AD . 15360 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ctfmon.exe
      .
      [-] 2009-07-27 . 1F617C5A76215C380478D750CE92CC73 . 135168 . . [6.00.2900.5853] . . c:\windows\system32\shsvcs.dll
      [-] 2009-07-27 . 1F617C5A76215C380478D750CE92CC73 . 135168 . . [6.00.2900.5853] . . c:\windows\system32\dllcache\shsvcs.dll
      [-] 2009-07-27 . 8A34F9730A2206726B1BE4DC4209CAB9 . 135168 . . [6.00.2900.5853] . . c:\windows\$hf_mig$\KB971029\SP3QFE\shsvcs.dll
      [-] 2008-04-14 . CA70EDBF32032EA53F114CB930741CB5 . 135168 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\shsvcs.dll
      .
      [-] 2008-04-14 . B5D9EFEBE404A9A2C74EF27E1823A78B . 4608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msimg32.dll
      [-] 2008-04-14 . B5D9EFEBE404A9A2C74EF27E1823A78B . 4608 . . [5.1.2600.5512] . . c:\windows\system32\msimg32.dll
      [-] 2008-04-14 . B5D9EFEBE404A9A2C74EF27E1823A78B . 4608 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\msimg32.dll
      .
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\srsvc.dll
      .
      [-] 2008-04-14 . B2718EC9DC738E915D4177498E92BC4D . 13824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wscntfy.exe
      [-] 2008-04-14 . B2718EC9DC738E915D4177498E92BC4D . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
      [-] 2008-04-14 . B2718EC9DC738E915D4177498E92BC4D . 13824 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wscntfy.exe
      .
      [-] 2008-04-14 . 14FDADCF05A37582399DAF1DA1DE1C7B . 129024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\xmlprov.dll
      [-] 2008-04-14 . 14FDADCF05A37582399DAF1DA1DE1C7B . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
      [-] 2008-04-14 . 14FDADCF05A37582399DAF1DA1DE1C7B . 129024 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\xmlprov.dll
      .
      [-] 2010-12-09 . 48AADE1D5F48819A4C3978C09AAD1DC9 . 742912 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntdll.dll
      [-] 2010-12-09 . 45B458684F0471C4F25A31A0BE4D2C70 . 742912 . . [5.1.2600.6055] . . c:\windows\system32\ntdll.dll
      [-] 2010-12-09 . 45B458684F0471C4F25A31A0BE4D2C70 . 742912 . . [5.1.2600.6055] . . c:\windows\system32\dllcache\ntdll.dll
      [-] 2009-02-09 . 6CBEC637D1B5A19A1C91F2B84E03CDE2 . 739840 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntdll.dll
      [-] 2008-04-14 . 91346D0D58E9FA1C75D8D0319F281745 . 730624 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntdll.dll
      .
      [-] 2009-02-27 . 3AEC5DBB88B5DF8982857317A00AF9D1 . 177152 . . [5.1.2600.5768] . . c:\windows\system32\msctfime.ime
      [-] 2009-02-27 . 3AEC5DBB88B5DF8982857317A00AF9D1 . 177152 . . [5.1.2600.5768] . . c:\windows\system32\dllcache\msctfime.ime
      [-] 2009-02-27 . EE8205E9F125C970711F78908D828B25 . 177152 . . [5.1.2600.5768] . . c:\windows\$hf_mig$\KB961503\SP3QFE\msctfime.ime
      [-] 2008-04-14 . DFE0E9229DD3C1441B93AAB15610B9B8 . 177152 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msctfime.ime
      .
      [-] 2008-04-14 . 2744C713F0217BD8FFD13E2EF731371C . 56320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\eventlog.dll
      [-] 2008-04-14 . 2744C713F0217BD8FFD13E2EF731371C . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
      [-] 2008-04-14 . 2744C713F0217BD8FFD13E2EF731371C . 56320 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\eventlog.dll
      .
      [-] 2008-04-14 . 2A1E1DF559B291583903D2F9CC504522 . 1572352 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll
      [-] 2008-04-14 . 2A1E1DF559B291583903D2F9CC504522 . 1572352 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
      [-] 2008-04-14 . 2A1E1DF559B291583903D2F9CC504522 . 1572352 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\sfcfiles.dll
      .
      [-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ipsec.sys
      [-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ipsec.sys
      [-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
      .
      [-] 2008-04-14 . E424F05B07AC4357DC08D06218D76C7C . 59904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regsvc.dll
      [-] 2008-04-14 . E424F05B07AC4357DC08D06218D76C7C . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
      [-] 2008-04-14 . E424F05B07AC4357DC08D06218D76C7C . 59904 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\regsvc.dll
      .
      [-] 2008-04-14 . 51BE25C404D3DD344C6079DE715E4977 . 193536 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\schedsvc.dll
      [-] 2008-04-14 . 51BE25C404D3DD344C6079DE715E4977 . 193536 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
      [-] 2008-04-14 . 51BE25C404D3DD344C6079DE715E4977 . 193536 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\schedsvc.dll
      .
      [-] 2008-04-14 . B622A432EF02895DE4AA38AC8B85FA4C . 71680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll
      [-] 2008-04-14 . B622A432EF02895DE4AA38AC8B85FA4C . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
      [-] 2008-04-14 . B622A432EF02895DE4AA38AC8B85FA4C . 71680 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ssdpsrv.dll
      .
      [-] 2008-04-14 . 288B20D56D5F0EC4BCC77FBFA5A81740 . 296960 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\termsrv.dll
      [-] 2008-04-14 . 288B20D56D5F0EC4BCC77FBFA5A81740 . 296960 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll
      [-] 2008-04-14 . 288B20D56D5F0EC4BCC77FBFA5A81740 . 296960 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\termsrv.dll
      .
      [-] 2008-04-14 . 54B34DA91EAF52A8EAC654CED8977980 . 347136 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\hnetcfg.dll
      [-] 2008-04-14 . 54B34DA91EAF52A8EAC654CED8977980 . 347136 . . [5.1.2600.5512] . . c:\windows\system32\hnetcfg.dll
      [-] 2008-04-14 . 54B34DA91EAF52A8EAC654CED8977980 . 347136 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\hnetcfg.dll
      .
      [-] 2008-04-14 . 30CD42BFCDAFEFE8567B9E527DD3AE08 . 175104 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\appmgmts.dll
      [-] 2008-04-14 . 30CD42BFCDAFEFE8567B9E527DD3AE08 . 175104 . . [5.1.2600.5512] . . c:\windows\system32\appmgmts.dll
      [-] 2008-04-14 . 30CD42BFCDAFEFE8567B9E527DD3AE08 . 175104 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\appmgmts.dll
      .
      [-] 2001-08-24 . 1C905333C0B9F3D7C68DDF25E54B00F9 . 12032 . . [5.1.2600.0] . . c:\windows\system32\dllcache\acpiec.sys
      [-] 2001-08-24 . 1C905333C0B9F3D7C68DDF25E54B00F9 . 12032 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys
      .
      [-] 2008-04-14 01:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\ServicePackFiles\i386\aec.sys
      [-] 2008-04-14 01:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\dllcache\aec.sys
      [-] 2008-04-14 01:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys
      .
      [-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\agp440.sys
      [-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\agp440.sys
      [-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys
      .
      [-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ip6fw.sys
      [-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ip6fw.sys
      [-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
      .
      [-] 2010-09-18 07:18 . C7D2DE04EEA71D72EB0A8793FA6E9FC1 . 953856 . . [4.1.6151] . . c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc40u.dll
      [-] 2010-09-18 06:53 . 46EF24BCFAF0F7AB46B1A80CCC5BCC71 . 953856 . . [4.1.6151] . . c:\windows\system32\mfc40u.dll
      [-] 2010-09-18 06:53 . 46EF24BCFAF0F7AB46B1A80CCC5BCC71 . 953856 . . [4.1.6151] . . c:\windows\system32\dllcache\mfc40u.dll
      [-] 2008-04-14 10:48 . 27415CEEB58C8C2F92AFF8CFE2517A3C . 927504 . . [4.1.0.61] . . c:\windows\ServicePackFiles\i386\mfc40u.dll
      .
      [-] 2008-04-14 . 047E70B04B288439245DDC8DD1A31982 . 33792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msgsvc.dll
      [-] 2008-04-14 . 047E70B04B288439245DDC8DD1A31982 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
      [-] 2008-04-14 . 047E70B04B288439245DDC8DD1A31982 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\msgsvc.dll
      .
      [-] 2006-10-19 00:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll
      [-] 2006-10-19 00:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\dllcache\mspmsnsv.dll
      .
      [-] 2013-01-07 . C3D8034849831B11906A5C796A9D6DDF . 2072192 . . [5.1.2600.6335] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe
      [-] 2013-01-07 . C3D8034849831B11906A5C796A9D6DDF . 2072192 . . [5.1.2600.6335] . . c:\windows\system32\dllcache\ntkrnlpa.exe
      [-] 2013-01-07 . 240DE6DFD0BE50798F365848A6C03A9C . 2030080 . . [5.1.2600.6335] . . c:\windows\system32\ntkrnlpa.exe
      [-] 2013-01-07 . A88240BA6F7EF5C72293C06A773C3376 . 2072192 . . [5.1.2600.6335] . . c:\windows\$hf_mig$\KB2799494\SP3QFE\ntkrnlpa.exe
      [-] 2012-08-23 . 16ECD7B345B29EE30559908E65BB6BCF . 2072064 . . [5.1.2600.6284] . . c:\windows\$hf_mig$\KB2724197\SP3QFE\ntkrnlpa.exe
      [-] 2012-04-11 . F3364F7432D706F7550FBA400DEC258E . 2071552 . . [5.1.2600.6206] . . c:\windows\$hf_mig$\KB2676562\SP3QFE\ntkrnlpa.exe
      [-] 2010-12-09 . 9F35605BC629F27AA34423B9DE652284 . 2071808 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlpa.exe
      [-] 2009-02-09 . 9B5E5D325CEDBB10A9A86679634A38CC . 2068608 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe
      [-] 2008-08-14 . F285B6D10EFF2C06ED021E9FBD282A77 . 2068480 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
      [-] 2008-04-14 . 2E2931A58B112CDF2A99B00B5DACDBE4 . 2068224 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe
      .
      [-] 2008-04-14 10:48 . D60C40D71A4D874C903255E4827AFA0C . 437760 . . [5.1.2400.5512] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll
      [-] 2008-04-14 07:48 . D60C40D71A4D874C903255E4827AFA0C . 437760 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
      [-] 2008-04-14 07:48 . D60C40D71A4D874C903255E4827AFA0C . 437760 . . [5.1.2400.5512] . . c:\windows\system32\dllcache\ntmssvc.dll
      .
      [-] 2008-04-14 . 7594203F459ABDB5FE53C08D6B1BD53B . 186368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\upnphost.dll
      [-] 2008-04-14 . 7594203F459ABDB5FE53C08D6B1BD53B . 186368 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
      [-] 2008-04-14 . 7594203F459ABDB5FE53C08D6B1BD53B . 186368 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\upnphost.dll
      .
      [-] 2008-04-14 . 9EF059A2C76BCE8DB9B0DD95EFE23A48 . 367616 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\dsound.dll
      [-] 2008-04-14 . 9EF059A2C76BCE8DB9B0DD95EFE23A48 . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
      [-] 2008-04-14 . 9EF059A2C76BCE8DB9B0DD95EFE23A48 . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dllcache\dsound.dll
      .
      [-] 2008-04-14 . AE5DD931EFAB3687BA4DF0671F4CE078 . 1689088 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\d3d9.dll
      [-] 2008-04-14 . AE5DD931EFAB3687BA4DF0671F4CE078 . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\d3d9.dll
      [-] 2008-04-14 . AE5DD931EFAB3687BA4DF0671F4CE078 . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\dllcache\d3d9.dll
      .
      [-] 2008-04-14 . 28D0D87445F4ADD6614155EC13F042DD . 279552 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\ddraw.dll
      [-] 2008-04-14 . 28D0D87445F4ADD6614155EC13F042DD . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
      [-] 2008-04-14 . 28D0D87445F4ADD6614155EC13F042DD . 279552 . . [5.03.2600.5512] . . c:\windows\system32\dllcache\ddraw.dll
      .
      [-] 2008-04-14 10:48 . F71CB6064DFC10DFB767B537BFA33D61 . 84992 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\olepro32.dll
      [-] 2008-04-14 07:48 . F71CB6064DFC10DFB767B537BFA33D61 . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
      [-] 2008-04-14 07:48 . F71CB6064DFC10DFB767B537BFA33D61 . 84992 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\olepro32.dll
      .
      [-] 2008-04-14 . 91C2A139745F2AF17E4685A1E54B4FDA . 41984 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\perfctrs.dll
      [-] 2008-04-14 . 91C2A139745F2AF17E4685A1E54B4FDA . 41984 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
      [-] 2008-04-14 . 91C2A139745F2AF17E4685A1E54B4FDA . 41984 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\perfctrs.dll
      .
      [-] 2008-04-14 . F4968D88123785BCF95A31E0225C5592 . 18944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\version.dll
      [-] 2008-04-14 . F4968D88123785BCF95A31E0225C5592 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\version.dll
      [-] 2008-04-14 . F4968D88123785BCF95A31E0225C5592 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\version.dll
      .
      [-] 2013-01-07 . E81CC22E7AB05129991D539731539278 . 2151424 . . [5.1.2600.6335] . . c:\windows\system32\ntoskrnl.exe
      [-] 2013-01-07 . EF24649D2907048825F30B92277E3F03 . 2195456 . . [5.1.2600.6335] . . c:\windows\Driver Cache\i386\ntoskrnl.exe
      [-] 2013-01-07 . EF24649D2907048825F30B92277E3F03 . 2195456 . . [5.1.2600.6335] . . c:\windows\system32\dllcache\ntoskrnl.exe
      [-] 2013-01-07 . FAACFDAC432F3851FB5BA94ABB2EC9CD . 2195584 . . [5.1.2600.6335] . . c:\windows\$hf_mig$\KB2799494\SP3QFE\ntoskrnl.exe
      [-] 2012-08-23 . 022030CDB8ACC8FD6D7522CDFA33B14B . 2195456 . . [5.1.2600.6284] . . c:\windows\$hf_mig$\KB2724197\SP3QFE\ntoskrnl.exe
      [-] 2012-04-11 . 90EB3AFD0833502E05D1D7A4B6F238A5 . 2195072 . . [5.1.2600.6206] . . c:\windows\$hf_mig$\KB2676562\SP3QFE\ntoskrnl.exe
      [-] 2010-12-09 . 4F2053B8B0D20F4B398A95BDD1905893 . 2195200 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntoskrnl.exe
      [-] 2009-02-10 . 6BC8E4AAFC98B556B8FB616AD30CD5A3 . 2191616 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe
      [-] 2008-08-14 . 894487999106154C4CF4383E93E7380E . 2191616 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
      [-] 2008-04-14 . 6468827016FA22CAE81D7059F1A974C0 . 2191360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe
      .
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
      [-] 2008-04-14 . 0F30EEC6013FCF76693405EC4A7DF899 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\srsvc.dll
      .
      [-] 2008-04-14 . C71CFACDBFADD819736F61F5738BDDC1 . 177152 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\w32time.dll
      [-] 2008-04-14 . C71CFACDBFADD819736F61F5738BDDC1 . 177152 . . [5.1.2600.5512] . . c:\windows\system32\w32time.dll
      [-] 2008-04-14 . C71CFACDBFADD819736F61F5738BDDC1 . 177152 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\w32time.dll
      .
      [-] 2008-04-14 . 7226422C95FDF8AA6092EE964912B0DF . 334336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wiaservc.dll
      [-] 2008-04-14 . 7226422C95FDF8AA6092EE964912B0DF . 334336 . . [5.1.2600.5512] . . c:\windows\system32\wiaservc.dll
      [-] 2008-04-14 . 7226422C95FDF8AA6092EE964912B0DF . 334336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wiaservc.dll
      .
      [-] 2008-04-14 . D94FF77931D467AC3ED916F767FA7E1F . 18944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\midimap.dll
      [-] 2008-04-14 . D94FF77931D467AC3ED916F767FA7E1F . 18944 . . [5.1.2600.5512] . . c:\windows\system32\midimap.dll
      [-] 2008-04-14 . D94FF77931D467AC3ED916F767FA7E1F . 18944 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\midimap.dll
      .
      [-] 2008-04-14 . 73ECA7B33EB3F7262D92EA80B61708CD . 7680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rasadhlp.dll
      [-] 2008-04-14 . 73ECA7B33EB3F7262D92EA80B61708CD . 7680 . . [5.1.2600.5512] . . c:\windows\system32\rasadhlp.dll
      [-] 2008-04-14 . 73ECA7B33EB3F7262D92EA80B61708CD . 7680 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\rasadhlp.dll
      .
      [-] 2008-04-14 . AF6AFCD7BAB71127B3812762500EFBA1 . 19456 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wshtcpip.dll
      [-] 2008-04-14 . AF6AFCD7BAB71127B3812762500EFBA1 . 19456 . . [5.1.2600.5512] . . c:\windows\system32\wshtcpip.dll
      [-] 2008-04-14 . AF6AFCD7BAB71127B3812762500EFBA1 . 19456 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wshtcpip.dll
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "PCTVOICE"="pctspk.exe" [2003-07-17 180224]
      "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2012-12-28 13529088]
      "UnlockerAssistant"="c:\archivos de programa\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
      "SMSERIAL"="c:\archivos de programa\Motorola\SMSERIAL\sm56hlpr.exe" [2013-03-17 1458176]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "DisableRegedit"= 0 (0x0)
      .
      [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
      "DisableRegedit"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
      "FLEXnet Licensing Service"=3 (0x3)
      "Nhksrv"=2 (0x2)
      "WMPNetworkSvc"=3 (0x3)
      "Steam Client Service"=3 (0x3)
      "MDM"=2 (0x2)
      "gupdatem"=3 (0x3)
      "AdobeFlashPlayerUpdateSvc"=3 (0x3)
      "gupdate"=2 (0x2)
      "ose"=3 (0x3)
      "idsvc"=3 (0x3)
      .
      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
      "%windir%\\system32\\sessmgr.exe"=
      "c:\\Archivos de programa\\Winamp\\winamp.exe"=
      "c:\\Archivos de programa\\valve\\Counter Strike 1.6\\hl.exe"=
      "c:\\Program Files\\Counter-Strike Xtreme V6\\hl.exe"=
      "c:\\Archivos de programa\\Java\\jre7\\bin\\javaw.exe"=
      "c:\\Archivos de programa\\valve\\Counter Strike 1.6\\hltv.exe"=
      "c:\\Archivos de programa\\Steam\\Steam.exe"=
      "c:\\Documents and Settings\\hackman\\Datos de programa\\uTorrent\\uTorrent.exe"=
      "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
      "c:\\Archivos de programa\\Skype\\Phone\\Skype.exe"=
      .
      R?2 D_Link_DWA-125;D_Link_DWA-125 Service;c:\archivos de programa\D-Link\DWA-125 revA\ANIWZCSdS.exe [26/12/2012 18:26 126976]
      R2 ANPD;ANPD Service;c:\windows\system32\ANPD.SYS [26/12/2012 18:26 29411]
      R2 D_Link_DWA-125_WPS;D_Link_DWA-125_WPS Service;c:\archivos de programa\D-Link\DWA-125 revA\ANIWConnService.exe [26/12/2012 18:26 40960]
      R3 Msikbd2k;DellTouch;c:\windows\system32\drivers\Msikbd2k.sys [27/12/2012 21:54 6656]
      R3 Pcouffin;Low level access layer for CD devices;c:\windows\system32\drivers\Pcouffin.sys [01/01/2013 19:41 47360]
      R3 pmserenum;PenMount Serial Device Enumeration Service;c:\windows\system32\drivers\pmserenum.sys [27/12/2012 23:59 26624]
      R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [09/01/2013 22:03 27632]
      S3 PAEAFLT.sys;USB Composite Device;c:\windows\system32\drivers\PAEAFLT.sys [21/01/2013 20:03 8576]
      S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [27/12/2012 11:46 27064]
      S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [26/11/2009 0:06 34384]
      S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; [x]
      S4 SkypeUpdate;Skype Updater;c:\archivos de programa\Skype\Updater\Updater.exe [07/02/2013 13:10 161384]
      .
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
      UxTuneUp
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2013-03-19 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-28 01:57]
      .
      2013-03-19 c:\windows\Tasks\User_Feed_Synchronization-{9F800338-C93E-41CC-BA6B-380F6C7D5A0B}.job
      - c:\windows\system32\msfeedssync.exe [2009-03-08 07:31]
      .
      .
      ------- Supplementary Scan -------
      .
      uStart Page = hxxp://www.bing.com
      mWindow Title = Microsoft Internet Explorer
      uInternet Settings,ProxyOverride = <local>
      TCP: DhcpNameServer = 192.168.1.1
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Toolbar-Locked - (no file)
      .
      .
      .
      **************************************************************************
      .
      catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
      Rootkit scan 2013-03-19 12:58
      Windows 5.1.2600 Service Pack 3 NTFS
      .
      scanning hidden processes ...
      .
      scanning hidden autostart entries ...
      .
      scanning hidden files ...
      .
      scan completed successfully
      hidden files: 0
      .
      **************************************************************************
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\h–€|ÿÿÿÿ¤•€|ù•9~*]
      "A0C0110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum]
      @Denied: (Full) (LocalSystem)
      @Denied: (Full) (Everyone)
      "NextParentID.daba3ff.2"=dword:00000001
      "NextParentID.267a616a.3"=dword:00000001
      "NextParentID.354aea31.4"=dword:00000001
      "NextParentID.30647147.4"=dword:00000001
      "NextParentID.53af4df.4"=dword:00000001
      "NextParentID.4f07476.4"=dword:00000001
      "NextParentID.6edbab.5"=dword:00000001
      "NextParentID.28538922.4"=dword:00000001
      "NextParentID.3b0d39c7.4"=dword:00000001
      "NextParentID.122c2065.4"=dword:00000001
      "NextParentID.24e5d10a.4"=dword:00000001
      "NextParentID.87115de.4"=dword:00000001
      "NextParentID.39700ba5.5"=dword:00000001
      "NextParentID.35730f66.5"=dword:00000001
      "NextParentID.15a56e73.5"=dword:00000001
      "NextParentID.7dedc0b.6"=dword:00000001
      "NextParentID.30a96598.1"=dword:00000001
      "NextParentID.131bfd66.5"=dword:00000001
      "NextParentID.35fb2ad7.5"=dword:00000001
      "NextParentID.3130d70.7"=dword:00000001
      "NextParentID.15ccbe15.7"=dword:00000001
      "NextParentID.28866eba.7"=dword:00000001
      "NextParentID.1a22391b.5"=dword:00000001
      "NextParentID.3451b8a.6"=dword:00000001
      "NextParentID.636fbdf.6"=dword:00000002
      "NextParentID.4b8fdad.5"=dword:00000001
      "NextParentID.3451cebe.6"=dword:00000001
      "NextParentID.26b65b00.5"=dword:00000001
      "NextParentID.b70b55c.6"=dword:00000001
      "NextParentID.1bfe1c47.5"=dword:00000001
      "NextParentID.28d46231.7"=dword:00000001
      "NextParentID.293fdb8f.5"=dword:00000001
      "NextParentID.939d86b.6"=dword:00000001
      "NextParentID.369e458e.6"=dword:00000001
      "NextParentID.dbd2c2c.6"=dword:00000001
      "NextParentID.321af1cd.6"=dword:00000001
      "NextParentID.392a22d6.7"=dword:00000001
      "NextParentID.1653bff5.6"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\GenuineIntel_-_x86_Family_15_Model_2\_0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\GenuineIntel_-_x86_Family_15_Model_2\_1\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0000\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0100\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0200\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0303\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      "Migrated"=dword:00000001
      "KeyboardDataQueueSize"=dword:00000064
      "PollStatusIterations"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0401\1\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      "PortName"="LPT1"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0501\1\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      "PortName"="COM1"
      "PollingPeriod"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0700\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0800\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0A03\0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0B00\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0C01\1\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0C02\0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0C02\10\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\ACPI\PNP0C04\4&30647147&0\Device Parameters]
      "FirmwareIdentified"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\BTH\MS_BTHPAN\6&1653bff5&0&2\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\BTH\MS_RFCOMM\6&1653bff5&0&0\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\DISPLAY\Default_Monitor\5&131bfd66&0&11223344&01&00\Device Parameters]
      "BAD_EDID"=hex:00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,
      00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\DISPLAY\Default_Monitor\5&131bfd66&0&11337799&01&00\Device Parameters]
      "BAD_EDID"=hex:00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,
      00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\DISPLAY\GLC4A4C\5&131bfd66&0&11335577&01&00\Device Parameters]
      "EDID"=hex:00,ff,ff,ff,ff,ff,ff,00,1d,83,4c,4a,01,01,01,01,2e,0c,01,01,7e,20,
      18,aa,e8,e0,59,a3,54,46,9b,24,10,21,4c,ff,fe,00,31,59,45,59,61,59,31,7c,45,\
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\DISPLAY\GLC4A4C\5&131bfd66&0&22446688&01&00\Device Parameters]
      "EDID"=hex:00,ff,ff,ff,ff,ff,ff,00,1d,83,4c,4a,01,01,01,01,2e,0c,01,01,7e,20,
      18,aa,e8,e0,59,a3,54,46,9b,24,10,21,4c,ff,fe,00,31,59,45,59,61,59,31,7c,45,\
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&321af1cd&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&3451cebe&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&369e458e&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&7dedc0b&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      "WaitWakeEnabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&939d86b&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&b70b55c&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\HID\Vid_046d&Pid_c024\6&dbd2c2c&0&0000\Device Parameters]
      "Migrated"=dword:00000001
      "WaitWakeEnabled"=dword:00000001
      "FlipFlopWheel"=dword:00000000
      "ForceAbsolute"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.0.0\Device Parameters]
      "DefaultDvdRegion"=dword:00000002
      "DefaultRequestFlags"=dword:00000008
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.0.0\Device Parameters\CdRom]
      "NonMmc"=dword:00000001
      "ReadCD"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.0.0\Device Parameters\DigitalAudio]
      "ReadSizesSupported"=dword:ffffffff
      "CDDASupported"=dword:00000001
      "CDDAAccurate"=dword:00000000
      "SettingsFromDevice"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.1.0\Device Parameters]
      "DefaultDvdRegion"=dword:00000002
      "DefaultRequestFlags"=dword:00000008
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.1.0\Device Parameters\CdRom]
      "NonMmc"=dword:00000001
      "ReadCD"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomATAPI_CDROM_____________________________1.40____\5&35730f66&0&0.1.0\Device Parameters\DigitalAudio]
      "ReadSizesSupported"=dword:ffffffff
      "CDDASupported"=dword:00000001
      "CDDAAccurate"=dword:00000001
      "SettingsFromDevice"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomTSSTcorp_CD-R/RW_TS-H292A_______________TS00____\5&35730f66&0&0.1.0\Device Parameters]
      "DefaultDvdRegion"=dword:00000002
      "DefaultRequestFlags"=dword:00000008
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomTSSTcorp_CD-R/RW_TS-H292A_______________TS00____\5&35730f66&0&0.1.0\Device Parameters\Classpnp]
      "MMCDetectionState"=dword:00000002
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomTSSTcorp_CD-R/RW_TS-H292A_______________TS00____\5&35730f66&0&0.1.0\Device Parameters\DigitalAudio]
      "ReadSizesSupported"=dword:ffffffff
      "CDDASupported"=dword:00000001
      "CDDAAccurate"=dword:00000001
      "SettingsFromDevice"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\IDE\CdRomTSSTcorp_CD-R/RW_TS-H292A_______________TS00____\5&35730f66&0&0.1.0\Device Parameters\Imapi]
      "EnableImapi"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\LPTENUM\MicrosoftRawPort\5&35fb2ad7&0&LPT1\Device Parameters]
      "PortName"="LPT1:"
      "IEEE_1284_Manufacturer"="Microsoft"
      "IEEE_1284_Model"="RawPort"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_10DE&DEV_0322&SUBSYS_203C1682&REV_A1\4&354aea31&0&0008\Device Parameters]
      "VideoID"="{3F50C898-0268-48BB-98CE-21A747ADA751}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3038&SUBSYS_30381849&REV_81\3&267a616a&0&80\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000001
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3038&SUBSYS_30381849&REV_81#3&267a616a&0&80#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      "Haction"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3038&SUBSYS_30381849&REV_81\3&267a616a&0&81\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000001
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3038&SUBSYS_30381849&REV_81#3&267a616a&0&81#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      "Haction"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3038&SUBSYS_30381849&REV_81\3&267a616a&0&82\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000001
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3038&SUBSYS_30381849&REV_81#3&267a616a&0&82#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      "Haction"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3038&SUBSYS_30381849&REV_81\3&267a616a&0&83\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000001
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3038&SUBSYS_30381849&REV_81#3&267a616a&0&83#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      "Haction"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3065&SUBSYS_30651849&REV_78\3&267a616a&0&90\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3068&SUBSYS_4C211543&REV_80\3&267a616a&0&8E\Device Parameters]
      "PortName"="COM3"
      "PermanentGuid"=hex:14,65,f4,32,e7,cd,f7,4d,b6,ed,f1,c6,d8,3e,10,a2
      "WakeOnRing"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\PCI\VEN_1106&DEV_3104&SUBSYS_31041849&REV_86\3&267a616a&0&84\Device Parameters]
      "DetectedLegacyBIOS"=dword:00000000
      "SymbolicName"="\\??\\PCI#VEN_1106&DEV_3104&SUBSYS_31041849&REV_86#3&267a616a&0&84#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\*PNP0501\1_0_17_0_0_0\Device Parameters]
      "DosDeviceName"="COM1"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\LEGACY_BEEP]
      "NextInstance"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\LEGACY_BEEP\0000]
      "Service"="Beep"
      "Legacy"=dword:00000001
      "ConfigFlags"=dword:00000020
      "Class"="LegacyDriver"
      "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"
      "DeviceDesc"="Beep"
      "Capabilities"=dword:00000000
      "Driver"="{8ECC055D-047F-11D1-A537-0000F8753ED1}\\0002"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_L2TPMINIPORT\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_NDISWANIP\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PPPOEMINIPORT\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PPTPMINIPORT\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PSCHEDMP\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PSCHEDMP\0001\Device Parameters]
      "InstanceIndex"=dword:00000002
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PSCHEDMP\0002\Device Parameters]
      "InstanceIndex"=dword:00000003
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PSCHEDMP\0003\Device Parameters]
      "InstanceIndex"=dword:00000004
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\Root\MS_PTIMINIPORT\0000\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\SW\{48926476-2cae-4ded-a86e-73ddebed6779}\NDISIP\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\SW\{eeab7790-c514-11d1-b42b-00805fc1270e}\asyncmac\Device Parameters]
      "InstanceIndex"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB\4&122c2065&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB#4&122c2065&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB\4&24e5d10a&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB#4&24e5d10a&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB\4&28538922&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB#4&28538922&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB\4&3b0d39c7&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB#4&3b0d39c7&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\ROOT_HUB20\4&87115de&0\Device Parameters]
      "SymbolicName"="\\??\\USB#ROOT_HUB20#4&87115de&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
      "FailReasonID"=dword:00000005
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0000&Pid_0000\5&1a22391b&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0000&Pid_0000\5&1a22391b&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0000&Pid_0000\5&1bfe1c47&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&15a56e73&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&15a56e73&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&1a22391b&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&1a22391b&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&1a22391b&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&1a22391b&0&2#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&293fdb8f&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&293fdb8f&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&293fdb8f&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&293fdb8f&0&2#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&4b8fdad&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&4b8fdad&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_046d&Pid_c024\5&4b8fdad&0&2\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_046d&Pid_c024#5&4b8fdad&0&2#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_054c&Pid_053b\D863E008B445\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_054c&Pid_053b#D863E008B445#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_07d1&Pid_3c16\1.0\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "InstanceIndex"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_07d1&Pid_3c16#1.0#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_07d1&Pid_3c16\5\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "InstanceIndex"=dword:00000002
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0930&Pid_6545\001CC0EC348DEA8115E4007B\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_0930&Pid_6545#001CC0EC348DEA8115E4007B#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_093a&Pid_262c&MI_00\6&636fbdf&0&0000\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0a12&Pid_0001\5&1a22391b&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "COD Type"=dword:00000001
      "Scans Before Out of Range"=dword:00000008
      "Store Link Key COD Masks"=hex:00,00,1f,43,00,00,05,40,00,00,1f,83,00,00,05,80
      "SymbolicLinkName"="\\??\\USB#Vid_0a12&Pid_0001#5&1a22391b&0&1#{0850302a-b344-4fda-9be9-90576b8d46f0}"
      "SymbolicName"="\\??\\USB#Vid_0a12&Pid_0001#5&1a22391b&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      "Write Scan Enable"=dword:00000002
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_0bb4&Pid_0ff9\HT23KTX05026\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_0bb4&Pid_0ff9#HT23KTX05026#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_152d&Pid_2339\152D203380B6\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_152d&Pid_2339#152D203380B6#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_152d&Pid_2339\2E9BB200425F\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_152d&Pid_2339#2E9BB200425F#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_15ca&Pid_1806\5&1a22391b&0&1\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      "SymbolicName"="\\??\\USB#Vid_15ca&Pid_1806#5&1a22391b&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
      .
      [HKEY_LOCAL_MACHINE\System\ControlSet002\Enum\USB\Vid_15ca&Pid_1806&MI_00\6&3451b8a&0&0000\Device Parameters]
      "ExtPropDescSemaphore"=dword:00000001
      .
      --------------------- DLLs Loaded Under Running Processes ---------------------
      .
      - - - - - - - > 'winlogon.exe'(1388)
      c:\windows\system32\l3codeca.acm
      c:\windows\system32\ac3acm.acm
      c:\windows\system32\lameACM.acm
      c:\windows\system32\sirenacm.dll
      c:\windows\system32\vorbis.acm
      .
      - - - - - - - > 'explorer.exe'(2844)
      c:\windows\system32\WININET.dll
      c:\windows\system32\msi.dll
      c:\windows\system32\webcheck.dll
      c:\windows\system32\WPDShServiceObj.dll
      c:\windows\system32\PortableDeviceTypes.dll
      c:\windows\system32\PortableDeviceApi.dll
      c:\windows\system32\l3codeca.acm
      c:\windows\system32\ac3acm.acm
      c:\windows\system32\lameACM.acm
      c:\windows\system32\sirenacm.dll
      c:\windows\system32\vorbis.acm
      .
      Completion time: 2013-03-19 13:01:40
      ComboFix-quarantined-files.txt 2013-03-19 16:01
      .
      Pre-Run: 283.606.163.456 bytes libres
      Post-Run: 283.621.384.192 bytes libres
      .
      - - End Of File - - F18029B70C346082476382685DEF694E

    9. #9
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Virus o troyanos in detectables por antivirus y herramientas

      Hola h4ckm4n:


      Inicio >>> ejecutar >>> escribes winver >>> enter y nos subes una imagen, ¿Cómo subir imágenes al Foro? *TUTORIAL*


      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #10
      Usuario Avatar de h4ckm4n
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      68

      Re: Virus o troyanos in detectables por antivirus y herramientas




      Es raro pero se descargan programas y se me instalan solos. Pense que lo habia acabao con ellos

    Página 1 de 2 12 ÚltimoÚltimo